MCO-1191, MCO-1194: Experiment with creating internal go bindings for bootc , Incorporate support for bootc commands to Machine Config Daemon #4465
Conversation
inesqyx
commented
Jul 10, 2024
•
inesqyx
commented
- Create a bootc.go to store bootc status reading and command line execution
- Create bootc internal go-bindings inside bootc.go. Code designed in the way to be easily separated into a standalone lib: https://github.com/inesqyx/bootc-client-go/tree/bootc-client-go
- Consolidate functions that rpm-ostree and bootc share in common into one place
openshift-ci
bot
added
the
do-not-merge/work-in-progress
|
Skipping CI for Draft Pull Request. |
|
@inesqyx: This pull request references MCO-1191 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the spike to target the "4.17.0" version, but no target version was set. This pull request references MCO-1194 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.17.0" version, but no target version was set. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository. |
openshift-ci-robot
added
the
jira/valid-reference
|
@inesqyx: This pull request references MCO-1191 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the spike to target the "4.17.0" version, but no target version was set. This pull request references MCO-1194 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.17.0" version, but no target version was set. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository. |
openshift-ci
bot
removed
the
do-not-merge/work-in-progress
|
/test all |
| } | ||
|
|
||
| // Spec collects the host specification | ||
| // This mirrors https://github.com/containers/bootc/blob/94521ecb19b8d0f2bfc36220322c60cafa036296/lib/src/spec.rs#L46 |
There was a problem hiding this comment.
thought (non-blocking): This is way beyond the scope of this PR, but it would be great if we could programmatically consume these Rust structs and generate Go structs from it using some kind of code-gen.
Just to be clear, I am not asking you to do that right now 😄
There was a problem hiding this comment.
Agree!! I think currently we are doing it manually for both bootc bindings and rpm-ostree bindings. It will def be better to have something auto-gen. @cgwalters might have some idea according to comment down: https://issues.redhat.com/browse/MCO-1026 ?
There was a problem hiding this comment.
containers/bootc#703 - does that help?
There was a problem hiding this comment.
Yes, that would help! We'll need a way to consume that JSON schema, but it's a step in the right direction.
There was a problem hiding this comment.
Some trials on autogen-ing bootc go-bindings by consuming the JSON schema: https://github.com/inesqyx/bootc-client-go
| @@ -0,0 +1,245 @@ | |||
| package daemon | |||
There was a problem hiding this comment.
suggestion: Let's make the bootc client live in a separate Go module from the rest of the MCD code paths. The reason is because it will help enforce better boundaries between it and the rest of the MCD code path.
To do that:
- Create a directory called
pkg/daemon/bootc. - Move the
bootc.gofile into it. The MCD can then import from that package. There may be some overlap between your code and functions in the MCD package. For now, it's fine to duplicate them into thebootcmodule. You can also move your bootc related constants into this module as well.
In the future, we could make the module name more generic and move the rpm-ostree client into here as well, but that is an idea for another day.
There was a problem hiding this comment.
Makes sense to me! Will do while featuregating - https://issues.redhat.com/browse/MCO-1192
| return | ||
| } | ||
|
|
||
| // // GetStatus returns multi-line human-readable text describing system status |
There was a problem hiding this comment.
question: Should this be commented out? If it's not needed, delete it.
There was a problem hiding this comment.
I am having this block here but commented out because according to containers/bootc#408, it seems that the bootc team is actively working on creating options for outputting human-readable bootc status, which is not ready yet. By the time we merge this PR, if they have something handy for us to use, I think we can un-comment the block and bring it in; while if not, then we should delete it :)
There was a problem hiding this comment.
That makes sense 😄 . We can leave it in that case.
pkg/daemon/bootc.go
Outdated
| // Switch target a new container image reference to boot for the system or errors if already swictehd. | ||
| func (b *BootcClient) Switch(imgURL string) (err error) { | ||
| // Try to re-link the merged pull secrets if they exist, since it could have been populated without a daemon reboot | ||
| useMergedPullSecrets(bootcSystem) |
There was a problem hiding this comment.
issue: What happens if useMergedPullSecrets() throws an error?
suggestion: Check the error and return it before continuing.
pkg/daemon/bootc.go
Outdated
| } | ||
|
|
||
| // Switch target a new container image reference to boot for the system or errors if already swictehd. | ||
| func (b *BootcClient) Switch(imgURL string) (err error) { |
There was a problem hiding this comment.
issue: You're using a named return here, but you don't declare or assign anything to an err variable within this function.
suggestion: There's nothing wrong with doing that, but for consistency, use a naked return instead:
func (b *BootcClient) Switch(imgURL string) error {
//...
}
pkg/daemon/rpm-ostree.go
Outdated
| @@ -239,15 +176,15 @@ func (r *RpmOstreeClient) IsNewEnoughForLayering() (bool, error) { | |||
| // RebaseLayered rebases system or errors if already rebased. | |||
| func (r *RpmOstreeClient) RebaseLayered(imgURL string) (err error) { | |||
| // Try to re-link the merged pull secrets if they exist, since it could have been populated without a daemon reboot | |||
| useMergedPullSecrets() | |||
| useMergedPullSecrets(rpmOstreeSystem) | |||
There was a problem hiding this comment.
issue: What happens when useMergedPullSecrets() fails here?
suggestion: We should be checking for any errors that are returned from here. Not doing so can introduce very difficult-to-track-down bugs. I know you're not the one who introduced this particular change, but I think it would make sense to wrap it in an if err != nil { return err } block.
pkg/daemon/rpm-ostree.go
Outdated
| klog.Infof("Executing rebase to %s", imgURL) | ||
| return runRpmOstree("rebase", "--experimental", "ostree-unverified-registry:"+imgURL) | ||
| } | ||
|
|
||
| // RebaseLayeredFromContainerStorage rebases the system from an existing local container storage image. | ||
| func (r *RpmOstreeClient) RebaseLayeredFromContainerStorage(imgURL string) (err error) { | ||
| // Try to re-link the merged pull secrets if they exist, since it could have been populated without a daemon reboot | ||
| useMergedPullSecrets() | ||
| useMergedPullSecrets(rpmOstreeSystem) |
There was a problem hiding this comment.
suggestion: Same as above regarding error checking.
pkg/daemon/image_manager_helper.go
Outdated
| // Note that pull secret for 'bootc' to fetch updates from registry which reauires authentication is also stored in | ||
| // /etc/ostree/auth.json | ||
|
|
||
| func useMergedPullSecrets(system string) error { |
There was a problem hiding this comment.
issue: What happens if an invalid system value is provided?
suggestion: Be more strict about what values this function will accept. We can also use this as an opportunity to do some code de-duplication:
func useMergedPullSecrets(system string) error {
// Associate each link function with a system value.
linkFuncs := map[string]func(string) error {
rpmOstreeSystem: linkOstreeAuthFile,
bootcSystem: linkBootcAuthFile,
}
// Check whether the provided system value is in the map. If not, return an error.
if _, ok := linkFuncs[system]; !ok {
return fmt.Errorf("unknown system value %q", system)
}
// Then, whenever you want to call one of those functions, just do the following:
return linkFuncs[system](kubeletAuthFile)
}Alternatively, we can push the association of the system value into a linkAuthFile() function as described above.
pkg/daemon/image_manager_helper.go
Outdated
| ) | ||
|
|
||
| const ( | ||
| rpmOstreeSystem = "rpm-ostree" |
There was a problem hiding this comment.
suggestion: We may want to make rpmOstreeSystem and bootcSystem their own special types:
type imageSystem string
const (
rpmOstreeSystem imageSystem = "rpm-ostree"
bootcSystem imageSystem = "bootc"
)This will provide a guard against accidentally passing the wrong value to any functions that expect one of these values.
We can also augment that with a simple validation function:
func validateImageSystem(imgSys imageSystem) error {
// Sets provided by https://github.com/kubernetes/apimachinery/tree/master/pkg/util/sets
// Imported as k8s.io/apimachinery/pkg/util/sets
valid := sets.New[imageSystem](rpmOstreeSystem, bootcSystem)
if valid.Has(imgSys) {
return nil
}
return fmt.Errorf("invalid system %s, valid: %v", imgSys, sets.List(valid))
}
pkg/daemon/bootc.go
Outdated
| // Pull secret for 'bootc' to fetch updates from registry which requires authentication is stored in /etc/ostree/auth.json | ||
| // per https://github.com/containers/bootc/blob/5e9279d6674b28d2c451baeaf981a92a1aa388ff/docs/src/building/secrets.md?plain=1#L4 | ||
|
|
||
| func linkBootcAuthFile(path string) error { |
There was a problem hiding this comment.
suggestion (non-blocking): We could potentially deduplicate this code a bit if we pass the system value in and it knows which path to associate with each system type:
func linkAuthFile(path string, system imageSystem) error {
// Associate each of the systems with a particular authfile path.
imageSystemAuthFilePaths := map[imageSystem]string{
rpmOstreeSystem: ostreeAuthFile,
bootcSystem: bootcAuthFile,
}
// Try looking up the system type.
authFile, ok := imageSystemAuthFilePaths[system]
if !ok {
// We got an invalid value, return an error.
return fmt.Errorf("unknown system %q", system)
}
if _, err := os.Lstat(authFile); err != nil {
if errors.Is(err, os.ErrNotExist) {
// filepath.Dir() takes a path such as /etc/ostree/auth.json and returns the parent directory path; /etc/ostree in this case.
if err := os.MkdirAll(filepath.Dir(authFile), 0o544); err != nil {
return err
}
}
} else {
// Remove older symlink if it exists since it needs to be overwritten
if err := os.Remove(authFile); err != nil {
return err
}
}
klog.Infof("Linking %s authfile (%s) to %s", system, authFile, path)
return os.Symlink(path, authFile)
}
|
Thanks, @cheesesashimi , for the detailed review!! I think a lot of the suggestions and issues applies to both rpm-ostree.go and bootc.go. I will make sure to revisit both of them and have errors better guarded, conventions better matched. Ty! |
|
/retest-required |
pkg/daemon/bootc.go
Outdated
| // make sure we get access to them when we Initialize | ||
| err := useMergedPullSecrets(bootcSystem) | ||
| if err != nil { | ||
| klog.Errorf("error while linking bootc pull secrets %v", err) |
There was a problem hiding this comment.
question: do we just want to log the error and continue when an error occurs here? If not we should do return useMergePullSecrets() to ensure we actually error out when an error happens.
There was a problem hiding this comment.
Let's return the error and cut it there. I was following this check that currently exists in rpm-ostree:
// Commands like update and rebase need the pull secrets to pull images and manifests,
// make sure we get access to them when we Initialize
err := useMergedPullSecrets(rpmOstreeSystem)
if err != nil {
klog.Errorf("error while linking rpm-ostree pull secrets %v", err)
}
But with a second thought, I think it is something to be prevented.
There was a problem hiding this comment.
I am guessing that pull secrets might not be necessary for some rpm-ostree commands and that is why it allows failed fetch here?
There was a problem hiding this comment.
I was wondering the same thing too, we should confirm this as it is better to completely error out than just log and wait for it to fail at a later stage.
There was a problem hiding this comment.
I think at least in the following implications
- Switch
- RebaseLayered
- RebaseLayeredFromContainerStorage
We def need the presence and correct reading of the pull secret.
There was a problem hiding this comment.
I have error-ed them out in the latest changes according to discussions here:
[1] Keeping the error will result in fail at a later time and hard-to-track bugs: #4465 (comment)
#4465 (comment)
[2] Several frequently invoked rpm-ostree/bootc commands need the presence of the pull secret. Better to set them up at initialization: #4465 (comment)
There was a problem hiding this comment.
thought: Maybe do this change only for the bootc code path and open another PR for fixing this in the rpm-ostree code path as that is actually affecting code actively used today. This way we can test it separately and avoid any potential regressions. What do you think?
There was a problem hiding this comment.
Update:
Kept for rpm-ostree initialization only:
err := useMergedPullSecrets(...)
if err != nil {
klog.Errorf("error while linking rpm-ostree pull secrets %v", err)
}
Updated to for bootc switch and rpm-ostree rebase because the pull secret is mandatory for future steps
err := useMergedPullSecrets(...)
if err != nil {
return fmt.Errorf("Error while ensuring access to pull secrets: %w", err)
}
pkg/daemon/bootc.go
Outdated
| func (b *BootcClient) Switch(imgURL string) error { | ||
| // Try to re-link the merged pull secrets if they exist, since it could have been populated without a daemon reboot | ||
| if err := useMergedPullSecrets(bootcSystem); err != nil { | ||
| klog.Errorf("error while linking bootc pull secrets %v", err) |
There was a problem hiding this comment.
question: same question here as above, do we just want to log the error and continue on?
pkg/daemon/rpm-ostree.go
Outdated
| // Try to re-link the merged pull secrets if they exist, since it could have been populated without a daemon reboot | ||
| useMergedPullSecrets() | ||
| if err := useMergedPullSecrets(rpmOstreeSystem); err != nil { | ||
| klog.Errorf("error while linking rpm-ostree pull secrets %v", err) |
There was a problem hiding this comment.
same question here, do we just want to log the error and continue?
pkg/daemon/rpm-ostree.go
Outdated
| // Try to re-link the merged pull secrets if they exist, since it could have been populated without a daemon reboot | ||
| useMergedPullSecrets() | ||
| if err := useMergedPullSecrets(rpmOstreeSystem); err != nil { | ||
| klog.Errorf("error while linking rpm-ostree pull secrets %v", err) |
There was a problem hiding this comment.
and same question here as above again, do we just want to log the error and continue?
|
/retest-required |
inesqyx
force-pushed
the
MCO-1191
branch
2 times, most recently
from
6b14dd2
to
cb6edf8
Compare
|
LGTM |
|
/retest-required |
inesqyx
force-pushed
the
MCO-1191
branch
2 times, most recently
from
29b8106
to
fe5b726
Compare
|
/retest-required |
pkg/daemon/image_manager_helper.go
Outdated
| return nil | ||
| } | ||
|
|
||
| return fmt.Errorf("invalid system %s, valid: %v", imgSys, sets.List(valid)) |
There was a problem hiding this comment.
quibble (non-blocking): Maybe this should read "valid systems:" instead?
pkg/daemon/bootc.go
Outdated
| return &bootedImageInfo, nil | ||
| } | ||
|
|
||
| // Switch target a new container image reference to boot for the system or errors if already swictehd. |
There was a problem hiding this comment.
typo: swictehd should be switched
pkg/daemon/bootc.go
Outdated
| // } | ||
|
|
||
| // GetBootcBootedOSImageURL returns the image URL as well as the image version(for logging) and the ostree commit (for comparisons) | ||
| func (b *BootcClient) GetBootcBootedOSImageURL() (*BootedImageInfo, error) { |
There was a problem hiding this comment.
quibble: This function name feels a bit redundant.
suggestion (non-blocking): Maybe rename to something like GetBootedImageInfo() instead?
| baseChecksum = "" | ||
| } | ||
|
|
||
| bootedImageInfo := BootedImageInfo{ |
There was a problem hiding this comment.
praise: Nicely done here!
| if err := os.MkdirAll(filepath.Dir(authFilePath), 0o544); err != nil { | ||
| return err | ||
| } | ||
| } |
There was a problem hiding this comment.
issue: If os.Lstat() returns an error that is not matched by errors.Is(err, os.ErrNotExist), we should return that error back to the caller. As-is, we'll still try to do the os.Symlink() operation which seems undesirable.
Instead, we might want to do something like this instead:
if _, err := os.Lstat(authFilePath); err != nil {
if !errors.Is(err, os.ErrNotExist) {
// Return any non-matching errors.
return err
}
if err := os.MkdirAll(filepath.Dir(authFilePath), 0o544); err != nil {
return err
}
} // ...| } | ||
|
|
||
| // check if merged secret file exists | ||
| if _, err := os.Stat(imageRegistryAuthFile); err != nil { |
There was a problem hiding this comment.
issue: If the error returned by os.Stat() is not matched by errors.Is(err, os.ErrNotExist), we just keep going which could be undesirable. Instead, we might want to do something like this:
if _, err := os.Stat(imageRegistryAuthFile); err != nil {
if !errors.Is(err, os.ErrNotExist) {
return fmt.Errorf("could not determine if %s exists: %w", imageRegistryAuthFile, err)
}
klog.Errorf("Merged secret file does not exist; defaulting to cluster pull secret")
return linkAuthFile(system, kubeletAuthFile)
}
|
/retest-required |
|
@inesqyx: The following tests failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here. |
| } | ||
|
|
||
| // QueryStatus loads the current system state. | ||
| func (client *Client) QueryStatus() (*BootcStatus, error) { |
There was a problem hiding this comment.
thought (non-blocking): While doing some work on #4284, something I ended up doing was having to manually parse the output for rpm-ostree there. The reason I had to do that was because my execution context was a lot different. In other words, I was trying to execute rpm-ostree status --json on a cluster node from my workstation (or test pod) as opposed to being the MCD executing it directly on the node.
In the future, we could make a version of this client that accepts a []byte{} array which contains the status and allows one to use all of the usual methods attached to it.
|
/lgtm |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: cheesesashimi, inesqyx The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
openshift-ci
bot
added
the
approved
openshift-merge-bot
bot
merged commit 4a518fe
into
openshift:master
|
[ART PR BUILD NOTIFIER] Distgit: ose-machine-config-operator |
