Add sysinv commands related to helm chart overrides

When dealing with "system" helm charts (like those used for OpenStack) we want to support both system-generated overrides as well as user-specified overrides. There are various ways in helm to specify overrides, so we try to support as many of them as possible here. Because we're not actually upgrading a chart in helm it becomes very difficult to reliably handle the equivalent of helm's "--set-string" operation so for now we won't be able to provide it. Story: 2002876 Task: 22831 Change-Id: I27d7e61b1ae0a849ecf99afbdbbaf7ba3bfcaee2 Signed-off-by: Jack Ding <jack.ding@windriver.com>
2018-06-18 13:45:29 -06:00 · 2018-06-18 13:45:29 -06:00 · 49041ff8a9
parent 9878251239
commit 49041ff8a9
12 changed files with 491 additions and 0 deletions
--- a/sysinv/cgts-client/cgts-client/cgtsclient/v1/client.py
+++ b/sysinv/cgts-client/cgts-client/cgtsclient/v1/client.py
@ -30,6 +30,7 @@ from cgtsclient.v1 import event_log
 from cgtsclient.v1 import event_suppression
 from cgtsclient.v1 import firewallrules
 from cgtsclient.v1 import health
 from cgtsclient.v1 import helm
 from cgtsclient.v1 import ialarm
 from cgtsclient.v1 import icommunity
 from cgtsclient.v1 import icpu
@ -148,3 +149,4 @@ class Client(http.HTTPClient):
        self.storage_tier = storage_tier.StorageTierManager(self)
        self.storage_ceph_external = \
            storage_ceph_external.StorageCephExternalManager(self)
        self.helm = helm.HelmManager(self)
--- a/sysinv/cgts-client/cgts-client/cgtsclient/v1/helm.py
+++ b/sysinv/cgts-client/cgts-client/cgtsclient/v1/helm.py
@ -0,0 +1,58 @@
 #
 # Copyright (c) 2018 Wind River Systems, Inc.
 #
 # SPDX-License-Identifier: Apache-2.0
 #
 # -*- encoding: utf-8 -*-
 #
 from cgtsclient.common import base
 class Helm(base.Resource):
    def __repr__(self):
        return "<helm %s>" % self._info
 class HelmManager(base.Manager):
    resource_class = Helm
    @staticmethod
    def _path(name=''):
        return '/v1/helm_charts/%s' % name
    def list_charts(self):
        return self._list(self._path(), 'charts')
    def get_overrides(self, name):
        """Get overrides for a given chart.
        :param name: name of the chart
        This will return the end-user, system, and combined overrides for the
        specified chart.
        """
        try:
            return self._list(self._path(name))[0]
        except IndexError:
            return None
    def update_overrides(self, name, flag='reset', override_values={}):
        """Update overrides for a given chart.
        :param name: name of the chart
        :param flag: 'reuse' or 'reset' to indicate how to handle existing
                     user overrides for this chart
        :param override_values: a dict representing the overrides
        This will return the end-user overrides for the specified chart.
        """
        body = {'flag': flag, 'values': override_values}
        return self._update(self._path(name), body)
    def delete_overrides(self, name):
        """Delete overrides for a given chart.
        :param name: name of the chart
        """
        return self._delete(self._path(name))
--- a/sysinv/cgts-client/cgts-client/cgtsclient/v1/helm_shell.py
+++ b/sysinv/cgts-client/cgts-client/cgtsclient/v1/helm_shell.py
@ -0,0 +1,108 @@
 #!/usr/bin/env python
 # vim: tabstop=4 shiftwidth=4 softtabstop=4
 #
 # Copyright (c) 2018 Wind River Systems, Inc.
 #
 # SPDX-License-Identifier: Apache-2.0
 #
 from collections import OrderedDict
 import yaml
 from cgtsclient.common import utils
 from cgtsclient import exc
 def _print_helm_chart(chart):
    # We only want to print the fields that are in the response, that way
    # we can reuse this function for printing the override update output
    # where the system overrides aren't included.
    ordereddata = OrderedDict(sorted(chart.to_dict().items(),
                                     key=lambda t: t[0]))
    utils.print_dict(ordereddata)
 def do_helm_chart_list(cc, args):
    """List system helm charts."""
    charts = cc.helm.list_charts()
    utils.print_list(charts, ['name'], ['chart name'], sortby=0)
@utils.arg('chart', metavar='<chart name>',
           help="Name of chart")
 def do_helm_override_show(cc, args):
    """Show overrides for chart."""
    chart = cc.helm.get_overrides(args.chart)
    _print_helm_chart(chart)
@utils.arg('chart',
           metavar='<chart name>',
           nargs='+',
           help="Name of chart")
 def do_helm_override_delete(cc, args):
    """Delete overrides for one or more charts."""
    for chart in args.chart:
        try:
            cc.helm.delete_overrides(chart)
            print 'Deleted chart %s' % chart
        except exc.HTTPNotFound:
            raise exc.CommandError('chart not found: %s' % chart)
@utils.arg('chart',
           metavar='<chart name>',
           help="Name of chart")
@utils.arg('--reuse-values', action='store_true', default=False,
           help='Should we reuse existing helm chart user override values. '
                'If --reset-values is set this is ignored')
@utils.arg('--reset-values', action='store_true', default=False,
           help='Replace any existing helm chart overrides with the ones '
                'specified.')
@utils.arg('--values', metavar='<file_name>', action='append', dest='files',
           default=[],
           help='Specify a YAML file containing helm chart override values. '
                'Can specify multiple times.')
@utils.arg('--set', metavar='<commandline_overrides>', action='append',
           default=[],
           help='Set helm chart override values on the command line (can '
                'specify multiple times or separate values with commas: '
                'key1=val1,key2=val2). These are processed after "--values" '
                'files.')
 def do_helm_override_update(cc, args):
    """Update helm chart user overrides."""
    # This logic results in similar behaviour to "helm upgrade".
    flag = 'reset'
    if args.reuse_values and not args.reset_values:
        flag = 'reuse'
    # Overrides can be specified three different ways.  To preserve helm's
    # behaviour we will process all "--values" files first, then all "--set"
    # values, then finally all "--set-string" values.
    override_files = []
    # need to handle missing files
    if args.files:
        try:
            for filename in args.files:
                with open(filename, 'r') as input_file:
                    overrides = yaml.load(input_file)
                    override_files.append(yaml.dump(overrides))
        except IOError as ex:
            raise exc.CommandError('error opening values file: %s' % ex)
    override_set = []
    for override in args.set:
        override_set.append(override)
    overrides = {
        'files': override_files,
        'set': override_set,
    }
    try:
        chart = cc.helm.update_overrides(args.chart, flag, overrides)
    except exc.HTTPNotFound:
        raise exc.CommandError('helm chart not found: %s' % args.chart)
    _print_helm_chart(chart)
--- a/sysinv/cgts-client/cgts-client/cgtsclient/v1/shell.py
+++ b/sysinv/cgts-client/cgts-client/cgtsclient/v1/shell.py
@ -18,6 +18,7 @@ from cgtsclient.v1 import event_log_shell
 from cgtsclient.v1 import event_suppression_shell
 from cgtsclient.v1 import firewallrules_shell
 from cgtsclient.v1 import health_shell
 from cgtsclient.v1 import helm_shell
 from cgtsclient.v1 import ialarm_shell
 from cgtsclient.v1 import icommunity_shell
@ -111,6 +112,7 @@ COMMAND_MODULES = [
    license_shell,
    certificate_shell,
    storage_tier_shell,
    helm_shell,
 ]
--- a/sysinv/sysinv/sysinv/sysinv/api/controllers/v1/init.py
+++ b/sysinv/sysinv/sysinv/sysinv/api/controllers/v1/init.py
@ -37,6 +37,7 @@ from sysinv.api.controllers.v1 import event_log
 from sysinv.api.controllers.v1 import event_suppression
 from sysinv.api.controllers.v1 import firewallrules
 from sysinv.api.controllers.v1 import health
 from sysinv.api.controllers.v1 import helm_charts
 from sysinv.api.controllers.v1 import host
 from sysinv.api.controllers.v1 import interface
 from sysinv.api.controllers.v1 import link
@ -109,6 +110,9 @@ class V1(base.APIBase):
    ihosts = [link.Link]
    "Links to the ihosts resource"
    helm_charts = [link.Link]
    "Links to the helm resource"
    inode = [link.Link]
    "Links to the inode resource"
@ -260,6 +264,14 @@ class V1(base.APIBase):
                                        bookmark=True)
                     ]
        v1.helm_charts = [link.Link.make_link('self', pecan.request.host_url,
                                              'helm_charts', ''),
                          link.Link.make_link('bookmark',
                                              pecan.request.host_url,
                                              'helm_charts', '',
                                              bookmark=True)
                          ]
        v1.inode = [link.Link.make_link('self', pecan.request.host_url,
                                        'inode', ''),
                    link.Link.make_link('bookmark',
@ -722,6 +734,7 @@ class Controller(rest.RestController):
    isystems = system.SystemController()
    ihosts = host.HostController()
    helm_charts = helm_charts.HelmChartsController()
    inodes = node.NodeController()
    icpus = cpu.CPUController()
    imemorys = memory.MemoryController()
--- a/sysinv/sysinv/sysinv/sysinv/api/controllers/v1/helm_charts.py
+++ b/sysinv/sysinv/sysinv/sysinv/api/controllers/v1/helm_charts.py
@ -0,0 +1,160 @@
 #
 # Copyright (c) 2018 Wind River Systems, Inc.
 #
 # SPDX-License-Identifier: Apache-2.0
 #
 import os
 import pecan
 from pecan import rest
 import subprocess
 import tempfile
 import wsme
 from wsme import types as wtypes
 import wsmeext.pecan as wsme_pecan
 from sysinv import objects
 from sysinv.common import exception
 from sysinv.openstack.common import log
 from sysinv.openstack.common.gettextutils import _
 LOG = log.getLogger(__name__)
 SYSTEM_CHARTS = ['mariadb', 'rabbitmq', 'ingress']
 class HelmChartsController(rest.RestController):
    @wsme_pecan.wsexpose(wtypes.text)
    def get_all(self):
        """Provides information about the available charts to override."""
        charts = [{'name': chart} for chart in SYSTEM_CHARTS]
        return {'charts': charts}
    @wsme_pecan.wsexpose(wtypes.text, wtypes.text)
    def get_one(self, name):
        """Retrieve information about the given event_log.
        :param name: name of helm chart
        """
        try:
            db_chart = objects.helm_overrides.get_by_name(
                pecan.request.context, name)
            overrides = db_chart.user_overrides
        except exception.HelmOverrideNotFound:
            if name in SYSTEM_CHARTS:
                overrides = {}
            else:
                raise
        rpc_chart = {'name': name,
                     'system_overrides': {},
                     'user_overrides': overrides}
        return rpc_chart
    @wsme_pecan.wsexpose(wtypes.text, wtypes.text, wtypes.text, wtypes.text)
    def patch(self, name, flag, values):
        """ Update user overrides.
        :param name: chart name
        :param flag: one of "reuse" or "reset", describes how to handle
                     previous user overrides
        :param values: a dict of different types of user override values
        """
        try:
            db_chart = objects.helm_overrides.get_by_name(
                pecan.request.context, name)
            db_values = db_chart.user_overrides
        except exception.HelmOverrideNotFound:
            if name in SYSTEM_CHARTS:
                pecan.request.dbapi.helm_override_create({
                    'name': name,
                    'user_overrides': ''})
                db_chart = objects.helm_overrides.get_by_name(
                    pecan.request.context, name)
            else:
                raise
        db_values = db_chart.user_overrides
        # At this point we have potentially two separate types of overrides
        # specified by the user, values from files and values passed in via
        # --set .  We need to ensure that we call helm using the same
        # mechanisms to ensure the same behaviour.
        cmd = ['helm', 'install', '--dry-run', '--debug']
        if flag == 'reuse':
            values['files'].insert(0, db_values)
        elif flag == 'reset':
            pass
        else:
            raise wsme.exc.ClientSideError(_("Invalid flag: %s must be either "
                                             "'reuse' or 'reset'.") % flag)
        # Now process the newly-passed-in override values
        tmpfiles = []
        for value_file in values['files']:
            # For values passed in from files, write them back out to
            # temporary files.
            tmpfile = tempfile.NamedTemporaryFile(delete=False)
            tmpfile.write(value_file)
            tmpfile.close()
            tmpfiles.append(tmpfile.name)
            cmd.extend(['--values', tmpfile.name])
        for value_set in values['set']:
            cmd.extend(['--set', value_set])
        env = os.environ.copy()
        env['KUBECONFIG'] = '/etc/kubernetes/admin.conf'
        # Make a temporary directory with a fake chart in it
        try:
            tmpdir = tempfile.mkdtemp()
            chartfile = tmpdir + '/Chart.yaml'
            with open(chartfile, 'w') as tmpchart:
                tmpchart.write('name: mychart\napiVersion: v1\n'
                               'version: 0.1.0\n')
            cmd.append(tmpdir)
            # Apply changes by calling out to helm to do values merge
            # using a dummy chart.
            # NOTE: this requires running sysinv-api as root, will fix it
            # to use RPC in a followup patch.
            output = subprocess.check_output(cmd, env=env)
            # Check output for failure
            # Extract the info we want.
            values = output.split('USER-SUPPLIED VALUES:\n')[1].split(
                                  '\nCOMPUTED VALUES:')[0]
        except:
            raise
        finally:
            os.remove(chartfile)
            os.rmdir(tmpdir)
        for tmpfile in tmpfiles:
            os.remove(tmpfile)
        # save chart overrides back to DB
        db_chart.user_overrides = values
        db_chart.save()
        chart = {'name': name, 'user_overrides': values}
        return chart
    @wsme_pecan.wsexpose(None, unicode, status_code=204)
    def delete(self, name):
        """Delete user overrides for a chart
        :param name: chart name.
        """
        try:
            pecan.request.dbapi.helm_override_destroy(name)
        except exception.HelmOverrideNotFound:
            pass
--- a/sysinv/sysinv/sysinv/sysinv/common/exception.py
+++ b/sysinv/sysinv/sysinv/sysinv/common/exception.py
@ -578,6 +578,10 @@ class CertificateAlreadyExists(Conflict):
    message = _("A Certificate with uuid %(uuid)s already exists.")
 class HelmOverrideAlreadyExists(Conflict):
    message = _("A HelmOverride with name %(name)s already exists.")
 class InstanceDeployFailure(Invalid):
    message = _("Failed to deploy instance: %(reason)s")
@ -887,6 +891,10 @@ class CertificateNotFound(NotFound):
    message = _("No certificate with uuid %(uuid)s")
 class HelmOverrideNotFound(NotFound):
    message = _("No helm override with name %(name)s")
 class CertificateTypeNotFound(NotFound):
    message = _("No certificate type of %(certtype)s")
--- a/sysinv/sysinv/sysinv/sysinv/db/sqlalchemy/api.py
+++ b/sysinv/sysinv/sysinv/sysinv/db/sqlalchemy/api.py
@ -7436,3 +7436,53 @@ class Connection(api.Connection):
            except NoResultFound:
                raise exception.CertificateNotFound(uuid)
            query.delete()
    def _helm_override_get(self, name):
        query = model_query(models.HelmOverrides)
        query = query.filter_by(name=name)
        try:
            return query.one()
        except NoResultFound:
            raise exception.HelmOverrideNotFound(name)
    @objects.objectify(objects.helm_overrides)
    def helm_override_create(self, values):
        overrides = models.HelmOverrides()
        overrides.update(values)
        with _session_for_write() as session:
            try:
                session.add(overrides)
                session.flush()
            except db_exc.DBDuplicateEntry:
                LOG.error("Failed to add HelmOverrides %s. "
                          "Already exists with this name" %
                          (values['name']))
                raise exception.HelmOverrideAlreadyExists(name=values['name'])
            return self._helm_override_get(values['name'])
    @objects.objectify(objects.helm_overrides)
    def helm_override_get(self, name):
        return self._helm_override_get(name)
    @objects.objectify(objects.helm_overrides)
    def helm_override_update(self, name, values):
        with _session_for_write() as session:
            query = model_query(models.HelmOverrides, session=session)
            query = query.filter_by(name=name)
            count = query.update(values, synchronize_session='fetch')
            if count == 0:
                raise exception.HelmOverrideNotFound(name)
            return query.one()
    def helm_override_destroy(self, name):
        with _session_for_write() as session:
            query = model_query(models.HelmOverrides, session=session)
            query = query.filter_by(name=name)
            try:
                query.one()
            except NoResultFound:
                raise exception.HelmOverrideNotFound(name)
            query.delete()
--- a/sysinv/sysinv/sysinv/sysinv/db/sqlalchemy/migrate_repo/versions/073_helm_overrides.py
+++ b/sysinv/sysinv/sysinv/sysinv/db/sqlalchemy/migrate_repo/versions/073_helm_overrides.py
@ -0,0 +1,51 @@
 # vim: tabstop=4 shiftwidth=4 softtabstop=4
 #
 # Copyright (c) 2018 Wind River Systems, Inc.
 #
 # SPDX-License-Identifier: Apache-2.0
 #
 from sqlalchemy import DateTime, String, Text
 from sqlalchemy import Column, MetaData, Table
 from sysinv.openstack.common import log
 ENGINE = 'InnoDB'
 CHARSET = 'utf8'
 LOG = log.getLogger(__name__)
 def upgrade(migrate_engine):
    """
       This database upgrade creates a new table for storing helm chart
       user-specified override values.
    """
    meta = MetaData()
    meta.bind = migrate_engine
    # Define and create the helm_overrides table.
    helm_overrides = Table(
        'helm_overrides',
        meta,
        Column('created_at', DateTime),
        Column('updated_at', DateTime),
        Column('deleted_at', DateTime),
        Column('name', String(255), unique=True, index=True),
        Column('user_overrides', Text, nullable=True),
        mysql_engine=ENGINE,
        mysql_charset=CHARSET,
    )
    helm_overrides.create()
 def downgrade(migrate_engine):
    meta = MetaData()
    meta.bind = migrate_engine
    # As per other openstack components, downgrade is
    # unsupported in this release.
    raise NotImplementedError('SysInv database downgrade is unsupported.')
--- a/sysinv/sysinv/sysinv/sysinv/db/sqlalchemy/models.py
+++ b/sysinv/sysinv/sysinv/sysinv/db/sqlalchemy/models.py
@ -1635,3 +1635,10 @@ class certificate(Base):
    start_date = Column(DateTime(timezone=False))
    expiry_date = Column(DateTime(timezone=False))
    capabilities = Column(JSONEncodedDict)
 class HelmOverrides(Base):
    __tablename__ = 'helm_overrides'
    name = Column(String(255), primary_key=True, unique=True)
    user_overrides = Column(Text, nullable=True)
--- a/sysinv/sysinv/sysinv/sysinv/objects/init.py
+++ b/sysinv/sysinv/sysinv/sysinv/objects/init.py
@ -36,6 +36,7 @@ from sysinv.objects import drbdconfig
 from sysinv.objects import port_ethernet
 from sysinv.objects import event_log
 from sysinv.objects import event_suppression
 from sysinv.objects import helm_overrides
 from sysinv.objects import host
 from sysinv.objects import host_upgrade
 from sysinv.objects import network_infra
@ -179,6 +180,7 @@ storage_file = storage_file.StorageFile
 storage_external = storage_external.StorageExternal
 storage_tier = storage_tier.StorageTier
 storage_ceph_external = storage_ceph_external.StorageCephExternal
 helm_overrides = helm_overrides.HelmOverrides
 __all__ = (system,
           cluster,
@ -245,6 +247,7 @@ __all__ = (system,
           storage_external,
           storage_tier,
           storage_ceph_external,
           helm_overrides,
           # alias objects for RPC compatibility
           ihost,
           ilvg,
--- a/sysinv/sysinv/sysinv/sysinv/objects/helm_overrides.py
+++ b/sysinv/sysinv/sysinv/sysinv/objects/helm_overrides.py
@ -0,0 +1,29 @@
 # vim: tabstop=4 shiftwidth=4 softtabstop=4
 # coding=utf-8
 #
 # Copyright (c) 2018 Wind River Systems, Inc.
 #
 # SPDX-License-Identifier: Apache-2.0
 #
 from sysinv.db import api as db_api
 from sysinv.objects import base
 from sysinv.objects import utils
 class HelmOverrides(base.SysinvObject):
    # VERSION 1.0: Initial version
    VERSION = '1.0'
    dbapi = db_api.get_instance()
    fields = {'name': utils.str_or_none,
              'user_overrides': utils.str_or_none,
              }
    @base.remotable_classmethod
    def get_by_name(cls, context, name):
        return cls.dbapi.helm_override_get(name)
    def save_changes(self, context, updates):
        self.dbapi.helm_override_update(self.name, updates)