feat(bucket|bucketaccess): added EventRecorder

shanduur · shanduur · commit adeb010edec8 · 2024-02-13T21:35:35.000+01:00
diff --git a/pkg/bucket/bucket_controller.go b/pkg/bucket/bucket_controller.go
@@ -20,9 +20,13 @@ import (
 	"fmt"
 	"strings"
 
+	v1 "k8s.io/api/core/v1"
+	kubeerrors "k8s.io/apimachinery/pkg/api/errors"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/runtime"
 	utilversion "k8s.io/apimachinery/pkg/util/version"
 	kube "k8s.io/client-go/kubernetes"
+	"k8s.io/client-go/tools/record"
 	"k8s.io/klog/v2"
 
 	"sigs.k8s.io/container-object-storage-interface-api/apis/objectstorage/v1alpha1"
@@ -42,6 +46,8 @@ type BucketListener struct {
 	provisionerClient cosi.ProvisionerClient
 	driverName        string
 
+	eventRecorder record.EventRecorder
+
 	kubeClient   kube.Interface
 	bucketClient buckets.Interface
 	kubeVersion  *utilversion.Version
@@ -58,9 +64,16 @@ func NewBucketListener(driverName string, client cosi.ProvisionerClient) *Bucket
 }
 
 // Add attempts to create a bucket for a given bucket. This function must be idempotent
+//
+// Recorded events
+//
+//	MissingBucketClassName - BucketClassName was not defined for the inputBucket
+//	InvalidBucketClass - BucketClass provided in the BucketClaim does not exist
+//
 // Return values
-//    nil - Bucket successfully provisioned
-//    non-nil err - Internal error                                [requeue'd with exponential backoff]
+//
+//	nil - Bucket successfully provisioned
+//	non-nil err - Internal error                                [requeue'd with exponential backoff]
 func (b *BucketListener) Add(ctx context.Context, inputBucket *v1alpha1.Bucket) error {
 	bucket := inputBucket.DeepCopy()
 
@@ -71,7 +84,7 @@ func (b *BucketListener) Add(ctx context.Context, inputBucket *v1alpha1.Bucket)
 
 	if bucket.Spec.BucketClassName == "" {
 		err = errors.New(fmt.Sprintf("BucketClassName not defined for bucket %s", bucket.ObjectMeta.Name))
-		klog.V(3).ErrorS(err, "BucketClassName not defined")
+		b.recordEvent(inputBucket, v1.EventTypeWarning, "MissingBucketClassName", "BucketClassName was not defined in the Bucket")
 		return err
 	}
 
@@ -100,15 +113,18 @@ func (b *BucketListener) Add(ctx context.Context, inputBucket *v1alpha1.Bucket)
 		bucketID = bucket.Spec.ExistingBucketID
 		if bucket.Spec.Parameters == nil {
 			bucketClass, err := b.bucketClasses().Get(ctx, bucket.Spec.BucketClassName, metav1.GetOptions{})
-			if err != nil {
+			if kubeerrors.IsNotFound(err) {
+				b.recordEvent(inputBucket, v1.EventTypeWarning, "InvalidBucketClass", "BucketClass provided in the BucketClaim does not exist")
+				return err
+			} else if err != nil {
 				klog.V(3).ErrorS(err, "Error fetching bucketClass",
 					"bucketClass", bucket.Spec.BucketClassName,
 					"bucket", bucket.ObjectMeta.Name)
 				return err
 			}
 
 			if bucketClass.Parameters != nil {
-				var param map[string]string
+				param := make(map[string]string)
 				for k, v := range bucketClass.Parameters {
 					param[k] = v
 				}
@@ -125,11 +141,9 @@ func (b *BucketListener) Add(ctx context.Context, inputBucket *v1alpha1.Bucket)
 		rsp, err := b.provisionerClient.DriverCreateBucket(ctx, req)
 		if err != nil {
 			if status.Code(err) != codes.AlreadyExists {
-				klog.V(3).ErrorS(err, "Driver failed to create bucket",
-					"bucket", bucket.ObjectMeta.Name)
+				b.recordEvent(inputBucket, v1.EventTypeWarning, status.Code(err).String(), "Failed to create bucket")
 				return errors.Wrap(err, "Failed to create bucket")
 			}
-
 		}
 
 		if rsp == nil {
@@ -201,8 +215,9 @@ func (b *BucketListener) Add(ctx context.Context, inputBucket *v1alpha1.Bucket)
 
 // Update attempts to reconcile changes to a given bucket. This function must be idempotent
 // Return values
-//    nil - Bucket successfully reconciled
-//    non-nil err - Internal error                                [requeue'd with exponential backoff]
+//
+//	nil - Bucket successfully reconciled
+//	non-nil err - Internal error                                [requeue'd with exponential backoff]
 func (b *BucketListener) Update(ctx context.Context, old, new *v1alpha1.Bucket) error {
 	klog.V(3).InfoS("Update Bucket",
 		"name", old.Name)
@@ -263,8 +278,9 @@ func (b *BucketListener) Update(ctx context.Context, old, new *v1alpha1.Bucket)
 // Delete function is called when the bucket was not able to add finalizers while creation.
 // Hence we will take care of removing the BucketClaim finalizer before deleting the Bucket object.
 // Return values
-//    nil - Bucket successfully deleted
-//    non-nil err - Internal error                                [requeue'd with exponential backoff]
+//
+//	nil - Bucket successfully deleted
+//	non-nil err - Internal error                                [requeue'd with exponential backoff]
 func (b *BucketListener) Delete(ctx context.Context, inputBucket *v1alpha1.Bucket) error {
 	klog.V(3).InfoS("Delete Bucket",
 		"name", inputBucket.ObjectMeta.Name,
@@ -314,6 +330,11 @@ func (b *BucketListener) InitializeBucketClient(bc buckets.Interface) {
 	b.bucketClient = bc
 }
 
+// InitializeEventRecorder initializes the event recorder
+func (b *BucketListener) InitializeEventRecorder(er record.EventRecorder) {
+	b.eventRecorder = er
+}
+
 func (b *BucketListener) deleteBucketOp(ctx context.Context, bucket *v1alpha1.Bucket) error {
 	if !strings.EqualFold(bucket.Spec.DriverName, b.driverName) {
 		klog.V(5).InfoS("Skipping bucket for provisioner",
@@ -333,9 +354,7 @@ func (b *BucketListener) deleteBucketOp(ctx context.Context, bucket *v1alpha1.Bu
 
 		if _, err := b.provisionerClient.DriverDeleteBucket(ctx, req); err != nil {
 			if status.Code(err) != codes.NotFound {
-				klog.V(3).ErrorS(err, "Failed to delete bucket",
-					"bucket", bucket.ObjectMeta.Name,
-				)
+				b.recordEvent(bucket, v1.EventTypeWarning, status.Code(err).String(), "Failed to delete bucket")
 				return err
 			}
 		}
@@ -396,3 +415,11 @@ func (b *BucketListener) bucketAccesses(namespace string) bucketapi.BucketAccess
 	}
 	panic("uninitialized listener")
 }
+
+// recordEvent during the processing of the objects
+func (b *BucketListener) recordEvent(subject runtime.Object, eventtype, reason, message string) {
+	if b.eventRecorder == nil {
+		return
+	}
+	b.eventRecorder.Event(subject, eventtype, reason, message)
+}
diff --git a/pkg/bucket/bucket_controller_test.go b/pkg/bucket/bucket_controller_test.go
@@ -31,6 +31,7 @@ import (
 	"k8s.io/apimachinery/pkg/version"
 	fakediscovery "k8s.io/client-go/discovery/fake"
 	fakekubeclientset "k8s.io/client-go/kubernetes/fake"
+	"k8s.io/client-go/tools/record"
 
 	"google.golang.org/grpc"
 )
@@ -71,6 +72,17 @@ func TestInitializeBucketClient(t *testing.T) {
 	}
 }
 
+func TestInitializeEventRecorder(t *testing.T) {
+	eventRecorder := record.NewFakeRecorder(1)
+
+	bl := BucketListener{}
+	bl.InitializeEventRecorder(eventRecorder)
+
+	if bl.eventRecorder == nil {
+		t.Errorf("BucketClient not initialized, expected not nil")
+	}
+}
+
 func TestAddWrongProvisioner(t *testing.T) {
 	driver := "driver1"
 	mpc := struct{ fakespec.FakeProvisionerClient }{}
diff --git a/pkg/bucketaccess/bucketaccess_controller.go b/pkg/bucketaccess/bucketaccess_controller.go
@@ -22,12 +22,14 @@ import (
 	"strings"
 	"time"
 
-	corev1 "k8s.io/api/core/v1"
+	v1 "k8s.io/api/core/v1"
 	kubeerrors "k8s.io/apimachinery/pkg/api/errors"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/runtime"
 	utilversion "k8s.io/apimachinery/pkg/util/version"
 	kube "k8s.io/client-go/kubernetes"
 	kubecorev1 "k8s.io/client-go/kubernetes/typed/core/v1"
+	"k8s.io/client-go/tools/record"
 	"k8s.io/klog/v2"
 
 	cosiapi "sigs.k8s.io/container-object-storage-interface-api/apis"
@@ -48,6 +50,8 @@ type BucketAccessListener struct {
 	provisionerClient cosi.ProvisionerClient
 	driverName        string
 
+	eventRecorder record.EventRecorder
+
 	kubeClient   kube.Interface
 	bucketClient buckets.Interface
 	kubeVersion  *utilversion.Version
@@ -62,9 +66,17 @@ func NewBucketAccessListener(driverName string, client cosi.ProvisionerClient) (
 }
 
 // Add attempts to provision credentials to access a given bucket. This function must be idempotent
+//
+// Recorded events
+//
+//	BucketNotReady - BucketAccess can't be granted to bucket not in Ready state and without a bucketID
+//	MissingServiceAccountName - Must define ServiceAccountName when AuthenticationType is IAM
+//	InvalidBucketAccessClass - BucketAccessClass provided in the BucketAccess does not exist
+//
 // Return values
-//    nil - BucketAccess successfully granted
-//    non-nil err - Internal error                                [requeue'd with exponential backoff]
+//
+//	nil - BucketAccess successfully granted
+//	non-nil err - Internal error                                [requeue'd with exponential backoff]
 func (bal *BucketAccessListener) Add(ctx context.Context, inputBucketAccess *v1alpha1.BucketAccess) error {
 	bucketAccess := inputBucketAccess.DeepCopy()
 
@@ -91,7 +103,10 @@ func (bal *BucketAccessListener) Add(ctx context.Context, inputBucketAccess *v1a
 	}
 
 	bucketAccessClass, err := bal.bucketAccessClasses().Get(ctx, bucketAccessClassName, metav1.GetOptions{})
-	if err != nil {
+	if kubeerrors.IsNotFound(err) {
+		bal.recordEvent(inputBucketAccess, v1.EventTypeWarning, "InvalidBucketAccessClass", "BucketAccessClass provided in the BucketAccess does not exist")
+		return err
+	} else if err != nil {
 		klog.ErrorS(err, "Failed to fetch bucketAccessClass", "bucketAccessClass", bucketAccessClassName)
 		return errors.Wrap(err, "Failed to fetch BucketAccessClass")
 	}
@@ -129,6 +144,7 @@ func (bal *BucketAccessListener) Add(ctx context.Context, inputBucketAccess *v1a
 	}
 
 	if authType == cosi.AuthenticationType_IAM && bucketAccess.Spec.ServiceAccountName == "" {
+		bal.recordEvent(inputBucketAccess, v1.EventTypeWarning, "MissingServiceAccountName", "Must define ServiceAccountName when AuthenticationType is IAM")
 		return errors.New("Must define ServiceAccountName when AuthenticationType is IAM")
 	}
 
@@ -146,6 +162,9 @@ func (bal *BucketAccessListener) Add(ctx context.Context, inputBucketAccess *v1a
 		return errors.Wrap(err, "Failed to fetch bucket")
 	}
 
+	if bucket.Status.BucketID == "" {
+		bal.recordEvent(inputBucketAccess, v1.EventTypeWarning, "BucketNotReady", "BucketAccess can't be granted to bucket not in Ready state and without a bucketID")
+	}
 	if bucket.Status.BucketReady != true || bucket.Status.BucketID == "" {
 		return errors.New("BucketAccess can't be granted to bucket not in Ready state and without a bucketID")
 	}
@@ -163,11 +182,7 @@ func (bal *BucketAccessListener) Add(ctx context.Context, inputBucketAccess *v1a
 	rsp, err := bal.provisionerClient.DriverGrantBucketAccess(ctx, req)
 	if err != nil {
 		if status.Code(err) != codes.AlreadyExists {
-			klog.V(3).ErrorS(err,
-				"Failed to grant access",
-				"bucketAccess", bucketAccess.ObjectMeta.Name,
-				"bucketClaim", bucketClaimName,
-			)
+			bal.recordEvent(inputBucketAccess, v1.EventTypeWarning, status.Code(err).String(), "Failed to grant access")
 			return errors.Wrap(err, "failed to grant access")
 		}
 
@@ -237,7 +252,7 @@ func (bal *BucketAccessListener) Add(ctx context.Context, inputBucketAccess *v1a
 			return errors.Wrap(err, "failed to fetch secrets")
 		}
 
-		if _, err := bal.secrets(namespace).Create(ctx, &corev1.Secret{
+		if _, err := bal.secrets(namespace).Create(ctx, &v1.Secret{
 			ObjectMeta: metav1.ObjectMeta{
 				Name:       secretCredName,
 				Namespace:  namespace,
@@ -246,7 +261,7 @@ func (bal *BucketAccessListener) Add(ctx context.Context, inputBucketAccess *v1a
 			StringData: map[string]string{
 				"BucketInfo": string(stringData),
 			},
-			Type: corev1.SecretTypeOpaque,
+			Type: v1.SecretTypeOpaque,
 		}, metav1.CreateOptions{}); err != nil {
 			if !kubeerrors.IsAlreadyExists(err) {
 				klog.V(3).ErrorS(err,
@@ -291,8 +306,9 @@ func (bal *BucketAccessListener) Add(ctx context.Context, inputBucketAccess *v1a
 
 // Update attempts to reconcile changes to a given bucketAccess. This function must be idempotent
 // Return values
-//    nil - BucketAccess successfully reconciled
-//    non-nil err - Internal error                                [requeue'd with exponential backoff]
+//
+//	nil - BucketAccess successfully reconciled
+//	non-nil err - Internal error                                [requeue'd with exponential backoff]
 func (bal *BucketAccessListener) Update(ctx context.Context, old, new *v1alpha1.BucketAccess) error {
 	klog.V(3).InfoS("Update BucketAccess",
 		"name", old.ObjectMeta.Name)
@@ -312,8 +328,9 @@ func (bal *BucketAccessListener) Update(ctx context.Context, old, new *v1alpha1.
 
 // Delete attemps to delete a bucketAccess. This function must be idempotent
 // Return values
-//    nil - BucketAccess successfully deleted
-//    non-nil err - Internal error                                [requeue'd with exponential backoff]
+//
+//	nil - BucketAccess successfully deleted
+//	non-nil err - Internal error                                [requeue'd with exponential backoff]
 func (bal *BucketAccessListener) Delete(ctx context.Context, bucketAccess *v1alpha1.BucketAccess) error {
 	klog.V(3).InfoS("Delete BucketAccess",
 		"name", bucketAccess.ObjectMeta.Name,
@@ -346,11 +363,7 @@ func (bal *BucketAccessListener) deleteBucketAccessOp(ctx context.Context, bucke
 
 	// First we revoke the bucketAccess from the driver
 	if _, err := bal.provisionerClient.DriverRevokeBucketAccess(ctx, req); err != nil {
-		klog.V(3).ErrorS(err,
-			"Failed to revoke bucket access",
-			"bucketAccess", bucketAccess.ObjectMeta.Name,
-			"bucketClaim", bucketClaimName,
-		)
+		bal.recordEvent(bucketAccess, v1.EventTypeWarning, status.Code(err).String(), "Failed to revoke bucket access")
 		return errors.Wrap(err, "failed to revoke access")
 	}
 
@@ -446,3 +459,16 @@ func (bal *BucketAccessListener) InitializeKubeClient(k kube.Interface) {
 func (bal *BucketAccessListener) InitializeBucketClient(bc buckets.Interface) {
 	bal.bucketClient = bc
 }
+
+// InitializeEventRecorder initializes the event recorder
+func (bal *BucketAccessListener) InitializeEventRecorder(er record.EventRecorder) {
+	bal.eventRecorder = er
+}
+
+// recordEvent during the processing of the objects
+func (bal *BucketAccessListener) recordEvent(subject runtime.Object, eventtype, reason, message string) {
+	if bal.eventRecorder == nil {
+		return
+	}
+	bal.eventRecorder.Event(subject, eventtype, reason, message)
+}
diff --git a/pkg/bucketaccess/bucketaccess_controller_test.go b/pkg/bucketaccess/bucketaccess_controller_test.go
@@ -28,6 +28,7 @@ import (
 	"k8s.io/apimachinery/pkg/version"
 	fakediscovery "k8s.io/client-go/discovery/fake"
 	fakekubeclientset "k8s.io/client-go/kubernetes/fake"
+	"k8s.io/client-go/tools/record"
 
 	"sigs.k8s.io/container-object-storage-interface-api/apis/objectstorage/v1alpha1"
 	fakebucketclientset "sigs.k8s.io/container-object-storage-interface-api/client/clientset/versioned/fake"
@@ -71,6 +72,17 @@ func TestInitializeBucketClient(t *testing.T) {
 	}
 }
 
+func TestInitializeEventRecorder(t *testing.T) {
+	eventRecorder := record.NewFakeRecorder(1)
+
+	bal := BucketAccessListener{}
+	bal.InitializeEventRecorder(eventRecorder)
+
+	if bal.eventRecorder == nil {
+		t.Errorf("BucketClient not initialized, expected not nil")
+	}
+}
+
 func TestAddWrongProvisioner(t *testing.T) {
 	driver := "driver1"
 	bucketAccessClassName := "bucketAccessClass1"
