Skip to content

Bug 2090680: RetrievePayload: Improve timeouts and cover behavior with tests #896

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
openshift-merge-robot merged 4 commits into from
Feb 18, 2023
Merged

Bug 2090680: RetrievePayload: Improve timeouts and cover behavior with tests #896

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
0a121cc
RetrievePayload: improve testability and add tests
petr-muller Feb 3, 2023
da31bdf
Bug 2090680: pkg/cvo/updatepayload.go: timeout payload retrieval
jottofar Feb 3, 2023
d421ded
RetrievePayload: Improve timeouts for corner cases
petr-muller Feb 3, 2023
ac127d3
RetrievePayload: improve godocs and refactor (address review)
petr-muller Feb 14, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
72 changes: 48 additions & 24 deletions pkg/cvo/updatepayload.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -38,21 +38,28 @@ func (optr *Operator) defaultPayloadDir() string {

func (optr *Operator) defaultPayloadRetriever() PayloadRetriever {
return &payloadRetriever{
kubeClient: optr.kubeClient,
operatorName: optr.name,
releaseImage: optr.release.Image,
namespace: optr.namespace,
nodeName: optr.nodename,
payloadDir: optr.defaultPayloadDir(),
workingDir: targetUpdatePayloadsDir,
verifier: optr.verifier,
kubeClient: optr.kubeClient,
operatorName: optr.name,
releaseImage: optr.release.Image,
namespace: optr.namespace,
nodeName: optr.nodename,
payloadDir: optr.defaultPayloadDir(),
workingDir: targetUpdatePayloadsDir,
verifier: optr.verifier,
retrieveTimeout: 4 * time.Minute,
}
}

const (
targetUpdatePayloadsDir = "/etc/cvo/updatepayloads"
)

// downloadFunc downloads the requested update and returns either a path on the local filesystem
// containing extracted manifests or an error
// The type exists so that tests for payloadRetriever.RetrievePayload can mock this functionality
// by setting payloadRetriever.downloader.
type downloadFunc func(context.Context, configv1.Update) (string, error)

type payloadRetriever struct {
// releaseImage and payloadDir are the default payload identifiers - updates that point
// to releaseImage will always use the contents of payloadDir
Expand All @@ -68,8 +75,22 @@ type payloadRetriever struct {

// verifier guards against invalid remote data being accessed
verifier verify.Interface

// downloader is called to download the requested update to local filesystem. It should only be
// set to non-nil value in tests. When this is nil, payloadRetriever.targetUpdatePayloadDir
// is called as a downloader.
downloader downloadFunc

// retrieveTimeout limits the time spent in payloadRetriever.RetrievePayload. This timeout is only
// applied when the context passed into that method is unbounded; otherwise the method respects
// the deadline set in the input context.
retrieveTimeout time.Duration
}

// RetrievePayload verifies, downloads and extracts to local filesystem the payload image specified
// by update. If the input context has a deadline, it is respected, otherwise r.retrieveTimeout
// applies. When update.Force is true, the verification is still performed, but the method proceeds
// even when the image cannot be verified successfully.
func (r *payloadRetriever) RetrievePayload(ctx context.Context, update configv1.Update) (PayloadInfo, error) {
if r.releaseImage == update.Image {
return PayloadInfo{
Expand All @@ -82,28 +103,28 @@ func (r *payloadRetriever) RetrievePayload(ctx context.Context, update configv1.
return PayloadInfo{}, fmt.Errorf("no payload image has been specified and the contents of the payload cannot be retrieved")
}

var info PayloadInfo

// verify the provided payload
var releaseDigest string
if index := strings.LastIndex(update.Image, "@"); index != -1 {
releaseDigest = update.Image[index+1:]
}
verifyCtx := ctx

// if 'force' specified, ensure call to verify payload signature times out well before parent context
// to allow time to perform forced update
if update.Force {
timeout := time.Minute * 2
if deadline, deadlineSet := ctx.Deadline(); deadlineSet {
timeout = time.Until(deadline) / 2
}
klog.V(2).Infof("Forced update so reducing payload signature verification timeout to %s", timeout)
var cancel context.CancelFunc
verifyCtx, cancel = context.WithTimeout(ctx, timeout)
defer cancel()

var downloadCtx context.Context
downloadDeadline, ok := ctx.Deadline()
if ok {
downloadCtx = ctx
} else {
downloadDeadline = time.Now().Add(r.retrieveTimeout)
var downloadCtxCancel context.CancelFunc
downloadCtx, downloadCtxCancel = context.WithDeadline(ctx, downloadDeadline)
defer downloadCtxCancel()
}

verifyTimeout := time.Until(downloadDeadline) / 2
verifyCtx, verifyCtxCancel := context.WithTimeout(ctx, verifyTimeout)
defer verifyCtxCancel()

var info PayloadInfo
if err := r.verifier.Verify(verifyCtx, releaseDigest); err != nil {
vErr := &payload.UpdateError{
Reason: "ImageVerificationFailed",
Expand All @@ -120,9 +141,12 @@ func (r *payloadRetriever) RetrievePayload(ctx context.Context, update configv1.
info.Verified = true
}

if r.downloader == nil {
r.downloader = r.targetUpdatePayloadDir
}
// download the payload to the directory
var err error
info.Directory, err = r.targetUpdatePayloadDir(ctx, update)
info.Directory, err = r.downloader(downloadCtx, update)
if err != nil {
return PayloadInfo{}, &payload.UpdateError{
Reason: "UpdatePayloadRetrievalFailed",
Expand Down
Loading