BUILD-87: Add Build Volumes API with validation by coreydaley · Pull Request #208 · openshift/openshift-apiserver

coreydaley · 2021-05-11T16:55:15Z

https://issues.redhat.com/browse/BUILD-87

coreydaley · 2021-05-11T16:55:28Z

/assign @adambkaplan @gabemontero

coreydaley · 2021-05-13T19:51:52Z

/retest

pkg/build/apis/build/v1/zz_generated.conversion.go

coreydaley · 2021-05-13T20:49:11Z

/retest

pkg/build/apis/build/types.go

gabemontero · 2021-05-14T14:11:13Z

Did you run make update @coreydaley and store those changes in a separate commit? It was hard for me to tell with what you currently have here.

If you have not, you'll need that to get your ci/prow/verify runs clean.

adambkaplan · 2021-05-18T15:38:08Z

/hold

Given the complexity of the feature and the time remaining before 4.8 reaches "final freeze" period, we are going to hold this until master opens for 4.9

coreydaley · 2021-05-21T13:18:57Z

/retest

coreydaley · 2021-05-24T16:54:12Z

/retest

pkg/build/apis/build/v1/zz_generated.conversion.go

coreydaley · 2021-05-26T20:14:15Z

/retest

coreydaley · 2021-05-27T13:34:54Z

/retest

coreydaley · 2021-05-27T18:10:27Z

/retest

coreydaley · 2021-05-28T18:05:07Z

/retest

coreydaley · 2021-06-01T13:54:54Z

/retest

adambkaplan · 2021-06-01T19:18:37Z

@coreydaley looks like the upgrade tests are failing for unrelated reasons. I think it is time to start getting QE to test this new feature, and to write the CI tests that we will add to origin.

@xiuwang for testing this feature, we will want to modify the existing build tests for Secret and ConfigMap build inputs to use the new volumes API. BuildConfig specs will look like this:

spec:
  source:
    git: ...
  strategy:
    sourceStrategy:
      ...
      volumes:
        - name: some-secret
          source:
            secret:
              secretName: my-secret
          mounts:
             - destinationPath: /var/run/secret/some-secret
               readOnly: true

PRs needed to test this feature:

adambkaplan

/approve

Marking approve to indicate we are ready for QE to begin their verification.

coreydaley · 2021-06-02T14:23:09Z

/retest

adambkaplan · 2021-06-02T15:44:56Z

Given the first test by @xiuwang, we need to add validation on the volume name. It needs to have a valid DNS label.

Validations should be added here (using a common method):

Upstream k8s/apimachinery has a method which lets us validate the name is an appropriate DNS label (required by kube for volumes): https://github.com/kubernetes/apimachinery/blob/master/pkg/util/validation/validation.go#L187

coreydaley · 2021-06-02T17:02:56Z

@adambkaplan Added validation and tests in current push. ptal

coreydaley · 2021-06-02T17:12:58Z

/retest

coreydaley · 2021-06-02T19:03:12Z

/retest

coreydaley · 2021-06-02T23:24:27Z

/retest

xiuwang · 2021-06-11T13:26:05Z

I have test the feature following test cases https://url.corp.redhat.com/buildvolumes, no critial issue found.

/label qe-approved

coreydaley · 2021-06-25T19:54:00Z

@sttts I think we are ready for an approval, the e2e-aws-upgrade test failures are unrelated and being discussed on slack.

pkg/build/apis/build/validation/validation.go

sttts · 2021-06-25T20:27:04Z

A couple of validation formalities are wrong.

coreydaley · 2021-06-25T20:29:45Z

@sttts All comments have been addressed, thanks for the review

pkg/build/apis/build/validation/validation.go

- adds validations for new api fields - adds tests for new validations

coreydaley · 2021-06-26T00:56:38Z

/retest

sttts · 2021-06-26T06:29:43Z

pkg/build/apis/build/validation/validation.go

+		allErrs = append(allErrs, field.Invalid(fldPath.Child("source"), volume.Source, "only one volume source is allowed"))
+	}
+	if len(foundVolumeSources) != 0 && foundVolumeSources[0] != string(volume.Source.Type) {
+		allErrs = append(allErrs, field.Invalid(fldPath.Child("source").Child("type"), volume.Source.Type, "source type and specified type must match"))


this and the one above is still not of shape must ..... Follow-up is fine.

sttts · 2021-06-26T06:30:45Z

/retest
/lgtm
/approve

openshift-ci · 2021-06-26T06:30:56Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: adambkaplan, coreydaley, gabemontero, sttts

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

~~OWNERS~~ [sttts]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

openshift-bot · 2021-06-26T13:53:13Z

/retest