[reconfigurator] Planner should wait for all MGS updates before proceeding to zones

dev-tools/reconfigurator-cli/tests/output/cmds-add-sled-no-disks-stdout

@@ -37,7 +37,7 @@ generated inventory collection eb0796d5-ab8a-4f7b-a884-b4aeacb8ab51 from configu
 > # we added has no disks.
 > blueprint-plan dbcbd3d6-41ff-48ae-ac0b-1becc9b2fd21 eb0796d5-ab8a-4f7b-a884-b4aeacb8ab51
 INFO skipping noop image source check for all sleds, reason: no target release is currently set
-WARN cannot issue more MGS-driven updates (no current artifacts)
+INFO system in initial release state no update artifacts available (no update necessary)
 generated blueprint 8da82a8e-bf97-4fbd-8ddd-9f6462732cf1 based on parent blueprint dbcbd3d6-41ff-48ae-ac0b-1becc9b2fd21
 planning report for blueprint 8da82a8e-bf97-4fbd-8ddd-9f6462732cf1:
 * no zpools in service for NTP zones on sleds: 00320471-945d-413c-85e7-03e091a70b3c

dev-tools/reconfigurator-cli/tests/output/cmds-example-stdout

@@ -599,7 +599,7 @@ T ENA ID                                   PARENT
 
 > blueprint-plan ade5749d-bdf3-4fab-a8ae-00bea01b3a5a
 INFO skipping noop image source check for all sleds, reason: no target release is currently set
-WARN cannot issue more MGS-driven updates (no current artifacts)
+INFO system in initial release state no update artifacts available (no update necessary)
 generated blueprint 86db3308-f817-4626-8838-4085949a6a41 based on parent blueprint ade5749d-bdf3-4fab-a8ae-00bea01b3a5a
 empty planning report for blueprint 86db3308-f817-4626-8838-4085949a6a41.
 
@@ -1837,7 +1837,7 @@ INTERNAL DNS STATUS
 > # sled to be expunged.
 > blueprint-plan latest
 INFO skipping noop image source check for all sleds, reason: no target release is currently set
-WARN cannot issue more MGS-driven updates (no current artifacts)
+INFO system in initial release state no update artifacts available (no update necessary)
 generated blueprint 86db3308-f817-4626-8838-4085949a6a41 based on parent blueprint ade5749d-bdf3-4fab-a8ae-00bea01b3a5a
 empty planning report for blueprint 86db3308-f817-4626-8838-4085949a6a41.
 

dev-tools/reconfigurator-cli/tests/output/cmds-expunge-newly-added-external-dns-stdout

@@ -840,7 +840,7 @@ empty planning report for blueprint 366b0b68-d80e-4bc1-abd3-dc69837847e0.
 > # blueprint-plan will place a new external DNS zone, diff DNS to see the new zone has `ns<N>` and NS records.
 > blueprint-plan 366b0b68-d80e-4bc1-abd3-dc69837847e0
 INFO skipping noop image source check for all sleds, reason: no target release is currently set
-WARN cannot issue more MGS-driven updates (no current artifacts)
+INFO system in initial release state no update artifacts available (no update necessary)
 generated blueprint 9c998c1d-1a7b-440a-ae0c-40f781dea6e2 based on parent blueprint 366b0b68-d80e-4bc1-abd3-dc69837847e0
 planning report for blueprint 9c998c1d-1a7b-440a-ae0c-40f781dea6e2:
 * discretionary zones placed:

dev-tools/reconfigurator-cli/tests/output/cmds-expunge-newly-added-internal-dns-stdout

@@ -648,7 +648,7 @@ external DNS:
 > # Planning a new blueprint will now replace the expunged zone, with new records for its replacement.
 > blueprint-plan 58d5e830-0884-47d8-a7cd-b2b3751adeb4
 INFO skipping noop image source check for all sleds, reason: no target release is currently set
-WARN cannot issue more MGS-driven updates (no current artifacts)
+INFO system in initial release state no update artifacts available (no update necessary)
 generated blueprint af934083-59b5-4bf6-8966-6fb5292c29e1 based on parent blueprint 58d5e830-0884-47d8-a7cd-b2b3751adeb4
 planning report for blueprint af934083-59b5-4bf6-8966-6fb5292c29e1:
 * discretionary zones placed:

dev-tools/reconfigurator-cli/tests/output/cmds-mupdate-update-flow-stdout

@@ -1699,7 +1699,7 @@ planning report for blueprint 8f2d1f39-7c88-4701-aa43-56bf281b28c1:
 * skipping noop zone image source check on sled d81c6a84-79b8-4958-ae41-ea46c9b19763: all 6 zones are already from artifacts
 * 1 pending MGS update:
   * model0:serial0: RotBootloader(PendingMgsUpdateRotBootloaderDetails { expected_stage0_version: ArtifactVersion("0.0.1"), expected_stage0_next_version: NoValidVersion })
-* zone updates waiting on pending MGS updates (RoT / SP / Host OS / etc.)
+* zone updates waiting on pending MGS updates (RoT bootloader / RoT / SP / Host OS)
 
 
 > blueprint-show latest
@@ -1879,7 +1879,7 @@ planning report for blueprint 8f2d1f39-7c88-4701-aa43-56bf281b28c1:
 * skipping noop zone image source check on sled d81c6a84-79b8-4958-ae41-ea46c9b19763: all 6 zones are already from artifacts
 * 1 pending MGS update:
   * model0:serial0: RotBootloader(PendingMgsUpdateRotBootloaderDetails { expected_stage0_version: ArtifactVersion("0.0.1"), expected_stage0_next_version: NoValidVersion })
-* zone updates waiting on pending MGS updates (RoT / SP / Host OS / etc.)
+* zone updates waiting on pending MGS updates (RoT bootloader / RoT / SP / Host OS)
 
 
 

nexus/reconfigurator/planning/src/mgs_updates/host_phase_1.rs

@@ -12,6 +12,7 @@ use nexus_types::deployment::BlueprintHostPhase2DesiredContents;
 use nexus_types::deployment::PendingMgsUpdate;
 use nexus_types::deployment::PendingMgsUpdateDetails;
 use nexus_types::deployment::PendingMgsUpdateHostPhase1Details;
+use nexus_types::deployment::planning_report::FailedMgsUpdateReason;
 use nexus_types::inventory::BaseboardId;
 use nexus_types::inventory::Collection;
 use omicron_common::api::external::TufArtifactMeta;
@@ -32,7 +33,7 @@ use tufaceous_artifact::ArtifactKind;
 ///
 /// This is generated by the planning process whenever it also generates host
 /// phase 1 updates.
-#[derive(Debug, PartialEq, Eq)]
+#[derive(Debug, Clone, PartialEq, Eq)]
 pub(crate) struct PendingHostPhase2Changes {
     by_sled: BTreeMap<SledUuid, (M2Slot, BlueprintHostPhase2DesiredContents)>,
 }
@@ -270,24 +271,28 @@ pub(super) fn try_make_update(
     baseboard_id: &Arc<BaseboardId>,
     inventory: &Collection,
     current_artifacts: &TufRepoDescription,
-) -> Option<(PendingMgsUpdate, PendingHostPhase2Changes)> {
+) -> Result<
+    Option<(PendingMgsUpdate, PendingHostPhase2Changes)>,
+    FailedMgsUpdateReason,
+> {
     let Some(sp_info) = inventory.sps.get(baseboard_id) else {
         warn!(
             log,
             "cannot configure host OS update for board \
              (missing SP info from inventory)";
             baseboard_id,
         );
-        return None;
+        return Err(FailedMgsUpdateReason::SpNotInInventory);
     };
 
     // Only configure host OS updates for sleds.
     //
     // We don't bother logging a return value of `None` for non-sleds, because
     // we will never attempt to configure an update for them (nor should we).
+    // For the same reason, we do not return an error.
     match sp_info.sp_type {
         SpType::Sled => (),
-        SpType::Power | SpType::Switch => return None,
+        SpType::Power | SpType::Switch => return Ok(None),
     }
 
     let Some(sled_agent) = inventory.sled_agents.iter().find(|sled_agent| {
@@ -299,7 +304,7 @@ pub(super) fn try_make_update(
              (missing sled-agent info from inventory)";
             baseboard_id,
         );
-        return None;
+        return Err(FailedMgsUpdateReason::SledAgentInfoNotInInventory);
     };
     let Some(last_reconciliation) = sled_agent.last_reconciliation.as_ref()
     else {
@@ -309,7 +314,7 @@ pub(super) fn try_make_update(
              (missing last reconciliation details from inventory)";
             baseboard_id,
         );
-        return None;
+        return Err(FailedMgsUpdateReason::LastReconciliationNotInInventory);
     };
     let boot_disk = match &last_reconciliation.boot_partitions.boot_disk {
         Ok(boot_disk) => *boot_disk,
@@ -323,7 +328,9 @@ pub(super) fn try_make_update(
                 baseboard_id,
                 "err" => err,
             );
-            return None;
+            return Err(FailedMgsUpdateReason::UnableToDetermineBootDisk(
+                err.to_string(),
+            ));
         }
     };
     let active_phase_2_hash =
@@ -340,7 +347,11 @@ pub(super) fn try_make_update(
                     "boot_disk" => ?boot_disk,
                     "err" => err,
                 );
-                return None;
+                return Err(
+                    FailedMgsUpdateReason::UnableToRetrieveBootDiskPhase2Image(
+                        err.to_string(),
+                    ),
+                );
             }
         };
 
@@ -353,7 +364,7 @@ pub(super) fn try_make_update(
              (inventory missing current active host phase 1 slot)";
             baseboard_id,
         );
-        return None;
+        return Err(FailedMgsUpdateReason::ActiveHostPhase1SlotNotInInventory);
     };
 
     // TODO-correctness What should we do if the active phase 1 slot doesn't
@@ -376,7 +387,9 @@ pub(super) fn try_make_update(
             "active_phase_1_slot" => ?active_phase_1_slot,
             "boot_disk" => ?boot_disk,
         );
-        return None;
+        return Err(
+            FailedMgsUpdateReason::ActiveHostPhase1SlotBootDiskMismatch,
+        );
     }
 
     let Some(active_phase_1_hash) = inventory
@@ -390,7 +403,7 @@ pub(super) fn try_make_update(
             baseboard_id,
             "slot" => ?active_phase_1_slot,
         );
-        return None;
+        return Err(FailedMgsUpdateReason::ActiveHostPhase1HashNotInInventory);
     };
 
     let Some(inactive_phase_1_hash) = inventory
@@ -407,7 +420,9 @@ pub(super) fn try_make_update(
             baseboard_id,
             "slot" => ?active_phase_1_slot.toggled(),
         );
-        return None;
+        return Err(
+            FailedMgsUpdateReason::InactiveHostPhase1HashNotInInventory,
+        );
     };
 
     let mut phase_1_artifacts = Vec::with_capacity(1);
@@ -433,7 +448,7 @@ pub(super) fn try_make_update(
                      (no phase 1 artifact)";
                     baseboard_id,
                 );
-                return None;
+                return Err(FailedMgsUpdateReason::NoMatchingArtifactFound);
             }
             (_, []) => {
                 warn!(
@@ -442,7 +457,7 @@ pub(super) fn try_make_update(
                      (no phase 2 artifact)";
                     baseboard_id,
                 );
-                return None;
+                return Err(FailedMgsUpdateReason::NoMatchingArtifactFound);
             }
             // "TUF is broken" cases: have multiple of one or the other. This
             // should be impossible unless we shipped a TUF repo with multiple
@@ -457,7 +472,7 @@ pub(super) fn try_make_update(
                     "num-phase-1-images" => phase_1_artifacts.len(),
                     "num-phase-2-images" => phase_2_artifacts.len(),
                 );
-                return None;
+                return Err(FailedMgsUpdateReason::TooManyMatchingArtifacts);
             }
         };
 
@@ -469,7 +484,7 @@ pub(super) fn try_make_update(
     // this sled will fail to boot if it were rebooted now.)
     if active_phase_2_hash == phase_2_artifact.hash {
         debug!(log, "no host OS update needed for board"; baseboard_id);
-        return None;
+        return Ok(None);
     }
 
     // Before we can proceed with the phase 1 update, we need sled-agent to
@@ -485,7 +500,7 @@ pub(super) fn try_make_update(
         phase_2_artifact,
     );
 
-    Some((
+    Ok(Some((
         PendingMgsUpdate {
             baseboard_id: baseboard_id.clone(),
             sp_type: sp_info.sp_type,
@@ -505,7 +520,7 @@ pub(super) fn try_make_update(
             artifact_version: phase_1_artifact.id.version.clone(),
         },
         pending_host_phase_2_changes,
-    ))
+    )))
 }
 
 #[cfg(test)]