Skip to content

Commit

Permalink
create a dedicated staging bucket for kops builds
Browse files Browse the repository at this point in the history
  • Loading branch information
upodroid committed Oct 1, 2023
1 parent d630f9c commit 839c0cb
Show file tree
Hide file tree
Showing 5 changed files with 50 additions and 12 deletions.
7 changes: 7 additions & 0 deletions tests/e2e/kubetest2-kops/deployer/build.go
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,7 @@ import (
"strings"

"k8s.io/klog/v2"
"k8s.io/kops/tests/e2e/kubetest2-kops/gce"
"k8s.io/kops/tests/e2e/pkg/util"
"sigs.k8s.io/kubetest2/pkg/exec"
)
Expand Down Expand Up @@ -66,6 +67,12 @@ func (d *deployer) verifyBuildFlags() error {
if !strings.HasPrefix(d.StageLocation, "gs://") {
return errors.New("stage-location must be a gs:// path")
}
} else if d.boskos != nil {
d.StageLocation = d.stagingStore()
klog.Infof("creating staging bucket %s to hold kops build artifacts", d.StageLocation)
if err := gce.EnsureGCSBucket(d.StageLocation, d.GCPProject, true); err != nil {
return err
}
} else {
stageLocation, err := defaultStageLocation(d.KopsRoot)
if err != nil {
Expand Down
25 changes: 19 additions & 6 deletions tests/e2e/kubetest2-kops/deployer/common.go
Original file line number Diff line number Diff line change
Expand Up @@ -41,11 +41,6 @@ func (d *deployer) init() error {

// initialize should only be called by init(), behind a sync.Once
func (d *deployer) initialize() error {
if d.commonOptions.ShouldBuild() {
if err := d.verifyBuildFlags(); err != nil {
return fmt.Errorf("init failed to check build flags: %v", err)
}
}
if d.commonOptions.ShouldUp() || d.commonOptions.ShouldDown() {
if err := d.verifyKopsFlags(); err != nil {
return fmt.Errorf("init failed to check kops flags: %v", err)
Expand Down Expand Up @@ -118,6 +113,12 @@ func (d *deployer) initialize() error {
}
}

if d.commonOptions.ShouldBuild() {
if err := d.verifyBuildFlags(); err != nil {
return fmt.Errorf("init failed to check build flags: %v", err)
}
}

if d.SSHUser == "" {
d.SSHUser = os.Getenv("KUBE_SSH_USER")
}
Expand Down Expand Up @@ -272,14 +273,26 @@ func (d *deployer) stateStore() string {
ss = "s3://k8s-kops-prow"
case "gce":
d.createBucket = true
ss = "gs://" + gce.GCSBucketName(d.GCPProject)
ss = "gs://" + gce.GCSBucketName(d.GCPProject, "state")
case "digitalocean":
ss = "do://e2e-kops-space"
}
}
return ss
}

func (d *deployer) stagingStore() string {
sb := os.Getenv("KOPS_STAGING_BUCKET")
if sb == "" {
switch d.CloudProvider {
case "gce":
d.createBucket = true
sb = "gs://" + gce.GCSBucketName(d.GCPProject, "staging")
}
}
return sb
}

// the default is $ARTIFACTS if set, otherwise ./_artifacts
// constructed as an absolute path to help the ginkgo tester because
// for some reason it needs an absolute path to the kubeconfig
Expand Down
1 change: 1 addition & 0 deletions tests/e2e/kubetest2-kops/deployer/down.go
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,7 @@ func (d *deployer) Down() error {

if d.CloudProvider == "gce" && d.createBucket {
gce.DeleteGCSBucket(d.stateStore(), d.GCPProject)
gce.DeleteGCSBucket(d.stagingStore(), d.GCPProject)
}

if d.boskos != nil {
Expand Down
2 changes: 1 addition & 1 deletion tests/e2e/kubetest2-kops/deployer/up.go
Original file line number Diff line number Diff line change
Expand Up @@ -49,7 +49,7 @@ func (d *deployer) Up() error {
}

if d.CloudProvider == "gce" && d.createBucket {
if err := gce.EnsureGCSBucket(d.stateStore(), d.GCPProject); err != nil {
if err := gce.EnsureGCSBucket(d.stateStore(), d.GCPProject, false); err != nil {
return err
}
}
Expand Down
27 changes: 22 additions & 5 deletions tests/e2e/kubetest2-kops/gce/gcs.go
Original file line number Diff line number Diff line change
Expand Up @@ -21,25 +21,26 @@ import (
"encoding/hex"
"os"
"strings"
"time"

"k8s.io/klog/v2"
"sigs.k8s.io/kubetest2/pkg/exec"
)

func GCSBucketName(projectID string) string {
func GCSBucketName(projectID, prefix string) string {
var s string
if jobID := os.Getenv("PROW_JOB_ID"); len(jobID) >= 2 {
s = jobID[:2]
if jobID := os.Getenv("PROW_JOB_ID"); len(jobID) >= 4 {
s = jobID[:4]
} else {
b := make([]byte, 2)
rand.Read(b)
s = hex.EncodeToString(b)
}
bucket := strings.Join([]string{projectID, "state", s}, "-")
bucket := strings.Join([]string{projectID, prefix, s}, "-")
return bucket
}

func EnsureGCSBucket(bucketPath, projectID string) error {
func EnsureGCSBucket(bucketPath, projectID string, public bool) error {
lsArgs := []string{
"gsutil", "ls", "-b",
}
Expand Down Expand Up @@ -75,6 +76,22 @@ func EnsureGCSBucket(bucketPath, projectID string) error {
if err != nil {
return err
}

if public {
iamArgs := []string{
"gsutil", "iam", "ch", "allUsers:objectViewer",
}
iamArgs = append(iamArgs, bucketPath)
klog.Info(strings.Join(iamArgs, " "))
// GCS APIs are strongly consistent but this should help with flakes
time.Sleep(10 * time.Second)
cmd = exec.Command(iamArgs[0], iamArgs[1:]...)
exec.InheritOutput(cmd)
err = cmd.Run()
if err != nil {
return err
}
}
return nil
}

Expand Down

0 comments on commit 839c0cb

Please sign in to comment.