github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-02 00:07:50 +00:00
Code Issues Projects Releases Wiki Activity

Cleanup gce resources from ingress upgrade tests

Browse Source
This commit is contained in:
Nick Sardo 2017-03-02 18:30:02 -08:00
parent ff9296fcad
commit 6bba665c81
2 changed files with 62 additions and 35 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

81
test/e2e/framework/ingress_utils.go
View File

@ -84,7 +84,7 @@ const (
// Cloud resources created by the ingress controller older than this // Cloud resources created by the ingress controller older than this
// are automatically purged to prevent running out of quota. // are automatically purged to prevent running out of quota.
// TODO(37335): write soak tests and bump this up to a week. // TODO(37335): write soak tests and bump this up to a week.
maxAge = -48 * time.Hour maxAge = 48 * time.Hour
// IngressManifestPath is the parent path to yaml test manifests. // IngressManifestPath is the parent path to yaml test manifests.
IngressManifestPath = "test/e2e/testing-manifests/ingress" IngressManifestPath = "test/e2e/testing-manifests/ingress"
@ -335,17 +335,26 @@ func createIngressTLSSecret(kubeClient clientset.Interface, ing *extensions.Ingr
func CleanupGCEIngressController(gceController *GCEIngressController) { func CleanupGCEIngressController(gceController *GCEIngressController) {
pollErr := wait.Poll(5*time.Second, LoadBalancerCleanupTimeout, func() (bool, error) { pollErr := wait.Poll(5*time.Second, LoadBalancerCleanupTimeout, func() (bool, error) {
if err := gceController.Cleanup(false); err != nil { if err := gceController.Cleanup(false); err != nil {
Logf("Still waiting for glbc to cleanup:\n%v", err) Logf("Monitoring glbc's cleanup of gce resources:\n%v", err)
return false, nil return false, nil
} }
return true, nil return true, nil
}) })
// Always try to cleanup even if pollErr == nil, because the cleanup
// routine also purges old leaked resources based on creation timestamp.
By("Performing final delete of any remaining resources")
if cleanupErr := gceController.Cleanup(true); cleanupErr != nil {
By(fmt.Sprintf("WARNING: possibly leaked resources: %v\n", cleanupErr))
} else {
By("No resources leaked.")
}
// Static-IP allocated on behalf of the test, never deleted by the // Static-IP allocated on behalf of the test, never deleted by the
// controller. Delete this IP only after the controller has had a chance // controller. Delete this IP only after the controller has had a chance
// to cleanup or it might interfere with the controller, causing it to // to cleanup or it might interfere with the controller, causing it to
// throw out confusing events. // throw out confusing events.
if ipErr := wait.Poll(5*time.Second, LoadBalancerCleanupTimeout, func() (bool, error) { if ipErr := wait.Poll(5*time.Second, 1*time.Minute, func() (bool, error) {
if err := gceController.deleteStaticIPs(); err != nil { if err := gceController.deleteStaticIPs(); err != nil {
Logf("Failed to delete static-ip: %v\n", err) Logf("Failed to delete static-ip: %v\n", err)
return false, nil return false, nil
@ -357,14 +366,6 @@ func CleanupGCEIngressController(gceController *GCEIngressController) {
By(fmt.Sprintf("WARNING: possibly leaked static IP: %v\n", ipErr)) By(fmt.Sprintf("WARNING: possibly leaked static IP: %v\n", ipErr))
} }
// Always try to cleanup even if pollErr == nil, because the cleanup
// routine also purges old leaked resources based on creation timestamp.
if cleanupErr := gceController.Cleanup(true); cleanupErr != nil {
By(fmt.Sprintf("WARNING: possibly leaked resources: %v\n", cleanupErr))
} else {
By("No resources leaked.")
}
// Fail if the controller didn't cleanup // Fail if the controller didn't cleanup
if pollErr != nil { if pollErr != nil {
Failf("L7 controller failed to delete all cloud resources on time. %v", pollErr) Failf("L7 controller failed to delete all cloud resources on time. %v", pollErr)
@ -383,9 +384,10 @@ func (cont *GCEIngressController) deleteForwardingRule(del bool) string {
if !cont.canDelete(f.Name, f.CreationTimestamp, del) { if !cont.canDelete(f.Name, f.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (forwarding rule)\n", f.Name)
if del { if del {
GcloudComputeResourceDelete("forwarding-rules", f.Name, cont.Cloud.ProjectID, "--global") GcloudComputeResourceDelete("forwarding-rules", f.Name, cont.Cloud.ProjectID, "--global")
} else {
msg += fmt.Sprintf("%v (forwarding rule)\n", f.Name)
} }
} }
} }
@ -402,9 +404,10 @@ func (cont *GCEIngressController) deleteAddresses(del bool) string {
if !cont.canDelete(ip.Name, ip.CreationTimestamp, del) { if !cont.canDelete(ip.Name, ip.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (static-ip)\n", ip.Name)
if del { if del {
GcloudComputeResourceDelete("addresses", ip.Name, cont.Cloud.ProjectID, "--global") GcloudComputeResourceDelete("addresses", ip.Name, cont.Cloud.ProjectID, "--global")
} else {
msg += fmt.Sprintf("%v (static-ip)\n", ip.Name)
} }
} }
} }
@ -421,9 +424,10 @@ func (cont *GCEIngressController) deleteTargetProxy(del bool) string {
if !cont.canDelete(t.Name, t.CreationTimestamp, del) { if !cont.canDelete(t.Name, t.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (target-http-proxy)\n", t.Name)
if del { if del {
GcloudComputeResourceDelete("target-http-proxies", t.Name, cont.Cloud.ProjectID) GcloudComputeResourceDelete("target-http-proxies", t.Name, cont.Cloud.ProjectID)
} else {
msg += fmt.Sprintf("%v (target-http-proxy)\n", t.Name)
} }
} }
} }
@ -435,9 +439,10 @@ func (cont *GCEIngressController) deleteTargetProxy(del bool) string {
if !cont.canDelete(t.Name, t.CreationTimestamp, del) { if !cont.canDelete(t.Name, t.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (target-https-proxy)\n", t.Name)
if del { if del {
GcloudComputeResourceDelete("target-https-proxies", t.Name, cont.Cloud.ProjectID) GcloudComputeResourceDelete("target-https-proxies", t.Name, cont.Cloud.ProjectID)
} else {
msg += fmt.Sprintf("%v (target-https-proxy)\n", t.Name)
} }
} }
} }
@ -460,12 +465,14 @@ func (cont *GCEIngressController) deleteURLMap(del bool) (msg string) {
if !cont.canDelete(um.Name, um.CreationTimestamp, del) { if !cont.canDelete(um.Name, um.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (url-map)\n", um.Name)
if del { if del {
Logf("Deleting url-map: %s", um.Name)
if err := gceCloud.DeleteUrlMap(um.Name); err != nil && if err := gceCloud.DeleteUrlMap(um.Name); err != nil &&
!cont.isHTTPErrorCode(err, http.StatusNotFound) { !cont.isHTTPErrorCode(err, http.StatusNotFound) {
msg += fmt.Sprintf("Failed to delete url map %v\n", um.Name) msg += fmt.Sprintf("Failed to delete url map %v\n", um.Name)
} }
} else {
msg += fmt.Sprintf("%v (url-map)\n", um.Name)
} }
} }
return msg return msg
@ -488,12 +495,14 @@ func (cont *GCEIngressController) deleteBackendService(del bool) (msg string) {
if !cont.canDelete(be.Name, be.CreationTimestamp, del) { if !cont.canDelete(be.Name, be.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (backend-service)\n", be.Name)
if del { if del {
Logf("Deleting backed-service: %s", be.Name)
if err := gceCloud.DeleteBackendService(be.Name); err != nil && if err := gceCloud.DeleteBackendService(be.Name); err != nil &&
!cont.isHTTPErrorCode(err, http.StatusNotFound) { !cont.isHTTPErrorCode(err, http.StatusNotFound) {
msg += fmt.Sprintf("Failed to delete backend service %v\n", be.Name) msg += fmt.Sprintf("Failed to delete backend service %v: %v\n", be.Name, err)
} }
} else {
msg += fmt.Sprintf("%v (backend-service)\n", be.Name)
} }
} }
return msg return msg
@ -515,12 +524,14 @@ func (cont *GCEIngressController) deleteHTTPHealthCheck(del bool) (msg string) {
if !cont.canDelete(hc.Name, hc.CreationTimestamp, del) { if !cont.canDelete(hc.Name, hc.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (http-health-check)\n", hc.Name)
if del { if del {
Logf("Deleting http-health-check: %s", hc.Name)
if err := gceCloud.DeleteHttpHealthCheck(hc.Name); err != nil && if err := gceCloud.DeleteHttpHealthCheck(hc.Name); err != nil &&
!cont.isHTTPErrorCode(err, http.StatusNotFound) { !cont.isHTTPErrorCode(err, http.StatusNotFound) {
msg += fmt.Sprintf("Failed to delete HTTP health check %v\n", hc.Name) msg += fmt.Sprintf("Failed to delete HTTP health check %v\n", hc.Name)
} }
} else {
msg += fmt.Sprintf("%v (http-health-check)\n", hc.Name)
} }
} }
return msg return msg
@ -540,12 +551,14 @@ func (cont *GCEIngressController) deleteSSLCertificate(del bool) (msg string) {
if !cont.canDelete(s.Name, s.CreationTimestamp, del) { if !cont.canDelete(s.Name, s.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (ssl-certificate)\n", s.Name)
if del { if del {
Logf("Deleting ssl-certificate: %s", s.Name)
if err := gceCloud.DeleteSslCertificate(s.Name); err != nil && if err := gceCloud.DeleteSslCertificate(s.Name); err != nil &&
!cont.isHTTPErrorCode(err, http.StatusNotFound) { !cont.isHTTPErrorCode(err, http.StatusNotFound) {
msg += fmt.Sprintf("Failed to delete ssl certificates: %v\n", s.Name) msg += fmt.Sprintf("Failed to delete ssl certificates: %v\n", s.Name)
} }
} else {
msg += fmt.Sprintf("%v (ssl-certificate)\n", s.Name)
} }
} }
} }
@ -570,12 +583,14 @@ func (cont *GCEIngressController) deleteInstanceGroup(del bool) (msg string) {
if !cont.canDelete(ig.Name, ig.CreationTimestamp, del) { if !cont.canDelete(ig.Name, ig.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (instance-group)\n", ig.Name)
if del { if del {
Logf("Deleting instance-group: %s", ig.Name)
if err := gceCloud.DeleteInstanceGroup(ig.Name, cont.Cloud.Zone); err != nil && if err := gceCloud.DeleteInstanceGroup(ig.Name, cont.Cloud.Zone); err != nil &&
!cont.isHTTPErrorCode(err, http.StatusNotFound) { !cont.isHTTPErrorCode(err, http.StatusNotFound) {
msg += fmt.Sprintf("Failed to delete instance group %v\n", ig.Name) msg += fmt.Sprintf("Failed to delete instance group %v\n", ig.Name)
} }
} else {
msg += fmt.Sprintf("%v (instance-group)\n", ig.Name)
} }
} }
return msg return msg
@ -587,11 +602,21 @@ func (cont *GCEIngressController) deleteInstanceGroup(del bool) (msg string) {
// Ingress cloud resources. // Ingress cloud resources.
func (cont *GCEIngressController) canDelete(resourceName, creationTimestamp string, delOldResources bool) bool { func (cont *GCEIngressController) canDelete(resourceName, creationTimestamp string, delOldResources bool) bool {
// ignore everything not created by an ingress controller. // ignore everything not created by an ingress controller.
if !strings.HasPrefix(resourceName, k8sPrefix) || len(strings.Split(resourceName, clusterDelimiter)) != 2 { splitName := strings.Split(resourceName, clusterDelimiter)
if !strings.HasPrefix(resourceName, k8sPrefix) || len(splitName) != 2 {
return false return false
} }
// Resources created by the GLBC have a "0"" appended to the end if truncation
// occurred. Removing the zero allows the following match.
truncatedClusterUID := splitName[1]
if len(truncatedClusterUID) >= 1 && strings.HasSuffix(truncatedClusterUID, "0") {
truncatedClusterUID = truncatedClusterUID[:len(truncatedClusterUID)-1]
}
// always delete things that are created by the current ingress controller. // always delete things that are created by the current ingress controller.
if strings.HasSuffix(resourceName, cont.UID) { // Because of resource name truncation, this looks for a common prefix
if strings.HasPrefix(cont.UID, truncatedClusterUID) {
return true return true
} }
if !delOldResources { if !delOldResources {
@ -602,7 +627,7 @@ func (cont *GCEIngressController) canDelete(resourceName, creationTimestamp stri
Logf("WARNING: Failed to parse creation timestamp %v for %v: %v", creationTimestamp, resourceName, err) Logf("WARNING: Failed to parse creation timestamp %v for %v: %v", creationTimestamp, resourceName, err)
return false return false
} }
if createdTime.Before(time.Now().Add(maxAge)) { if time.Since(createdTime) > maxAge {
Logf("%v created on %v IS too old", resourceName, creationTimestamp) Logf("%v created on %v IS too old", resourceName, creationTimestamp)
return true return true
} }
@ -632,9 +657,10 @@ func (cont *GCEIngressController) deleteFirewallRule(del bool) (msg string) {
if !cont.canDelete(f.Name, f.CreationTimestamp, del) { if !cont.canDelete(f.Name, f.CreationTimestamp, del) {
continue continue
} }
msg += fmt.Sprintf("%v (firewall rule)\n", f.Name)
if del { if del {
GcloudComputeResourceDelete("firewall-rules", f.Name, cont.Cloud.ProjectID) GcloudComputeResourceDelete("firewall-rules", f.Name, cont.Cloud.ProjectID)
} else {
msg += fmt.Sprintf("%v (firewall rule)\n", f.Name)
} }
} }
} }
@ -648,8 +674,7 @@ func (cont *GCEIngressController) isHTTPErrorCode(err error, code int) bool {
// Cleanup cleans up cloud resources. // Cleanup cleans up cloud resources.
// If del is false, it simply reports existing resources without deleting them. // If del is false, it simply reports existing resources without deleting them.
// It always deletes resources created through it's methods, like staticIP, even // If dle is true, it deletes resources it finds acceptable (see canDelete func).
// if del is false.
func (cont *GCEIngressController) Cleanup(del bool) error { func (cont *GCEIngressController) Cleanup(del bool) error {
// Ordering is important here because we cannot delete resources that other // Ordering is important here because we cannot delete resources that other
// resources hold references to. // resources hold references to.
@ -737,7 +762,7 @@ func gcloudComputeResourceList(resource, regex, project string, out interface{})
// so we only look at stdout. // so we only look at stdout.
command := []string{ command := []string{
"compute", resource, "list", "compute", resource, "list",
fmt.Sprintf("--regexp=%v", regex), fmt.Sprintf("--regexp=%q", regex),
fmt.Sprintf("--project=%v", project), fmt.Sprintf("--project=%v", project),
"-q", "--format=json", "-q", "--format=json",
} }

16
test/e2e/upgrades/ingress.go
View File

@ -33,6 +33,7 @@ type IngressUpgradeTest struct {
jig *framework.IngressTestJig jig *framework.IngressTestJig
httpClient *http.Client httpClient *http.Client
ip string ip string
ipName string
} }
// Setup creates a GLBC, allocates an ip, and an ingress resource, // Setup creates a GLBC, allocates an ip, and an ingress resource,
@ -59,12 +60,13 @@ func (t *IngressUpgradeTest) Setup(f *framework.Framework) {
t.httpClient = framework.BuildInsecureClient(framework.IngressReqTimeout) t.httpClient = framework.BuildInsecureClient(framework.IngressReqTimeout)
// Allocate a static-ip for the Ingress, this IP is cleaned up via CleanupGCEIngressController // Allocate a static-ip for the Ingress, this IP is cleaned up via CleanupGCEIngressController
t.ip = t.gceController.CreateStaticIP(ns.Name) t.ipName = fmt.Sprintf("%s-static-ip", ns.Name)
t.ip = t.gceController.CreateStaticIP(t.ipName)
// Create a working basic Ingress // Create a working basic Ingress
By(fmt.Sprintf("allocated static ip %v: %v through the GCE cloud provider", ns.Name, t.ip)) By(fmt.Sprintf("allocated static ip %v: %v through the GCE cloud provider", t.ipName, t.ip))
jig.CreateIngress(filepath.Join(framework.IngressManifestPath, "static-ip"), ns.Name, map[string]string{ jig.CreateIngress(filepath.Join(framework.IngressManifestPath, "static-ip"), ns.Name, map[string]string{
"kubernetes.io/ingress.global-static-ip-name": ns.Name, "kubernetes.io/ingress.global-static-ip-name": t.ipName,
"kubernetes.io/ingress.allow-http": "false", "kubernetes.io/ingress.allow-http": "false",
}) })
@ -96,12 +98,12 @@ func (t *IngressUpgradeTest) Teardown(f *framework.Framework) {
if CurrentGinkgoTestDescription().Failed { if CurrentGinkgoTestDescription().Failed {
framework.DescribeIng(t.gceController.Ns) framework.DescribeIng(t.gceController.Ns)
} }
if t.jig.Ingress == nil { if t.jig.Ingress != nil {
By("Deleting ingress")
t.jig.DeleteIngress()
} else {
By("No ingress created, no cleanup necessary") By("No ingress created, no cleanup necessary")
return
} }
By("Deleting ingress")
t.jig.DeleteIngress()
By("Cleaning up cloud resources") By("Cleaning up cloud resources")
framework.CleanupGCEIngressController(t.gceController) framework.CleanupGCEIngressController(t.gceController)