tags: initial implementation of tags

Author: nicolehanjing

Diff for: pkg/providers/v2/cloud.go

@@ -19,9 +19,11 @@ limitations under the License.
 package v2
 
 import (
+	"errors"
 	"fmt"
 	"io"
 	"io/ioutil"
+	"k8s.io/klog/v2"
 	"regexp"
 
 	"github.com/aws/aws-sdk-go/aws"
@@ -43,7 +45,7 @@ func init() {
 			return nil, fmt.Errorf("failed to read AWS cloud provider config file: %v", err)
 		}
 
-		return newCloud(*cfg)
+		return newCloud(cfg)
 	})
 }
 
@@ -61,7 +63,7 @@ type cloud struct {
 	region    string
 	ec2       EC2
 	metadata  EC2Metadata
-	tagging   awsTagging
+	tags      awsTagging
 }
 
 // EC2 is an interface defining only the methods we call from the AWS EC2 SDK.
@@ -79,7 +81,7 @@ type EC2Metadata interface {
 
 func readAWSCloudConfig(config io.Reader) (*v1alpha1.AWSCloudConfig, error) {
 	if config == nil {
-		return nil, fmt.Errorf("no AWS cloud provider config file given")
+		return nil, errors.New("no AWS cloud provider config file given")
 	}
 
 	// read the config file
@@ -95,7 +97,7 @@ func readAWSCloudConfig(config io.Reader) (*v1alpha1.AWSCloudConfig, error) {
 		return nil, err
 	}
 	if cfg.Kind != "AWSCloudConfig" {
-		return nil, fmt.Errorf("invalid cloud configuration object %q", cfg.Kind)
+		return nil, fmt.Errorf("invalid Kind for cloud config: %q", cfg.Kind)
 	}
 
 	return &cfg, nil
@@ -122,7 +124,7 @@ func azToRegion(az string) (string, error) {
 }
 
 // newCloud creates a new instance of AWSCloud.
-func newCloud(cfg v1alpha1.AWSCloudConfig) (cloudprovider.Interface, error) {
+func newCloud(cfg *v1alpha1.AWSCloudConfig) (cloudprovider.Interface, error) {
 	sess, err := session.NewSession(&aws.Config{})
 	if err != nil {
 		return nil, fmt.Errorf("unable to initialize AWS session: %v", err)
@@ -170,21 +172,25 @@ func newCloud(cfg v1alpha1.AWSCloudConfig) (cloudprovider.Interface, error) {
 		return nil, fmt.Errorf("error creating AWS ec2 client: %q", err)
 	}
 
-	awsCloud := &cloud{
-		creds:     creds,
-		instances: instances,
-		region:    region,
-		metadata:  metadataClient,
-		ec2:       ec2Service,
-	}
-
+	var tags awsTagging
 	if cfg.Config.ClusterName != "" {
-		if err := awsCloud.tagging.init(cfg.Config.ClusterName); err != nil {
+		tags, err = newAWSTags(cfg.Config.ClusterName)
+		if err != nil {
 			return nil, err
 		}
+	} else {
+		// TODO: infer cluster name and add it automatically
+		klog.Warning("misconfigured cluster: no clusterName")
 	}
 
-	return awsCloud, nil
+	return &cloud{
+		creds:     creds,
+		instances: instances,
+		region:    region,
+		metadata:  metadataClient,
+		ec2:       ec2Service,
+		tags:      tags,
+	}, nil
 }
 
 // Initialize passes a Kubernetes clientBuilder interface to the cloud provider
@@ -223,7 +229,7 @@ func (c *cloud) Routes() (cloudprovider.Routes, bool) {
 
 // HasClusterID returns true if the cluster has a clusterID
 func (c *cloud) HasClusterID() bool {
-	return len(c.tagging.clusterName()) > 0
+	return len(c.tags.clusterName()) > 0
 }
 
 // InstancesV2 is an implementation for instances and should only be implemented by external cloud providers.

Diff for: pkg/providers/v2/cloud_test.go

@@ -19,9 +19,14 @@ limitations under the License.
 package v2
 
 import (
+	"bytes"
+	"reflect"
 	"testing"
 
 	"github.com/stretchr/testify/assert"
+
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/cloud-provider-aws/pkg/apis/config/v1alpha1"
 )
 
 func TestAzToRegion(t *testing.T) {
@@ -44,3 +49,96 @@ func TestAzToRegion(t *testing.T) {
 		assert.Equal(t, testCase.region, ret)
 	}
 }
+
+func TestReadAWSCloudConfig(t *testing.T) {
+	testcases := []struct {
+		name       string
+		configData string
+		config     *v1alpha1.AWSCloudConfig
+		expectErr  bool
+	}{
+		{
+			name: "config with valid cluster name",
+			configData: `---
+kind: AWSCloudConfig
+apiVersion: config.aws.io/v1alpha1
+config:
+    clusterName: test
+    `,
+			config: &v1alpha1.AWSCloudConfig{
+				TypeMeta: metav1.TypeMeta{
+					Kind:       "AWSCloudConfig",
+					APIVersion: "config.aws.io/v1alpha1",
+				},
+				Config: v1alpha1.AWSConfig{
+					ClusterName: "test",
+				},
+			},
+		},
+		{
+			name: "config with empty cluster name",
+			configData: `---
+kind: AWSCloudConfig
+apiVersion: config.aws.io/v1alpha1
+config:
+    clusterName: ""
+    `,
+			config: &v1alpha1.AWSCloudConfig{
+				TypeMeta: metav1.TypeMeta{
+					Kind:       "AWSCloudConfig",
+					APIVersion: "config.aws.io/v1alpha1",
+				},
+				Config: v1alpha1.AWSConfig{
+					ClusterName: "",
+				},
+			},
+		},
+		{
+			name: "config with wrong Kind",
+			configData: `---
+kind: WrongCloudConfig
+apiVersion: config.aws.io/v1alpha1
+config:
+    clusterName: test
+	`,
+			config:    nil,
+			expectErr: true,
+		},
+		{
+			name: "config with wrong apiversion",
+			configData: `---
+kind: AWSCloudConfig
+apiVersion: wrong.aws.io/v1alpha1
+config:
+    clusterName: test
+	`,
+			config:    nil,
+			expectErr: true,
+		},
+	}
+
+	for _, testcase := range testcases {
+		t.Run(testcase.name, func(t *testing.T) {
+			var buffer bytes.Buffer
+			_, err := buffer.WriteString(testcase.configData)
+			if err != nil {
+				t.Fatal(err)
+			}
+
+			cloudConfig, err := readAWSCloudConfig(&buffer)
+			if err != nil && !testcase.expectErr {
+				t.Fatal(err)
+			}
+
+			if err == nil && testcase.expectErr {
+				t.Error("expected error but got none")
+			}
+
+			if !reflect.DeepEqual(cloudConfig, testcase.config) {
+				t.Logf("actual cloud config: %#v", cloudConfig)
+				t.Logf("expected cloud config: %#v", testcase.config)
+				t.Error("AWS cloud config did not match")
+			}
+		})
+	}
+}

Diff for: pkg/providers/v2/tags.go

@@ -16,6 +16,7 @@ limitations under the License.
 package v2
 
 import (
+	"errors"
 	"fmt"
 	"strings"
 	"time"
@@ -30,14 +31,17 @@ import (
 const (
 	// TagNameKubernetesClusterPrefix is the tag name we use to differentiate multiple
 	// logically independent clusters running in the same AZ.
-	// tag format: kubernetes.io/cluster/=<clusterName>
+	// tag format: kubernetes.io/cluster/<clusterID> = shared|owned
+	// The tag key = TagNameKubernetesClusterPrefix + clusterID
+	// The tag value is an ownership value
 	TagNameKubernetesClusterPrefix = "kubernetes.io/cluster/"
 
 	// createTag* is configuration of exponential backoff for CreateTag call. We
 	// retry mainly because if we create an object, we cannot tag it until it is
 	// "fully created" (eventual consistency). Starting with 1 second, doubling
 	// it every step and taking 9 steps results in 255 second total waiting
 	// time.
+	// TODO: revisit these values
 	createTagInitialDelay = 1 * time.Second
 	createTagFactor       = 2.0
 	createTagSteps        = 9
@@ -49,6 +53,19 @@ type awsTagging struct {
 	ClusterName string
 }
 
+// newAWSTags is a constructor function for awsTagging
+func newAWSTags(clusterName string) (awsTagging, error) {
+	if clusterName != "" {
+		klog.Infof("AWS cloud filtering on ClusterName: %v", clusterName)
+	} else {
+		return awsTagging{}, errors.New("No ClusterName found in the config")
+	}
+
+	return awsTagging{
+		ClusterName: clusterName,
+	}, nil
+}
+
 // Extracts the cluster name from the given tags, if they are present
 // If duplicate tags are found, returns an error
 func findClusterName(tags []*ec2.Tag) (string, error) {
@@ -57,7 +74,7 @@ func findClusterName(tags []*ec2.Tag) (string, error) {
 	for _, tag := range tags {
 		tagKey := aws.StringValue(tag.Key)
 		if strings.HasPrefix(tagKey, TagNameKubernetesClusterPrefix) {
-			name := aws.StringValue(tag.Value)
+			name := strings.TrimPrefix(tagKey, TagNameKubernetesClusterPrefix)
 			if clusterName != "" {
 				return "", fmt.Errorf("Found multiple cluster tags with prefix %s (%q and %q)", TagNameKubernetesClusterPrefix, clusterName, name)
 			}
@@ -68,64 +85,36 @@ func findClusterName(tags []*ec2.Tag) (string, error) {
 	return clusterName, nil
 }
 
-func (t *awsTagging) init(clusterName string) error {
-	t.ClusterName = clusterName
-
-	if clusterName != "" {
-		klog.Infof("AWS cloud filtering on ClusterName: %v", clusterName)
-	} else {
-		return fmt.Errorf("AWS cloud failed to find ClusterName")
-	}
-
-	return nil
-}
-
-// Extracts a cluster name from the given tags, if one is present
-// If no clusterName is found, returns "", nil
-// If multiple (different) clusterNames are found, returns an error
-func (t *awsTagging) initFromTags(tags []*ec2.Tag) error {
-	clusterName, err := findClusterName(tags)
-	if err != nil {
-		return err
-	}
-
-	if clusterName == "" {
-		klog.Errorf("Tag %q not found; Kubernetes may behave unexpectedly.", TagNameKubernetesClusterPrefix)
-	}
-
-	return t.init(clusterName)
-}
-
-func (t *awsTagging) hasClusterTag(tags []*ec2.Tag) bool {
-	// if the clusterName is not configured -- we consider all instances.
+func (t *awsTagging) hasClusterTag(tags []*ec2.Tag) error {
 	if len(t.ClusterName) == 0 {
-		return true
+		return errors.New("cluster name is not configured (an empty value)")
 	}
 
 	for _, tag := range tags {
 		tagKey := aws.StringValue(tag.Key)
-		if (tagKey == TagNameKubernetesClusterPrefix) && (aws.StringValue(tag.Value) == t.ClusterName) {
-			return true
+		if tagKey == (TagNameKubernetesClusterPrefix + t.ClusterName) {
+			return nil
 		}
 	}
 
-	return false
+	return errors.New("cluster tag does not exist")
 }
 
 func (t *awsTagging) buildTags(additionalTags map[string]string, lifecycle string) map[string]string {
 	tags := make(map[string]string)
-	for k, v := range additionalTags {
-		tags[k] = v
+	for tagKey, tagValue := range additionalTags {
+		tags[tagKey] = tagValue
 	}
 
 	// no clusterName is a sign of misconfigured cluster, but we can't be tagging the resources with empty
 	// strings
+	// TODO: revise the logic
 	if len(t.ClusterName) == 0 {
 		return tags
 	}
 
-	// tag format: kubernetes.io/cluster/=<clusterName>
-	tags[TagNameKubernetesClusterPrefix] = t.ClusterName
+	// tag format: kubernetes.io/cluster/<clusterID> = shared|owned
+	tags[TagNameKubernetesClusterPrefix+t.ClusterName] = lifecycle
 
 	return tags
 }
@@ -141,10 +130,10 @@ func (t *awsTagging) createTags(ec2Client EC2, resourceID string, lifecycle stri
 	}
 
 	var awsTags []*ec2.Tag
-	for k, v := range tags {
+	for tagKey, tagValue := range tags {
 		tag := &ec2.Tag{
-			Key:   aws.String(k),
-			Value: aws.String(v),
+			Key:   aws.String(tagKey),
+			Value: aws.String(tagValue),
 		}
 		awsTags = append(awsTags, tag)
 	}