feat: v2 data engine live upgrade #3282

derekbit · 2024-11-22T09:22:34Z

Signed-off-by: Derek Su [email protected]

Which issue(s) this PR fixes:

Issue longhorn/longhorn#9104

What this PR does / why we need it:

Special notes for your reviewer:

Additional documentation or context

…nager pod Longhorn 9383 Signed-off-by: Derek Su <[email protected]>

Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

coderabbitai · 2024-11-22T09:22:41Z

Walkthrough

The changes in this pull request introduce significant enhancements across multiple controllers and components in the Longhorn system, focusing on data engine upgrades and volume management. Key modifications include the addition of new controllers and methods for managing upgrades, refined error handling, and improved logging mechanisms. The introduction of new resource types, such as DataEngineUpgradeManager and NodeDataEngineUpgrade, along with their respective validators and mutators, establishes a structured approach to handling upgrade processes. Overall, the updates aim to enhance the robustness and functionality of the Longhorn storage system.

Changes

File Path	Change Summary
controller/backup_controller.go	Updated `isResponsibleFor` method logic; refined error handling in `handleBackupDeletionInBackupStore`.
controller/controller_manager.go	Added `dataEngineUpgradeManagerController` and `nodeDataEngineUpgradeController` to `StartControllers`.
controller/engine_controller.go	Modified `syncEngine`, added various instance management methods, and improved error handling.
controller/instance_handler.go	Updated `InstanceManagerHandler` interface, refactored `syncStatusWithInstanceManager`, and enhanced state management.
controller/instance_handler_test.go	Updated mock methods and added new methods for instance management.
controller/monitor/node_upgrade_monitor.go	Introduced `NodeDataEngineUpgradeMonitor` for monitoring upgrade processes.
controller/monitor/upgrade_manager_monitor.go	Added `DataEngineUpgradeManagerMonitor` for managing upgrade manager status.
controller/node_controller.go	Enhanced node condition checks and logging for eviction requests.
controller/node_upgrade_controller.go	Introduced `NodeDataEngineUpgradeController` for managing upgrade resources.
controller/replica_controller.go	Updated `CreateInstance` and added methods for managing instance states.
controller/uninstall_controller.go	Added methods for deleting upgrade managers and node upgrades.
controller/upgrade_manager_controller.go	Introduced `DataEngineUpgradeManagerController` for managing upgrade manager resources.
controller/utils.go	Removed `isVolumeUpgrading` function.
controller/volume_controller.go	Enhanced volume upgrade handling and replica management logic.
datastore/datastore.go	Added fields for managing data engine upgrades.
datastore/longhorn.go	Introduced methods for managing `DataEngineUpgradeManager` and `NodeDataEngineUpgrade`.
k8s/crds.yaml	Updated CRDs with new descriptions and added new CRDs for data engine upgrades.
k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go	Introduced `DataEngineUpgradeManager` resource structure.
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go	Added new fields and states for instance management.
k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go	Introduced `NodeDataEngineUpgrade` resource structure.
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go	Added client interface methods for managing `DataEngineUpgradeManager`.
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go	Added client interface methods for managing `NodeDataEngineUpgrade`.
webhook/resources/dataengineupgrademanager/mutator.go	Introduced mutator for `DataEngineUpgradeManager` creation.
webhook/resources/dataengineupgrademanager/validator.go	Introduced validator for `DataEngineUpgradeManager` creation and updates.
webhook/resources/nodedataengineupgrade/mutator.go	Introduced mutator for `NodeDataEngineUpgrade` creation.
webhook/resources/nodedataengineupgrade/validator.go	Introduced validator for `NodeDataEngineUpgrade` creation and updates.

Assessment against linked issues

Objective	Addressed	Explanation
Support live upgrade for control plane (Issue #9104)	✅

Possibly related PRs

feat(auto-salvage): v2 support #3170: Enhances logic for managing v2 volumes, relevant to the modifications in the BackupController.
fix: allow changing the replica count for a v2 volume #3268: Allows changing the replica count for v2 volumes, aligning with the focus on improving backup management.

Suggested reviewers

shuo-wu

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Generate unit testing code for this file.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
- @coderabbitai generate unit testing code for this file.
- @coderabbitai modularize this function.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbitai read src/utils.ts and generate unit testing code.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
- @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

@coderabbitai pause to pause the reviews on a PR.
@coderabbitai resume to resume the paused reviews.
@coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
@coderabbitai full review to do a full review from scratch and review all the files again.
@coderabbitai summary to regenerate the summary of the PR.
@coderabbitai resolve resolve all the CodeRabbit review comments.
@coderabbitai configuration to show the current CodeRabbit configuration for the repository.
@coderabbitai help to get help.

Other keywords and placeholders

Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

mergify · 2024-11-23T09:58:08Z

This pull request is now in conflict. Could you fix it @derekbit? 🙏

coderabbitai

Actionable comments posted: 39

🧹 Outside diff range and nitpick comments (67)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 612db95 and 393807e.

⛔ Files ignored due to path filters (6)

go.mod is excluded by !go.mod
go.sum is excluded by !**/*.sum, !go.sum
vendor/github.com/longhorn/longhorn-instance-manager/pkg/api/instance.go is excluded by !vendor/**
vendor/github.com/longhorn/types/pkg/generated/imrpc/instance.pb.go is excluded by !**/*.pb.go, !**/generated/**, !vendor/**
vendor/github.com/longhorn/types/pkg/generated/spdkrpc/spdk.pb.go is excluded by !**/*.pb.go, !**/generated/**, !vendor/**
vendor/modules.txt is excluded by !vendor/**

📒 Files selected for processing (51)

controller/backup_controller.go (1 hunks)
controller/controller_manager.go (2 hunks)
controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/monitor/node_upgrade_monitor.go (1 hunks)
controller/monitor/upgrade_manager_monitor.go (1 hunks)
controller/node_controller.go (2 hunks)
controller/node_upgrade_controller.go (1 hunks)
controller/replica_controller.go (5 hunks)
controller/uninstall_controller.go (4 hunks)
controller/upgrade_manager_controller.go (1 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)
datastore/datastore.go (3 hunks)
datastore/longhorn.go (6 hunks)
engineapi/instance_manager.go (5 hunks)
engineapi/instance_manager_test.go (1 hunks)
k8s/crds.yaml (84 hunks)
k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (6 hunks)
k8s/pkg/apis/longhorn/v1beta2/node.go (2 hunks)
k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/register.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/volume.go (2 hunks)
k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (4 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_longhorn_client.go (2 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/generated_expansion.go (2 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/longhorn_client.go (3 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/informers/externalversions/generic.go (2 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/interface.go (4 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go (2 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
scheduler/replica_scheduler.go (1 hunks)
types/types.go (4 hunks)
webhook/resources/dataengineupgrademanager/mutator.go (1 hunks)
webhook/resources/dataengineupgrademanager/validator.go (1 hunks)
webhook/resources/nodedataengineupgrade/mutator.go (1 hunks)
webhook/resources/nodedataengineupgrade/validator.go (1 hunks)
webhook/resources/volume/mutator.go (2 hunks)
webhook/resources/volume/validator.go (5 hunks)
webhook/server/mutation.go (2 hunks)
webhook/server/validation.go (2 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

✅ Files skipped from review due to trivial changes (4)

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go

🧰 Additional context used

📓 Learnings (1)

webhook/server/mutation.go (1)

Learnt from: mantissahz
PR: longhorn/longhorn-manager#2182
File: webhook/server/mutation.go:46-46
Timestamp: 2024-11-10T16:45:04.898Z
Learning: In the Longhorn codebase, other custom resource mutators do not implement the `Mutate` method.

🪛 golangci-lint (1.61.0)

controller/uninstall_controller.go

209-209: Error return value of ds.DataEngineUpgradeManagerInformer.AddEventHandler is not checked

(errcheck)

213-213: Error return value of ds.NodeDataEngineUpgradeInformer.AddEventHandler is not checked

(errcheck)

controller/volume_controller.go

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (103)

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/generated_expansion.go (1)

35-36: LGTM! The new expansion interfaces align with Kubernetes patterns.

The addition of DataEngineUpgradeManagerExpansion and NodeDataEngineUpgradeExpansion interfaces follows the standard Kubernetes client-go pattern for extensibility. These interfaces support the v2 data engine live upgrade feature by providing extension points for the new resource types.

Let's verify that the corresponding resource types exist:

Also applies to: 45-46

✅ Verification successful

The expansion interfaces correctly correspond to their CRD types

The verification confirms that both expansion interfaces have their corresponding Custom Resource Definition (CRD) types properly defined in the API package:

DataEngineUpgradeManager is defined in k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go
NodeDataEngineUpgrade is defined in k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go

Both types follow the standard Kubernetes CRD structure with TypeMeta, ObjectMeta, Spec, and Status fields.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the existence of corresponding CRD types for the new expansion interfaces

# Check for DataEngineUpgradeManager type
rg -A 5 "type DataEngineUpgradeManager struct" k8s/pkg/apis/longhorn/v1beta2/

# Check for NodeDataEngineUpgrade type
rg -A 5 "type NodeDataEngineUpgrade struct" k8s/pkg/apis/longhorn/v1beta2/

Length of output: 1327

k8s/pkg/apis/longhorn/v1beta2/register.go (2)

68-71: LGTM! The new types follow Kubernetes API conventions.

The addition of DataEngineUpgradeManager and NodeDataEngineUpgrade types (and their List counterparts) is well-structured and maintains the alphabetical ordering in the scheme registration.

68-71: Verify API versioning implications.

Adding new types to the v1beta2 API group is a significant change. Please ensure:

These changes don't require an API version bump
Any necessary migration paths are in place
API backward compatibility is maintained

✅ Verification successful

Let me gather more information about API versioning and compatibility by checking for conversion code and CRD definitions specifically for these new types.

Let me gather more information about the API versioning and conversion setup by checking for conversion webhooks and CRD specifications.

Based on the gathered information, I can now provide a final response:

Adding new types to v1beta2 API is safe with existing conversion infrastructure

The codebase has proper API versioning support in place:

A conversion webhook service is configured and running (longhorn-conversion-webhook)
The webhook is a prerequisite for the manager's readiness
New types are being added to the existing v1beta2 API group which is the current storage version

No API version bump is needed as:

These are new types being introduced, not modifications to existing ones
The conversion webhook infrastructure is already in place to handle future versioning needs
The changes maintain backward compatibility since they're additive

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for API version related files and CRD definitions

# Check for API migration code
echo "Checking for API migration code..."
rg -g '!vendor' -l 'conversion.*v1beta' 

# Check for CRD definitions
echo "Checking for CRD definitions..."
fd -e yaml -e yml . | xargs rg -l 'DataEngineUpgradeManager\|NodeDataEngineUpgrade'

# Check for version-related comments/docs
echo "Checking for version-related documentation..."
rg -g '!vendor' 'v1beta2.*upgrade'

Length of output: 1648

Script:

#!/bin/bash
# Check for conversion code and API compatibility

# Look for conversion functions or hub/conversion implementations
echo "Checking for conversion implementations..."
rg -g '!vendor' 'func.*Convert.*DataEngineUpgrade'

# Check for CRD definitions of the new types
echo "Checking CRD yaml files..."
fd crd | xargs cat | grep -A 10 "kind: CustomResourceDefinition" | grep -A 10 "longhorn.io"

# Check for any API compatibility comments or documentation
echo "Checking for API compatibility documentation..."
rg -g '!vendor' -B 2 -A 2 'v1beta2.*DataEngineUpgrade'

# Check for hub versions or storage versions
echo "Checking for storage version markers..."
rg -g '!vendor' 'storage.*=.*true' k8s/

Length of output: 61375

Script:

#!/bin/bash
# Check for conversion webhook configurations and CRD specifications

# Look for conversion webhook configurations
echo "Checking for conversion webhook configurations..."
rg -g '!vendor' -B 3 -A 3 'conversion.*webhook'

# Check CRD specifications for storage versions
echo "Checking CRD specifications for storage versions..."
fd -e yaml -e yml . | xargs grep -A 5 "versions:"

# Look for API compatibility comments or documentation
echo "Checking for API compatibility documentation..."
rg -g '!vendor' -B 2 -A 2 'v1beta.*compatibility'

Length of output: 14476

webhook/server/validation.go (2)

13-13: LGTM: Import additions are well-organized

The new imports for data engine upgrade components follow the project's package structure and are properly organized with other resource imports.

Also applies to: 17-17

52-53: LGTM: Validator additions follow established patterns

The new validators for data engine upgrades are properly integrated into the validation chain and follow the same initialization pattern as other resource validators.

Let's verify the implementation of these validators:

✅ Verification successful

Let me try a different approach to verify the validator implementations.

Validators are properly implemented with all required interface methods

Both validators follow the correct implementation pattern with:

Proper struct definitions embedding DefaultValidator
Complete implementation of admission.Validator interface:
- Resource() method defining the resource names
- Create() method for validation of new resources
- Update() method for validation of resource modifications
- Proper type assertions for their respective types (DataEngineUpgradeManager and NodeDataEngineUpgrade)

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the implementation of the new validators
# Expected: Each validator should implement the required admission.Validator interface methods

# Check for the validator implementations
echo "Checking DataEngineUpgradeManager validator..."
ast-grep --pattern 'type $_ struct {
  $$$
}

func (v $_) Resource() admission.Resource {
  $$$
}

func (v $_) Create($_) error {
  $$$
}

func (v $_) Update($_) error {
  $$$
}

func (v $_) Delete($_) error {
  $$$
}' webhook/resources/dataengineupgrademanager/validator.go

echo "Checking NodeDataEngineUpgrade validator..."
ast-grep --pattern 'type $_ struct {
  $$$
}

func (v $_) Resource() admission.Resource {
  $$$
}

func (v $_) Create($_) error {
  $$$
}

func (v $_) Update($_) error {
  $$$
}

func (v $_) Delete($_) error {
  $$$
}' webhook/resources/nodedataengineupgrade/validator.go

Length of output: 750

Script:

#!/bin/bash
# Let's check if these files exist first and then look at their content
echo "Checking for validator files..."
fd validator.go -p webhook/resources/dataengineupgrademanager
fd validator.go -p webhook/resources/nodedataengineupgrade

echo -e "\nChecking DataEngineUpgradeManager validator content..."
rg -A 2 "type.*struct|func.*Resource|func.*Create|func.*Update|func.*Delete" webhook/resources/dataengineupgrademanager/validator.go || true

echo -e "\nChecking NodeDataEngineUpgrade validator content..."
rg -A 2 "type.*struct|func.*Resource|func.*Create|func.*Update|func.*Delete" webhook/resources/nodedataengineupgrade/validator.go || true

Length of output: 2104

webhook/resources/dataengineupgrademanager/mutator.go (4)

21-24: LGTM! Clean struct definition following composition pattern.

The struct is well-designed, embedding the DefaultMutator and maintaining necessary dependencies.

1-74: Overall implementation looks solid!

The mutator implementation follows good practices with proper error handling, clear separation of concerns, and follows the webhook pattern. The suggested improvements are minor enhancements to improve debugging and robustness.

47-74: Consider validating upgradeManager.Name.

The mutate function should validate that upgradeManager.Name is non-empty before using it in error messages.

37-39: Verify if Update operation should be supported.

Given that this is for live upgrades, should the mutator also handle Update operations for DataEngineUpgradeManager resources?

✅ Verification successful

Based on the gathered information from all the executed scripts, I can now provide a final response:

Update operation should be omitted for this mutating webhook

The current implementation correctly handles only Create operations for the DataEngineUpgradeManager webhook. While there are Update operations in the client code (as seen in the clientset), these are for normal API operations. The mutation webhook specifically focuses on initial creation because:

The client code shows separate paths for Updates and UpdateStatus operations, which are handled by the controller layer rather than admission webhooks
The DataEngineUpgradeManagerController exists to manage the lifecycle after creation
No other webhooks were found handling updates, suggesting this is an intentional design where mutations are only needed during resource creation

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check if Update operations are handled elsewhere or if this is intentional.

# Check for Update operation handlers in related files
rg -A 5 "DataEngineUpgradeManager.*Update" 

# Check validator for any Update operation handling
fd -e go -x grep -l "Update.*DataEngineUpgradeManager" {} \;

Length of output: 7308

Script:

#!/bin/bash
# Let's check the validator configuration to understand the complete admission control setup
rg -A 10 "DataEngineUpgradeManager.*validator" 

# Also check the CRD definition to understand the intended operations
fd "dataengineupgrademanager" -t f -e yaml | xargs cat

# Check for any upgrade-related logic in controllers
ast-grep --pattern 'type DataEngineUpgradeManagerController struct {
  $$$
}'

Length of output: 1311

Script:

#!/bin/bash
# Let's check the controller implementation to understand the upgrade workflow
rg -A 10 "func \(c \*DataEngineUpgradeManagerController\) (Create|Update|Sync|reconcile)" 

# Check if there are any other webhooks handling updates
fd -t f -e go -x grep -l "webhook.*DataEngineUpgradeManager" {} \;

# Check for any validation rules in the webhook
rg -A 5 "ValidatingWebhookConfiguration.*DataEngineUpgradeManager"

Length of output: 232

webhook/resources/nodedataengineupgrade/mutator.go (3)

1-19: LGTM: Well-organized imports and package structure

The imports are properly organized and grouped by external/internal dependencies.

54-62: Verify label mutation security implications

The code applies labels from GetNodeDataEngineUpgradeLabels without validation. Verify that these labels cannot be manipulated in ways that could affect system security.

✅ Verification successful

Let me analyze the implementation of GetNodeDataEngineUpgradeLabels to understand how the labels are constructed.

Let me check the label key constants and how they are used in the system.

Based on the analysis of the code, I can now generate the final response:

Label mutation is safely implemented with controlled values

The GetNodeDataEngineUpgradeLabels implementation shows that:

Labels are constructed using a fixed prefix longhorn.io/
Label keys are predefined constants
Label values are derived from controlled inputs (upgradeManagerID and nodeID)
Base labels include a managed-by field set to a constant control plane name

The label mutation is safe because:

All label keys are namespaced with the Longhorn prefix
Values are derived from existing resource fields without transformation
The implementation follows Kubernetes labeling best practices

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check how NodeDataEngineUpgrade labels are used in the system
rg -A 5 "GetNodeDataEngineUpgradeLabels"

# Look for label-based security controls
rg -l "selector.*label"

Length of output: 17205

Script:

#!/bin/bash
# Check the implementation of GetBaseLabelsForSystemManagedComponent and related label functions
ast-grep --pattern 'func GetBaseLabelsForSystemManagedComponent() map[string]string {
  $$$
}'

# Check label key constants
rg -A 3 "const.*LonghornLabel"

Length of output: 343

Script:

#!/bin/bash
# Check all Longhorn label related constants and their usage
rg "LonghornLabel" types/types.go -A 2

# Check how these labels are validated or used in security contexts
ast-grep --pattern 'func $_($$_) {
  $$$
  label$$$
  $$$
}'

Length of output: 8496

30-41: Verify if Update/Delete operations should be supported

The mutator currently only supports Create operations. Given this is for live upgrades, verify if Update/Delete operations should also be handled.

✅ Verification successful

Let me check the controller implementation to understand how NodeDataEngineUpgrade resources are handled.

Only Create operations are required for NodeDataEngineUpgrade webhook

The current implementation is correct. The evidence shows that:

The controller handles status updates internally via UpdateNodeDataEngineUpgradeStatus
Status updates are implementation details and don't require webhook validation
The resource is designed to be immutable after creation, with only its status being updated by the controller
Delete operations are handled by standard Kubernetes garbage collection

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for any Update/Delete operations on NodeDataEngineUpgrade resources
ast-grep --pattern 'Update($$$)' 
ast-grep --pattern 'Delete($$$)'

# Check if there are any controller implementations that might need these operations
rg -l "NodeDataEngineUpgrade.*Controller"

Length of output: 184

Script:

#!/bin/bash
# Check the controller implementation for update/delete operations
rg -A 10 "NodeDataEngineUpgrade.*Controller" controller/node_upgrade_controller.go

# Check for any status updates or deletions in the controller
rg "Update|Delete" controller/node_upgrade_controller.go

# Check the API type definition for any fields that might need updates
ast-grep --pattern 'type NodeDataEngineUpgrade struct {
  $$$
}'

Length of output: 5747

k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go (5)

1-4: LGTM: Clean package declaration and imports

The package declaration and imports are appropriate for a Kubernetes custom resource definition.

37-53: LGTM: Well-structured CRD with comprehensive annotations

The resource definition includes:

Appropriate generation tags for client and deepcopy
Useful print columns for operational visibility
Proper storage version annotation
Standard Kubernetes resource structure

55-62: LGTM: Standard list type implementation

The list type follows the standard Kubernetes pattern for list resources.

13-19: Document possible upgrade states and messages

The structure would benefit from documentation describing:

Possible values for the State field
Expected format/content of the Message field

Let's verify the UpgradeState type definition:

1-62: Verify integration with upgrade controller

Since this CRD is central to the v2 data engine live upgrade feature, let's verify its integration with the upgrade controller:

✅ Verification successful

The search results show comprehensive integration of the DataEngineUpgradeManager CRD with the upgrade controller. Let me verify the controller implementation to ensure it properly handles the resource.

Let me verify the monitor implementation since it's a crucial part of the upgrade process.

Based on the comprehensive verification of the codebase, I can now provide a final response:

Integration with upgrade controller is properly implemented

The DataEngineUpgradeManager CRD is well-integrated with a dedicated controller and monitoring system:

Complete controller implementation with proper reconciliation logic
Dedicated monitor implementation that tracks upgrade status
Proper handling of ownership, state transitions, and cleanup
Status updates are properly propagated through the controller

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for DataEngineUpgradeManager usage in controllers
rg "DataEngineUpgradeManager" --type go -g "*controller*.go"

Length of output: 5805

Script:

#!/bin/bash
# Check the core reconciliation logic in the upgrade manager controller
ast-grep --pattern 'func (uc *DataEngineUpgradeManagerController) reconcile($$$) $$$'

Length of output: 6851

Script:

#!/bin/bash
# Check the DataEngineUpgradeManagerMonitor implementation
ast-grep --pattern 'type DataEngineUpgradeManagerMonitor struct {
  $$$
}'

# Also check its constructor
ast-grep --pattern 'func NewDataEngineUpgradeManagerMonitor($$$) $$$'

Length of output: 2412

webhook/server/mutation.go (1)

16-16: LGTM! Import statements follow project conventions.

The new imports for data engine upgrade resources are properly organized alongside other resource imports.

Also applies to: 21-21

engineapi/instance_manager_test.go (2)

1-4: LGTM!

The package declaration and imports are clean and follow Go best practices.

86-96: ⚠️ Potential issue

Fix map comparison logic in equalMaps.

The current implementation only checks if all keys in map 'a' exist in map 'b' with matching values, but doesn't verify that 'b' doesn't contain extra keys. This could lead to false positives.

Apply this diff to fix the map comparison:

 func equalMaps(a, b map[string]string) bool {
     if len(a) != len(b) {
         return false
     }
     for k, v := range a {
-        if b[k] != v {
+        if bv, exists := b[k]; !exists || bv != v {
             return false
         }
     }
     return true
 }

The length check at the start ensures both maps have the same number of entries, but the improved implementation makes the code more explicit and maintainable.

k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go (2)

71-78: LGTM!

The list type implementation follows Kubernetes conventions perfectly.

28-28: Verify DataEngineType dependency.

The DataEngineType type is used but not imported. Need to verify its definition and compatibility.

k8s/pkg/client/listers/longhorn/v1beta2/nodedataengineupgrade.go (3)

1-26: LGTM: File header and imports are properly structured

The file follows standard Kubernetes code generation patterns with proper license header and necessary imports.

55-94: LGTM: Namespace-specific lister implementation is correct

The implementation correctly handles namespaced resources and follows Kubernetes patterns for error handling. Let's verify the error handling consistency across the codebase.

✅ Verification successful

Error handling and key construction patterns are consistent across the codebase

The verification shows that the error handling in NodeDataEngineUpgrade lister follows the standard Kubernetes patterns consistently used across all listers in the codebase:

All listers use errors.NewNotFound() with proper resource types for not-found errors
Key construction follows the standard namespace + "/" + name format across all namespaced resources
The implementation aligns with both v1beta1 and v1beta2 listers in the codebase

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify consistent error handling patterns
# Expected: Find similar error handling patterns in other listers

# Search for similar error handling patterns in other listers
ast-grep --pattern 'errors.NewNotFound($_, $_)'

# Search for key construction patterns
rg 'GetByKey\(.*\+.*\)' --type go

Length of output: 12059

28-53: LGTM: NodeDataEngineUpgradeLister implementation follows Kubernetes patterns

The implementation correctly uses cache.Indexer and follows standard Kubernetes lister patterns. However, let's verify the resource type registration.

k8s/pkg/client/listers/longhorn/v1beta2/dataengineupgrademanager.go (3)

1-26: LGTM: Standard package setup and imports

The file header, license, and imports are properly structured following Kubernetes conventions.

28-35: LGTM: Well-structured interface with extension support

The interface follows Kubernetes best practices with:

Clear method documentation
Standard List method with label selector support
Namespace-specific lister access
Extension point via DataEngineUpgradeManagerListerExpansion

84-94: LGTM: Proper error handling in Get method

The Get method follows best practices with:

Proper key construction for indexer lookup
Comprehensive error handling
Use of standard Kubernetes NotFound error type

k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go (3)

17-17: Note: This is generated code

This file is automatically generated by informer-gen. Any changes should be made to the source generation configuration rather than directly to this file.

80-82: LGTM: Proper namespace indexing

The default informer correctly sets up namespace indexing, which is crucial for the live upgrade feature to properly scope upgrade operations to specific namespaces.

61-66: Verify context handling in List/Watch operations

The implementation uses context.TODO() for List/Watch operations. While this is common in generated code, verify that the parent controller properly handles context cancellation for cleanup during upgrades.

Also applies to: 67-72

✅ Verification successful

Context handling is properly implemented in the monitoring system

The verification shows that context handling is properly implemented:

The base monitor struct maintains a context.Context and CancelFunc
The NodeDataEngineUpgradeMonitor uses PollUntilContextCancel which properly handles context cancellation
The monitor is started with a context from the parent controller system

The use of context.TODO() in the informer is standard practice for generated code, as the actual context handling is implemented in the controller/monitor layer where cleanup operations occur.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for context handling in the parent controller
ast-grep --pattern 'func \($_\) \($_\)(\$_, context.Context, \$_) {
  $$$
}'

Length of output: 78

Script:

#!/bin/bash
# Let's search for NodeDataEngineUpgrade controller implementations and context usage
rg -l "NodeDataEngineUpgrade" --type go

# Then search for context handling patterns in informer/controller code
rg "context\." -A 3 -B 3 --type go | grep -A 3 -B 3 "NodeDataEngineUpgrade"

# Also check for general controller patterns with context
ast-grep --pattern 'type $_Controller struct {
  $$$
}'

# And search for Run/Start methods that might handle context
rg "func.*Run|func.*Start" --type go | grep -A 3 "context"

Length of output: 70035

Script:

#!/bin/bash
# Let's search for NodeDataEngineUpgrade controller and monitor implementations
rg -A 10 "type.*NodeDataEngineUpgrade.*Controller struct" --type go

# Check for context handling in node upgrade monitor
rg -A 10 "type.*NodeDataEngineUpgradeMonitor struct" --type go

# Look for context usage in upgrade-related code
rg "context\." -A 3 -B 3 "node.*upgrade" --type go --ignore-case

Length of output: 1689

Script:

#!/bin/bash
# Let's check how context is handled in the node upgrade controller and monitor
rg -A 5 "func.*Run|func.*Start" controller/node_upgrade_controller.go controller/monitor/node_upgrade_monitor.go

# Check for context usage in the controller implementation
rg "context\." -A 3 controller/node_upgrade_controller.go

# Look at the base monitor implementation for context handling
rg -A 10 "type.*baseMonitor struct" --type go

Length of output: 3072

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_longhorn_client.go (2)

79-81: LGTM! Implementation follows the established pattern.

The NodeDataEngineUpgrades method is correctly implemented following the client-gen pattern and maintains consistency with other methods in the file.

Let's verify the existence of the corresponding fake implementation:

✅ Verification successful

Implementation is correctly structured and complete

The fake implementation exists at k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go and follows the established pattern in the codebase. The implementation is properly referenced in both the client file and has its dedicated fake implementation file, consistent with other resources in the same package.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the fake implementation file exists
fd -e go "fake_nodedataengineupgrades\.go$" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/

Length of output: 109

Script:

#!/bin/bash
# Let's try a broader search to understand the structure and naming patterns
fd -e go . k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/

# Also search for references to NodeDataEngineUpgrade in the codebase
rg -l "NodeDataEngineUpgrade" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/

Length of output: 2529

59-61: LGTM! Implementation follows the established pattern.

The DataEngineUpgradeManagers method is correctly implemented following the client-gen pattern and maintains consistency with other methods in the file.

Let's verify the existence of the corresponding fake implementation:

✅ Verification successful

The fake implementation exists and follows the correct pattern

The verification confirms that:

The fake implementation file fake_dataengineupgrademanager.go exists in the correct location
The file follows the same naming convention as other fake implementations
Both the client and implementation files contain the necessary DataEngineUpgradeManager references

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the fake implementation file exists
fd -e go "fake_dataengineupgrademanagers\.go$" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/

Length of output: 112

Script:

#!/bin/bash
# Let's try a broader search to understand the fake implementations structure
fd -e go "fake_.*\.go$" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/

Length of output: 2198

Script:

#!/bin/bash
# Let's also check the content of the directory to ensure we're looking at the right place
ls -la k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/

Length of output: 2000

Script:

#!/bin/bash
# Let's search for DataEngineUpgradeManager references in the fake directory
rg -l "DataEngineUpgradeManager" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/

Length of output: 279

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/longhorn_client.go (4)

36-36: LGTM: Interface additions follow Kubernetes client-go patterns

The new getter interfaces DataEngineUpgradeManagersGetter and NodeDataEngineUpgradesGetter are correctly added to the LonghornV1beta2Interface, following standard Kubernetes client-go patterns and maintaining alphabetical order.

Also applies to: 41-41

88-90: LGTM: DataEngineUpgradeManagers implementation is correct

The implementation follows the standard Kubernetes client-go patterns, properly handling namespace scoping and using the factory pattern consistently with other resource types.

108-110: LGTM: NodeDataEngineUpgrades implementation is correct

The implementation follows the standard Kubernetes client-go patterns, properly handling namespace scoping and using the factory pattern consistently with other resource types.

Line range hint 36-110: Verify the presence of required supporting files

Since this is a generated file, let's verify the presence of all required supporting files for the new resource types.

✅ Verification successful

Let me verify the factory functions more thoroughly since the previous search pattern might have been too strict.

All required supporting files are present and properly integrated

The verification confirms the presence of all necessary components:

Resource type definitions exist in k8s/pkg/apis/longhorn/v1beta2/
Interface definitions are present in the client package
Factory functions are correctly implemented in their respective files

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for the presence of required supporting files for new resource types

echo "Checking for resource type definitions..."
fd -e go "dataengineupgrademanager" k8s/pkg/apis/
fd -e go "nodedataengineupgrade" k8s/pkg/apis/

echo "Checking for factory functions..."
fd -e go "new.*dataengineupgrademanager" k8s/pkg/client/
fd -e go "new.*nodedataengineupgrade" k8s/pkg/client/

echo "Checking for interface definitions..."
rg -l "type (DataEngineUpgradeManager|NodeDataEngineUpgrade)Interface" k8s/pkg/client/

Length of output: 837

Script:

#!/bin/bash
# Check for factory function implementations with a more flexible pattern
echo "Checking factory functions in dataengineupgrademanager.go..."
rg "func new.*DataEngineUpgradeManager" k8s/pkg/client/

echo "Checking factory functions in nodedataengineupgrade.go..."
rg "func new.*NodeDataEngineUpgrade" k8s/pkg/client/

Length of output: 745

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go (2)

39-41: LGTM: Resource and kind definitions are correct.

The GroupVersionResource and GroupVersionKind definitions follow Kubernetes API conventions and align with the v2 data engine upgrade feature.

33-37: LGTM: Well-structured fake client implementation.

The FakeDataEngineUpgradeManagers implementation follows client-go patterns and provides a comprehensive testing infrastructure for the v2 data engine upgrade feature. The implementation includes all necessary CRUD operations with proper error handling and type safety.

Let's verify the consistency of the resource definition across the codebase:

✅ Verification successful

Let me gather more information to verify the complete implementation:

LGTM: Fake client implementation is complete and consistent

The fake client implementation correctly implements all methods defined in the DataEngineUpgradeManagerInterface, including CRUD operations (Create, Read, Update, Delete), List, Watch, Patch, and UpdateStatus. The implementation follows the standard client-go patterns and properly handles type safety and error cases.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify resource definition consistency

# Check for the actual CRD definition
rg -A 5 "kind: CustomResourceDefinition.*dataengineupgrademanagers" 

# Check for related controller implementations
ast-grep --pattern 'type DataEngineUpgradeManager struct {
  $$$
}'

Length of output: 819

Script:

#!/bin/bash
# Check for the fake client implementation completeness
rg -A 10 "func \(c \*FakeDataEngineUpgradeManagers\)" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go

# Check for the real client implementation
rg -A 10 "func \(c \*dataengineupgrademanagers\)" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go

# Check for the interface definition
ast-grep --pattern 'type DataEngineUpgradeManagerInterface interface {
  $$$
}'

Length of output: 6946

k8s/pkg/apis/longhorn/v1beta2/node.go (2)

16-31: LGTM! Verify constant usage consistency.

The new node condition reason constant follows the established naming convention and is appropriately placed within the node condition reasons group.

Let's verify the consistent usage of this constant across the codebase:

✅ Verification successful

✓ Constant usage is consistent and properly integrated

The constant NodeConditionReasonNodeDataEngineUpgradeRequested is correctly used in the node controller to set the reason when a node's data engine upgrade is requested. The implementation follows the same pattern as other node condition reasons, where it:

Sets disableScheduling to true
Sets the reason using the constant
Provides a descriptive message
Updates node conditions accordingly

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for usage of the new constant to ensure it's properly integrated
rg "NodeConditionReasonNodeDataEngineUpgradeRequested" --type go

# Search for related condition checks to ensure consistent condition handling
ast-grep --pattern 'if $cond.Reason == $reason {
  $$$
}'

Length of output: 356

Script:

#!/bin/bash
# Let's check the context of how this constant is used in node_controller.go
rg -B 5 -A 5 "NodeConditionReasonNodeDataEngineUpgradeRequested" controller/node_controller.go

# Let's also check for similar condition reason handling patterns
rg "Reason = string\(.*NodeConditionReason.*\)" --type go

Length of output: 598

149-151: Consider versioning and migration strategy.

As this adds a new field to the Node CRD:

Ensure backward compatibility with older versions
Consider documenting the upgrade path for existing deployments
Verify that the node controller handles the absence of this field gracefully

Let's check the CRD versioning and conversion setup:

✅ Verification successful

Let me gather more specific information about the conversion setup and version handling.

Let me check for any existing conversion handling for this new field.

Let me check for the conversion webhook implementation to verify how new fields are handled.

Based on the evidence gathered, I can now provide a final response:

Versioning and migration strategy is properly handled.

The CRD has proper webhook conversion setup between v1beta1 and v1beta2 versions as shown in the node.yaml configuration. The new field being optional (+optional) means:

It will default to false for older versions
The conversion webhook will handle the field appropriately between versions
Existing deployments will continue to work without modification

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check for CRD conversion webhook configurations
rg "conversion:" --type yaml

# Look for version handling in controllers
ast-grep --pattern 'type $name struct {
  $$$
  scheme *runtime.Scheme
  $$$
}'

Length of output: 510

Script:

#!/bin/bash
# Check the detailed conversion webhook configuration for node CRD
cat k8s/patches/crd/webhook/node.yaml

# Look for version conversion code specific to nodes
rg "Convert.*Node" -A 5

# Check for existing handling of optional fields in node controller
rg "DataEngineUpgradeRequested" -A 3

Length of output: 108887

Script:

#!/bin/bash
# Check for conversion code specific to Node CRD
cat k8s/patches/crd/webhook/node.yaml

# Look for any existing conversion handling in the codebase
rg "Convert.*Node.*v1beta" -A 5

Length of output: 5879

Script:

#!/bin/bash
# Look for the conversion webhook implementation
rg -g "*.go" "type.*ConversionHandler" -A 10

# Check for any existing conversion logic for Node CRD
rg -g "*.go" "Convert.*Node.*v1beta[12]" --no-heading

Length of output: 1984

k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (3)

239-239: LGTM: Helpful addition to kubectl output

The new printcolumn for Image will improve observability when using kubectl to inspect instance managers.

61-67: LGTM: New instance state for upgrade support

The addition of InstanceStateSuspended state aligns well with the live upgrade feature requirements. The state will be useful for temporarily suspending instances during the upgrade process.

Let's verify the state usage in the codebase:

✅ Verification successful

The suspended state is properly integrated and used in the codebase

The verification shows that InstanceStateSuspended is well-integrated into the codebase:

Used in volume controller for handling live upgrades
Properly handled in instance handler with specific logic for v2 data engine
Integrated with engine controller's instance management logic
Has proper state transition handling (suspend/resume operations)

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for handlers of the suspended state
rg "InstanceStateSuspended" -A 5

Length of output: 4032

Line range hint 1-257: Verify CRD consistency across the upgrade feature

Let's ensure the instance manager changes are consistent with related CRDs:

✅ Verification successful

Based on the verification results, I can now provide the final response since I have sufficient information from the shell script output. The search revealed that the target-related fields (targetNodeID, TargetIP, StorageTargetIP) are properly defined in both the CRD (k8s/crds.yaml) and the Go types (k8s/pkg/apis/longhorn/v1beta2/instancemanager.go), showing consistency across the upgrade feature.

CRD definitions are properly aligned with type definitions

The instance manager changes maintain consistency with related CRDs:

All target-related fields are properly defined in CRDs with matching types
Field definitions in Go types match their CRD counterparts
The upgrade feature maintains backward compatibility with existing fields

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for related CRDs that might need similar fields
rg -t yaml "kind:\s+(Custom)?ResourceDefinition" | while read -r crd; do
  echo "=== Checking CRD: $crd ==="
  rg -A 10 "targetNodeID|TargetIP|StorageTargetIP" "$(dirname "$crd")"
done

Length of output: 111429

k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go (1)

77-83: LGTM! The new interfaces follow the established patterns.

The added interfaces for DataEngineUpgradeManager and NodeDataEngineUpgrade are consistent with the existing interface patterns and naming conventions in the file.

Let's verify that this file was properly generated:

Also applies to: 117-123

✅ Verification successful

✓ Generated code verified

The file contains the standard Kubernetes code generation marker "Code generated by lister-gen. DO NOT EDIT." confirming it's properly generated and not meant for manual edits.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that the file matches the expected generated output
# Look for the code-generator configuration and verify its output

# Find code-generator configuration
fd -t f "generate-groups.sh|hack/generate.sh"

# Look for lister-gen configuration
rg -l "lister-gen" .

Length of output: 14625

Script:

#!/bin/bash
# Let's verify if this file is generated by looking for code generation configuration
# and checking the file header

# Look for code generation configuration in hack directory
fd -t f "generate-groups.sh|generate.sh" hack/

# Check the file header to confirm it's generated
head -n 5 k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go

Length of output: 290

Script:

#!/bin/bash
# Let's check for the code generation marker and search for the generation script in the repository

# Check for the code generation marker
rg -A 1 "Code generated by" k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go

# Search for any Kubernetes code generation related files
fd -t f "update-codegen.sh|codegen.sh"

Length of output: 180

k8s/pkg/client/informers/externalversions/longhorn/v1beta2/interface.go (2)

41-42: LGTM! Interface additions follow the established pattern.

The new informer methods are correctly added to the Interface type, maintaining alphabetical order and following the consistent pattern of other informer declarations.

Also applies to: 51-52

123-126: LGTM! Implementation follows the standard informer pattern.

The implementations of DataEngineUpgradeManagers() and NodeDataEngineUpgrades() correctly follow the established pattern:

Proper initialization using factory, namespace, and tweakListOptions
Consistent return type initialization
Matches the pattern of other informer implementations

Let's verify the existence of the required informer types:

Also applies to: 148-151

✅ Verification successful

Let me verify the implementation details of these informers to ensure complete consistency.

Verified: Informer implementations are correctly structured and consistent

The verification confirms that both informers follow the standard Kubernetes informer pattern with:

Properly defined interfaces (DataEngineUpgradeManagerInformer and NodeDataEngineUpgradeInformer)
Consistent struct implementations with required fields (factory, tweakListOptions, namespace)
Standard informer methods (Informer and Lister)
Matching implementation structure between both informer types

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the existence of required informer type definitions

# Check for DataEngineUpgradeManagerInformer type
rg -l "type DataEngineUpgradeManagerInformer interface" .

# Check for NodeDataEngineUpgradeInformer type
rg -l "type NodeDataEngineUpgradeInformer interface" .

# Check for corresponding informer struct definitions
rg -l "type (dataEngineUpgradeManagerInformer|nodeDataEngineUpgradeInformer) struct" .

Length of output: 555

Script:

#!/bin/bash
# Check the implementation details of both informer types
rg -A 10 "type DataEngineUpgradeManagerInformer interface" ./k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go
rg -A 10 "type NodeDataEngineUpgradeInformer interface" ./k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go

# Check the struct implementations
rg -A 5 "type dataEngineUpgradeManagerInformer struct" ./k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go
rg -A 5 "type nodeDataEngineUpgradeInformer struct" ./k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go

Length of output: 1615

k8s/pkg/client/informers/externalversions/generic.go (1)

103-104: LGTM! The new informer cases are properly integrated.

The additions for dataengineupgrademanagers and nodedataengineupgrades follow the established patterns and are correctly placed within the v1beta2 version group.

Let's verify that these new resources are properly registered in the scheme:

Also applies to: 113-114

✅ Verification successful

The informer cases are properly integrated and supported by CRD definitions

The verification confirms:

Both dataengineupgrademanagers and nodedataengineupgrades are properly defined as CustomResourceDefinitions in k8s/crds.yaml
The CRDs follow Kubernetes conventions with correct group (longhorn.io), plural names, and scope
The informer factory setup in generic.go correctly maps these resources to their respective informers

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the new resources are registered in the scheme

# Check for resource registration in scheme
rg -A 5 "AddToScheme" | grep -E "dataengineupgrademanagers|nodedataengineupgrades"

# Check for corresponding CRD definitions
fd -e yaml -e yml | xargs grep -l "kind: CustomResourceDefinition" | xargs grep -l -E "dataengineupgrademanagers|nodedataengineupgrades"

Length of output: 235

Script:

#!/bin/bash
# Let's examine the CRD definitions and scheme registration more thoroughly

# Check the CRD definitions
cat k8s/crds.yaml | grep -A 10 -E "dataengineupgrademanagers|nodedataengineupgrades"

# Look for scheme registration in generated code
rg "func (v1beta2|Register)" k8s/pkg/apis/longhorn/v1beta2/ -A 5

# Check informer factory registration
rg "NewSharedInformerFactory" k8s/pkg/client/informers/externalversions/ -A 5

Length of output: 3565

controller/controller_manager.go (1)

157-165: LGTM! Controller initialization follows established patterns.

The initialization of both new controllers follows the consistent pattern used throughout the codebase, with proper error handling.

Let's verify the controller definitions:

✅ Verification successful

Let me verify the controller execution segment mentioned in the review comment by checking how these controllers are started.

Let me fix the regex and try again to verify the controller execution.

Let me check for the other controller's execution as well.

Both controllers are properly defined and integrated into the controller manager

The verification confirms:

Both controllers follow the standard structure with proper inheritance from baseController
Constructor functions accept consistent parameters (logger, datastore, scheme, kubeClient, controllerID, namespace)
Controllers are correctly started with the standard pattern using goroutines and the same number of workers

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the new controller definitions exist and follow the standard pattern

# Check for the controller definitions
rg -A 5 'type (DataEngineUpgradeManagerController|NodeDataEngineUpgradeController) struct'

# Check for the New constructor functions
rg -A 5 'func New(DataEngineUpgradeManagerController|NodeDataEngineUpgradeController)'

Length of output: 1831

Script:

#!/bin/bash
# Check how the controllers are started in the manager
rg -A 2 'go func\(\) {.*dataEngineUpgrade.*Controller\.Run\(' controller/controller_manager.go

Length of output: 243

Script:

#!/bin/bash
# Check how the controllers are started in the manager
rg "dataEngineUpgrade.*Controller" controller/controller_manager.go

Length of output: 268

Script:

#!/bin/bash
# Check how the node upgrade controller is started
rg "nodeDataEngine.*Controller" controller/controller_manager.go

Length of output: 256

k8s/pkg/apis/longhorn/v1beta2/volume.go (1)

358-359: 🛠️ Refactor suggestion

Add documentation and verify architectural consistency

The new status field needs:

Documentation explaining its role in tracking the upgrade process
Clarification of its relationship with spec.TargetNodeID
Verification of consistency with other node-related status fields

Add documentation and consider renaming for clarity:

 	// +optional
+	// CurrentTargetNodeID indicates the node that is currently targeted for data engine live upgrade.
+	// This field reflects the actual state of the upgrade process initiated by spec.TargetNodeID.
 	CurrentTargetNodeID string `json:"currentTargetNodeID"`

Let's verify the usage of these new fields in the codebase:

datastore/datastore.go (4)

93-96: LGTM: New fields follow established naming patterns

The new fields for data engine upgrades are correctly structured and follow the existing field naming patterns in the DataStore struct.

186-189: LGTM: Proper informer initialization and cache sync

The initialization of new informers follows the established pattern:

Informer creation from factory
Cache sync registration

279-282: LGTM: Consistent lister and informer assignments

The assignments of listers and informers in the NewDataStore constructor follow the existing pattern and maintain consistency with other resource types.

Line range hint 1-324: Verify the impact on existing upgrade workflows

Since this change introduces new components for data engine upgrades, we should verify that it doesn't conflict with existing upgrade mechanisms.

✅ Verification successful

Let me analyze the upgrade-related files more deeply to understand potential conflicts.

Based on the extensive code analysis, I can now provide a final response regarding the impact of the data engine upgrade components on existing upgrade workflows.

No conflicts with existing upgrade mechanisms

The new data engine upgrade components (DataEngineUpgradeManager and NodeDataEngineUpgrade) are completely separate from the existing upgrade mechanisms and have been carefully designed to work alongside them:

The data engine upgrade is specifically for transitioning between data engine versions (v1 to v2) and operates independently from other upgrade workflows
The implementation includes proper safeguards through:
- Dedicated controllers and monitors that handle only data engine upgrades
- Clear state management and validation in webhooks
- Node scheduling protection during upgrades
- Volume attachment restrictions during the upgrade process

The code shows that the data engine upgrade process has been implemented as an entirely new workflow that doesn't interfere with or modify any of the existing upgrade code paths.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for existing upgrade-related code patterns
echo "Searching for existing upgrade patterns..."
rg -l "upgrade" --type go

# Look for potential conflicts in upgrade-related functions
echo "Checking for upgrade-related functions..."
ast-grep --pattern 'func $_($$) {
  $$$
  upgrade
  $$$
}'

Length of output: 9260

Script:

#!/bin/bash
# Check existing upgrade manager implementation
echo "Checking existing upgrade manager implementation..."
rg -A 10 "type UpgradeManager" --type go

# Check upgrade workflow in controllers
echo "Checking upgrade workflow in controllers..."
rg -A 10 "func.*[Uu]pgrade" controller/upgrade_manager_controller.go

# Look for data engine related upgrade code
echo "Looking for data engine upgrade related code..."
rg -A 5 "DataEngine.*[Uu]pgrade" --type go

Length of output: 100983

types/types.go (1)

163-164: LGTM!

The new label constants are well-defined and align with the data engine upgrade feature requirements.

Also applies to: 193-193

controller/uninstall_controller.go (2)

49-50: LGTM: Constants follow established naming pattern

The new CRD name constants are well-defined and consistent with the existing naming convention.

649-662: LGTM: Resource deletion methods follow established patterns

The new deletion methods for DataEngineUpgradeManager and NodeDataEngineUpgrade resources:

Follow consistent error handling patterns
Include appropriate logging
Handle "not found" cases correctly
Use the same deletion workflow as other resources

Also applies to: 1186-1228

k8s/crds.yaml (5)

1313-1408: Well-structured DataEngineUpgradeManager CRD definition

The new CRD for managing data engine upgrades is well-designed with:

Clear separation of upgrade management responsibilities
Proper status tracking fields
Informative printer columns for kubectl output

2358-2446: Well-structured NodeDataEngineUpgrade CRD definition

The new CRD for node-level data engine upgrades is well-designed with:

Clear node targeting mechanism
Volume-level status tracking
Proper integration with DataEngineUpgradeManager

2569-2571: Clear upgrade request field in Node CRD

The addition of dataEngineUpgradeRequested with a clear description helps control the upgrade process.

1785-1786: Consistent target node fields across Engine and Replica CRDs

The addition of target-related fields (targetNodeID, storageTargetIP, targetIP) is consistent between Engine and Replica CRDs, which is important for maintaining the relationship between these resources during upgrades.

Also applies to: 2004-2007, 3231-3232, 3295-3298

2105-2108: Improved InstanceManager observability

The addition of the image printer column improves observability by making the image information readily available in kubectl output.

webhook/resources/dataengineupgrademanager/validator.go (1)

41-53: Validation logic in Create method is appropriate

The Create method correctly validates that DataEngine is set to the supported type longhorn.DataEngineTypeV2. The validation ensures that only supported data engines are allowed during resource creation.

webhook/resources/nodedataengineupgrade/validator.go (5)

17-20: Struct Implementation is Correct

The nodeDataEngineUpgradeValidator struct correctly embeds admission.DefaultValidator and includes the necessary DataStore reference.

22-24: Validator Constructor Function is Well-Defined

The NewValidator function properly instantiates and returns a new validator instance with the provided DataStore.

26-38: Resource Metadata is Accurately Specified

The Resource method precisely defines the resource's metadata, including name, scope, API group, version, object type, and supported operation types.

40-66: Create Method Validates Required Fields Effectively

The Create method thoroughly checks for mandatory fields and validates their values, ensuring that:

Spec.NodeID is not empty.
Spec.DataEngine is of type DataEngineTypeV2.
Spec.InstanceManagerImage is provided.
Spec.DataEngineUpgradeManager is specified.

68-95: Update Method Enforces Field Immutability Appropriately

The Update method correctly ensures that critical fields remain immutable during updates by comparing the old and new objects:

Spec.NodeID
Spec.DataEngine
Spec.InstanceManagerImage
Spec.DataEngineUpgradeManager

controller/upgrade_manager_controller.go (2)

189-199: Handle potential conflict when updating OwnerID

When updating upgradeManager.Status.OwnerID, if a conflict occurs, the error is ignored with the assumption that "we don't mind others coming first." This might lead to unexpected behavior if multiple controllers contend for ownership.

Ensure that this behavior is acceptable in the context of the application. If not, consider handling the conflict more explicitly.

71-71: ⚠️ Potential issue

Correct event source namespace

The event recorder is initialized with an empty namespace (""), which may cause events to be recorded in the wrong namespace.

Update the event source to use the controller's namespace:

eventBroadcaster.StartRecordingToSink(&v1core.EventSinkImpl{
    Interface: v1core.New(kubeClient.CoreV1().RESTClient()).Events(uc.namespace),
})

webhook/resources/volume/mutator.go (1)

211-218: Ensure consistent instance manager image selection during upgrades

In the Create method, when setting the defaultImage for DataEngineTypeV2 volumes, the code updates it based on the active instance manager image. This approach relies on the current state of instance managers, which may vary across the cluster.

To avoid potential inconsistencies:

Confirm that the selected activeInstanceManagerImage is compatible with the volume being created.
Consider adding validation to ensure that all non-default instance managers are using the same image before assigning it to defaultImage.

This helps maintain consistency and prevents issues during live upgrades.

Run the following script to check for multiple active instance manager images:

This script counts the number of instance managers per image. Ideally, there should be only one active image in use.

controller/instance_handler_test.go (8)

Line range hint 39-49: Method signature updated for GetInstance

The GetInstance method now includes the isInstanceOnRemoteNode parameter to reflect interface changes. The mock implementation remains appropriate.

Line range hint 51-61: Method signature updated for CreateInstance

The CreateInstance method now includes the isInstanceOnRemoteNode parameter, aligning with interface updates. The mock implementation functions correctly.

75-77: Unimplemented method SuspendInstance returns indicative error

The SuspendInstance method returns an error indicating it is not mocked, which is acceptable for an unimplemented mock method.

79-81: Unimplemented method ResumeInstance returns indicative error

Similarly, the ResumeInstance method correctly returns an error indicating it is not mocked.

83-85: Unimplemented method SwitchOverTarget returns indicative error

This method returns an error to indicate it is not mocked, consistent with other unimplemented methods.

92-95: Implementation of IsEngine method is correct

The IsEngine method appropriately checks if the object is of type *longhorn.Engine.

101-104: Implementation of RequireRemoteTargetInstance method

The method returns false, nil, which is acceptable if no remote target instance is required in this mock context.

137-141: Additional fields in newEngine function initialized correctly

The TargetIP, StorageTargetIP, and TargetPort fields are appropriately set. Setting TargetPort to 0 for v1 volumes aligns with the comment and ensures backward compatibility.

webhook/resources/volume/validator.go (1)

388-393: Potential logic error when validating instance manager image

The validation checks at lines 388-393 may have a logical issue:

At line 388, if oldVolume.Spec.Image == instanceManagerImage, it returns an error stating the volume is already using the instance manager image.
Then it checks if newVolume.Spec.Image != instanceManagerImage and returns an error if it doesn't match.

This could prevent valid updates. Verify that this logic correctly enforces the intended constraints.

Please review the conditions to ensure they do not unintentionally block valid image updates.

controller/replica_controller.go (4)

Line range hint 316-354: Addition of isInstanceOnRemoteNode parameter in CreateInstance function

The CreateInstance function now includes the new parameter isInstanceOnRemoteNode, and it is correctly integrated into the function logic, particularly when calling GetInstanceManagerByInstanceRO. This enhancement aligns with updates in other controllers and improves instance management across remote nodes.

Line range hint 355-368: Correct usage of isInstanceOnRemoteNode in instance manager retrieval

The parameter isInstanceOnRemoteNode is appropriately passed to GetInstanceManagerByInstanceRO, ensuring that the correct instance manager is retrieved based on the instance’s node location.

631-634: Validation of instance type in IsEngine method is appropriate

The IsEngine method correctly checks if the provided object is of type *longhorn.Engine, which is logical for type assertions within the ReplicaController.

Line range hint 636-673: Integration of isInstanceOnRemoteNode parameter in GetInstance function

The GetInstance function has been updated to include the isInstanceOnRemoteNode parameter, and it is consistently used when retrieving the instance manager via GetInstanceManagerByInstanceRO. This change enhances the function’s ability to manage instances accurately based on their node location.

controller/monitor/node_upgrade_monitor.go (2)

58-64: Ensure thread-safe access to shared data to prevent race conditions

The NodeDataEngineUpgradeMonitor struct contains shared data like collectedData and nodeUpgradeStatus accessed by multiple goroutines. Although there are mutex locks (Lock and Unlock), ensure that all accesses to shared variables are properly synchronized to prevent data races.

145-146: Review the initialization logic in handleUpgradeStateUndefined

The method handleUpgradeStateUndefined transitions the state to Initializing without additional logic. Confirm that no other initialization steps are required at this point.

engineapi/instance_manager.go (3)

890-891: Fix typo in error message: 'date' should be 'data'

The error message contains a typo: 'date engine' should be 'data engine'.

908-909: Fix typo in error message: 'date' should be 'data'

The error message contains a typo: 'date engine' should be 'data engine'.

924-925: Fix typo in error message: 'date' should be 'data'

The error message contains a typo: 'date engine' should be 'data engine'.

controller/instance_handler.go (1)

927-931: ⚠️ Potential issue

Add missing defer client.Close() to prevent resource leak

After creating the InstanceManagerClient at line 928, the client should be properly closed to release resources. Missing the defer client.Close() call may lead to resource leaks.

Apply this diff to fix the issue:

scheduler/replica_scheduler.go (1)

744-747: Verify the impact of adding the false parameter to GetInstanceManagerByInstanceRO

The method call GetInstanceManagerByInstanceRO(r, false) now includes an additional boolean parameter false. Please ensure that this change aligns with the expected behavior of the function. Specifically, verify that passing false does not unintentionally alter instance manager retrieval logic, especially in edge cases.

controller/node_controller.go (1)

2177-2190: Appropriate handling of node schedulability during data engine upgrades

The addition of the condition else if node.Spec.DataEngineUpgradeRequested correctly ensures that the node is marked as unschedulable when a data engine upgrade is in progress. This prevents new workloads from being scheduled on the node during the upgrade process, aligning with the intended functionality.

k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (6)

981-1007: DeepCopy Functions for DataEngineUpgradeManager

The DeepCopyInto, DeepCopy, and DeepCopyObject methods for DataEngineUpgradeManager are correctly implemented, ensuring proper deep copy functionality.

1010-1061: DeepCopy Functions for DataEngineUpgradeManagerList and Spec

The methods for DataEngineUpgradeManagerList and DataEngineUpgradeManagerSpec are properly generated, with accurate handling of slices and maps in the deep copy processes.

1783-1810: DeepCopy Functions for NodeDataEngineUpgrade

The DeepCopyInto, DeepCopy, and DeepCopyObject methods for NodeDataEngineUpgrade are appropriately implemented, facilitating correct deep copying of the object.

1812-1890: DeepCopy Functions for NodeDataEngineUpgradeList, Spec, and Status

The deep copy methods for NodeDataEngineUpgradeList, NodeDataEngineUpgradeSpec, and NodeDataEngineUpgradeStatus are accurately generated, ensuring all fields, including maps and slices, are correctly copied.

2991-3006: DeepCopy Functions for UpgradeNodeStatus

The DeepCopyInto and DeepCopy methods for UpgradeNodeStatus are correctly implemented, providing proper deep copy capabilities for this struct.

3326-3341: DeepCopy Functions for VolumeUpgradeStatus

The generated deep copy methods for VolumeUpgradeStatus are correctly implemented, ensuring that instances of this struct can be safely duplicated.

controller/engine_controller.go (1)

708-709: Typographical error in error message

There is a typo in the error message within SwitchOverTarget. The message reads "invalid object for target switchover", it might be clearer if we say "Invalid object provided for target switchover".

[typographical_issue]

Correct the error message:

 return fmt.Errorf("invalid object provided for target switchover: %v", obj)

datastore/longhorn.go (4)

Line range hint 1801-1805: Correct usage of GetInstanceManagerByInstanceRO with additional parameter

The code change correctly updates the function call to include the new parameter false.

3761-3764: Inconsistent handling of isInstanceOnRemoteNode for Replicas

The isInstanceOnRemoteNode parameter is considered when the object is a *longhorn.Engine, but not when it's a *longhorn.Replica. If this is intentional, please ensure it's documented. Otherwise, consider whether the logic should also apply to Replicas.

3995-3997: Add check for empty imageName parameter

Good addition of input validation to check for empty imageName.

5998-6005: Add new method IsNodeDataEngineUpgradeRequested

The implementation correctly retrieves the node and returns the DataEngineUpgradeRequested flag.

k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go

coderabbitai · 2024-11-25T12:23:57Z

webhook/server/mutation.go

+		dataengineupgrademanager.NewMutator(ds),
+		nodedataengineupgrade.NewMutator(ds),


💡 Codebase verification

Missing mutator implementations for new resources

The mutators are referenced in webhook/server/mutation.go, but the required implementations are missing:

webhook/resources/dataengineupgrademanager/mutator.go - file exists but lacks the Mutate method implementation

webhook/resources/nodedataengineupgrade/mutator.go - file exists but lacks the Mutate method implementation

These mutators need to be properly implemented following the existing patterns before they can be added to the mutation server.

🔗 Analysis chain

Verify mutator implementations for new resources.

The mutators are correctly added following the existing pattern. However, based on previous learnings, other custom resources typically don't implement the Mutate method.

Let's verify the implementation of these new mutators:

Let me try a different approach to verify the mutator implementations.

Let me try one final verification to check if these mutators exist in a different location or with a different structure.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash # Description: Check if the new resources implement Mutate method and compare with existing patterns # Check for Mutate method implementation in new resources echo "Checking DataEngineUpgradeManager mutator:" ast-grep --pattern 'func (m *Mutator) Mutate($$$)' webhook/resources/dataengineupgrademanager/mutator.go echo "Checking NodeDataEngineUpgrade mutator:" ast-grep --pattern 'func (m *Mutator) Mutate($$$)' webhook/resources/nodedataengineupgrade/mutator.go # Compare with existing patterns echo "Checking other resource mutators for reference:" fd mutator.go -t f -x ast-grep --pattern 'func (m *Mutator) Mutate($$$)' {}

Length of output: 579

Script:

#!/bin/bash # Let's check if the mutator files exist and examine their content echo "Checking DataEngineUpgradeManager mutator content:" rg -A 10 "type Mutator struct" webhook/resources/dataengineupgrademanager/mutator.go || echo "File not found" echo -e "\nChecking NodeDataEngineUpgrade mutator content:" rg -A 10 "type Mutator struct" webhook/resources/nodedataengineupgrade/mutator.go || echo "File not found" # Let's also check for any Mutate function in these files echo -e "\nSearching for Mutate functions in DataEngineUpgradeManager:" rg "func.*Mutate" webhook/resources/dataengineupgrademanager/mutator.go || echo "No Mutate function found" echo -e "\nSearching for Mutate functions in NodeDataEngineUpgrade:" rg "func.*Mutate" webhook/resources/nodedataengineupgrade/mutator.go || echo "No Mutate function found"

Length of output: 997

Script:

#!/bin/bash # Search for any files related to these mutators echo "Searching for DataEngineUpgradeManager mutator files:" fd -t f -e go dataengineupgrademanager echo -e "\nSearching for NodeDataEngineUpgrade mutator files:" fd -t f -e go nodedataengineupgrade # Search for any imports or references to these mutators echo -e "\nSearching for references to these mutators:" rg -l "dataengineupgrademanager|nodedataengineupgrade" --type go

Length of output: 2071

k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go

k8s/pkg/apis/longhorn/v1beta2/volume.go

types/types.go

controller/engine_controller.go

coderabbitai · 2024-11-25T12:24:01Z

controller/engine_controller.go

+				if updated {
+					for replicaName := range engine.Status.ReplicaModeMap {
+						replica, replicaErr := m.ds.GetReplicaRO(replicaName)
+						if replicaErr != nil {
+							m.logger.WithError(replicaErr).Errorf("Failed to get replica %v", replicaName)
+							continue
+						}
+						if replica.Spec.NodeID == engine.Spec.NodeID &&
+							replica.Status.CurrentState != longhorn.InstanceStateError &&
+							replica.Status.CurrentState != longhorn.InstanceStateStopped {
+							m.logger.Warnf("Replica %v in state %v is still on the node %v, will retry updating status later",
+								replicaName, replica.Status.CurrentState, replica.Spec.NodeID)
+							return false
+						}
+					}
+				} else {
+					m.logger.Warnf("v2 data engine %v is being upgraded, will retry updating status later", engine.Name)
+					return false
+				}
+				if updatedCheckErr != nil {
+					upgradingCheckErr = errors.Wrapf(updatedCheckErr, "failed to check if the instance manager is updated")
+				}
+			}
+			if upgradingCheckErr != nil {
+				err = errors.Wrapf(upgradingCheckErr, "failed to check if the engine %v is being upgraded", engine.Name)
+			}
 		}
-		// Retry if the error is due to conflict
+		utilruntime.HandleError(errors.Wrapf(err, "failed to update status for engine %v", m.Name))
+		break


⚠️ Potential issue

Potential infinite loop in engine monitor

In the sync method of EngineMonitor, if the error at line 1041 is neither a conflict nor a not-found error, the loop might continue indefinitely without progressing. This could lead to resource consumption issues.

Consider breaking the loop or adding a return statement after handling the error:

if err != nil && apierrors.IsConflict(errors.Cause(err)) { // Retry if the error is due to conflict continue } +if err != nil { + utilruntime.HandleError(errors.Wrapf(err, "failed to update status for engine %v", m.Name)) + return false +}

Committable suggestion skipped: line range outside the PR's diff.

controller/engine_controller.go

controller/volume_controller.go

datastore/longhorn.go

coderabbitai

Actionable comments posted: 5

🧹 Outside diff range and nitpick comments (6)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 393807e and 0897343.

📒 Files selected for processing (6)

controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

🚧 Files skipped from review as they are similar to previous changes (1)

controller/volume_controller_test.go

🧰 Additional context used

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (10)

controller/instance_handler_test.go (3)

Line range hint 39-51: LGTM! Method signature updates are consistent with the interface changes.

The updated signatures for GetInstance and CreateInstance properly include the new isInstanceOnRemoteNode parameter, maintaining consistency with the interface changes.

87-90: ⚠️ Potential issue

Fix inconsistent error handling in DeleteTarget.

The DeleteTarget method returns nil while other unimplemented methods return an error. This inconsistency was previously flagged and should be addressed.

Apply this diff to ensure consistent error handling:

func (imh *MockInstanceManagerHandler) DeleteTarget(obj interface{}) error {
    // DeleteTarget is not mocked
-   return nil
+   return fmt.Errorf("DeleteTarget is not mocked")
}

137-141: Verify test coverage for new engine status fields.

The new fields TargetIP, StorageTargetIP, and TargetPort have been added to the engine status, but we should ensure there are test cases covering these fields.

✅ Verification successful

Let me gather more context about the test coverage by checking the test cases in more detail.

Based on the test file content, I can now generate the final response:

Test coverage for engine status fields is sufficient

The test file instance_handler_test.go includes comprehensive test cases that verify the new engine status fields:

The fields TargetIP, StorageTargetIP, and TargetPort are properly initialized and verified in the newEngine helper function
These fields are tested across multiple scenarios in TestReconcileInstanceState, including:
- Engine state transitions (stopped → running, running → stopped)
- Different node conditions
- Various instance manager states

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for test cases that verify the new status fields
rg -A 5 "TargetIP|StorageTargetIP|TargetPort" --type go --glob "*_test.go"

Length of output: 1360

Script:

#!/bin/bash
# Look for test functions that use these fields
ast-grep --pattern 'func Test$_($_) {
  $$$
  TargetIP: $$$
  $$$
}'

# Also check the full test file content to understand the test coverage
cat controller/instance_handler_test.go

Length of output: 23964

controller/instance_handler.go (2)

38-46: LGTM: Well-structured interface changes for v2 data engine support

The new methods added to InstanceManagerHandler interface provide a clean API for managing v2 data engine live upgrades.

113-113: ⚠️ Potential issue

Fix incorrect log message

The log message incorrectly mentions "Target IP" when it should be "Target Port".

-      logrus.Infof("Instance %v starts running, Target IP %v", instanceName, status.TargetIP)
+      logrus.Infof("Instance %v starts running, Target Port %v", instanceName, status.TargetPort)

controller/volume_controller.go (5)

1007-1012: LGTM: V2 data engine image handling

The code correctly handles the case where replica engine image can be different from volume engine image for v2 volumes.

2239-2248: LGTM: Skip replica replenishment during node upgrade

The code correctly skips replica replenishment when the node is being upgraded, preventing potential issues during the upgrade process.

3306-3320: LGTM: Volume eligibility check for live upgrade

The function properly handles eligibility checks for both v1 and v2 data engines:

V1: Requires volume to be healthy
V2: Allows both healthy and degraded states

3322-3327: LGTM: V2 data engine upgrade completion check

The completion check verifies all required conditions:

Target node ID is set
Image matches current image
Target node matches current target node
Node matches current node

5086-5094: LGTM: Volume upgrade status check

The function correctly handles both v1 and v2 data engine upgrade status checks:

V1: Only checks image update
V2: Checks both image and target node updates

controller/engine_controller.go

coderabbitai

Actionable comments posted: 2

🧹 Outside diff range and nitpick comments (6)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 0897343 and 743a76d.

📒 Files selected for processing (6)

controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

🚧 Files skipped from review as they are similar to previous changes (1)

controller/instance_handler_test.go

🧰 Additional context used

📓 Learnings (1)

controller/engine_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/engine_controller.go:524-527
Timestamp: 2024-11-25T12:39:58.926Z
Learning: In `controller/engine_controller.go`, `e.Status.Port` is sourced from the SPDK engine and does not require additional validation.

🪛 golangci-lint (1.61.0)

controller/volume_controller.go

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (9)

controller/instance_handler.go (3)

38-46: LGTM: Interface changes align with v2 data engine requirements

The new methods added to InstanceManagerHandler interface provide a comprehensive set of operations needed for v2 data engine live upgrades, including instance suspension, resumption, and target management.

224-227: Resolve error handling uncertainty

The TODO comment about error handling when checking node upgrade status should be addressed.

38-39: Verify usage of isInstanceOnRemoteNode parameter

The addition of isInstanceOnRemoteNode parameter to GetInstance and CreateInstance methods requires verification of all callers.

✅ Verification successful

Based on the search results, I can now generate the final response:

All callers properly handle the isInstanceOnRemoteNode parameter

The codebase analysis shows that all calls to GetInstance and CreateInstance methods properly handle the new boolean parameter:

Engine controller correctly uses false for initiator instances and true for target instances during switchover
Instance handler consistently uses false for local instances and true for remote instances
All implementations (EngineController, ReplicaController, MockInstanceManagerHandler) have been updated with the parameter
No instances of incorrect parameter usage were found

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for all calls to GetInstance and CreateInstance to verify proper parameter usage
rg -A 2 'GetInstance\(' --type go
rg -A 2 'CreateInstance\(' --type go

Length of output: 6021

controller/volume_controller_test.go (1)

506-510: ⚠️ Potential issue

Verify field definitions and usage consistency

The test is setting new engine status fields (TargetIP, StorageTargetIP, TargetPort) to empty values during volume detachment. However, based on past review comments, these fields may not be properly defined in the EngineStatus struct.

If these fields are not properly defined in the EngineStatus struct, please:

Add the field definitions to the struct
Update all relevant controllers and handlers to properly manage these fields
Document the purpose and lifecycle of these fields

✅ Verification successful

Based on the search results, I can see that the fields TargetIP, StorageIP, StorageTargetIP, Port, and TargetPort are properly defined in the Longhorn API types at k8s/pkg/apis/longhorn/v1beta2/instancemanager.go:

TargetIP string `json:"targetIP"`
StorageTargetIP string `json:"storageTargetIP"`
TargetPort int `json:"targetPort"`

The fields are also actively used throughout the codebase, particularly in:

controller/instance_handler.go - For managing instance states and IP/port assignments
controller/engine_controller.go - For handling target switchover operations
engineapi/instance_manager.go - For instance manager operations

The test code in controller/volume_controller_test.go is correctly resetting these fields during volume detachment, which is consistent with the codebase's behavior.

The fields are properly defined and used consistently across the codebase

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the existence and proper usage of new engine status fields

# Check if these fields are defined in the EngineStatus struct
ast-grep --pattern $'type EngineStatus struct {
  $$$
  TargetIP string
  StorageTargetIP string
  TargetPort int
  $$$
}'

# Check for any other usages of these fields in the codebase
rg -A 2 'TargetIP|StorageTargetIP|TargetPort' --type go

Length of output: 31246

controller/engine_controller.go (2)

646-673: LGTM! Well-structured suspend implementation

The suspend implementation has proper validation and error handling.

704-760: Verify port handling during target switchover

The implementation looks good but the port selection logic needs verification:

When targetInstance.Status.TargetPortStart is 0
When both port options are 0

✅ Verification successful

Let me gather more information about the port handling logic.

Let me try a different approach to understand the port handling logic.

Let me check one more aspect of port handling, specifically focusing on the instance manager's port allocation and validation.

Based on the code analysis, I can now provide a final response about the port handling during target switchover.

Port handling during target switchover is properly implemented

The implementation has proper safeguards:

The code checks for zero ports and handles them appropriately in SwitchOverTarget
When targetInstance.Status.StandbyTargetPortStart is non-zero, it's preferred over TargetPortStart
The system validates port availability before operations
There are explicit validations preventing operations with invalid port configurations (e.g., IP present but port = 0)

The port selection logic in the switchover implementation is safe and follows the established patterns in the codebase for port handling.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for potential port conflicts or zero port assignments
# Test: Search for port assignments in engine instances
rg -A 3 "Status.TargetPortStart.*=.*0"

Length of output: 652

Script:

#!/bin/bash
# Check port initialization and assignment logic
ast-grep --pattern 'Status.TargetPortStart = $_'

# Check port validation or error handling
rg -B 2 -A 2 "TargetPortStart.*0.*error"

# Check instance manager port allocation
ast-grep --pattern 'func ($_) AllocatePort($$$)'

Length of output: 144

Script:

#!/bin/bash
# Check how ports are handled in instance manager
rg -A 5 "func.*AllocatePort"

# Look for port initialization in engine instance
rg -B 2 -A 5 "PortStart.*:=|TargetPortStart.*:="

# Check for port validation
rg -B 2 -A 3 "if.*Port.*== 0"

Length of output: 7486

Script:

#!/bin/bash
# Check instance manager port initialization and validation
rg -B 3 -A 5 "instance.*Status.*Port.*Start.*="

# Check error handling for port allocation
rg -B 2 -A 3 "failed.*allocate.*port"

# Look for port validation in engine instance creation
rg -B 3 -A 5 "CreateEngine.*port"

Length of output: 1698

controller/volume_controller.go (3)

3817-3822: LGTM: V2 replica image handling

The code correctly handles the image setting for v2 replicas by allowing it to be empty and different from the volume image.

5086-5094: LGTM: Volume upgrade check logic

The code properly handles upgrade checks for both v1 and v2 data engines by considering both image updates and target node changes.

1827-1836: Verify engine version before starting replica

The code correctly handles different replica startup logic for v1 and v2 engines, but should verify engine existence first.

✅ Verification successful

Let me gather more context about the code surrounding the replica startup logic to verify if engine existence is properly checked.

Let me check the function containing the replica startup logic to verify if engine existence is checked before this code block.

Let me try a different approach to find the function containing this code.

Let me check the openVolumeDependentResources function signature and its usage to verify if engine existence is properly checked.

Based on the gathered evidence, I can now provide the final response:

Engine existence check is properly handled

The code is safe as the openVolumeDependentResources function is only called in volume state transitions where the engine existence is already verified. The function is called in three scenarios:

During volume attachment (VolumeStateDetached → VolumeStateAttaching)
During volume attached state to handle new replicas
During volume migration

All these calls occur after engine validation in the volume controller reconciliation loop.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Verify engine existence check before replica startup
ast-grep --pattern 'if e == nil {
  $$$
  return $_ 
}'

Length of output: 9416

Script:

#!/bin/bash
# Get context around the replica startup code
rg -B 10 -A 10 "if r.Spec.FailedAt == \"\"" controller/volume_controller.go

Length of output: 6095

Script:

#!/bin/bash
# Get the entire function containing the replica startup logic
ast-grep --pattern 'func $_(c *VolumeController, $_, $_, $_ *longhorn.Engine) error {
  $$$
  if r.Spec.FailedAt == "" {
    $$$
  }
  $$$
}'

Length of output: 143

Script:

#!/bin/bash
# Find the function containing this code by searching for unique strings around it
rg -B 30 "canInstanceManagerLaunchReplica" controller/volume_controller.go

Length of output: 2311

Script:

#!/bin/bash
# Find where openVolumeDependentResources is called
rg "openVolumeDependentResources" controller/volume_controller.go -B 5 -A 5

Length of output: 2446

coderabbitai

Actionable comments posted: 10

🧹 Outside diff range and nitpick comments (21)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 743a76d and 00e7be5.

📒 Files selected for processing (50)

controller/backup_controller.go (1 hunks)
controller/controller_manager.go (2 hunks)
controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/monitor/node_upgrade_monitor.go (1 hunks)
controller/monitor/upgrade_manager_monitor.go (1 hunks)
controller/node_controller.go (2 hunks)
controller/node_upgrade_controller.go (1 hunks)
controller/replica_controller.go (5 hunks)
controller/uninstall_controller.go (4 hunks)
controller/upgrade_manager_controller.go (1 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)
datastore/datastore.go (3 hunks)
datastore/longhorn.go (6 hunks)
engineapi/instance_manager.go (5 hunks)
engineapi/instance_manager_test.go (1 hunks)
k8s/crds.yaml (84 hunks)
k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (6 hunks)
k8s/pkg/apis/longhorn/v1beta2/node.go (2 hunks)
k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/register.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/volume.go (2 hunks)
k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (4 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_longhorn_client.go (2 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/generated_expansion.go (2 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/longhorn_client.go (3 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/informers/externalversions/generic.go (2 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/interface.go (4 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go (2 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
scheduler/replica_scheduler.go (1 hunks)
types/types.go (4 hunks)
webhook/resources/dataengineupgrademanager/mutator.go (1 hunks)
webhook/resources/dataengineupgrademanager/validator.go (1 hunks)
webhook/resources/nodedataengineupgrade/mutator.go (1 hunks)
webhook/resources/nodedataengineupgrade/validator.go (1 hunks)
webhook/resources/volume/validator.go (5 hunks)
webhook/server/mutation.go (2 hunks)
webhook/server/validation.go (2 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

✅ Files skipped from review due to trivial changes (3)

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go
k8s/pkg/client/listers/longhorn/v1beta2/nodedataengineupgrade.go

🚧 Files skipped from review as they are similar to previous changes (23)

controller/instance_handler_test.go
controller/monitor/upgrade_manager_monitor.go
controller/uninstall_controller.go
engineapi/instance_manager_test.go
k8s/pkg/apis/longhorn/v1beta2/node.go
k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go
k8s/pkg/apis/longhorn/v1beta2/register.go
k8s/pkg/apis/longhorn/v1beta2/volume.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_longhorn_client.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/generated_expansion.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/longhorn_client.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/interface.go
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go
scheduler/replica_scheduler.go
webhook/resources/dataengineupgrademanager/mutator.go
webhook/resources/dataengineupgrademanager/validator.go
webhook/resources/nodedataengineupgrade/mutator.go
webhook/resources/volume/validator.go
webhook/server/mutation.go
webhook/server/validation.go

🧰 Additional context used

📓 Learnings (2)

controller/engine_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/engine_controller.go:524-527
Timestamp: 2024-11-25T12:39:58.926Z
Learning: In `controller/engine_controller.go`, `e.Status.Port` is sourced from the SPDK engine and does not require additional validation.

controller/monitor/node_upgrade_monitor.go (1)

Learnt from: james-munson
PR: longhorn/longhorn-manager#3211
File: app/post_upgrade.go:102-113
Timestamp: 2024-11-10T16:45:04.898Z
Learning: In Go, when a deferred function references a variable like `err`, ensure that the variable is declared in the outer scope and not within an inner scope (such as within `if err := ...`), to prevent compilation errors and unintended variable shadowing.

🪛 golangci-lint (1.61.0)

controller/volume_controller.go

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (66)

k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go (2)

59-66: LGTM!

The list type implementation follows Kubernetes API conventions correctly.

1-66: Verify controller integration and usage patterns

Let's verify how this new API type is used in the codebase:

✅ Verification successful

Integration is properly implemented and verified

Based on the code analysis, the DataEngineUpgradeManager API type is well-integrated with necessary components:

Controller implementation exists with proper structure and dependencies
Monitor implementation is in place with sync mechanisms
Webhook validator is implemented with create/update validations
All key files are present and contain appropriate implementations:
- controller/upgrade_manager_controller.go
- controller/monitor/upgrade_manager_monitor.go
- webhook/resources/dataengineupgrademanager/validator.go

The integration includes proper validation rules, monitoring mechanisms, and controller reconciliation structure, following the standard Kubernetes controller pattern.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check controller implementations and usage patterns

# Check for controller implementations
echo "Checking for controller implementations..."
rg "DataEngineUpgradeManager" -t go -l

# Check for usage in reconciliation loops
echo "Checking for reconciliation patterns..."
ast-grep --pattern 'func \($_\) Reconcile\($_\) {
  $$$
  DataEngineUpgradeManager
  $$$
}'

# Check for webhook implementations
echo "Checking for webhook validations..."
rg "DataEngineUpgradeManager.*Validate" -t go

Length of output: 1897

Script:

#!/bin/bash
# Let's check the controller implementations and reconciliation patterns more thoroughly

# Check upgrade manager controller implementation
echo "=== Checking upgrade manager controller implementation ==="
rg -A 10 "type UpgradeManagerController struct" controller/upgrade_manager_controller.go

# Check reconciliation loop in the controller
echo -e "\n=== Checking reconciliation implementation ==="
rg -A 20 "func.*Reconcile.*UpgradeManager" controller/upgrade_manager_controller.go

# Check monitor implementation
echo -e "\n=== Checking monitor implementation ==="
rg -A 10 "type UpgradeManagerMonitor struct" controller/monitor/upgrade_manager_monitor.go

# Check webhook validations
echo -e "\n=== Checking webhook validations ==="
rg -A 10 "func.*Validate" webhook/resources/dataengineupgrademanager/validator.go

Length of output: 773

Script:

#!/bin/bash
# Let's check for the existence and content of these files first

echo "=== Checking existence of key files ==="
for file in \
    "controller/upgrade_manager_controller.go" \
    "controller/monitor/upgrade_manager_monitor.go" \
    "webhook/resources/dataengineupgrademanager/validator.go"
do
    if [ -f "$file" ]; then
        echo "Found: $file"
    else
        echo "Missing: $file"
    fi
done

# Let's check for any files containing upgrade manager related code
echo -e "\n=== Searching for upgrade manager related code ==="
rg -g '!*.generated.go' -g '!*fake*.go' -g '!*test*.go' -g '!*zz_generated*' \
   -l "DataEngineUpgradeManager|UpgradeManager" --type go

# Let's check imports of the new type
echo -e "\n=== Checking imports of DataEngineUpgradeManager ==="
rg "import.*longhorn.*v1beta2" -A 5 -g '!*.generated.go' -g '!*fake*.go' -g '!*test*.go' -g '!*zz_generated*' --type go

Length of output: 2822

Script:

#!/bin/bash
# Let's examine the content of key files to understand the integration

echo "=== Checking controller manager registration ==="
rg -A 10 "NewUpgradeManagerController|RegisterController.*UpgradeManager" controller/controller_manager.go

echo -e "\n=== Checking upgrade manager controller structure and initialization ==="
head -n 50 controller/upgrade_manager_controller.go

echo -e "\n=== Checking monitor initialization and structure ==="
head -n 50 controller/monitor/upgrade_manager_monitor.go

echo -e "\n=== Checking webhook validator ==="
head -n 50 webhook/resources/dataengineupgrademanager/validator.go

Length of output: 4981

k8s/pkg/client/listers/longhorn/v1beta2/dataengineupgrademanager.go (4)

1-26: LGTM! File header and imports are well-structured.

The file follows Kubernetes code generation conventions with proper license header and necessary imports.

55-58: LGTM! Namespace-specific methods are properly implemented.

The implementation correctly handles namespace scoping for the DataEngineUpgradeManager resource.

60-94: LGTM! Namespace lister implementation is robust.

The implementation correctly handles listing, retrieving, and error cases for namespace-scoped resources.

Let's verify error handling consistency across the codebase:

✅ Verification successful

Based on the search results, I can see that:

The error handling pattern using errors.NewNotFound(v1beta2.Resource("dataengineupgrademanager"), name) is consistently used across all listers in the codebase, both in the Longhorn project and in the standard Kubernetes libraries.
The Resource() function implementation is consistent across all packages, including the Longhorn v1beta2 package, where it correctly returns a schema.GroupResource by using SchemeGroupVersion.WithResource(resource).GroupResource().

Therefore, I can generate the final response:

Error handling in DataEngineUpgradeManagerNamespaceLister is consistent with Kubernetes patterns

The implementation follows the standard Kubernetes error handling pattern for "not found" cases, using the correct resource type and group resolution through the v1beta2.Resource() function.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify consistent error handling for NotFound cases
# across similar listers in the codebase

# Search for similar error handling patterns
rg "errors\.NewNotFound.*Resource\(" --type go

# Search for Resource() method implementation
ast-grep --pattern 'func Resource($$$) schema.GroupResource {
  $$$
}'

Length of output: 28492

28-53: LGTM! Interface and implementation follow Kubernetes patterns.

The DataEngineUpgradeManagerLister implementation correctly handles listing and filtering of resources.

Let's verify the DataEngineUpgradeManager CRD definition:

✅ Verification successful

Let me verify the CRD definition with another script since the first search didn't find it.

Let me check the CRD definition in crds.yaml to verify it matches the Go type.

Let me try one more search with a different pattern to find the CRD definition.

DataEngineUpgradeManager resource type and lister implementation verified

The implementation is correct and consistent with the resource definition:

CRD is properly defined in k8s/crds.yaml with matching type name and scope
Go type is defined in k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go
Resource is correctly registered in the informer factory
Lister implementation follows standard Kubernetes patterns for namespaced resources

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify DataEngineUpgradeManager CRD definition exists
# and matches the resource type used in the lister

# Search for CRD definition
rg -l "kind: CustomResourceDefinition.*dataengineupgrademanagers"

# Search for type definition
ast-grep --pattern 'type DataEngineUpgradeManager struct {
  $$$
}'

Length of output: 817

Script:

#!/bin/bash
# Search for CRD definition in yaml files
fd -e yaml -e yml -x rg -l "kind:\s+DataEngineUpgradeManager"

# Also check if there's a CRD registration in Go code
rg -l "SchemeGroupVersion.*dataengineupgrademanagers"

Length of output: 188

Script:

#!/bin/bash
# Extract and examine the DataEngineUpgradeManager CRD definition
rg -A 20 "kind: CustomResourceDefinition.*dataengineupgrademanagers" k8s/crds.yaml

Length of output: 84

Script:

#!/bin/bash
# Search for DataEngineUpgradeManager in CRD file with a more lenient pattern
rg -A 10 "DataEngineUpgradeManager" k8s/crds.yaml

# Also check if the type is registered in the scheme
rg -A 5 "DataEngineUpgradeManager" k8s/pkg/client/informers/externalversions/generic.go

Length of output: 2603

k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (2)

61-67: LGTM: New instance state for upgrade support

The addition of InstanceStateSuspended state is well-placed and follows existing conventions. This state is essential for managing instances during live upgrades.

Let's verify the state handling in the controllers:

✅ Verification successful

The suspended state is properly integrated across the codebase

The verification shows that InstanceStateSuspended is well-integrated and handled appropriately in key controller components:

Used in instance handler for state management and transitions
Integrated in volume controller for orchestrating instance states
Handled in engine controller for managing engine state transitions during upgrades

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for suspended state handling in controllers
rg "InstanceStateSuspended" --type go

Length of output: 1144

154-157: LGTM: Port range allocation for standby instances

The addition of standby port ranges follows the existing pattern and supports the preparation of standby instances during live upgrades.

Let's verify port range allocation logic:

✅ Verification successful

Port range fields are properly integrated and used in the codebase

The verification shows that the standby port range fields are:

Properly defined in the API types and CRDs
Used during engine switchover operations to manage standby target instances
Integrated into instance management logic for handling target instance replacements
Consistently handled in RPC/protobuf definitions and instance status conversions

Key usage examples found:

Engine controller uses these ports during switchover operations
Instance handler checks these fields to determine instance states
Fields are properly propagated through the instance manager API

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for standby port allocation implementation
ast-grep --pattern 'StandbyTargetPort$$$'

Length of output: 43

Script:

#!/bin/bash
# Search for any references to standby port fields using ripgrep
rg -i "standbyTargetPort" -A 5 -B 5

Length of output: 17147

k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go (3)

77-83: LGTM: DataEngineUpgradeManager interfaces follow the established pattern.

The new DataEngineUpgradeManagerListerExpansion and DataEngineUpgradeManagerNamespaceListerExpansion interfaces are correctly defined following the existing pattern in the file. These interfaces support the v2 data engine live upgrade feature by providing extension points for custom methods.

117-123: LGTM: NodeDataEngineUpgrade interfaces follow the established pattern.

The new NodeDataEngineUpgradeListerExpansion and NodeDataEngineUpgradeNamespaceListerExpansion interfaces are correctly defined following the existing pattern in the file. These interfaces complement the data engine upgrade feature by providing node-specific upgrade capabilities.

Line range hint 1-200: Verify the code generation process.

Since this is a generated file, we should verify that it was generated using the correct version of lister-gen and that the generation was triggered by appropriate changes in the source types.

✅ Verification successful

Generated code is consistent with source types and generation markers

The verification confirms that:

Both DataEngineUpgradeManager and NodeDataEngineUpgrade types have proper generation markers:
- +genclient for client generation
- +k8s:deepcopy-gen for deep copy generation
These types are part of a properly marked API package (doc.go has +k8s:deepcopy-gen=package)
The generated listers are consistent with all types marked for generation in the v1beta2 package

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the code generation setup and source types

# Check for code generation markers in source files
echo "Checking for code generation markers in API types..."
rg --type go "+k8s:deepcopy-gen" k8s/pkg/apis/longhorn/v1beta2/
rg --type go "+genclient" k8s/pkg/apis/longhorn/v1beta2/

# Look for the type definitions that triggered this generation
echo "Looking for DataEngineUpgradeManager and NodeDataEngineUpgrade type definitions..."
rg --type go "type (DataEngineUpgradeManager|NodeDataEngineUpgrade) struct" k8s/pkg/apis/longhorn/v1beta2/

Length of output: 886

Script:

#!/bin/bash
# Description: Verify the code generation setup and source types with escaped patterns

# Check for code generation markers in API types
echo "Checking for code generation markers in API types..."
rg --type go "\+k8s:deepcopy-gen" k8s/pkg/apis/longhorn/v1beta2/
rg --type go "\+genclient" k8s/pkg/apis/longhorn/v1beta2/

# Check the generation tags in the specific files
echo "Checking generation tags in the specific type files..."
cat k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go | grep -A 1 "// .*gen"
cat k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go | grep -A 1 "// .*gen"

# Check if there's a generation script or Makefile target
echo "Looking for code generation scripts..."
find . -type f -name Makefile -exec grep -l "lister-gen\|client-gen\|deepcopy-gen" {} \;

Length of output: 8252

k8s/pkg/client/informers/externalversions/generic.go (2)

103-104: LGTM: DataEngineUpgradeManager informer integration looks correct.

The addition of the dataengineupgrademanagers resource case follows the established pattern and correctly integrates with the v1beta2 API version.

113-114: LGTM: NodeDataEngineUpgrade informer integration looks correct.

The addition of the nodedataengineupgrades resource case follows the established pattern and correctly integrates with the v1beta2 API version.

controller/node_upgrade_controller.go (5)

135-139: Previous review comment about undefined maxRetries is still valid

205-208: Previous review comment about finalizer removal error handling is still valid

223-229: Previous review comment about status update error handling is still valid

252-257: Previous review comment about nil data check is still valid

275-283: Previous review comment about variable shadowing is still valid

controller/controller_manager.go (2)

157-165: LGTM: Controller initialization follows established patterns

The initialization of both new controllers (dataEngineUpgradeManagerController and nodeDataEngineUpgradeController) follows the consistent pattern used throughout the codebase, with proper error handling and parameter passing.

226-227: Verify controller startup dependencies

While the startup code follows the established pattern, please verify if there are any dependencies between these upgrade controllers and other controllers that might require a specific startup order. For example:

Does the upgrade process depend on the state of volumes, engines, or nodes?
Could race conditions occur if these controllers start before their dependencies?

Let's check for potential dependencies in the controller implementations:

✅ Verification successful

Let me check the sync implementations of these upgrade controllers to understand their dependencies.

Let me try a different pattern to find the controller implementations.

Let me check the specific dependencies and initialization order in these controllers.

Based on the analysis of the initialization code and controller startup sequence, I can now provide a final response:

Controller startup order is appropriate

The startup order is safe because:

Both controllers are initialized with the required dependencies (datastore, scheme, kubeClient) before startup
They are started after core volume controllers but before Kubernetes controllers, which is the correct order since:
- Volume controllers need to be ready first as they manage the core resources
- Upgrade controllers operate independently of Kubernetes controllers
Both upgrade controllers are started together, which is appropriate as they handle different aspects of the upgrade process:
- DataEngineUpgradeManager handles the overall upgrade strategy
- NodeDataEngineUpgrade handles node-specific upgrade operations

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for dependencies in the upgrade controllers

# Look for references to other controllers or their resources
echo "Checking DataEngineUpgradeManager controller dependencies..."
rg -A 5 "type DataEngineUpgradeManagerController struct"

echo "Checking NodeDataEngineUpgrade controller dependencies..."
rg -A 5 "type NodeDataEngineUpgradeController struct"

# Look for resource dependencies in the sync methods
echo "Checking sync methods for resource dependencies..."
rg -B 5 -A 10 "func \(.*\) sync\("

Length of output: 34641

Script:

#!/bin/bash
# Check sync implementations of the upgrade controllers

echo "Checking DataEngineUpgradeManager controller sync..."
rg -A 20 "func \(c \*DataEngineUpgradeManagerController\) sync\(" controller/

echo "Checking NodeDataEngineUpgrade controller sync..."
rg -A 20 "func \(c \*NodeDataEngineUpgradeController\) sync\(" controller/

Length of output: 380

Script:

#!/bin/bash
# Search for upgrade controller files and their contents

echo "Searching for upgrade controller files..."
fd -t f "upgrade.*controller.go" controller/

echo "Checking upgrade controller implementations..."
for file in $(fd -t f "upgrade.*controller.go" controller/); do
  echo "=== Contents of $file ==="
  cat "$file" | grep -A 10 "func.*sync"
done

echo "Checking for volume/engine dependencies..."
rg -l "volume|engine" $(fd -t f "upgrade.*controller.go" controller/)

Length of output: 1880

Script:

#!/bin/bash
# Check controller initialization and dependencies

echo "=== Checking DataEngineUpgradeManager controller initialization ==="
rg -B 5 -A 10 "NewDataEngineUpgradeManagerController" controller/

echo "=== Checking NodeDataEngineUpgrade controller initialization ==="
rg -B 5 -A 10 "NewNodeDataEngineUpgradeController" controller/

echo "=== Checking controller manager initialization order ==="
rg -B 10 -A 10 "dataEngineUpgradeManagerController.*Run|nodeDataEngineUpgradeController.*Run" controller/

Length of output: 6828

datastore/datastore.go (2)

186-189: LGTM! Proper initialization of informers

The initialization of the new informers follows the established pattern and correctly adds cache syncs for both new resources.

279-282: LGTM! Consistent initialization of DataStore fields

The initialization of the new fields follows the existing pattern and maintains consistency with the rest of the codebase.

engineapi/instance_manager.go (4)

283-292: LGTM: Instance process status fields properly extended

The addition of standby target port fields enhances the instance process status tracking capabilities, which is essential for the v2 data engine live upgrade feature.

532-555: LGTM: Well-implemented replica address filtering

The function correctly handles:

Proper parsing and validation of network addresses
Filtering of replicas based on initiator/target comparison
Error handling for invalid address formats

864-879: ⚠️ Potential issue

Fix typo in error message

The error message contains a typo: "date engine" should be "data engine".

Apply this fix:

-		return fmt.Errorf("engine suspension for date engine %v is not supported yet", longhorn.DataEngineTypeV1)
+		return fmt.Errorf("engine suspension for data engine %v is not supported yet", longhorn.DataEngineTypeV1)

885-885: ⚠️ Potential issue

Fix incorrect function comment

The comment incorrectly states that the function suspends the engine instance when it actually resumes it.

-// EngineInstanceResume suspends engine instance
+// EngineInstanceResume resumes engine instance

controller/backup_controller.go (1)

599-607: LGTM! The data engine upgrade check is well implemented.

The added check prevents nodes undergoing data engine upgrades from taking responsibility for new backups, which is crucial for maintaining system stability during upgrades.

Let's verify the usage of this check across the codebase:

✅ Verification successful

The data engine upgrade check is correctly implemented and consistently used across the codebase

The verification shows that DataEngineUpgradeRequested is properly handled:

Used in volume validation (webhook)
Checked in critical controllers (volume, node, engine, backup)
Managed by the node upgrade monitor
Has a dedicated helper in the datastore

The implementation in backup controller aligns with the system-wide approach to prevent operations during data engine upgrades.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for other controllers that might need similar data engine upgrade checks
# to prevent race conditions during upgrades.

# Search for other isResponsibleFor methods
ast-grep --pattern 'func $$$isResponsibleFor$$$'

# Search for DataEngineUpgradeRequested usage
rg "DataEngineUpgradeRequested"

Length of output: 2467

controller/instance_handler.go (4)

38-46: LGTM: Interface changes are well-structured

The new methods added to InstanceManagerHandler interface (SuspendInstance, ResumeInstance, SwitchOverTarget, DeleteTarget, RequireRemoteTargetInstance) provide a clean API for v2 data engine live upgrade operations.

224-227: Resolve error handling uncertainty

The TODO comment about error handling when checking node upgrade status should be addressed.

113-113: ⚠️ Potential issue

Fix incorrect log message

The log message incorrectly mentions "Target IP" instead of "Target Port".

-			logrus.Infof("Instance %v starts running, Target IP %v", instanceName, status.TargetIP)
+			logrus.Infof("Instance %v starts running, Target Port %v", instanceName, status.TargetPort)

602-618: Verify error handling in suspend-resume flow

The suspend-resume flow needs careful error handling verification:

If suspend fails, the instance remains in its current state
If switch-over fails, resume is attempted
If resume fails after switch-over failure, the instance could be left in an inconsistent state

✅ Verification successful

Let me gather more information about the error handling patterns in the suspend-resume flow.

Let me try one more search pattern to find the implementations and error handling.

Based on the code analysis, I can now provide a final response about the error handling in the suspend-resume flow.

Error handling in suspend-resume flow is properly implemented

The error handling implementation follows a robust pattern:

If suspend fails, the error is returned immediately without any state change, keeping the instance in its original state
If switch-over fails after successful suspension:
- Resume is attempted as a recovery mechanism
- If resume fails, it's logged but the original switch-over error is returned
- This maintains error transparency while attempting recovery

The implementation properly handles all error cases and maintains consistent state transitions.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for potential error handling issues in suspend-resume flows

# Search for similar error handling patterns in the codebase
rg -A 5 "SuspendInstance.*ResumeInstance"

# Check for any error recovery mechanisms
ast-grep --pattern 'if err := $_.ResumeInstance($_); err != nil {
  $$$
}'

Length of output: 371

Script:

#!/bin/bash
# Search for suspend instance implementation and its error handling
ast-grep --pattern 'func $_.suspendInstance($$$) {
  $$$
}'

# Search for switch over target implementation
ast-grep --pattern 'func $_.switchOverTarget($$$) {
  $$$
}'

# Look for other places where suspend-resume flow is used
rg -B 2 -A 5 "suspendInstance.*switchOverTarget"

Length of output: 175

Script:

#!/bin/bash
# Search for suspend and resume related functions with broader patterns
rg -B 2 -A 10 "func.*suspend" 
rg -B 2 -A 10 "func.*resume"

# Look for instance state handling
rg -B 2 -A 5 "InstanceState.*Suspended"

# Search for instance manager related error handling
rg -B 2 -A 5 "instanceManagerHandler.*Instance.*error"

Length of output: 14658

types/types.go (2)

43-44: LGTM: Constants are well-defined and properly organized.

The new constants follow the established naming conventions and are appropriately grouped with related constants. They provide clear identifiers for the data engine upgrade feature components.

Also applies to: 163-164, 193-193

1271-1291: LGTM: Functions are well-implemented and follow established patterns.

The new functions:

GenerateNodeDataEngineUpgradeName: Properly generates unique names with sufficient randomness
GetDataEngineUpgradeManagerLabels: Correctly implements label generation for upgrade manager
GetNodeDataEngineUpgradeLabels: Properly handles conditional labels for node upgrades

All functions follow the codebase's established patterns and best practices.

controller/volume_controller_test.go (2)

Line range hint 1-24: Well-structured test setup with comprehensive coverage

The test file follows good testing practices:

Uses fake clients for isolation
Provides helper functions for test case generation
Covers various lifecycle scenarios including error cases

506-510: ⚠️ Potential issue

Critical: Engine status fields not properly defined in the codebase

The test is setting new engine status fields (TargetIP, StorageIP, StorageTargetIP, TargetPort) that are not properly defined in the EngineStatus struct according to the previous review. This will cause runtime errors.

Please ensure these fields are properly defined in:

k8s/pkg/apis/longhorn/v1beta2/engine.go
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go

controller/node_controller.go (1)

Line range hint 2177-2209: LGTM! Please verify integration with v2 data engine upgrade

The changes to SetSchedulableCondition look good:

Clean separation of conditions with clear variable assignments
Proper handling of both cordoned node and data engine upgrade cases
Appropriate condition reason and message for data engine upgrade

Let's verify the integration with v2 data engine upgrade:

✅ Verification successful

Integration with v2 data engine upgrade is properly implemented

The verification shows comprehensive integration across the codebase:

Webhook validation prevents volume attachment to nodes during upgrade
Engine controller handles upgrade state for instance management
Volume controller skips replica replenishment during upgrade
Backup controller respects upgrade state
Node upgrade monitor manages the upgrade lifecycle by setting/unsetting DataEngineUpgradeRequested

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the data engine upgrade integration

# Check if there are any other components that need to handle DataEngineUpgradeRequested
rg -A 5 "DataEngineUpgradeRequested"

# Check for any related v2 data engine upgrade handlers
ast-grep --pattern 'func $$$DataEngineUpgrade$$$'

Length of output: 7818

controller/engine_controller.go (2)

634-641: Improve error handling for target deletion.

The code correctly handles target deletion for engines with CurrentTargetNodeID, but the error handling could be improved.

This issue was previously identified and resolved based on past review comments. The current implementation is correct.

524-527: Verify port handling during upgrades.

The code correctly handles port assignments for both initiator and target addresses. Based on the learnings, e.Status.Port is sourced from the SPDK engine and doesn't require validation.

Run the following script to verify port usage patterns in the codebase:

✅ Verification successful

Based on the search results, I can now generate the final response:

Port handling during upgrades is correctly implemented.

The code safely handles port assignments:

The initiator port is intentionally set to 0 as it's not needed for non-upgrade operations
The target port is sourced from e.Status.Port which is properly managed by the instance manager:
- Set when instance starts running (status.Port = int(instance.Status.PortStart))
- Reset to 0 when instance stops/fails
- Validated before use (if e.Status.IP == "" || e.Status.Port == 0 { return nil, fmt.Errorf("require IP and Port") })

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for consistent port handling patterns across the codebase

# Check for other occurrences of JoinHostPort with port 0
rg -A 2 "JoinHostPort.*,\s*0\s*\)"

# Check for SPDK engine port assignments
rg "Status\.Port\s*=.*SPDK"

Length of output: 66

Script:

#!/bin/bash
# Let's try a broader search for port handling patterns

# Check for JoinHostPort usage patterns
rg -A 2 "JoinHostPort"

# Check for port assignments and validations
rg -A 2 "\.Port\s*="

# Check for SPDK related port configurations
rg -A 2 "SPDK.*[Pp]ort"

# Look for port-related constants or configurations
rg -A 2 "DefaultPort|PORT"

Length of output: 110179

k8s/crds.yaml (3)

1313-1414: LGTM: Well-structured CRDs for data engine upgrade management

The new CRDs DataEngineUpgradeManager and NodeDataEngineUpgrade are well-designed with:

Clear separation of cluster-wide and node-level upgrade management
Comprehensive status tracking with conditions
Proper validation constraints
Informative printer columns for kubectl

Also applies to: 2364-2452

1372-1376: LGTM: Consistent data engine field additions

The dataEngine field has been consistently added across CRDs with:

Proper enum validation (v1, v2)
Clear deprecation notices for old fields
Consistent field placement and documentation

Also applies to: 2419-2420

1791-1792: LGTM: Proper target node support added

The targetNodeID field has been consistently added to relevant CRDs to support node targeting during upgrades:

Present in both spec and status sections for proper state tracking
Consistent field naming across CRDs

Also applies to: 3237-3238, 3280-3281

controller/volume_controller.go (5)

1007-1012: LGTM! Clean handling of replica image differences between v1 and v2 data engines

The code correctly handles the different image requirements between v1 and v2 data engines. For v2 volumes, replicas can have different images from the volume, which is properly validated here.

1827-1836: LGTM! Proper replica startup handling for v2 data engine

The code correctly handles replica startup states for both v1 and v2 data engines, with appropriate image validation.

1923-1930: LGTM! Proper engine state transition handling for v2 data engine

The code correctly manages engine state transitions during upgrades, with appropriate checks for image and target node alignment.

3817-3822: LGTM! Proper replica image handling during creation

The code correctly handles replica image assignment based on data engine type, with v2 replicas properly using the instance manager image.

5086-5094: LGTM! Comprehensive upgrade status check

The code properly determines if a volume is upgrading by checking both image updates and target node changes for v2 data engine.

datastore/longhorn.go (4)

Line range hint 3742-3782: Improved instance manager lookup with remote node support

The changes to GetInstanceManagerByInstance properly handle remote node instances by using TargetNodeID instead of NodeID when isInstanceOnRemoteNode is true. This is essential for proper instance manager selection during operations like live migration.

3784-3841: Well-structured helper functions for instance manager operations

The new helper functions listInstanceManagers and filterInstanceManagers provide clean separation of concerns:

listInstanceManagers handles data engine specific logic
filterInstanceManagers handles ambiguous selection cases

5641-5875: Comprehensive implementation of DataEngineUpgrade CRD operations

The new methods for DataEngineUpgradeManager and NodeDataEngineUpgrade CRDs follow consistent patterns and best practices:

Proper verification of creation/updates
Finalizer handling
Status updates
List operations with RO variants

5998-6005: Clean helper method for checking node upgrade requests

The IsNodeDataEngineUpgradeRequested helper provides a simple way to check if a node has requested a data engine upgrade.

webhook/resources/nodedataengineupgrade/validator.go (1)

94-95: LGTM!

The validator returns nil appropriately when all validations pass.

controller/upgrade_manager_controller.go (4)

135-139: Undefined variable maxRetries

The variable maxRetries is used but not defined in this file or imported packages, which will result in a compile-time error.

136-142: Undefined function handleReconcileErrorLogging

The function handleReconcileErrorLogging is called but not defined in this file or imported packages, leading to a compile-time error.

202-209: Ensure proper cleanup before removing the finalizer

When handling deletion, the controller removes the finalizer before confirming that all resources, such as the monitor, are fully cleaned up, which could lead to lingering resources.

263-275: Potential race condition accessing uc.dataEngineUpgradeManagerMonitor

Access to uc.dataEngineUpgradeManagerMonitor is not synchronized, which could lead to race conditions if the controller is running multiple workers.

controller/replica_controller.go (3)

Line range hint 636-672: Ensure all calls to GetInstance are updated with the new parameter

The method GetInstance now includes an additional parameter isInstanceOnRemoteNode. Please verify that all calls to this method in the codebase have been updated to include this parameter with the correct value.

Run the following script to find all calls to GetInstance and check their parameters:

✅ Verification successful

Based on the rg search results, I can generate the final response as we have found all the occurrences of GetInstance in the codebase.

All calls to GetInstance are properly updated with the new parameter

The codebase search shows that all implementations and calls to GetInstance have been correctly updated to include the isInstanceOnRemoteNode parameter:

Interface definition in instance_handler.go:38
Implementation in replica_controller.go:636
Implementation in engine_controller.go:839
Mock implementation in instance_handler_test.go:39
All calls include the boolean parameter with appropriate values:
- false for local node operations
- true for remote node operations

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Find all calls to `GetInstance` and verify they use the new parameter.
# Expectation: All calls should pass the `isInstanceOnRemoteNode` argument.

rg --type go 'GetInstance\(' -n

Length of output: 1349

Line range hint 316-355: Ensure all calls to CreateInstance are updated with the new parameter

The method CreateInstance now includes an additional parameter isInstanceOnRemoteNode. Please verify that all calls to this method throughout the codebase have been updated to pass the appropriate value for isInstanceOnRemoteNode to ensure correct functionality.

Run the following script to find all usages of CreateInstance and check their parameters:

✅ Verification successful

Let me analyze the results. The search shows all occurrences of CreateInstance in the codebase. I can see that:

The matches in vendor/github.com/go-ole/go-ole/ are unrelated as they belong to a different package and have different signatures.
The relevant matches show:
- Interface definition in controller/instance_handler.go:39
- Mock implementation in controller/instance_handler_test.go:51
- Actual implementations in:
  - controller/replica_controller.go:316
  - controller/engine_controller.go:469
- Usage in controller/instance_handler.go with proper boolean arguments:
  - Line 750: CreateInstance(obj, false)
  - Line 763: CreateInstance(obj, true)
  - Line 783: CreateInstance(obj, false)

All calls to CreateInstance are properly updated with the new parameter

All implementations and calls to CreateInstance in the codebase have been correctly updated to include the isInstanceOnRemoteNode parameter. The interface definition, mock implementation, actual implementations, and all usage sites pass the appropriate boolean value.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Find all calls to `CreateInstance` and verify they use the new parameter.
# Expectation: All calls should pass the `isInstanceOnRemoteNode` argument.

rg --type go 'CreateInstance\(' -n

Length of output: 1461

Line range hint 528-537: Potential logical error: Passing false for isInstanceOnRemoteNode in DeleteInstance

In the DeleteInstance method, the call to GetInstanceManagerByInstance uses false as the isInstanceOnRemoteNode parameter. If the replica instance might be on a remote node, passing false could lead to incorrect instance manager retrieval and potential errors. Please verify whether the correct value should be determined based on the replica's location.

Run the following script to check usage of GetInstanceManagerByInstance and how isInstanceOnRemoteNode is set:

controller/monitor/node_upgrade_monitor.go (2)

192-206: The issue regarding variable shadowing of err within the deferred function is still present. Please refer to the previous review comment for details on how to address this.

293-293: Deferring engineClientProxy.Close() inside a loop can lead to resource exhaustion due to postponed closures. The concern raised in the previous review comment remains applicable.

k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (6)

981-1007: DeepCopy Functions for DataEngineUpgradeManager Added Successfully

The autogenerated DeepCopy methods for the DataEngineUpgradeManager type and its related functions appear correctly implemented. These functions will ensure proper deep copying of the custom resource objects.

1010-1041: DeepCopy Functions for DataEngineUpgradeManagerList Implemented Correctly

The added deepcopy methods for DataEngineUpgradeManagerList are correctly generated. This ensures that lists of DataEngineUpgradeManager objects can be deep copied without issues.

1064-1092: DeepCopy Methods for DataEngineUpgradeManagerSpec and DataEngineUpgradeManagerStatus

The DeepCopyInto and DeepCopy functions for both DataEngineUpgradeManagerSpec and DataEngineUpgradeManagerStatus are properly defined, including deep copying of slices and maps. This maintains data integrity during object copying.

1783-1842: DeepCopy Functions for NodeDataEngineUpgrade and Related Types

The deepcopy implementations for NodeDataEngineUpgrade, NodeDataEngineUpgradeList, NodeDataEngineUpgradeSpec, and NodeDataEngineUpgradeStatus are correctly generated. They handle the nested structures appropriately.

2991-3006: DeepCopy Methods for UpgradeNodeStatus

The DeepCopyInto and DeepCopy methods for UpgradeNodeStatus are correctly implemented, ensuring accurate copying of these status objects.

3326-3341: DeepCopy Functions for VolumeUpgradeStatus

The added deepcopy functions for VolumeUpgradeStatus are appropriate and correctly handle the copying process.

engineapi/instance_manager.go

webhook/resources/nodedataengineupgrade/validator.go

coderabbitai · 2024-11-25T14:35:35Z

controller/upgrade_manager_controller.go

+		status, ok := data.(*longhorn.DataEngineUpgradeManagerStatus)
+		if !ok {
+			log.Errorf("Failed to assert value from dataEngineUpgradeManager monitor: %v", data)
+		} else {
+			upgradeManager.Status.InstanceManagerImage = status.InstanceManagerImage
+			upgradeManager.Status.State = status.State
+			upgradeManager.Status.Message = status.Message
+			upgradeManager.Status.UpgradingNode = status.UpgradingNode
+			upgradeManager.Status.UpgradeNodes = make(map[string]*longhorn.UpgradeNodeStatus)
+			for k, v := range status.UpgradeNodes {
+				upgradeManager.Status.UpgradeNodes[k] = &longhorn.UpgradeNodeStatus{
+					State:   v.State,
+					Message: v.Message,
+				}
+			}
+		}
+	}


⚠️ Potential issue

Handle type assertion failure when retrieving status data

In the reconcile function, if the type assertion fails (if !ok), the function logs an error but continues execution. This may lead to inconsistent state or further errors due to uninitialized fields.

Consider handling the error appropriately by returning an error or stopping further processing to prevent potential issues.

Apply this diff to return an error when the type assertion fails:

func (uc *DataEngineUpgradeManagerController) reconcile(upgradeManagerName string) (err error) { // ... if uc.dataEngineUpgradeManagerMonitor != nil { data, _ := uc.dataEngineUpgradeManagerMonitor.GetCollectedData() status, ok := data.(*longhorn.DataEngineUpgradeManagerStatus) if !ok { log.Errorf("Failed to assert value from dataEngineUpgradeManager monitor: %v", data) + return fmt.Errorf("failed to retrieve valid DataEngineUpgradeManagerStatus") } else { upgradeManager.Status.InstanceManagerImage = status.InstanceManagerImage // existing code continues } } // ... }

Committable suggestion skipped: line range outside the PR's diff.

coderabbitai · 2024-11-25T14:35:35Z

controller/replica_controller.go

+func (rc *ReplicaController) SuspendInstance(obj interface{}) error {
+	return nil
+}
+
+func (rc *ReplicaController) ResumeInstance(obj interface{}) error {
+	return nil
+}
+
+func (rc *ReplicaController) SwitchOverTarget(obj interface{}) error {
+	return nil
+}
+
+func (rc *ReplicaController) DeleteTarget(obj interface{}) error {
+	return nil
+}
+
+func (rc *ReplicaController) RequireRemoteTargetInstance(obj interface{}) (bool, error) {
+	return false, nil
+}
+


⚠️ Potential issue

Implement the logic for the newly added methods

The methods SuspendInstance, ResumeInstance, SwitchOverTarget, DeleteTarget, and RequireRemoteTargetInstance have been added but currently have empty implementations that return default values. If these methods are intended to handle critical functionality during live upgrades, their lack of implementation could lead to unintended behavior. Please implement the necessary logic or provide justifications for the empty implementations.

controller/monitor/node_upgrade_monitor.go

coderabbitai

Actionable comments posted: 14

🧹 Outside diff range and nitpick comments (29)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 00e7be5 and 7819f3a.

📒 Files selected for processing (50)

controller/backup_controller.go (1 hunks)
controller/controller_manager.go (2 hunks)
controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/monitor/node_upgrade_monitor.go (1 hunks)
controller/monitor/upgrade_manager_monitor.go (1 hunks)
controller/node_controller.go (2 hunks)
controller/node_upgrade_controller.go (1 hunks)
controller/replica_controller.go (5 hunks)
controller/uninstall_controller.go (4 hunks)
controller/upgrade_manager_controller.go (1 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)
datastore/datastore.go (3 hunks)
datastore/longhorn.go (6 hunks)
engineapi/instance_manager.go (5 hunks)
engineapi/instance_manager_test.go (1 hunks)
k8s/crds.yaml (84 hunks)
k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (6 hunks)
k8s/pkg/apis/longhorn/v1beta2/node.go (2 hunks)
k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/register.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/volume.go (2 hunks)
k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (4 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_longhorn_client.go (2 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/generated_expansion.go (2 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/longhorn_client.go (3 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/informers/externalversions/generic.go (2 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/interface.go (4 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go (2 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
scheduler/replica_scheduler.go (1 hunks)
types/types.go (4 hunks)
webhook/resources/dataengineupgrademanager/mutator.go (1 hunks)
webhook/resources/dataengineupgrademanager/validator.go (1 hunks)
webhook/resources/nodedataengineupgrade/mutator.go (1 hunks)
webhook/resources/nodedataengineupgrade/validator.go (1 hunks)
webhook/resources/volume/validator.go (5 hunks)
webhook/server/mutation.go (2 hunks)
webhook/server/validation.go (2 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

✅ Files skipped from review due to trivial changes (2)

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go
k8s/pkg/client/listers/longhorn/v1beta2/nodedataengineupgrade.go

🚧 Files skipped from review as they are similar to previous changes (25)

controller/controller_manager.go
controller/monitor/upgrade_manager_monitor.go
controller/uninstall_controller.go
engineapi/instance_manager_test.go
k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go
k8s/pkg/apis/longhorn/v1beta2/node.go
k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go
k8s/pkg/apis/longhorn/v1beta2/register.go
k8s/pkg/apis/longhorn/v1beta2/volume.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_longhorn_client.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/generated_expansion.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/longhorn_client.go
k8s/pkg/client/informers/externalversions/generic.go
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/interface.go
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go
k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go
scheduler/replica_scheduler.go
webhook/resources/dataengineupgrademanager/mutator.go
webhook/resources/dataengineupgrademanager/validator.go
webhook/resources/nodedataengineupgrade/mutator.go
webhook/server/mutation.go
webhook/server/validation.go

🧰 Additional context used

📓 Learnings (2)

controller/engine_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/engine_controller.go:524-527
Timestamp: 2024-11-25T12:39:58.926Z
Learning: In `controller/engine_controller.go`, `e.Status.Port` is sourced from the SPDK engine and does not require additional validation.

controller/monitor/node_upgrade_monitor.go (1)

Learnt from: james-munson
PR: longhorn/longhorn-manager#3211
File: app/post_upgrade.go:102-113
Timestamp: 2024-11-10T16:45:04.898Z
Learning: In Go, when a deferred function references a variable like `err`, ensure that the variable is declared in the outer scope and not within an inner scope (such as within `if err := ...`), to prevent compilation errors and unintended variable shadowing.

🪛 golangci-lint (1.61.0)

controller/volume_controller.go

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (75)

webhook/resources/nodedataengineupgrade/validator.go (2)

40-66: Validation logic in the Create method is appropriate

The Create method correctly validates all required fields for the NodeDataEngineUpgrade resource and provides explicit error messages for invalid input.

68-95: Proper enforcement of immutability in the Update method

The Update method effectively ensures that critical fields (NodeID, DataEngine, InstanceManagerImage, and DataEngineUpgradeManager) remain immutable during updates, maintaining the integrity of the resource.

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go (14)

17-17: Acknowledgment: Code is auto-generated by client-gen

As this file is generated by client-gen, it should not be manually edited to prevent inconsistencies.

33-37: Definition of DataEngineUpgradeManagersGetter interface is appropriate

The getter interface is correctly defined, following standard client-go patterns.

39-51: DataEngineUpgradeManagerInterface includes all necessary CRUD methods

All essential methods for managing DataEngineUpgradeManager resources are appropriately declared.

53-57: dataEngineUpgradeManagers struct encapsulates client and namespace effectively

The struct correctly holds the REST client and namespace for resource operations.

59-65: Constructor newDataEngineUpgradeManagers initializes the client properly

The function correctly returns a new instance with the REST client and specified namespace.

67-78: Get method retrieves resources accurately

The implementation properly fetches a single DataEngineUpgradeManager resource by name.

80-95: List method handles resource listing with timeout considerations

The method correctly lists resources based on label and field selectors, handling timeouts if specified.

97-110: Watch method establishes resource watches effectively

The implementation allows for watching changes to DataEngineUpgradeManager resources, supporting timeouts.

112-123: Create method correctly handles resource creation

The method accurately creates a new DataEngineUpgradeManager resource with the provided specifications.

125-137: Update method properly updates existing resources

Resource updates are correctly handled, ensuring the server-side representation is returned.

139-153: UpdateStatus method manages status subresource updates correctly

The implementation appropriately updates the status of a DataEngineUpgradeManager resource.

155-164: Delete method removes resources as expected

The method correctly deletes a specified resource by name.

166-180: DeleteCollection method handles bulk deletion effectively

The implementation allows for deleting a collection of resources, considering timeout settings.

182-195: Patch method applies modifications to resources accurately

The method correctly applies patches to resources, supporting various patch types and subresources.

controller/upgrade_manager_controller.go (5)

211-214: Handle terminal states appropriately

When the upgrade manager reaches a terminal state (UpgradeStateCompleted or UpgradeStateError), the controller stops processing. Ensure that any necessary cleanup or final actions are performed before exiting.

Confirm that all resources are properly finalized and that no further action is required.

74-84: ⚠️ Potential issue

Add error handling for event handler registration

When adding the event handler with ds.DataEngineUpgradeManagerInformer.AddEventHandler, the returned error should be handled to catch any issues during the handler setup.

Apply this diff to handle the error appropriately:

 if _, err := ds.DataEngineUpgradeManagerInformer.AddEventHandler(cache.ResourceEventHandlerFuncs{
     AddFunc:    uc.enqueueDataEngineUpgradeManager,
     UpdateFunc: func(old, cur interface{}) { uc.enqueueDataEngineUpgradeManager(cur) },
     DeleteFunc: uc.enqueueDataEngineUpgradeManager,
 }); err != nil {
     return nil, err
+    // Consider logging the error if necessary
 }

Ensure that any setup errors are not silently ignored.

235-251: ⚠️ Potential issue

Handle type assertion failure appropriately

In the reconcile function, if the type assertion fails (if !ok), the code logs an error but continues execution. This may lead to a nil pointer dereference or inconsistent state.

Apply this diff to return an error when the type assertion fails:

 func (uc *DataEngineUpgradeManagerController) reconcile(upgradeManagerName string) (err error) {
     // ...
     if uc.dataEngineUpgradeManagerMonitor != nil {
         data, _ := uc.dataEngineUpgradeManagerMonitor.GetCollectedData()
         status, ok := data.(*longhorn.DataEngineUpgradeManagerStatus)
         if !ok {
             log.Errorf("Failed to assert value from dataEngineUpgradeManager monitor: %v", data)
+            return fmt.Errorf("failed to retrieve valid DataEngineUpgradeManagerStatus")
         } else {
             upgradeManager.Status.InstanceManagerImage = status.InstanceManagerImage
             // existing code continues
         }
     }
     // ...
 }

263-275: ⚠️ Potential issue

Potential race condition accessing uc.dataEngineUpgradeManagerMonitor

Access to uc.dataEngineUpgradeManagerMonitor is not synchronized. If the controller runs multiple workers, this could lead to race conditions.

Apply this diff to add a mutex for synchronization:

+import "sync"

 type DataEngineUpgradeManagerController struct {
     // ...
     dataEngineUpgradeManagerMonitor monitor.Monitor
+    monitorMutex                    sync.Mutex
     // ...
 }

 func (uc *DataEngineUpgradeManagerController) createDataEngineUpgradeManagerMonitor(upgradeManager *longhorn.DataEngineUpgradeManager) (monitor.Monitor, error) {
+    uc.monitorMutex.Lock()
+    defer uc.monitorMutex.Unlock()

     if uc.dataEngineUpgradeManagerMonitor != nil {
         return uc.dataEngineUpgradeManagerMonitor, nil
     }
     // ...
 }

218-227: Handle status update conflicts properly to prevent requeue loops

In the deferred function, when updating the status, if there is a conflict, you re-enqueue the item. Ensure that this does not lead to infinite requeues and that the controller respects the maxRetries limit.

Review the conflict handling logic to confirm it aligns with the desired retry mechanism. Run the following script to verify the requeue behavior:

✅ Verification successful

The conflict handling is properly implemented with retry limits

The verification shows that:

The controller has a global maxRetries = 3 limit defined in base_controller.go
When conflicts occur during status updates, the item is requeued using enqueueDataEngineUpgradeManager which adds to the normal queue (not rate-limited)
The base error handling checks NumRequeues(key) < maxRetries and uses rate-limited requeues for general reconciliation errors
Status update conflicts use a separate, more lenient requeue mechanism which is appropriate since conflicts are temporary race conditions

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that items are not endlessly requeued due to conflicts.

# Expected: Items should be requeued up to maxRetries times.

grep -A 10 'func (uc *DataEngineUpgradeManagerController) handleErr' controller/upgrade_manager_controller.go

Length of output: 111

Script:

#!/bin/bash
# Let's search for retry-related code in the controller
rg -A 5 -B 5 'maxRetries|requeue|Requeue' controller/upgrade_manager_controller.go

Length of output: 768

Script:

#!/bin/bash
# Let's also check the controller struct definition for retry-related fields
ast-grep --pattern 'type DataEngineUpgradeManagerController struct {
  $$$
}'

Length of output: 1207

Script:

#!/bin/bash
# Let's check the reconcile function to understand the error handling flow
rg -A 10 'func \(uc \*DataEngineUpgradeManagerController\) reconcile' controller/upgrade_manager_controller.go

Length of output: 446

Script:

#!/bin/bash
# Let's check the baseController definition since the controller embeds it
rg -A 10 'type baseController struct' .

Length of output: 821

Script:

#!/bin/bash
# Let's also check where maxRetries is defined
rg 'maxRetries.*=' .

Length of output: 198

Script:

#!/bin/bash
# Let's check the enqueue function implementation
ast-grep --pattern 'func (uc *DataEngineUpgradeManagerController) enqueueDataEngineUpgradeManager($$$)'

Length of output: 774

webhook/resources/volume/validator.go (13)

131-131: Ensure Data Engine is enabled before creation

Validating that the required data engine is enabled is crucial. Confirm that ValidateRequiredDataEngineEnabled correctly checks the data engine status.

144-145: Verify engine image compatibility

The check for engine image compatibility is important. Ensure that CheckDataEngineImageCompatiblityByImage accurately validates the image against the specified data engine.

147-148: Restrict setting TargetNodeID during volume creation

It's appropriate to prevent setting spec.targetNodeID for a new volume. This ensures that the target node is determined during attachment.

154-156: Feature not supported: Encrypted volumes with Data Engine v2

Encrypted volumes are not supported for Data Engine v2. The validation correctly prevents this configuration.

158-160: Feature not supported: Backing images with Data Engine v2

Backing images are not supported for Data Engine v2. The validation ensures users are aware of this limitation.

162-164: Feature not supported: Clone operations with Data Engine v2

Cloning from another volume is not supported for Data Engine v2. Validation here is appropriate.

271-272: Undefined variable v in error message

The error message references v.Spec.MigrationNodeID, but v is not defined in this context. It should likely be newVolume.Spec.MigrationNodeID.

275-277: Validate SnapshotMaxCount within acceptable range

Good job validating that snapshotMaxCount is within the acceptable range. This prevents potential issues with snapshot management.

284-288: Ensure safe updating of snapshot limits

Validating changes to SnapshotMaxCount and SnapshotMaxSize helps prevent configurations that could inadvertently delete existing snapshots.

298-305: Prevent unsupported changes to BackingImage for Data Engine v2

Changing the BackingImage is not supported for volumes using Data Engine v2. The validation correctly enforces this restriction.

356-360: Handle errors when retrieving node information

Proper error handling when retrieving the node ensures that unexpected issues are surfaced appropriately.

368-369: Logical issue in condition for changing TargetNodeID

The condition checks if oldVolume.Spec.TargetNodeID == "" && oldVolume.Spec.TargetNodeID != newVolume.Spec.TargetNodeID. Since oldVolume.Spec.TargetNodeID is "", the second part oldVolume.Spec.TargetNodeID != newVolume.Spec.TargetNodeID will always be true if newVolume.Spec.TargetNodeID is not empty.

Consider revising the condition for clarity.

407-408: Restrict setting TargetNodeID for non-Data Engine v2 volumes

It's appropriate to prevent setting spec.targetNodeID when the volume is not using Data Engine v2, ensuring consistent behavior.

datastore/longhorn.go (3)

Line range hint 1801-1805: Ensure proper error handling when InstanceManagerName is empty

In the getRunningReplicaInstanceManagerRO function, when r.Status.InstanceManagerName is empty, the code calls GetInstanceManagerByInstanceRO. Please verify that GetInstanceManagerByInstanceRO can handle cases where InstanceManagerName is not set, to prevent potential nil pointer dereferences.

3761-3764: Verify assignment of nodeID when isInstanceOnRemoteNode is true

In GetInstanceManagerByInstanceRO, when isInstanceOnRemoteNode is true, nodeID is assigned from obj.Spec.TargetNodeID. Ensure that TargetNodeID is always properly set to avoid potential issues with empty or invalid nodeID values.

5848-5875: ⚠️ Potential issue

Handle errors in RemoveFinalizerForNodeDataEngineUpgrade

In RemoveFinalizerForNodeDataEngineUpgrade, if the Update call fails and DeletionTimestamp is not set, the function does not return the error. This could lead to silent failures. Ensure that errors are properly returned and logged.

Apply this diff to handle the error appropriately:

 _, err := s.lhClient.LonghornV1beta2().NodeDataEngineUpgrades(s.namespace).Update(context.TODO(), upgrade, metav1.UpdateOptions{})
 if err != nil {
     // workaround `StorageError: invalid object, Code: 4` due to empty object
     if upgrade.DeletionTimestamp != nil {
         return nil
     }
-    return nil
+    return errors.Wrapf(err, "unable to remove finalizer for nodeDataEngineUpgrade %s", upgrade.Name)
 }

k8s/pkg/client/listers/longhorn/v1beta2/dataengineupgrademanager.go (2)

28-53: LGTM! Follows Kubernetes lister patterns

The implementation correctly follows Kubernetes lister patterns:

Proper interface definition with List and namespace-specific methods
Efficient use of cache.Indexer
Correct handling of label selectors

17-26: Generated code verification required

This is an auto-generated file. Please ensure:

The code generator configuration is correct
The generator version is up-to-date with your kubernetes dependencies

✅ Verification successful

Code generation configuration is correct

The verification shows that:

The package has proper code generation directives in doc.go (+k8s:deepcopy-gen=package and +groupName=longhorn.io)
The generated lister follows the standard Kubernetes pattern with correct interface definition
The generated code is consistent with other Kubernetes-style listers

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Verify the code generator configuration
find . -name "*.go" -type f -exec grep -l "// +k8s:deepcopy-gen" {} \;

Length of output: 12593

Script:

#!/bin/bash
# Let's verify the code generation markers and configuration for the DataEngineUpgradeManager
rg -A 5 "// +k8s:.*-gen" ./k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go

# Also check if there are any generator tags in doc.go which often contains package-level generation directives
cat ./k8s/pkg/apis/longhorn/v1beta2/doc.go

# Check if the generated lister follows the correct pattern
ast-grep --pattern 'type DataEngineUpgradeManagerLister interface {
  $$$
}'

Length of output: 1252

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go (3)

1-31: LGTM: File header and imports are properly structured.

The file follows standard Kubernetes client code conventions with appropriate license header and necessary imports.

53-65: LGTM: Implementation struct and constructor are properly implemented.

The client implementation follows standard Kubernetes patterns with proper initialization.

33-51: Verify interface completeness against CRD definition.

The interfaces follow standard Kubernetes patterns and include all expected CRUD operations. However, let's verify that all custom resource operations defined in the CRD are covered.

✅ Verification successful

Based on the shell script results, I can now generate the final response:

Interface implementation is complete and matches CRD definition

The NodeDataEngineUpgrade interfaces are correctly implemented with all necessary operations. The CRD definition in k8s/crds.yaml shows:

Basic resource definition with standard CRUD operations
Status subresource support (covered by UpdateStatus method)
No additional custom actions or subresources defined

The interface provides all required methods for interacting with the NodeDataEngineUpgrade custom resource, including status updates.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that all custom resource operations defined in the CRD are covered by the interface
# Search for CRD definition and additional subresources or custom actions

# Look for CRD definition
fd -e yaml -e yml | xargs rg -l "kind:\s*CustomResourceDefinition" | xargs rg "NodeDataEngineUpgrade" -A 10

# Look for any custom action definitions in controller
rg "NodeDataEngineUpgrade.*Action|Action.*NodeDataEngineUpgrade" -g "*.go"

Length of output: 4275

controller/node_upgrade_controller.go (1)

86-126: LGTM: Queue management implementation follows best practices

The queue management and worker implementation follows Kubernetes controller patterns correctly, with proper error handling and graceful shutdown.

datastore/datastore.go (4)

93-96: LGTM: New fields follow established patterns

The new fields for data engine upgrade management follow the consistent pattern used for other resources in the DataStore struct.

186-189: LGTM: Proper initialization of new informers

The initialization of the new informers follows the established pattern:

Informer creation from the factory
Cache sync registration

279-282: LGTM: Correct lister and informer assignments

The assignments of the new listers and informers in the DataStore constructor follow the consistent pattern used throughout the codebase.

48-92: Verify impact of field alignment changes

While the alignment changes improve readability, we should verify that all fields are preserved during the reformatting.

Also applies to: 234-278

✅ Verification successful

Field alignment changes verified successfully

Comparing the old and new versions of the DataStore struct shows that all fields are preserved with identical types and ordering. The alignment changes were purely cosmetic and did not affect the structure's content.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify no fields were accidentally removed during reformatting
# by comparing the old version with the new version

# Get the old version of the file
git show HEAD^:datastore/datastore.go > old_datastore.go

# Extract struct fields from both versions
echo "=== Old version fields ==="
awk '/type DataStore struct/,/}/' old_datastore.go | grep -v '^[[:space:]]*$' | grep -v '^}'
echo "=== New version fields ==="
awk '/type DataStore struct/,/}/' datastore/datastore.go | grep -v '^[[:space:]]*$' | grep -v '^}'

# Cleanup
rm old_datastore.go

Length of output: 10425

controller/instance_handler_test.go (3)

Line range hint 39-51: LGTM: Method signature updates are consistent with interface changes.

The updated signatures for GetInstance and CreateInstance correctly include the new isInstanceOnRemoteNode parameter, maintaining consistency with the interface changes.

137-141: LGTM: Engine struct field additions are properly implemented.

The new fields TargetIP, StorageIP, StorageTargetIP, and TargetPort are correctly added to the newEngine function, maintaining consistency with the engine status structure.

87-90: ⚠️ Potential issue

Inconsistent error handling in DeleteTarget method.

While other unimplemented methods in MockInstanceManagerHandler return an error to indicate they are not mocked, DeleteTarget currently returns nil.

Apply this diff to ensure consistent error handling:

func (imh *MockInstanceManagerHandler) DeleteTarget(obj interface{}) error {
    // DeleteTarget is not mocked
-   return nil
+   return fmt.Errorf("DeleteTarget is not mocked")
}

controller/replica_controller.go (3)

Line range hint 636-647: LGTM! Implementation is consistent.

The changes maintain consistency with CreateInstance for remote node handling and properly validate V2 data engine state.

611-630: Empty implementations need to be addressed.

These empty implementations were previously flagged in the review. The comment remains valid.

Line range hint 316-355: LGTM! Verify remote node instance handling.

The addition of isInstanceOnRemoteNode parameter enhances the instance creation logic to support remote nodes, which is essential for live upgrades.

Let's verify the remote node instance handling implementation:

✅ Verification successful

Remote node instance handling implementation is consistent and complete

The implementation of isInstanceOnRemoteNode is properly integrated across the codebase:

Interface definition in InstanceManagerHandler correctly includes the parameter
Consistent implementation in both Engine and Replica controllers
DataStore layer properly handles the parameter by switching between NodeID and TargetNodeID
Test coverage is in place with mock implementations

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for consistent remote node instance handling across the codebase

# Test: Search for other remote node instance handling patterns
rg -l "isInstanceOnRemoteNode"

# Test: Check for potential instance manager retrieval patterns
ast-grep --pattern 'GetInstanceManagerByInstance($$$)'

Length of output: 241

Script:

#!/bin/bash
# Let's examine the implementation details of remote node instance handling

# Check the implementation in instance_handler.go
rg "isInstanceOnRemoteNode" controller/instance_handler.go -B 2 -A 2

# Check how engine controller implements this
rg "isInstanceOnRemoteNode" controller/engine_controller.go -B 2 -A 2

# Check the datastore implementation
rg "isInstanceOnRemoteNode" datastore/longhorn.go -B 2 -A 2

# Look for any test cases
rg "isInstanceOnRemoteNode" controller/instance_handler_test.go -B 2 -A 2

Length of output: 2346

engineapi/instance_manager.go (5)

283-292: LGTM: Instance process status fields properly extended

The addition of StandbyTargetPortStart and StandbyTargetPortEnd fields enhances the instance process status to support v2 data engine live upgrades.

885-885: Fix incorrect function comment

The function comment incorrectly states that it "suspends engine instance" when it should be "resumes engine instance".

904-914: Add input validation for TargetAddress

The EngineInstanceSwitchOverTarget method should validate the TargetAddress before use.

864-931: Add consistent nil checks across new engine instance methods

Each new method should validate that the Engine field in the request is not nil before use, similar to existing checks in other methods.

873-873: Fix typo in error messages: "date engine" should be "data engine"

Multiple error messages contain the same typo.

Also applies to: 890-890, 908-908, 925-925

controller/instance_handler.go (2)

38-46: LGTM: Interface changes are well-structured

The new methods added to InstanceManagerHandler interface provide a clear and consistent API for managing v2 data engine instances.

Line range hint 38-995: Verify v2 data engine upgrade implementation

The changes implement significant functionality for v2 data engine live upgrades. Let's verify the implementation:

✅ Verification successful

Based on the results, let me verify the v2 data engine upgrade implementation:

The code shows proper handling of target instance replacement and cleanup:
- Tracks target instance state via TargetInstanceReplacementCreated and CurrentTargetNodeID
- Handles cleanup by resetting these fields when instance is stopped
- Properly manages target instance lifecycle during upgrades
The error handling patterns are consistent:
- Proper logging of errors with context
- Appropriate cleanup on errors
- Consistent error propagation
The race condition handling appears robust:
- State transitions are properly guarded
- Cleanup happens in deferred functions
- Status updates are atomic

Let me verify one more aspect of the implementation:

Based on the verification results, I can now provide a final assessment of the v2 data engine upgrade implementation:

Implementation verified as robust and complete

The code shows proper handling of instance state transitions and target instance management during v2 data engine upgrades:

Proper state transition handling between Running/Suspended/Stopped states
Atomic status updates with proper cleanup in deferred functions
Consistent error handling with appropriate logging
Clear separation between initiator and target instance lifecycle
Safe handling of target instance replacement with proper status tracking
Proper cleanup of target instance state after upgrades

The implementation correctly handles all edge cases around instance state transitions during upgrades, with appropriate status tracking and cleanup.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the v2 data engine upgrade implementation

# Check for any potential race conditions in upgrade handling
rg -A 5 "TargetInstanceReplacementCreated|CurrentTargetNodeID"

# Check for consistent error handling patterns
rg -A 3 "logrus\..*Error.*Failed to"

# Check for proper cleanup in error cases
ast-grep --pattern 'if err != nil {
  $$$
  return
}'

Length of output: 101320

Script:

#!/bin/bash
# Check for proper state transition handling
rg -A 5 "DesireState.*=.*Instance" controller/

Length of output: 35056

types/types.go (2)

43-44: LGTM: Constants follow naming conventions.

The new constants for data engine upgrade manager and node data engine upgrade follow the established naming patterns and are appropriately placed within their respective constant blocks.

Also applies to: 163-164

1271-1291: LGTM: Well-structured utility functions.

The new utility functions for data engine upgrade follow best practices:

Consistent with existing patterns for name generation and label management
Proper handling of optional parameters
Good use of base labels and component identification

controller/volume_controller_test.go (1)

506-510: ⚠️ Potential issue

Inconsistent engine status fields

The test is setting engine status fields that don't appear to be properly defined in the engine struct. This could lead to test failures and inconsistencies.

Please ensure these fields are properly defined in the engine struct before setting them in tests:

-		e.Status.TargetIP = ""
-		e.Status.StorageTargetIP = ""
-		e.Status.TargetPort = 0

The test should only set fields that are actually defined in the EngineStatus struct.

controller/node_controller.go (1)

2181-2189: Verify upgrade state transitions.

The scheduling logic for data engine upgrades looks correct, but we should verify the state transitions during upgrades to ensure proper handling of edge cases.

Let's verify the upgrade state transitions:

✅ Verification successful

Let me gather more information about the upgrade state handling to ensure comprehensive verification.

State transitions for data engine upgrades are properly implemented

The verification shows that the upgrade state transitions are well-handled:

The node controller correctly disables scheduling when upgrades are requested
The node upgrade monitor handles both setting and clearing of the upgrade flag
Error handling is in place for state transitions
The condition updates are properly integrated with the node status system

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for potential race conditions in upgrade state transitions

# Check for instances where DataEngineUpgradeRequested changes during active operations
rg -A 5 "DataEngineUpgradeRequested.*=.*true" 

# Check for any upgrade-related error handling
rg -A 5 "DataEngineUpgrade.*Error"

# Look for upgrade state transition patterns
ast-grep --pattern 'DataEngineUpgradeRequested = $value'

Length of output: 637

Script:

#!/bin/bash
# Check the complete node upgrade monitor implementation
rg -A 10 "func.*NodeUpgradeMonitor" 

# Look for state transition handling in node controller
rg -A 10 "DataEngineUpgradeRequested" controller/node_controller.go

# Check for upgrade completion handling
rg -A 5 "DataEngineUpgradeRequested.*=.*false"

# Look for upgrade status conditions
rg "NodeConditionReasonNodeDataEngineUpgradeRequested"

Length of output: 1890

k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (2)

981-1092: LGTM: DataEngineUpgradeManager deepcopy implementation

The implementation follows Kubernetes code generation patterns and correctly handles deep copying of all fields including maps and slices.

✅ Verification successful

Let me verify the spec and status types to ensure complete verification.

DeepCopy implementation correctly matches type definitions

The generated deepcopy code in zz_generated.deepcopy.go accurately implements deep copying for the DataEngineUpgradeManager type and its components:

Properly handles TypeMeta and ObjectMeta fields
Correctly deep copies the Spec's slice field Nodes
Accurately implements deep copying of Status's map field UpgradeNodes with proper nil checks for pointer values
All nested struct fields are properly deep copied

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that the generated deepcopy code matches the type definition

# Test: Find the type definition and compare with generated code
ast-grep --pattern 'type DataEngineUpgradeManager struct {
  $$$
}'

Length of output: 749

Script:

#!/bin/bash
# Find DataEngineUpgradeManagerSpec and DataEngineUpgradeManagerStatus definitions
ast-grep --pattern 'type DataEngineUpgradeManagerSpec struct {
  $$$
}'

ast-grep --pattern 'type DataEngineUpgradeManagerStatus struct {
  $$$
}'

Length of output: 2404

1783-1890: LGTM: NodeDataEngineUpgrade deepcopy implementation

The implementation correctly handles deep copying of the Volumes map containing VolumeUpgradeStatus pointers with proper nil checks.

✅ Verification successful

Let me gather more information about the related types to ensure the deepcopy implementation is correct.

DeepCopy implementation correctly matches type definitions

The generated deepcopy code accurately handles all fields in the types:

NodeDataEngineUpgrade: Correctly deep copies TypeMeta, ObjectMeta, Spec, and Status
NodeDataEngineUpgradeSpec: Simple value types (strings) that don't need special deep copy handling
NodeDataEngineUpgradeStatus: Properly handles the map of pointers with nil checks for Volumes
VolumeUpgradeStatus: Simple value types that are correctly copied

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that the generated deepcopy code matches the type definition

# Test: Find the type definition and compare with generated code
ast-grep --pattern 'type NodeDataEngineUpgrade struct {
  $$$
}'

Length of output: 716

Script:

#!/bin/bash
# Check NodeDataEngineUpgradeSpec and NodeDataEngineUpgradeStatus definitions
ast-grep --pattern 'type NodeDataEngineUpgradeSpec struct {
  $$$
}'

ast-grep --pattern 'type NodeDataEngineUpgradeStatus struct {
  $$$
}'

# Check VolumeUpgradeStatus definition since it's used in the Status
ast-grep --pattern 'type VolumeUpgradeStatus struct {
  $$$
}'

Length of output: 3087

controller/engine_controller.go (6)

469-497: LGTM! Well-structured changes with improved logging

The changes enhance the CreateInstance method with better instance manager handling and more informative logging. The integration with findInstanceManagerAndIPs is clean and effective.

524-527: LGTM! Port handling is correct

Based on previous learnings, the port value from e.Status.Port is sourced from the SPDK engine and doesn't require additional validation. The address construction using JoinHostPort is appropriate.

634-642: LGTM! Error handling has been fixed

The error handling for target deletion was previously improved based on past review comments.

646-673: LGTM! Well-implemented instance suspension

The method properly validates data engine type and parameters before proceeding with suspension. Error handling is comprehensive.

Line range hint 2545-2642: LGTM! Robust responsibility checking implementation

The method effectively handles various scenarios including delinquent nodes and data engine availability. The logic for determining responsibility is clear and well-structured.

Line range hint 2419-2476: LGTM with verification suggestion

The upgrade handling is well-implemented with proper validation for both data engine types. Consider adding verification for the upgrade completion.

✅ Verification successful

LGTM - Upgrade handling implementation is properly validated

The verification confirms that:

The upgrade process includes proper state validation for instance managers, with consistent error handling across the codebase
The upgrade completion is properly logged and followed by appropriate status field updates
Instance manager state validation is consistently implemented across different components (engine controller, disk service, monitoring)

The implementation shows robust error handling and proper cleanup, making it safe for production use.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify instance manager readiness after upgrade
# Test: Check if both initiator and target instance managers are ready after upgrade

rg -A 5 "instance manager.*not running" . | grep "error initiating.*upgrade"

Length of output: 78

Script:

#!/bin/bash
# Let's verify the upgrade handling implementation more comprehensively

# Check for upgrade-related error handling patterns
rg -A 5 "Engine has been upgraded from" .

# Check for instance manager validation patterns
rg "instance manager.*not running" .

# Look for upgrade-related functions and their error handling
ast-grep --pattern 'if im.Status.CurrentState != longhorn.InstanceManagerStateRunning {
  $$$
}'

Length of output: 2009

k8s/crds.yaml (1)

1791-1792: Verify consistent usage of targetNodeID fields

The addition of targetNodeID fields in Engine and Replica CRDs needs verification to ensure consistent behavior during upgrades.

Consider documenting the following aspects:

When and how targetNodeID is set during upgrades
How conflicts between Engine and Replica target nodes are resolved
The relationship between these fields and the upgrade process

Also applies to: 1882-1883, 3243-3244, 3286-3287

✅ Verification successful

Let me gather more information about the relationship between these fields and the upgrade process.

The additional context will help verify the upgrade and migration behavior implementation.

Consistent implementation of targetNodeID fields verified

The code shows a well-implemented and consistent usage of targetNodeID fields across the codebase:

Proper validation in webhook prevents invalid targetNodeID changes:
- Blocks changes when volume is unhealthy
- Requires multiple replicas for migration
- Prevents setting same node as target
- Only allows changes during v2 data engine upgrades
Robust state management in controllers:
- Tracks current vs desired target node state
- Handles instance replacement and suspension
- Coordinates migration with engine state changes
- Cleans up old target instances
Clear upgrade workflow:
- Validates node readiness for v2 engine upgrades
- Manages transition between nodes
- Handles rollback scenarios
- Coordinates with instance manager replacement

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for consistent usage of targetNodeID fields across controllers
# Test: Search for targetNodeID field usage in controllers
rg -A 5 "targetNodeID"

Length of output: 6165

Script:

#!/bin/bash
# Check for upgrade-related code that uses targetNodeID
rg -A 10 "v2.*upgrade.*target" 

# Check for CurrentTargetNodeID usage
rg -A 5 "CurrentTargetNodeID"

# Look for volume migration logic
ast-grep --pattern 'func $_($$) {
  $$$
  targetNodeID $$$
  $$$
}'

Length of output: 12688

controller/volume_controller.go (2)

1007-1012: LGTM: Special handling for v2 data engine replica images

The code correctly handles the case where v2 data engine replica images can differ from the volume image, while maintaining backward compatibility for v1 data engine.

5086-5094: LGTM: Comprehensive upgrade status check

The implementation correctly handles upgrade status checking for both v1 and v2 data engines, considering both image updates and target node changes for v2.

coderabbitai · 2024-11-25T15:03:22Z

controller/upgrade_manager_controller.go

+}
+
+func (uc *DataEngineUpgradeManagerController) reconcile(upgradeManagerName string) (err error) {
+	upgradeManager, err := uc.ds.GetDataEngineUpgradeManager(upgradeManagerName)
+	if err != nil {


⚠️ Potential issue

Handle error returned by uc.reconcile(name)

In syncDataEngineUpgradeManager, the error returned by uc.reconcile(name) is not being handled properly, which may cause silent failures.

Apply this diff to handle the error:

func (uc *DataEngineUpgradeManagerController) syncDataEngineUpgradeManager(key string) (err error) { // ... - return uc.reconcile(name) + if err := uc.reconcile(name); err != nil { + return err + } + return nil }

Committable suggestion skipped: line range outside the PR's diff.

What's the difference?

@derekbit, you're correct—the difference is minimal. In both versions of the code:

func (uc *DataEngineUpgradeManagerController) syncDataEngineUpgradeManager(key string) (err error) { // ... return uc.reconcile(name) }

and

func (uc *DataEngineUpgradeManagerController) syncDataEngineUpgradeManager(key string) (err error) { // ... if err := uc.reconcile(name); err != nil { return err } return nil }

the function ultimately returns the error from uc.reconcile(name). The suggested change adds an explicit error check, but since uc.reconcile(name) is already being returned directly, the behavior remains the same. Apologies for any confusion—the original code handles the error appropriately, and no change is needed here.

coderabbitai · 2024-11-25T15:03:22Z

controller/upgrade_manager_controller.go

+	if uc.queue.NumRequeues(key) < maxRetries {
+		handleReconcileErrorLogging(log, err, "Failed to sync Longhorn DataEngineUpgradeManager resource")
+		uc.queue.AddRateLimited(key)
+		return
+	}
+
+	utilruntime.HandleError(err)
+	handleReconcileErrorLogging(log, err, "Dropping Longhorn dataEngineUpgradeManager out of the queue")


⚠️ Potential issue

Undefined variable maxRetries and function handleReconcileErrorLogging

The variable maxRetries and the function handleReconcileErrorLogging are used but not defined or imported in the file. This will lead to a compile-time error.

Apply this diff to define maxRetries and implement handleReconcileErrorLogging:

+const maxRetries = 5 +func handleReconcileErrorLogging(log *logrus.Entry, err error, msg string) { + log.WithError(err).Warn(msg) +} func (uc *DataEngineUpgradeManagerController) handleErr(err error, key interface{}) { if err == nil { uc.queue.Forget(key) return } log := uc.logger.WithField("dataEngineUpgradeManager", key) if uc.queue.NumRequeues(key) < maxRetries { handleReconcileErrorLogging(log, err, "Failed to sync Longhorn DataEngineUpgradeManager resource") uc.queue.AddRateLimited(key) return }

Committable suggestion skipped: line range outside the PR's diff.

coderabbitai · 2024-11-25T15:03:22Z

webhook/resources/volume/validator.go

+				if oldVolume.Spec.Image == instanceManagerImage {
+					return werror.NewInvalidError(fmt.Sprintf("volume %v is already using instance manager image %v", newVolume.Name, instanceManagerImage), "")
+				}


⚠️ Potential issue

Potential logic error when checking instance manager image

The check may incorrectly prevent upgrading when the volume is already using the desired instance manager image. This could block valid operations.

Consider adjusting the logic to allow proceeding if the volume is already using the instanceManagerImage.

Apply this diff to correct the condition:

-if oldVolume.Spec.Image == instanceManagerImage { - return werror.NewInvalidError(fmt.Sprintf("volume %v is already using instance manager image %v", newVolume.Name, instanceManagerImage), "") +if oldVolume.Spec.Image != instanceManagerImage { + return werror.NewInvalidError(fmt.Sprintf("volume %v is not using instance manager image %v", newVolume.Name, instanceManagerImage), "") }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

if oldVolume.Spec.Image == instanceManagerImage {

return werror.NewInvalidError(fmt.Sprintf("volume %v is already using instance manager image %v", newVolume.Name, instanceManagerImage), "")

}

if oldVolume.Spec.Image != instanceManagerImage {

return werror.NewInvalidError(fmt.Sprintf("volume %v is not using instance manager image %v", newVolume.Name, instanceManagerImage), "")

}

coderabbitai · 2024-11-25T15:03:22Z

controller/node_upgrade_controller.go

+	if _, err := uc.createNodeDataEngineUpgradeMonitor(nodeUpgrade); err != nil {
+		return err
+	}


🛠️ Refactor suggestion

Handle monitor creation errors more gracefully

The error from createNodeDataEngineUpgradeMonitor is returned directly, which could lead to unnecessary retries. Consider:

Logging the specific error

Setting an error state in the status

Determining if the error is recoverable

if _, err := uc.createNodeDataEngineUpgradeMonitor(nodeUpgrade); err != nil { + log.WithError(err).Error("Failed to create node data engine upgrade monitor") + nodeUpgrade.Status.State = longhorn.UpgradeStateError + nodeUpgrade.Status.Message = fmt.Sprintf("Failed to create monitor: %v", err) return err }

Committable suggestion skipped: line range outside the PR's diff.

coderabbitai · 2024-11-25T15:03:23Z

controller/instance_handler.go

+			if h.isEngineOfV2DataEngine(obj, spec.DataEngine) {
+				if h.isV2DataEngineBeingUpgraded(spec, status) {
+					logrus.Warnf("Skipping the instance %v since the instance manager %v is %v", instanceName, im.Name, im.Status.CurrentState)
+					return
+				}
+
+				if spec.Image == status.CurrentImage {
+					if status.CurrentState != longhorn.InstanceStateError {
+						upgradeRequested, err := h.ds.IsNodeDataEngineUpgradeRequested(spec.NodeID)
+						if err != nil {
+							// TODO: should we return here or mark the instance as error?
+							logrus.WithError(err).Errorf("Failed to check if node %v is being upgrade requested", spec.NodeID)
+							return
+						}
+						if upgradeRequested {
+							logrus.Warnf("Skipping the instance %v since the instance manager %v is %v since the node %v is being upgrade requested",
+								instanceName, im.Name, im.Status.CurrentState, spec.NodeID)
+							return
+						}
+						logrus.Warnf("Marking the instance as state ERROR since failed to find the instance manager for the running instance %v", instanceName)
+					}
+					status.CurrentState = longhorn.InstanceStateError
+				} else {
+					logrus.Warnf("Skipping the instance %v since the instance manager %v is %v and spec image %v is different from the current image %v",
+						instanceName, im.Name, im.Status.CurrentState, spec.Image, status.CurrentImage)
+					return
+				}


⚠️ Potential issue

Resolve error handling uncertainty

The TODO comment indicates uncertainty about error handling when checking node upgrade status. This should be resolved to ensure consistent behavior.

Apply this diff:

- // TODO: should we return here or mark the instance as error? - logrus.WithError(err).Errorf("Failed to check if node %v is being upgrade requested", spec.NodeID) - return + logrus.WithError(err).Errorf("Failed to check if node %v is being upgrade requested", spec.NodeID) + status.CurrentState = longhorn.InstanceStateError + return fmt.Errorf("failed to check node upgrade status: %v", err)

Committable suggestion skipped: line range outside the PR's diff.

types/types.go

k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go

k8s/crds.yaml

coderabbitai

Caution

Inline review comments failed to post. This is likely due to GitHub's limits when posting large numbers of comments.

Actionable comments posted: 10

🧹 Outside diff range and nitpick comments (26)

🛑 Comments failed to post (10)

coderabbitai

Actionable comments posted: 3

🧹 Outside diff range and nitpick comments (14)

controller/instance_handler_test.go (2)

91-94: Consider adding test cases for IsEngine method

The IsEngine method is implemented but not covered by any test cases in the test suite. Consider adding test cases to verify both positive and negative scenarios.

func TestReconcileInstanceState(c *C) {
	testCases := map[string]struct {
+		"verify_is_engine_with_engine": {
+			longhorn.InstanceTypeEngine,
+			nil,
+			newEngine("test-engine", "", "", "", "", 0, false, longhorn.InstanceStateStopped, longhorn.InstanceStateStopped),
+			newEngine("test-engine", "", "", "", "", 0, false, longhorn.InstanceStateStopped, longhorn.InstanceStateStopped),
+			false,
+		},
+		"verify_is_engine_with_non_engine": {
+			longhorn.InstanceTypeReplica,
+			nil,
+			newReplica("test-replica", "", "", "", 0, false, longhorn.InstanceStateStopped, longhorn.InstanceStateStopped),
+			newReplica("test-replica", "", "", "", 0, false, longhorn.InstanceStateStopped, longhorn.InstanceStateStopped),
+			false,
+		},

100-102: Add documentation for RequireRemoteTargetInstance

The new method RequireRemoteTargetInstance lacks documentation explaining its purpose and return values. Consider adding comments to clarify its usage.

+// RequireRemoteTargetInstance checks if the instance requires a remote target instance.
+// Returns true if a remote target is required, false otherwise.
 func (imh *MockInstanceManagerHandler) RequireRemoteTargetInstance(obj interface{}) (bool, error) {
 	return false, nil
 }

engineapi/instance_manager.go (1)

controller/instance_handler.go (3)

controller/engine_controller.go (4)

437-467: Consider enhancing error handling and validation

The findInstanceManagerAndIPs method could be improved in a few areas:

Add validation for empty IP addresses
Consider handling the case where both initiator and target IPs are the same
Add logging for important state changes

 func (ec *EngineController) findInstanceManagerAndIPs(obj interface{}) (im *longhorn.InstanceManager, initiatorIP string, targetIP string, err error) {
     e, ok := obj.(*longhorn.Engine)
     if !ok {
         return nil, "", "", fmt.Errorf("invalid object for engine: %v", obj)
     }

     initiatorIM, err := ec.ds.GetInstanceManagerByInstanceRO(obj, false)
     if err != nil {
         return nil, "", "", err
     }

+    if initiatorIM.Status.IP == "" {
+        return nil, "", "", fmt.Errorf("initiator instance manager %v has no IP", initiatorIM.Name)
+    }
     initiatorIP = initiatorIM.Status.IP
     targetIP = initiatorIM.Status.IP
     im = initiatorIM

     if e.Spec.TargetNodeID != "" {
         targetIM, err := ec.ds.GetInstanceManagerByInstanceRO(obj, true)
         if err != nil {
             return nil, "", "", err
         }
+        if targetIM.Status.IP == "" {
+            return nil, "", "", fmt.Errorf("target instance manager %v has no IP", targetIM.Name)
+        }
         targetIP = targetIM.Status.IP

         if !e.Status.TargetInstanceReplacementCreated && e.Status.CurrentTargetNodeID == "" {
             im = targetIM
         }
     }

     return im, initiatorIP, targetIP, nil
 }

Line range hint 2419-2476: Enhance upgrade logic robustness

The v2 data engine upgrade logic has a few areas that could be improved:

Consider extracting the instance manager validation into a separate helper method
Add timeouts for instance manager checks
Consider adding metrics/events for upgrade operations

+func (ec *EngineController) validateInstanceManager(nodeID string, dataEngine longhorn.DataEngineType) (*longhorn.InstanceManager, error) {
+    im, err := ec.ds.GetRunningInstanceManagerByNodeRO(nodeID, dataEngine)
+    if err != nil {
+        return nil, err
+    }
+    if im.Status.CurrentState != longhorn.InstanceManagerStateRunning {
+        return nil, fmt.Errorf("instance manager %v is not running", im.Name)
+    }
+    return im, nil
+}

 if types.IsDataEngineV2(e.Spec.DataEngine) {
-    // Check if the initiator instance is running
-    im, err := ec.ds.GetRunningInstanceManagerByNodeRO(e.Spec.NodeID, longhorn.DataEngineTypeV2)
+    // Validate initiator instance manager
+    im, err := ec.validateInstanceManager(e.Spec.NodeID, longhorn.DataEngineTypeV2)
     if err != nil {
-        return err
+        return errors.Wrapf(err, "failed to validate initiator instance manager")
     }
-    if im.Status.CurrentState != longhorn.InstanceManagerStateRunning {
-        return fmt.Errorf("instance manager %v for initiating instance %v is not running", im.Name, e.Name)
-    }

646-702: Improve error handling in suspend/resume operations

The suspend and resume operations could benefit from:

Adding retries for transient failures
Including more detailed error messages
Adding metrics for operation tracking

 func (ec *EngineController) SuspendInstance(obj interface{}) error {
     e, ok := obj.(*longhorn.Engine)
     if !ok {
         return fmt.Errorf("invalid object for engine instance suspension: %v", obj)
     }

+    log := getLoggerForEngine(ec.logger, e)
+    log.Info("Suspending engine instance")

     if !types.IsDataEngineV2(e.Spec.DataEngine) {
         return fmt.Errorf("suspending engine instance is not supported for data engine %v", e.Spec.DataEngine)
     }

     if e.Spec.VolumeName == "" || e.Spec.NodeID == "" {
         return fmt.Errorf("missing parameters for engine instance suspension: %+v", e)
     }

     im, err := ec.ds.GetInstanceManagerByInstanceRO(obj, false)
     if err != nil {
-        return err
+        return errors.Wrapf(err, "failed to get instance manager for engine %v", e.Name)
     }

786-823: Improve DeleteTarget implementation

The DeleteTarget implementation could be enhanced:

Add validation for the target node ID
Consider adding retries for transient failures
Add cleanup for any resources after deletion

 func (ec *EngineController) DeleteTarget(obj interface{}) error {
     e, ok := obj.(*longhorn.Engine)
     if !ok {
         return fmt.Errorf("invalid object for engine target deletion: %v", obj)
     }

+    log := getLoggerForEngine(ec.logger, e)
+    log.Info("Starting target deletion")

     if !types.IsDataEngineV2(e.Spec.DataEngine) {
         return fmt.Errorf("deleting target for engine instance is not supported for data engine %v", e.Spec.DataEngine)
     }

-    ec.logger.WithField("engine", e.Name).Info("Deleting target instance")

     if e.Spec.VolumeName == "" || e.Spec.NodeID == "" {
         return fmt.Errorf("missing parameters for engine target deletion: %+v", e)
     }

+    // Add validation for target node ID
+    if targetNodeID == "" {
+        return fmt.Errorf("target node ID is required for target deletion")
+    }

     // ... rest of the implementation

controller/volume_controller.go (3)

webhook/resources/nodedataengineupgrade/validator.go (1)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between cd56fa2 and 49625f4.

📒 Files selected for processing (18)

controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/replica_controller.go (5 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)
engineapi/instance_manager.go (5 hunks)
engineapi/instance_manager_test.go (1 hunks)
scheduler/replica_scheduler.go (1 hunks)
types/types.go (4 hunks)
webhook/resources/dataengineupgrademanager/mutator.go (1 hunks)
webhook/resources/dataengineupgrademanager/validator.go (1 hunks)
webhook/resources/nodedataengineupgrade/mutator.go (1 hunks)
webhook/resources/nodedataengineupgrade/validator.go (1 hunks)
webhook/resources/volume/validator.go (5 hunks)
webhook/server/mutation.go (2 hunks)
webhook/server/validation.go (2 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

🚧 Files skipped from review as they are similar to previous changes (10)

controller/volume_controller_test.go
engineapi/instance_manager_test.go
scheduler/replica_scheduler.go
types/types.go
webhook/resources/dataengineupgrademanager/mutator.go
webhook/resources/dataengineupgrademanager/validator.go
webhook/resources/nodedataengineupgrade/mutator.go
webhook/resources/volume/validator.go
webhook/server/mutation.go
webhook/server/validation.go

🧰 Additional context used

📓 Learnings (3)

controller/engine_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/engine_controller.go:524-527
Timestamp: 2024-11-25T12:39:58.926Z
Learning: In `controller/engine_controller.go`, `e.Status.Port` is sourced from the SPDK engine and does not require additional validation.

controller/instance_handler.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/instance_handler.go:919-939
Timestamp: 2024-11-25T23:56:53.252Z
Learning: In the Longhorn Manager Go code, the function `engineapi.NewInstanceManagerClient` does not accept a `context.Context` parameter. Therefore, we cannot pass `ctx` to it in functions like `isInstanceExist` in `controller/instance_handler.go`.

webhook/resources/nodedataengineupgrade/validator.go (3)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: webhook/resources/dataengineupgrademanager/validator.go:41-53
Timestamp: 2024-11-26T00:01:13.256Z
Learning: In `webhook/resources/dataengineupgrademanager/validator.go` of the Longhorn project, when validating `DataEngineUpgradeManager` creation, the `upgradeManager.Spec.Nodes` field can be empty, indicating that all available nodes should be upgraded.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: webhook/resources/nodedataengineupgrade/validator.go:46-48
Timestamp: 2024-11-26T00:07:32.856Z
Learning: In `webhook/resources/nodedataengineupgrade/validator.go`, it's unnecessary to check if `NodeDataEngineUpgrade.Spec` is nil before accessing its fields, as it is guaranteed to be non-nil.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: webhook/resources/nodedataengineupgrade/validator.go:78-93
Timestamp: 2024-11-25T23:56:04.203Z
Learning: In the `Update` method of `nodeDataEngineUpgradeValidator` in `validator.go`, `Spec` is a struct and cannot be nil, so nil checks before accessing `Spec` fields are unnecessary.

🪛 golangci-lint (1.61.0)

controller/volume_controller.go

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (17)

controller/instance_handler_test.go (3)

75-89: Consistent error message style in mock methods

The implementation of the new mock methods follows a consistent pattern of returning "not mocked" errors, which is good practice.

136-140: Verify the impact of new engine status fields

The newEngine function has been updated to include new status fields (TargetIP, StorageIP, StorageTargetIP, TargetPort). These fields should be properly initialized and used in the test cases.

✅ Verification successful

Based on the search results, I can now generate the final response since I have enough context about the usage of these fields in the codebase:

The new engine status fields are properly initialized and used in the test case

The test case correctly initializes all the new status fields:

TargetIP, StorageIP, and StorageTargetIP are all set to the same IP value
TargetPort is explicitly set to 0 with a comment explaining this is expected for v1 volumes
These field initializations match the actual field usage patterns seen throughout the codebase, particularly in controller/instance_handler.go and controller/volume_controller.go

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for test cases using these new fields
rg -A 5 'TargetIP|StorageIP|StorageTargetIP|TargetPort' --type go

Length of output: 78913

Line range hint 39-51: Verify the updated method signatures in the interface definition

The GetInstance and CreateInstance methods have been updated to include the isInstanceOnRemoteNode parameter, but we should verify this matches the interface definition.

✅ Verification successful

Method signatures in mock implementation match the interface definition

The mock implementation in controller/instance_handler_test.go correctly implements the GetInstance and CreateInstance methods with the isInstanceOnRemoteNode parameter, matching the interface definition in controller/instance_handler.go.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for the interface definition to verify method signatures
ast-grep --pattern 'type InstanceManagerHandler interface {
  $$$
  GetInstance($$$) ($$$)
  CreateInstance($$$) ($$$)
  $$$
}'

Length of output: 1169

controller/replica_controller.go (3)

Line range hint 316-355: LGTM: CreateInstance method signature update

The addition of isInstanceOnRemoteNode parameter and its usage in instance manager retrieval is consistent and well-implemented.

Line range hint 636-647: LGTM: GetInstance method signature update

The addition of isInstanceOnRemoteNode parameter and its usage in instance manager retrieval is consistent. The additional validation for v2 data engine instances is a good safety check.

631-634: LGTM: IsEngine method implementation

The IsEngine method is correctly implemented to check if the provided interface is an Engine type.

engineapi/instance_manager.go (3)

283-292: LGTM: Instance process status fields properly updated

The new fields StandbyTargetPortStart and StandbyTargetPortEnd are correctly added to the instance process status structure and properly mapped from the API instance status.

488-491: LGTM: Proper integration of replica address filtering

The integration of getReplicaAddresses is well implemented with proper error handling.

864-947: LGTM: Well-structured engine instance operations

The new engine instance operations are well implemented with:

Consistent error handling
Proper nil checks
Clear data engine type validation
Appropriate delegation to instance service client

controller/instance_handler.go (2)

38-46: LGTM: Interface changes align with v2 data engine live upgrade requirements.

The new methods added to InstanceManagerHandler interface provide the necessary functionality for managing v2 data engine live upgrades, including instance suspension/resumption and target instance management.

602-626: LGTM: Robust implementation of instance suspension with proper error handling.

The implementation properly handles:

Validation of v2 data engine requirement
Graceful suspension and target switchover
Cleanup on failure with proper error propagation

controller/volume_controller.go (5)

1827-1836: LGTM: Improved replica state management for v2 engine

The code correctly handles replica state management differently for v1 and v2 data engines. For v2, replica image doesn't need to match volume image before running.

Line range hint 3086-3254: LGTM: Comprehensive v2 data engine live upgrade implementation

The implementation properly handles:

Target node transitions
Engine state management
Replica address mapping
Upgrade completion verification

The code is well-structured with appropriate logging and error handling.

🧰 Tools

🪛 golangci-lint (1.61.0)

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

3817-3822: LGTM: Proper v2 replica image handling

The code correctly sets empty image for v2 replicas since they use the instance manager image instead of the volume image.

5086-5094: LGTM: Clear upgrade check logic for both v1 and v2 engines

The code properly checks upgrade status by considering:

Image updates for both v1 and v2
Additional target node check for v2 engines

1923-1930: ⚠️ Potential issue

Add error handling for engine state transition

The empty else block needs proper error handling for non-running engine state during v2 data engine live upgrade.

Apply this diff to handle unexpected engine states:

    } else {
-        // TODO: what if e.Status.CurrentState != longhorn.InstanceStateRunning
+        log.Warnf("Engine is in unexpected state %v during v2 data engine live upgrade", e.Status.CurrentState)
+        return nil
    }

webhook/resources/nodedataengineupgrade/validator.go (1)

17-95: LGTM!

The validator is well-implemented, and the validation logic is comprehensive. Error handling is appropriate, and previous concerns about exposing internal object details have been addressed.

engineapi/instance_manager.go

controller/instance_handler.go

coderabbitai

Actionable comments posted: 12

🧹 Outside diff range and nitpick comments (22)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 49625f4 and ce1c3db.

📒 Files selected for processing (25)

controller/controller_manager.go (2 hunks)
controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/monitor/node_upgrade_monitor.go (1 hunks)
controller/monitor/upgrade_manager_monitor.go (1 hunks)
controller/node_controller.go (2 hunks)
controller/node_upgrade_controller.go (1 hunks)
controller/replica_controller.go (5 hunks)
controller/uninstall_controller.go (4 hunks)
controller/upgrade_manager_controller.go (1 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)
engineapi/instance_manager.go (5 hunks)
engineapi/instance_manager_test.go (1 hunks)
scheduler/replica_scheduler.go (1 hunks)
types/types.go (4 hunks)
webhook/resources/dataengineupgrademanager/mutator.go (1 hunks)
webhook/resources/dataengineupgrademanager/validator.go (1 hunks)
webhook/resources/nodedataengineupgrade/mutator.go (1 hunks)
webhook/resources/nodedataengineupgrade/validator.go (1 hunks)
webhook/resources/volume/validator.go (5 hunks)
webhook/server/mutation.go (2 hunks)
webhook/server/validation.go (2 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

🚧 Files skipped from review as they are similar to previous changes (11)

controller/controller_manager.go
controller/monitor/upgrade_manager_monitor.go
engineapi/instance_manager_test.go
scheduler/replica_scheduler.go
webhook/resources/dataengineupgrademanager/mutator.go
webhook/resources/dataengineupgrademanager/validator.go
webhook/resources/nodedataengineupgrade/mutator.go
webhook/resources/nodedataengineupgrade/validator.go
webhook/resources/volume/validator.go
webhook/server/mutation.go
webhook/server/validation.go

🧰 Additional context used

📓 Learnings (5)

controller/engine_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/engine_controller.go:524-527
Timestamp: 2024-11-25T12:39:58.926Z
Learning: In `controller/engine_controller.go`, `e.Status.Port` is sourced from the SPDK engine and does not require additional validation.

controller/instance_handler.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/instance_handler.go:919-939
Timestamp: 2024-11-25T23:56:53.252Z
Learning: In the Longhorn Manager Go code, the function `engineapi.NewInstanceManagerClient` does not accept a `context.Context` parameter. Therefore, we cannot pass `ctx` to it in functions like `isInstanceExist` in `controller/instance_handler.go`.

controller/monitor/node_upgrade_monitor.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/monitor/node_upgrade_monitor.go:351-357
Timestamp: 2024-11-25T23:55:02.080Z
Learning: `GetVolumeRO` guarantees that `volume` is non-nil when `err == nil`, so explicit nil checks after error handling are not needed.

controller/node_upgrade_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/node_upgrade_controller.go:135-139
Timestamp: 2024-11-26T00:03:56.311Z
Learning: In the Longhorn project, the constant `maxRetries` is defined in `base_controller.go` and should not be redefined in individual controller files.

controller/upgrade_manager_controller.go (2)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/upgrade_manager_controller.go:135-139
Timestamp: 2024-11-25T15:30:18.858Z
Learning: In the Longhorn Manager codebase, the variable `maxRetries` is defined in `base_controller.go`, and other controllers can use it without redefining it.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/node_upgrade_controller.go:135-139
Timestamp: 2024-11-26T00:03:56.311Z
Learning: In the Longhorn project, the constant `maxRetries` is defined in `base_controller.go` and should not be redefined in individual controller files.

🪛 golangci-lint (1.61.0)

controller/volume_controller.go

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (36)

controller/upgrade_manager_controller.go (4)

96-126: LGTM! Well-structured controller implementation

The queue management and worker implementation follow Kubernetes controller best practices with proper shutdown handling and worker concurrency.

146-156: LGTM! Well-structured helper functions

The helper functions are focused, well-named, and follow good logging practices.

202-209: ⚠️ Potential issue

Verify cleanup before removing finalizer

The finalizer is removed without verifying that all resources are properly cleaned up.

Add cleanup verification:

 if !upgradeManager.DeletionTimestamp.IsZero() {
+    if err := uc.verifyCleanup(upgradeManager); err != nil {
+        return err
+    }
     if uc.dataEngineUpgradeManagerMonitor != nil {
         uc.dataEngineUpgradeManagerMonitor.Close()
         uc.dataEngineUpgradeManagerMonitor = nil
     }
     return uc.ds.RemoveFinalizerForDataEngineUpgradeManager(upgradeManager)
 }

262-275: ⚠️ Potential issue

Add thread safety to monitor management

The monitor creation and access is not thread-safe, which could lead to race conditions in concurrent scenarios.

Use the previously suggested mutex:

 func (uc *DataEngineUpgradeManagerController) createDataEngineUpgradeManagerMonitor(upgradeManager *longhorn.DataEngineUpgradeManager) (monitor.Monitor, error) {
+    uc.monitorLock.Lock()
+    defer uc.monitorLock.Unlock()
     if uc.dataEngineUpgradeManagerMonitor != nil {
         return uc.dataEngineUpgradeManagerMonitor, nil
     }
     // ... rest of the function
 }

controller/node_upgrade_controller.go (1)

146-158: LGTM: Well-structured helper functions

The helper functions are well-implemented with proper logging and responsibility checks.

controller/instance_handler_test.go (3)

75-94: LGTM! Well-structured mock implementations.

The new mock methods are properly implemented with clear error messages indicating they are not mocked. The IsEngine implementation is correct and follows type assertion best practices.

Line range hint 39-51: Verify the impact of isInstanceOnRemoteNode parameter addition.

The addition of isInstanceOnRemoteNode parameter to GetInstance and CreateInstance methods should be tested with both true and false values to ensure proper handling of remote node instances.

Add test cases to verify remote node instance handling:

+"engine creates instance on remote node": {
+    longhorn.InstanceTypeEngine,
+    newInstanceManager(...),
+    newEngine(NonExistingInstance, "", "", TestNode2, "", 0, false, longhorn.InstanceStateStopped, longhorn.InstanceStateRunning),
+    newEngine(NonExistingInstance, "", "", TestNode2, "", 0, false, longhorn.InstanceStateStopped, longhorn.InstanceStateRunning),
+    false,
+},

136-140: Verify the initialization of new engine status fields.

The newEngine function has been updated with new fields (TargetIP, StorageIP, StorageTargetIP, TargetPort), but the test cases might not cover all scenarios where these fields are significant.

Consider adding specific test cases for these new fields:

+"engine updates target networking fields": {
+    longhorn.InstanceTypeEngine,
+    newInstanceManager(...),
+    newEngine(ExistingInstance, TestEngineImage, TestInstanceManagerName, TestNode1, TestIP1, TestPort1, true, longhorn.InstanceStateRunning, longhorn.InstanceStateRunning),
+    func(e *longhorn.Engine) *longhorn.Engine {
+        e.Status.TargetIP = TestIP2
+        e.Status.StorageIP = TestIP2
+        return e
+    }(newEngine(...)),
+    false,
+},

✅ Verification successful

Let me generate another verification script to check the test coverage specifically for these new engine status fields.

Based on the analysis of the code, I can now provide a final response:

The initialization of new engine status fields is properly covered in the test cases.

The test coverage for these fields is adequate because:

The fields are initialized in newEngine helper function in controller/instance_handler_test.go
Multiple test cases verify different states of these fields:
- Running state tests verify proper IP and port assignments
- Stopping state tests verify clearing of these fields
- Error state handling tests verify field reset behavior
- State transition tests verify proper field updates

The test case in the review comment is already covered by existing test scenarios, and additional test cases are not necessary since the fields are properly initialized and verified across various engine states and transitions.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check test coverage for new engine status fields
# Expected: Find test cases that verify these fields

# Search for test cases using these fields
rg -A 5 "TargetIP|StorageIP|StorageTargetIP|TargetPort"

# Search for field usage in production code
ast-grep --pattern 'Status: longhorn.EngineStatus {
  $$$
  TargetIP: $_
  $$$
}'

Length of output: 81017

Script:

#!/bin/bash
# Search for test cases that verify these new engine status fields
rg -A 10 "newEngine.*\(" controller/

Length of output: 37658

controller/replica_controller.go (4)

Line range hint 355-528: LGTM!

The update to GetInstanceManagerByInstanceRO call is consistent with the method signature change.

611-635: Empty interface implementations need to be completed

The empty implementations suggest incomplete feature implementation.

Line range hint 636-647: Verify the impact of remote node instance retrieval

The addition of isInstanceOnRemoteNode parameter suggests this is part of remote instance management functionality. Ensure that all callers of this method are updated with the correct boolean value.

✅ Verification successful

Based on the search results, I can generate the final response as we have sufficient information to verify the impact of the changes.

All callers of GetInstance method have been properly updated with the isInstanceOnRemoteNode parameter

The search results show that all invocations of the GetInstance method across the codebase include the new boolean parameter. The usage is consistent and logical:

false is passed for local node instances
true is passed for remote node instances, particularly in switchover scenarios

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for GetInstance method calls to verify they've been updated
rg -A 2 "GetInstance\(" --type go

Length of output: 2814

Line range hint 316-355: Verify the impact of remote node instance creation

The addition of isInstanceOnRemoteNode parameter suggests this is part of remote instance management functionality. Ensure that all callers of this method are updated with the correct boolean value.

✅ Verification successful

All callers of CreateInstance method have been updated with the isInstanceOnRemoteNode parameter

The search results show that all implementations and calls of the CreateInstance method properly include and handle the isInstanceOnRemoteNode parameter:

Interface definition in controller/instance_handler.go includes the parameter
All implementations (ReplicaController, EngineController, MockInstanceManagerHandler) include the parameter
All calls to CreateInstance provide the boolean parameter with appropriate values:
- false for local node instances
- true for remote node instances

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for CreateInstance method calls to verify they've been updated
rg -A 2 "CreateInstance\(" --type go

Length of output: 3206

engineapi/instance_manager.go (4)

283-292: LGTM: New port fields added correctly

The addition of StandbyTargetPortStart and StandbyTargetPortEnd fields follows the existing naming convention and is properly mapped from the API response.

864-904: LGTM: Engine instance suspend/resume implementation

The implementation of EngineInstanceSuspend and EngineInstanceResume follows good practices:

Proper nil checks
Clear error messages
Consistent handling of different data engine types

906-930: LGTM: Engine instance target switchover implementation

The implementation includes proper validation and error handling:

Checks for nil Engine
Validates TargetAddress is not empty
Consistent error messaging

932-951: LGTM: Engine instance target deletion implementation

The implementation follows the established pattern:

Proper nil checks
Consistent error handling
Clear delegation to instance service client

controller/instance_handler.go (1)

38-47: LGTM: Interface changes align with v2 data engine live upgrade requirements.

The new methods and signature changes in InstanceManagerHandler interface provide a comprehensive set of operations needed for v2 data engine live upgrade functionality.

types/types.go (3)

43-44: LGTM: New constants follow naming conventions.

The new constants for data engine upgrade manager and node data engine upgrade follow the existing naming pattern and are appropriately placed within the constants block.

163-164: LGTM: New label constants are well-defined.

The new label constants for data engine upgrade follow the existing naming pattern and are appropriately placed within the labels block. The snapshot label for live upgrade is also correctly defined.

Also applies to: 193-193

1271-1291: LGTM: Well-structured utility functions for data engine upgrade.

The new utility functions follow existing patterns and provide necessary functionality for:

Generating unique names for node data engine upgrades
Creating consistent labels for upgrade manager and node upgrade resources

controller/uninstall_controller.go (3)

49-50: LGTM! Constants follow the established naming pattern.

The new CRD constants for data engine upgrade components are well-defined and consistent with existing constant naming conventions.

208-219: LGTM! Event handler registration follows existing patterns.

The event handler registration for new data engine upgrade components is properly implemented with:

Correct error handling for AddEventHandler calls
Proper cache sync registration
Consistent implementation pattern with other CRD handlers

653-666: LGTM! Proper integration of new deletion methods.

The integration of data engine upgrade deletion methods into the deleteCRs function is well-implemented with:

Proper error handling and logging
Consistent implementation pattern with other resource types
Clear log messages for tracking deletion progress

controller/volume_controller_test.go (1)

Line range hint 1-1000: Overall implementation looks good

The test implementation is thorough and well-structured, covering various volume lifecycle scenarios. The suggested improvements are minor and focused on maintainability.

controller/node_controller.go (2)

Line range hint 2177-2209: LGTM! The schedulable condition update logic looks correct.

The changes add proper handling of the data engine upgrade state by:

Setting node as unschedulable when data engine upgrade is requested
Using appropriate condition reason and message
Maintaining existing cordon-based scheduling logic

The implementation aligns well with the PR objective of supporting v2 data engine live upgrades.

2181-2189: Verify the upgrade safety and scheduling behavior.

Please confirm:

The scheduling restriction during data engine upgrade won't disrupt existing workloads
The upgrade process handles concurrent scheduling requests properly
The node remains functional for existing workloads while unschedulable

✅ Verification successful

Based on the search results, I can now generate a final response as I have sufficient information to verify the upgrade safety and scheduling behavior:

Scheduling restrictions during data engine upgrade are properly implemented and safe

The implementation ensures safety through multiple layers of protection:

The node becomes unschedulable during data engine upgrade to prevent new workload scheduling
Existing workloads remain functional as verified by:
- Volume controller skips only replica replenishment during upgrade (controller/volume_controller.go)
- Webhook validations prevent unsafe operations like volume attachment changes during upgrade
- Clear error messages guide users about restricted operations

The code handles concurrent scheduling requests safely through:

Validation webhooks that reject invalid operations during upgrade
Proper state checks before allowing volume operations
Clear separation between upgrade state and volume operations

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for potential issues with scheduling during upgrades

# Check if there are any scheduling-related error logs during upgrades
rg -A 5 "DataEngineUpgradeRequested.*scheduling|scheduling.*DataEngineUpgradeRequested" 

# Look for any upgrade-related issues or race conditions
rg -A 5 "failed.*upgrade|error.*upgrade|upgrade.*failed"

Length of output: 43482

controller/engine_controller.go (1)

Line range hint 2545-2613: Well-implemented responsibility assignment logic

The method effectively handles ownership assignment considering node states, data engine availability, and delinquent nodes. The logic for transferring ownership is clear and robust.

controller/volume_controller.go (7)

1827-1836: LGTM: Improved replica state management for v2 data engine

The code correctly handles replica state transitions for both v1 and v2 data engines, with proper image validation.

1923-1930: LGTM: Enhanced engine state management for v2 data engine

The code properly handles engine state transitions based on image and target node alignment.

2236-2248: LGTM: Skip replica replenishment during node upgrade

The code correctly prevents replica replenishment when the node is being upgraded, which is essential for data engine v2 upgrades.

3301-3320: LGTM: Comprehensive volume eligibility check for live upgrades

The code properly validates volume state and robustness for both v1 and v2 data engines before allowing live upgrades.

3322-3327: LGTM: Clear v2 data engine upgrade completion check

The function clearly defines the conditions for considering a v2 data engine upgrade as complete.

3817-3822: LGTM: Proper v2 replica image handling

The code correctly handles the fact that v2 replica images can be empty and different from the volume image.

5086-5094: LGTM: Enhanced volume upgrade check

The code properly checks upgrade status for both v1 and v2 data engines, considering both image and target node changes.

controller/monitor/node_upgrade_monitor.go (2)

351-357: No need to check for nil volume after GetVolumeRO

As per the learnings, GetVolumeRO guarantees that volume is non-nil when err == nil. The existing code correctly handles this, so no action is needed.

330-335: 🛠️ Refactor suggestion

Avoid variable shadowing in deferred function

Similar to previous occurrences, err is used within a deferred function, which can cause confusion due to variable shadowing.

Apply this diff to use a different variable name:

defer func() {
    if err != nil {
-       m.nodeUpgradeStatus.Message = err.Error()
+       m.nodeUpgradeStatus.Message = err.Error()
    }
}()

Or if err is assigned within the deferred function:

defer func() {
    if err != nil {
        // ...
-       if _, err := m.ds.UpdateNode(node); err != nil {
-           log.WithError(err).Warnf("Failed to update node %v", nodeUpgrade.Status.OwnerID)
+       if _, updateErr := m.ds.UpdateNode(node); updateErr != nil {
+           log.WithError(updateErr).Warnf("Failed to update node %v", nodeUpgrade.Status.OwnerID)
            return
        }
    }
}()

⛔ Skipped due to learnings

Learnt from: james-munson
PR: longhorn/longhorn-manager#3211
File: app/post_upgrade.go:102-113
Timestamp: 2024-11-10T16:45:04.898Z
Learning: In Go, when a deferred function references a variable like `err`, ensure that the variable is declared in the outer scope and not within an inner scope (such as within `if err := ...`), to prevent compilation errors and unintended variable shadowing.

coderabbitai · 2024-11-26T00:40:10Z

controller/upgrade_manager_controller.go

+type DataEngineUpgradeManagerController struct {
+	*baseController
+
+	// which namespace controller is running with
+	namespace string
+	// use as the OwnerID of the controller
+	controllerID string
+
+	kubeClient    clientset.Interface
+	eventRecorder record.EventRecorder
+
+	dataEngineUpgradeManagerMonitor monitor.Monitor
+
+	ds *datastore.DataStore
+
+	cacheSyncs []cache.InformerSynced
+}


⚠️ Potential issue

Add mutex protection for concurrent access to shared resources

The dataEngineUpgradeManagerMonitor field is accessed from multiple goroutines (worker routines) without synchronization, which could lead to race conditions.

Add mutex protection:

type DataEngineUpgradeManagerController struct { *baseController + monitorLock sync.RWMutex // ... other fields ... dataEngineUpgradeManagerMonitor monitor.Monitor // ... remaining fields ... }

Committable suggestion skipped: line range outside the PR's diff.

controller/upgrade_manager_controller.go

controller/node_upgrade_controller.go

coderabbitai · 2024-11-26T00:40:11Z

controller/instance_handler_test.go

+func (imh *MockInstanceManagerHandler) RequireRemoteTargetInstance(obj interface{}) (bool, error) {
+	return false, nil
+}


🛠️ Refactor suggestion

Add test coverage for RequireRemoteTargetInstance.

The RequireRemoteTargetInstance mock implementation always returns false, which might not cover all test scenarios.

Consider parameterizing the return value:

+type MockInstanceManagerHandler struct { + requireRemoteTarget bool +} -func (imh *MockInstanceManagerHandler) RequireRemoteTargetInstance(obj interface{}) (bool, error) { - return false, nil -} +func (imh *MockInstanceManagerHandler) RequireRemoteTargetInstance(obj interface{}) (bool, error) { + return imh.requireRemoteTarget, nil +}

Committable suggestion skipped: line range outside the PR's diff.

coderabbitai · 2024-11-26T00:40:11Z

controller/instance_handler.go

+							// TODO: should we return here or mark the instance as error?
+							logrus.WithError(err).Errorf("Failed to check if node %v is being upgrade requested", spec.NodeID)
+							return
+						}


⚠️ Potential issue

Resolve error handling uncertainty.

The TODO comment indicates uncertainty about error handling when checking node upgrade status. This should be resolved to ensure consistent behavior.

Apply this diff:

- // TODO: should we return here or mark the instance as error? - logrus.WithError(err).Errorf("Failed to check if node %v is being upgrade requested", spec.NodeID) - return + logrus.WithError(err).Errorf("Failed to check if node %v is being upgrade requested", spec.NodeID) + status.CurrentState = longhorn.InstanceStateError + return fmt.Errorf("failed to check node upgrade status: %v", err)

Committable suggestion skipped: line range outside the PR's diff.

controller/uninstall_controller.go

coderabbitai · 2024-11-26T00:40:11Z

controller/engine_controller.go

+func (ec *EngineController) SwitchOverTarget(obj interface{}) error {
+	e, ok := obj.(*longhorn.Engine)
+	if !ok {
+		return fmt.Errorf("invalid object for target switchover: %v", obj)
+	}
+
+	if !types.IsDataEngineV2(e.Spec.DataEngine) {
+		return fmt.Errorf("target switchover is not supported for data engine %v", e.Spec.DataEngine)
+	}
+
+	if e.Spec.VolumeName == "" || e.Spec.NodeID == "" {
+		return fmt.Errorf("missing parameters for target switchover: %+v", e)
+	}
+
+	initiatorInstance, err := ec.GetInstance(obj, false)
+	if err != nil {
+		return errors.Wrapf(err, "failed to get initiator instance %v for switchover", e.Name)
+	}
+
+	log := getLoggerForEngine(ec.logger, e)
+
+	log.Infof("Preparing to switch over target to node %v. Initiator instance port details: port=%v, targetPort=%v, standbyTargetPort=%v",
+		e.Spec.TargetNodeID, initiatorInstance.Status.PortStart, initiatorInstance.Status.TargetPortStart, initiatorInstance.Status.StandbyTargetPortStart)
+
+	targetInstance, err := ec.GetInstance(obj, true)
+	if err != nil {
+		return errors.Wrapf(err, "failed to get target instance %v for switchover", e.Name)
+	}
+	log.Infof("Preparing to switch over target to node %v. Target instance port details: port=%v, targetPort=%v, standbyTargetPort=%v",
+		e.Spec.TargetNodeID, targetInstance.Status.PortStart, targetInstance.Status.TargetPortStart, targetInstance.Status.StandbyTargetPortStart)
+
+	targetIM, err := ec.getTargetInstanceManagerForSwitchOver(e)
+	if err != nil {
+		return err
+	}
+
+	initiatorIM, err := ec.ds.GetInstanceManagerByInstanceRO(obj, false)
+	if err != nil {
+		return err
+	}
+	c, err := engineapi.NewInstanceManagerClient(initiatorIM, false)
+	if err != nil {
+		return err
+	}
+	defer c.Close()
+
+	port := targetInstance.Status.TargetPortStart
+	if targetInstance.Status.StandbyTargetPortStart != 0 {
+		port = targetInstance.Status.StandbyTargetPortStart
 	}

+	log.Infof("Switching over target to %v:%v", targetIM.Status.IP, port)
+	return c.EngineInstanceSwitchOverTarget(&engineapi.EngineInstanceSwitchOverTargetRequest{
+		Engine:        e,
+		TargetAddress: net.JoinHostPort(targetIM.Status.IP, fmt.Sprint(port)),
+	})
+}


⚠️ Potential issue

Add port validation before switchover

While the implementation is solid, there's a potential issue with port validation. The code should validate that the selected port is non-zero before attempting the switchover.

Add port validation before the switchover:

if targetInstance.Status.StandbyTargetPortStart != 0 { port = targetInstance.Status.StandbyTargetPortStart } +if port == 0 { + return fmt.Errorf("invalid port 0 for target switchover on engine %v", e.Name) +}

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

func (ec *EngineController) SwitchOverTarget(obj interface{}) error {

e, ok := obj.(*longhorn.Engine)

if !ok {

return fmt.Errorf("invalid object for target switchover: %v", obj)

}

if !types.IsDataEngineV2(e.Spec.DataEngine) {

return fmt.Errorf("target switchover is not supported for data engine %v", e.Spec.DataEngine)

}

if e.Spec.VolumeName == "" || e.Spec.NodeID == "" {

return fmt.Errorf("missing parameters for target switchover: %+v", e)

}

initiatorInstance, err := ec.GetInstance(obj, false)

if err != nil {

return errors.Wrapf(err, "failed to get initiator instance %v for switchover", e.Name)

}

log := getLoggerForEngine(ec.logger, e)

log.Infof("Preparing to switch over target to node %v. Initiator instance port details: port=%v, targetPort=%v, standbyTargetPort=%v",

e.Spec.TargetNodeID, initiatorInstance.Status.PortStart, initiatorInstance.Status.TargetPortStart, initiatorInstance.Status.StandbyTargetPortStart)

targetInstance, err := ec.GetInstance(obj, true)

if err != nil {

return errors.Wrapf(err, "failed to get target instance %v for switchover", e.Name)

}

log.Infof("Preparing to switch over target to node %v. Target instance port details: port=%v, targetPort=%v, standbyTargetPort=%v",

e.Spec.TargetNodeID, targetInstance.Status.PortStart, targetInstance.Status.TargetPortStart, targetInstance.Status.StandbyTargetPortStart)

targetIM, err := ec.getTargetInstanceManagerForSwitchOver(e)

if err != nil {

return err

}

initiatorIM, err := ec.ds.GetInstanceManagerByInstanceRO(obj, false)

if err != nil {

return err

}

c, err := engineapi.NewInstanceManagerClient(initiatorIM, false)

if err != nil {

return err

}

defer c.Close()

port := targetInstance.Status.TargetPortStart

if targetInstance.Status.StandbyTargetPortStart != 0 {

port = targetInstance.Status.StandbyTargetPortStart

}

log.Infof("Switching over target to %v:%v", targetIM.Status.IP, port)

return c.EngineInstanceSwitchOverTarget(&engineapi.EngineInstanceSwitchOverTargetRequest{

Engine: e,

TargetAddress: net.JoinHostPort(targetIM.Status.IP, fmt.Sprint(port)),

})

}

func (ec *EngineController) SwitchOverTarget(obj interface{}) error {

e, ok := obj.(*longhorn.Engine)

if !ok {

return fmt.Errorf("invalid object for target switchover: %v", obj)

}

if !types.IsDataEngineV2(e.Spec.DataEngine) {

return fmt.Errorf("target switchover is not supported for data engine %v", e.Spec.DataEngine)

}

if e.Spec.VolumeName == "" || e.Spec.NodeID == "" {

return fmt.Errorf("missing parameters for target switchover: %+v", e)

}

initiatorInstance, err := ec.GetInstance(obj, false)

if err != nil {

return errors.Wrapf(err, "failed to get initiator instance %v for switchover", e.Name)

}

log := getLoggerForEngine(ec.logger, e)

log.Infof("Preparing to switch over target to node %v. Initiator instance port details: port=%v, targetPort=%v, standbyTargetPort=%v",

e.Spec.TargetNodeID, initiatorInstance.Status.PortStart, initiatorInstance.Status.TargetPortStart, initiatorInstance.Status.StandbyTargetPortStart)

targetInstance, err := ec.GetInstance(obj, true)

if err != nil {

return errors.Wrapf(err, "failed to get target instance %v for switchover", e.Name)

}

log.Infof("Preparing to switch over target to node %v. Target instance port details: port=%v, targetPort=%v, standbyTargetPort=%v",

e.Spec.TargetNodeID, targetInstance.Status.PortStart, targetInstance.Status.TargetPortStart, targetInstance.Status.StandbyTargetPortStart)

targetIM, err := ec.getTargetInstanceManagerForSwitchOver(e)

if err != nil {

return err

}

initiatorIM, err := ec.ds.GetInstanceManagerByInstanceRO(obj, false)

if err != nil {

return err

}

c, err := engineapi.NewInstanceManagerClient(initiatorIM, false)

if err != nil {

return err

}

defer c.Close()

port := targetInstance.Status.TargetPortStart

if targetInstance.Status.StandbyTargetPortStart != 0 {

port = targetInstance.Status.StandbyTargetPortStart

}

if port == 0 {

return fmt.Errorf("invalid port 0 for target switchover on engine %v", e.Name)

}

log.Infof("Switching over target to %v:%v", targetIM.Status.IP, port)

return c.EngineInstanceSwitchOverTarget(&engineapi.EngineInstanceSwitchOverTargetRequest{

Engine: e,

TargetAddress: net.JoinHostPort(targetIM.Status.IP, fmt.Sprint(port)),

})

}

coderabbitai · 2024-11-26T00:40:11Z

controller/monitor/node_upgrade_monitor.go

+	defer func() {
+		if err != nil {
+			m.nodeUpgradeStatus.Message = err.Error()
+		}
+	}()


🛠️ Refactor suggestion

Avoid variable shadowing of err inside deferred functions

Within the deferred function, err is redefined or used from an outer scope, potentially causing confusion and unintended behavior. It's better to use a different variable name inside the deferred function.

Apply this diff to use separate variable names:

defer func() { - if err != nil { + if deferErr := err; deferErr != nil { m.nodeUpgradeStatus.Message = err.Error() } }()

Committable suggestion skipped: line range outside the PR's diff.

coderabbitai · 2024-11-26T00:40:11Z

controller/monitor/node_upgrade_monitor.go

+	defer func() {
+		if err != nil {
+			node, errGet := m.ds.GetNode(nodeUpgrade.Status.OwnerID)
+			if errGet != nil {
+				log.WithError(errGet).Warnf("Failed to get node %v", nodeUpgrade.Status.OwnerID)
+				return
+			}
+
+			node.Spec.DataEngineUpgradeRequested = false
+			if _, errUpdate := m.ds.UpdateNode(node); errUpdate != nil {
+				log.WithError(errUpdate).Warnf("Failed to update node %v to set DataEngineUpgradeRequested to false", nodeUpgrade.Status.OwnerID)
+				return
+			}
+		}
+	}()


⚠️ Potential issue

Avoid variable shadowing and handle errors properly in deferred function

In the deferred function, err is being reassigned when calling m.ds.GetNode(nodeUpgrade.Status.OwnerID), which can shadow the outer err variable and lead to unintended side effects.

Apply this diff to prevent variable shadowing:

defer func() { if err != nil { - node, err := m.ds.GetNode(nodeUpgrade.Status.OwnerID) - if err != nil { - log.WithError(err).Warnf("Failed to get node %v", nodeUpgrade.Status.OwnerID) + node, getNodeErr := m.ds.GetNode(nodeUpgrade.Status.OwnerID) + if getNodeErr != nil { + log.WithError(getNodeErr).Warnf("Failed to get node %v", nodeUpgrade.Status.OwnerID) return } node.Spec.DataEngineUpgradeRequested = false - if _, err := m.ds.UpdateNode(node); err != nil { - log.WithError(err).Warnf("Failed to update node %v to set DataEngineUpgradeRequested to false", nodeUpgrade.Status.OwnerID) + if _, updateErr := m.ds.UpdateNode(node); updateErr != nil { + log.WithError(updateErr).Warnf("Failed to update node %v to set DataEngineUpgradeRequested to false", nodeUpgrade.Status.OwnerID) return } } }()

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

defer func() {

if err != nil {

node, errGet := m.ds.GetNode(nodeUpgrade.Status.OwnerID)

if errGet != nil {

log.WithError(errGet).Warnf("Failed to get node %v", nodeUpgrade.Status.OwnerID)

return

}

node.Spec.DataEngineUpgradeRequested = false

if _, errUpdate := m.ds.UpdateNode(node); errUpdate != nil {

log.WithError(errUpdate).Warnf("Failed to update node %v to set DataEngineUpgradeRequested to false", nodeUpgrade.Status.OwnerID)

return

}

}

}()

defer func() {

if err != nil {

node, getNodeErr := m.ds.GetNode(nodeUpgrade.Status.OwnerID)

if getNodeErr != nil {

log.WithError(getNodeErr).Warnf("Failed to get node %v", nodeUpgrade.Status.OwnerID)

return

}

node.Spec.DataEngineUpgradeRequested = false

if _, updateErr := m.ds.UpdateNode(node); updateErr != nil {

log.WithError(updateErr).Warnf("Failed to update node %v to set DataEngineUpgradeRequested to false", nodeUpgrade.Status.OwnerID)

return

}

}

}()

coderabbitai · 2024-11-26T00:40:12Z

controller/monitor/node_upgrade_monitor.go

+			if err != nil {
+				return err
+			}
+			defer engineClientProxy.Close()


⚠️ Potential issue

Avoid deferring resource closures within loops to prevent resource leaks

Deferring engineClientProxy.Close() inside a loop causes all Close() calls to be postponed until the entire snapshotVolumes function returns. This can lead to resource exhaustion if the loop iterates many times.

Apply this diff to close the engineClientProxy after each iteration:

engineClientProxy, err := engineapi.GetCompatibleClient(engine, engineCliClient, m.ds, m.logger, m.proxyConnCounter) if err != nil { return err } - defer engineClientProxy.Close() // ... existing code ... _, err = engineClientProxy.SnapshotCreate(engine, m.upgradeManagerName+"-"+util.RandomID(), snapLabels, freezeFilesystem) if err != nil { return err } + // Close the proxy before the next iteration + engineClientProxy.Close()

Committable suggestion skipped: line range outside the PR's diff.

… fields Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

…for backup resources Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

…urces Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

coderabbitai

Actionable comments posted: 10

🧹 Outside diff range and nitpick comments (33)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between ce1c3db and eda6a7b.

📒 Files selected for processing (50)

controller/backup_controller.go (1 hunks)
controller/controller_manager.go (2 hunks)
controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/monitor/node_upgrade_monitor.go (1 hunks)
controller/monitor/upgrade_manager_monitor.go (1 hunks)
controller/node_controller.go (2 hunks)
controller/node_upgrade_controller.go (1 hunks)
controller/replica_controller.go (5 hunks)
controller/uninstall_controller.go (4 hunks)
controller/upgrade_manager_controller.go (1 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)
datastore/datastore.go (3 hunks)
datastore/longhorn.go (6 hunks)
engineapi/instance_manager.go (5 hunks)
engineapi/instance_manager_test.go (1 hunks)
k8s/crds.yaml (84 hunks)
k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (6 hunks)
k8s/pkg/apis/longhorn/v1beta2/node.go (2 hunks)
k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/register.go (1 hunks)
k8s/pkg/apis/longhorn/v1beta2/volume.go (2 hunks)
k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (4 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_longhorn_client.go (2 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/generated_expansion.go (2 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/longhorn_client.go (3 hunks)
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/informers/externalversions/generic.go (2 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/interface.go (4 hunks)
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/dataengineupgrademanager.go (1 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go (2 hunks)
k8s/pkg/client/listers/longhorn/v1beta2/nodedataengineupgrade.go (1 hunks)
scheduler/replica_scheduler.go (1 hunks)
types/types.go (4 hunks)
webhook/resources/dataengineupgrademanager/mutator.go (1 hunks)
webhook/resources/dataengineupgrademanager/validator.go (1 hunks)
webhook/resources/nodedataengineupgrade/mutator.go (1 hunks)
webhook/resources/nodedataengineupgrade/validator.go (1 hunks)
webhook/resources/volume/validator.go (5 hunks)
webhook/server/mutation.go (2 hunks)
webhook/server/validation.go (2 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

✅ Files skipped from review due to trivial changes (2)

k8s/pkg/client/informers/externalversions/longhorn/v1beta2/nodedataengineupgrade.go
k8s/pkg/client/listers/longhorn/v1beta2/nodedataengineupgrade.go

🚧 Files skipped from review as they are similar to previous changes (27)

controller/controller_manager.go
controller/instance_handler_test.go
controller/node_controller.go
controller/replica_controller.go
controller/uninstall_controller.go
controller/volume_controller_test.go
datastore/datastore.go
engineapi/instance_manager_test.go
k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go
k8s/pkg/apis/longhorn/v1beta2/node.go
k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go
k8s/pkg/apis/longhorn/v1beta2/register.go
k8s/pkg/apis/longhorn/v1beta2/volume.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_dataengineupgrademanager.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_longhorn_client.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/fake/fake_nodedataengineupgrade.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/generated_expansion.go
k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/longhorn_client.go
k8s/pkg/client/informers/externalversions/longhorn/v1beta2/dataengineupgrademanager.go
k8s/pkg/client/listers/longhorn/v1beta2/expansion_generated.go
scheduler/replica_scheduler.go
webhook/resources/dataengineupgrademanager/mutator.go
webhook/resources/dataengineupgrademanager/validator.go
webhook/resources/nodedataengineupgrade/mutator.go
webhook/resources/volume/validator.go
webhook/server/mutation.go
webhook/server/validation.go

🧰 Additional context used

📓 Learnings (7)

controller/engine_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/engine_controller.go:524-527
Timestamp: 2024-11-25T12:39:58.926Z
Learning: In `controller/engine_controller.go`, `e.Status.Port` is sourced from the SPDK engine and does not require additional validation.

controller/instance_handler.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/instance_handler.go:919-939
Timestamp: 2024-11-25T23:56:53.252Z
Learning: In the Longhorn Manager Go code, the function `engineapi.NewInstanceManagerClient` does not accept a `context.Context` parameter. Therefore, we cannot pass `ctx` to it in functions like `isInstanceExist` in `controller/instance_handler.go`.

controller/monitor/node_upgrade_monitor.go (2)

Learnt from: james-munson
PR: longhorn/longhorn-manager#3211
File: app/post_upgrade.go:102-113
Timestamp: 2024-11-10T16:45:04.898Z
Learning: In Go, when a deferred function references a variable like `err`, ensure that the variable is declared in the outer scope and not within an inner scope (such as within `if err := ...`), to prevent compilation errors and unintended variable shadowing.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/monitor/node_upgrade_monitor.go:351-357
Timestamp: 2024-11-25T23:55:02.080Z
Learning: `GetVolumeRO` guarantees that `volume` is non-nil when `err == nil`, so explicit nil checks after error handling are not needed.

controller/monitor/upgrade_manager_monitor.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/monitor/upgrade_manager_monitor.go:237-254
Timestamp: 2024-11-26T00:12:16.791Z
Learning: In the `handleUpgradeStateInitializing` function of `upgrade_manager_monitor.go`, when upgrading instance managers, we aim to upgrade old v2 instance managers rather than v1. Therefore, we should list instance managers with `longhorn.DataEngineTypeV2`.

controller/node_upgrade_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/node_upgrade_controller.go:135-139
Timestamp: 2024-11-26T00:03:56.311Z
Learning: In the Longhorn project, the constant `maxRetries` is defined in `base_controller.go` and should not be redefined in individual controller files.

controller/upgrade_manager_controller.go (2)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/upgrade_manager_controller.go:135-139
Timestamp: 2024-11-25T15:30:18.858Z
Learning: In the Longhorn Manager codebase, the variable `maxRetries` is defined in `base_controller.go`, and other controllers can use it without redefining it.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/node_upgrade_controller.go:135-139
Timestamp: 2024-11-26T00:03:56.311Z
Learning: In the Longhorn project, the constant `maxRetries` is defined in `base_controller.go` and should not be redefined in individual controller files.

webhook/resources/nodedataengineupgrade/validator.go (3)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: webhook/resources/dataengineupgrademanager/validator.go:41-53
Timestamp: 2024-11-26T00:01:13.256Z
Learning: In `webhook/resources/dataengineupgrademanager/validator.go` of the Longhorn project, when validating `DataEngineUpgradeManager` creation, the `upgradeManager.Spec.Nodes` field can be empty, indicating that all available nodes should be upgraded.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: webhook/resources/nodedataengineupgrade/validator.go:46-48
Timestamp: 2024-11-26T00:07:32.856Z
Learning: In `webhook/resources/nodedataengineupgrade/validator.go`, it's unnecessary to check if `NodeDataEngineUpgrade.Spec` is nil before accessing its fields, as it is guaranteed to be non-nil.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: webhook/resources/nodedataengineupgrade/validator.go:78-93
Timestamp: 2024-11-25T23:56:04.203Z
Learning: In the `Update` method of `nodeDataEngineUpgradeValidator` in `validator.go`, `Spec` is a struct and cannot be nil, so nil checks before accessing `Spec` fields are unnecessary.

🪛 golangci-lint (1.62.2)

controller/volume_controller.go

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3221-3221: controller/volume_controller.go#L3221
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (38)

webhook/resources/nodedataengineupgrade/validator.go (1)

17-95: Validation logic for NodeDataEngineUpgrade is well-implemented

The validator correctly handles creation and update operations, ensuring required fields are present and immutable fields are enforced. Good job on following the correct validation patterns.

k8s/pkg/client/listers/longhorn/v1beta2/dataengineupgrademanager.go (2)

1-26: LGTM: Standard Kubernetes file header and imports

The file header, license, and imports follow the standard Kubernetes conventions.

84-94: LGTM: Proper error handling in Get method

The Get method properly handles errors and uses the correct Kubernetes error types for not-found cases.

k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (1)

61-67: LGTM: New instance state for upgrade support

The addition of InstanceStateSuspended state aligns with the live upgrade feature requirements.

Let's verify the state handling in the codebase:

✅ Verification successful

The new suspended state is properly integrated and handled in the codebase

The verification shows that InstanceStateSuspended is well-integrated:

Used in engine controller for state transitions during live upgrades
Properly handled in volume controller for suspending/resuming engines
Integrated in instance handler with appropriate state management and validation
Specifically restricted to v2 data engine instances

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for handlers of the new suspended state
rg "InstanceStateSuspended" --type go -B 2 -A 2

Length of output: 3876

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/nodedataengineupgrade.go (3)

1-31: LGTM: Standard k8s client-gen setup

The file header, license, and imports follow the standard Kubernetes client-gen patterns.

53-65: LGTM: Standard client implementation structure

The implementation struct and constructor follow the standard Kubernetes client patterns with proper namespace scoping.

67-195: LGTM: Complete CRUD implementation with proper error handling

The implementation includes all necessary CRUD operations with proper context handling, timeouts, and error management. Each method follows standard Kubernetes client patterns.

Let's verify the resource definition matches the client implementation:

✅ Verification successful

LGTM: Client implementation correctly matches CRD and API type definitions

The client implementation is verified to be correct with:

API type properly defines Status field in the struct
Status subresource is enabled in the CRD (confirmed by subresources presence)
All CRUD operations including UpdateStatus are properly implemented
Proper error handling and context propagation is in place

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify CRD definition matches client implementation
# Check for CRD definition and status subresource
rg -A 5 "kind: CustomResourceDefinition.*NodeDataEngineUpgrade"

Length of output: 65

Script:

#!/bin/bash
# Let's try a broader search for CRD definitions and NodeDataEngineUpgrade
# First, search for any yaml/json files containing NodeDataEngineUpgrade
fd -e yaml -e yml -e json | xargs rg "NodeDataEngineUpgrade" -l

# Then, let's look for the API type definition
ast-grep --pattern 'type NodeDataEngineUpgrade struct {
  $$$
}'

# Also search for the resource registration
rg "nodedataengineupgrades" -A 5 -B 5

Length of output: 31082

Script:

#!/bin/bash
# Let's check the CRD definition in crds.yaml for status subresource and schema
rg -A 20 "kind: CustomResourceDefinition.*NodeDataEngineUpgrade" k8s/crds.yaml

# Also verify the API type structure
ast-grep --pattern 'type NodeDataEngineUpgradeStatus struct {
  $$$
}'

Length of output: 992

Script:

#!/bin/bash
# Let's check the CRD definition specifically for status subresource
rg -A 30 "name: nodedataengineupgrades.longhorn.io" k8s/crds.yaml

# Also check for any webhook configurations
rg -A 10 "NodeDataEngineUpgrade.*webhook"

Length of output: 1010

Script:

#!/bin/bash
# Let's check if the CRD has status subresource enabled
rg -A 50 "name: v1beta2" k8s/crds.yaml | rg "subresources|served|storage"

# Also check the complete type definition
ast-grep --pattern 'type NodeDataEngineUpgrade struct {
  $$$
}'

Length of output: 2473

k8s/pkg/client/informers/externalversions/longhorn/v1beta2/interface.go (2)

41-42: LGTM! Interface additions follow consistent patterns.

The new informer methods DataEngineUpgradeManagers() and NodeDataEngineUpgrades() are correctly added to the Interface type, following the established naming conventions and return types.

Also applies to: 51-52

123-126: LGTM! Implementation follows standard informer patterns.

The implementations of both informer methods follow the consistent pattern used throughout the file:

Proper initialization of informer structs
Consistent usage of factory, namespace, and tweakListOptions

Let's verify the existence of the corresponding informer types:

Also applies to: 148-151

✅ Verification successful

LGTM! The informer types are properly defined and follow the standard pattern

The verification confirms that both informer types are correctly defined in their respective files:

dataEngineUpgradeManagerInformer in dataengineupgrademanager.go
nodeDataEngineUpgradeInformer in nodedataengineupgrade.go

This matches the standard informer pattern where each type has its dedicated file and proper struct definition.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that the corresponding informer types exist
# Expected: Find declarations of dataEngineUpgradeManagerInformer and nodeDataEngineUpgradeInformer types

rg -g '*.go' 'type (dataEngineUpgradeManagerInformer|nodeDataEngineUpgradeInformer) struct'

Length of output: 355

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go (3)

1-31: LGTM: Package structure and imports are well-organized

The file header, license, and imports are properly structured following Kubernetes code generation standards.

53-65: LGTM: Clean implementation of client struct and constructor

The implementation follows standard Kubernetes client patterns with proper encapsulation of the REST client and namespace.

67-195: LGTM with verification: Comprehensive CRUD implementation with proper timeout handling

The implementation follows Kubernetes client patterns with proper timeout handling, error handling, and subresource management. Let's verify the timeout handling implementation matches other core Kubernetes clients.

✅ Verification successful

Based on the search results and previous outputs, I can now provide a final response since we have verified:

The List method implementation with proper timeout handling across multiple resources
The Watch method implementation with consistent timeout handling
The DeleteCollection method implementation with proper timeout handling

Verified: Timeout handling implementation is consistent with Kubernetes client patterns

The timeout handling in DataEngineUpgradeManager's CRUD operations follows the standard Kubernetes client patterns:

List/Watch operations properly extract timeout from ListOptions
DeleteCollection correctly handles timeout from ListOptions
All operations consistently use time.Duration for timeout conversion
Timeout is properly applied to the request chain via client.Get()/Delete().Timeout()

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Compare timeout handling with other Kubernetes client implementations
# Expected: Similar timeout handling patterns in List, Watch, and DeleteCollection operations

# Search for similar timeout handling patterns in other client implementations
rg -A 3 "var timeout time.Duration.*if opts.TimeoutSeconds"

Length of output: 61

Script:

#!/bin/bash
# Let's try a different approach to find timeout handling patterns
# First, let's look for List methods with timeout handling
ast-grep --pattern 'func $_($_, $_, opts v1.ListOptions) $_ {
  var timeout time.Duration
  if opts.TimeoutSeconds != nil {
    $$$
  }
  $$$
}'

# Also search for similar patterns in Watch and DeleteCollection
rg -U "func.*Watch.*Context.*ListOptions.*\{(\n.*?)*?timeout.*:=.*opts\.TimeoutSeconds.*\*.*Second" 

# And check for any other timeout handling patterns
rg -U "Timeout\(timeout\).*Do\(ctx\)"

Length of output: 288

Script:

#!/bin/bash
# Let's try a simpler approach to find timeout handling in Kubernetes clients
# Search for List method implementations
rg -A 10 "func.*List.*Context.*ListOptions.*\{" k8s/pkg/client/

# Search for Watch method implementations
rg -A 10 "func.*Watch.*Context.*ListOptions.*\{" k8s/pkg/client/

# Search for DeleteCollection method implementations
rg -A 10 "func.*DeleteCollection.*Context.*DeleteOptions.*ListOptions.*\{" k8s/pkg/client/

Length of output: 116493

Script:

#!/bin/bash
# Let's check for DeleteCollection implementations
rg -A 5 "func.*DeleteCollection.*Context.*DeleteOptions.*ListOptions.*\{" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go

# And also check for DeleteCollection timeout handling in other files
rg -A 5 "DeleteCollection.*timeout = time.Duration" k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/

Length of output: 564

k8s/pkg/client/informers/externalversions/generic.go (2)

Line range hint 1-1: ⚠️ This is a generated file

This file is auto-generated by informer-gen. Any direct modifications will be overwritten. Ensure that changes are made to the appropriate generation sources instead.

Let's verify the generation sources:

✅ Verification successful

Let me verify the CRD definitions for the new resources.

✅ Generated code is properly sourced from type definitions

The changes in the generated informer code are correctly sourced from properly defined types:

Both new resources have the required generation markers (+genclient, +k8s:deepcopy-gen)
Types are defined in k8s/pkg/apis/longhorn/v1beta2/ with proper kubebuilder annotations
CRDs exist in k8s/crds.yaml

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the existence of resource definitions and generation markers

# Check for CRD definitions of the new resources
fd -e yaml -e yml . | xargs grep -l "kind: CustomResourceDefinition" | xargs grep -l "dataengineupgrademanagers\|nodedataengineupgrades"

# Check for generation tags/markers in Go types
fd -e go . | xargs grep -l "// +genclient\|// +k8s:deepcopy-gen"

Length of output: 12249

Script:

#!/bin/bash
# Check the CRD definitions in k8s/crds.yaml for the new resources
cat k8s/crds.yaml | grep -A 5 "kind: CustomResourceDefinition" | grep -A 20 "dataengineupgrademanagers\|nodedataengineupgrades"

# Check for type definitions with generation markers
grep -A 5 "// +genclient" k8s/pkg/apis/longhorn/v1beta2/dataengineupgrademanager.go k8s/pkg/apis/longhorn/v1beta2/nodedataengineupgrade.go

Length of output: 1623

103-104: LGTM: New informer cases properly integrated

The addition of dataengineupgrademanagers and nodedataengineupgrades resources follows the established pattern and aligns with the PR's objective of implementing v2 data engine live upgrades.

Let's verify the integration of these resources:

Also applies to: 113-114

✅ Verification successful

Let me gather more information to verify the complete integration by checking for the controller implementations and related types.

Let me check one final aspect - the types registration and validation rules to ensure complete integration.

Integration verification complete - resources properly integrated

The verification confirms proper integration of DataEngineUpgradeManager and NodeDataEngineUpgrade resources:

Types are defined with complete struct definitions including specs and status
Resources are registered in types.go with appropriate kinds and labels
Informers and listers are properly implemented
CRD definitions exist in k8s/crds.yaml
Helper functions for name generation and label management are implemented
Scheme registration is in place

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the complete integration of new resources

# Check for corresponding controller implementations
ast-grep --pattern 'type $_(Controller|Validator) struct {
  $$$
}'

# Check for informer/lister implementations
fd -e go . | xargs grep -l "DataEngineUpgradeManager\|NodeDataEngineUpgrade" | grep -i "informer\|lister"

Length of output: 669

Script:

#!/bin/bash
# Check for controller and type definitions
ast-grep --pattern 'type DataEngineUpgradeManager struct {
  $$$
}'

ast-grep --pattern 'type NodeDataEngineUpgrade struct {
  $$$
}'

# Check for controller implementations
rg "type.*Controller.*struct.*DataEngineUpgradeManager" -A 5
rg "type.*Controller.*struct.*NodeDataEngineUpgrade" -A 5

# Check for CRD types and validation
fd -e go . | xargs grep -l "DataEngineUpgradeManager\|NodeDataEngineUpgrade" | grep -i "types\|validation"

Length of output: 1713

Script:

#!/bin/bash
# Check types registration and validation
rg "DataEngineUpgradeManager|NodeDataEngineUpgrade" types/types.go -A 5 -B 5

# Check for scheme registration
rg "AddToScheme" k8s/pkg/apis/longhorn/v1beta2/

# Verify CRD validation rules
fd -e yaml . | xargs grep -l "DataEngineUpgradeManager\|NodeDataEngineUpgrade"

Length of output: 2411

controller/upgrade_manager_controller.go (4)

146-156: LGTM! Well-structured helper functions

The helper functions are well-implemented with proper logging and responsibility checks.

262-275: ⚠️ Potential issue

Add mutex protection to monitor operations

The monitor creation and access need to be protected by a mutex to prevent race conditions in concurrent operations.

Add mutex protection to monitor operations:

 func (uc *DataEngineUpgradeManagerController) createDataEngineUpgradeManagerMonitor(upgradeManager *longhorn.DataEngineUpgradeManager) (monitor.Monitor, error) {
+    uc.monitorLock.Lock()
+    defer uc.monitorLock.Unlock()
     if uc.dataEngineUpgradeManagerMonitor != nil {
         return uc.dataEngineUpgradeManagerMonitor, nil
     }
     // ... rest of the function
 }

29-45: ⚠️ Potential issue

Add mutex protection for concurrent access to shared resources

The dataEngineUpgradeManagerMonitor field is accessed from multiple goroutines without synchronization, which could lead to race conditions.

Add mutex protection:

 type DataEngineUpgradeManagerController struct {
     *baseController
+    monitorLock sync.RWMutex
     // ... other fields ...
     dataEngineUpgradeManagerMonitor monitor.Monitor
     // ... remaining fields ...
 }

235-238: ⚠️ Potential issue

Handle type assertion failure appropriately

The type assertion failure is logged but the function continues execution, which could lead to inconsistent state.

Return an error when the type assertion fails:

 status, ok := data.(*longhorn.DataEngineUpgradeManagerStatus)
 if !ok {
     log.Errorf("Failed to assert value from dataEngineUpgradeManager monitor: %v", data)
+    return fmt.Errorf("failed to assert monitor data to DataEngineUpgradeManagerStatus")
 }

controller/monitor/node_upgrade_monitor.go (2)

293-293: ⚠️ Potential issue

Resource leak: Close engineClientProxy after each iteration.

Deferring engineClientProxy.Close() inside a loop causes all closures to be postponed until the function returns, potentially leading to resource exhaustion.

174-178: ⚠️ Potential issue

Variable shadowing in deferred functions.

Multiple deferred functions in this file redefine the err variable, which can lead to confusion and potential bugs.

Also applies to: 192-206

engineapi/instance_manager.go (3)

6-6: LGTM!

The addition of the "net" package is appropriate for the new host:port parsing functionality.

283-292: LGTM!

The addition of standby target port fields enhances the instance process status to support v2 data engine live upgrades.

488-491: LGTM!

The integration of getReplicaAddresses in EngineInstanceCreate is well-implemented with proper error handling.

controller/backup_controller.go (1)

599-607: LGTM! Verify handling of ongoing backups during upgrades.

The addition of the data engine upgrade check is correct and aligns with the PR objective of enabling live upgrades. When a node has a data engine upgrade requested, the backup controller correctly relinquishes responsibility.

Let's verify if there are any ongoing backup operations that might be affected:

✅ Verification successful

Backup operations are safely handled during data engine upgrades

The code analysis reveals that the backup controller already has robust mechanisms to handle backup state transitions:

The backup monitor system (BackupMonitor) properly tracks backup states and can gracefully handle interruptions:
- Uses exponential backoff for pending states
- Properly transitions to error states when needed
- Has clean shutdown mechanisms via disableBackupMonitor
When the controller relinquishes responsibility (returns false), any ongoing backups will:
- Maintain their state through the backup monitor
- Either complete normally or transition to an error state
- Be properly cleaned up via the existing monitor shutdown mechanisms

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for any ongoing backup operations that might be affected by the upgrade
# Test: Search for backups in progress. Expect: List of backups in non-final states

# Find backup resources in non-final states
ast-grep --pattern 'backup.Status.State == $state' | rg -A 2 'BackupState(New|Pending|InProgress)'

# Find any backup monitor related code that might need adjustment
rg -A 5 'BackupMonitor'

Length of output: 14784

controller/instance_handler.go (4)

38-46: LGTM: Interface changes align with live upgrade requirements

The new interface methods provide a comprehensive set of operations needed for V2 data engine live upgrades, including instance suspension, resumption, and target management.

919-939: LGTM: Implementation aligns with project conventions

The implementation correctly follows the project convention regarding NewInstanceManagerClient usage without context parameter, as noted in the learnings.

809-839: LGTM: Clean implementation of suspend/resume functionality

The implementation provides clear error handling, proper validation, and descriptive logging for instance suspension and resumption operations.

883-995: LGTM: Well-structured helper functions

The helper functions are well-named, focused, and improve code readability. They effectively encapsulate specific checks and conditions related to instance and volume states.

types/types.go (2)

43-44: LGTM: Constants follow naming conventions and align with feature requirements.

The new constants for data engine upgrade management are well-organized and follow the project's naming conventions.

Also applies to: 163-164, 193-193

1275-1291: LGTM: Label getter functions are well-implemented.

The label getter functions follow the project's patterns and correctly implement the labeling requirements for data engine upgrade management.

k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (4)

981-1092: LGTM: DataEngineUpgradeManager deepcopy implementation

The implementation correctly handles all fields including nested maps and pointers, following Kubernetes deepcopy patterns.

1783-1890: LGTM: NodeDataEngineUpgrade deepcopy implementation

The implementation correctly handles the map of VolumeUpgradeStatus pointers with proper nil checks.

2991-3006: Previous review comment about UpgradeNodeStatus implementation is incorrect

The current implementation is correct since UpgradeNodeStatus contains only primitive fields that can be safely copied with a simple assignment.

3326-3341: Previous review comment about VolumeUpgradeStatus implementation is incorrect

The current implementation is correct since VolumeUpgradeStatus contains only primitive fields that can be safely copied with a simple assignment.

controller/engine_controller.go (1)

437-467: LGTM! Well-structured instance manager resolution.

The new findInstanceManagerAndIPs method provides a clean separation of concerns for resolving instance managers and their IPs, with proper error handling and clear logic for both initiator and target instances.

k8s/crds.yaml (1)

1791-1793: LGTM: Consistent implementation of target node fields

The addition of targetNodeID fields in Engine and Replica CRDs is well-implemented with clear descriptions and consistent types.

Also applies to: 3244-3246

datastore/longhorn.go (2)

3784-3841: Well-structured helper functions with good separation of concerns

The extracted helper functions listInstanceManagers() and filterInstanceManagers() follow good practices:

Clear single responsibility
Proper error handling
Good documentation

5641-5763: Data engine upgrade manager implementation follows best practices

The DataEngineUpgradeManager CRUD operations are well-implemented with:

Proper verification of creation/updates
Consistent error handling
Appropriate finalizer management

coderabbitai · 2024-11-26T05:12:35Z

controller/monitor/upgrade_manager_monitor.go

+	if err := wait.PollUntilContextCancel(m.ctx, m.syncPeriod, true, func(context.Context) (bool, error) {
+		if err := m.run(struct{}{}); err != nil {
+			m.logger.WithError(err).Error("Stopped monitoring upgrade monitor")
+		}
+		return false, nil


🛠️ Refactor suggestion

Handle Errors from m.run() Appropriately in the Polling Loop

In the Start() method, errors returned by m.run() are logged but the loop continues without handling the error. Consider adjusting the error handling to determine whether to stop the loop or take corrective action when m.run() returns an error to prevent potential cascading failures.

coderabbitai · 2024-11-26T05:12:35Z

controller/monitor/upgrade_manager_monitor.go

+		return
+	}
+
+	// TODO: Check if there is any nodeDataEngineUpgrade in progress but not tracked by m.upgradeManagerStatus.UpgradingNode


🛠️ Refactor suggestion

Implement TODO: Check for Untracked NodeDataEngineUpgrade Processes

There is a TODO comment indicating the need to check if there are any NodeDataEngineUpgrade processes in progress but not tracked by m.upgradeManagerStatus.UpgradingNode. Implementing this check is important to ensure all upgrade processes are properly monitored and managed.

Would you like assistance in implementing this functionality or opening a GitHub issue to track this task?

k8s/pkg/client/clientset/versioned/typed/longhorn/v1beta2/dataengineupgrademanager.go

controller/upgrade_manager_controller.go

coderabbitai · 2024-11-26T05:12:36Z

controller/instance_handler.go

+func (h *InstanceHandler) isV2DataEngineBeingUpgraded(spec *longhorn.InstanceSpec, status *longhorn.InstanceStatus) bool {
+	if !types.IsDataEngineV2(spec.DataEngine) {
+		return false
+	}
+
+	upgradeRequested, err := h.ds.IsNodeDataEngineUpgradeRequested(spec.NodeID)
+	if err != nil {
+		logrus.WithError(err).Errorf("Failed to get node %v", spec.NodeID)
+		return false
+	}
+
+	if !upgradeRequested {
+		return false
+	}
+
+	if spec.TargetNodeID == "" {
+		return false
+	}
+
+	return spec.NodeID != spec.TargetNodeID && spec.TargetNodeID == status.CurrentTargetNodeID
+}


⚠️ Potential issue

Improve error handling in isV2DataEngineBeingUpgraded

The function currently logs and swallows errors when checking node upgrade status. This could mask issues and lead to incorrect upgrade decisions.

Consider propagating the error:

-func (h *InstanceHandler) isV2DataEngineBeingUpgraded(spec *longhorn.InstanceSpec, status *longhorn.InstanceStatus) bool { +func (h *InstanceHandler) isV2DataEngineBeingUpgraded(spec *longhorn.InstanceSpec, status *longhorn.InstanceStatus) (bool, error) { if !types.IsDataEngineV2(spec.DataEngine) { - return false + return false, nil } upgradeRequested, err := h.ds.IsNodeDataEngineUpgradeRequested(spec.NodeID) if err != nil { - logrus.WithError(err).Errorf("Failed to get node %v", spec.NodeID) - return false + return false, fmt.Errorf("failed to check node upgrade status: %v", err) }

Committable suggestion skipped: line range outside the PR's diff.

controller/engine_controller.go

coderabbitai · 2024-11-26T05:12:36Z

controller/engine_controller.go

+		err = m.refresh(engine)
+		if err != nil && apierrors.IsConflict(errors.Cause(err)) {
+			// Retry if the error is due to conflict
+			continue
+		}
+		if types.IsDataEngineV2(engine.Spec.DataEngine) && err != nil && apierrors.IsNotFound(errors.Cause(err)) {
+			upgrading, upgradingCheckErr := m.ds.IsNodeDataEngineUpgradeRequested(engine.Spec.NodeID)
+			if upgrading {
+				updated, updatedCheckErr := m.isInstanceManagerUpdated(engine)
+				if updated {
+					for replicaName := range engine.Status.ReplicaModeMap {
+						replica, replicaErr := m.ds.GetReplicaRO(replicaName)
+						if replicaErr != nil {
+							m.logger.WithError(replicaErr).Errorf("Failed to get replica %v", replicaName)
+							continue
+						}
+						if replica.Spec.NodeID == engine.Spec.NodeID &&
+							replica.Status.CurrentState != longhorn.InstanceStateError &&
+							replica.Status.CurrentState != longhorn.InstanceStateStopped {
+							m.logger.Warnf("Replica %v in state %v is still on the node %v, will retry updating status later",
+								replicaName, replica.Status.CurrentState, replica.Spec.NodeID)
+							return false
+						}
+					}
+				} else {
+					m.logger.Warnf("v2 data engine %v is being upgraded, will retry updating status later", engine.Name)
+					return false
+				}
+				if updatedCheckErr != nil {
+					upgradingCheckErr = errors.Wrapf(updatedCheckErr, "failed to check if the instance manager is updated")
+				}
+			}
+			if upgradingCheckErr != nil {
+				err = errors.Wrapf(upgradingCheckErr, "failed to check if the engine %v is being upgraded", engine.Name)
+			}
 		}
-		// Retry if the error is due to conflict
+		utilruntime.HandleError(errors.Wrapf(err, "failed to update status for engine %v", m.Name))
+		break


🛠️ Refactor suggestion

Add backoff mechanism and improve error handling in monitor sync.

The error handling in the monitor sync could benefit from a backoff mechanism to prevent rapid retries, and additional logging would improve observability.

Consider these improvements:

Add backoff for retries:

if types.IsDataEngineV2(engine.Spec.DataEngine) && err != nil && apierrors.IsNotFound(errors.Cause(err)) { + if m.backoff.IsInBackOffSinceUpdate(engine.Name, time.Now()) { + m.logger.Debugf("Engine %v is in backoff period, skipping sync", engine.Name) + return false + } upgrading, upgradingCheckErr := m.ds.IsNodeDataEngineUpgradeRequested(engine.Spec.NodeID) if upgrading { updated, updatedCheckErr := m.isInstanceManagerUpdated(engine) if updated { // ... existing code ... } else { m.logger.Warnf("v2 data engine %v is being upgraded, will retry updating status later", engine.Name) + m.backoff.Next(engine.Name, time.Now()) return false } } }

Add structured logging:

+m.logger.WithFields(logrus.Fields{ + "engine": engine.Name, + "nodeID": engine.Spec.NodeID, +}).Debug("Starting monitor sync")

Committable suggestion skipped: line range outside the PR's diff.

k8s/crds.yaml

coderabbitai · 2024-11-26T05:12:36Z

controller/volume_controller.go

+				} else {
+					// TODO: what if e.Status.CurrentState != longhorn.InstanceStateRunning
+				}


⚠️ Potential issue

Handle engine state error during v2 data engine live upgrade

The TODO comment indicates missing error handling for non-running engine state during v2 data engine live upgrade.

Apply this fix to handle error states:

} else { - // TODO: what if e.Status.CurrentState != longhorn.InstanceStateRunning + if e.Status.CurrentState == longhorn.InstanceStateError { + log.Errorf("Engine entered error state during v2 data engine live upgrade") + return fmt.Errorf("engine in error state during live upgrade") + } + if e.Status.CurrentState != longhorn.InstanceStateRunning { + log.Debugf("Engine is in %v state, waiting for running state", e.Status.CurrentState) + } }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

} else {

// TODO: what if e.Status.CurrentState != longhorn.InstanceStateRunning

}

} else {

if e.Status.CurrentState == longhorn.InstanceStateError {

log.Errorf("Engine entered error state during v2 data engine live upgrade")

return fmt.Errorf("engine in error state during live upgrade")

}

if e.Status.CurrentState != longhorn.InstanceStateRunning {

log.Debugf("Engine is in %v state, waiting for running state", e.Status.CurrentState)

}

}

🧰 Tools

🪛 golangci-lint (1.62.2)

3208-3208: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

[notice] 3208-3208: controller/volume_controller.go#L3208
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

…equested data engine upgrade Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

…tor and target IPs If initiatorIP is not equal to targetIP, exclude the replica on the node where the initiator is running, because the node is going to be upgraded and the instance-manager will be deleted. Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

Update replica controller codes due to the changes in APIs. Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

Update replica scheduler codes due to the changes in APIs. Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

…nd replicas Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

coderabbitai

Actionable comments posted: 1

🧹 Outside diff range and nitpick comments (19)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between eda6a7b and 92c8741.

⛔ Files ignored due to path filters (20)

go.mod is excluded by !go.mod
go.sum is excluded by !**/*.sum, !go.sum
vendor/github.com/longhorn/longhorn-instance-manager/pkg/api/instance.go is excluded by !vendor/**
vendor/github.com/longhorn/longhorn-instance-manager/pkg/client/instance.go is excluded by !vendor/**
vendor/github.com/longhorn/longhorn-instance-manager/pkg/util/util.go is excluded by !vendor/**
vendor/github.com/longhorn/types/pkg/generated/imrpc/instance.pb.go is excluded by !**/*.pb.go, !**/generated/**, !vendor/**
vendor/github.com/longhorn/types/pkg/generated/spdkrpc/spdk.pb.go is excluded by !**/*.pb.go, !**/generated/**, !vendor/**
vendor/github.com/stretchr/testify/assert/assertion_compare.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/assertion_format.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/assertion_forward.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/assertion_order.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/assertions.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/yaml/yaml_custom.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/yaml/yaml_default.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/yaml/yaml_fail.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/require/require.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/require/require.go.tmpl is excluded by !vendor/**
vendor/github.com/stretchr/testify/require/require_forward.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/require/requirements.go is excluded by !vendor/**
vendor/modules.txt is excluded by !vendor/**

📒 Files selected for processing (28)

controller/controller_manager.go (2 hunks)
controller/engine_controller.go (11 hunks)
controller/instance_handler.go (15 hunks)
controller/instance_handler_test.go (4 hunks)
controller/monitor/node_upgrade_monitor.go (1 hunks)
controller/monitor/upgrade_manager_monitor.go (1 hunks)
controller/node_controller.go (2 hunks)
controller/node_upgrade_controller.go (1 hunks)
controller/replica_controller.go (5 hunks)
controller/uninstall_controller.go (4 hunks)
controller/upgrade_manager_controller.go (1 hunks)
controller/utils.go (0 hunks)
controller/volume_controller.go (16 hunks)
controller/volume_controller_test.go (1 hunks)
engineapi/instance_manager.go (5 hunks)
engineapi/instance_manager_test.go (1 hunks)
k8s/crds.yaml (87 hunks)
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (6 hunks)
k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (6 hunks)
scheduler/replica_scheduler.go (1 hunks)
types/types.go (4 hunks)
webhook/resources/dataengineupgrademanager/mutator.go (1 hunks)
webhook/resources/dataengineupgrademanager/validator.go (1 hunks)
webhook/resources/nodedataengineupgrade/mutator.go (1 hunks)
webhook/resources/nodedataengineupgrade/validator.go (1 hunks)
webhook/resources/volume/validator.go (5 hunks)
webhook/server/mutation.go (2 hunks)
webhook/server/validation.go (2 hunks)

💤 Files with no reviewable changes (1)

controller/utils.go

🚧 Files skipped from review as they are similar to previous changes (13)

controller/controller_manager.go
controller/monitor/node_upgrade_monitor.go
controller/monitor/upgrade_manager_monitor.go
controller/replica_controller.go
engineapi/instance_manager_test.go
scheduler/replica_scheduler.go
webhook/resources/dataengineupgrademanager/mutator.go
webhook/resources/dataengineupgrademanager/validator.go
webhook/resources/nodedataengineupgrade/mutator.go
webhook/resources/nodedataengineupgrade/validator.go
webhook/resources/volume/validator.go
webhook/server/mutation.go
webhook/server/validation.go

🧰 Additional context used

📓 Learnings (4)

controller/engine_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/engine_controller.go:524-527
Timestamp: 2024-11-25T12:39:58.926Z
Learning: In `controller/engine_controller.go`, `e.Status.Port` is sourced from the SPDK engine and does not require additional validation.

controller/instance_handler.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/instance_handler.go:919-939
Timestamp: 2024-11-25T23:56:53.252Z
Learning: In the Longhorn Manager Go code, the function `engineapi.NewInstanceManagerClient` does not accept a `context.Context` parameter. Therefore, we cannot pass `ctx` to it in functions like `isInstanceExist` in `controller/instance_handler.go`.

controller/node_upgrade_controller.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/node_upgrade_controller.go:135-139
Timestamp: 2024-11-26T00:03:56.311Z
Learning: In the Longhorn project, the constant `maxRetries` is defined in `base_controller.go` and should not be redefined in individual controller files.

controller/upgrade_manager_controller.go (2)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/upgrade_manager_controller.go:135-139
Timestamp: 2024-11-25T15:30:18.858Z
Learning: In the Longhorn Manager codebase, the variable `maxRetries` is defined in `base_controller.go`, and other controllers can use it without redefining it.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/node_upgrade_controller.go:135-139
Timestamp: 2024-11-26T00:03:56.311Z
Learning: In the Longhorn project, the constant `maxRetries` is defined in `base_controller.go` and should not be redefined in individual controller files.

🪛 golangci-lint (1.62.2)

controller/volume_controller.go

3212-3212: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

controller/volume_controller.go

[notice] 3225-3225: controller/volume_controller.go#L3225
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3212-3212: controller/volume_controller.go#L3212
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

🔇 Additional comments (44)

k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (1)

61-67: LGTM: New instance state for upgrade support

The addition of InstanceStateSuspended state is well-aligned with the live upgrade feature requirements and follows the existing naming conventions.

controller/upgrade_manager_controller.go (5)

29-45: Add mutex protection for concurrent access to monitor

The dataEngineUpgradeManagerMonitor field is accessed from multiple goroutines without synchronization, which could lead to race conditions.

146-156: LGTM! Well-structured helper functions

The helper functions are well-defined, focused, and properly implement their responsibilities.

202-209: 🛠️ Refactor suggestion

Add cleanup verification before finalizer removal

The finalizer is removed without verifying that all resources have been properly cleaned up. Consider adding verification steps.

 if !upgradeManager.DeletionTimestamp.IsZero() {
+    // Verify all resources are cleaned up
+    if err := uc.verifyCleanup(upgradeManager); err != nil {
+        return err
+    }
     if uc.dataEngineUpgradeManagerMonitor != nil {
         uc.dataEngineUpgradeManagerMonitor.Close()
         uc.dataEngineUpgradeManagerMonitor = nil
     }
     return uc.ds.RemoveFinalizerForDataEngineUpgradeManager(upgradeManager)
 }

238-241: ⚠️ Potential issue

Improve error handling for monitor data type assertion

When the type assertion fails, the code continues execution with potentially invalid data. Consider returning an error to trigger a retry.

 status, ok := data.(*longhorn.DataEngineUpgradeManagerStatus)
 if !ok {
     log.Errorf("Failed to assert value from dataEngineUpgradeManager monitor: %v", data)
+    return fmt.Errorf("failed to assert monitor data to DataEngineUpgradeManagerStatus")
 } else {

136-136: Verify handleReconcileErrorLogging function availability

Verify that the handleReconcileErrorLogging function is defined in base_controller.go or another accessible location.

✅ Verification successful

Function is correctly defined and accessible

The handleReconcileErrorLogging function is properly defined in controller/utils.go and is accessible to the upgrade manager controller. The function handles different error scenarios appropriately with corresponding log levels (Trace, Warn, Error).

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for handleReconcileErrorLogging function definition
ast-grep --pattern 'func handleReconcileErrorLogging($_, $_, $_) {
  $$$
}'

Length of output: 643

controller/node_upgrade_controller.go (3)

146-158: LGTM: Well-structured helper functions

The helper functions are well-implemented with clear responsibilities and proper error handling.

251-274: LGTM: Robust status update implementation

The status update logic includes proper error handling, type assertions, and deep copying of status fields. The implementation is thorough and safe.

223-229: 🛠️ Refactor suggestion

Enhance error handling in status updates

The deferred status update only handles conflict errors. Other types of errors should be logged and potentially trigger a requeue.

Apply this diff to improve error handling:

if !reflect.DeepEqual(existingNodeUpgrade.Status, nodeUpgrade.Status) {
    if _, err := uc.ds.UpdateNodeDataEngineUpgradeStatus(nodeUpgrade); err != nil {
        if apierrors.IsConflict(errors.Cause(err)) {
            log.WithError(err).Debugf("Requeue %v due to conflict", upgradeName)
            uc.enqueueNodeDataEngineUpgrade(upgradeName)
+       } else {
+           log.WithError(err).Errorf("Failed to update status: %v", err)
+           // Still requeue to retry the status update
+           uc.enqueueNodeDataEngineUpgrade(upgradeName)
        }
    }
}

controller/instance_handler_test.go (3)

Line range hint 39-51: LGTM: Method signature updates for remote node support.

The changes to GetInstance and CreateInstance signatures properly accommodate the new isInstanceOnRemoteNode parameter, maintaining consistency with the interface changes.

136-140: LGTM: Engine struct field additions for target configuration.

The additions of TargetIP, StorageIP, StorageTargetIP, and TargetPort fields in the engine struct properly support the v2 data engine live upgrade feature.

100-102: 🛠️ Refactor suggestion

Add test coverage for RequireRemoteTargetInstance.

The RequireRemoteTargetInstance mock implementation always returns false, which might not cover all test scenarios.

engineapi/instance_manager.go (2)

277-288: LGTM: NVMe subsystem and standby port fields properly implemented.

The implementation correctly handles NVMe subsystem initialization and field mapping, with appropriate type conversions and proper initialization of the paths map. The addition of standby target port fields maintains consistency with existing port field patterns.

Also applies to: 304-305

878-880: LGTM: Well-structured request types.

The request structs are properly defined with clear, focused purposes and appropriate fields for each operation type.

Also applies to: 899-901, 920-923, 946-948

controller/instance_handler.go (1)

38-47: LGTM! Interface changes align with v2 data engine requirements.

The new methods and signature updates provide a comprehensive interface for managing v2 data engine instances, including suspension, resumption, and target management capabilities.

Let's verify the interface implementation consistency:

✅ Verification successful

Let me try a different approach to verify the implementations.

Let's try one more verification approach to check the implementations.

Interface implementation is complete and consistent across the codebase

The verification shows that all new methods in the InstanceManagerHandler interface are properly implemented in both engine and replica controllers:

engine_controller.go implements all methods including SuspendInstance, ResumeInstance, SwitchOverTarget, DeleteTarget, and RequireRemoteTargetInstance
replica_controller.go implements all the same methods
Test mocks in instance_handler_test.go cover all the new methods
The implementations follow consistent patterns and signatures

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check if all implementations of InstanceManagerHandler include the new methods

# Search for struct types that implement InstanceManagerHandler
ast-grep --pattern 'type $name struct {
  $$$
}

func ($receiver *$name) GetInstance($$$) ($$$) {
  $$$
}'

# Search for the new method implementations
echo "Checking new method implementations..."
for method in "SuspendInstance" "ResumeInstance" "SwitchOverTarget" "DeleteTarget" "RequireRemoteTargetInstance"; do
  echo "Checking $method implementations..."
  ast-grep --pattern "func ($receiver *$_) $method($_) error"
done

Length of output: 2015

Script:

#!/bin/bash
# Search for the struct that implements InstanceManagerHandler
rg -A 1 "type.*struct" controller/instance_handler.go

# Search for all method implementations
echo "Checking method implementations..."
rg "^func \(\w+ \*\w+\) (GetInstance|CreateInstance|DeleteInstance|LogInstance|SuspendInstance|ResumeInstance|SwitchOverTarget|DeleteTarget|RequireRemoteTargetInstance)" controller/instance_handler.go

Length of output: 412

Script:

#!/bin/bash
# Use git grep to search for method implementations with more context
echo "Searching for method implementations in instance_handler.go..."
git grep -A 2 "^func (.*) \(.*\)" controller/instance_handler.go

# Also check if there are any other files implementing these methods
echo -e "\nSearching for implementations in other files..."
rg "func.*\((.*?)\s+\*.*?\)\s+(GetInstance|CreateInstance|DeleteInstance|LogInstance|SuspendInstance|ResumeInstance|SwitchOverTarget|DeleteTarget|RequireRemoteTargetInstance)" --type go

Length of output: 12795

types/types.go (2)

43-44: LGTM! Constants follow naming conventions.

The new constants for data engine upgrade management are well-organized and follow the established naming patterns.

Also applies to: 163-164, 193-193

1271-1291: LGTM! Well-structured utility functions.

The new utility functions are well-implemented and follow the established patterns:

GenerateNodeDataEngineUpgradeName: Properly generates unique names
GetDataEngineUpgradeManagerLabels: Correctly sets up system managed component labels
GetNodeDataEngineUpgradeLabels: Handles optional parameters appropriately

controller/uninstall_controller.go (4)

49-50: LGTM! Constants follow established naming patterns.

The new CRD constants for data engine upgrades are well-defined and consistent with existing naming conventions.

208-219: LGTM! Event handler registration is properly implemented.

The event handler registration for new data engine upgrade resources follows the established pattern and includes proper error handling and cache syncs.

653-666: LGTM! Resource deletion order is logical.

The new data engine upgrade resources are appropriately added to the deletion sequence in the deleteCRs function.

1190-1256: LGTM! Deletion methods are well-implemented.

The deletion methods for DataEngineUpgradeManager and NodeDataEngineUpgrade:

Follow consistent error handling patterns
Properly manage finalizers
Include appropriate logging
Handle resource not found cases correctly

controller/volume_controller_test.go (1)

506-510: Verify field definitions in the Engine struct

Based on the past review comments, these fields may not be properly defined in the Engine struct. Please ensure that these fields are properly defined in k8s/pkg/apis/longhorn/v1beta2/engine.go.

#!/bin/bash
# Description: Verify the field definitions in the Engine struct

# Search for the Engine struct definition and verify fields
ast-grep --pattern $'type EngineStatus struct {
  $$$
  TargetIP string
  StorageTargetIP string
  TargetPort int32
  $$$
}'

# Also check for any usage of these fields in the codebase
rg "TargetIP|StorageTargetIP|TargetPort" --type go

controller/node_controller.go (1)

Line range hint 2177-2209: LGTM! Clean implementation of data engine upgrade scheduling control.

The changes properly implement scheduling control for data engine upgrades by:

Adding a new condition for data engine upgrade requests
Maintaining the existing cordoned node condition logic
Following the established pattern for setting node conditions

The implementation is clean, well-structured, and integrates seamlessly with the existing code.

k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (4)

981-1092: LGTM: DataEngineUpgradeManager deepcopy implementation

The implementation correctly handles:

TypeMeta and ObjectMeta deepcopy
Proper nil checks
Deep copying of map values with proper type handling

1784-1891: LGTM: NodeDataEngineUpgrade deepcopy implementation

The implementation correctly handles:

TypeMeta and ObjectMeta deepcopy
Proper nil checks
Deep copying of map values with proper type handling

3031-3046: LGTM: UpgradeNodeStatus deepcopy implementation

The implementation correctly uses shallow copy since the struct contains only simple types.

3366-3381: LGTM: VolumeUpgradeStatus deepcopy implementation

The implementation correctly uses shallow copy since the struct contains only simple types.

controller/engine_controller.go (5)

Line range hint 469-538: LGTM! Well-structured changes with good logging.

The modifications to CreateInstance properly integrate the new findInstanceManagerAndIPs method and add helpful logging for debugging instance creation. The address handling is correct and safe.

649-676: LGTM! Well-implemented suspend functionality.

The SuspendInstance method has proper validation and error handling for v2 data engine compatibility.

678-705: LGTM! Well-implemented resume functionality.

The ResumeInstance method mirrors the suspend functionality with appropriate validation.

789-826: LGTM! Well-structured target deletion.

The DeleteTarget method includes proper validation and error handling for v2 data engine.

707-763: Verify port selection logic in switchover.

The port selection logic needs careful verification to ensure it handles all edge cases correctly.

✅ Verification successful

Let me analyze the port selection logic in the switchover code and the search results. The code shows:

Port selection logic in SwitchOverTarget:

port := targetInstance.Status.TargetPortStart
if targetInstance.Status.StandbyTargetPortStart != 0 {
    port = targetInstance.Status.StandbyTargetPortStart
}

Let's verify how these ports are assigned and managed to ensure there are no conflicts:

Let me check one more aspect of the port management to understand how these ports are initially allocated:

Based on the analysis of the code and search results, I can now provide a final response about the port selection logic:

Port selection logic in target switchover is safe and well-managed

The port selection implementation is correct and handles edge cases appropriately:

The port selection logic follows a clear precedence:
- Uses StandbyTargetPortStart if available (non-zero)
- Falls back to TargetPortStart otherwise
Port management is properly handled:
- Ports are tracked separately for target and standby instances
- Port conflicts are prevented through instance manager's port allocation
- Port status is consistently updated and logged during state changes
The implementation includes safety checks:
- Validates port availability before switchover
- Maintains separate port ranges for different instance types
- Logs port details for both initiator and target instances

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for potential port conflicts in target switchover scenarios

# Search for other instances of port assignment in the codebase
rg -A 3 "Status\.TargetPortStart|Status\.StandbyTargetPortStart" --type go

# Look for any existing port conflict handling
rg -A 3 "port.*conflict|port.*in.*use" --type go

Length of output: 100362

Script:

#!/bin/bash
# Search for port assignment and initialization logic
ast-grep --pattern 'Status.TargetPortStart = $_' 

# Look for port allocation/management code
rg -A 5 "TargetPortStart.*=|StandbyTargetPortStart.*=" --type go

# Check for port validation logic
rg -A 3 "validatePort|checkPort|verifyPort" --type go

Length of output: 4605

Script:

#!/bin/bash
# Search for port allocation and initialization in instance manager
rg -A 10 "func.*Instance.*Create|func.*Instance.*Start" --type go

# Look for port range definitions or configuration
rg -A 3 "PortRange|PortStart|PortEnd" --type go --no-filename | grep -v "vendor/"

Length of output: 52080

k8s/crds.yaml (3)

1791-1793: LGTM! The v2 data engine support changes are well-structured

The modifications to Engine, Replica and Node CRDs appropriately support v2 data engine live upgrades:

Added targetNodeID fields with clear descriptions for scheduling during upgrades
Added dataEngineUpgradeRequested field to Node CRD for upgrade coordination
Added proper data engine type enums

Also applies to: 3298-3300, 2636-2638

2419-2513: 🛠️ Refactor suggestion

Add validation rules to NodeDataEngineUpgrade CRD

The NodeDataEngineUpgrade CRD would benefit from additional validation rules:

spec.nodeID should be required since it's a key field
spec.instanceManagerImage should have a minLength validation
status.volumes should have a description explaining the volume upgrade states

Apply this diff to improve validation:

            properties:
              nodeID:
                description: NodeID specifies the ID of the node where the data engine upgrade will take place.
                type: string
+               minLength: 1
+             required:
+             - nodeID
              instanceManagerImage:
                description: InstanceManagerImage specifies the image to use for the instance manager upgrade.
                type: string
+               minLength: 1
              volumes:
                additionalProperties:
                  properties:
                    message:
                      type: string
                    state:
                      type: string
+                     enum:
+                     - pending
+                     - in-progress
+                     - completed
+                     - failed
                  type: object
+               description: Status of volume upgrades on this node, mapping volume name to upgrade state
                type: object

1313-1414: 🛠️ Refactor suggestion

Add validation rules to DataEngineUpgradeManager CRD

The DataEngineUpgradeManager CRD would benefit from additional validation rules:

spec.dataEngine should be required since it's a key field
status.state should have an enum of possible states

Apply this diff to improve validation:

            properties:
              dataEngine:
                description: DataEngine specifies the data engine type to upgrade to.
                enum:
                - v2
                type: string
+             required:
+             - dataEngine
              nodes:
                description: |-
                  Nodes specifies the list of nodes to perform the data engine upgrade on.
                  If empty, the upgrade will be performed on all available nodes.
                items:
                  type: string
                type: array
            type: object
          status:
            description: DataEngineUpgradeManagerStatus defines the observed state of the upgrade manager resource
            properties:
              state:
                type: string
+               enum:
+               - pending
+               - in-progress 
+               - completed
+               - failed

controller/volume_controller.go (9)

1827-1836: LGTM: Improved replica startup logic for v2 data engine

The code correctly handles replica startup for both v1 and v2 data engines, with proper image validation.

1873-1877: LGTM: Added v1 data engine image validation

The code correctly validates replica image matches volume image only for v1 data engine.

1923-1930: LGTM: Enhanced engine startup logic for v2 data engine

The code properly handles engine startup conditions for v2 data engine by checking both image and target node ID.

3261-3285: LGTM: Comprehensive detached volume upgrade handling

The code properly handles detached volume upgrades by:

Resetting engine specs
Cleaning up inactive replicas
Updating volume status

3287-3301: LGTM: Proper replica update during detached state

The code correctly handles replica image updates based on data engine type during detached state.

3305-3331: LGTM: Well-structured helper functions for v2 data engine upgrade

The helper functions provide clear eligibility checks and completion status for v2 data engine upgrades.

5090-5098: LGTM: Comprehensive volume upgrade check

The code properly handles upgrade checks for both v1 and v2 data engines by validating:

Image updates for both engines
Target node changes for v2 engine

3212-3214: ⚠️ Potential issue

Handle engine state error during v2 data engine live upgrade

The TODO comment indicates missing error handling for non-running engine state during v2 data engine live upgrade.

Apply this fix to handle error states:

} else {
-    // TODO: what if e.Status.CurrentState != longhorn.InstanceStateRunning
+    if e.Status.CurrentState == longhorn.InstanceStateError {
+        log.Errorf("Engine entered error state during v2 data engine live upgrade")
+        return fmt.Errorf("engine in error state during live upgrade")
+    }
+    if e.Status.CurrentState != longhorn.InstanceStateRunning {
+        log.Debugf("Engine is in %v state, waiting for running state", e.Status.CurrentState)
+    }
}

🧰 Tools

🪛 golangci-lint (1.62.2)

3212-3212: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

[notice] 3212-3212: controller/volume_controller.go#L3212
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

3184-3254: Verify v2 data engine live upgrade implementation

The implementation looks correct but needs thorough testing of the upgrade path, especially around engine suspension and resumption.

Consider adding metrics/events to track v2 data engine live upgrade progress and success rate.

✅ Verification successful

Let me gather more information about the v2 data engine live upgrade implementation to verify error handling and state transitions.

Based on the gathered information, I can now provide a final response as the code shows a well-structured and safe implementation of the v2 data engine live upgrade process.

V2 data engine live upgrade implementation is properly safeguarded

The implementation includes comprehensive safety checks and proper state handling:

Clear completion criteria via isV2DataEngineLiveUpgradeCompleted
Safe state transitions between Running and Suspended states
Proper handling of replica address maps during upgrade
Validation of target instance replacement before proceeding
Clean rollback mechanism by clearing UpgradedReplicaAddressMap

The only minor concern is the TODO comment for handling non-running engine states, but this is a defensive check as the main flow already ensures the engine is running before suspension.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify v2 data engine live upgrade implementation by checking logs for upgrade state transitions

# Check for any errors during engine suspension/resumption
rg -A 5 "Suspending engine for v2 data engine live upgrade|Resuming engine for live upgrade" 

# Check for target node changes during upgrade
rg -A 5 "Updating target node .* for v2 data engine live upgrade"

# Check for image updates during upgrade  
rg -A 5 "Updating image .* for v2 data engine live upgrade"

Length of output: 2040

Script:

#!/bin/bash
# Check for error handling and state transitions in v2 data engine upgrade

# Look for v2 data engine upgrade completion check
ast-grep --pattern 'func isV2DataEngineLiveUpgradeCompleted($$$)'

# Check for state validation and error handling
rg -A 10 "CurrentState.*InstanceState(Running|Suspended)" controller/volume_controller.go

# Look for any additional validation or safety checks
rg -B 2 -A 5 "TargetInstanceReplacementCreated|UpgradedReplicaAddressMap" controller/volume_controller.go

Length of output: 11358

🧰 Tools

🪛 golangci-lint (1.62.2)

3212-3212: SA9003: empty branch

(staticcheck)

🪛 GitHub Check: CodeFactor

[notice] 3225-3225: controller/volume_controller.go#L3225
If block ends with a return statement, so drop this else and outdent its block (move short variable declaration to its own line if necessary) (indent-error-flow)

[notice] 3212-3212: controller/volume_controller.go#L3212
If block ends with a return statement, so drop this else and outdent its block. (indent-error-flow)

coderabbitai · 2024-11-27T05:49:35Z

controller/instance_handler.go

+			if h.isEngineOfV2DataEngine(obj, spec.DataEngine) {
+				if isDataEngineNotBeingLiveUpgraded(spec, status) {
+					// Not in data engine live upgrade
+					break
+				}
+			} else {
+				break
+			}


🛠️ Refactor suggestion

Improve error handling in v2 data engine state management.

The state management logic for v2 data engine is comprehensive, but the error handling could be improved:

Consider adding retries for transient errors and better error categorization:

if h.isEngineOfV2DataEngine(obj, spec.DataEngine) { + maxRetries := 3 + var lastErr error + for i := 0; i < maxRetries; i++ { if isDataEngineNotBeingLiveUpgraded(spec, status) { - break + return nil } + if lastErr != nil { + logrus.WithError(lastErr).Warnf("Retry %d/%d: Failed to handle v2 data engine state", i+1, maxRetries) + } if spec.TargetNodeID != "" { if h.isEngineResumeRequired(spec, status) { - err = h.resumeInstance(instanceName, spec.DataEngine, runtimeObj) + lastErr = h.resumeInstance(instanceName, spec.DataEngine, runtimeObj) } else { - err = h.createInstance(instanceName, spec.DataEngine, runtimeObj) + lastErr = h.createInstance(instanceName, spec.DataEngine, runtimeObj) } + if lastErr == nil { + break + } } else { - err = h.createInstance(instanceName, spec.DataEngine, runtimeObj) + lastErr = h.createInstance(instanceName, spec.DataEngine, runtimeObj) + if lastErr == nil { + break + } } + } + if lastErr != nil { + return fmt.Errorf("failed to handle v2 data engine state after %d retries: %v", maxRetries, lastErr) + } }

Also applies to: 544-570

coderabbitai

Actionable comments posted: 3

🧹 Outside diff range and nitpick comments (2)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 92c8741 and 387e4fe.

📒 Files selected for processing (1)

controller/monitor/node_upgrade_monitor.go (1 hunks)

🧰 Additional context used

📓 Learnings (1)

controller/monitor/node_upgrade_monitor.go (2)

Learnt from: james-munson
PR: longhorn/longhorn-manager#3211
File: app/post_upgrade.go:102-113
Timestamp: 2024-11-10T16:45:04.898Z
Learning: In Go, when a deferred function references a variable like `err`, ensure that the variable is declared in the outer scope and not within an inner scope (such as within `if err := ...`), to prevent compilation errors and unintended variable shadowing.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/monitor/node_upgrade_monitor.go:351-357
Timestamp: 2024-11-25T23:55:02.080Z
Learning: `GetVolumeRO` guarantees that `volume` is non-nil when `err == nil`, so explicit nil checks after error handling are not needed.

🪛 GitHub Check: CodeFactor

controller/monitor/node_upgrade_monitor.go

[notice] 172-278: controller/monitor/node_upgrade_monitor.go#L172-L278
Complex Method

[notice] 461-540: controller/monitor/node_upgrade_monitor.go#L461-L540
Complex Method

🔇 Additional comments (1)

controller/monitor/node_upgrade_monitor.go (1)

279-316: ⚠️ Potential issue

Improve resource management in snapshotVolumes

The method defers engineClientProxy.Close() inside a loop, which delays cleanup until the function returns. This could lead to resource exhaustion with many volumes.

 engineClientProxy, err := engineapi.GetCompatibleClient(engine, engineCliClient, m.ds, m.logger, m.proxyConnCounter)
 if err != nil {
     return err
 }
-defer engineClientProxy.Close()

 snapLabels := map[string]string{types.GetLonghornLabelKey(types.LonghornLabelSnapshotForDataEngineLiveUpgrade): m.nodeUpgradeName}
 _, err = engineClientProxy.SnapshotCreate(engine, m.upgradeManagerName+"-"+util.RandomID(), snapLabels, freezeFilesystem)
+// Close the proxy immediately after use
+engineClientProxy.Close()
 if err != nil {
     return err
 }

coderabbitai · 2024-11-27T07:08:16Z

controller/monitor/node_upgrade_monitor.go

+		}
+	}()
+
+	// Check if the node is existing and ready
+	node, err := m.ds.GetNode(nodeUpgrade.Status.OwnerID)
+	if err != nil {
+		err = errors.Wrapf(err, "failed to get node %v for nodeDataEngineUpgrade %v", nodeUpgrade.Status.OwnerID, nodeUpgrade.Name)
+		return
+	}
+	condition := types.GetCondition(node.Status.Conditions, longhorn.NodeConditionTypeReady)
+	if condition.Status != longhorn.ConditionStatusTrue {
+		err = errors.Errorf("node %v is not ready", node.Name)
+		return
+	}
+
+	defer func() {
+		if err != nil {
+			node, errGet := m.ds.GetNode(nodeUpgrade.Status.OwnerID)
+			if errGet != nil {
+				log.WithError(errGet).Warnf("Failed to get node %v", nodeUpgrade.Status.OwnerID)
+				return
+			}
+
+			node.Spec.DataEngineUpgradeRequested = false
+			if _, errUpdate := m.ds.UpdateNode(node); errUpdate != nil {
+				log.WithError(errUpdate).Warnf("Failed to update node %v to set DataEngineUpgradeRequested to false", nodeUpgrade.Status.OwnerID)
+				return
+			}
+		}
+	}()
+
+	// Mark the node as upgrade requested
+	var volumes map[string]*longhorn.VolumeUpgradeStatus
+	if node.Spec.DataEngineUpgradeRequested {
+		condition := types.GetCondition(node.Status.Conditions, longhorn.NodeConditionTypeSchedulable)
+		if condition.Status == longhorn.ConditionStatusTrue {
+			log.Infof("DataEngineUpgradeRequested of node %v is set to true, but it is still schedulable", nodeUpgrade.Status.OwnerID)
+			// Return here and check again in the next reconciliation
+			return
+		}
+
+		var im *longhorn.InstanceManager
+		im, err = m.ds.GetDefaultInstanceManagerByNodeRO(nodeUpgrade.Status.OwnerID, longhorn.DataEngineTypeV2)
+		if err != nil {
+			return
+		}
+
+		for name, engine := range im.Status.InstanceEngines {
+			for _, path := range engine.Status.NvmeSubsystem.Paths {
+				if path.State != "live" {
+					m.nodeUpgradeStatus.Message = fmt.Sprintf("NVMe subsystem path for engine %v is in state %v", name, path.State)
+				}
+			}
+		}
+
+		replicas, errList := m.ds.ListReplicasByNodeRO(nodeUpgrade.Status.OwnerID)
+		if errList != nil {
+			err = errors.Wrapf(errList, "failed to list replicas on node %v", nodeUpgrade.Status.OwnerID)
+			return
+		}
+
+		for _, r := range replicas {
+			volume, errGet := m.ds.GetVolumeRO(r.Spec.VolumeName)
+			if errGet != nil {
+				err = errors.Wrapf(errGet, "failed to get volume %v for replica %v", r.Spec.VolumeName, r.Name)
+				return
+			}
+			if volume.Spec.NodeID != "" {
+				if volume.Spec.NumberOfReplicas == 1 {
+					err = errors.Errorf("volume %v has only 1 replica", volume.Name)
+					return
+				}
+			}
+		}
+
+		volumes, err = m.listVolumes(nodeUpgrade)
+		if err != nil {
+			err = errors.Wrapf(err, "failed to list volumes on node %v", nodeUpgrade.Status.OwnerID)
+			return
+		}
+
+		err = m.snapshotVolumes(volumes)
+		if err != nil {
+			err = errors.Wrap(err, "failed to snapshot volumes")
+			return
+		}
+
+		m.nodeUpgradeStatus.State = longhorn.UpgradeStateSwitchingOver
+		m.nodeUpgradeStatus.Message = ""
+		m.nodeUpgradeStatus.Volumes = volumes
+	} else {
+		node.Spec.DataEngineUpgradeRequested = true
+		_, err = m.ds.UpdateNode(node)
+		if err != nil {
+			err = errors.Wrapf(err, "failed to update node %v to set DataEngineUpgradeRequested to true", nodeUpgrade.Status.OwnerID)
+			return
+		}
+	}
+}
+


🛠️ Refactor suggestion

Reduce complexity in handleUpgradeStateInitializing

This method is complex and handles multiple responsibilities. Consider breaking it down into smaller, focused methods for better maintainability and testing.

Extract the following into separate methods:

Node validation logic (lines 183-192)

Volume validation logic (lines 234-252)

Snapshot creation logic (lines 254-264)

Example:

func (m *NodeDataEngineUpgradeMonitor) validateNode(nodeID string) error { node, err := m.ds.GetNode(nodeID) if err != nil { return errors.Wrapf(err, "failed to get node %v", nodeID) } condition := types.GetCondition(node.Status.Conditions, longhorn.NodeConditionTypeReady) if condition.Status != longhorn.ConditionStatusTrue { return errors.Errorf("node %v is not ready", node.Name) } return nil }

🧰 Tools

🪛 GitHub Check: CodeFactor

[notice] 172-278: controller/monitor/node_upgrade_monitor.go#L172-L278
Complex Method

coderabbitai · 2024-11-27T07:08:16Z

controller/monitor/node_upgrade_monitor.go

+func (m *NodeDataEngineUpgradeMonitor) updateVolumeForSwitchBack(volumeName, targetNode string) {
+	log := m.logger.WithFields(logrus.Fields{"volume": volumeName, "targetNode": targetNode})
+
+	var err error
+
+	defer func() {
+		if err != nil {
+			m.nodeUpgradeStatus.Volumes[volumeName].Message = err.Error()
+			if datastore.ErrorIsNotFound(err) {
+				m.nodeUpgradeStatus.Volumes[volumeName].State = longhorn.UpgradeStateCompleted
+			} else {
+				m.nodeUpgradeStatus.Volumes[volumeName].State = longhorn.UpgradeStateError
+				m.logger.WithError(err).Warnf("Failed to update volume %v for switch over", volumeName)
+			}
+		}
+	}()
+
+	volume, err := m.ds.GetVolume(volumeName)
+	if err != nil {
+		err = errors.Wrapf(err, "failed to get volume %v for switch over", volumeName)
+		return
+	}
+
+	if volume.Spec.NodeID == "" {
+		if volume.Status.OwnerID == "" {
+			m.nodeUpgradeStatus.Volumes[volume.Name].State = longhorn.UpgradeStateCompleted
+			m.nodeUpgradeStatus.Volumes[volume.Name].Message = "Volume is detached"
+		} else {
+			m.nodeUpgradeStatus.Volumes[volume.Name].State = longhorn.UpgradeStateError
+			m.nodeUpgradeStatus.Volumes[volume.Name].Message = "Volume is being detached"
+		}
+		return
+	}
+
+	if volume.Spec.TargetNodeID != "" {
+		if volume.Spec.TargetNodeID == volume.Spec.NodeID {
+			m.nodeUpgradeStatus.Volumes[volume.Name].State = longhorn.UpgradeStateSwitchingBack
+		} else {
+			m.nodeUpgradeStatus.Volumes[volume.Name].State = longhorn.UpgradeStateError
+			m.nodeUpgradeStatus.Volumes[volume.Name].Message = "Unexpected target node that is different from the attached node"
+		}
+	} else {
+		m.nodeUpgradeStatus.Volumes[volume.Name].Message = "Volume is switched over"
+		return
+	}
+
+	if volume.Spec.TargetNodeID != targetNode {
+		volume.Spec.TargetNodeID = targetNode
+
+		log.Infof("Updating volume %v to target node %v for switch back", volumeName, targetNode)
+		_, err := m.ds.UpdateVolume(volume)
+		if err != nil {
+			return
+		}
+
+		m.nodeUpgradeStatus.Volumes[volume.Name].State = longhorn.UpgradeStateSwitchingBack
+	}
+}


🛠️ Refactor suggestion

Inconsistent error handling in updateVolumeForSwitchBack

The error handling is inconsistent. Some errors are wrapped while others are returned directly. Also, the error message in the log doesn't match the actual operation.

_, err := m.ds.UpdateVolume(volume) if err != nil { + err = errors.Wrapf(err, "failed to update volume %v for switch back", volumeName) return } m.nodeUpgradeStatus.Volumes[volume.Name].State = longhorn.UpgradeStateSwitchingBack -m.logger.WithError(err).Warnf("Failed to update volume %v for switch over", volumeName) +m.logger.WithError(err).Warnf("Failed to update volume %v for switch back", volumeName)

Committable suggestion skipped: line range outside the PR's diff.

coderabbitai · 2024-11-27T07:08:16Z

controller/monitor/node_upgrade_monitor.go

+	if err := wait.PollUntilContextCancel(m.ctx, m.syncPeriod, true, func(context.Context) (bool, error) {
+		if err := m.run(struct{}{}); err != nil {
+			m.logger.WithError(err).Error("Stopped monitoring upgrade monitor")
+		}
+		return false, nil
+	}); err != nil {


🛠️ Refactor suggestion

Improve error handling in polling loop

The error from m.run() is logged but not propagated to the polling function. This means the monitor will continue running even after encountering errors that might require attention.

- if err := wait.PollUntilContextCancel(m.ctx, m.syncPeriod, true, func(context.Context) (bool, error) { - if err := m.run(struct{}{}); err != nil { - m.logger.WithError(err).Error("Stopped monitoring upgrade monitor") - } - return false, nil - }); err != nil { + if err := wait.PollUntilContextCancel(m.ctx, m.syncPeriod, true, func(context.Context) (bool, error) { + if err := m.run(struct{}{}); err != nil { + m.logger.WithError(err).Error("Error in upgrade monitor") + // Return error to potentially trigger backoff or retry logic + return false, err + } + return false, nil + }); err != nil {

Committable suggestion skipped: line range outside the PR's diff.

Signed-off-by: Derek Su <[email protected]>

…atus Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

… status Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

Signed-off-by: Derek Su <[email protected]>

coderabbitai

Actionable comments posted: 2

🧹 Outside diff range and nitpick comments (8)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 387e4fe and 63665fc.

⛔ Files ignored due to path filters (20)

go.mod is excluded by !go.mod
go.sum is excluded by !**/*.sum, !go.sum
vendor/github.com/longhorn/longhorn-instance-manager/pkg/api/instance.go is excluded by !vendor/**
vendor/github.com/longhorn/longhorn-instance-manager/pkg/client/instance.go is excluded by !vendor/**
vendor/github.com/longhorn/longhorn-instance-manager/pkg/util/util.go is excluded by !vendor/**
vendor/github.com/longhorn/types/pkg/generated/imrpc/instance.pb.go is excluded by !**/*.pb.go, !**/generated/**, !vendor/**
vendor/github.com/longhorn/types/pkg/generated/spdkrpc/spdk.pb.go is excluded by !**/*.pb.go, !**/generated/**, !vendor/**
vendor/github.com/stretchr/testify/assert/assertion_compare.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/assertion_format.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/assertion_forward.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/assertion_order.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/assertions.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/yaml/yaml_custom.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/yaml/yaml_default.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/assert/yaml/yaml_fail.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/require/require.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/require/require.go.tmpl is excluded by !vendor/**
vendor/github.com/stretchr/testify/require/require_forward.go is excluded by !vendor/**
vendor/github.com/stretchr/testify/require/requirements.go is excluded by !vendor/**
vendor/modules.txt is excluded by !vendor/**

📒 Files selected for processing (6)

controller/instance_handler.go (15 hunks)
controller/monitor/node_upgrade_monitor.go (1 hunks)
engineapi/instance_manager.go (6 hunks)
k8s/crds.yaml (87 hunks)
k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (6 hunks)
k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (6 hunks)

🧰 Additional context used

📓 Learnings (2)

controller/instance_handler.go (1)

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/instance_handler.go:919-939
Timestamp: 2024-11-25T23:56:53.252Z
Learning: In the Longhorn Manager Go code, the function `engineapi.NewInstanceManagerClient` does not accept a `context.Context` parameter. Therefore, we cannot pass `ctx` to it in functions like `isInstanceExist` in `controller/instance_handler.go`.

controller/monitor/node_upgrade_monitor.go (2)

Learnt from: james-munson
PR: longhorn/longhorn-manager#3211
File: app/post_upgrade.go:102-113
Timestamp: 2024-11-10T16:45:04.898Z
Learning: In Go, when a deferred function references a variable like `err`, ensure that the variable is declared in the outer scope and not within an inner scope (such as within `if err := ...`), to prevent compilation errors and unintended variable shadowing.

Learnt from: derekbit
PR: longhorn/longhorn-manager#3282
File: controller/monitor/node_upgrade_monitor.go:351-357
Timestamp: 2024-11-25T23:55:02.080Z
Learning: `GetVolumeRO` guarantees that `volume` is non-nil when `err == nil`, so explicit nil checks after error handling are not needed.

🔇 Additional comments (19)

k8s/pkg/apis/longhorn/v1beta2/instancemanager.go (1)

61-67: LGTM: New instance state for upgrade support

The addition of InstanceStateSuspended state aligns with the live upgrade feature requirements.

Let's verify the state handling:

✅ Verification successful

The new suspended state is properly integrated and handled

The verification confirms that InstanceStateSuspended is well-integrated into the codebase:

Properly handled in instance state transitions in controller/instance_handler.go
Used in engine controller for live upgrade scenarios
Integrated into volume controller logic for managing engine state during upgrades
Includes proper validation to ensure it's only used with v2 data engine

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the new suspended state is properly handled
# Look for state transition handling code

rg -A 5 "InstanceStateSuspended" 
ast-grep --pattern 'switch $_ {
  case $$$
  case "suspended":
    $$$
}'

Length of output: 4108

engineapi/instance_manager.go (3)

6-6: LGTM: Import addition is appropriate.

The addition of the "net" package import is necessary for host:port parsing functionality used in the new code.

277-288: LGTM: NVMe subsystem handling is well-implemented.

The changes properly initialize and populate the NVMe subsystem information and add necessary fields for managing target ports. The implementation is thorough and maintains proper type safety.

Also applies to: 296-306

880-967: LGTM: Well-structured implementation of engine instance management functions.

The new functions for engine instance management (suspend, resume, switchover, delete target) are well-implemented with:

Proper parameter validation
Consistent error handling
Clear separation of concerns between data engine types
Proper type safety checks

controller/instance_handler.go (4)

38-47: LGTM: Interface changes support v2 data engine live upgrade

The new methods added to the InstanceManagerHandler interface provide a clear and comprehensive API for managing instance lifecycle during live upgrades.

224-227: ⚠️ Potential issue

Resolve error handling uncertainty

The TODO comment indicates uncertainty about error handling when checking node upgrade status. This should be resolved to ensure consistent behavior.

532-570: 🛠️ Refactor suggestion

Improve error handling in v2 data engine state management

The state management logic for v2 data engine is comprehensive, but the error handling could be improved.

925-945: 🛠️ Refactor suggestion

Add timeout to instance existence check

The isInstanceExist function makes network calls but doesn't have a timeout. This could lead to hanging in case of network issues.

k8s/pkg/apis/longhorn/v1beta2/zz_generated.deepcopy.go (4)

981-1092: LGTM: DataEngineUpgradeManager deepcopy implementation

The implementation correctly handles all fields including the nested map of UpgradeNodeStatus pointers in the Status field.

1784-1891: LGTM: NodeDataEngineUpgrade deepcopy implementation

The implementation correctly handles all fields including the nested map of VolumeUpgradeStatus pointers in the Status field.

3031-3046: Addressing past review comment: UpgradeNodeStatus deepcopy is correct

The current implementation with *out = *in is correct since UpgradeNodeStatus only contains simple types (State and Message are strings). No explicit field copying is needed.

3366-3381: Addressing past review comment: VolumeUpgradeStatus deepcopy is correct

The current implementation with *out = *in is correct since VolumeUpgradeStatus only contains simple types (State and Message are strings). No explicit field copying is needed.

k8s/crds.yaml (4)

2419-2513: Previous validation suggestions still apply

The validation improvements suggested in the previous review for NodeDataEngineUpgrade CRD are still applicable.

1313-1414: 🛠️ Refactor suggestion

Add validation rules to DataEngineUpgradeManager CRD

The DataEngineUpgradeManager CRD would benefit from additional validation rules:

spec.dataEngine should be required since it's a key field
status.state should have an enum of possible states

Apply this diff to improve validation:

            properties:
              dataEngine:
                description: DataEngine specifies the data engine type to upgrade to.
                enum:
                - v2
                type: string
+             required:
+             - dataEngine
              nodes:
                description: |-
                  Nodes specifies the list of nodes to perform the data engine upgrade on.
                  If empty, the upgrade will be performed on all available nodes.
                items:
                  type: string
                type: array
            type: object
          status:
            description: DataEngineUpgradeManagerStatus defines the observed state of the upgrade manager resource
            properties:
              state:
                type: string
+               enum:
+               - pending
+               - in-progress 
+               - completed
+               - failed

2636-2638: Verify upgrade trigger mechanism

The dataEngineUpgradeRequested field has been added to trigger instance manager upgrades for v2 volumes on specific nodes. Let's verify the upgrade trigger mechanism implementation.

✅ Verification successful

Let me gather more information about the upgrade trigger mechanism.

Based on the search results, I can now provide a final response about the upgrade trigger mechanism:

Verified upgrade trigger mechanism implementation

The dataEngineUpgradeRequested field is properly implemented as part of the node data engine upgrade workflow:

The field is used by the NodeDataEngineUpgradeMonitor to trigger and track instance manager upgrades
The upgrade process includes:
1. Setting node.Spec.DataEngineUpgradeRequested = true to initiate the upgrade
2. Handling the upgrade state via UpgradeStateUpgradingInstanceManager
3. Managing instance manager recreation with the new image
4. Setting node.Spec.DataEngineUpgradeRequested = false upon completion

The implementation includes proper error handling and state management throughout the upgrade process.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the upgrade trigger mechanism implementation

# Search for dataEngineUpgradeRequested field usage
echo "Searching for dataEngineUpgradeRequested usage..."
rg -A 5 "dataEngineUpgradeRequested" --type go

# Search for upgrade trigger related code
echo "Searching for upgrade trigger implementation..."
ast-grep --pattern $'func $_($$) {
  $$$
  dataEngineUpgradeRequested
  $$$
}'

Length of output: 741

Script:

#!/bin/bash
# Search for code that handles node upgrades and instance manager upgrades
echo "Searching for node upgrade related code..."
rg -A 10 "InstanceManager.*[Uu]pgrade" --type go

# Search for code that modifies dataEngineUpgradeRequested
echo "Searching for code that sets dataEngineUpgradeRequested..."
rg -A 5 "DataEngineUpgradeRequested.*=.*" --type go

# Search for instance manager upgrade controller
echo "Searching for instance manager controller..."
fd "instance.*manager.*controller.*go" --type f --exec rg -A 5 "func.*[Uu]pgrade" {}

Length of output: 19949

1791-1793: Verify consistent usage of targetNodeID field

The targetNodeID field has been added to both Engine and Replica CRDs for coordinating instance placement during data engine live upgrades. Let's verify the consistent usage of this field across the codebase.

Also applies to: 3298-3300

✅ Verification successful

Let me gather more information about the usage of targetNodeID in the context of data engine upgrades.

Let me search for more specific usage patterns to verify the consistency.

Based on the extensive code analysis, I can now generate the final response since I have sufficient evidence about the targetNodeID field usage.

Consistent usage of targetNodeID field confirmed

The field is properly integrated across the codebase with consistent validation and handling:

Volume controller properly manages targetNodeID during data engine upgrades
Engine controller correctly handles target instance placement based on targetNodeID
Comprehensive validation in webhook ensures proper usage:
- Only allowed for data engine v2 volumes
- Requires healthy volume state and multiple replicas
- Prevents setting to same node as current node
- Validates upgrade readiness conditions

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify consistent usage of targetNodeID field in Engine and Replica controllers

# Search for targetNodeID field usage in controllers
echo "Searching for targetNodeID usage in controllers..."
rg -A 5 "targetNodeID" --type go

Length of output: 5448

Script:

#!/bin/bash
# Search for data engine upgrade related code paths that use targetNodeID
echo "Searching for data engine upgrade related code..."
rg -B 3 -A 3 "DataEngineV2.*upgrade" --type go

# Search for volume controller handling of targetNodeID
echo -e "\nSearching for volume controller handling of targetNodeID..."
ast-grep --pattern 'func (vc *VolumeController) $$$targetNodeID$$$'

Length of output: 847

Script:

#!/bin/bash
# Search for volume spec targetNodeID validation and handling
echo "Searching for volume spec targetNodeID handling..."
rg -B 5 -A 5 "Spec\.TargetNodeID" --type go

# Search for engine and replica handling during upgrade
echo -e "\nSearching for engine and replica handling during upgrade..."
rg -B 3 -A 5 "DataEngineUpgrade" --type go

Length of output: 136728

controller/monitor/node_upgrade_monitor.go (3)

194-208: 🛠️ Refactor suggestion

Avoid variable shadowing in deferred function to prevent confusion and errors

In the deferred function starting at line 194, the variable err is redefined, shadowing the outer err variable. This can lead to confusion and unintended behavior. It's better to use different variable names inside the deferred function to prevent shadowing.

Apply this diff to prevent variable shadowing:

defer func() {
    if err != nil {
-       node, err := m.ds.GetNode(nodeUpgrade.Status.OwnerID)
-       if err != nil {
-           log.WithError(err).Warnf("Failed to get node %v", nodeUpgrade.Status.OwnerID)
+       node, getNodeErr := m.ds.GetNode(nodeUpgrade.Status.OwnerID)
+       if getNodeErr != nil {
+           log.WithError(getNodeErr).Warnf("Failed to get node %v", nodeUpgrade.Status.OwnerID)
            return
        }
        node.Spec.DataEngineUpgradeRequested = false
-       if _, err := m.ds.UpdateNode(node); err != nil {
-           log.WithError(err).Warnf("Failed to update node %v to set DataEngineUpgradeRequested to false", nodeUpgrade.Status.OwnerID)
+       if _, updateErr := m.ds.UpdateNode(node); updateErr != nil {
+           log.WithError(updateErr).Warnf("Failed to update node %v to set DataEngineUpgradeRequested to false", nodeUpgrade.Status.OwnerID)
            return
        }
    }
}()

817-853: 🛠️ Refactor suggestion

Avoid variable shadowing of err within the function to prevent confusion

Within updateVolumeForSwitchBack, the variable err is redefined when calling m.ds.GetVolume(volumeName) and subsequent operations, shadowing the outer err used in deferred error handling. This can lead to unintended behavior or confusion.

Apply this diff to use different variable names for errors:

volume, getVolumeErr := m.ds.GetVolume(volumeName)
if getVolumeErr != nil {
-   err = errors.Wrapf(err, "failed to get volume %v for switch back", volumeName)
+   err = errors.Wrapf(getVolumeErr, "failed to get volume %v for switch back", volumeName)
    return
}

// ...

if _, updateErr := m.ds.UpdateVolume(volume); updateErr != nil {
-   err = errors.Wrapf(err, "failed to update volume %v to target node %v for switch back", volumeName, targetNode)
+   err = errors.Wrapf(updateErr, "failed to update volume %v to target node %v for switch back", volumeName, targetNode)
    return
}

This prevents shadowing of the outer err variable and maintains clarity in error handling.

311-311: ⚠️ Potential issue

Avoid deferring resource closures inside loops to prevent resource leaks

Deferring engineClientProxy.Close() inside a loop causes all Close() calls to be postponed until the function returns, which can lead to resource exhaustion if the loop iterates many times. It's better to close the proxy immediately after use.

Apply this diff to close the proxy after each iteration:

engineClientProxy, err := engineapi.GetCompatibleClient(engine, engineCliClient, m.ds, m.logger, m.proxyConnCounter)
if err != nil {
    return err
}
- defer engineClientProxy.Close()

// ... existing code ...

_, err = engineClientProxy.SnapshotCreate(engine, m.upgradeManagerName+"-"+util.RandomID(), snapLabels, freezeFilesystem)
if err != nil {
    return err
}
+ // Close the proxy before the next iteration
+ engineClientProxy.Close()

coderabbitai · 2024-11-27T08:47:25Z

engineapi/instance_manager.go

+	logrus.Infof("Debug ========> InstanceList")
 	instances, err := c.instanceServiceGrpcClient.InstanceList()
 	if err != nil {
+		logrus.Infof("Debug ========> InstanceList err=%v", err)


🛠️ Refactor suggestion

Remove temporary debug logging statements.

These debug logging statements appear to be temporary and should be removed from production code.

Remove the debug logging:

- logrus.Infof("Debug ========> InstanceList") instances, err := c.instanceServiceGrpcClient.InstanceList() if err != nil { - logrus.Infof("Debug ========> InstanceList err=%v", err) return nil, err }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

logrus.Infof("Debug ========> InstanceList")

instances, err := c.instanceServiceGrpcClient.InstanceList()

if err != nil {

logrus.Infof("Debug ========> InstanceList err=%v", err)

instances, err := c.instanceServiceGrpcClient.InstanceList()

if err != nil {

return nil, err

}

coderabbitai · 2024-11-27T08:47:25Z

controller/monitor/node_upgrade_monitor.go

+				m.logger.WithError(err).Warnf("Failed to update volume %v for switch over", volumeName)
+			}


⚠️ Potential issue

Correct the log message to reflect the correct operation

In the updateVolumeForSwitchBack method, the log message references "switch over," but this method handles "switch back." This could cause confusion when debugging or reviewing logs.

Apply this diff to correct the log message:

if datastore.ErrorIsNotFound(err) { m.nodeUpgradeStatus.Volumes[volumeName].State = longhorn.UpgradeStateCompleted } else { m.nodeUpgradeStatus.Volumes[volumeName].State = longhorn.UpgradeStateError - m.logger.WithError(err).Warnf("Failed to update volume %v for switch over", volumeName) + m.logger.WithError(err).Warnf("Failed to update volume %v for switch back", volumeName) }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

m.logger.WithError(err).Warnf("Failed to update volume %v for switch over", volumeName)

}

m.logger.WithError(err).Warnf("Failed to update volume %v for switch back", volumeName)

}

derekbit added 2 commits November 19, 2024 16:09

feat: allow v2 volume to attach on the an old and running instance-ma…

453f5f4

…nager pod Longhorn 9383 Signed-off-by: Derek Su <[email protected]>

chore(vendor): update dependencies

8f3b148

Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

derekbit self-assigned this Nov 22, 2024

derekbit force-pushed the v2-control-upgrade branch from 3a5c514 to 393807e Compare November 25, 2024 12:08

derekbit marked this pull request as ready for review November 25, 2024 12:14

derekbit requested review from PhanLe1010, mantissahz, innobead, ChanYiLin, c3y1huang, shuo-wu and DamiaSan and removed request for mantissahz November 25, 2024 12:14

coderabbitai bot reviewed Nov 25, 2024

View reviewed changes

derekbit force-pushed the v2-control-upgrade branch from 393807e to 0897343 Compare November 25, 2024 12:24

coderabbitai bot reviewed Nov 25, 2024

View reviewed changes

controller/engine_controller.go Show resolved Hide resolved

derekbit force-pushed the v2-control-upgrade branch from 0897343 to 743a76d Compare November 25, 2024 13:47

coderabbitai bot reviewed Nov 25, 2024

View reviewed changes

derekbit force-pushed the v2-control-upgrade branch 4 times, most recently from 82fdc88 to 00e7be5 Compare November 25, 2024 14:23

coderabbitai bot reviewed Nov 25, 2024

View reviewed changes

derekbit force-pushed the v2-control-upgrade branch 3 times, most recently from f03bb50 to 7819f3a Compare November 25, 2024 14:47

coderabbitai bot reviewed Nov 25, 2024

View reviewed changes

derekbit force-pushed the v2-control-upgrade branch from 7819f3a to 36a161d Compare November 25, 2024 15:04

derekbit force-pushed the v2-control-upgrade branch 2 times, most recently from cd56fa2 to 49625f4 Compare November 26, 2024 00:09

coderabbitai bot reviewed Nov 26, 2024

View reviewed changes

engineapi/instance_manager.go Outdated Show resolved Hide resolved

controller/instance_handler.go Outdated Show resolved Hide resolved

derekbit force-pushed the v2-control-upgrade branch 3 times, most recently from 91cb77e to ce1c3db Compare November 26, 2024 00:27

coderabbitai bot reviewed Nov 26, 2024

View reviewed changes

derekbit added 3 commits November 26, 2024 08:48

feat(v2 upgrade/crd): introduce data engine upgrade releated CRDs and…

d0fa044

… fields Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

feat(v2 upgrade/controller): upgrading node shouldn't be responsible …

c69ddbf

…for backup resources Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

feat(v2 upgrade/datastore): add CRUD methods for upgrade related reso…

3914a25

…urces Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

derekbit force-pushed the v2-control-upgrade branch from ce1c3db to eda6a7b Compare November 26, 2024 04:59

coderabbitai bot reviewed Nov 26, 2024

View reviewed changes

derekbit added 7 commits November 26, 2024 14:20

feat(v2 upgrade/controller): implement upgrade related controllers

3f91703

Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

feat(v2 upgrade/controller): set schedulable condition when node is r…

804fbdf

…equested data engine upgrade Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

feat(v2 upgrade/controller): update replica controller codes

34d34c5

Update replica controller codes due to the changes in APIs. Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

feat(v2 upgrade/scheduler): update replica scheduler codes

ba9cad1

Update replica scheduler codes due to the changes in APIs. Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

feat(v2 upgrade/webhook): validate data engine upgrade related fields

8c91b3a

Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

feat(v2 upgrade/controller): handle the state transition of engines a…

eb7f61e

…nd replicas Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

derekbit force-pushed the v2-control-upgrade branch from eda6a7b to 92c8741 Compare November 27, 2024 05:31

coderabbitai bot reviewed Nov 27, 2024

View reviewed changes

derekbit force-pushed the v2-control-upgrade branch from 387e4fe to 9aa0d54 Compare November 27, 2024 08:29

derekbit added 4 commits November 27, 2024 16:30

WIP

ccc4482

Signed-off-by: Derek Su <[email protected]>

chore(v2 upgrade): update dependencies for exposing NVMe subsystem st…

e20b4bb

…atus Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

feat(v2 upgrade/crd): update dependencies for exposing NVMe subsystem…

69fe211

… status Longhorn 9104 Signed-off-by: Derek Su <[email protected]>

WIP

63665fc

Signed-off-by: Derek Su <[email protected]>

derekbit force-pushed the v2-control-upgrade branch from 9aa0d54 to 63665fc Compare November 27, 2024 08:30

coderabbitai bot reviewed Nov 27, 2024

View reviewed changes

		dataengineupgrademanager.NewMutator(ds),
		nodedataengineupgrade.NewMutator(ds),

		m.logger.WithError(err).Warnf("Failed to update volume %v for switch over", volumeName)
		}

feat: v2 data engine live upgrade #3282

Are you sure you want to change the base?

feat: v2 data engine live upgrade #3282

Conversation

derekbit commented Nov 22, 2024 • edited Loading

Which issue(s) this PR fixes:

What this PR does / why we need it:

Special notes for your reviewer:

Additional documentation or context

coderabbitai bot commented Nov 22, 2024 • edited Loading

Walkthrough

Changes

Assessment against linked issues

Possibly related PRs

Suggested reviewers

Chat

CodeRabbit Commands (Invoked using PR comments)

Other keywords and placeholders

Documentation and Community

mergify bot commented Nov 23, 2024

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024 • edited Loading

Choose a reason for hiding this comment

derekbit Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 25, 2024

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot left a comment

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

coderabbitai bot Nov 26, 2024

Choose a reason for hiding this comment

derekbit commented Nov 22, 2024 •

edited

Loading

coderabbitai bot commented Nov 22, 2024 •

edited

Loading

coderabbitai bot Nov 25, 2024 •

edited

Loading