Merge "Remove namespace leftover upon kuryr-controller restart"

2019-10-22 12:43:36 +00:00 · 2019-10-22 12:43:36 +00:00 · 80f990fed4
parent dbe742cf59 6d43ad4c78
commit 80f990fed4
3 changed files with 66 additions and 7 deletions
--- a/kuryr_kubernetes/controller/drivers/namespace_subnet.py
+++ b/kuryr_kubernetes/controller/drivers/namespace_subnet.py
@ -120,11 +120,22 @@ class NamespacePodSubnetDriver(default_subnet.DefaultPodSubnetDriver):
                    neutron.delete_port(leftover_port['id'])
                except n_exc.PortNotFoundClient:
                    LOG.debug("Port already deleted.")
-                except n_exc.NeutronClientException:
-                    LOG.debug("Unexpected error deleting leftover port %s. "
-                              "Skiping it and continue with the other rest.",
-                              leftover_port['id'])
-                    continue
+                except n_exc.NeutronClientException as e:
+                    if "currently a subport for trunk" in str(e):
+                        LOG.warning("Port %s is in DOWN status but still "
+                                    "associated to a trunk. This should not "
+                                    "happen. Trying to delete it from the "
+                                    "trunk.", leftover_port['id'])
+                        # Get the trunk_id from the error message
+                        trunk_id = (
+                            str(e).split('trunk')[1].split('.')[0].strip())
+                        neutron.trunk_remove_subports(
+                            trunk_id, {'sub_ports': [
+                                {'port_id': leftover_port['id']}]})
+                    else:
+                        LOG.exception("Unexpected error deleting leftover "
+                                      "port %s. Skiping it and continue with "
+                                      "the other rest.", leftover_port['id'])
            raise exceptions.ResourceNotReady(net_id)
        except n_exc.NeutronClientException:
            LOG.exception("Error deleting network %s.", net_id)
--- a/kuryr_kubernetes/controller/handlers/namespace.py
+++ b/kuryr_kubernetes/controller/handlers/namespace.py
@ -12,6 +12,9 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.

+import eventlet
+import time
+
 from oslo_cache import core as cache
 from oslo_config import cfg as oslo_cfg
 from oslo_log import log as logging
@ -62,6 +65,10 @@ class NamespaceHandler(k8s_base.ResourceEventHandler):
            self._drv_svc_sg = (
                drivers.ServiceSecurityGroupsDriver.get_instance())

+        # NOTE(ltomasbo): Checks and clean up leftovers due to
+        # kuryr-controller retarts
+        eventlet.spawn(self._cleanup_namespace_leftovers)
+
    def on_present(self, namespace):
        ns_name = namespace['metadata']['name']
        current_namespace_labels = namespace['metadata'].get('labels')
@ -147,7 +154,7 @@ class NamespaceHandler(k8s_base.ResourceEventHandler):
                # but not to prevent etcd failures.
                return

-        net_crd_name = 'ns-' + namespace['metadata']['name']
+        net_crd_name = net_crd['metadata']['name']

        self._drv_vif_pool.delete_network_pools(net_crd['spec']['netId'])
        try:
@ -290,3 +297,43 @@ class NamespaceHandler(k8s_base.ResourceEventHandler):
        enabled_handlers = oslo_cfg.CONF.kubernetes.enabled_handlers
        svc_sg_driver = oslo_cfg.CONF.kubernetes.service_security_groups_driver
        return ('policy' in enabled_handlers and svc_sg_driver == 'policy')
+
+    def _cleanup_namespace_leftovers(self):
+        k8s = clients.get_kubernetes_client()
+        while True:
+            retry = False
+            try:
+                net_crds = k8s.get(constants.K8S_API_CRD_KURYRNETS)
+                namespaces = k8s.get(constants.K8S_API_NAMESPACES)
+            except exceptions.K8sClientException:
+                LOG.warning("Error retriving namespace information")
+                return
+            ns_dict = {'ns-' + ns['metadata']['name']: ns
+                       for ns in namespaces.get('items')}
+
+            for net_crd in net_crds.get('items'):
+                try:
+                    ns_dict[net_crd['metadata']['name']]
+                except KeyError:
+                    # Note(ltomasbo): The CRD does not have an associated
+                    # namespace. It must be deleted
+                    LOG.debug("Removing namespace leftovers associated to: "
+                              "%s", net_crd)
+                    # removing the 'ns-' preceding the namespace name on the
+                    # net CRDs
+                    ns_name = net_crd['metadata']['name'][3:]
+                    # only namespace name is needed for on_deleted, faking the
+                    # nonexistent object
+                    ns_to_delete = {'metadata': {'name': ns_name}}
+                    try:
+                        self.on_deleted(ns_to_delete, net_crd)
+                    except exceptions.ResourceNotReady:
+                        LOG.debug("Cleanup of namespace %s failed. A retry "
+                                  "will be triggered.", ns_name)
+                        retry = True
+                        continue
+            if not retry:
+                break
+
+            # Leave time between retries to help Neutron to complete actions
+            time.sleep(60)
--- a/kuryr_kubernetes/tests/unit/controller/handlers/test_namespace.py
+++ b/kuryr_kubernetes/tests/unit/controller/handlers/test_namespace.py
@ -85,7 +85,8 @@ class TestNamespaceHandler(test_base.TestCase):
        crd = {
            'kind': 'KuryrNet',
            'metadata': {
-                'selfLink': mock.sentinel.self_link
+                'selfLink': mock.sentinel.self_link,
+                'name': 'ns-' + self._namespace_name,
            },
            'spec': {
                'routerId': mock.sentinel.router_id,