Merge "Fix validate-tenants isolation"

tests/unit/test_configloader.py

@@ -42,7 +42,8 @@ class TestConfigLoader(ZuulTestCase):
         ansible_manager = AnsibleManager(
             default_version=zuul_globals.default_ansible_version)
         loader = ConfigLoader(
-            sched.connections, self.zk_client, zuul_globals, sched.statsd,
+            sched.connections, self.zk_client, zuul_globals,
+            sched.unparsed_config_cache, sched.statsd,
             keystorage=sched.keystore)
         abide = Abide()
         loader.loadTPCs(abide, unparsed_abide)

zuul/cmd/client.py

@@ -919,9 +919,9 @@ class Client(zuul.cmd.ZuulApp):
                 self.unparsed_config_cache = None
 
         zuul_globals = SystemAttributes.fromConfig(self.config)
-        loader = configloader.ConfigLoader(
-            self.connections, None, zuul_globals)
         sched = SchedulerConfig(self.config, self.connections)
+        loader = configloader.ConfigLoader(
+            self.connections, None, zuul_globals, None)
         tenant_config, script = sched._checkTenantSourceConf(self.config)
         try:
             unparsed_abide = loader.readConfig(

zuul/configloader.py

@@ -42,7 +42,6 @@ from zuul.lib.logutil import get_annotated_logger
 from zuul.lib.re2util import filter_allowed_disallowed, ZuulRegex
 from zuul.lib.varnames import check_varnames
 from zuul.zk.components import COMPONENT_REGISTRY
-from zuul.zk.config_cache import UnparsedConfigCache
 from zuul.zk.semaphore import SemaphoreHandler
 
 ZUUL_CONF_ROOT = ('zuul.yaml', 'zuul.d', '.zuul.yaml', '.zuul.d')
@@ -1819,7 +1818,7 @@ class ParseContext(object):
 
 class TenantParser(object):
     def __init__(self, connections, zk_client, scheduler, merger, keystorage,
-                 zuul_globals, statsd):
+                 zuul_globals, statsd, unparsed_config_cache):
         self.log = logging.getLogger("zuul.TenantParser")
         self.connections = connections
         self.zk_client = zk_client
@@ -1828,7 +1827,7 @@ class TenantParser(object):
         self.keystorage = keystorage
         self.globals = zuul_globals
         self.statsd = statsd
-        self.unparsed_config_cache = UnparsedConfigCache(self.zk_client)
+        self.unparsed_config_cache = unparsed_config_cache
 
     classes = vs.Any('pipeline', 'job', 'semaphore', 'project',
                      'project-template', 'nodeset', 'secret', 'queue')
@@ -2857,8 +2856,9 @@ class TenantParser(object):
 class ConfigLoader(object):
     log = logging.getLogger("zuul.ConfigLoader")
 
-    def __init__(self, connections, zk_client, zuul_globals, statsd=None,
-                 scheduler=None, merger=None, keystorage=None):
+    def __init__(self, connections, zk_client, zuul_globals,
+                 unparsed_config_cache, statsd=None, scheduler=None,
+                 merger=None, keystorage=None):
         self.connections = connections
         self.zk_client = zk_client
         self.globals = zuul_globals
@@ -2867,7 +2867,7 @@ class ConfigLoader(object):
         self.keystorage = keystorage
         self.tenant_parser = TenantParser(
             connections, zk_client, scheduler, merger, keystorage,
-            zuul_globals, statsd)
+            zuul_globals, statsd, unparsed_config_cache)
         self.authz_rule_parser = AuthorizationRuleParser()
         self.global_semaphore_parser = GlobalSemaphoreParser()
         self.api_root_parser = ApiRootParser()

zuul/manager/__init__.py

@@ -1152,7 +1152,7 @@ class PipelineManager(metaclass=ABCMeta):
         import zuul.configloader
         loader = zuul.configloader.ConfigLoader(
             self.sched.connections, self.sched.zk_client, self.sched.globals,
-            self.sched.statsd, self.sched)
+            self.sched.unparsed_config_cache, self.sched.statsd, self.sched)
 
         log.debug("Loading dynamic layout")
 

zuul/scheduler.py

@@ -1012,8 +1012,9 @@ class Scheduler(threading.Thread):
             self.primeSystemConfig()
 
         loader = configloader.ConfigLoader(
-            self.connections, self.zk_client, self.globals, self.statsd, self,
-            self.merger, self.keystore)
+            self.connections, self.zk_client, self.globals,
+            self.unparsed_config_cache, self.statsd,
+            self, self.merger, self.keystore)
         new_tenants = (set(self.unparsed_abide.tenants)
                        - self.abide.tenants.keys())
 
@@ -1314,7 +1315,8 @@ class Scheduler(threading.Thread):
     def updateTenantLayout(self, log, tenant_name):
         log.debug("Updating layout of tenant %s", tenant_name)
         loader = configloader.ConfigLoader(
-            self.connections, self.zk_client, self.globals, self.statsd, self,
+            self.connections, self.zk_client, self.globals,
+            self.unparsed_config_cache, self.statsd, self,
             self.merger, self.keystore)
         # Since we are using the ZK 'locked' context manager (in order
         # to have a non-blocking lock) with a threading lock, we need
@@ -1398,8 +1400,14 @@ class Scheduler(threading.Thread):
         self.log.info("Config validation beginning")
         start = time.monotonic()
 
+        # Use a temporary config cache for the validation
+        validate_root = f"/zuul/validate/{uuid.uuid4().hex}"
+        self.unparsed_config_cache = UnparsedConfigCache(self.zk_client,
+                                                         validate_root)
+
         loader = configloader.ConfigLoader(
-            self.connections, self.zk_client, self.globals, self.statsd,
+            self.connections, self.zk_client, self.globals,
+            self.unparsed_config_cache, self.statsd,
             self, self.merger, self.keystore)
         tenant_config, script = self._checkTenantSourceConf(self.config)
         unparsed_abide = loader.readConfig(
@@ -1409,11 +1417,6 @@ class Scheduler(threading.Thread):
         available_tenants = list(unparsed_abide.tenants)
         tenants_to_load = tenants_to_validate or available_tenants
 
-        # Use a temporary config cache for the validation
-        validate_root = f"/zuul/validate/{uuid.uuid4().hex}"
-        self.unparsed_config_cache = UnparsedConfigCache(self.zk_client,
-                                                         validate_root)
-
         try:
             abide = Abide()
             loader.loadAuthzRules(abide, unparsed_abide)
@@ -1459,7 +1462,8 @@ class Scheduler(threading.Thread):
 
         with self.unparsed_abide_lock:
             loader = configloader.ConfigLoader(
-                self.connections, self.zk_client, self.globals, self.statsd,
+                self.connections, self.zk_client, self.globals,
+                self.unparsed_config_cache, self.statsd,
                 self, self.merger, self.keystore)
             tenant_config, script = self._checkTenantSourceConf(self.config)
             old_unparsed_abide = self.unparsed_abide
@@ -1587,7 +1591,8 @@ class Scheduler(threading.Thread):
             branch_cache_min_ltimes[connection_name] = ltime
 
         loader = configloader.ConfigLoader(
-            self.connections, self.zk_client, self.globals, self.statsd,
+            self.connections, self.zk_client, self.globals,
+            self.unparsed_config_cache, self.statsd,
             self, self.merger, self.keystore)
         loader.loadTPCs(self.abide, self.unparsed_abide,
                         [event.tenant_name])
@@ -2209,7 +2214,8 @@ class Scheduler(threading.Thread):
         # consistency and future-proofing.
         with self.unparsed_abide_lock:
             loader = configloader.ConfigLoader(
-                self.connections, self.zk_client, self.globals, self.statsd,
+                self.connections, self.zk_client, self.globals,
+                self.unparsed_config_cache, self.statsd,
                 self, self.merger, self.keystore)
             tenant_config, script = self._checkTenantSourceConf(self.config)
             self.unparsed_abide = loader.readConfig(
@@ -2231,7 +2237,8 @@ class Scheduler(threading.Thread):
             self.ansible_manager = AnsibleManager(
                 default_version=self.globals.default_ansible_version)
             loader = configloader.ConfigLoader(
-                self.connections, self.zk_client, self.globals, self.statsd,
+                self.connections, self.zk_client, self.globals,
+                self.unparsed_config_cache, self.statsd,
                 self, self.merger, self.keystore)
 
             tenant_names = set(self.abide.tenants)

zuul/web/__init__.py

@@ -64,7 +64,7 @@ from zuul.model import (
 from zuul.version import get_version_string
 from zuul.zk import ZooKeeperClient
 from zuul.zk.components import COMPONENT_REGISTRY, WebComponent
-from zuul.zk.config_cache import SystemConfigCache
+from zuul.zk.config_cache import SystemConfigCache, UnparsedConfigCache
 from zuul.zk.event_queues import (
     TenantManagementEventQueue,
     TenantTriggerEventQueue,
@@ -2070,6 +2070,7 @@ class ZuulWeb(object):
             self.zk_client,
             self.system_config_cache_wake_event.set)
 
+        self.unparsed_config_cache = UnparsedConfigCache(self.zk_client)
         self.keystore = KeyStorage(
             self.zk_client, password=self._get_key_store_password())
         self.globals = SystemAttributes.fromConfig(self.config)
@@ -2423,7 +2424,7 @@ class ZuulWeb(object):
 
         loader = ConfigLoader(
             self.connections, self.zk_client, self.globals,
-            keystorage=self.keystore)
+            self.unparsed_config_cache, keystorage=self.keystore)
 
         tenant_names = set(self.abide.tenants)
         deleted_tenants = tenant_names.difference(
@@ -2441,7 +2442,7 @@ class ZuulWeb(object):
         self.log.debug("Updating layout state")
         loader = ConfigLoader(
             self.connections, self.zk_client, self.globals,
-            keystorage=self.keystore)
+            self.unparsed_config_cache, keystorage=self.keystore)
 
         # We need to handle new and deleted tenants, so we need to process all
         # tenants currently known and the new ones.