fix(f5-virtualserver): skip endpoint creation when VirtualServer is not ready

[mikejoh]

Description

Due to changes in logic in the controller that operates on VirtualServer objects the VirtualServer external-dns Source needs to determine if the VirtualServer object is ready or not. This PR adds a check to determine if the VirtualServer is ready and if not skips endpoint creation for that particular object.

Checklist

• Unit tests updated
• End user documentation updated (not needed AFAICT)

[k8s-ci-robot]

Hi @mikejoh. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[mloiseleur]

/ok-to-test

[mloiseleur]

Suggested change

	log.Infof("F5 VirtualServer %s/%s is not ready or is missing an IP address, skipping endpoint creation.",
	log.Warnf("F5 VirtualServer %s/%s is not ready or is missing an IP address, skipping endpoint creation.",

Shouldn't it be a warning ?

[mikejoh]

It could definitely be a warning instead, i'll change it!

[mikejoh]

Fixed here: d5c7f23

[mloiseleur]

This PR looks good, thanks. I have not a strong opinion about the log level, it's just a suggestion.
/lgtm

[mloiseleur]

/retitle fix(f5-virtualserver): skip endpoint creation when VirtualServer is not ready

[ivankatliarchuk]

potential null pointer as vs is a reference

The null check will help to avoid external-dns crashlooping.

Ideally the null check should be added in method

func (vs *f5VirtualServerSource) endpointsFromVirtualServers
...

for _, virtualServer := range virtualServers {
   if virtualServer == nil {
            continue
        }

[mikejoh]

Good catch but AFAICT the vs pointer here are explicitly set earlier and appended to the slice of vs pointer (before passed to the endpointsFromVirtualServers method), this would effectively mitigate any risk of encountering a nil pointer.

[ivankatliarchuk]

Hi

Looks like missed that piece ;-) If server is empty and created like that, then you right.

virtualServer := &f5.VirtualServer{}

If the virtual server created like the one above, is there is is a chance to throw a null pointer panic in helper function isVirtualServerReady, as vs.Status is not set?

vs.Status.Status 
vs.Status.VSAddress

Am I correct or missing something?

[mikejoh]

Thanks for all the review comments, super helpful! 🙏🏻

The status field of the VirtualServer object is defined as a non-pointer: https://github.com/F5Networks/k8s-bigip-ctlr/blob/508f686bf2886a4f95af0f3a822e6ed25bce2ec7/config/apis/cis/v1/types.go#L19. AFAICT this means that in this context, the fields of the VirtualServerStatus struct, will be set to their respective zero values if not explicitly initialized!

[ivankatliarchuk]

Just a suggestion to use early return, example

if strings.ToLower(vs.Status.Status) != "ok" {
		return false
	}

normalizedAddress := strings.ToLower(vs.Status.VSAddress)
return normalizedAddress != "none" && normalizedAddress != ""

[mikejoh]

Good point, changed here: a70d5d0

[ivankatliarchuk]

just a suggestion

if !virtualServer.isReady()

^ This will crash if virtualServer is null))

[mikejoh]

Totally understand this but we would need to embed the f5.VirtualServer struct in our own data type and then add a method to that, in this context it feels a bit overkill? A helper func (as used now) that operates on a *f5.VirtualServer feels like a good middle ground.

[ivankatliarchuk]

it was simply a style suggestion, nice one.

[k8s-ci-robot]

@ivankatliarchuk: changing LGTM is restricted to collaborators

In response to this:

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[mikejoh]

@ivankatliarchuk Btw, do you want me to rebase and squash the commits? Not sure what the usual workflow is!

[ivankatliarchuk]

You could try asking a bot to squash commits https://github.com/kubernetes/community/blob/master/contributors/guide/pull-requests.md#squashing. Not sure if it's mandatory.

As this branch has no conflicts with master rebase is most likely optional.

👋 @mloiseleur am I correct?

[mloiseleur]

It can be configured with labels, see tide/merge-method-squash.

thanks for this review @ivankatliarchuk 👍

/label tide/merge-method-squash
/lgtm
/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: ivankatliarchuk, mloiseleur

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [mloiseleur]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment