Merge pull request #4336 from maqiuyujoyce/resource-networkmanagement-connectivitytest-controller

Support direct controller for NetworkManagementConnectivityTest

Author: google-oss-prow[bot]

apis/networkmanagement/v1alpha1/connectivitytest_identity.go

@@ -32,7 +32,7 @@ type ConnectivityTestIdentity struct {
 }
 
 func (i *ConnectivityTestIdentity) String() string {
-	return i.parent.String() + "/connectivitytests/" + i.id
+	return i.parent.String() + "/connectivityTests/" + i.id
 }
 
 func (i *ConnectivityTestIdentity) ID() string {
@@ -106,8 +106,8 @@ func NewConnectivityTestIdentity(ctx context.Context, reader client.Reader, obj
 
 func ParseConnectivityTestExternal(external string) (parent *ConnectivityTestParent, resourceID string, err error) {
 	tokens := strings.Split(external, "/")
-	if len(tokens) != 6 || tokens[0] != "projects" || tokens[2] != "locations" || tokens[4] != "connectivitytests" {
-		return nil, "", fmt.Errorf("format of NetworkManagementConnectivityTest external=%q was not known (use projects/{{projectID}}/locations/{{location}}/connectivitytests/{{connectivitytestID}})", external)
+	if len(tokens) != 6 || tokens[0] != "projects" || tokens[2] != "locations" || tokens[4] != "connectivityTests" {
+		return nil, "", fmt.Errorf("format of NetworkManagementConnectivityTest external=%q was not known (use projects/{{projectID}}/locations/{{location}}/connectivityTests/{{connectivityTestID}})", external)
 	}
 	parent = &ConnectivityTestParent{
 		ProjectID: tokens[1],

apis/networkmanagement/v1alpha1/connectivitytest_reference.go

@@ -32,7 +32,7 @@ var _ refsv1beta1.ExternalNormalizer = &ConnectivityTestRef{}
 // holds the GCP identifier for the KRM object.
 type ConnectivityTestRef struct {
 	// A reference to an externally managed NetworkManagementConnectivityTest resource.
-	// Should be in the format "projects/{{projectID}}/locations/{{location}}/connectivitytests/{{connectivitytestID}}".
+	// Should be in the format "projects/{{projectID}}/locations/{{location}}/connectivityTests/{{connectivityTestID}}".
 	External string `json:"external,omitempty"`
 
 	// The name of a NetworkManagementConnectivityTest resource.

apis/networkmanagement/v1alpha1/connectivitytest_types.go

@@ -245,7 +245,7 @@ type NetworkManagementConnectivityTestStatus struct {
 // NetworkManagementConnectivityTestObservedState is the state of the NetworkManagementConnectivityTest resource as most recently observed in GCP.
 // +kcc:proto=google.cloud.networkmanagement.v1.ConnectivityTest
 type NetworkManagementConnectivityTestObservedState struct {
-	// Required. Source specification of the Connectivity Test.
+	// Source specification of the Connectivity Test.
 	//
 	//  You can use a combination of source IP address, virtual machine
 	//  (VM) instance, or Compute Engine network to uniquely identify
@@ -270,6 +270,27 @@ type NetworkManagementConnectivityTestObservedState struct {
 	// +kcc:proto:field=google.cloud.networkmanagement.v1.ConnectivityTest.source
 	Source *EndpointObservedState `json:"source,omitempty"`
 
+	// Destination specification of the Connectivity Test.
+	//
+	//  You can use a combination of destination IP address, Compute Engine
+	//  VM instance, or VPC network to uniquely identify the destination
+	//  location.
+	//
+	//  Even if the destination IP address is not unique, the source IP
+	//  location is unique. Usually, the analysis can infer the destination
+	//  endpoint from route information.
+	//
+	//  If the destination you specify is a VM instance and the instance has
+	//  multiple network interfaces, then you must also specify either
+	//  a destination IP address  or VPC network to identify the destination
+	//  interface.
+	//
+	//  A reachability analysis proceeds even if the destination location is
+	//  ambiguous. However, the result can include endpoints that you don't
+	//  intend to test.
+	// +kcc:proto:field=google.cloud.networkmanagement.v1.ConnectivityTest.destination
+	Destination *EndpointObservedState `json:"destination,omitempty"`
+
 	// Output only. The display name of a Connectivity Test.
 	// +kcc:proto:field=google.cloud.networkmanagement.v1.ConnectivityTest.display_name
 	DisplayName *string `json:"displayName,omitempty"`

apis/networkmanagement/v1alpha1/zz_generated.deepcopy.go

@@ -726,6 +726,41 @@ spec:
                   createTime:
                     description: Output only. The time the test was created.
                     type: string
+                  destination:
+                    description: |-
+                      Destination specification of the Connectivity Test.
+
+                       You can use a combination of destination IP address, Compute Engine
+                       VM instance, or VPC network to uniquely identify the destination
+                       location.
+
+                       Even if the destination IP address is not unique, the source IP
+                       location is unique. Usually, the analysis can infer the destination
+                       endpoint from route information.
+
+                       If the destination you specify is a VM instance and the instance has
+                       multiple network interfaces, then you must also specify either
+                       a destination IP address  or VPC network to identify the destination
+                       interface.
+
+                       A reachability analysis proceeds even if the destination location is
+                       ambiguous. However, the result can include endpoints that you don't
+                       intend to test.
+                    properties:
+                      forwardingRuleTarget:
+                        description: Output only. Specifies the type of the target
+                          of the forwarding rule.
+                        type: string
+                      loadBalancerID:
+                        description: Output only. ID of the load balancer the forwarding
+                          rule points to. Empty for forwarding rules not related to
+                          load balancers.
+                        type: string
+                      loadBalancerType:
+                        description: Output only. Type of the load balancer the forwarding
+                          rule points to.
+                        type: string
+                    type: object
                   displayName:
                     description: Output only. The display name of a Connectivity Test.
                     type: string
@@ -2939,7 +2974,7 @@ spec:
                     type: object
                   source:
                     description: |-
-                      Required. Source specification of the Connectivity Test.
+                      Source specification of the Connectivity Test.
 
                        You can use a combination of source IP address, virtual machine
                        (VM) instance, or Compute Engine network to uniquely identify

config/crds/resources/apiextensions.k8s.io_v1_customresourcedefinition_networkmanagementconnectivitytests.networkmanagement.cnrm.cloud.google.com.yaml

@@ -900,10 +900,12 @@ func MaybeSkip(t *testing.T, name string, resources []*unstructured.Unstructured
 			case schema.GroupKind{Group: "monitoring.cnrm.cloud.google.com", Kind: "MonitoringServiceLevelObjective"}:
 			case schema.GroupKind{Group: "monitoring.cnrm.cloud.google.com", Kind: "MonitoringUptimeCheckConfig"}:
 
+			case schema.GroupKind{Group: "netapp.cnrm.cloud.google.com", Kind: "NetAppBackupPolicy"}:
+
 			case schema.GroupKind{Group: "networkconnectivity.cnrm.cloud.google.com", Kind: "NetworkConnectivityServiceConnectionPolicy"}:
 			case schema.GroupKind{Group: "networkconnectivity.cnrm.cloud.google.com", Kind: "NetworkConnectivityInternalRange"}:
 
-			case schema.GroupKind{Group: "netapp.cnrm.cloud.google.com", Kind: "NetAppBackupPolicy"}:
+			case schema.GroupKind{Group: "networkmanagement.cnrm.cloud.google.com", Kind: "NetworkManagementConnectivityTest"}:
 
 			case schema.GroupKind{Group: "networkservices.cnrm.cloud.google.com", Kind: "NetworkServicesMesh"}:
 			case schema.GroupKind{Group: "networkservices.cnrm.cloud.google.com", Kind: "NetworkServicesServiceBinding"}:

config/tests/samples/create/harness.go

@@ -50,6 +50,10 @@ func (s *reachabilityService) GetConnectivityTest(ctx context.Context, req *pb.G
 
 	obj := &pb.ConnectivityTest{}
 	if err := s.storage.Get(ctx, fqn, obj); err != nil {
+		if status.Code(err) == codes.NotFound {
+			return nil, status.Errorf(codes.NotFound, "Resource '%s' was not found", fqn)
+		}
+
 		return nil, err
 	}
 	// TODO: Remove these lines, or add default values, this is just a workaround for the test
@@ -127,9 +131,7 @@ func (s *reachabilityService) CreateConnectivityTest(ctx context.Context, req *p
 								DestIpRange: "10.0.0.0/20",
 								DisplayName: "default-route-f17b1d9b115a2c1e",
 								NetworkUri:  "projects/${projectId}/global/networks/default",
-								NextHop:     "network gateway",
 								NextHopType: pb.RouteInfo_NEXT_HOP_NETWORK,
-								RouteScope:  pb.RouteInfo_NETWORK,
 								RouteType:   pb.RouteInfo_SUBNET,
 								Uri:         "projects/${projectId}/global/routes/default-route-f17b1d9b115a2c1e",
 							},
@@ -200,6 +202,7 @@ func (s *reachabilityService) UpdateConnectivityTest(ctx context.Context, req *p
 		}
 	}
 	obj.UpdateTime = timestamppb.New(time.Now())
+	obj.Protocol = "TCP"
 
 	if err := s.storage.Update(ctx, fqn, obj); err != nil {
 		return nil, err

mockgcp/mocknetworkmanagement/connectivitytest.go

@@ -66,5 +66,10 @@ func (s *MockService) NewHTTPMux(ctx context.Context, conn *grpc.ClientConn) (ht
 		return nil, err
 	}
 
+	mux.RewriteError = func(ctx context.Context, error *httpmux.ErrorResponse) {
+		if error.Code == 404 {
+			error.Errors = nil
+		}
+	}
 	return mux, nil
 }

mockgcp/mocknetworkmanagement/service.go

@@ -86,7 +86,7 @@ X-Xss-Protection: 0
             "protocol": "TCP",
             "sourceIp": "10.0.0.1",
             "sourceNetworkUri": "projects/${projectId}/global/networks/default",
-            "sourcePort": 55896
+            "sourcePort": "12345"
           },
           "forwardTraceId": 1,
           "steps": [
@@ -122,9 +122,7 @@ X-Xss-Protection: 0
                 "destIpRange": "10.0.0.0/20",
                 "displayName": "default-route-f17b1d9b115a2c1e",
                 "networkUri": "projects/${projectId}/global/networks/default",
-                "nextHop": "network gateway",
                 "nextHopType": "NEXT_HOP_NETWORK",
-                "routeScope": "NETWORK",
                 "routeType": "SUBNET",
                 "uri": "projects/${projectId}/global/routes/default-route-f17b1d9b115a2c1e"
               },
@@ -188,7 +186,7 @@ X-Xss-Protection: 0
           "protocol": "TCP",
           "sourceIp": "10.0.0.1",
           "sourceNetworkUri": "projects/${projectId}/global/networks/default",
-          "sourcePort": 55896
+          "sourcePort": "12345"
         },
         "forwardTraceId": 1,
         "steps": [
@@ -224,9 +222,7 @@ X-Xss-Protection: 0
               "destIpRange": "10.0.0.0/20",
               "displayName": "default-route-f17b1d9b115a2c1e",
               "networkUri": "projects/${projectId}/global/networks/default",
-              "nextHop": "network gateway",
               "nextHopType": "NEXT_HOP_NETWORK",
-              "routeScope": "NETWORK",
               "routeType": "SUBNET",
               "uri": "projects/${projectId}/global/routes/default-route-f17b1d9b115a2c1e"
             },
@@ -289,7 +285,7 @@ X-Xss-Protection: 0
           "protocol": "TCP",
           "sourceIp": "10.0.0.1",
           "sourceNetworkUri": "projects/${projectId}/global/networks/default",
-          "sourcePort": 55896
+          "sourcePort": "12345"
         },
         "forwardTraceId": 1,
         "steps": [
@@ -325,9 +321,7 @@ X-Xss-Protection: 0
               "destIpRange": "10.0.0.0/20",
               "displayName": "default-route-f17b1d9b115a2c1e",
               "networkUri": "projects/${projectId}/global/networks/default",
-              "nextHop": "network gateway",
               "nextHopType": "NEXT_HOP_NETWORK",
-              "routeScope": "NETWORK",
               "routeType": "SUBNET",
               "uri": "projects/${projectId}/global/routes/default-route-f17b1d9b115a2c1e"
             },
@@ -390,7 +384,7 @@ X-Xss-Protection: 0
           "protocol": "TCP",
           "sourceIp": "10.0.0.1",
           "sourceNetworkUri": "projects/${projectId}/global/networks/default",
-          "sourcePort": 55896
+          "sourcePort": "12345"
         },
         "forwardTraceId": 1,
         "steps": [
@@ -426,9 +420,7 @@ X-Xss-Protection: 0
               "destIpRange": "10.0.0.0/20",
               "displayName": "default-route-f17b1d9b115a2c1e",
               "networkUri": "projects/${projectId}/global/networks/default",
-              "nextHop": "network gateway",
               "nextHopType": "NEXT_HOP_NETWORK",
-              "routeScope": "NETWORK",
               "routeType": "SUBNET",
               "uri": "projects/${projectId}/global/routes/default-route-f17b1d9b115a2c1e"
             },
@@ -483,7 +475,7 @@ Content-Type: application/json
           "protocol": "TCP",
           "sourceIp": "10.0.0.1",
           "sourceNetworkUri": "projects/${projectId}/global/networks/default",
-          "sourcePort": 55896
+          "sourcePort": "12345"
         },
         "forwardTraceId": 1,
         "steps": [
@@ -519,9 +511,7 @@ Content-Type: application/json
               "destIpRange": "10.0.0.0/20",
               "displayName": "default-route-f17b1d9b115a2c1e",
               "networkUri": "projects/${projectId}/global/networks/default",
-              "nextHop": "network gateway",
               "nextHopType": "NEXT_HOP_NETWORK",
-              "routeScope": "NETWORK",
               "routeType": "SUBNET",
               "uri": "projects/${projectId}/global/routes/default-route-f17b1d9b115a2c1e"
             },
@@ -618,7 +608,7 @@ X-Xss-Protection: 0
             "protocol": "TCP",
             "sourceIp": "10.0.0.1",
             "sourceNetworkUri": "projects/${projectId}/global/networks/default",
-            "sourcePort": 55896
+            "sourcePort": "12345"
           },
           "forwardTraceId": 1,
           "steps": [
@@ -654,9 +644,7 @@ X-Xss-Protection: 0
                 "destIpRange": "10.0.0.0/20",
                 "displayName": "default-route-f17b1d9b115a2c1e",
                 "networkUri": "projects/${projectId}/global/networks/default",
-                "nextHop": "network gateway",
                 "nextHopType": "NEXT_HOP_NETWORK",
-                "routeScope": "NETWORK",
                 "routeType": "SUBNET",
                 "uri": "projects/${projectId}/global/routes/default-route-f17b1d9b115a2c1e"
               },
@@ -720,7 +708,7 @@ X-Xss-Protection: 0
           "protocol": "TCP",
           "sourceIp": "10.0.0.1",
           "sourceNetworkUri": "projects/${projectId}/global/networks/default",
-          "sourcePort": 55896
+          "sourcePort": "12345"
         },
         "forwardTraceId": 1,
         "steps": [
@@ -756,9 +744,7 @@ X-Xss-Protection: 0
               "destIpRange": "10.0.0.0/20",
               "displayName": "default-route-f17b1d9b115a2c1e",
               "networkUri": "projects/${projectId}/global/networks/default",
-              "nextHop": "network gateway",
               "nextHopType": "NEXT_HOP_NETWORK",
-              "routeScope": "NETWORK",
               "routeType": "SUBNET",
               "uri": "projects/${projectId}/global/routes/default-route-f17b1d9b115a2c1e"
             },

mockgcp/mocknetworkmanagement/testdata/connectivitytest/crud/_http.log

@@ -145,6 +145,18 @@ func Enum_FromProto[U ProtoEnum](mapCtx *MapContext, v U) *string {
 	return &s
 }
 
+func ZeroBasedEnum_FromProto[U ProtoEnum](mapCtx *MapContext, v U) *string {
+	descriptor := v.Descriptor()
+
+	val := descriptor.Values().ByNumber(protoreflect.EnumNumber(v))
+	if val == nil {
+		mapCtx.Errorf("unknown enum value %d", v)
+		return nil
+	}
+	s := string(val.Name())
+	return &s
+}
+
 func EnumSlice_FromProto[U ProtoEnum](mapCtx *MapContext, in []U) []string {
 	if in == nil {
 		return nil

pkg/controller/direct/maputils.go

@@ -0,0 +1,38 @@
+// Copyright 2024 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// +tool:controller-client
+// proto.service: google.cloud.networkmanagement.v1.ReachabilityService
+
+package networkmanagement
+
+import (
+	"context"
+	"fmt"
+
+	api "cloud.google.com/go/networkmanagement/apiv1"
+	"github.com/GoogleCloudPlatform/k8s-config-connector/pkg/config"
+)
+
+func newReachabilityClient(ctx context.Context, config *config.ControllerConfig) (*api.ReachabilityClient, error) {
+	opts, err := config.RESTClientOptions()
+	if err != nil {
+		return nil, err
+	}
+	client, err := api.NewReachabilityRESTClient(ctx, opts...)
+	if err != nil {
+		return nil, fmt.Errorf("building networkmanagement reachability client: %w", err)
+	}
+	return client, err
+}