CFE-1051: Add the webhook validation for "CapacityReservationGroupID" to "AzureMachineProviderSpec" in openshift/machine-api-operator

[anirudhAgniRedhat]

add the webhook validation for the "CapacityReservationGroupID" field of "AzureMachineProviderSpec" in openshift/machine-api-operator so that Azure capacity reservation can be supported

This is follow-up PR for openshift/api#1866

I have to update the go.mod file to replace openshift/api dependency as the api PR is not merged yet.
I will update the vendor and go.mod file once the reviewers are good with the implementations.
we can merge API PR and remove dependency.

[openshift-ci-robot]

@anirudhAgniRedhat: This pull request references CFE-1051 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.16.0" version, but no target version was set.

In response to this:

add the webhook validation for the "CapacityReservationGroupID" field of "AzureMachineProviderSpec" in openshift/machine-api-operator so that Azure capacity reservation can be supported

This is follow-up PR for openshift/api#1866

I have to update the go.mod file to replace openshift/api dependency as the api PR is not merged yet.
I will update the vendor and go.mod file once the reviewers are good with the implementations.
we can merge API PR and remove dependency.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[JoelSpeed]

This is looking good code wise, but we should be able to get the unit and crds sync checks green, can you take a look at why those are currently not passing?

[anirudhAgniRedhat]

This is looking good code wise, but we should be able to get the unit and crds sync checks green, can you take a look at why those are currently not passing?

@JoelSpeed I checked the tests are failing because I have updated the go.mod file by adding replace github.com/openshift/api => github.com/anirudhAgniRedhat/openshift-api v0.0.2 and running go mod tidy and go mod vendor

The error which has emerged as due to updating vendor that brings the latest dependency changed in openshift/api repository.

The same is the reason for failing tests in openshift/machine-api-provider-azure#107

=== RUN   TestMachineEvents
I0501 22:51:16.812722   14450 session.go:91] No existing vCenter session found, creating new session
    actuator_test.go:162: 
        Expected success, but got an error:
            <*meta.NoKindMatchError | 0xc000dafd40>: 
            no matches for kind "Infrastructure" in version "config.openshift.io/v1"
            {
                GroupKind: {
                    Group: "config.openshift.io",
                    Kind: "Infrastructure",
                },
                SearchedVersions: ["v1"],
            }
--- FAIL: TestMachineEvents (4.27s)

=== RUN   TestPatchMachine
I0501 22:51:22.937439   14450 session.go:91] No existing vCenter session found, creating new session
    machine_scope_test.go:381: 
        Expected success, but got an error:
            <*meta.NoKindMatchError | 0xc0008fa8c0>: 
            no matches for kind "Infrastructure" in version "config.openshift.io/v1"
            {
                GroupKind: {
                    Group: "config.openshift.io",
                    Kind: "Infrastructure",
                },
                SearchedVersions: ["v1"],
            }
--- FAIL: TestPatchMachine (3.23s)

Regarding pull-ci-openshift-machine-api-operator-master-verify-crds-sync it is searching for vendor/github.com/openshift/api/machine/v1beta1/0000_10_machine.crd.yaml but could not find the file in updated vendor directory thats why it is giving me error as cp: cannot stat 'vendor/github.com/openshift/api/machine/v1beta1/0000_10_machine.crd.yaml': No such file or directory

Can you suggest any fix for this?
I guess after merging openshift/api#1866 and upgrading versions could fix this?
Need your review over this.

[JoelSpeed]

This goes in the tools.go file

[JoelSpeed]

Didn't expect this to be in tools, why do we have 2 tools.go in this repo, odd 🤔

[JoelSpeed]

Move these to the root tools.go not this version, not sure why they are separate but it will be cleaner in that top level one. It will remove the need to have two o/api dependencies that could drift

[JoelSpeed]

Changes LGTM bar the replace statement for the API dep, so lets try get this tested with QE and the other 2 PRs

[JoelSpeed]

Will this execute on only Machines or also MachineSets?

We don't typically validate immutability inside providerSpecs since the type is re-used across the Machines and MachineSets and I don't believe we distinguish between the two when this validation code is called

[anirudhAgniRedhat]

@JoelSpeed This is used in both machine and machineset

[anirudhAgniRedhat]

It shouldn't validate machinesets?

[JoelSpeed]

We don't want to validate this as immutable here, since it would affect both machines and machinesets. Lets drop this. With most fields in the machine provider spec, they can be updated, but take no effect, this is standard

[anirudhAgniRedhat]

So should we remove the immutability validation from everywhere? or this validation should be added somewhere else?

[JoelSpeed]

Only downstream, for this feature yes. Where else is it?

[anirudhAgniRedhat]

it is written in openshift/api#1866 in godocs should be remove it from there as well.

[TrilokGeer]

What is significance of this new namespace?

[anirudhAgniRedhat]

@TrilokGeer Have to update this because the existing suite test was failing because the old namespace is forbidden to delete.

[anirudhAgniRedhat]

@JoelSpeed I have reverted the commit for immutability
As the current code architecture is not allowing to add the the immuatbility validation inside providerSpec for machine only.

[JoelSpeed]

/approve
/lgtm

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: JoelSpeed

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [JoelSpeed]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

@anirudhAgniRedhat: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-metal-ipi-ovn-dualstack	31e2a4b	link	false	/test e2e-metal-ipi-ovn-dualstack
ci/prow/e2e-azure-operator	31e2a4b	link	false	/test e2e-azure-operator
ci/prow/e2e-vsphere-operator	31e2a4b	link	false	/test e2e-vsphere-operator
ci/prow/e2e-vsphere-ovn	31e2a4b	link	false	/test e2e-vsphere-ovn
ci/prow/e2e-vsphere-ovn-upgrade	31e2a4b	link	false	/test e2e-vsphere-ovn-upgrade
ci/prow/e2e-vsphere-ovn-serial	31e2a4b	link	false	/test e2e-vsphere-ovn-serial

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[openshift-bot]

[ART PR BUILD NOTIFIER]

This PR has been included in build ose-machine-api-operator-container-v4.17.0-202405221910.p0.ge5c34fe.assembly.stream.el9 for distgit ose-machine-api-operator.
All builds following this will include this PR.