From f76bbf0610c44368d4c060d5c87694f9fb56b1a4 Mon Sep 17 00:00:00 2001 From: Maciej Zimnoch Date: Mon, 16 Dec 2024 17:36:53 +0100 Subject: [PATCH] Add ScyllaDBCluster webhook validation --- .../templates/validatingwebhook.yaml | 1 + .../validation/scylladbcluster_validation.go | 450 ++++ .../scylladbcluster_validation_test.go | 1994 +++++++++++++++++ pkg/cmd/operator/webhooks.go | 4 + .../scylladbcluster_webhook.go | 75 + 5 files changed, 2524 insertions(+) create mode 100644 pkg/api/scylla/validation/scylladbcluster_validation.go create mode 100644 pkg/api/scylla/validation/scylladbcluster_validation_test.go create mode 100644 test/e2e/set/scylladbcluster/scylladbcluster_webhook.go diff --git a/helm/scylla-operator/templates/validatingwebhook.yaml b/helm/scylla-operator/templates/validatingwebhook.yaml index ac9d8f6f5dc..db0670cc50e 100644 --- a/helm/scylla-operator/templates/validatingwebhook.yaml +++ b/helm/scylla-operator/templates/validatingwebhook.yaml @@ -36,3 +36,4 @@ webhooks: - nodeconfigs - scyllaoperatorconfigs - scylladbdatacenters + - scylladbclusters diff --git a/pkg/api/scylla/validation/scylladbcluster_validation.go b/pkg/api/scylla/validation/scylladbcluster_validation.go new file mode 100644 index 00000000000..9b45bdc6b57 --- /dev/null +++ b/pkg/api/scylla/validation/scylladbcluster_validation.go @@ -0,0 +1,450 @@ +// Copyright (c) 2024 ScyllaDB. + +package validation + +import ( + "fmt" + "sort" + "strings" + + scyllav1alpha1 "github.com/scylladb/scylla-operator/pkg/api/scylla/v1alpha1" + "github.com/scylladb/scylla-operator/pkg/controllerhelpers" + "github.com/scylladb/scylla-operator/pkg/helpers/slices" + "github.com/scylladb/scylla-operator/pkg/pointer" + "k8s.io/apimachinery/pkg/api/resource" + apimachineryvalidation "k8s.io/apimachinery/pkg/api/validation" + apimachinerymetav1validation "k8s.io/apimachinery/pkg/apis/meta/v1/validation" + "k8s.io/apimachinery/pkg/util/sets" + apimachineryutilvalidation "k8s.io/apimachinery/pkg/util/validation" + "k8s.io/apimachinery/pkg/util/validation/field" +) + +var ( + SupportedScyllaV1Alpha1ScyllaDBClusterBroadcastAddressTypes = []scyllav1alpha1.BroadcastAddressType{ + scyllav1alpha1.BroadcastAddressTypePodIP, + scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress, + } +) + +func ValidateScyllaDBCluster(sc *scyllav1alpha1.ScyllaDBCluster) field.ErrorList { + allErrs := field.ErrorList{} + + allErrs = append(allErrs, ValidateScyllaDBClusterSpec(&sc.Spec, field.NewPath("spec"))...) + + return allErrs +} + +func ValidateScyllaDBClusterSpec(spec *scyllav1alpha1.ScyllaDBClusterSpec, fldPath *field.Path) field.ErrorList { + allErrs := field.ErrorList{} + + allErrs = append(allErrs, ValidateScyllaDBDatacenterScyllaDB(&spec.ScyllaDB, fldPath.Child("scyllaDB"))...) + allErrs = append(allErrs, ValidateScyllaDBDatacenterScyllaDBManagerAgent(spec.ScyllaDBManagerAgent, fldPath.Child("scyllaDBManagerAgent"))...) + + allErrs = append(allErrs, validateStructSliceFieldUniqueness(spec.Datacenters, func(dcSpec scyllav1alpha1.ScyllaDBClusterDatacenter) string { + return dcSpec.Name + }, "name", fldPath.Child("datacenters"))...) + + if spec.DatacenterTemplate != nil { + allErrs = append(allErrs, ValidateScyllaDBClusterDatacenterTemplate(spec.DatacenterTemplate, fldPath.Child("datacenterTemplate"))...) + } + + for i, dcSpec := range spec.Datacenters { + allErrs = append(allErrs, ValidateScyllaDBClusterDatacenter(dcSpec, fldPath.Child("datacenters").Index(i))...) + } + + if spec.ExposeOptions != nil { + allErrs = append(allErrs, ValidateScyllaDBClusterSpecExposeOptions(spec.ExposeOptions, fldPath.Child("exposeOptions"))...) + } + + if spec.MinTerminationGracePeriodSeconds != nil && *spec.MinTerminationGracePeriodSeconds < 0 { + allErrs = append(allErrs, apimachineryvalidation.ValidateNonnegativeField(int64(*spec.MinTerminationGracePeriodSeconds), fldPath.Child("minTerminationGracePeriodSeconds"))...) + } + + if spec.MinReadySeconds != nil && *spec.MinReadySeconds < 0 { + allErrs = append(allErrs, apimachineryvalidation.ValidateNonnegativeField(int64(*spec.MinReadySeconds), fldPath.Child("minReadySeconds"))...) + } + + return allErrs +} + +func ValidateScyllaDBClusterDatacenter(dc scyllav1alpha1.ScyllaDBClusterDatacenter, fldPath *field.Path) field.ErrorList { + allErrs := field.ErrorList{} + + if len(dc.Name) == 0 { + allErrs = append(allErrs, field.Required(fldPath.Child("name"), "datacenter name must not be empty")) + } + + allErrs = append(allErrs, ValidateScyllaDBClusterDatacenterTemplate(&dc.ScyllaDBClusterDatacenterTemplate, fldPath)...) + + for _, msg := range apimachineryvalidation.NameIsDNSSubdomain(dc.RemoteKubernetesClusterName, false) { + allErrs = append(allErrs, field.Invalid(fldPath.Child("remoteKubernetesClusterName"), dc.RemoteKubernetesClusterName, msg)) + } + + return allErrs +} + +func ValidateScyllaDBClusterDatacenterTemplate(dcTemplate *scyllav1alpha1.ScyllaDBClusterDatacenterTemplate, fldPath *field.Path) field.ErrorList { + allErrs := field.ErrorList{} + + if dcTemplate.RackTemplate != nil { + allErrs = append(allErrs, ValidateScyllaDBDatacenterRackTemplate(dcTemplate.RackTemplate, fldPath.Child("rackTemplate"))...) + } + + allErrs = append(allErrs, validateStructSliceFieldUniqueness(dcTemplate.Racks, func(rack scyllav1alpha1.RackSpec) string { + return rack.Name + }, "name", fldPath.Child("racks"))...) + + for rackIdx, rack := range dcTemplate.Racks { + if len(rack.Name) == 0 { + allErrs = append(allErrs, field.Required(fldPath.Child("racks").Index(rackIdx).Child("name"), "rack name must not be empty")) + } + allErrs = append(allErrs, ValidateScyllaDBDatacenterRackTemplate(&rack.RackTemplate, fldPath.Child("racks").Index(rackIdx))...) + } + + if dcTemplate.TopologyLabelSelector != nil { + allErrs = append(allErrs, apimachinerymetav1validation.ValidateLabels(dcTemplate.TopologyLabelSelector, fldPath.Child("topologyLabelSelector"))...) + } + + if dcTemplate.ScyllaDB != nil { + if dcTemplate.ScyllaDB.Storage != nil { + if dcTemplate.ScyllaDB.Storage.Metadata != nil { + allErrs = append(allErrs, apimachinerymetav1validation.ValidateLabels(dcTemplate.ScyllaDB.Storage.Metadata.Labels, fldPath.Child("scyllaDB", "storage", "metadata", "labels"))...) + allErrs = append(allErrs, apimachineryvalidation.ValidateAnnotations(dcTemplate.ScyllaDB.Storage.Metadata.Annotations, fldPath.Child("scyllaDB", "storage", "metadata", "annotations"))...) + } + + storageCapacity, err := resource.ParseQuantity(dcTemplate.ScyllaDB.Storage.Capacity) + if err != nil { + allErrs = append(allErrs, field.Invalid(fldPath.Child("scyllaDB", "storage", "capacity"), dcTemplate.ScyllaDB.Storage.Capacity, fmt.Sprintf("unable to parse capacity: %v", err))) + } else if storageCapacity.CmpInt64(0) <= 0 { + allErrs = append(allErrs, field.Invalid(fldPath.Child("scyllaDB", "storage", "capacity"), dcTemplate.ScyllaDB.Storage.Capacity, "must be greater than zero")) + } + + if dcTemplate.ScyllaDB.Storage.StorageClassName != nil { + for _, msg := range apimachineryvalidation.NameIsDNSSubdomain(*dcTemplate.ScyllaDB.Storage.StorageClassName, false) { + allErrs = append(allErrs, field.Invalid(fldPath.Child("scyllaDB", "storage", "storageClassName"), *dcTemplate.ScyllaDB.Storage.StorageClassName, msg)) + } + } + } + + if dcTemplate.ScyllaDB.CustomConfigMapRef != nil { + for _, msg := range apimachineryvalidation.NameIsDNSSubdomain(*dcTemplate.ScyllaDB.CustomConfigMapRef, false) { + allErrs = append(allErrs, field.Invalid(fldPath.Child("scyllaDB", "customConfigMapRef"), *dcTemplate.ScyllaDB.CustomConfigMapRef, msg)) + } + } + } + + if dcTemplate.ScyllaDBManagerAgent != nil { + if dcTemplate.ScyllaDBManagerAgent.CustomConfigSecretRef != nil { + for _, msg := range apimachineryvalidation.NameIsDNSSubdomain(*dcTemplate.ScyllaDBManagerAgent.CustomConfigSecretRef, false) { + allErrs = append(allErrs, field.Invalid(fldPath.Child("scyllaDBManagerAgent", "customConfigSecretRef"), *dcTemplate.ScyllaDBManagerAgent.CustomConfigSecretRef, msg)) + } + } + } + + return allErrs +} + +func ValidateScyllaDBClusterSpecExposeOptions(options *scyllav1alpha1.ScyllaDBClusterExposeOptions, fldPath *field.Path) field.ErrorList { + allErrs := field.ErrorList{} + + if options.NodeService != nil { + allErrs = append(allErrs, ValidateScyllaDBClusterNodeService(options.NodeService, fldPath)...) + } + + if options.BroadcastOptions != nil { + allErrs = append(allErrs, ValidateScyllaDBClusterNodeBroadcastOptions(options.BroadcastOptions, options.NodeService, fldPath.Child("broadcastOptions"))...) + } + + return allErrs +} + +func ValidateScyllaDBClusterNodeService(nodeService *scyllav1alpha1.NodeServiceTemplate, fldPath *field.Path) field.ErrorList { + allErrs := field.ErrorList{} + + var supportedServiceTypes = []scyllav1alpha1.NodeServiceType{ + scyllav1alpha1.NodeServiceTypeHeadless, + scyllav1alpha1.NodeServiceTypeLoadBalancer, + } + + if len(nodeService.Type) == 0 { + allErrs = append(allErrs, field.Required(fldPath.Child("nodeService", "type"), fmt.Sprintf("supported values: %s", strings.Join(slices.ConvertSlice(supportedServiceTypes, slices.ToString[scyllav1alpha1.NodeServiceType]), ", ")))) + } else { + allErrs = append(allErrs, validateEnum(nodeService.Type, supportedServiceTypes, fldPath.Child("nodeService", "type"))...) + } + + if nodeService.LoadBalancerClass != nil && len(*nodeService.LoadBalancerClass) != 0 { + for _, msg := range apimachineryutilvalidation.IsQualifiedName(*nodeService.LoadBalancerClass) { + allErrs = append(allErrs, field.Invalid(fldPath.Child("nodeService", "loadBalancerClass"), *nodeService.LoadBalancerClass, msg)) + } + } + + if len(nodeService.Annotations) != 0 { + allErrs = append(allErrs, apimachineryvalidation.ValidateAnnotations(nodeService.Annotations, fldPath.Child("nodeService", "annotations"))...) + } + return allErrs +} + +func ValidateScyllaDBClusterNodeBroadcastOptions(options *scyllav1alpha1.ScyllaDBClusterNodeBroadcastOptions, nodeService *scyllav1alpha1.NodeServiceTemplate, fldPath *field.Path) field.ErrorList { + allErrs := field.ErrorList{} + + var nodeServiceType *scyllav1alpha1.NodeServiceType + if nodeService != nil { + nodeServiceType = pointer.Ptr(nodeService.Type) + } + + var allowedNodeServiceTypesByBroadcastAddressType = map[scyllav1alpha1.BroadcastAddressType][]scyllav1alpha1.NodeServiceType{ + scyllav1alpha1.BroadcastAddressTypePodIP: { + scyllav1alpha1.NodeServiceTypeHeadless, + scyllav1alpha1.NodeServiceTypeLoadBalancer, + }, + scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress: { + scyllav1alpha1.NodeServiceTypeLoadBalancer, + }, + } + + allErrs = append(allErrs, + ValidateScyllaDBDatacenterBroadcastOptions( + options.Clients.Type, + SupportedScyllaV1Alpha1ScyllaDBClusterBroadcastAddressTypes, + scyllav1alpha1.NodeServiceTypeHeadless, + nodeServiceType, + allowedNodeServiceTypesByBroadcastAddressType, + fldPath.Child("clients"), + )..., + ) + + allErrs = append(allErrs, + ValidateScyllaDBDatacenterBroadcastOptions( + options.Nodes.Type, + SupportedScyllaV1Alpha1ScyllaDBClusterBroadcastAddressTypes, + scyllav1alpha1.NodeServiceTypeHeadless, + nodeServiceType, + allowedNodeServiceTypesByBroadcastAddressType, + fldPath.Child("nodes"), + )..., + ) + + return allErrs +} + +func ValidateScyllaDBClusterUpdate(new, old *scyllav1alpha1.ScyllaDBCluster) field.ErrorList { + allErrs := field.ErrorList{} + + allErrs = append(allErrs, ValidateScyllaDBCluster(new)...) + allErrs = append(allErrs, ValidateScyllaDBClusterSpecUpdate(new, old, field.NewPath("spec"))...) + + return allErrs +} + +func ValidateScyllaDBClusterSpecUpdate(new, old *scyllav1alpha1.ScyllaDBCluster, fldPath *field.Path) field.ErrorList { + allErrs := field.ErrorList{} + + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(new.Spec.ClusterName, old.Spec.ClusterName, fldPath.Child("clusterName"))...) + + oldDatacenterNames := slices.ConvertSlice(old.Spec.Datacenters, func(dc scyllav1alpha1.ScyllaDBClusterDatacenter) string { + return dc.Name + }) + newDatacenterNames := slices.ConvertSlice(new.Spec.Datacenters, func(dc scyllav1alpha1.ScyllaDBClusterDatacenter) string { + return dc.Name + }) + + removedDatacenterNames := sets.New(oldDatacenterNames...).Difference(sets.New(newDatacenterNames...)).UnsortedList() + sort.Strings(removedDatacenterNames) + + isDatacenterStatusUpToDate := func(sc *scyllav1alpha1.ScyllaDBCluster, dcStatus scyllav1alpha1.ScyllaDBClusterDatacenterStatus) bool { + return sc.Status.ObservedGeneration != nil && *sc.Status.ObservedGeneration >= sc.Generation && dcStatus.Stale != nil && !*dcStatus.Stale + } + + for _, removedDCName := range removedDatacenterNames { + for i, oldDC := range old.Spec.Datacenters { + if oldDC.Name != removedDCName { + continue + } + + oldDCNodeCount := controllerhelpers.GetScyllaDBClusterDatacenterNodeCount(old, oldDC) + + if oldDCNodeCount != 0 { + allErrs = append(allErrs, field.Forbidden(fldPath.Child("datacenters").Index(i), fmt.Sprintf("datacenter %q can't be removed because it still has nodes that have to be scaled down to zero first", removedDCName))) + continue + } + + oldDCStatus, _, ok := slices.Find(old.Status.Datacenters, func(dcStatus scyllav1alpha1.ScyllaDBClusterDatacenterStatus) bool { + return dcStatus.Name == removedDCName + }) + if !ok { + continue + } + + if oldDCStatus.Nodes != nil && *oldDCStatus.Nodes != 0 { + allErrs = append(allErrs, field.Forbidden(fldPath.Child("datacenters").Index(i), fmt.Sprintf("datacenter %q can't be removed because the nodes are being scaled down", removedDCName))) + continue + } + + if !isDatacenterStatusUpToDate(old, oldDCStatus) { + allErrs = append(allErrs, field.InternalError(fldPath.Child("datacenters").Index(i), fmt.Errorf("datacenters %q can't be removed because its status, that's used to determine node count, is not yet up to date with the generation of this resource; please retry later", removedDCName))) + } + } + } + + type dcRackProperties struct { + datacenter string + rack string + storage *scyllav1alpha1.StorageOptions + fieldPath *field.Path + } + + collectRacks := func(sc *scyllav1alpha1.ScyllaDBCluster) []dcRackProperties { + var racks []dcRackProperties + for dcIdx, dc := range sc.Spec.Datacenters { + if sc.Spec.DatacenterTemplate != nil { + for rackIdx, rack := range sc.Spec.DatacenterTemplate.Racks { + dcr := dcRackProperties{ + datacenter: dc.Name, + rack: rack.Name, + fieldPath: fldPath.Child("datacenterTemplate", "racks").Index(rackIdx), + } + if rack.ScyllaDB != nil { + dcr.storage = rack.ScyllaDB.Storage + } + + racks = append(racks, dcr) + } + } + for rackIdx, rack := range dc.Racks { + dcr := dcRackProperties{ + datacenter: dc.Name, + rack: rack.Name, + fieldPath: fldPath.Child("datacenters").Index(dcIdx).Child("racks").Index(rackIdx), + } + if rack.ScyllaDB != nil { + dcr.storage = rack.ScyllaDB.Storage + } + + racks = append(racks, dcr) + } + } + return racks + } + + newRacks := collectRacks(new) + oldRacks := collectRacks(old) + + removedRacks := slices.Filter(oldRacks, func(odr dcRackProperties) bool { + _, _, ok := slices.Find(newRacks, func(ndr dcRackProperties) bool { + return ndr.rack == odr.rack && ndr.datacenter == odr.datacenter + }) + return !ok + }) + + isRackStatusUpToDate := func(sc *scyllav1alpha1.ScyllaDBCluster, rackStatus scyllav1alpha1.ScyllaDBClusterRackStatus) bool { + return sc.Status.ObservedGeneration != nil && *sc.Status.ObservedGeneration >= sc.Generation && rackStatus.Stale != nil && !*rackStatus.Stale + } + + for _, removedRack := range removedRacks { + oldDCStatus, _, ok := slices.Find(old.Status.Datacenters, func(dcStatus scyllav1alpha1.ScyllaDBClusterDatacenterStatus) bool { + return dcStatus.Name == removedRack.datacenter + }) + if !ok { + continue + } + + oldRackStatus, _, ok := slices.Find(oldDCStatus.Racks, func(rackStatus scyllav1alpha1.ScyllaDBClusterRackStatus) bool { + return rackStatus.Name == removedRack.rack + }) + + if oldRackStatus.Nodes != nil && *oldRackStatus.Nodes != 0 { + allErrs = append(allErrs, field.Forbidden(removedRack.fieldPath, fmt.Sprintf("rack %q can't be removed because the nodes are being scaled down", removedRack.rack))) + continue + } + + if !isRackStatusUpToDate(old, oldRackStatus) { + allErrs = append(allErrs, field.InternalError(removedRack.fieldPath, fmt.Errorf("rack %q can't be removed because its status, that's used to determine node count, is not yet up to date with the generation of this resource; please retry later", removedRack.rack))) + } + } + + var oldDatacenterTemplateStorage, newDatacenterTemplateStorage *scyllav1alpha1.StorageOptions + if old.Spec.DatacenterTemplate != nil && old.Spec.DatacenterTemplate.ScyllaDB != nil { + oldDatacenterTemplateStorage = old.Spec.DatacenterTemplate.ScyllaDB.Storage + } + if new.Spec.DatacenterTemplate != nil && new.Spec.DatacenterTemplate.ScyllaDB != nil { + newDatacenterTemplateStorage = new.Spec.DatacenterTemplate.ScyllaDB.Storage + } + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(newDatacenterTemplateStorage, oldDatacenterTemplateStorage, fldPath.Child("datacenterTemplate", "scyllaDB", "storage"))...) + + var oldDatacenterTemplateRackTemplateStorage, newDatacenterTemplateRackTemplateStorage *scyllav1alpha1.StorageOptions + if old.Spec.DatacenterTemplate != nil && old.Spec.DatacenterTemplate.RackTemplate != nil && old.Spec.DatacenterTemplate.RackTemplate.ScyllaDB != nil { + oldDatacenterTemplateRackTemplateStorage = old.Spec.DatacenterTemplate.RackTemplate.ScyllaDB.Storage + } + if new.Spec.DatacenterTemplate != nil && new.Spec.DatacenterTemplate.RackTemplate != nil && new.Spec.DatacenterTemplate.RackTemplate.ScyllaDB != nil { + newDatacenterTemplateRackTemplateStorage = new.Spec.DatacenterTemplate.RackTemplate.ScyllaDB.Storage + } + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(newDatacenterTemplateRackTemplateStorage, oldDatacenterTemplateRackTemplateStorage, fldPath.Child("datacenterTemplate", "rackTemplate", "scyllaDB", "storage"))...) + + for _, newRack := range newRacks { + var oldRackStorage *scyllav1alpha1.StorageOptions + oldRack, _, ok := slices.Find(oldRacks, func(oldRack dcRackProperties) bool { + return oldRack.datacenter == newRack.datacenter && oldRack.rack == newRack.rack + }) + if ok { + oldRackStorage = oldRack.storage + } + + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(newRack.storage, oldRackStorage, newRack.fieldPath.Child("scyllaDB", "storage"))...) + } + + for dcIdx, newDC := range new.Spec.Datacenters { + var oldDatacenterStorage, newDatacenterStorage *scyllav1alpha1.StorageOptions + var oldDatacenterRackTemplateStorage, newDatacenterRackTemplateStorage *scyllav1alpha1.StorageOptions + + oldDC, _, ok := slices.Find(old.Spec.Datacenters, func(oldDC scyllav1alpha1.ScyllaDBClusterDatacenter) bool { + return oldDC.Name == newDC.Name + }) + if ok { + if oldDC.ScyllaDB != nil { + oldDatacenterStorage = oldDC.ScyllaDB.Storage + } + if oldDC.RackTemplate != nil && oldDC.RackTemplate.ScyllaDB != nil { + oldDatacenterRackTemplateStorage = oldDC.RackTemplate.ScyllaDB.Storage + } + } + + if newDC.ScyllaDB != nil { + newDatacenterStorage = newDC.ScyllaDB.Storage + } + if newDC.RackTemplate != nil && newDC.RackTemplate.ScyllaDB != nil { + newDatacenterRackTemplateStorage = newDC.RackTemplate.ScyllaDB.Storage + } + + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(newDatacenterStorage, oldDatacenterStorage, fldPath.Child("datacenters").Index(dcIdx).Child("scyllaDB", "storage"))...) + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(newDatacenterRackTemplateStorage, oldDatacenterRackTemplateStorage, fldPath.Child("datacenters").Index(dcIdx).Child("rackTemplate", "scyllaDB", "storage"))...) + } + + var oldClientBroadcastAddressType, newClientBroadcastAddressType *scyllav1alpha1.BroadcastAddressType + if old.Spec.ExposeOptions != nil && old.Spec.ExposeOptions.BroadcastOptions != nil { + oldClientBroadcastAddressType = pointer.Ptr(old.Spec.ExposeOptions.BroadcastOptions.Clients.Type) + } + if new.Spec.ExposeOptions != nil && new.Spec.ExposeOptions.BroadcastOptions != nil { + newClientBroadcastAddressType = pointer.Ptr(new.Spec.ExposeOptions.BroadcastOptions.Clients.Type) + } + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(newClientBroadcastAddressType, oldClientBroadcastAddressType, fldPath.Child("exposeOptions", "broadcastOptions", "clients", "type"))...) + + var oldNodesBroadcastAddressType, newNodesBroadcastAddressType *scyllav1alpha1.BroadcastAddressType + if old.Spec.ExposeOptions != nil && old.Spec.ExposeOptions.BroadcastOptions != nil { + oldNodesBroadcastAddressType = pointer.Ptr(old.Spec.ExposeOptions.BroadcastOptions.Nodes.Type) + } + if new.Spec.ExposeOptions != nil && new.Spec.ExposeOptions.BroadcastOptions != nil { + newNodesBroadcastAddressType = pointer.Ptr(new.Spec.ExposeOptions.BroadcastOptions.Nodes.Type) + } + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(newNodesBroadcastAddressType, oldNodesBroadcastAddressType, fldPath.Child("exposeOptions", "broadcastOptions", "nodes", "type"))...) + + var oldNodeServiceType, newNodeServiceType *scyllav1alpha1.NodeServiceType + if old.Spec.ExposeOptions != nil && old.Spec.ExposeOptions.NodeService != nil { + oldNodeServiceType = pointer.Ptr(old.Spec.ExposeOptions.NodeService.Type) + } + if new.Spec.ExposeOptions != nil && new.Spec.ExposeOptions.NodeService != nil { + newNodeServiceType = pointer.Ptr(new.Spec.ExposeOptions.NodeService.Type) + } + allErrs = append(allErrs, apimachineryvalidation.ValidateImmutableField(newNodeServiceType, oldNodeServiceType, fldPath.Child("exposeOptions", "nodeService", "type"))...) + + return allErrs +} diff --git a/pkg/api/scylla/validation/scylladbcluster_validation_test.go b/pkg/api/scylla/validation/scylladbcluster_validation_test.go new file mode 100644 index 00000000000..7003bb94f17 --- /dev/null +++ b/pkg/api/scylla/validation/scylladbcluster_validation_test.go @@ -0,0 +1,1994 @@ +package validation_test + +import ( + "reflect" + "testing" + + "github.com/google/go-cmp/cmp" + scyllav1alpha1 "github.com/scylladb/scylla-operator/pkg/api/scylla/v1alpha1" + "github.com/scylladb/scylla-operator/pkg/api/scylla/validation" + "github.com/scylladb/scylla-operator/pkg/pointer" + metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" + "k8s.io/apimachinery/pkg/util/validation/field" +) + +func TestValidateScyllaDBCluster(t *testing.T) { + t.Parallel() + + newValidScyllaDBCluster := func() *scyllav1alpha1.ScyllaDBCluster { + return &scyllav1alpha1.ScyllaDBCluster{ + ObjectMeta: metav1.ObjectMeta{ + Name: "basic", + UID: "the-uid", + Labels: map[string]string{ + "default-sc-label": "foo", + }, + Annotations: map[string]string{ + "default-sc-annotation": "bar", + }, + }, + Spec: scyllav1alpha1.ScyllaDBClusterSpec{ + ClusterName: pointer.Ptr("basic"), + ScyllaDB: scyllav1alpha1.ScyllaDB{ + Image: "scylladb/scylla:latest", + }, + ScyllaDBManagerAgent: &scyllav1alpha1.ScyllaDBManagerAgent{ + Image: pointer.Ptr("scylladb/scylla-manager-agent:latest"), + }, + DatacenterTemplate: &scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + Racks: []scyllav1alpha1.RackSpec{ + { + Name: "rack", + RackTemplate: scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + }, + }, + }, + }, + Datacenters: []scyllav1alpha1.ScyllaDBClusterDatacenter{ + { + Name: "dc", + RemoteKubernetesClusterName: "rkc", + ScyllaDBClusterDatacenterTemplate: scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + Racks: []scyllav1alpha1.RackSpec{ + { + Name: "rack", + RackTemplate: scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + }, + }, + }, + }, + }, + }, + }, + } + } + + type tableTest struct { + name string + cluster *scyllav1alpha1.ScyllaDBCluster + expectedErrorList field.ErrorList + expectedErrorString string + } + + tests := []tableTest{ + { + name: "valid", + cluster: newValidScyllaDBCluster(), + expectedErrorList: field.ErrorList{}, + expectedErrorString: "", + }, + { + name: "invalid ScyllaDB image", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.Image = "invalid image" + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.scyllaDB.image", BadValue: "invalid image", Detail: "unable to parse image: invalid reference format"}, + }, + expectedErrorString: `spec.scyllaDB.image: Invalid value: "invalid image": unable to parse image: invalid reference format`, + }, + { + name: "empty ScyllaDB image", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.Image = "" + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeRequired, Field: "spec.scyllaDB.image", BadValue: "", Detail: "must not be empty"}, + }, + expectedErrorString: `spec.scyllaDB.image: Required value: must not be empty`, + }, + { + name: "invalid ScyllaDBManagerAgent image", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDBManagerAgent.Image = pointer.Ptr("invalid image") + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.scyllaDBManagerAgent.image", BadValue: "invalid image", Detail: "unable to parse image: invalid reference format"}, + }, + expectedErrorString: `spec.scyllaDBManagerAgent.image: Invalid value: "invalid image": unable to parse image: invalid reference format`, + }, + { + name: "empty ScyllaDBManagerAgent image", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDBManagerAgent.Image = pointer.Ptr("") + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeRequired, Field: "spec.scyllaDBManagerAgent.image", BadValue: "", Detail: "must not be empty"}, + }, + expectedErrorString: `spec.scyllaDBManagerAgent.image: Required value: must not be empty`, + }, + { + name: "two datacenters with same name", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters = append(sc.Spec.Datacenters, *sc.Spec.Datacenters[0].DeepCopy()) + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeDuplicate, Field: "spec.datacenters[1].name", BadValue: "dc"}, + }, + expectedErrorString: `spec.datacenters[1].name: Duplicate value: "dc"`, + }, + { + name: "two racks with same name in datacenter racks", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks = append(sc.Spec.Datacenters[0].Racks, *sc.Spec.Datacenters[0].Racks[0].DeepCopy()) + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeDuplicate, Field: "spec.datacenters[0].racks[1].name", BadValue: "rack"}, + }, + expectedErrorString: `spec.datacenters[0].racks[1].name: Duplicate value: "rack"`, + }, + { + name: "two racks with same name in datacenter template racks", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate = &scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + Racks: []scyllav1alpha1.RackSpec{ + { + Name: "rack", + RackTemplate: scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + }, + }, + { + Name: "rack", + RackTemplate: scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + }, + }, + }, + } + + sc.Spec.Datacenters[0].Racks = nil + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeDuplicate, Field: "spec.datacenterTemplate.racks[1].name", BadValue: "rack"}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[1].name: Duplicate value: "rack"`, + }, + { + name: "empty node service type", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: "", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeRequired, Field: "spec.exposeOptions.nodeService.type", BadValue: "", Detail: `supported values: Headless, LoadBalancer`}, + }, + expectedErrorString: `spec.exposeOptions.nodeService.type: Required value: supported values: Headless, LoadBalancer`, + }, + { + name: "unsupported type of node service", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: "foo", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeNotSupported, Field: "spec.exposeOptions.nodeService.type", BadValue: scyllav1alpha1.NodeServiceType("foo"), Detail: `supported values: "Headless", "LoadBalancer"`}, + }, + expectedErrorString: `spec.exposeOptions.nodeService.type: Unsupported value: "foo": supported values: "Headless", "LoadBalancer"`, + }, + { + name: "invalid load balancer class name in node service template", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeLoadBalancer, + LoadBalancerClass: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.exposeOptions.nodeService.loadBalancerClass", BadValue: "-hello", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + }, + expectedErrorString: `spec.exposeOptions.nodeService.loadBalancerClass: Invalid value: "-hello": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`, + }, + { + name: "EKS NLB LoadBalancerClass is valid", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeLoadBalancer, + LoadBalancerClass: pointer.Ptr("service.k8s.aws/nlb"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{}, + expectedErrorString: "", + }, + { + name: "unsupported type of client broadcast address", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + BroadcastOptions: &scyllav1alpha1.ScyllaDBClusterNodeBroadcastOptions{ + Nodes: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypePodIP, + }, + Clients: scyllav1alpha1.BroadcastOptions{ + Type: "foo", + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeNotSupported, Field: "spec.exposeOptions.broadcastOptions.clients.type", BadValue: scyllav1alpha1.BroadcastAddressType("foo"), Detail: `supported values: "PodIP", "ServiceLoadBalancerIngress"`}, + }, + expectedErrorString: `spec.exposeOptions.broadcastOptions.clients.type: Unsupported value: "foo": supported values: "PodIP", "ServiceLoadBalancerIngress"`, + }, + { + name: "unsupported type of node broadcast address", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + BroadcastOptions: &scyllav1alpha1.ScyllaDBClusterNodeBroadcastOptions{ + Nodes: scyllav1alpha1.BroadcastOptions{ + Type: "foo", + }, + Clients: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypePodIP, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeNotSupported, Field: "spec.exposeOptions.broadcastOptions.nodes.type", BadValue: scyllav1alpha1.BroadcastAddressType("foo"), Detail: `supported values: "PodIP", "ServiceLoadBalancerIngress"`}, + }, + expectedErrorString: `spec.exposeOptions.broadcastOptions.nodes.type: Unsupported value: "foo": supported values: "PodIP", "ServiceLoadBalancerIngress"`, + }, + { + name: "invalid LoadBalancerIngressIP broadcast type when node service is Headless", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeHeadless, + }, + BroadcastOptions: &scyllav1alpha1.ScyllaDBClusterNodeBroadcastOptions{ + Clients: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress, + }, + Nodes: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.exposeOptions.broadcastOptions.clients.type", BadValue: scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress, Detail: `can't broadcast address unavailable within the selected node service type, allowed types for chosen broadcast address type are: [LoadBalancer]`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.exposeOptions.broadcastOptions.nodes.type", BadValue: scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress, Detail: `can't broadcast address unavailable within the selected node service type, allowed types for chosen broadcast address type are: [LoadBalancer]`}, + }, + expectedErrorString: `[spec.exposeOptions.broadcastOptions.clients.type: Invalid value: "ServiceLoadBalancerIngress": can't broadcast address unavailable within the selected node service type, allowed types for chosen broadcast address type are: [LoadBalancer], spec.exposeOptions.broadcastOptions.nodes.type: Invalid value: "ServiceLoadBalancerIngress": can't broadcast address unavailable within the selected node service type, allowed types for chosen broadcast address type are: [LoadBalancer]]`, + }, + { + name: "negative minTerminationGracePeriodSeconds", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.MinTerminationGracePeriodSeconds = pointer.Ptr(int32(-42)) + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.minTerminationGracePeriodSeconds", BadValue: int64(-42), Detail: "must be greater than or equal to 0"}, + }, + expectedErrorString: `spec.minTerminationGracePeriodSeconds: Invalid value: -42: must be greater than or equal to 0`, + }, + { + name: "negative minReadySeconds", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.MinReadySeconds = pointer.Ptr(int32(-42)) + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.minReadySeconds", BadValue: int64(-42), Detail: "must be greater than or equal to 0"}, + }, + expectedErrorString: `spec.minReadySeconds: Invalid value: -42: must be greater than or equal to 0`, + }, + { + name: "minimal alternator cluster passes", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.AlternatorOptions = &scyllav1alpha1.AlternatorOptions{} + return sc + }(), + expectedErrorList: field.ErrorList{}, + expectedErrorString: "", + }, + { + name: "alternator cluster with user certificate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.AlternatorOptions = &scyllav1alpha1.AlternatorOptions{ + ServingCertificate: &scyllav1alpha1.TLSCertificate{ + Type: scyllav1alpha1.TLSCertificateTypeUserManaged, + UserManagedOptions: &scyllav1alpha1.UserManagedTLSCertificateOptions{ + SecretName: "my-tls-certificate", + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{}, + expectedErrorString: "", + }, + { + name: "alternator cluster with invalid certificate type", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.AlternatorOptions = &scyllav1alpha1.AlternatorOptions{ + ServingCertificate: &scyllav1alpha1.TLSCertificate{ + Type: "foo", + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeNotSupported, Field: "spec.scyllaDB.alternator.servingCertificate.type", BadValue: scyllav1alpha1.TLSCertificateType("foo"), Detail: `supported values: "OperatorManaged", "UserManaged"`}, + }, + expectedErrorString: `spec.scyllaDB.alternator.servingCertificate.type: Unsupported value: "foo": supported values: "OperatorManaged", "UserManaged"`, + }, + { + name: "alternator cluster with valid additional domains", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.AlternatorOptions = &scyllav1alpha1.AlternatorOptions{ + ServingCertificate: &scyllav1alpha1.TLSCertificate{ + Type: scyllav1alpha1.TLSCertificateTypeOperatorManaged, + OperatorManagedOptions: &scyllav1alpha1.OperatorManagedTLSCertificateOptions{ + AdditionalDNSNames: []string{"scylla-operator.scylladb.com"}, + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{}, + expectedErrorString: "", + }, + { + name: "alternator cluster with invalid additional domains", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.AlternatorOptions = &scyllav1alpha1.AlternatorOptions{ + ServingCertificate: &scyllav1alpha1.TLSCertificate{ + Type: scyllav1alpha1.TLSCertificateTypeOperatorManaged, + OperatorManagedOptions: &scyllav1alpha1.OperatorManagedTLSCertificateOptions{ + AdditionalDNSNames: []string{"[not a domain]"}, + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.scyllaDB.alternator.servingCertificate.operatorManagedOptions.additionalDNSNames", BadValue: []string{"[not a domain]"}, Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.scyllaDB.alternator.servingCertificate.operatorManagedOptions.additionalDNSNames: Invalid value: []string{"[not a domain]"}: a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "alternator cluster with valid additional IP addresses", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.AlternatorOptions = &scyllav1alpha1.AlternatorOptions{ + ServingCertificate: &scyllav1alpha1.TLSCertificate{ + Type: scyllav1alpha1.TLSCertificateTypeOperatorManaged, + OperatorManagedOptions: &scyllav1alpha1.OperatorManagedTLSCertificateOptions{ + AdditionalIPAddresses: []string{"127.0.0.1", "::1"}, + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{}, + expectedErrorString: "", + }, + { + name: "alternator cluster with invalid additional IP addresses", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ScyllaDB.AlternatorOptions = &scyllav1alpha1.AlternatorOptions{ + ServingCertificate: &scyllav1alpha1.TLSCertificate{ + Type: scyllav1alpha1.TLSCertificateTypeOperatorManaged, + OperatorManagedOptions: &scyllav1alpha1.OperatorManagedTLSCertificateOptions{ + AdditionalIPAddresses: []string{"0.not-an-ip.0.0"}, + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.scyllaDB.alternator.servingCertificate.operatorManagedOptions.additionalIPAddresses", BadValue: []string{"0.not-an-ip.0.0"}, Detail: `must be a valid IP address, (e.g. 10.9.8.7 or 2001:db8::ffff)`}, + }, + expectedErrorString: `spec.scyllaDB.alternator.servingCertificate.operatorManagedOptions.additionalIPAddresses: Invalid value: []string{"0.not-an-ip.0.0"}: must be a valid IP address, (e.g. 10.9.8.7 or 2001:db8::ffff)`, + }, + { + name: "negative rackTemplate nodes in datacenter template", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + Nodes: pointer.Ptr[int32](-42), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.nodes", BadValue: int64(-42), Detail: "must be greater than or equal to 0"}, + }, + expectedErrorString: `spec.datacenterTemplate.rackTemplate.nodes: Invalid value: -42: must be greater than or equal to 0`, + }, + { + name: "negative rack nodes in datacenter template", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].Nodes = pointer.Ptr[int32](-42) + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].nodes", BadValue: int64(-42), Detail: "must be greater than or equal to 0"}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[0].nodes: Invalid value: -42: must be greater than or equal to 0`, + }, + { + name: "invalid topologyLabelSelector in datacenter template", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.TopologyLabelSelector = map[string]string{ + "-123": "*321", + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.topologyLabelSelector", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.topologyLabelSelector", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenterTemplate.topologyLabelSelector: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenterTemplate.topologyLabelSelector: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid topologyLabelSelector in datacenter template rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + TopologyLabelSelector: map[string]string{ + "-123": "*321", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.topologyLabelSelector", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.topologyLabelSelector", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenterTemplate.rackTemplate.topologyLabelSelector: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenterTemplate.rackTemplate.topologyLabelSelector: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid topologyLabelSelector in datacenter template rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].TopologyLabelSelector = map[string]string{ + "-123": "*321", + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].topologyLabelSelector", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].topologyLabelSelector", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenterTemplate.racks[0].topologyLabelSelector: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenterTemplate.racks[0].topologyLabelSelector: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid scyllaDB storage capacity in datacenter template", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "hello", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDB.storage.capacity", BadValue: "hello", Detail: `unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`}, + }, + expectedErrorString: `spec.datacenterTemplate.scyllaDB.storage.capacity: Invalid value: "hello": unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`, + }, + { + name: "invalid scyllaDB storage capacity in datacenter template rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "hello", + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDB.storage.capacity", BadValue: "hello", Detail: `unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`}, + }, + expectedErrorString: `spec.datacenterTemplate.rackTemplate.scyllaDB.storage.capacity: Invalid value: "hello": unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`, + }, + { + name: "invalid scyllaDB storage capacity in datacenter template rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "hello", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDB.storage.capacity", BadValue: "hello", Detail: `unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[0].scyllaDB.storage.capacity: Invalid value: "hello": unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`, + }, + { + name: "invalid negative scyllaDB storage capacity in datacenter template", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "-1Gi", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDB.storage.capacity", BadValue: "-1Gi", Detail: `must be greater than zero`}, + }, + expectedErrorString: `spec.datacenterTemplate.scyllaDB.storage.capacity: Invalid value: "-1Gi": must be greater than zero`, + }, + { + name: "invalid negative scyllaDB storage capacity in datacenter template rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "-1Gi", + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDB.storage.capacity", BadValue: "-1Gi", Detail: `must be greater than zero`}, + }, + expectedErrorString: `spec.datacenterTemplate.rackTemplate.scyllaDB.storage.capacity: Invalid value: "-1Gi": must be greater than zero`, + }, + { + name: "invalid negative scyllaDB storage capacity in datacenter template rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "-1Gi", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDB.storage.capacity", BadValue: "-1Gi", Detail: `must be greater than zero`}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[0].scyllaDB.storage.capacity: Invalid value: "-1Gi": must be greater than zero`, + }, + { + name: "invalid labels in datacenter template scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Labels: map[string]string{ + "-123": "*321", + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDB.storage.metadata.labels", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDB.storage.metadata.labels", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenterTemplate.scyllaDB.storage.metadata.labels: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenterTemplate.scyllaDB.storage.metadata.labels: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid labels in datacenter template rackTemplate scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Labels: map[string]string{ + "-123": "*321", + }, + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDB.storage.metadata.labels", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDB.storage.metadata.labels", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenterTemplate.rackTemplate.scyllaDB.storage.metadata.labels: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenterTemplate.rackTemplate.scyllaDB.storage.metadata.labels: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid labels in datacenter template rack scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Labels: map[string]string{ + "-123": "*321", + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDB.storage.metadata.labels", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDB.storage.metadata.labels", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenterTemplate.racks[0].scyllaDB.storage.metadata.labels: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenterTemplate.racks[0].scyllaDB.storage.metadata.labels: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid annotations in datacenter template scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Annotations: map[string]string{ + "-123": "*321", + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDB.storage.metadata.annotations", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + }, + expectedErrorString: `spec.datacenterTemplate.scyllaDB.storage.metadata.annotations: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`, + }, + { + name: "invalid annotations in datacenter template rackTemplate scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Annotations: map[string]string{ + "-123": "*321", + }, + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDB.storage.metadata.annotations", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + }, + expectedErrorString: `spec.datacenterTemplate.rackTemplate.scyllaDB.storage.metadata.annotations: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`, + }, + { + name: "invalid annotations in datacenter template rack scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Annotations: map[string]string{ + "-123": "*321", + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDB.storage.metadata.annotations", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[0].scyllaDB.storage.metadata.annotations: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`, + }, + { + name: "invalid storageClassName in datacenter template scyllaDB storage", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + StorageClassName: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDB.storage.storageClassName", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.scyllaDB.storage.storageClassName: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid storageClassName in datacenter template rackTemplate scyllaDB storage", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + StorageClassName: pointer.Ptr("-hello"), + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDB.storage.storageClassName", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.rackTemplate.scyllaDB.storage.storageClassName: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid storageClassName in datacenter template rack scyllaDB storage", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + StorageClassName: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDB.storage.storageClassName", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[0].scyllaDB.storage.storageClassName: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigMapRef in scyllaDB template of datacenter template", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + CustomConfigMapRef: pointer.Ptr("-hello"), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDB.customConfigMapRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.scyllaDB.customConfigMapRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigMapRef in scyllaDB template of datacenter template rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + CustomConfigMapRef: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDB.customConfigMapRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.rackTemplate.scyllaDB.customConfigMapRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigMapRef in scyllaDB template of datacenter template rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + CustomConfigMapRef: pointer.Ptr("-hello"), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDB.customConfigMapRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[0].scyllaDB.customConfigMapRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigSecretRef of ScyllaDB Manager Agent in datacenter template", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.ScyllaDBManagerAgent = &scyllav1alpha1.ScyllaDBManagerAgentTemplate{ + CustomConfigSecretRef: pointer.Ptr("-hello"), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDBManagerAgent.customConfigSecretRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.scyllaDBManagerAgent.customConfigSecretRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigSecretRef of ScyllaDB Manager Agent in datacenter template rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDBManagerAgent: &scyllav1alpha1.ScyllaDBManagerAgentTemplate{ + CustomConfigSecretRef: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDBManagerAgent.customConfigSecretRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.rackTemplate.scyllaDBManagerAgent.customConfigSecretRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigSecretRef of ScyllaDB Manager Agent in datacenter template rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate.Racks[0].ScyllaDBManagerAgent = &scyllav1alpha1.ScyllaDBManagerAgentTemplate{ + CustomConfigSecretRef: pointer.Ptr("-hello"), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDBManagerAgent.customConfigSecretRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[0].scyllaDBManagerAgent.customConfigSecretRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "negative rackTemplate nodes", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + Nodes: pointer.Ptr[int32](-42), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.nodes", BadValue: int64(-42), Detail: "must be greater than or equal to 0"}, + }, + expectedErrorString: `spec.datacenters[0].rackTemplate.nodes: Invalid value: -42: must be greater than or equal to 0`, + }, + { + name: "negative rack nodes", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].Nodes = pointer.Ptr[int32](-42) + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].nodes", BadValue: int64(-42), Detail: "must be greater than or equal to 0"}, + }, + expectedErrorString: `spec.datacenters[0].racks[0].nodes: Invalid value: -42: must be greater than or equal to 0`, + }, + { + name: "invalid topologyLabelSelector in datacenter", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].TopologyLabelSelector = map[string]string{ + "-123": "*321", + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].topologyLabelSelector", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].topologyLabelSelector", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenters[0].topologyLabelSelector: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenters[0].topologyLabelSelector: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid topologyLabelSelector in rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + TopologyLabelSelector: map[string]string{ + "-123": "*321", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.topologyLabelSelector", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.topologyLabelSelector", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenters[0].rackTemplate.topologyLabelSelector: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenters[0].rackTemplate.topologyLabelSelector: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid topologyLabelSelector in rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].TopologyLabelSelector = map[string]string{ + "-123": "*321", + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].topologyLabelSelector", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].topologyLabelSelector", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenters[0].racks[0].topologyLabelSelector: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenters[0].racks[0].topologyLabelSelector: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid scyllaDB storage capacity in datacenter", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "hello", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDB.storage.capacity", BadValue: "hello", Detail: `unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`}, + }, + expectedErrorString: `spec.datacenters[0].scyllaDB.storage.capacity: Invalid value: "hello": unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`, + }, + { + name: "invalid scyllaDB storage capacity in rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "hello", + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDB.storage.capacity", BadValue: "hello", Detail: `unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`}, + }, + expectedErrorString: `spec.datacenters[0].rackTemplate.scyllaDB.storage.capacity: Invalid value: "hello": unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`, + }, + { + name: "invalid scyllaDB storage capacity in rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "hello", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDB.storage.capacity", BadValue: "hello", Detail: `unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0].scyllaDB.storage.capacity: Invalid value: "hello": unable to parse capacity: quantities must match the regular expression '^([+-]?[0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$'`, + }, + { + name: "invalid negative scyllaDB storage capacity in datacenter", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "-1Gi", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDB.storage.capacity", BadValue: "-1Gi", Detail: `must be greater than zero`}, + }, + expectedErrorString: `spec.datacenters[0].scyllaDB.storage.capacity: Invalid value: "-1Gi": must be greater than zero`, + }, + { + name: "invalid negative scyllaDB storage capacity in rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "-1Gi", + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDB.storage.capacity", BadValue: "-1Gi", Detail: `must be greater than zero`}, + }, + expectedErrorString: `spec.datacenters[0].rackTemplate.scyllaDB.storage.capacity: Invalid value: "-1Gi": must be greater than zero`, + }, + { + name: "invalid negative scyllaDB storage capacity in rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "-1Gi", + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDB.storage.capacity", BadValue: "-1Gi", Detail: `must be greater than zero`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0].scyllaDB.storage.capacity: Invalid value: "-1Gi": must be greater than zero`, + }, + { + name: "invalid labels in datacenter scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Labels: map[string]string{ + "-123": "*321", + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDB.storage.metadata.labels", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDB.storage.metadata.labels", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenters[0].scyllaDB.storage.metadata.labels: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenters[0].scyllaDB.storage.metadata.labels: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid labels in rackTemplate scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Labels: map[string]string{ + "-123": "*321", + }, + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDB.storage.metadata.labels", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDB.storage.metadata.labels", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenters[0].rackTemplate.scyllaDB.storage.metadata.labels: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenters[0].rackTemplate.scyllaDB.storage.metadata.labels: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid labels in rack scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Labels: map[string]string{ + "-123": "*321", + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDB.storage.metadata.labels", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDB.storage.metadata.labels", BadValue: "*321", Detail: `a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')`}, + }, + expectedErrorString: `[spec.datacenters[0].racks[0].scyllaDB.storage.metadata.labels: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]'), spec.datacenters[0].racks[0].scyllaDB.storage.metadata.labels: Invalid value: "*321": a valid label must be an empty string or consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyValue', or 'my_value', or '12345', regex used for validation is '(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?')]`, + }, + { + name: "invalid annotations in datacenter scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Annotations: map[string]string{ + "-123": "*321", + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDB.storage.metadata.annotations", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + }, + expectedErrorString: `spec.datacenters[0].scyllaDB.storage.metadata.annotations: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`, + }, + { + name: "invalid annotations in rackTemplate scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Annotations: map[string]string{ + "-123": "*321", + }, + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDB.storage.metadata.annotations", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + }, + expectedErrorString: `spec.datacenters[0].rackTemplate.scyllaDB.storage.metadata.annotations: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`, + }, + { + name: "invalid annotations in rack scyllaDB storage metadata", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + Metadata: &scyllav1alpha1.ObjectTemplateMetadata{ + Annotations: map[string]string{ + "-123": "*321", + }, + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDB.storage.metadata.annotations", BadValue: "-123", Detail: `name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0].scyllaDB.storage.metadata.annotations: Invalid value: "-123": name part must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName', or 'my.name', or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]')`, + }, + { + name: "invalid storageClassName in datacenter scyllaDB storage", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + StorageClassName: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDB.storage.storageClassName", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].scyllaDB.storage.storageClassName: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid storageClassName in rackTemplate scyllaDB storage", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + StorageClassName: pointer.Ptr("-hello"), + }, + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDB.storage.storageClassName", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].rackTemplate.scyllaDB.storage.storageClassName: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid storageClassName in rack scyllaDB storage", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + StorageClassName: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDB.storage.storageClassName", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0].scyllaDB.storage.storageClassName: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigMapRef in scyllaDB template of datacenter", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + CustomConfigMapRef: pointer.Ptr("-hello"), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDB.customConfigMapRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].scyllaDB.customConfigMapRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigMapRef in scyllaDB template of rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + CustomConfigMapRef: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDB.customConfigMapRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].rackTemplate.scyllaDB.customConfigMapRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigMapRef in scyllaDB template of rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + CustomConfigMapRef: pointer.Ptr("-hello"), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDB.customConfigMapRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0].scyllaDB.customConfigMapRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigSecretRef of ScyllaDB Manager Agent datacenter", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDBManagerAgent = &scyllav1alpha1.ScyllaDBManagerAgentTemplate{ + CustomConfigSecretRef: pointer.Ptr("-hello"), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDBManagerAgent.customConfigSecretRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].scyllaDBManagerAgent.customConfigSecretRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigSecretRef of ScyllaDB Manager Agent rackTemplate", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDBManagerAgent: &scyllav1alpha1.ScyllaDBManagerAgentTemplate{ + CustomConfigSecretRef: pointer.Ptr("-hello"), + }, + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDBManagerAgent.customConfigSecretRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].rackTemplate.scyllaDBManagerAgent.customConfigSecretRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + { + name: "invalid customConfigSecretRef of ScyllaDB Manager Agent rack", + cluster: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDBManagerAgent = &scyllav1alpha1.ScyllaDBManagerAgentTemplate{ + CustomConfigSecretRef: pointer.Ptr("-hello"), + } + + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDBManagerAgent.customConfigSecretRef", BadValue: "-hello", Detail: `a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0].scyllaDBManagerAgent.customConfigSecretRef: Invalid value: "-hello": a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character (e.g. 'example.com', regex used for validation is '[a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*')`, + }, + } + + for _, test := range tests { + t.Run(test.name, func(t *testing.T) { + t.Parallel() + + errList := validation.ValidateScyllaDBCluster(test.cluster) + if !reflect.DeepEqual(errList, test.expectedErrorList) { + t.Errorf("expected and actual error lists differ: %s", cmp.Diff(test.expectedErrorList, errList)) + } + + var errStr string + if agg := errList.ToAggregate(); agg != nil { + errStr = agg.Error() + } + if !reflect.DeepEqual(errStr, test.expectedErrorString) { + t.Errorf("expected and actual error strings differ: %s", cmp.Diff(test.expectedErrorString, errStr)) + } + }) + } +} + +func TestValidateScyllaDBClusterUpdate(t *testing.T) { + newValidScyllaDBCluster := func() *scyllav1alpha1.ScyllaDBCluster { + return &scyllav1alpha1.ScyllaDBCluster{ + ObjectMeta: metav1.ObjectMeta{ + Name: "basic", + UID: "the-uid", + Labels: map[string]string{ + "default-sc-label": "foo", + }, + Annotations: map[string]string{ + "default-sc-annotation": "bar", + }, + }, + Spec: scyllav1alpha1.ScyllaDBClusterSpec{ + ClusterName: pointer.Ptr("basic"), + ScyllaDB: scyllav1alpha1.ScyllaDB{ + Image: "scylladb/scylla:latest", + }, + ScyllaDBManagerAgent: &scyllav1alpha1.ScyllaDBManagerAgent{ + Image: pointer.Ptr("scylladb/scylla-manager-agent:latest"), + }, + Datacenters: []scyllav1alpha1.ScyllaDBClusterDatacenter{ + { + Name: "dc", + RemoteKubernetesClusterName: "rkc", + ScyllaDBClusterDatacenterTemplate: scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + Racks: []scyllav1alpha1.RackSpec{ + { + Name: "rack", + RackTemplate: scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + }, + }, + }, + }, + }, + }, + }, + } + } + + tests := []struct { + name string + old *scyllav1alpha1.ScyllaDBCluster + new *scyllav1alpha1.ScyllaDBCluster + expectedErrorList field.ErrorList + expectedErrorString string + }{ + { + name: "same as old", + old: newValidScyllaDBCluster(), + new: newValidScyllaDBCluster(), + expectedErrorList: field.ErrorList{}, + expectedErrorString: "", + }, + { + name: "empty rack removed", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].Nodes = pointer.Ptr[int32](0) + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks = nil + return sc + }(), + expectedErrorList: field.ErrorList{}, + expectedErrorString: "", + }, + { + name: "empty rack with members under decommission", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Status = scyllav1alpha1.ScyllaDBClusterStatus{ + Datacenters: []scyllav1alpha1.ScyllaDBClusterDatacenterStatus{ + { + Name: sc.Spec.Datacenters[0].Name, + Racks: []scyllav1alpha1.ScyllaDBClusterRackStatus{ + { + Name: sc.Spec.Datacenters[0].Racks[0].Name, + Nodes: pointer.Ptr[int32](3), + }, + }, + }, + }, + } + + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks = []scyllav1alpha1.RackSpec{} + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeForbidden, Field: "spec.datacenters[0].racks[0]", BadValue: "", Detail: `rack "rack" can't be removed because the nodes are being scaled down`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0]: Forbidden: rack "rack" can't be removed because the nodes are being scaled down`, + }, + { + name: "empty rack with stale status", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Status = scyllav1alpha1.ScyllaDBClusterStatus{ + Datacenters: []scyllav1alpha1.ScyllaDBClusterDatacenterStatus{ + { + Name: sc.Spec.Datacenters[0].Name, + Racks: []scyllav1alpha1.ScyllaDBClusterRackStatus{ + { + Name: sc.Spec.Datacenters[0].Racks[0].Name, + Nodes: pointer.Ptr[int32](0), + Stale: pointer.Ptr(true), + }, + }, + }, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks = []scyllav1alpha1.RackSpec{} + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInternal, Field: "spec.datacenters[0].racks[0]", Detail: `rack "rack" can't be removed because its status, that's used to determine node count, is not yet up to date with the generation of this resource; please retry later`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0]: Internal error: rack "rack" can't be removed because its status, that's used to determine node count, is not yet up to date with the generation of this resource; please retry later`, + }, + { + name: "empty rack with not reconciled generation", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sdc := newValidScyllaDBCluster() + sdc.Generation = 2 + sdc.Status.ObservedGeneration = pointer.Ptr[int64](1) + sdc.Status = scyllav1alpha1.ScyllaDBClusterStatus{ + Datacenters: []scyllav1alpha1.ScyllaDBClusterDatacenterStatus{ + { + Name: sdc.Spec.Datacenters[0].Name, + Racks: []scyllav1alpha1.ScyllaDBClusterRackStatus{ + { + Name: sdc.Spec.Datacenters[0].Racks[0].Name, + Nodes: pointer.Ptr[int32](0), + }, + }, + }, + }, + } + return sdc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks = []scyllav1alpha1.RackSpec{} + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInternal, Field: "spec.datacenters[0].racks[0]", Detail: `rack "rack" can't be removed because its status, that's used to determine node count, is not yet up to date with the generation of this resource; please retry later`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0]: Internal error: rack "rack" can't be removed because its status, that's used to determine node count, is not yet up to date with the generation of this resource; please retry later`, + }, + { + name: "non-empty racks deleted", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks = []scyllav1alpha1.RackSpec{ + func() scyllav1alpha1.RackSpec { + rackSpec := *sc.Spec.Datacenters[0].Racks[0].DeepCopy() + rackSpec.Name = "rack-0" + rackSpec.Nodes = pointer.Ptr[int32](3) + return rackSpec + }(), + func() scyllav1alpha1.RackSpec { + rackSpec := *sc.Spec.Datacenters[0].Racks[0].DeepCopy() + rackSpec.Name = "rack-1" + rackSpec.Nodes = pointer.Ptr[int32](2) + return rackSpec + }(), + func() scyllav1alpha1.RackSpec { + rackSpec := *sc.Spec.Datacenters[0].Racks[0].DeepCopy() + rackSpec.Name = "rack-2" + rackSpec.Nodes = pointer.Ptr[int32](1) + return rackSpec + }(), + } + sc.Status = scyllav1alpha1.ScyllaDBClusterStatus{ + Datacenters: []scyllav1alpha1.ScyllaDBClusterDatacenterStatus{ + { + Name: sc.Spec.Datacenters[0].Name, + Racks: []scyllav1alpha1.ScyllaDBClusterRackStatus{ + { + Name: sc.Spec.Datacenters[0].Racks[0].Name, + Nodes: pointer.Ptr[int32](3), + Stale: pointer.Ptr(false), + }, + { + Name: sc.Spec.Datacenters[0].Racks[1].Name, + Nodes: pointer.Ptr[int32](2), + Stale: pointer.Ptr(false), + }, + { + Name: sc.Spec.Datacenters[0].Racks[2].Name, + Nodes: pointer.Ptr[int32](1), + Stale: pointer.Ptr(false), + }, + }, + Nodes: pointer.Ptr[int32](6), + }, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks = []scyllav1alpha1.RackSpec{} + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeForbidden, Field: "spec.datacenters[0].racks[0]", BadValue: "", Detail: `rack "rack-0" can't be removed because the nodes are being scaled down`}, + &field.Error{Type: field.ErrorTypeForbidden, Field: "spec.datacenters[0].racks[1]", BadValue: "", Detail: `rack "rack-1" can't be removed because the nodes are being scaled down`}, + &field.Error{Type: field.ErrorTypeForbidden, Field: "spec.datacenters[0].racks[2]", BadValue: "", Detail: `rack "rack-2" can't be removed because the nodes are being scaled down`}, + }, + expectedErrorString: `[spec.datacenters[0].racks[0]: Forbidden: rack "rack-0" can't be removed because the nodes are being scaled down, spec.datacenters[0].racks[1]: Forbidden: rack "rack-1" can't be removed because the nodes are being scaled down, spec.datacenters[0].racks[2]: Forbidden: rack "rack-2" can't be removed because the nodes are being scaled down]`, + }, + { + name: "storage specified in datacenter template is immutable", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate = &scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate = &scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: nil, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.scyllaDB.storage", BadValue: (*scyllav1alpha1.StorageOptions)(nil), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.datacenterTemplate.scyllaDB.storage: Invalid value: "null": field is immutable`, + }, + { + name: "storage specified in datacenter template rack template is immutable", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate = &scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + RackTemplate: &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate = &scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + RackTemplate: &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: nil, + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.rackTemplate.scyllaDB.storage", BadValue: (*scyllav1alpha1.StorageOptions)(nil), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.datacenterTemplate.rackTemplate.scyllaDB.storage: Invalid value: "null": field is immutable`, + }, + { + name: "storage specified in datacenter template rack is immutable", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate = &scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + Racks: []scyllav1alpha1.RackSpec{ + { + Name: "foo", + RackTemplate: scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + }, + }, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.DatacenterTemplate = &scyllav1alpha1.ScyllaDBClusterDatacenterTemplate{ + Racks: []scyllav1alpha1.RackSpec{ + { + Name: "foo", + RackTemplate: scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: nil, + }, + }, + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenterTemplate.racks[0].scyllaDB.storage", BadValue: (*scyllav1alpha1.StorageOptions)(nil), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.datacenterTemplate.racks[0].scyllaDB.storage: Invalid value: "null": field is immutable`, + }, + { + name: "storage specified in datacenter is immutable", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: nil, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].scyllaDB.storage", BadValue: (*scyllav1alpha1.StorageOptions)(nil), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.datacenters[0].scyllaDB.storage: Invalid value: "null": field is immutable`, + }, + { + name: "storage specified in datacenter rack template is immutable", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + }, + } + + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].RackTemplate = &scyllav1alpha1.RackTemplate{ + ScyllaDB: &scyllav1alpha1.ScyllaDBTemplate{ + Storage: nil, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].rackTemplate.scyllaDB.storage", BadValue: (*scyllav1alpha1.StorageOptions)(nil), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.datacenters[0].rackTemplate.scyllaDB.storage: Invalid value: "null": field is immutable`, + }, + { + name: "storage specified in datacenter rack is immutable", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: &scyllav1alpha1.StorageOptions{ + Capacity: "1Gi", + }, + } + + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.Datacenters[0].Racks[0].ScyllaDB = &scyllav1alpha1.ScyllaDBTemplate{ + Storage: nil, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.datacenters[0].racks[0].scyllaDB.storage", BadValue: (*scyllav1alpha1.StorageOptions)(nil), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.datacenters[0].racks[0].scyllaDB.storage: Invalid value: "null": field is immutable`, + }, + { + name: "node service type cannot be unset", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeHeadless, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = nil + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.exposeOptions.nodeService.type", BadValue: (*scyllav1alpha1.NodeServiceType)(nil), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.exposeOptions.nodeService.type: Invalid value: "null": field is immutable`, + }, + { + name: "node service type cannot be changed", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeHeadless, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeLoadBalancer, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.exposeOptions.nodeService.type", BadValue: pointer.Ptr(scyllav1alpha1.NodeServiceTypeLoadBalancer), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.exposeOptions.nodeService.type: Invalid value: "LoadBalancer": field is immutable`, + }, + { + name: "clients broadcast address type cannot be changed", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeLoadBalancer, + }, + BroadcastOptions: &scyllav1alpha1.ScyllaDBClusterNodeBroadcastOptions{ + Clients: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypePodIP, + }, + Nodes: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypePodIP, + }, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeLoadBalancer, + }, + BroadcastOptions: &scyllav1alpha1.ScyllaDBClusterNodeBroadcastOptions{ + Clients: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress, + }, + Nodes: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypePodIP, + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.exposeOptions.broadcastOptions.clients.type", BadValue: pointer.Ptr(scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.exposeOptions.broadcastOptions.clients.type: Invalid value: "ServiceLoadBalancerIngress": field is immutable`, + }, + { + name: "nodes broadcast address type cannot be changed", + old: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeLoadBalancer, + }, + BroadcastOptions: &scyllav1alpha1.ScyllaDBClusterNodeBroadcastOptions{ + Clients: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypePodIP, + }, + Nodes: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypePodIP, + }, + }, + } + return sc + }(), + new: func() *scyllav1alpha1.ScyllaDBCluster { + sc := newValidScyllaDBCluster() + sc.Spec.ExposeOptions = &scyllav1alpha1.ScyllaDBClusterExposeOptions{ + NodeService: &scyllav1alpha1.NodeServiceTemplate{ + Type: scyllav1alpha1.NodeServiceTypeLoadBalancer, + }, + BroadcastOptions: &scyllav1alpha1.ScyllaDBClusterNodeBroadcastOptions{ + Clients: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypePodIP, + }, + Nodes: scyllav1alpha1.BroadcastOptions{ + Type: scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress, + }, + }, + } + return sc + }(), + expectedErrorList: field.ErrorList{ + &field.Error{Type: field.ErrorTypeInvalid, Field: "spec.exposeOptions.broadcastOptions.nodes.type", BadValue: pointer.Ptr(scyllav1alpha1.BroadcastAddressTypeServiceLoadBalancerIngress), Detail: `field is immutable`}, + }, + expectedErrorString: `spec.exposeOptions.broadcastOptions.nodes.type: Invalid value: "ServiceLoadBalancerIngress": field is immutable`, + }, + } + + for _, test := range tests { + t.Run(test.name, func(t *testing.T) { + errList := validation.ValidateScyllaDBClusterUpdate(test.new, test.old) + if !reflect.DeepEqual(errList, test.expectedErrorList) { + t.Errorf("expected and actual error lists differ: %s", cmp.Diff(test.expectedErrorList, errList)) + } + + errStr := "" + if agg := errList.ToAggregate(); agg != nil { + errStr = agg.Error() + } + if !reflect.DeepEqual(errStr, test.expectedErrorString) { + t.Errorf("expected and actual error strings differ: %s", cmp.Diff(test.expectedErrorString, errStr)) + } + }) + } +} diff --git a/pkg/cmd/operator/webhooks.go b/pkg/cmd/operator/webhooks.go index 59cb59946bf..e314e386a75 100644 --- a/pkg/cmd/operator/webhooks.go +++ b/pkg/cmd/operator/webhooks.go @@ -53,6 +53,10 @@ var ( ValidateCreateFunc: validation.ValidateScyllaDBDatacenter, ValidateUpdateFunc: validation.ValidateScyllaDBDatacenterUpdate, }, + scyllav1alpha1.GroupVersion.WithResource("scylladbclusters"): &GenericValidator[*scyllav1alpha1.ScyllaDBCluster]{ + ValidateCreateFunc: validation.ValidateScyllaDBCluster, + ValidateUpdateFunc: validation.ValidateScyllaDBClusterUpdate, + }, } ) diff --git a/test/e2e/set/scylladbcluster/scylladbcluster_webhook.go b/test/e2e/set/scylladbcluster/scylladbcluster_webhook.go new file mode 100644 index 00000000000..0fdf1643e95 --- /dev/null +++ b/test/e2e/set/scylladbcluster/scylladbcluster_webhook.go @@ -0,0 +1,75 @@ +// Copyright (c) 2024 ScyllaDB. + +package scylladbcluster + +import ( + "context" + "fmt" + + g "github.com/onsi/ginkgo/v2" + o "github.com/onsi/gomega" + scyllav1 "github.com/scylladb/scylla-operator/pkg/api/scylla/v1" + scyllav1alpha1 "github.com/scylladb/scylla-operator/pkg/api/scylla/v1alpha1" + "github.com/scylladb/scylla-operator/test/e2e/framework" + "github.com/scylladb/scylla-operator/test/e2e/utils" + "k8s.io/apimachinery/pkg/api/errors" + metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" + "k8s.io/apiserver/pkg/storage/names" +) + +var _ = g.Describe("ScyllaDBCluster webhook", func() { + f := framework.NewFramework("scylladbcluster") + + g.It("should forbid invalid requests", func() { + + if framework.TestContext.ScyllaClusterOptions != nil { + if framework.TestContext.ScyllaClusterOptions.ExposeOptions.NodeServiceType == scyllav1.NodeServiceTypeClusterIP || + framework.TestContext.ScyllaClusterOptions.ExposeOptions.ClientsBroadcastAddressType == scyllav1.BroadcastAddressTypeServiceClusterIP || + framework.TestContext.ScyllaClusterOptions.ExposeOptions.NodesBroadcastAddressType == scyllav1.BroadcastAddressTypeServiceClusterIP { + g.Skip("ScyllaDBCluster doesn't support exposure via ClusterIP, it won't pass validation") + } + } + + ctx, cancel := context.WithTimeout(context.Background(), testTimeout) + defer cancel() + + rkcName := fmt.Sprintf("%s-0", f.Namespace()) + framework.By("Creating RemoteKubernetesCluster %q with credentials to cluster #0", rkcName) + rkc, err := utils.GetRemoteKubernetesClusterWithOperatorClusterRole(ctx, f.KubeAdminClient(), f.AdminClientConfig(), rkcName, f.Namespace()) + o.Expect(err).NotTo(o.HaveOccurred()) + + rkc, err = f.ScyllaAdminClient().ScyllaV1alpha1().RemoteKubernetesClusters().Create(ctx, rkc, metav1.CreateOptions{}) + o.Expect(err).NotTo(o.HaveOccurred()) + + validSC := f.GetDefaultScyllaDBCluster([]*scyllav1alpha1.RemoteKubernetesCluster{rkc}) + validSC.Name = names.SimpleNameGenerator.GenerateName(validSC.GenerateName) + + framework.By("Rejecting a creation of ScyllaDBCluster with duplicated datacenters") + duplicatedDatacentersSC := validSC.DeepCopy() + duplicatedDatacentersSC.Spec.Datacenters = append(duplicatedDatacentersSC.Spec.Datacenters, *duplicatedDatacentersSC.Spec.Datacenters[0].DeepCopy()) + _, err = f.ScyllaClient().ScyllaV1alpha1().ScyllaDBClusters(f.Namespace()).Create(ctx, duplicatedDatacentersSC, metav1.CreateOptions{}) + o.Expect(err).To(o.Equal(&errors.StatusError{ErrStatus: metav1.Status{ + Status: "Failure", + Message: fmt.Sprintf(`admission webhook "webhook.scylla.scylladb.com" denied the request: ScyllaDBCluster.scylla.scylladb.com %q is invalid: spec.datacenters[1].name: Duplicate value: %q`, duplicatedDatacentersSC.Name, duplicatedDatacentersSC.Spec.Datacenters[1].Name), + Reason: "Invalid", + Details: &metav1.StatusDetails{ + Name: duplicatedDatacentersSC.Name, + Group: "scylla.scylladb.com", + Kind: "ScyllaDBCluster", + UID: "", + Causes: []metav1.StatusCause{ + { + Type: "FieldValueDuplicate", + Message: fmt.Sprintf(`Duplicate value: %q`, duplicatedDatacentersSC.Spec.Datacenters[1].Name), + Field: "spec.datacenters[1].name", + }, + }, + }, + Code: 422, + }})) + + framework.By("Accepting a creation of valid ScyllaCluster") + validSC, err = f.ScyllaClient().ScyllaV1alpha1().ScyllaDBClusters(f.Namespace()).Create(ctx, validSC, metav1.CreateOptions{}) + o.Expect(err).NotTo(o.HaveOccurred()) + }) +})