feat: performance improvent, memory optimization and cpu optimization (#146)

* feat: performance improvent, memory optimization and cpu optimization

* fix: errors not correctly reported

* fix: return missing error

* chore: remove unnecessary comment

* chore: comment fix

* test: update chart inspector version in tests

* test: mock chart-inspector

* test: fixing test

* test: remove unused code

Author: matteogastaldello

go.mod

@@ -10,7 +10,7 @@ require (
 	github.com/gobuffalo/flect v1.0.3
 	github.com/golang/mock v1.6.0
 	github.com/krateoplatformops/plumbing v0.7.2
-	github.com/krateoplatformops/unstructured-runtime v0.2.7
+	github.com/krateoplatformops/unstructured-runtime v0.2.8
 	github.com/pkg/errors v0.9.1
 	github.com/spf13/pflag v1.0.7
 	github.com/stretchr/testify v1.10.0

go.sum

@@ -178,8 +178,8 @@ github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/krateoplatformops/plumbing v0.7.2 h1:4UuWy9747p9ligMtNEiOOQGsuK6d9lczg7R1no8ERsE=
 github.com/krateoplatformops/plumbing v0.7.2/go.mod h1:mQ/sm0viyKgfR2ARzHuwCpY0rcyMKqCv8a8SOu52yYQ=
-github.com/krateoplatformops/unstructured-runtime v0.2.7 h1:HwvW/0vjLbNmLvYeh4d4EN43UQSMRS2iHacmadZbHs0=
-github.com/krateoplatformops/unstructured-runtime v0.2.7/go.mod h1:19uT87wZzRSjrfk3731Xhdt8ww7vnsXhljy4jk0cuWA=
+github.com/krateoplatformops/unstructured-runtime v0.2.8 h1:Hwvf/aPMM1mSiO+AzlxmybHt5yEe/58D8MtkMPxbBZA=
+github.com/krateoplatformops/unstructured-runtime v0.2.8/go.mod h1:19uT87wZzRSjrfk3731Xhdt8ww7vnsXhljy4jk0cuWA=
 github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0SNc=
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/lann/builder v0.0.0-20180802200727-47ae307949d0 h1:SOEGU9fKiNWd/HOJuq6+3iTQz8KNCLtVX6idSoTLdUw=

internal/chartinspector/chartinspector.go

@@ -42,7 +42,10 @@ type ChartInspector struct {
 var _ ChartInspectorInterface = &ChartInspector{}
 
 func NewChartInspector(server string) ChartInspector {
-	return ChartInspector{server: server, httpClient: http.DefaultClient}
+	httpcli := http.DefaultClient
+	httpcli.Timeout = 20 * time.Second
+
+	return ChartInspector{server: server, httpClient: httpcli}
 }
 
 func (c *ChartInspector) WithHTTPClient(httpClient *http.Client) {

internal/composition/composition.go

@@ -8,6 +8,7 @@ import (
 	"path/filepath"
 	"time"
 
+	"github.com/krateoplatformops/composition-dynamic-controller/internal/chartinspector"
 	compositionMeta "github.com/krateoplatformops/composition-dynamic-controller/internal/meta"
 
 	"github.com/krateoplatformops/composition-dynamic-controller/internal/helmclient"
@@ -59,13 +60,7 @@ const (
 
 var _ controller.ExternalClient = (*handler)(nil)
 
-func NewHandler(cfg *rest.Config, log logging.Logger, pig archive.Getter, event event.APIRecorder, pluralizer pluralizer.PluralizerInterface, rbacgen rbacgen.RBACGenInterface) controller.ExternalClient {
-	dyn, err := dynamic.NewForConfig(cfg)
-	if err != nil {
-		log.Error(err, "Creating dynamic client.")
-		return nil
-	}
-
+func NewHandler(cfg *rest.Config, log logging.Logger, pig archive.Getter, event event.APIRecorder, pluralizer pluralizer.PluralizerInterface, chartInspectorUrl string, saName string, saNamespace string) controller.ExternalClient {
 	val, ok := os.LookupEnv(helmRegistryConfigPathEnvVar)
 	if ok {
 		helmRegistryConfigPath = val
@@ -75,35 +70,46 @@ func NewHandler(cfg *rest.Config, log logging.Logger, pig archive.Getter, event
 
 	return &handler{
 		kubeconfig:        cfg,
-		rbacgen:           rbacgen,
 		pluralizer:        pluralizer,
 		logger:            log,
-		dynamicClient:     dyn,
 		packageInfoGetter: pig,
 		eventRecorder:     event,
+
+		chartInspectorUrl: chartInspectorUrl,
+		saName:            saName,
+		saNamespace:       saNamespace,
 	}
 }
 
 type handler struct {
 	kubeconfig        *rest.Config
-	rbacgen           rbacgen.RBACGenInterface
 	logger            logging.Logger
 	pluralizer        pluralizer.PluralizerInterface
-	dynamicClient     dynamic.Interface
 	packageInfoGetter archive.Getter
 	eventRecorder     event.APIRecorder
+
+	chartInspectorUrl string
+	saName            string
+	saNamespace       string
 }
 
 func (h *handler) Observe(ctx context.Context, mg *unstructured.Unstructured) (controller.ExternalObservation, error) {
+	mg = mg.DeepCopy()
 	log := h.logger.WithValues("op", "Observe").
 		WithValues("apiVersion", mg.GetAPIVersion()).
 		WithValues("kind", mg.GetKind()).
 		WithValues("name", mg.GetName()).
 		WithValues("namespace", mg.GetNamespace())
 
+	dyn, err := dynamic.NewForConfig(h.kubeconfig)
+	if err != nil {
+		log.Error(err, "Creating dynamic client.")
+		return controller.ExternalObservation{}, err
+	}
+
 	updateOpts := tools.UpdateOptions{
 		Pluralizer:    h.pluralizer,
-		DynamicClient: h.dynamicClient,
+		DynamicClient: dyn,
 	}
 
 	compositionMeta.SetReleaseName(mg, mg.GetName())
@@ -117,7 +123,7 @@ func (h *handler) Observe(ctx context.Context, mg *unstructured.Unstructured) (c
 	}
 	// Immediately remove the gracefully paused time annotation if the composition is not gracefully paused.
 	meta.RemoveAnnotations(mg, compositionMeta.AnnotationKeyReconciliationGracefullyPausedTime)
-	mg, err := tools.Update(ctx, mg, updateOpts)
+	mg, err = tools.Update(ctx, mg, updateOpts)
 	if err != nil {
 		log.Error(err, "Updating cr with values")
 		return controller.ExternalObservation{}, fmt.Errorf("updating cr with values: %w", err)
@@ -185,8 +191,11 @@ func (h *handler) Observe(ctx context.Context, mg *unstructured.Unstructured) (c
 		log.Error(err, "Converting GVK to GVR")
 		return controller.ExternalObservation{}, fmt.Errorf("converting GVK to GVR: %w", err)
 	}
+
+	chartInspector := chartinspector.NewChartInspector(h.chartInspectorUrl)
+	rbgen := rbacgen.NewRBACGen(h.saName, h.saNamespace, &chartInspector)
 	// Get Resources and generate RBAC
-	generated, err := h.rbacgen.
+	generated, err := rbgen.
 		WithBaseName(meta.GetReleaseName(mg)).
 		Generate(rbacgen.Parameters{
 			CompositionName:                mg.GetName(),
@@ -200,7 +209,7 @@ func (h *handler) Observe(ctx context.Context, mg *unstructured.Unstructured) (c
 		log.Error(err, "Generating RBAC using chart-inspector")
 		return controller.ExternalObservation{}, err
 	}
-	rbInstaller := rbac.NewRBACInstaller(h.dynamicClient)
+	rbInstaller := rbac.NewRBACInstaller(dyn)
 	err = rbInstaller.ApplyRBAC(generated)
 	if err != nil {
 		log.Error(err, "Installing RBAC")
@@ -218,7 +227,7 @@ func (h *handler) Observe(ctx context.Context, mg *unstructured.Unstructured) (c
 
 	opts := helmchart.UpdateOptions{
 		CheckResourceOptions: helmchart.CheckResourceOptions{
-			DynamicClient: h.dynamicClient,
+			DynamicClient: dyn,
 			Pluralizer:    h.pluralizer,
 		},
 		HelmClient:      hc,
@@ -269,7 +278,7 @@ func (h *handler) Observe(ctx context.Context, mg *unstructured.Unstructured) (c
 		return controller.ExternalObservation{}, err
 	}
 
-	mg, err = tools.UpdateStatus(ctx, mg, updateOpts)
+	_, err = tools.UpdateStatus(ctx, mg, updateOpts)
 	if err != nil {
 		log.Error(err, "Updating cr status with values")
 		return controller.ExternalObservation{}, err
@@ -284,15 +293,22 @@ func (h *handler) Observe(ctx context.Context, mg *unstructured.Unstructured) (c
 }
 
 func (h *handler) Create(ctx context.Context, mg *unstructured.Unstructured) error {
+	mg = mg.DeepCopy()
 	log := h.logger.WithValues("op", "Create").
 		WithValues("apiVersion", mg.GetAPIVersion()).
 		WithValues("kind", mg.GetKind()).
 		WithValues("name", mg.GetName()).
 		WithValues("namespace", mg.GetNamespace())
 
+	dyn, err := dynamic.NewForConfig(h.kubeconfig)
+	if err != nil {
+		log.Error(err, "Creating dynamic client.")
+		return fmt.Errorf("creating dynamic client: %w", err)
+	}
+
 	updateOpts := tools.UpdateOptions{
 		Pluralizer:    h.pluralizer,
-		DynamicClient: h.dynamicClient,
+		DynamicClient: dyn,
 	}
 
 	if _, p := compositionMeta.GetGracefullyPausedTime(mg); p && compositionMeta.IsGracefullyPaused(mg) {
@@ -302,7 +318,7 @@ func (h *handler) Create(ctx context.Context, mg *unstructured.Unstructured) err
 	}
 
 	compositionMeta.SetReleaseName(mg, mg.GetName())
-	mg, err := tools.Update(ctx, mg, updateOpts)
+	mg, err = tools.Update(ctx, mg, updateOpts)
 	if err != nil {
 		log.Error(err, "Updating cr with values")
 		return fmt.Errorf("updating cr with values: %w", err)
@@ -323,8 +339,11 @@ func (h *handler) Create(ctx context.Context, mg *unstructured.Unstructured) err
 		log.Error(err, "Converting GVK to GVR")
 		return fmt.Errorf("converting GVK to GVR: %w", err)
 	}
+
+	chartInspector := chartinspector.NewChartInspector(h.chartInspectorUrl)
+	rbgen := rbacgen.NewRBACGen(h.saName, h.saNamespace, &chartInspector)
 	// Get Resources and generate RBAC
-	generated, err := h.rbacgen.
+	generated, err := rbgen.
 		WithBaseName(meta.GetReleaseName(mg)).
 		Generate(rbacgen.Parameters{
 			CompositionName:                mg.GetName(),
@@ -338,7 +357,7 @@ func (h *handler) Create(ctx context.Context, mg *unstructured.Unstructured) err
 		log.Error(err, "Generating RBAC using chart-inspector")
 		return err
 	}
-	rbInstaller := rbac.NewRBACInstaller(h.dynamicClient)
+	rbInstaller := rbac.NewRBACInstaller(dyn)
 	err = rbInstaller.ApplyRBAC(generated)
 	if err != nil {
 		log.Error(err, "Installing RBAC")
@@ -354,7 +373,7 @@ func (h *handler) Create(ctx context.Context, mg *unstructured.Unstructured) err
 
 	opts := helmchart.InstallOptions{
 		CheckResourceOptions: helmchart.CheckResourceOptions{
-			DynamicClient: h.dynamicClient,
+			DynamicClient: dyn,
 			Pluralizer:    h.pluralizer,
 		},
 		HelmClient:      hc,
@@ -416,15 +435,23 @@ func (h *handler) Create(ctx context.Context, mg *unstructured.Unstructured) err
 }
 
 func (h *handler) Update(ctx context.Context, mg *unstructured.Unstructured) error {
+	mg = mg.DeepCopy()
+
 	log := h.logger.WithValues("op", "Update").
 		WithValues("apiVersion", mg.GetAPIVersion()).
 		WithValues("kind", mg.GetKind()).
 		WithValues("name", mg.GetName()).
 		WithValues("namespace", mg.GetNamespace())
 
+	dyn, err := dynamic.NewForConfig(h.kubeconfig)
+	if err != nil {
+		log.Error(err, "Creating dynamic client.")
+		return fmt.Errorf("creating dynamic client: %w", err)
+	}
+
 	updateOpts := tools.UpdateOptions{
 		Pluralizer:    h.pluralizer,
-		DynamicClient: h.dynamicClient,
+		DynamicClient: dyn,
 	}
 
 	if _, p := compositionMeta.GetGracefullyPausedTime(mg); p && compositionMeta.IsGracefullyPaused(mg) {
@@ -482,7 +509,7 @@ func (h *handler) Update(ctx context.Context, mg *unstructured.Unstructured) err
 		}
 		mg, err = tools.UpdateStatus(ctx, mg, tools.UpdateOptions{
 			Pluralizer:    h.pluralizer,
-			DynamicClient: h.dynamicClient,
+			DynamicClient: dyn,
 		})
 		if err != nil {
 			log.Error(err, "Updating cr status with values")
@@ -501,7 +528,7 @@ func (h *handler) Update(ctx context.Context, mg *unstructured.Unstructured) err
 		}
 		mg, err = tools.UpdateStatus(ctx, mg, tools.UpdateOptions{
 			Pluralizer:    h.pluralizer,
-			DynamicClient: h.dynamicClient,
+			DynamicClient: dyn,
 		})
 		if err != nil {
 			log.Error(err, "Updating cr status with values")
@@ -520,15 +547,23 @@ func (h *handler) Update(ctx context.Context, mg *unstructured.Unstructured) err
 }
 
 func (h *handler) Delete(ctx context.Context, mg *unstructured.Unstructured) error {
+	mg = mg.DeepCopy()
+
 	log := h.logger.WithValues("op", "Delete").
 		WithValues("apiVersion", mg.GetAPIVersion()).
 		WithValues("kind", mg.GetKind()).
 		WithValues("name", mg.GetName()).
 		WithValues("namespace", mg.GetNamespace())
 
+	dyn, err := dynamic.NewForConfig(h.kubeconfig)
+	if err != nil {
+		log.Error(err, "Creating dynamic client.")
+		return fmt.Errorf("creating dynamic client: %w", err)
+	}
+
 	updateOpts := tools.UpdateOptions{
 		Pluralizer:    h.pluralizer,
-		DynamicClient: h.dynamicClient,
+		DynamicClient: dyn,
 	}
 
 	if _, p := compositionMeta.GetGracefullyPausedTime(mg); p && compositionMeta.IsGracefullyPaused(mg) {
@@ -562,7 +597,7 @@ func (h *handler) Delete(ctx context.Context, mg *unstructured.Unstructured) err
 	}
 
 	// Check if the release exists before uninstalling
-	rel, err := helmchart.FindAnyRelease(hc, meta.GetReleaseName(mg))
+	rel, err := helmchart.FindRelease(hc, meta.GetReleaseName(mg))
 	if err != nil {
 		return fmt.Errorf("finding helm release: %w", err)
 	}
@@ -578,7 +613,7 @@ func (h *handler) Delete(ctx context.Context, mg *unstructured.Unstructured) err
 		return fmt.Errorf("uninstalling helm chart: %w", err)
 	}
 
-	rel, err = helmchart.FindAnyRelease(hc, meta.GetReleaseName(mg))
+	rel, err = helmchart.FindRelease(hc, meta.GetReleaseName(mg))
 	if err != nil {
 		log.Error(err, "Finding helm release")
 		return fmt.Errorf("finding helm release: %w", err)
@@ -595,8 +630,10 @@ func (h *handler) Delete(ctx context.Context, mg *unstructured.Unstructured) err
 		log.Error(err, "Converting GVK to GVR")
 		return fmt.Errorf("converting GVK to GVR: %w", err)
 	}
+	chartInspector := chartinspector.NewChartInspector(h.chartInspectorUrl)
+	rbgen := rbacgen.NewRBACGen(h.saName, h.saNamespace, &chartInspector)
 	// Get Resources and generate RBAC
-	generated, err := h.rbacgen.
+	generated, err := rbgen.
 		WithBaseName(meta.GetReleaseName(mg)).
 		Generate(rbacgen.Parameters{
 			CompositionName:                mg.GetName(),
@@ -606,7 +643,11 @@ func (h *handler) Delete(ctx context.Context, mg *unstructured.Unstructured) err
 			CompositionDefinitionNamespace: pkg.CompositionDefinitionInfo.Namespace,
 			CompositionDefintionGVR:        pkg.CompositionDefinitionInfo.GVR,
 		})
-	rbInstaller := rbac.NewRBACInstaller(h.dynamicClient)
+	if err != nil {
+		log.Error(err, "Generating RBAC using chart-inspector")
+		return err
+	}
+	rbInstaller := rbac.NewRBACInstaller(dyn)
 	err = rbInstaller.UninstallRBAC(generated)
 	if err != nil {
 		log.Error(err, "Uninstalling RBAC")
@@ -632,6 +673,12 @@ func (h *handler) helmClientForResource(mg *unstructured.Unstructured, registryA
 		WithValues("name", mg.GetName()).
 		WithValues("namespace", mg.GetNamespace())
 
+	clientSet, err := helmclient.NewCachedClients(h.kubeconfig)
+	if err != nil {
+		log.Error(err, "Creating cached helm client set.")
+		return nil, err
+	}
+
 	opts := &helmclient.Options{
 		Namespace:        mg.GetNamespace(),
 		RepositoryCache:  "/tmp/.helmcache",
@@ -653,10 +700,13 @@ func (h *handler) helmClientForResource(mg *unstructured.Unstructured, registryA
 		RegistryAuth: (registryAuth),
 	}
 
-	return helmclient.NewClientFromRestConf(&helmclient.RestConfClientOptions{
-		Options:    opts,
-		RestConfig: h.kubeconfig,
-	})
+	return helmclient.NewCachedClientFromRestConf(
+		&helmclient.RestConfClientOptions{
+			Options:    opts,
+			RestConfig: h.kubeconfig,
+		},
+		&clientSet,
+	)
 }
 
 func (h *handler) helmClientForResourceWithTransportWrapper(mg *unstructured.Unstructured, registryAuth *helmclient.RegistryAuth, transportWrapper func(http.RoundTripper) http.RoundTripper) (helmclient.Client, error) {
@@ -671,10 +721,19 @@ func (h *handler) helmClientForResourceWithTransportWrapper(mg *unstructured.Uns
 		RegistryAuth:     registryAuth,
 	}
 
-	h.kubeconfig.WrapTransport = transportWrapper
+	clientSet, err := helmclient.NewCachedClients(h.kubeconfig)
+	if err != nil {
+		return nil, err
+	}
 
-	return helmclient.NewClientFromRestConf(&helmclient.RestConfClientOptions{
-		Options:    opts,
-		RestConfig: h.kubeconfig,
-	})
+	cfg := rest.CopyConfig(h.kubeconfig)
+	cfg.WrapTransport = transportWrapper
+
+	return helmclient.NewCachedClientFromRestConf(
+		&helmclient.RestConfClientOptions{
+			Options:    opts,
+			RestConfig: cfg,
+		},
+		&clientSet,
+	)
 }