vmware-labs · gmrodgers · Apr 6, 2022 · Apr 7, 2022 · Apr 8, 2022 · Apr 15, 2022
diff --git a/README.md b/README.md
@@ -42,9 +42,11 @@ The parent is responsible for:
 - updates the resource status if it was modified
 - logging the reconcilers activities
 - records events for mutations and errors
+- adding and removing a finalizer if needed
 
 The implementor is responsible for:
 - defining the set of sub reconcilers
+- providing instructions on how to clean up on deletion if needed
 
 **Example:**
 

diff --git a/reconcilers/reconcilers.go b/reconcilers/reconcilers.go
@@ -25,6 +25,7 @@ import (
 	ctrl "sigs.k8s.io/controller-runtime"
 	"sigs.k8s.io/controller-runtime/pkg/builder"
 	"sigs.k8s.io/controller-runtime/pkg/client"
+	"sigs.k8s.io/controller-runtime/pkg/controller/controllerutil"
 	"sigs.k8s.io/controller-runtime/pkg/reconcile"
 	"sigs.k8s.io/controller-runtime/pkg/webhook"
 
@@ -70,9 +71,18 @@ type ParentReconciler struct {
 
 	// Reconciler is called for each reconciler request with the parent
 	// resource being reconciled. Typically, Reconciler is a Sequence of
-	// multiple SubReconcilers.
+	// multiple SubReconcilers.  It is not called on a delete request.
 	Reconciler SubReconciler
 
+	// Finalize is called on a delete request.  Typically, Finalize cleans
+	// up any state, created by previous reconciles, of which the parent is
+	// not a Kubernetes owner.
+	//
+	// Expected function signature:
+	//     func(ctx context.Context, parent client.Object) error
+	// +optional
+	Finalize interface{}
+
 	Config
 }
 
@@ -83,9 +93,32 @@ func (r *ParentReconciler) SetupWithManager(ctx context.Context, mgr ctrl.Manage
 	if err := r.Reconciler.SetupWithManager(ctx, mgr, bldr); err != nil {
 		return err
 	}
+
+	if err := r.validate(ctx); err != nil {
+		return err
+	}
+
 	return bldr.Complete(r)
 }
 
+func (r *ParentReconciler) validate(ctx context.Context) error {
+	castParentType := RetrieveCastParentType(ctx)
+	// validate Finalize function signature:
+	//     nil
+	//     func(ctx context.Context, parent client.Object) error
+	if r.Finalize != nil {
+		fn := reflect.TypeOf(r.Finalize)
+		if fn.NumIn() != 2 || fn.NumOut() != 1 ||
+			!reflect.TypeOf((*context.Context)(nil)).Elem().AssignableTo(fn.In(0)) ||
+			!reflect.TypeOf(castParentType).AssignableTo(fn.In(1)) ||
+			!reflect.TypeOf((*error)(nil)).Elem().AssignableTo(fn.Out(0)) {
+			return fmt.Errorf("ParentReconciler Finalize must have correct signature: func(context.Context, %s) error, found: %s", reflect.TypeOf(castParentType), fn)
+		}
+	}
+
+	return nil
+}
+
 func (r *ParentReconciler) Reconcile(ctx context.Context, req ctrl.Request) (ctrl.Result, error) {
 	ctx = WithStash(ctx)
 	log := r.Log.WithValues("request", req.NamespacedName)
@@ -117,6 +150,7 @@ func (r *ParentReconciler) Reconcile(ctx context.Context, req ctrl.Request) (ctr
 			initializeConditions.Call([]reflect.Value{})
 		}
 	}
+
 	result, err := r.reconcile(ctx, parent)
 
 	if r.hasStatus(originalParent) {
@@ -137,12 +171,41 @@ func (r *ParentReconciler) Reconcile(ctx context.Context, req ctrl.Request) (ctr
 				"Updated status")
 		}
 	}
+
+	if !equality.Semantic.DeepEqual(parent.GetFinalizers(), originalParent.GetFinalizers()) {
+		log.Info("updating finalizers", "diff", cmp.Diff(parent.GetFinalizers(), originalParent.GetFinalizers()))
+		if updateErr := r.Update(ctx, parent); updateErr != nil {
+			log.Error(updateErr, "unable to update", typeName(r.Type), parent)
+			r.Recorder.Eventf(parent, corev1.EventTypeWarning, "UpdateFailed",
+				"Failed to update: %v", updateErr)
+			return ctrl.Result{}, updateErr
+		}
+		r.Recorder.Eventf(parent, corev1.EventTypeNormal, "Updated", "Updated")
+	}
+
 	// return original reconcile result
 	return result, err
 }
 
 func (r *ParentReconciler) reconcile(ctx context.Context, parent client.Object) (ctrl.Result, error) {
+	finalizer := fmt.Sprintf("%s/reconciler-runtime-finalize", parent.GetObjectKind().GroupVersionKind().Group)
-	finalizer := fmt.Sprintf("%s/reconciler-runtime-finalize", parent.GetObjectKind().GroupVersionKind().Group)
+	finalizer := fmt.Sprintf("%s/reconciler-runtime-finalizer", parent.GetObjectKind().GroupVersionKind().Group)
-	finalizer := fmt.Sprintf("%s/reconciler-runtime-finalize", parent.GetObjectKind().GroupVersionKind().Group)
+	finalizer := fmt.Sprintf("%s/reconciler-runtime-finalizer", parent.GetObjectKind().GroupVersionKind().Group)
+	if r.Finalize == nil {
+		controllerutil.RemoveFinalizer(parent, finalizer)
+	} else {
+		controllerutil.AddFinalizer(parent, finalizer)
+	}
+
+	if r.Finalize == nil && parent.GetDeletionTimestamp() != nil {
+		return ctrl.Result{}, nil
+	}
+
 	if parent.GetDeletionTimestamp() != nil {
+		if err := r.finalize(ctx, parent); err != nil {
+			return ctrl.Result{}, err
+		}
+
+		controllerutil.RemoveFinalizer(parent, finalizer)
+
 		return ctrl.Result{}, nil
 	}
 
@@ -154,6 +217,19 @@ func (r *ParentReconciler) reconcile(ctx context.Context, parent client.Object)
 	r.copyGeneration(parent)
 	return result, nil
 }
+
+func (r *ParentReconciler) finalize(ctx context.Context, parent client.Object) error {
+	fn := reflect.ValueOf(r.Finalize)
+	out := fn.Call([]reflect.Value{
+		reflect.ValueOf(ctx),
+		reflect.ValueOf(parent),
+	})
+	if !out[0].IsNil() {
+		return out[0].Interface().(error)
+	}
+	return nil
+}
+
 func (r *ParentReconciler) hasStatus(obj client.Object) bool {
 	return reflect.ValueOf(obj).Elem().FieldByName("Status").IsValid()
 }

diff --git a/reconcilers/reconcilers_test.go b/reconcilers/reconcilers_test.go
@@ -95,6 +95,7 @@ func TestParentReconciler(t *testing.T) {
 			)
 		})
 	deletedAt := metav1.NewTime(time.UnixMilli(2000))
+	const finalizer = "testing.reconciler.runtime/reconciler-runtime-finalize"
 
 	rts := rtesting.ReconcilerTestSuite{{
 		Name: "resource does not exist",
@@ -302,14 +303,170 @@ func TestParentReconciler(t *testing.T) {
 				}
 			},
 		},
+	}, {
+		Name: "has Finalize",
+		Key:  testKey,
+		GivenObjects: []client.Object{
+			resource,
+		},
+		ExpectUpdates: []client.Object{
+			resource.MetadataDie(func(d *diemetav1.ObjectMetaDie) {
+				d.Finalizers(finalizer)
+			}).SpecDie(func(d *dies.TestResourceSpecDie) {
+				d.AddField("Defaulter", "ran")
+			}),
+		},
+		ExpectEvents: []rtesting.Event{
+			rtesting.NewEvent(resource, scheme, corev1.EventTypeNormal, "Updated", `Updated`),
+		},
+		Metadata: map[string]interface{}{
+			"SubReconciler": func(t *testing.T, c reconcilers.Config) reconcilers.SubReconciler {
+				return &reconcilers.Sequence{}
+			},
+			"Finalize": func(ctx context.Context, parent *resources.TestResource) error {
+				return nil
+			},
+		},
+	}, {
+		Name: "has finalizer",
+		Key:  testKey,
+		GivenObjects: []client.Object{
+			resource.MetadataDie(func(d *diemetav1.ObjectMetaDie) {
+				d.Finalizers(finalizer)
+			}),
+		},
+		ExpectUpdates: []client.Object{
+			resource.MetadataDie(func(d *diemetav1.ObjectMetaDie) {
+				d.Finalizers()
+			}).SpecDie(func(d *dies.TestResourceSpecDie) {
+				d.AddField("Defaulter", "ran")
+			}),
+		},
+		ExpectEvents: []rtesting.Event{
+			rtesting.NewEvent(resource, scheme, corev1.EventTypeNormal, "Updated", `Updated`),
+		},
+		Metadata: map[string]interface{}{
+			"SubReconciler": func(t *testing.T, c reconcilers.Config) reconcilers.SubReconciler {
+				return &reconcilers.Sequence{}
+			},
+		},
+	}, {
+		Name: "has Finalize and has finalizer",
+		Key:  testKey,
+		GivenObjects: []client.Object{
+			resource.MetadataDie(func(d *diemetav1.ObjectMetaDie) {
+				d.Finalizers(finalizer)
+			}),
+		},
+		Metadata: map[string]interface{}{
+			"SubReconciler": func(t *testing.T, c reconcilers.Config) reconcilers.SubReconciler {
+				return &reconcilers.Sequence{}
+			},
+			"Finalize": func(ctx context.Context, parent *resources.TestResource) error {
+				return nil
+			},
+		},
+	}, {
+		Name: "has finalize, has finalizer, and is deleted",
+		Key:  testKey,
+		GivenObjects: []client.Object{
+			resource.MetadataDie(func(d *diemetav1.ObjectMetaDie) {
+				d.DeletionTimestamp(&deletedAt)
+				d.Finalizers(finalizer)
+			}),
+		},
+		ExpectEvents: []rtesting.Event{
+			rtesting.NewEvent(resource, scheme, corev1.EventTypeNormal, "Updated", `Updated`),
+		},
+		ExpectUpdates: []client.Object{
+			resource.MetadataDie(func(d *diemetav1.ObjectMetaDie) {
+				d.DeletionTimestamp(&deletedAt)
+				d.Finalizers()
+			}).SpecDie(func(d *dies.TestResourceSpecDie) {
+				d.AddField("Defaulter", "ran")
+			}),
+		},
+		Metadata: map[string]interface{}{
+			"SubReconciler": func(t *testing.T, c reconcilers.Config) reconcilers.SubReconciler {
+				return &reconcilers.Sequence{}
+			},
+			"Finalize": func(ctx context.Context, parent *resources.TestResource) error {
+				return nil
+			},
+		},
+	}, {
+		Name: "Finalize erred",
+		Key:  testKey,
+		GivenObjects: []client.Object{
+			resource.MetadataDie(func(d *diemetav1.ObjectMetaDie) {
+				d.DeletionTimestamp(&deletedAt)
+				d.Finalizers(finalizer)
+			}),
+		},
+		Metadata: map[string]interface{}{
+			"SubReconciler": func(t *testing.T, c reconcilers.Config) reconcilers.SubReconciler {
+				return &reconcilers.Sequence{}
+			},
+			"Finalize": func(ctx context.Context, parent *resources.TestResource) error {
+				return fmt.Errorf("Finalize error")
+			},
+		},
+		ShouldErr: true,
+	}, {
+		Name: "has Finalize and status",
+		Key:  testKey,
+		GivenObjects: []client.Object{
+			resource,
+		},
+		ExpectUpdates: []client.Object{
+			resource.MetadataDie(func(d *diemetav1.ObjectMetaDie) {
+				d.Finalizers(finalizer)
+			}).SpecDie(func(d *dies.TestResourceSpecDie) {
+				d.AddField("Defaulter", "ran")
+			}).StatusDie(func(d *dies.TestResourceStatusDie) {
+				d.AddField("Reconciler", "ran")
+			}),
+		},
+		ExpectEvents: []rtesting.Event{
+			rtesting.NewEvent(resource, scheme, corev1.EventTypeNormal, "StatusUpdated",
+				`Updated status`),
+			rtesting.NewEvent(resource, scheme, corev1.EventTypeNormal, "Updated", `Updated`),
+		},
+		ExpectStatusUpdates: []client.Object{
+			resource.StatusDie(func(d *dies.TestResourceStatusDie) {
+				d.AddField("Reconciler", "ran")
+			}),
+		},
+		Metadata: map[string]interface{}{
+			"SubReconciler": func(t *testing.T, c reconcilers.Config) reconcilers.SubReconciler {
+				return &reconcilers.SyncReconciler{
+					Config: c,
+					Sync: func(ctx context.Context, parent *resources.TestResource) error {
+						if parent.Status.Fields == nil {
+							parent.Status.Fields = map[string]string{}
+						}
+						parent.Status.Fields["Reconciler"] = "ran"
+						return nil
+					},
+				}
+			},
+			"Finalize": func(ctx context.Context, parent *resources.TestResource) error {
+				return nil
+			},
+		},
 	}}
 
 	rts.Test(t, scheme, func(t *testing.T, rtc *rtesting.ReconcilerTestCase, c reconcilers.Config) reconcile.Reconciler {
-		return &reconcilers.ParentReconciler{
+		reconciler := &reconcilers.ParentReconciler{
 			Type:       &resources.TestResource{},
 			Reconciler: rtc.Metadata["SubReconciler"].(func(*testing.T, reconcilers.Config) reconcilers.SubReconciler)(t, c),
 			Config:     c,
 		}
+		if _, ok := rtc.Metadata["Finalize"]; ok {
+			reconciler.Finalize = rtc.Metadata["Finalize"].(func(context.Context, *resources.TestResource) error)
+		}
+
+		return reconciler
 	})
 }