guard against empty rendered manifests

Signed-off-by: Kent <[email protected]>

action.yaml

@@ -7,6 +7,10 @@ inputs:
   targetBranch:
     description: The environment branch for which you want to render manifests
     required: true
+  allowEmpty:
+    description: Whether to allow rendered manifests to be empty. If false this is disallowed as a safeguard against scenarios where a bug of any kind might otherwise cause Bookkeeper to wipe out the contents of the target branch in error.
+    required: false
+    default: 'false'
 runs:
   using: docker
   image: docker://ghcr.io/akuity/bookkeeper:v0.1.0-rc.20

cmd/cli/flags.go

@@ -7,6 +7,7 @@ import (
 )
 
 const (
+	flagAllowEmpty    = "allow-empty"
 	flagCommitMessage = "commit-message"
 	flagDebug         = "debug"
 	flagImage         = "image"

cmd/cli/render_cmd.go

@@ -81,6 +81,13 @@ func newRenderCommand() (*cobra.Command, error) {
 		"",
 		"the environment-specific branch to render manifests into (required)",
 	)
+	cmd.Flags().Bool(
+		flagAllowEmpty,
+		false,
+		"allow the rendered manifests to be empty; if false this is disallowed as "+
+			"a safeguard against scenarios where a bug of any kind might otherwise "+
+			"cause Bookkeeper to wipe out the contents of the target branch in error",
+	)
 	if err := cmd.MarkFlagRequired(flagTargetBranch); err != nil {
 		return nil, err
 	}
@@ -118,6 +125,10 @@ func runRenderCmd(cmd *cobra.Command, _ []string) error {
 	if err != nil {
 		return err
 	}
+	req.AllowEmpty, err = cmd.Flags().GetBool(flagAllowEmpty)
+	if err != nil {
+		return err
+	}
 
 	logLevel := bookkeeper.LogLevelError
 	var debug bool

rendering.go

@@ -9,10 +9,8 @@ import (
 	"github.com/pkg/errors"
 	log "github.com/sirupsen/logrus"
 
-	"github.com/akuity/bookkeeper/internal/helm"
 	"github.com/akuity/bookkeeper/internal/kustomize"
 	"github.com/akuity/bookkeeper/internal/strings"
-	"github.com/akuity/bookkeeper/internal/ytt"
 )
 
 var lastMileKustomizationBytes = []byte(
@@ -24,9 +22,10 @@ resources:
 `,
 )
 
-func preRender(
+func (s *service) preRender(
 	ctx context.Context,
 	rc renderRequestContext,
+	repoDir string,
 ) (map[string][]byte, error) {
 	logger := rc.logger
 	manifests := map[string][]byte{}
@@ -49,12 +48,12 @@ func preRender(
 				"chartPath":        chartPath,
 				"valuesPaths":      valuesPaths,
 			})
-			chartPath = filepath.Join(rc.repo.WorkingDir(), chartPath)
+			chartPath = filepath.Join(repoDir, chartPath)
 			absValuesPaths := make([]string, len(valuesPaths))
 			for i, valuesPath := range valuesPaths {
-				absValuesPaths[i] = filepath.Join(rc.repo.WorkingDir(), valuesPath)
+				absValuesPaths[i] = filepath.Join(repoDir, valuesPath)
 			}
-			manifests[appName], err = helm.Render(
+			manifests[appName], err = s.helmRenderFn(
 				ctx,
 				appConfig.ConfigManagement.Helm.ReleaseName,
 				chartPath,
@@ -71,9 +70,9 @@ func preRender(
 			})
 			absPaths := make([]string, len(paths))
 			for i, path := range paths {
-				absPaths[i] = filepath.Join(rc.repo.WorkingDir(), path)
+				absPaths[i] = filepath.Join(repoDir, path)
 			}
-			manifests[appName], err = ytt.Render(ctx, absPaths)
+			manifests[appName], err = s.yttRenderFn(ctx, absPaths)
 		} else {
 			path := appConfig.ConfigManagement.Kustomize.Path
 			if path == "" {
@@ -83,8 +82,8 @@ func preRender(
 				"configManagement": "kustomize",
 				"path":             path,
 			})
-			path = filepath.Join(rc.repo.WorkingDir(), path)
-			manifests[appName], err = kustomize.Render(
+			path = filepath.Join(repoDir, path)
+			manifests[appName], err = s.kustomizeRenderFn(
 				ctx,
 				path,
 				nil,
@@ -96,6 +95,19 @@ func preRender(
 		}
 		appLogger.Debug("completed manifest pre-rendering")
 	}
+
+	if !rc.request.AllowEmpty {
+		// This is a sanity check. Argo CD does this also.
+		for appName := range rc.target.branchConfig.AppConfigs {
+			if manifests, ok := manifests[appName]; !ok || len(manifests) == 0 {
+				return nil, errors.Errorf(
+					"pre-rendered manifests for app %q contain 0 bytes; this looks "+
+						"like a mistake and allowEmpty is not set; refusing to proceed",
+					appName,
+				)
+			}
+		}
+	}
 	return manifests, nil
 }
 

rendering_test.go

@@ -0,0 +1,244 @@
+package bookkeeper
+
+import (
+	"context"
+	"testing"
+
+	"github.com/pkg/errors"
+	"github.com/sirupsen/logrus"
+	"github.com/stretchr/testify/require"
+
+	"github.com/akuity/bookkeeper/internal/helm"
+	"github.com/akuity/bookkeeper/internal/kustomize"
+	"github.com/akuity/bookkeeper/internal/ytt"
+)
+
+func TestPreRender(t *testing.T) {
+	const testAppName = "test-app"
+	fakeManifest := []byte("fake-manifest")
+	testCases := []struct {
+		name       string
+		rc         renderRequestContext
+		service    *service
+		assertions func(manifests map[string][]byte, err error)
+	}{
+		{
+			name: "error pre-rendering with helm",
+			rc: renderRequestContext{
+				target: targetContext{
+					branchConfig: branchConfig{
+						AppConfigs: map[string]appConfig{
+							testAppName: {
+								ConfigManagement: configManagementConfig{
+									Helm: &helm.Config{},
+								},
+							},
+						},
+					},
+				},
+			},
+			service: &service{
+				helmRenderFn: func(
+					context.Context,
+					string,
+					string,
+					[]string,
+				) ([]byte, error) {
+					return nil, errors.New("something went wrong")
+				},
+			},
+			assertions: func(_ map[string][]byte, err error) {
+				require.Error(t, err)
+				require.Equal(t, "something went wrong", err.Error())
+			},
+		},
+		{
+			name: "success pre-rendering with helm",
+			rc: renderRequestContext{
+				target: targetContext{
+					branchConfig: branchConfig{
+						AppConfigs: map[string]appConfig{
+							testAppName: {
+								ConfigManagement: configManagementConfig{
+									Helm: &helm.Config{},
+								},
+							},
+						},
+					},
+				},
+			},
+			service: &service{
+				helmRenderFn: func(
+					context.Context,
+					string,
+					string,
+					[]string,
+				) ([]byte, error) {
+					return fakeManifest, nil
+				},
+			},
+			assertions: func(manifests map[string][]byte, err error) {
+				require.NoError(t, err)
+				require.Equal(t, fakeManifest, manifests[testAppName])
+			},
+		},
+		{
+			name: "error pre-rendering with ytt",
+			rc: renderRequestContext{
+				target: targetContext{
+					branchConfig: branchConfig{
+						AppConfigs: map[string]appConfig{
+							"test-app": {
+								ConfigManagement: configManagementConfig{
+									Ytt: &ytt.Config{},
+								},
+							},
+						},
+					},
+				},
+			},
+			service: &service{
+				yttRenderFn: func(context.Context, []string) ([]byte, error) {
+					return nil, errors.New("something went wrong")
+				},
+			},
+			assertions: func(_ map[string][]byte, err error) {
+				require.Error(t, err)
+				require.Equal(t, "something went wrong", err.Error())
+			},
+		},
+		{
+			name: "success pre-rendering with ytt",
+			rc: renderRequestContext{
+				target: targetContext{
+					branchConfig: branchConfig{
+						AppConfigs: map[string]appConfig{
+							"test-app": {
+								ConfigManagement: configManagementConfig{
+									Ytt: &ytt.Config{},
+								},
+							},
+						},
+					},
+				},
+			},
+			service: &service{
+				yttRenderFn: func(context.Context, []string) ([]byte, error) {
+					return fakeManifest, nil
+				},
+			},
+			assertions: func(manifests map[string][]byte, err error) {
+				require.NoError(t, err)
+				require.Equal(t, fakeManifest, manifests[testAppName])
+			},
+		},
+		{
+			name: "error pre-rendering with kustomize",
+			rc: renderRequestContext{
+				target: targetContext{
+					branchConfig: branchConfig{
+						AppConfigs: map[string]appConfig{
+							"test-app": {
+								ConfigManagement: configManagementConfig{
+									Kustomize: &kustomize.Config{},
+								},
+							},
+						},
+					},
+				},
+			},
+			service: &service{
+				kustomizeRenderFn: func(
+					context.Context,
+					string,
+					[]string,
+					bool,
+				) ([]byte, error) {
+					return nil, errors.New("something went wrong")
+				},
+			},
+			assertions: func(manifests map[string][]byte, err error) {
+				require.Error(t, err)
+				require.Equal(t, "something went wrong", err.Error())
+			},
+		},
+		{
+			name: "success pre-rendering with kustomize",
+			rc: renderRequestContext{
+				target: targetContext{
+					branchConfig: branchConfig{
+						AppConfigs: map[string]appConfig{
+							"test-app": {
+								ConfigManagement: configManagementConfig{
+									Kustomize: &kustomize.Config{},
+								},
+							},
+						},
+					},
+				},
+			},
+			service: &service{
+				kustomizeRenderFn: func(
+					context.Context,
+					string,
+					[]string,
+					bool,
+				) ([]byte, error) {
+					return fakeManifest, nil
+				},
+			},
+			assertions: func(manifests map[string][]byte, err error) {
+				require.NoError(t, err)
+				require.Equal(t, fakeManifest, manifests[testAppName])
+			},
+		},
+		{
+			name: "safeguards against empty manifests",
+			rc: renderRequestContext{
+				target: targetContext{
+					branchConfig: branchConfig{
+						AppConfigs: map[string]appConfig{
+							"test-app": {
+								ConfigManagement: configManagementConfig{
+									Kustomize: &kustomize.Config{},
+								},
+							},
+						},
+					},
+				},
+			},
+			service: &service{
+				kustomizeRenderFn: func(
+					context.Context,
+					string,
+					[]string,
+					bool,
+				) ([]byte, error) {
+					return []byte{}, nil // This is probably a mistake!
+				},
+			},
+			assertions: func(manifests map[string][]byte, err error) {
+				require.Error(t, err)
+				require.Contains(
+					t,
+					err.Error(),
+					"contain 0 bytes; this looks like a mistake",
+				)
+			},
+		},
+	}
+	for _, testCase := range testCases {
+		t.Run(testCase.name, func(t *testing.T) {
+			testCase.rc.logger = &logrus.Entry{
+				Logger: logrus.New(),
+			}
+			testCase.assertions(
+				testCase.service.preRender(
+					context.Background(),
+					testCase.rc,
+					"fake/repo/path",
+				),
+			)
+		})
+	}
+}