Plumb target release TUF repo through planner

Author: plotnick

Cargo.lock

@@ -22,6 +22,7 @@ use omicron_common::api::external::{
     self, CreateResult, DataPageParams, Generation, ListResultVec,
     LookupResult, LookupType, ResourceType, TufRepoInsertStatus,
 };
+use omicron_uuid_kinds::GenericUuid;
 use omicron_uuid_kinds::TufRepoKind;
 use omicron_uuid_kinds::TypedUuid;
 use swrite::{SWrite, swrite};
@@ -106,8 +107,41 @@ impl DataStore {
             })
     }
 
+    /// Returns a TUF repo description.
+    pub async fn update_tuf_repo_get_by_id(
+        &self,
+        opctx: &OpContext,
+        repo_id: TypedUuid<TufRepoKind>,
+    ) -> LookupResult<TufRepoDescription> {
+        opctx.authorize(authz::Action::Read, &authz::FLEET).await?;
+
+        use nexus_db_schema::schema::tuf_repo::dsl;
+
+        let conn = self.pool_connection_authorized(opctx).await?;
+        let repo_id = repo_id.into_untyped_uuid();
+        let repo = dsl::tuf_repo
+            .filter(dsl::id.eq(repo_id))
+            .select(TufRepo::as_select())
+            .first_async::<TufRepo>(&*conn)
+            .await
+            .map_err(|e| {
+                public_error_from_diesel(
+                    e,
+                    ErrorHandler::NotFoundByLookup(
+                        ResourceType::TufRepo,
+                        LookupType::ById(repo_id),
+                    ),
+                )
+            })?;
+
+        let artifacts = artifacts_for_repo(repo.id.into(), &conn)
+            .await
+            .map_err(|e| public_error_from_diesel(e, ErrorHandler::Server))?;
+        Ok(TufRepoDescription { repo, artifacts })
+    }
+
     /// Returns the TUF repo description corresponding to this system version.
-    pub async fn update_tuf_repo_get(
+    pub async fn update_tuf_repo_get_by_version(
         &self,
         opctx: &OpContext,
         system_version: SemverVersion,

nexus/db-queries/src/db/datastore/update.rs

@@ -1424,6 +1424,7 @@ mod test {
                 target_crucible_pantry_zone_count: CRUCIBLE_PANTRY_REDUNDANCY,
                 clickhouse_policy: None,
                 oximeter_read_policy: OximeterReadPolicy::new(1),
+                tuf_repo: None,
                 log,
             }
             .build()

nexus/reconfigurator/execution/src/dns.rs

@@ -29,6 +29,7 @@ omicron-uuid-kinds.workspace = true
 once_cell.workspace = true
 oxnet.workspace = true
 rand.workspace = true
+semver.workspace = true
 sled-agent-client.workspace = true
 slog.workspace = true
 slog-error-chain.workspace = true

nexus/reconfigurator/planning/Cargo.toml

@@ -44,6 +44,7 @@ use omicron_common::address::SLED_PREFIX;
 use omicron_common::address::get_sled_address;
 use omicron_common::api::external::ByteCount;
 use omicron_common::api::external::Generation;
+use omicron_common::api::external::TufRepoDescription;
 use omicron_common::disk::DiskIdentity;
 use omicron_common::disk::DiskVariant;
 use omicron_common::policy::INTERNAL_DNS_REDUNDANCY;
@@ -96,6 +97,7 @@ pub struct SystemDescription {
     external_dns_version: Generation,
     clickhouse_policy: Option<ClickhousePolicy>,
     oximeter_read_policy: OximeterReadPolicy,
+    tuf_repo: Option<TufRepoDescription>,
 }
 
 impl SystemDescription {
@@ -175,6 +177,7 @@ impl SystemDescription {
             external_dns_version: Generation::new(),
             clickhouse_policy: None,
             oximeter_read_policy: OximeterReadPolicy::new(1),
+            tuf_repo: None,
         }
     }
 
@@ -427,6 +430,7 @@ impl SystemDescription {
                 .target_crucible_pantry_zone_count,
             clickhouse_policy: self.clickhouse_policy.clone(),
             oximeter_read_policy: self.oximeter_read_policy.clone(),
+            tuf_repo: self.tuf_repo.clone(),
         };
         let mut builder = PlanningInputBuilder::new(
             policy,

nexus/reconfigurator/planning/src/system.rs

@@ -39,6 +39,7 @@ use omicron_common::address::SLED_PREFIX;
 use omicron_common::api::external::Error;
 use omicron_common::api::external::InternalContext;
 use omicron_common::api::external::LookupType;
+use omicron_common::api::external::TufRepoDescription;
 use omicron_common::disk::DiskIdentity;
 use omicron_common::policy::BOUNDARY_NTP_REDUNDANCY;
 use omicron_common::policy::COCKROACHDB_REDUNDANCY;
@@ -78,6 +79,7 @@ pub struct PlanningInputFromDb<'a> {
     pub cockroachdb_settings: &'a CockroachDbSettings,
     pub clickhouse_policy: Option<ClickhousePolicy>,
     pub oximeter_read_policy: OximeterReadPolicy,
+    pub tuf_repo: Option<TufRepoDescription>,
     pub log: &'a Logger,
 }
 
@@ -140,11 +142,24 @@ impl PlanningInputFromDb<'_> {
             .cockroachdb_settings(opctx)
             .await
             .internal_context("fetching cockroachdb settings")?;
-
         let clickhouse_policy = datastore
             .clickhouse_policy_get_latest(opctx)
             .await
             .internal_context("fetching clickhouse policy")?;
+        let target_release = datastore
+            .target_release_get_current(opctx)
+            .await
+            .internal_context("fetching current target release")?;
+        let tuf_repo = match target_release.tuf_repo_id {
+            None => None,
+            Some(repo_id) => Some(
+                datastore
+                    .update_tuf_repo_get_by_id(opctx, repo_id.into())
+                    .await
+                    .internal_context("fetching target release repo")?
+                    .into_external(),
+            ),
+        };
 
         let oximeter_read_policy = datastore
             .oximeter_read_policy_get_latest(opctx)
@@ -171,6 +186,7 @@ impl PlanningInputFromDb<'_> {
             cockroachdb_settings: &cockroachdb_settings,
             clickhouse_policy,
             oximeter_read_policy,
+            tuf_repo,
         }
         .build()
         .internal_context("assembling planning_input")?;
@@ -194,6 +210,7 @@ impl PlanningInputFromDb<'_> {
                 .target_crucible_pantry_zone_count,
             clickhouse_policy: self.clickhouse_policy.clone(),
             oximeter_read_policy: self.oximeter_read_policy.clone(),
+            tuf_repo: self.tuf_repo.clone(),
         };
         let mut builder = PlanningInputBuilder::new(
             policy,

nexus/reconfigurator/preparation/src/lib.rs

@@ -88,7 +88,7 @@ impl super::Nexus {
 
         let tuf_repo_description = self
             .db_datastore
-            .update_tuf_repo_get(opctx, system_version.into())
+            .update_tuf_repo_get_by_version(opctx, system_version.into())
             .await
             .map_err(HttpError::from)?;
 

nexus/src/app/update.rs

@@ -6573,7 +6573,7 @@ impl NexusExternalApi for NexusExternalApiImpl {
             // Fetch the TUF repo metadata and update the target release.
             let tuf_repo_id = nexus
                 .datastore()
-                .update_tuf_repo_get(&opctx, system_version.into())
+                .update_tuf_repo_get_by_version(&opctx, system_version.into())
                 .await?
                 .repo
                 .id;

nexus/src/external_api/http_entrypoints.rs

@@ -23,6 +23,7 @@ use omicron_common::address::IpRange;
 use omicron_common::address::Ipv6Subnet;
 use omicron_common::address::SLED_PREFIX;
 use omicron_common::api::external::Generation;
+use omicron_common::api::external::TufRepoDescription;
 use omicron_common::api::internal::shared::SourceNatConfigError;
 use omicron_common::disk::DiskIdentity;
 use omicron_common::policy::SINGLE_NODE_CLICKHOUSE_REDUNDANCY;
@@ -152,6 +153,10 @@ impl PlanningInput {
             .unwrap_or(0)
     }
 
+    pub fn tuf_repo(&self) -> Option<&TufRepoDescription> {
+        self.policy.tuf_repo.as_ref()
+    }
+
     pub fn service_ip_pool_ranges(&self) -> &[IpRange] {
         &self.policy.service_ip_pool_ranges
     }
@@ -918,6 +923,13 @@ pub struct Policy {
     /// Eventually we will only allow reads from a cluster and this policy will
     /// no longer exist.
     pub oximeter_read_policy: OximeterReadPolicy,
+
+    /// Desired system software release repository.
+    ///
+    /// New zones will use artifacts in this repo as their image sources,
+    /// and at most one extant zone may be modified to use it or replaced
+    /// with one that does.
+    pub tuf_repo: Option<TufRepoDescription>,
 }
 
 #[derive(Debug, Clone, Serialize, Deserialize, JsonSchema)]
@@ -1087,6 +1099,7 @@ impl PlanningInputBuilder {
                 target_crucible_pantry_zone_count: 0,
                 clickhouse_policy: None,
                 oximeter_read_policy: OximeterReadPolicy::new(1),
+                tuf_repo: None,
             },
             internal_dns_version: Generation::new(),
             external_dns_version: Generation::new(),