feat(ec): do not allow upgrading more than 1 k8s minor (#5313)

* feat(ec): do not allow upgrading more than 1 k8s minor

* chore: tests

* chore: test versions with a v prefix

* Update pkg/upgradeservice/bootstrap.go

Co-authored-by: Ethan Mosbaugh <[email protected]>

* Update pkg/upgradeservice/bootstrap.go

Co-authored-by: Ethan Mosbaugh <[email protected]>

* fix: also validate downgrades

* fix: also validate downgrades, but stop them entirely

* chore: cleanup commit garbadge

* Update pkg/upgradeservice/bootstrap.go

Co-authored-by: Alex Parker <[email protected]>

* Update pkg/upgradeservice/bootstrap.go

Co-authored-by: Alex Parker <[email protected]>

* Update pkg/upgradeservice/bootstrap.go

Co-authored-by: Alex Parker <[email protected]>

* fix: tests

---------

Co-authored-by: Ethan Mosbaugh <[email protected]>
Co-authored-by: Alex Parker <[email protected]>

Author: 3 people

pkg/upgradeservice/bootstrap.go

@@ -6,7 +6,9 @@ import (
 	"io"
 	"os"
 	"path/filepath"
+	"regexp"
 
+	"github.com/Masterminds/semver"
 	"github.com/pkg/errors"
 	"github.com/replicatedhq/kots/pkg/archives"
 	"github.com/replicatedhq/kots/pkg/k8sutil"
@@ -22,6 +24,10 @@ import (
 )
 
 func bootstrap(params types.UpgradeServiceParams) (finalError error) {
+	if err := updateWithinKubeRange(params); err != nil {
+		return errors.Wrap(err, "kubernetes version update is not within allowed range")
+	}
+
 	if err := k8sutil.InitHelmCapabilities(); err != nil {
 		return errors.Wrap(err, "failed to init helm capabilities")
 	}
@@ -40,6 +46,44 @@ func bootstrap(params types.UpgradeServiceParams) (finalError error) {
 	return nil
 }
 
+// updateWithinKubeRange checks if the update version is within the same major version and
+// at most one minor version ahead of the current version.
+func updateWithinKubeRange(params types.UpgradeServiceParams) error {
+	currentVersion, err := extractKubeVersion(params.CurrentECVersion)
+	if err != nil {
+		return errors.Wrap(err, "failed to extract current kube version")
+	}
+	updateVersion, err := extractKubeVersion(params.UpdateECVersion)
+	if err != nil {
+		return errors.Wrap(err, "failed to extract update kube version")
+	}
+	if currentVersion.Major() != updateVersion.Major() {
+		return errors.Errorf("major version mismatch: current %s, update %s", currentVersion, updateVersion)
+	}
+	if currentVersion.GreaterThan(updateVersion) {
+		return errors.Errorf("cannot downgrade the kubernetes version: current %s, update %s", currentVersion, updateVersion)
+	}
+	if updateVersion.Minor() > currentVersion.Minor()+1 {
+		return errors.Errorf("cannot update by more than one kubernetes minor version: current %s, update %s", currentVersion, updateVersion)
+	}
+	return nil
+}
+
+// Utility method to extract the kube version from an EC version.
+// Given a version string like "2.4.0+k8s-1.30-rc0", it returns the kube semver version "1.30"
+func extractKubeVersion(ecVersion string) (*semver.Version, error) {
+	re := regexp.MustCompile(`\+k8s-(\d+\.\d+)`)
+	matches := re.FindStringSubmatch(ecVersion)
+	if len(matches) != 2 {
+		return nil, errors.Errorf("failed to extract kube version from '%s'", ecVersion)
+	}
+	kubeVersion, err := semver.NewVersion(matches[1])
+	if err != nil {
+		return nil, errors.Wrapf(err, "failed to parse kube version from '%s'", ecVersion)
+	}
+	return kubeVersion, nil
+}
+
 func pullArchiveFromAirgap(params types.UpgradeServiceParams) (finalError error) {
 	airgapRoot, err := archives.ExtractAppMetaFromAirgapBundle(params.UpdateAirgapBundle)
 	if err != nil {

pkg/upgradeservice/bootstrap_test.go

@@ -0,0 +1,142 @@
+package upgradeservice
+
+import (
+	"testing"
+
+	"github.com/replicatedhq/kots/pkg/upgradeservice/types"
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+)
+
+func TestUpdateWithinKubeRange(t *testing.T) {
+	tests := []struct {
+		name           string
+		params         types.UpgradeServiceParams
+		expectError    bool
+		expectedErrMsg string
+	}{
+		{
+			name: "same version",
+			params: types.UpgradeServiceParams{
+				CurrentECVersion: "2.4.0+k8s-1.30-rc0",
+				UpdateECVersion:  "2.4.1+k8s-1.30-rc1",
+			},
+			expectError: false,
+		},
+		{
+			name: "one minor version upgrade",
+			params: types.UpgradeServiceParams{
+				CurrentECVersion: "2.4.0+k8s-1.30-rc0",
+				UpdateECVersion:  "2.5.0+k8s-1.31-rc0",
+			},
+			expectError: false,
+		},
+		{
+			name: "two minor version upgrade",
+			params: types.UpgradeServiceParams{
+				CurrentECVersion: "2.4.0+k8s-1.30-rc0",
+				UpdateECVersion:  "2.6.0+k8s-1.32-rc0",
+			},
+			expectError:    true,
+			expectedErrMsg: "cannot update by more than one kubernetes minor version",
+		},
+		{
+			name: "one minor version downgrade",
+			params: types.UpgradeServiceParams{
+				CurrentECVersion: "2.4.0+k8s-1.31-rc0",
+				UpdateECVersion:  "2.5.0+k8s-1.30-rc0",
+			},
+			expectError:    true,
+			expectedErrMsg: "cannot downgrade the kubernetes version",
+		},
+		{
+			name: "major version mismatch",
+			params: types.UpgradeServiceParams{
+				CurrentECVersion: "2.4.0+k8s-1.30-rc0",
+				UpdateECVersion:  "2.5.0+k8s-2.31-rc0",
+			},
+			expectError:    true,
+			expectedErrMsg: "major version mismatch",
+		},
+		{
+			name: "invalid current version format",
+			params: types.UpgradeServiceParams{
+				CurrentECVersion: "2.4.0-invalid-format",
+				UpdateECVersion:  "2.5.0+k8s-1.31-rc0",
+			},
+			expectError:    true,
+			expectedErrMsg: "failed to extract current kube version",
+		},
+		{
+			name: "invalid update version format",
+			params: types.UpgradeServiceParams{
+				CurrentECVersion: "2.4.0+k8s-1.30-rc0",
+				UpdateECVersion:  "2.5.0-invalid-format",
+			},
+			expectError:    true,
+			expectedErrMsg: "failed to extract update kube version",
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			err := updateWithinKubeRange(tt.params)
+			if tt.expectError {
+				require.Error(t, err)
+				assert.Contains(t, err.Error(), tt.expectedErrMsg)
+			} else {
+				require.NoError(t, err)
+			}
+		})
+	}
+}
+
+func TestExtractKubeVersion(t *testing.T) {
+	tests := []struct {
+		name            string
+		ecVersion       string
+		expectedVersion string
+		expectError     bool
+	}{
+		{
+			name:            "valid format",
+			ecVersion:       "2.4.0+k8s-1.30-rc0",
+			expectedVersion: "1.30.0",
+			expectError:     false,
+		},
+		{
+			name:            "another valid format",
+			ecVersion:       "3.1.5+k8s-1.29",
+			expectedVersion: "1.29.0",
+			expectError:     false,
+		},
+		{
+			name:            "ec version with a v prefix is valid",
+			ecVersion:       "v3.1.5+k8s-1.29",
+			expectedVersion: "1.29.0",
+			expectError:     false,
+		},
+		{
+			name:        "invalid format - missing k8s tag",
+			ecVersion:   "2.4.0-rc0",
+			expectError: true,
+		},
+		{
+			name:        "invalid format - malformed version",
+			ecVersion:   "2.4.0+k8s-abc-rc0",
+			expectError: true,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			version, err := extractKubeVersion(tt.ecVersion)
+			if tt.expectError {
+				require.Error(t, err)
+			} else {
+				require.NoError(t, err)
+				assert.Equal(t, tt.expectedVersion, version.String())
+			}
+		})
+	}
+}