223 lines
9.3 KiB
Go
223 lines
9.3 KiB
Go
/*
|
|
Copyright 2016 The Kubernetes Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package options
|
|
|
|
import (
|
|
"fmt"
|
|
"net"
|
|
"time"
|
|
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/apimachinery/pkg/runtime/serializer"
|
|
"k8s.io/apiserver/pkg/server"
|
|
utilfeature "k8s.io/apiserver/pkg/util/feature"
|
|
|
|
// add the generic feature gates
|
|
"k8s.io/apiserver/pkg/features"
|
|
|
|
"github.com/spf13/pflag"
|
|
)
|
|
|
|
// ServerRunOptions contains the options while running a generic api server.
|
|
type ServerRunOptions struct {
|
|
AdvertiseAddress net.IP
|
|
|
|
CorsAllowedOriginList []string
|
|
ExternalHost string
|
|
MaxRequestsInFlight int
|
|
MaxMutatingRequestsInFlight int
|
|
RequestTimeout time.Duration
|
|
LivezGracePeriod time.Duration
|
|
MinRequestTimeout int
|
|
ShutdownDelayDuration time.Duration
|
|
// We intentionally did not add a flag for this option. Users of the
|
|
// apiserver library can wire it to a flag.
|
|
JSONPatchMaxCopyBytes int64
|
|
// The limit on the request body size that would be accepted and
|
|
// decoded in a write request. 0 means no limit.
|
|
// We intentionally did not add a flag for this option. Users of the
|
|
// apiserver library can wire it to a flag.
|
|
MaxRequestBodyBytes int64
|
|
TargetRAMMB int
|
|
EnableInflightQuotaHandler bool
|
|
}
|
|
|
|
func NewServerRunOptions() *ServerRunOptions {
|
|
defaults := server.NewConfig(serializer.CodecFactory{})
|
|
return &ServerRunOptions{
|
|
MaxRequestsInFlight: defaults.MaxRequestsInFlight,
|
|
MaxMutatingRequestsInFlight: defaults.MaxMutatingRequestsInFlight,
|
|
RequestTimeout: defaults.RequestTimeout,
|
|
LivezGracePeriod: defaults.LivezGracePeriod,
|
|
MinRequestTimeout: defaults.MinRequestTimeout,
|
|
ShutdownDelayDuration: defaults.ShutdownDelayDuration,
|
|
JSONPatchMaxCopyBytes: defaults.JSONPatchMaxCopyBytes,
|
|
MaxRequestBodyBytes: defaults.MaxRequestBodyBytes,
|
|
}
|
|
}
|
|
|
|
// ApplyOptions applies the run options to the method receiver and returns self
|
|
func (s *ServerRunOptions) ApplyTo(c *server.Config) error {
|
|
c.CorsAllowedOriginList = s.CorsAllowedOriginList
|
|
c.ExternalAddress = s.ExternalHost
|
|
c.MaxRequestsInFlight = s.MaxRequestsInFlight
|
|
c.MaxMutatingRequestsInFlight = s.MaxMutatingRequestsInFlight
|
|
c.LivezGracePeriod = s.LivezGracePeriod
|
|
c.RequestTimeout = s.RequestTimeout
|
|
c.MinRequestTimeout = s.MinRequestTimeout
|
|
c.ShutdownDelayDuration = s.ShutdownDelayDuration
|
|
c.JSONPatchMaxCopyBytes = s.JSONPatchMaxCopyBytes
|
|
c.MaxRequestBodyBytes = s.MaxRequestBodyBytes
|
|
c.PublicAddress = s.AdvertiseAddress
|
|
|
|
return nil
|
|
}
|
|
|
|
// DefaultAdvertiseAddress sets the field AdvertiseAddress if unset. The field will be set based on the SecureServingOptions.
|
|
func (s *ServerRunOptions) DefaultAdvertiseAddress(secure *SecureServingOptions) error {
|
|
if secure == nil {
|
|
return nil
|
|
}
|
|
|
|
if s.AdvertiseAddress == nil || s.AdvertiseAddress.IsUnspecified() {
|
|
hostIP, err := secure.DefaultExternalAddress()
|
|
if err != nil {
|
|
return fmt.Errorf("Unable to find suitable network address.error='%v'. "+
|
|
"Try to set the AdvertiseAddress directly or provide a valid BindAddress to fix this.", err)
|
|
}
|
|
s.AdvertiseAddress = hostIP
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// Validate checks validation of ServerRunOptions
|
|
func (s *ServerRunOptions) Validate() []error {
|
|
errors := []error{}
|
|
if s.TargetRAMMB < 0 {
|
|
errors = append(errors, fmt.Errorf("--target-ram-mb can not be negative value"))
|
|
}
|
|
|
|
if s.LivezGracePeriod < 0 {
|
|
errors = append(errors, fmt.Errorf("--livez-grace-period can not be a negative value"))
|
|
}
|
|
|
|
if s.EnableInflightQuotaHandler {
|
|
if !utilfeature.DefaultFeatureGate.Enabled(features.RequestManagement) {
|
|
errors = append(errors, fmt.Errorf("--enable-inflight-quota-handler can not be set if feature "+
|
|
"gate RequestManagement is disabled"))
|
|
}
|
|
if s.MaxMutatingRequestsInFlight != 0 {
|
|
errors = append(errors, fmt.Errorf("--max-mutating-requests-inflight=%v "+
|
|
"can not be set if enabled inflight quota handler", s.MaxMutatingRequestsInFlight))
|
|
}
|
|
if s.MaxRequestsInFlight != 0 {
|
|
errors = append(errors, fmt.Errorf("--max-requests-inflight=%v "+
|
|
"can not be set if enabled inflight quota handler", s.MaxRequestsInFlight))
|
|
}
|
|
} else {
|
|
if s.MaxRequestsInFlight < 0 {
|
|
errors = append(errors, fmt.Errorf("--max-requests-inflight can not be negative value"))
|
|
}
|
|
if s.MaxMutatingRequestsInFlight < 0 {
|
|
errors = append(errors, fmt.Errorf("--max-mutating-requests-inflight can not be negative value"))
|
|
}
|
|
}
|
|
|
|
if s.RequestTimeout.Nanoseconds() < 0 {
|
|
errors = append(errors, fmt.Errorf("--request-timeout can not be negative value"))
|
|
}
|
|
|
|
if s.MinRequestTimeout < 0 {
|
|
errors = append(errors, fmt.Errorf("--min-request-timeout can not be negative value"))
|
|
}
|
|
|
|
if s.ShutdownDelayDuration < 0 {
|
|
errors = append(errors, fmt.Errorf("--shutdown-delay-duration can not be negative value"))
|
|
}
|
|
|
|
if s.JSONPatchMaxCopyBytes < 0 {
|
|
errors = append(errors, fmt.Errorf("--json-patch-max-copy-bytes can not be negative value"))
|
|
}
|
|
|
|
if s.MaxRequestBodyBytes < 0 {
|
|
errors = append(errors, fmt.Errorf("--max-resource-write-bytes can not be negative value"))
|
|
}
|
|
|
|
return errors
|
|
}
|
|
|
|
// AddUniversalFlags adds flags for a specific APIServer to the specified FlagSet
|
|
func (s *ServerRunOptions) AddUniversalFlags(fs *pflag.FlagSet) {
|
|
// Note: the weird ""+ in below lines seems to be the only way to get gofmt to
|
|
// arrange these text blocks sensibly. Grrr.
|
|
|
|
fs.IPVar(&s.AdvertiseAddress, "advertise-address", s.AdvertiseAddress, ""+
|
|
"The IP address on which to advertise the apiserver to members of the cluster. This "+
|
|
"address must be reachable by the rest of the cluster. If blank, the --bind-address "+
|
|
"will be used. If --bind-address is unspecified, the host's default interface will "+
|
|
"be used.")
|
|
|
|
fs.StringSliceVar(&s.CorsAllowedOriginList, "cors-allowed-origins", s.CorsAllowedOriginList, ""+
|
|
"List of allowed origins for CORS, comma separated. An allowed origin can be a regular "+
|
|
"expression to support subdomain matching. If this list is empty CORS will not be enabled.")
|
|
|
|
fs.IntVar(&s.TargetRAMMB, "target-ram-mb", s.TargetRAMMB,
|
|
"Memory limit for apiserver in MB (used to configure sizes of caches, etc.)")
|
|
|
|
fs.StringVar(&s.ExternalHost, "external-hostname", s.ExternalHost,
|
|
"The hostname to use when generating externalized URLs for this master (e.g. Swagger API Docs).")
|
|
|
|
deprecatedMasterServiceNamespace := metav1.NamespaceDefault
|
|
fs.StringVar(&deprecatedMasterServiceNamespace, "master-service-namespace", deprecatedMasterServiceNamespace, ""+
|
|
"DEPRECATED: the namespace from which the kubernetes master services should be injected into pods.")
|
|
|
|
fs.IntVar(&s.MaxRequestsInFlight, "max-requests-inflight", s.MaxRequestsInFlight, ""+
|
|
"The maximum number of non-mutating requests in flight at a given time. When the server exceeds this, "+
|
|
"it rejects requests. Zero for no limit.")
|
|
|
|
fs.IntVar(&s.MaxMutatingRequestsInFlight, "max-mutating-requests-inflight", s.MaxMutatingRequestsInFlight, ""+
|
|
"The maximum number of mutating requests in flight at a given time. When the server exceeds this, "+
|
|
"it rejects requests. Zero for no limit.")
|
|
|
|
fs.DurationVar(&s.RequestTimeout, "request-timeout", s.RequestTimeout, ""+
|
|
"An optional field indicating the duration a handler must keep a request open before timing "+
|
|
"it out. This is the default request timeout for requests but may be overridden by flags such as "+
|
|
"--min-request-timeout for specific types of requests.")
|
|
|
|
fs.DurationVar(&s.LivezGracePeriod, "livez-grace-period", s.LivezGracePeriod, ""+
|
|
"This option represents the maximum amount of time it should take for apiserver to complete its startup sequence "+
|
|
"and become live. From apiserver's start time to when this amount of time has elapsed, /livez will assume "+
|
|
"that unfinished post-start hooks will complete successfully and therefore return true.")
|
|
|
|
fs.IntVar(&s.MinRequestTimeout, "min-request-timeout", s.MinRequestTimeout, ""+
|
|
"An optional field indicating the minimum number of seconds a handler must keep "+
|
|
"a request open before timing it out. Currently only honored by the watch request "+
|
|
"handler, which picks a randomized value above this number as the connection timeout, "+
|
|
"to spread out load.")
|
|
|
|
fs.BoolVar(&s.EnableInflightQuotaHandler, "enable-inflight-quota-handler", s.EnableInflightQuotaHandler, ""+
|
|
"If true, replace the max-in-flight handler with an enhanced one that queues and dispatches with priority and fairness")
|
|
|
|
fs.DurationVar(&s.ShutdownDelayDuration, "shutdown-delay-duration", s.ShutdownDelayDuration, ""+
|
|
"Time to delay the termination. During that time the server keeps serving requests normally and /healthz "+
|
|
"returns success, but /readyz immediately returns failure. Graceful termination starts after this delay "+
|
|
"has elapsed. This can be used to allow load balancer to stop sending traffic to this server.")
|
|
|
|
utilfeature.DefaultMutableFeatureGate.AddFlag(fs)
|
|
}
|