kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
kops/upup/pkg/fi/cloudup/gcetasks/router.go

208 lines
6.0 KiB
Go
Raw Blame History

/*
Copyright 2021 The Kubernetes Authors.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
/*
Copyright 2021 The Kubernetes Authors.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package gcetasks
import (
"fmt"
"reflect"
compute "google.golang.org/api/compute/v1"
"k8s.io/klog/v2"
"k8s.io/kops/upup/pkg/fi"
"k8s.io/kops/upup/pkg/fi/cloudup/gce"
"k8s.io/kops/upup/pkg/fi/cloudup/terraform"
)
const (
// NATIPAllocationOptionAutoOnly is specified when NAT IPs are allocated by Google Cloud.
NATIPAllocationOptionAutoOnly = "AUTO_ONLY"
// SourceSubnetworkIPRangesAll is specified when all of the IP ranges in every subnetwork are allowed to be NAT-ed.
SourceSubnetworkIPRangesAll = "ALL_SUBNETWORKS_ALL_IP_RANGES"
)
// +kops:fitask
// Router is a Router task.
type Router struct {
Name *string
Lifecycle *fi.Lifecycle
Network *string
Region *string
NATIPAllocationOption *string
SourceSubnetworkIPRangesToNAT *string
}
var _ fi.CompareWithID = &Router{}
// CompareWithID returns the name of the Router.
func (r *Router) CompareWithID() *string {
return r.Name
}
// Find discovers the Router in the cloud provider.
func (r *Router) Find(c *fi.Context) (*Router, error) {
cloud := c.Cloud.(gce.GCECloud)
found, err := cloud.Compute().Routers.Get(cloud.Project(), *r.Region, *r.Name).Do()
if err != nil {
if gce.IsNotFound(err) {
return nil, nil
}
return nil, fmt.Errorf("error listing Routers: %v", err)
}
if len(found.Nats) != 1 {
return nil, fmt.Errorf("unexpected number of nats found: %+v", found.Nats)
}
nat := found.Nats[0]
if a, e := found.SelfLink, r.url(cloud.Project()); a != e {
klog.Warningf("SelfLink did not match URL: %q vs %q", a, e)
}
return &Router{
Name: &found.Name,
Lifecycle: r.Lifecycle,
Network: &found.Network,
Region: &found.Region,
NATIPAllocationOption: &nat.NatIpAllocateOption,
SourceSubnetworkIPRangesToNAT: &nat.SourceSubnetworkIpRangesToNat,
}, nil
}
func (r *Router) url(project string) string {
u := gce.GoogleCloudURL{
Version: "v1",
Project: project,
Name: *r.Name,
Type: "routers",
Region: *r.Region,
}
return u.BuildURL()
}
// Run implements fi.Task.Run.
func (r *Router) Run(c *fi.Context) error {
return fi.DefaultDeltaRunMethod(r, c)
}
// CheckChanges returns an error if a change is not allowed.
func (*Router) CheckChanges(a, e, changes *Router) error {
if a == nil {
// Check if required fields are set when a new resource is created.
if e.Name == nil {
return fi.RequiredField("Name")
}
return nil
}
// Check if unchanegable fields won't be changed.
if changes.Name != nil {
return fi.CannotChangeField("Name")
}
// TODO(kenji): Check more fields.
return nil
}
// RenderGCE creates or updates a Router.
func (*Router) RenderGCE(t *gce.GCEAPITarget, a, e, changes *Router) error {
if a == nil {
klog.V(2).Infof("Creating Cloud NAT Gateway %v", e.Name)
router := &compute.Router{
Name: *e.Name,
Network: *e.Network,
Nats: []*compute.RouterNat{
{
Name: *e.Name,
NatIpAllocateOption: *e.NATIPAllocationOption,
SourceSubnetworkIpRangesToNat: *e.SourceSubnetworkIPRangesToNAT,
},
},
}
if _, err := t.Cloud.Compute().Routers.Insert(t.Cloud.Project(), *e.Region, router).Do(); err != nil {
return fmt.Errorf("error creating Router: %v", err)
}
} else {
if !reflect.DeepEqual(changes, &Router{}) {
return fmt.Errorf("applying changes to Router is unsupported: %s", *e.Name)
}
}
return nil
}
type terraformRouterNat struct {
Name *string `json:"name,omitempty" cty:"name"`
Region *string `json:"region,omitempty" cty:"region"`
Router *string `json:"router,omitempty" cty:"router"`
NATIPAllocateOption *string `json:"nat_ip_allocate_option,omitempty" cty:"nat_ip_allocate_option"`
SourceSubnetworkIPRangesToNat *string `json:"source_subnetwork_ip_ranges_to_nat,omitempty" cty:"source_subnetwork_ip_ranges_to_nat"`
}
type terraformRouter struct {
Name *string `json:"name,omitempty" cty:"name"`
Network *string `json:"network,omitempty" cty:"network"`
Region *string `json:"region,omitempty" cty:"region"`
}
// RenderTerraform renders the Terraform config.
func (*Router) RenderTerraform(t *terraform.TerraformTarget, a, e, changes *Router) error {
tr := &terraformRouter{
Name: e.Name,
Network: e.Network,
}
err := t.RenderResource("google_compute_router", *e.Name, tr)
if err != nil {
return err
}
trn := &terraformRouterNat{
Name: e.Name,
Region: e.Region,
Router: e.Name,
NATIPAllocateOption: e.NATIPAllocationOption,
SourceSubnetworkIPRangesToNat: e.SourceSubnetworkIPRangesToNAT,
}
return t.RenderResource("google_compute_router_nat", *e.Name, trn)
}
// TerraformName returns the Terraform name.
func (r *Router) TerraformName() *terraform.Literal {
return terraform.LiteralProperty("google_compute_router_nat", *r.Name, "name")
}
Reference in New Issue View Git Blame Copy Permalink