mirror of https://github.com/kubernetes/kops.git
189 lines
4.5 KiB
Go
189 lines
4.5 KiB
Go
/*
|
|
Copyright 2016 The Kubernetes Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package model
|
|
|
|
import (
|
|
"fmt"
|
|
"path/filepath"
|
|
"sort"
|
|
"strconv"
|
|
|
|
"github.com/golang/glog"
|
|
"k8s.io/api/core/v1"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/kops/pkg/apis/kops"
|
|
"k8s.io/kops/upup/pkg/fi"
|
|
"k8s.io/kops/upup/pkg/fi/nodeup/nodetasks"
|
|
)
|
|
|
|
// s is a helper that builds a *string from a string value
|
|
func s(v string) *string {
|
|
return fi.String(v)
|
|
}
|
|
|
|
// i64 is a helper that builds a *int64 from an int64 value
|
|
func i64(v int64) *int64 {
|
|
return fi.Int64(v)
|
|
}
|
|
|
|
// b returns a pointer to a boolean
|
|
func b(v bool) *bool {
|
|
return fi.Bool(v)
|
|
}
|
|
|
|
// containsRole checks if a collection roles contains role v
|
|
func containsRole(v kops.InstanceGroupRole, list []kops.InstanceGroupRole) bool {
|
|
for _, x := range list {
|
|
if v == x {
|
|
return true
|
|
}
|
|
}
|
|
|
|
return false
|
|
}
|
|
|
|
// buildDockerEnvironmentVars just converts a series of keypairs to docker environment variables switches
|
|
func buildDockerEnvironmentVars(env map[string]string) []string {
|
|
var list []string
|
|
for k, v := range env {
|
|
list = append(list, []string{"-e", fmt.Sprintf("%s=%s", k, v)}...)
|
|
}
|
|
|
|
return list
|
|
}
|
|
|
|
func getProxyEnvVars(proxies *kops.EgressProxySpec) []v1.EnvVar {
|
|
if proxies == nil {
|
|
glog.V(8).Info("proxies is == nil, returning empty list")
|
|
return []v1.EnvVar{}
|
|
}
|
|
|
|
if proxies.HTTPProxy.Host == "" {
|
|
glog.Warning("EgressProxy set but no proxy host provided")
|
|
}
|
|
|
|
var httpProxyURL string
|
|
if proxies.HTTPProxy.Port == 0 {
|
|
httpProxyURL = "http://" + proxies.HTTPProxy.Host
|
|
} else {
|
|
httpProxyURL = "http://" + proxies.HTTPProxy.Host + ":" + strconv.Itoa(proxies.HTTPProxy.Port)
|
|
}
|
|
|
|
noProxy := proxies.ProxyExcludes
|
|
|
|
return []v1.EnvVar{
|
|
{Name: "http_proxy", Value: httpProxyURL},
|
|
{Name: "https_proxy", Value: httpProxyURL},
|
|
{Name: "NO_PROXY", Value: noProxy},
|
|
{Name: "no_proxy", Value: noProxy},
|
|
}
|
|
}
|
|
|
|
// buildCertificateRequest retrieves the certificate from a keystore
|
|
func buildCertificateRequest(c *fi.ModelBuilderContext, b *NodeupModelContext, name, path string) error {
|
|
cert, err := b.KeyStore.FindCert(name)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if cert == nil {
|
|
return fmt.Errorf("certificate %q not found", name)
|
|
}
|
|
|
|
serialized, err := cert.AsString()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
location := filepath.Join(b.PathSrvKubernetes(), fmt.Sprintf("%s.pem", name))
|
|
if path != "" {
|
|
location = path
|
|
}
|
|
|
|
c.AddTask(&nodetasks.File{
|
|
Path: location,
|
|
Contents: fi.NewStringResource(serialized),
|
|
Type: nodetasks.FileType_File,
|
|
Mode: s("0600"),
|
|
})
|
|
|
|
return nil
|
|
}
|
|
|
|
// buildPrivateKeyRequest retrieves a private key from the store
|
|
func buildPrivateKeyRequest(c *fi.ModelBuilderContext, b *NodeupModelContext, name, path string) error {
|
|
k, err := b.KeyStore.FindPrivateKey(name)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if k == nil {
|
|
return fmt.Errorf("private key %q not found", name)
|
|
}
|
|
|
|
serialized, err := k.AsString()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
location := filepath.Join(b.PathSrvKubernetes(), fmt.Sprintf("%s-key.pem", name))
|
|
if path != "" {
|
|
location = path
|
|
}
|
|
|
|
c.AddTask(&nodetasks.File{
|
|
Path: location,
|
|
Contents: fi.NewStringResource(serialized),
|
|
Type: nodetasks.FileType_File,
|
|
Mode: s("0600"),
|
|
})
|
|
|
|
return nil
|
|
}
|
|
|
|
// sortedStrings is just a one liner helper methods
|
|
func sortedStrings(list []string) []string {
|
|
sort.Strings(list)
|
|
|
|
return list
|
|
}
|
|
|
|
// addHostPathMapping is shorthand for mapping a host path into a container
|
|
func addHostPathMapping(pod *v1.Pod, container *v1.Container, name, path string) *v1.VolumeMount {
|
|
pod.Spec.Volumes = append(pod.Spec.Volumes, v1.Volume{
|
|
Name: name,
|
|
VolumeSource: v1.VolumeSource{
|
|
HostPath: &v1.HostPathVolumeSource{
|
|
Path: path,
|
|
},
|
|
},
|
|
})
|
|
|
|
container.VolumeMounts = append(container.VolumeMounts, v1.VolumeMount{
|
|
Name: name,
|
|
MountPath: path,
|
|
ReadOnly: true,
|
|
})
|
|
|
|
return &container.VolumeMounts[len(container.VolumeMounts)-1]
|
|
}
|
|
|
|
// convEtcdSettingsToMs converts etcd settings to a string rep of int milliseconds
|
|
func convEtcdSettingsToMs(dur *metav1.Duration) string {
|
|
return strconv.FormatInt(dur.Nanoseconds()/1000000, 10)
|
|
}
|