b881f19c8b
kubeadm's current implementation of component config support is "kind" centric. This has its downsides. Namely: - Kind names and numbers can change between config versions. Newer kinds can be ignored. Therefore, detection of a version change is considerably harder. - A component config can have only one kind that is managed by kubeadm. Thus a more appropriate way to identify component configs is required. Probably the best solution identified so far is a config group. A group name is unlikely to change between versions, while the kind names and structure can. Tracking component configs by group name allows us to: - Spot more easily config version changes and manage alternate versions. - Support more than one kind in a config group/version. - Abstract component configs by hiding their exact structure. Hence, this change rips off the old kind based support for component configs and replaces it with a group name based one. This also has the following extra benefits: - More tests were added. - kubeadm now errors out if an unsupported version of a known component group is used. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
205 lines
7.7 KiB
Go
205 lines
7.7 KiB
Go
/*
|
|
Copyright 2019 The Kubernetes Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package componentconfigs
|
|
|
|
import (
|
|
"sort"
|
|
|
|
"github.com/pkg/errors"
|
|
|
|
apierrors "k8s.io/apimachinery/pkg/api/errors"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/apimachinery/pkg/runtime"
|
|
"k8s.io/apimachinery/pkg/runtime/schema"
|
|
"k8s.io/apimachinery/pkg/util/validation/field"
|
|
clientset "k8s.io/client-go/kubernetes"
|
|
"k8s.io/klog"
|
|
|
|
kubeadmapi "k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm"
|
|
kubeadmutil "k8s.io/kubernetes/cmd/kubeadm/app/util"
|
|
"k8s.io/kubernetes/cmd/kubeadm/app/util/apiclient"
|
|
)
|
|
|
|
// handler is a package internal type that handles component config factory and common functionality.
|
|
// Every component config group should have exactly one static instance of handler.
|
|
type handler struct {
|
|
// GroupVersion holds this handler's group name and preferred version
|
|
GroupVersion schema.GroupVersion
|
|
|
|
// AddToScheme points to a func that should add the GV types to a schema
|
|
AddToScheme func(*runtime.Scheme) error
|
|
|
|
// CreateEmpty returns an empty kubeadmapi.ComponentConfig (not even defaulted)
|
|
CreateEmpty func() kubeadmapi.ComponentConfig
|
|
|
|
// fromCluster should load the component config from a config map on the cluster.
|
|
// Don't use this directly! Use FromCluster instead!
|
|
fromCluster func(*handler, clientset.Interface, *kubeadmapi.ClusterConfiguration) (kubeadmapi.ComponentConfig, error)
|
|
}
|
|
|
|
// FromDocumentMap looks in the document map for documents with this handler's group.
|
|
// If such are found a new component config is instantiated and the documents are loaded into it.
|
|
// No error is returned if no documents are found.
|
|
func (h *handler) FromDocumentMap(docmap kubeadmapi.DocumentMap) (kubeadmapi.ComponentConfig, error) {
|
|
for gvk := range docmap {
|
|
if gvk.Group == h.GroupVersion.Group {
|
|
cfg := h.CreateEmpty()
|
|
if err := cfg.Unmarshal(docmap); err != nil {
|
|
return nil, err
|
|
}
|
|
return cfg, nil
|
|
}
|
|
}
|
|
return nil, nil
|
|
}
|
|
|
|
// fromConfigMap is an utility function, which will load the value of a key of a config map and use h.FromDocumentMap() to perform the parsing
|
|
// This is an utility func. Used by the component config support implementations. Don't use it outside of that context.
|
|
func (h *handler) fromConfigMap(client clientset.Interface, cmName, cmKey string, mustExist bool) (kubeadmapi.ComponentConfig, error) {
|
|
configMap, err := apiclient.GetConfigMapWithRetry(client, metav1.NamespaceSystem, cmName)
|
|
if err != nil {
|
|
if !mustExist && (apierrors.IsNotFound(err) || apierrors.IsForbidden(err)) {
|
|
klog.Warningf("Warning: No %s config is loaded. Continuing without it: %v", h.GroupVersion, err)
|
|
return nil, nil
|
|
}
|
|
return nil, err
|
|
}
|
|
|
|
configData, ok := configMap.Data[cmKey]
|
|
if !ok {
|
|
return nil, errors.Errorf("unexpected error when reading %s ConfigMap: %s key value pair missing", cmName, cmKey)
|
|
}
|
|
|
|
gvkmap, err := kubeadmutil.SplitYAMLDocuments([]byte(configData))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return h.FromDocumentMap(gvkmap)
|
|
}
|
|
|
|
// FromCluster loads a component from a config map in the cluster
|
|
func (h *handler) FromCluster(clientset clientset.Interface, clusterCfg *kubeadmapi.ClusterConfiguration) (kubeadmapi.ComponentConfig, error) {
|
|
return h.fromCluster(h, clientset, clusterCfg)
|
|
}
|
|
|
|
// Marshal is an utility function, used by the component config support implementations to marshal a runtime.Object to YAML with the
|
|
// correct group and version
|
|
func (h *handler) Marshal(object runtime.Object) ([]byte, error) {
|
|
return kubeadmutil.MarshalToYamlForCodecs(object, h.GroupVersion, Codecs)
|
|
}
|
|
|
|
// Unmarshal attempts to unmarshal a runtime.Object from a document map. If no object is found, no error is returned.
|
|
// If a matching group is found, but no matching version an error is returned indicating that users should do manual conversion.
|
|
func (h *handler) Unmarshal(from kubeadmapi.DocumentMap, into runtime.Object) error {
|
|
for gvk, yaml := range from {
|
|
// If this is a different group, we ignore it
|
|
if gvk.Group != h.GroupVersion.Group {
|
|
continue
|
|
}
|
|
|
|
// If this is the correct group, but different version, we return an error
|
|
if gvk.Version != h.GroupVersion.Version {
|
|
// TODO: Replace this with a special error type and make UX better around it
|
|
return errors.Errorf("unexpected apiVersion %q, you may have to do manual conversion to %q and execute kubeadm again", gvk.GroupVersion(), h.GroupVersion)
|
|
}
|
|
|
|
// As long as we support only component configs with a single kind, this is allowed
|
|
return runtime.DecodeInto(Codecs.UniversalDecoder(), yaml, into)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// known holds the known component config handlers. Add new component configs here.
|
|
var known = []*handler{
|
|
&kubeProxyHandler,
|
|
&kubeletHandler,
|
|
}
|
|
|
|
// ensureInitializedComponentConfigs is an utility func to initialize the ComponentConfigMap in ClusterConfiguration prior to possible writes to it
|
|
func ensureInitializedComponentConfigs(clusterCfg *kubeadmapi.ClusterConfiguration) {
|
|
if clusterCfg.ComponentConfigs == nil {
|
|
clusterCfg.ComponentConfigs = kubeadmapi.ComponentConfigMap{}
|
|
}
|
|
}
|
|
|
|
// Default sets up defaulted component configs in the supplied ClusterConfiguration
|
|
func Default(clusterCfg *kubeadmapi.ClusterConfiguration, localAPIEndpoint *kubeadmapi.APIEndpoint) {
|
|
ensureInitializedComponentConfigs(clusterCfg)
|
|
|
|
for _, handler := range known {
|
|
// If the component config exists, simply default it. Otherwise, create it before defaulting.
|
|
group := handler.GroupVersion.Group
|
|
if componentCfg, ok := clusterCfg.ComponentConfigs[group]; ok {
|
|
componentCfg.Default(clusterCfg, localAPIEndpoint)
|
|
} else {
|
|
componentCfg := handler.CreateEmpty()
|
|
componentCfg.Default(clusterCfg, localAPIEndpoint)
|
|
clusterCfg.ComponentConfigs[group] = componentCfg
|
|
}
|
|
}
|
|
}
|
|
|
|
// FetchFromCluster attempts to fetch all known component configs from their config maps and store them in the supplied ClusterConfiguration
|
|
func FetchFromCluster(clusterCfg *kubeadmapi.ClusterConfiguration, client clientset.Interface) error {
|
|
ensureInitializedComponentConfigs(clusterCfg)
|
|
|
|
for _, handler := range known {
|
|
componentCfg, err := handler.FromCluster(client, clusterCfg)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if componentCfg != nil {
|
|
clusterCfg.ComponentConfigs[handler.GroupVersion.Group] = componentCfg
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// FetchFromDocumentMap attempts to load all known component configs from a document map into the supplied ClusterConfiguration
|
|
func FetchFromDocumentMap(clusterCfg *kubeadmapi.ClusterConfiguration, docmap kubeadmapi.DocumentMap) error {
|
|
ensureInitializedComponentConfigs(clusterCfg)
|
|
|
|
for _, handler := range known {
|
|
componentCfg, err := handler.FromDocumentMap(docmap)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if componentCfg != nil {
|
|
clusterCfg.ComponentConfigs[handler.GroupVersion.Group] = componentCfg
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// Validate is a placeholder for performing a validation on an already loaded component configs in a ClusterConfiguration
|
|
// Currently it prints a warning that no validation was performed
|
|
func Validate(clusterCfg *kubeadmapi.ClusterConfiguration) field.ErrorList {
|
|
groups := []string{}
|
|
for group := range clusterCfg.ComponentConfigs {
|
|
groups = append(groups, group)
|
|
}
|
|
sort.Strings(groups) // The sort is needed to make the output predictable
|
|
klog.Warningf("WARNING: kubeadm cannot validate component configs for API groups %v", groups)
|
|
return field.ErrorList{}
|
|
}
|