2022-09-03 12:48:48 +00:00
|
|
|
/*
|
|
|
|
|
Copyright 2022.
|
|
|
|
|
|
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
you may not use this file except in compliance with the License.
|
|
|
|
|
You may obtain a copy of the License at
|
|
|
|
|
|
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
|
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
See the License for the specific language governing permissions and
|
|
|
|
|
limitations under the License.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
package controllers
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"fmt"
|
|
|
|
|
|
2022-09-19 10:06:09 +00:00
|
|
|
buildv1alpha1 "github.com/kairos-io/osbuilder/api/v1alpha1"
|
2022-09-03 12:48:48 +00:00
|
|
|
appsv1 "k8s.io/api/apps/v1"
|
|
|
|
|
v1 "k8s.io/api/core/v1"
|
|
|
|
|
|
|
|
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
func genDeploymentLabel(s string) map[string]string {
|
|
|
|
|
return map[string]string{
|
|
|
|
|
"osbuild": "workload" + s,
|
|
|
|
|
}
|
|
|
|
|
}
|
2022-09-06 16:46:27 +00:00
|
|
|
|
|
|
|
|
// TODO: Handle registry auth
|
|
|
|
|
// TODO: This shells out, but needs ENV_VAR with key refs mapping
|
|
|
|
|
func unpackContainer(id, containerImage, pullImage string, pullOptions buildv1alpha1.Pull) v1.Container {
|
|
|
|
|
return v1.Container{
|
|
|
|
|
ImagePullPolicy: v1.PullAlways,
|
|
|
|
|
Name: fmt.Sprintf("pull-image-%s", id),
|
|
|
|
|
Image: containerImage,
|
|
|
|
|
Command: []string{"/bin/bash", "-cxe"},
|
|
|
|
|
Args: []string{
|
|
|
|
|
fmt.Sprintf(
|
|
|
|
|
"luet util unpack %s %s",
|
|
|
|
|
pullImage,
|
|
|
|
|
"/rootfs",
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
VolumeMounts: []v1.VolumeMount{
|
|
|
|
|
{
|
|
|
|
|
Name: "rootfs",
|
|
|
|
|
MountPath: "/rootfs",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func createImageContainer(containerImage string, pushOptions buildv1alpha1.Push) v1.Container {
|
|
|
|
|
return v1.Container{
|
|
|
|
|
ImagePullPolicy: v1.PullAlways,
|
|
|
|
|
Name: "create-image",
|
|
|
|
|
Image: containerImage,
|
|
|
|
|
Command: []string{"/bin/bash", "-cxe"},
|
|
|
|
|
Args: []string{
|
|
|
|
|
fmt.Sprintf(
|
|
|
|
|
"tar -czvpf test.tar -C /rootfs . && luet util pack %s test.tar image.tar && mv image.tar /public",
|
|
|
|
|
pushOptions.ImageName,
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
VolumeMounts: []v1.VolumeMount{
|
|
|
|
|
{
|
|
|
|
|
Name: "rootfs",
|
|
|
|
|
MountPath: "/rootfs",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "public",
|
|
|
|
|
MountPath: "/public",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-09-09 15:09:20 +00:00
|
|
|
func osReleaseContainer(containerImage string) v1.Container {
|
2022-09-06 16:46:27 +00:00
|
|
|
return v1.Container{
|
|
|
|
|
ImagePullPolicy: v1.PullAlways,
|
2022-09-09 15:09:20 +00:00
|
|
|
Name: "os-release",
|
2022-09-06 16:46:27 +00:00
|
|
|
Image: containerImage,
|
|
|
|
|
Command: []string{"/bin/bash", "-cxe"},
|
|
|
|
|
Args: []string{
|
2022-09-09 15:09:20 +00:00
|
|
|
"cp -rfv /etc/os-release /rootfs/etc/os-release",
|
2022-09-06 16:46:27 +00:00
|
|
|
},
|
|
|
|
|
VolumeMounts: []v1.VolumeMount{
|
|
|
|
|
{
|
2022-09-09 15:09:20 +00:00
|
|
|
Name: "config",
|
|
|
|
|
MountPath: "/etc/os-release",
|
|
|
|
|
SubPath: "os-release",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "rootfs",
|
|
|
|
|
MountPath: "/rootfs",
|
2022-09-06 16:46:27 +00:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-09-03 12:48:48 +00:00
|
|
|
func (r *OSArtifactReconciler) genDeployment(artifact buildv1alpha1.OSArtifact) *appsv1.Deployment {
|
|
|
|
|
objMeta := metav1.ObjectMeta{
|
|
|
|
|
Name: artifact.Name,
|
|
|
|
|
Namespace: artifact.Namespace,
|
|
|
|
|
OwnerReferences: genOwner(artifact),
|
|
|
|
|
}
|
|
|
|
|
|
2022-09-06 16:46:27 +00:00
|
|
|
pushImage := artifact.Spec.PushOptions.Push
|
|
|
|
|
|
2022-09-03 12:48:48 +00:00
|
|
|
privileged := false
|
|
|
|
|
serviceAccount := false
|
2022-09-06 16:46:27 +00:00
|
|
|
|
2022-09-03 12:48:48 +00:00
|
|
|
buildIsoContainer := v1.Container{
|
|
|
|
|
ImagePullPolicy: v1.PullAlways,
|
|
|
|
|
SecurityContext: &v1.SecurityContext{Privileged: &privileged},
|
|
|
|
|
Name: "build-iso",
|
2022-09-13 21:55:53 +00:00
|
|
|
Image: r.ToolImage,
|
2022-09-03 12:48:48 +00:00
|
|
|
Command: []string{"/bin/bash", "-cxe"},
|
|
|
|
|
Args: []string{
|
|
|
|
|
fmt.Sprintf(
|
2022-09-13 20:49:18 +00:00
|
|
|
"/entrypoint.sh --debug --name %s build-iso --date=false --overlay-iso /iso/iso-overlay --output /public dir:/rootfs",
|
2022-09-03 12:48:48 +00:00
|
|
|
artifact.Name,
|
|
|
|
|
),
|
|
|
|
|
},
|
|
|
|
|
VolumeMounts: []v1.VolumeMount{
|
|
|
|
|
{
|
|
|
|
|
Name: "public",
|
|
|
|
|
MountPath: "/public",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "config",
|
|
|
|
|
MountPath: "/iso/iso-overlay/cloud_config.yaml",
|
|
|
|
|
SubPath: "config",
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-09-06 16:46:27 +00:00
|
|
|
Name: "config",
|
2022-09-03 12:48:48 +00:00
|
|
|
MountPath: "/iso/iso-overlay/boot/grub2/grub.cfg",
|
|
|
|
|
SubPath: "grub.cfg",
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "rootfs",
|
|
|
|
|
MountPath: "/rootfs",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
servingContainer := v1.Container{
|
|
|
|
|
ImagePullPolicy: v1.PullAlways,
|
|
|
|
|
SecurityContext: &v1.SecurityContext{Privileged: &privileged},
|
|
|
|
|
Name: "serve",
|
|
|
|
|
Ports: []v1.ContainerPort{v1.ContainerPort{Name: "http", ContainerPort: 80}},
|
|
|
|
|
Image: r.ServingImage,
|
|
|
|
|
VolumeMounts: []v1.VolumeMount{
|
|
|
|
|
{
|
|
|
|
|
Name: "public",
|
|
|
|
|
MountPath: "/usr/share/nginx/html",
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pod := v1.PodSpec{
|
|
|
|
|
AutomountServiceAccountToken: &serviceAccount,
|
|
|
|
|
Volumes: []v1.Volume{
|
|
|
|
|
{
|
|
|
|
|
Name: "public",
|
|
|
|
|
VolumeSource: v1.VolumeSource{EmptyDir: &v1.EmptyDirVolumeSource{}},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "rootfs",
|
|
|
|
|
VolumeSource: v1.VolumeSource{EmptyDir: &v1.EmptyDirVolumeSource{}},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Name: "config",
|
|
|
|
|
VolumeSource: v1.VolumeSource{
|
|
|
|
|
ConfigMap: &v1.ConfigMapVolumeSource{
|
|
|
|
|
LocalObjectReference: v1.LocalObjectReference{Name: artifact.Name}}},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
2022-09-06 16:46:27 +00:00
|
|
|
pod.InitContainers = []v1.Container{unpackContainer("baseimage", r.ToolImage, artifact.Spec.ImageName, artifact.Spec.PullOptions)}
|
|
|
|
|
|
|
|
|
|
for i, bundle := range artifact.Spec.Bundles {
|
|
|
|
|
pod.InitContainers = append(pod.InitContainers, unpackContainer(fmt.Sprint(i), r.ToolImage, bundle, artifact.Spec.PullOptions))
|
2022-09-03 12:48:48 +00:00
|
|
|
}
|
2022-09-06 16:46:27 +00:00
|
|
|
|
2022-09-09 15:09:20 +00:00
|
|
|
if artifact.Spec.OSRelease != "" {
|
|
|
|
|
pod.InitContainers = append(pod.InitContainers, osReleaseContainer(r.ToolImage))
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2022-09-06 16:46:27 +00:00
|
|
|
pod.InitContainers = append(pod.InitContainers, buildIsoContainer)
|
|
|
|
|
|
|
|
|
|
if pushImage {
|
|
|
|
|
pod.InitContainers = append(pod.InitContainers, createImageContainer(r.ToolImage, artifact.Spec.PushOptions))
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2022-09-03 12:48:48 +00:00
|
|
|
pod.Containers = []v1.Container{servingContainer}
|
|
|
|
|
|
|
|
|
|
deploymentLabels := genDeploymentLabel(artifact.Name)
|
|
|
|
|
replicas := int32(1)
|
|
|
|
|
|
|
|
|
|
return &appsv1.Deployment{
|
|
|
|
|
ObjectMeta: objMeta,
|
|
|
|
|
|
|
|
|
|
Spec: appsv1.DeploymentSpec{
|
|
|
|
|
Selector: &metav1.LabelSelector{MatchLabels: deploymentLabels},
|
|
|
|
|
Replicas: &replicas,
|
|
|
|
|
Template: v1.PodTemplateSpec{
|
|
|
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
|
|
|
Labels: deploymentLabels,
|
|
|
|
|
},
|
|
|
|
|
Spec: pod,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
}
|
