rke/cluster/defaults.go

package cluster

import (
	"context"

	ref "github.com/docker/distribution/reference"
	"github.com/rancher/rke/log"
	"github.com/rancher/rke/services"
)

const (
	DefaultClusterConfig = "cluster.yml"

	DefaultServiceClusterIPRange = "10.233.0.0/18"
	DefaultClusterCIDR           = "10.233.64.0/18"
	DefaultClusterDNSService     = "10.233.0.3"
	DefaultClusterDomain         = "cluster.local"
	DefaultClusterSSHKeyPath     = "~/.ssh/id_rsa"

	DefaultDockerSockPath = "/var/run/docker.sock"

	DefaultAuthStrategy      = "x509"
	DefaultAuthorizationMode = "rbac"

	DefaultNetworkPlugin        = "flannel"
	DefaultNetworkCloudProvider = "none"

	DefaultInfraContainerImage            = "rancher/pause-amd64:3.0"
	DefaultAplineImage                    = "alpine:latest"
	DefaultNginxProxyImage                = "rancher/rke-nginx-proxy:v0.1.1"
	DefaultCertDownloaderImage            = "rancher/rke-cert-deployer:v0.1.1"
	DefaultKubernetesServicesSidecarImage = "rancher/rke-service-sidekick:v0.1.0"
	DefaultIngressController              = "nginx"

	DefaultEtcdImage = "rancher/etcd:v3.0.17"
	DefaultK8sImage  = "rancher/k8s:v1.8.5-rancher4"

	DefaultFlannelImage    = "rancher/coreos-flannel:v0.9.1"
	DefaultFlannelCNIImage = "rancher/coreos-flannel-cni:v0.2.0"

	DefaultCalicoNodeImage        = "rancher/calico-node:v2.6.2"
	DefaultCalicoCNIImage         = "rancher/calico-cni:v1.11.0"
	DefaultCalicoControllersImage = "rancher/calico-kube-controllers:v1.0.0"
	DefaultCalicoctlImage         = "rancher/calico-ctl:v1.6.2"

	DefaultWeaveImage    = "weaveworks/weave-kube:2.1.2"
	DefaultWeaveCNIImage = "weaveworks/weave-npc:2.1.2"

	DefaultCanalNodeImage    = "rancher/calico-node:v2.6.2"
	DefaultCanalCNIImage     = "rancher/calico-cni:v1.11.0"
	DefaultCanalFlannelImage = "rancher/coreos-flannel:v0.9.1"

	DefaultKubeDNSImage           = "rancher/k8s-dns-kube-dns-amd64:1.14.5"
	DefaultDNSmasqImage           = "rancher/k8s-dns-dnsmasq-nanny-amd64:1.14.5"
	DefaultKubeDNSSidecarImage    = "rancher/k8s-dns-sidecar-amd64:1.14.5"
	DefaultKubeDNSAutoScalerImage = "rancher/cluster-proportional-autoscaler-amd64:1.0.0"
)

func setDefaultIfEmptyMapValue(configMap map[string]string, key string, value string) {
	if _, ok := configMap[key]; !ok {
		configMap[key] = value
	}
}

func setDefaultIfEmpty(varName *string, defaultValue string) {
	if len(*varName) == 0 {
		*varName = defaultValue
	}
}

func (c *Cluster) setClusterDefaults(ctx context.Context) {
	if len(c.SSHKeyPath) == 0 {
		c.SSHKeyPath = DefaultClusterSSHKeyPath
	}
	for i, host := range c.Nodes {
		if len(host.InternalAddress) == 0 {
			c.Nodes[i].InternalAddress = c.Nodes[i].Address
		}
		if len(host.HostnameOverride) == 0 {
			// This is a temporary modification
			c.Nodes[i].HostnameOverride = c.Nodes[i].Address
		}
		if len(host.SSHKeyPath) == 0 {
			c.Nodes[i].SSHKeyPath = c.SSHKeyPath
		}
	}
	if len(c.Authorization.Mode) == 0 {
		c.Authorization.Mode = DefaultAuthorizationMode
	}
	if c.Services.KubeAPI.PodSecurityPolicy && c.Authorization.Mode != services.RBACAuthorizationMode {
		log.Warnf(ctx, "PodSecurityPolicy can't be enabled with RBAC support disabled")
		c.Services.KubeAPI.PodSecurityPolicy = false
	}
	if len(c.Ingress.Type) == 0 {
		c.Ingress.Type = DefaultIngressController
	}

	c.setClusterImageDefaults()
	c.setClusterKubernetesImageVersion(ctx)
	c.setClusterServicesDefaults()
	c.setClusterNetworkDefaults()
}

func (c *Cluster) setClusterKubernetesImageVersion(ctx context.Context) {
	k8sImageNamed, _ := ref.ParseNormalizedNamed(c.SystemImages.Kubernetes)
	// Kubernetes image is already set by c.setClusterImageDefaults(),
	// I will override it here if Version is set.
	var VersionedImageNamed ref.NamedTagged
	if c.Version != "" {
		VersionedImageNamed, _ = ref.WithTag(ref.TrimNamed(k8sImageNamed), c.Version)
		c.SystemImages.Kubernetes = VersionedImageNamed.String()
	}
	normalizedSystemImage, _ := ref.ParseNormalizedNamed(c.SystemImages.Kubernetes)
	if normalizedSystemImage.String() != k8sImageNamed.String() {
		log.Infof(ctx, "Overrding Kubernetes image [%s] with tag [%s]", VersionedImageNamed.Name(), VersionedImageNamed.Tag())
	}
}

func (c *Cluster) setClusterServicesDefaults() {
	serviceConfigDefaultsMap := map[*string]string{
		&c.Services.KubeAPI.ServiceClusterIPRange:        DefaultServiceClusterIPRange,
		&c.Services.KubeController.ServiceClusterIPRange: DefaultServiceClusterIPRange,
		&c.Services.KubeController.ClusterCIDR:           DefaultClusterCIDR,
		&c.Services.Kubelet.ClusterDNSServer:             DefaultClusterDNSService,
		&c.Services.Kubelet.ClusterDomain:                DefaultClusterDomain,
		&c.Services.Kubelet.InfraContainerImage:          c.SystemImages.PodInfraContainer,
		&c.Authentication.Strategy:                       DefaultAuthStrategy,
		&c.Services.KubeAPI.Image:                        c.SystemImages.Kubernetes,
		&c.Services.Scheduler.Image:                      c.SystemImages.Kubernetes,
		&c.Services.KubeController.Image:                 c.SystemImages.Kubernetes,
		&c.Services.Kubelet.Image:                        c.SystemImages.Kubernetes,
		&c.Services.Kubeproxy.Image:                      c.SystemImages.Kubernetes,
		&c.Services.Etcd.Image:                           c.SystemImages.Etcd,
	}
	for k, v := range serviceConfigDefaultsMap {
		setDefaultIfEmpty(k, v)
	}
}

func (c *Cluster) setClusterImageDefaults() {

	systemImagesDefaultsMap := map[*string]string{
		&c.SystemImages.Alpine:                    DefaultAplineImage,
		&c.SystemImages.NginxProxy:                DefaultNginxProxyImage,
		&c.SystemImages.CertDownloader:            DefaultCertDownloaderImage,
		&c.SystemImages.KubeDNS:                   DefaultKubeDNSImage,
		&c.SystemImages.KubeDNSSidecar:            DefaultKubeDNSSidecarImage,
		&c.SystemImages.DNSmasq:                   DefaultDNSmasqImage,
		&c.SystemImages.KubeDNSAutoscaler:         DefaultKubeDNSAutoScalerImage,
		&c.SystemImages.KubernetesServicesSidecar: DefaultKubernetesServicesSidecarImage,
		&c.SystemImages.Etcd:                      DefaultEtcdImage,
		&c.SystemImages.Kubernetes:                DefaultK8sImage,
		&c.SystemImages.PodInfraContainer:         DefaultInfraContainerImage,
		&c.SystemImages.Flannel:                   DefaultFlannelImage,
		&c.SystemImages.FlannelCNI:                DefaultFlannelCNIImage,
		&c.SystemImages.CalicoNode:                DefaultCalicoNodeImage,
		&c.SystemImages.CalicoCNI:                 DefaultCalicoCNIImage,
		&c.SystemImages.CalicoControllers:         DefaultCalicoControllersImage,
		&c.SystemImages.CalicoCtl:                 DefaultCalicoctlImage,
		&c.SystemImages.CanalNode:                 DefaultCanalNodeImage,
		&c.SystemImages.CanalCNI:                  DefaultCanalCNIImage,
		&c.SystemImages.CanalFlannel:              DefaultCanalFlannelImage,
		&c.SystemImages.WeaveNode:                 DefaultWeaveImage,
		&c.SystemImages.WeaveCNI:                  DefaultWeaveCNIImage,
	}
	for k, v := range systemImagesDefaultsMap {
		setDefaultIfEmpty(k, v)
	}
}

func (c *Cluster) setClusterNetworkDefaults() {
	setDefaultIfEmpty(&c.Network.Plugin, DefaultNetworkPlugin)

	if c.Network.Options == nil {
		// don't break if the user didn't define options
		c.Network.Options = make(map[string]string)
	}
	networkPluginConfigDefaultsMap := make(map[string]string)
	switch c.Network.Plugin {

	case CalicoNetworkPlugin:
		networkPluginConfigDefaultsMap = map[string]string{
			CalicoCloudProvider: DefaultNetworkCloudProvider,
		}
	}
	for k, v := range networkPluginConfigDefaultsMap {
		setDefaultIfEmptyMapValue(c.Network.Options, k, v)
	}

}
Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00			`package cluster`

Add nginx ingress controller and labels/taints sync 2018-02-01 21:28:31 +00:00			`import (`
			`"context"`

			`ref "github.com/docker/distribution/reference"`
			`"github.com/rancher/rke/log"`
			`"github.com/rancher/rke/services"`
			`)`

Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00			`const (`
			`DefaultClusterConfig = "cluster.yml"`

			`DefaultServiceClusterIPRange = "10.233.0.0/18"`
			`DefaultClusterCIDR = "10.233.64.0/18"`
			`DefaultClusterDNSService = "10.233.0.3"`
			`DefaultClusterDomain = "cluster.local"`
			`DefaultClusterSSHKeyPath = "~/.ssh/id_rsa"`

Enable RBAC and needed addons/network plugin configuration 2017-12-14 21:56:19 +00:00			`DefaultDockerSockPath = "/var/run/docker.sock"`

Make RBAC default authz mode 2017-12-14 21:56:19 +00:00			`DefaultAuthStrategy = "x509"`
Fix rbac typo 2017-12-16 09:48:42 +00:00			`DefaultAuthorizationMode = "rbac"`
Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00
Enable AWS specific configuration for Calico 2017-12-07 18:07:23 +00:00			`DefaultNetworkPlugin = "flannel"`
			`DefaultNetworkCloudProvider = "none"`
Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00
Move network plugin images to SystemImages 2018-02-05 15:50:39 +00:00			`DefaultInfraContainerImage = "rancher/pause-amd64:3.0"`
Add SystemImages type 2018-01-30 12:32:50 +00:00			`DefaultAplineImage = "alpine:latest"`
			`DefaultNginxProxyImage = "rancher/rke-nginx-proxy:v0.1.1"`
			`DefaultCertDownloaderImage = "rancher/rke-cert-deployer:v0.1.1"`
			`DefaultKubernetesServicesSidecarImage = "rancher/rke-service-sidekick:v0.1.0"`
Add nginx ingress controller and labels/taints sync 2018-02-01 21:28:31 +00:00			`DefaultIngressController = "nginx"`
Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00
Move default system images to rancher 2018-02-03 07:41:37 +00:00			`DefaultEtcdImage = "rancher/etcd:v3.0.17"`
Update kubernetes image to v1.8.5-rancher4 2018-01-22 23:11:34 +00:00			`DefaultK8sImage = "rancher/k8s:v1.8.5-rancher4"`
Enable RBAC and needed addons/network plugin configuration 2017-12-14 21:56:19 +00:00
Move network plugin images to SystemImages 2018-02-05 15:50:39 +00:00			`DefaultFlannelImage = "rancher/coreos-flannel:v0.9.1"`
			`DefaultFlannelCNIImage = "rancher/coreos-flannel-cni:v0.2.0"`
Enable AWS specific configuration for Calico 2017-12-07 18:07:23 +00:00
Move network plugin images to SystemImages 2018-02-05 15:50:39 +00:00			`DefaultCalicoNodeImage = "rancher/calico-node:v2.6.2"`
			`DefaultCalicoCNIImage = "rancher/calico-cni:v1.11.0"`
			`DefaultCalicoControllersImage = "rancher/calico-kube-controllers:v1.0.0"`
			`DefaultCalicoctlImage = "rancher/calico-ctl:v1.6.2"`
Enable AWS specific configuration for Calico 2017-12-07 18:07:23 +00:00
			`DefaultWeaveImage = "weaveworks/weave-kube:2.1.2"`
			`DefaultWeaveCNIImage = "weaveworks/weave-npc:2.1.2"`

Move network plugin images to SystemImages 2018-02-05 15:50:39 +00:00			`DefaultCanalNodeImage = "rancher/calico-node:v2.6.2"`
			`DefaultCanalCNIImage = "rancher/calico-cni:v1.11.0"`
			`DefaultCanalFlannelImage = "rancher/coreos-flannel:v0.9.1"`
Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00
Move default system images to rancher 2018-02-03 07:41:37 +00:00			`DefaultKubeDNSImage = "rancher/k8s-dns-kube-dns-amd64:1.14.5"`
			`DefaultDNSmasqImage = "rancher/k8s-dns-dnsmasq-nanny-amd64:1.14.5"`
			`DefaultKubeDNSSidecarImage = "rancher/k8s-dns-sidecar-amd64:1.14.5"`
			`DefaultKubeDNSAutoScalerImage = "rancher/cluster-proportional-autoscaler-amd64:1.0.0"`
Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00			`)`

			`func setDefaultIfEmptyMapValue(configMap map[string]string, key string, value string) {`
			`if _, ok := configMap[key]; !ok {`
			`configMap[key] = value`
			`}`
			`}`
Add nginx ingress controller and labels/taints sync 2018-02-01 21:28:31 +00:00
Add user-configurable images Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images 2017-12-05 01:29:29 +00:00			`func setDefaultIfEmpty(varName *string, defaultValue string) {`
			`if len(*varName) == 0 {`
			`*varName = defaultValue`
			`}`
			`}`
Add nginx ingress controller and labels/taints sync 2018-02-01 21:28:31 +00:00
			`func (c *Cluster) setClusterDefaults(ctx context.Context) {`
			`if len(c.SSHKeyPath) == 0 {`
			`c.SSHKeyPath = DefaultClusterSSHKeyPath`
			`}`
			`for i, host := range c.Nodes {`
			`if len(host.InternalAddress) == 0 {`
			`c.Nodes[i].InternalAddress = c.Nodes[i].Address`
			`}`
			`if len(host.HostnameOverride) == 0 {`
			`// This is a temporary modification`
			`c.Nodes[i].HostnameOverride = c.Nodes[i].Address`
			`}`
			`if len(host.SSHKeyPath) == 0 {`
			`c.Nodes[i].SSHKeyPath = c.SSHKeyPath`
			`}`
			`}`
			`if len(c.Authorization.Mode) == 0 {`
			`c.Authorization.Mode = DefaultAuthorizationMode`
			`}`
			`if c.Services.KubeAPI.PodSecurityPolicy && c.Authorization.Mode != services.RBACAuthorizationMode {`
			`log.Warnf(ctx, "PodSecurityPolicy can't be enabled with RBAC support disabled")`
			`c.Services.KubeAPI.PodSecurityPolicy = false`
			`}`
			`if len(c.Ingress.Type) == 0 {`
			`c.Ingress.Type = DefaultIngressController`
			`}`

			`c.setClusterImageDefaults()`
			`c.setClusterKubernetesImageVersion(ctx)`
			`c.setClusterServicesDefaults()`
			`c.setClusterNetworkDefaults()`
			`}`

			`func (c *Cluster) setClusterKubernetesImageVersion(ctx context.Context) {`
			`k8sImageNamed, _ := ref.ParseNormalizedNamed(c.SystemImages.Kubernetes)`
			`// Kubernetes image is already set by c.setClusterImageDefaults(),`
			`// I will override it here if Version is set.`
			`var VersionedImageNamed ref.NamedTagged`
			`if c.Version != "" {`
			`VersionedImageNamed, _ = ref.WithTag(ref.TrimNamed(k8sImageNamed), c.Version)`
			`c.SystemImages.Kubernetes = VersionedImageNamed.String()`
			`}`
			`normalizedSystemImage, _ := ref.ParseNormalizedNamed(c.SystemImages.Kubernetes)`
			`if normalizedSystemImage.String() != k8sImageNamed.String() {`
			`log.Infof(ctx, "Overrding Kubernetes image [%s] with tag [%s]", VersionedImageNamed.Name(), VersionedImageNamed.Tag())`
			`}`
			`}`

			`func (c *Cluster) setClusterServicesDefaults() {`
			`serviceConfigDefaultsMap := map[*string]string{`
			`&c.Services.KubeAPI.ServiceClusterIPRange: DefaultServiceClusterIPRange,`
			`&c.Services.KubeController.ServiceClusterIPRange: DefaultServiceClusterIPRange,`
			`&c.Services.KubeController.ClusterCIDR: DefaultClusterCIDR,`
			`&c.Services.Kubelet.ClusterDNSServer: DefaultClusterDNSService,`
			`&c.Services.Kubelet.ClusterDomain: DefaultClusterDomain,`
Move network plugin images to SystemImages 2018-02-05 15:50:39 +00:00			`&c.Services.Kubelet.InfraContainerImage: c.SystemImages.PodInfraContainer,`
Add nginx ingress controller and labels/taints sync 2018-02-01 21:28:31 +00:00			`&c.Authentication.Strategy: DefaultAuthStrategy,`
			`&c.Services.KubeAPI.Image: c.SystemImages.Kubernetes,`
			`&c.Services.Scheduler.Image: c.SystemImages.Kubernetes,`
			`&c.Services.KubeController.Image: c.SystemImages.Kubernetes,`
			`&c.Services.Kubelet.Image: c.SystemImages.Kubernetes,`
			`&c.Services.Kubeproxy.Image: c.SystemImages.Kubernetes,`
			`&c.Services.Etcd.Image: c.SystemImages.Etcd,`
			`}`
			`for k, v := range serviceConfigDefaultsMap {`
			`setDefaultIfEmpty(k, v)`
			`}`
			`}`

			`func (c *Cluster) setClusterImageDefaults() {`

			`systemImagesDefaultsMap := map[*string]string{`
			`&c.SystemImages.Alpine: DefaultAplineImage,`
			`&c.SystemImages.NginxProxy: DefaultNginxProxyImage,`
			`&c.SystemImages.CertDownloader: DefaultCertDownloaderImage,`
			`&c.SystemImages.KubeDNS: DefaultKubeDNSImage,`
			`&c.SystemImages.KubeDNSSidecar: DefaultKubeDNSSidecarImage,`
			`&c.SystemImages.DNSmasq: DefaultDNSmasqImage,`
			`&c.SystemImages.KubeDNSAutoscaler: DefaultKubeDNSAutoScalerImage,`
			`&c.SystemImages.KubernetesServicesSidecar: DefaultKubernetesServicesSidecarImage,`
			`&c.SystemImages.Etcd: DefaultEtcdImage,`
			`&c.SystemImages.Kubernetes: DefaultK8sImage,`
Move network plugin images to SystemImages 2018-02-05 15:50:39 +00:00			`&c.SystemImages.PodInfraContainer: DefaultInfraContainerImage,`
			`&c.SystemImages.Flannel: DefaultFlannelImage,`
			`&c.SystemImages.FlannelCNI: DefaultFlannelCNIImage,`
			`&c.SystemImages.CalicoNode: DefaultCalicoNodeImage,`
			`&c.SystemImages.CalicoCNI: DefaultCalicoCNIImage,`
			`&c.SystemImages.CalicoControllers: DefaultCalicoControllersImage,`
			`&c.SystemImages.CalicoCtl: DefaultCalicoctlImage,`
			`&c.SystemImages.CanalNode: DefaultCanalNodeImage,`
			`&c.SystemImages.CanalCNI: DefaultCanalCNIImage,`
			`&c.SystemImages.CanalFlannel: DefaultCanalFlannelImage,`
			`&c.SystemImages.WeaveNode: DefaultWeaveImage,`
			`&c.SystemImages.WeaveCNI: DefaultWeaveCNIImage,`
Add nginx ingress controller and labels/taints sync 2018-02-01 21:28:31 +00:00			`}`
			`for k, v := range systemImagesDefaultsMap {`
			`setDefaultIfEmpty(k, v)`
			`}`
			`}`
Move network plugin images to SystemImages 2018-02-05 15:50:39 +00:00
			`func (c *Cluster) setClusterNetworkDefaults() {`
			`setDefaultIfEmpty(&c.Network.Plugin, DefaultNetworkPlugin)`

			`if c.Network.Options == nil {`
			`// don't break if the user didn't define options`
			`c.Network.Options = make(map[string]string)`
			`}`
			`networkPluginConfigDefaultsMap := make(map[string]string)`
			`switch c.Network.Plugin {`

			`case CalicoNetworkPlugin:`
			`networkPluginConfigDefaultsMap = map[string]string{`
			`CalicoCloudProvider: DefaultNetworkCloudProvider,`
			`}`
			`}`
			`for k, v := range networkPluginConfigDefaultsMap {`
			`setDefaultIfEmptyMapValue(c.Network.Options, k, v)`
			`}`

			`}`