mirror of
https://github.com/rancher/rke.git
synced 2025-08-01 23:33:39 +00:00
0ee002b2cf
Refactor configuration defaults Add comments to config Add configurable utility images Add configurable network plugin images Add configurable kubedns images
219 lines
7.1 KiB
Go
219 lines
7.1 KiB
Go
package cluster
|
|
|
|
import (
|
|
"fmt"
|
|
"net"
|
|
"path/filepath"
|
|
"strings"
|
|
|
|
"github.com/rancher/rke/hosts"
|
|
"github.com/rancher/rke/pki"
|
|
"github.com/rancher/rke/services"
|
|
"github.com/rancher/types/apis/management.cattle.io/v3"
|
|
"github.com/sirupsen/logrus"
|
|
"gopkg.in/yaml.v2"
|
|
"k8s.io/client-go/kubernetes"
|
|
"k8s.io/client-go/tools/clientcmd"
|
|
"k8s.io/client-go/util/cert"
|
|
)
|
|
|
|
type Cluster struct {
|
|
v3.RancherKubernetesEngineConfig `yaml:",inline"`
|
|
ConfigPath string `yaml:"config_path"`
|
|
LocalKubeConfigPath string
|
|
EtcdHosts []*hosts.Host
|
|
WorkerHosts []*hosts.Host
|
|
ControlPlaneHosts []*hosts.Host
|
|
KubeClient *kubernetes.Clientset
|
|
KubernetesServiceIP net.IP
|
|
Certificates map[string]pki.CertificatePKI
|
|
ClusterDomain string
|
|
ClusterCIDR string
|
|
ClusterDNSServer string
|
|
}
|
|
|
|
const (
|
|
X509AuthenticationProvider = "x509"
|
|
StateConfigMapName = "cluster-state"
|
|
UpdateStateTimeout = 30
|
|
GetStateTimeout = 30
|
|
KubernetesClientTimeOut = 30
|
|
AplineImage = "alpine"
|
|
NginxProxyImage = "nginx_proxy"
|
|
CertDownloaderImage = "cert_downloader"
|
|
KubeDNSImage = "kubedns_image"
|
|
DNSMasqImage = "dnsmasq_image"
|
|
KubeDNSSidecarImage = "kubedns_sidecar_image"
|
|
KubeDNSAutoScalerImage = "kubedns_autoscaler_image"
|
|
)
|
|
|
|
func (c *Cluster) DeployClusterPlanes() error {
|
|
// Deploy Kubernetes Planes
|
|
err := services.RunEtcdPlane(c.EtcdHosts, c.Services.Etcd)
|
|
if err != nil {
|
|
return fmt.Errorf("[etcd] Failed to bring up Etcd Plane: %v", err)
|
|
}
|
|
err = services.RunControlPlane(c.ControlPlaneHosts, c.EtcdHosts, c.Services)
|
|
if err != nil {
|
|
return fmt.Errorf("[controlPlane] Failed to bring up Control Plane: %v", err)
|
|
}
|
|
err = services.RunWorkerPlane(c.ControlPlaneHosts, c.WorkerHosts, c.Services, c.SystemImages[NginxProxyImage])
|
|
if err != nil {
|
|
return fmt.Errorf("[workerPlane] Failed to bring up Worker Plane: %v", err)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func ParseConfig(clusterFile string) (*Cluster, error) {
|
|
logrus.Debugf("Parsing cluster file [%v]", clusterFile)
|
|
var err error
|
|
c, err := parseClusterFile(clusterFile)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("Failed to parse the cluster file: %v", err)
|
|
}
|
|
err = c.InvertIndexHosts()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("Failed to classify hosts from config file: %v", err)
|
|
}
|
|
|
|
err = c.ValidateCluster()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("Failed to validate cluster: %v", err)
|
|
}
|
|
|
|
c.KubernetesServiceIP, err = services.GetKubernetesServiceIP(c.Services.KubeAPI.ServiceClusterIPRange)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("Failed to get Kubernetes Service IP: %v", err)
|
|
}
|
|
c.ClusterDomain = c.Services.Kubelet.ClusterDomain
|
|
c.ClusterCIDR = c.Services.KubeController.ClusterCIDR
|
|
c.ClusterDNSServer = c.Services.Kubelet.ClusterDNSServer
|
|
if len(c.ConfigPath) == 0 {
|
|
c.ConfigPath = DefaultClusterConfig
|
|
}
|
|
c.LocalKubeConfigPath = GetLocalKubeConfig(c.ConfigPath)
|
|
return c, nil
|
|
}
|
|
|
|
func parseClusterFile(clusterFile string) (*Cluster, error) {
|
|
// parse hosts
|
|
var kubeCluster Cluster
|
|
err := yaml.Unmarshal([]byte(clusterFile), &kubeCluster)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
// Setting cluster Defaults
|
|
kubeCluster.setClusterDefaults()
|
|
|
|
return &kubeCluster, nil
|
|
}
|
|
|
|
func (c *Cluster) setClusterDefaults() {
|
|
if len(c.SSHKeyPath) == 0 {
|
|
c.SSHKeyPath = DefaultClusterSSHKeyPath
|
|
}
|
|
for i, host := range c.Nodes {
|
|
if len(host.InternalAddress) == 0 {
|
|
c.Nodes[i].InternalAddress = c.Nodes[i].Address
|
|
}
|
|
if len(host.HostnameOverride) == 0 {
|
|
// This is a temporary modification
|
|
c.Nodes[i].HostnameOverride = c.Nodes[i].Address
|
|
}
|
|
if len(host.SSHKeyPath) == 0 {
|
|
c.Nodes[i].SSHKeyPath = c.SSHKeyPath
|
|
}
|
|
}
|
|
c.setClusterServicesDefaults()
|
|
c.setClusterNetworkDefaults()
|
|
c.setClusterImageDefaults()
|
|
}
|
|
|
|
func (c *Cluster) setClusterServicesDefaults() {
|
|
serviceConfigDefaultsMap := map[string]string{
|
|
c.Services.KubeAPI.ServiceClusterIPRange: DefaultServiceClusterIPRange,
|
|
c.Services.KubeController.ServiceClusterIPRange: DefaultServiceClusterIPRange,
|
|
c.Services.KubeController.ClusterCIDR: DefaultClusterCIDR,
|
|
c.Services.Kubelet.ClusterDNSServer: DefaultClusterDNSService,
|
|
c.Services.Kubelet.ClusterDomain: DefaultClusterDomain,
|
|
c.Services.Kubelet.InfraContainerImage: DefaultInfraContainerImage,
|
|
c.Authentication.Strategy: DefaultAuthStrategy,
|
|
}
|
|
for k, v := range serviceConfigDefaultsMap {
|
|
setDefaultIfEmpty(&k, v)
|
|
}
|
|
}
|
|
|
|
func (c *Cluster) setClusterImageDefaults() {
|
|
if c.SystemImages == nil {
|
|
// don't break if the user didn't define rke_images
|
|
c.SystemImages = make(map[string]string)
|
|
}
|
|
systemImagesDefaultsMap := map[string]string{
|
|
AplineImage: DefaultAplineImage,
|
|
NginxProxyImage: DefaultNginxProxyImage,
|
|
CertDownloaderImage: DefaultCertDownloaderImage,
|
|
KubeDNSImage: DefaultKubeDNSImage,
|
|
DNSMasqImage: DefaultDNSMasqImage,
|
|
KubeDNSSidecarImage: DefaultKubeDNSSidecarImage,
|
|
KubeDNSAutoScalerImage: DefaultKubeDNSAutoScalerImage,
|
|
}
|
|
for k, v := range systemImagesDefaultsMap {
|
|
setDefaultIfEmptyMapValue(c.SystemImages, k, v)
|
|
}
|
|
}
|
|
|
|
func GetLocalKubeConfig(configPath string) string {
|
|
baseDir := filepath.Dir(configPath)
|
|
fileName := filepath.Base(configPath)
|
|
baseDir += "/"
|
|
return fmt.Sprintf("%s%s%s", baseDir, pki.KubeAdminConfigPrefix, fileName)
|
|
}
|
|
|
|
func rebuildLocalAdminConfig(kubeCluster *Cluster) error {
|
|
logrus.Infof("[reconcile] Rebuilding and update local kube config")
|
|
var workingConfig string
|
|
currentKubeConfig := kubeCluster.Certificates[pki.KubeAdminCommonName]
|
|
caCrt := kubeCluster.Certificates[pki.CACertName].Certificate
|
|
for _, cpHost := range kubeCluster.ControlPlaneHosts {
|
|
newConfig := pki.GetKubeConfigX509WithData(
|
|
"https://"+cpHost.Address+":6443",
|
|
pki.KubeAdminCommonName,
|
|
string(cert.EncodeCertPEM(caCrt)),
|
|
string(cert.EncodeCertPEM(currentKubeConfig.Certificate)),
|
|
string(cert.EncodePrivateKeyPEM(currentKubeConfig.Key)))
|
|
|
|
if err := pki.DeployAdminConfig(newConfig, kubeCluster.LocalKubeConfigPath); err != nil {
|
|
return fmt.Errorf("Failed to redeploy local admin config with new host")
|
|
}
|
|
workingConfig = newConfig
|
|
if _, err := GetK8sVersion(kubeCluster.LocalKubeConfigPath); err != nil {
|
|
logrus.Infof("[reconcile] host [%s] is not active master on the cluster", cpHost.Address)
|
|
continue
|
|
} else {
|
|
break
|
|
}
|
|
}
|
|
currentKubeConfig.Config = workingConfig
|
|
kubeCluster.Certificates[pki.KubeAdminCommonName] = currentKubeConfig
|
|
return nil
|
|
}
|
|
|
|
func isLocalConfigWorking(localKubeConfigPath string) bool {
|
|
if _, err := GetK8sVersion(localKubeConfigPath); err != nil {
|
|
logrus.Infof("[reconcile] Local config is not vaild, rebuilding admin config")
|
|
return false
|
|
}
|
|
return true
|
|
}
|
|
|
|
func getLocalConfigAddress(localConfigPath string) (string, error) {
|
|
config, err := clientcmd.BuildConfigFromFlags("", localConfigPath)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
splittedAdress := strings.Split(config.Host, ":")
|
|
address := splittedAdress[1]
|
|
return address[2:], nil
|
|
}
|