Home Explore Help
Sign In
tzeneto
/
custom-kube-scheduler
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 7e8b047bed
Branches Tags
custom-kube-...
/
kubernetes
/
pkg
/
apis
/
core
/
v1
/
validation
/
validation.go

validation.go 6.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173 
  1. /*
    2. 

  2. Copyright 2014 The Kubernetes Authors.
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8.     http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package validation
    18. 

  18. 

  19. import (
    20. 

  20. 	"fmt"
    21. 

  21. 	"strings"
    22. 

  22. 

  23. 	"k8s.io/api/core/v1"
    24. 

  24. 	"k8s.io/apimachinery/pkg/api/resource"
    25. 

  25. 	"k8s.io/apimachinery/pkg/util/sets"
    26. 

  26. 	"k8s.io/apimachinery/pkg/util/validation"
    27. 

  27. 	"k8s.io/apimachinery/pkg/util/validation/field"
    28. 

  28. 	"k8s.io/kubernetes/pkg/apis/core/helper"
    29. 

  29. 	v1helper "k8s.io/kubernetes/pkg/apis/core/v1/helper"
    30. 

  30. )
    31. 

  31. 

  32. const isNegativeErrorMsg string = `must be greater than or equal to 0`
    33. 

  33. const isNotIntegerErrorMsg string = `must be an integer`
    34. 

  34. 

  35. // ValidateResourceRequirements will check if any of the resource
    36. 

  36. // Limits/Requests are of a valid value. Any incorrect value will be added to
    37. 

  37. // the ErrorList.
    38. 

  38. func ValidateResourceRequirements(requirements *v1.ResourceRequirements, fldPath *field.Path) field.ErrorList {
    39. 

  39. 	allErrs := field.ErrorList{}
    40. 

  40. 	limPath := fldPath.Child("limits")
    41. 

  41. 	reqPath := fldPath.Child("requests")
    42. 

  42. 	for resourceName, quantity := range requirements.Limits {
    43. 

  43. 		fldPath := limPath.Key(string(resourceName))
    44. 

  44. 		// Validate resource name.
    45. 

  45. 		allErrs = append(allErrs, validateContainerResourceName(string(resourceName), fldPath)...)
    46. 

  46. 

  47. 		// Validate resource quantity.
    48. 

  48. 		allErrs = append(allErrs, ValidateResourceQuantityValue(string(resourceName), quantity, fldPath)...)
    49. 

  49. 

  50. 	}
    51. 

  51. 	for resourceName, quantity := range requirements.Requests {
    52. 

  52. 		fldPath := reqPath.Key(string(resourceName))
    53. 

  53. 		// Validate resource name.
    54. 

  54. 		allErrs = append(allErrs, validateContainerResourceName(string(resourceName), fldPath)...)
    55. 

  55. 		// Validate resource quantity.
    56. 

  56. 		allErrs = append(allErrs, ValidateResourceQuantityValue(string(resourceName), quantity, fldPath)...)
    57. 

  57. 

  58. 		// Check that request <= limit.
    59. 

  59. 		limitQuantity, exists := requirements.Limits[resourceName]
    60. 

  60. 		if exists {
    61. 

  61. 			// For GPUs, not only requests can't exceed limits, they also can't be lower, i.e. must be equal.
    62. 

  62. 			if quantity.Cmp(limitQuantity) != 0 && !v1helper.IsOvercommitAllowed(resourceName) {
    63. 

  63. 				allErrs = append(allErrs, field.Invalid(reqPath, quantity.String(), fmt.Sprintf("must be equal to %s limit", resourceName)))
    64. 

  64. 			} else if quantity.Cmp(limitQuantity) > 0 {
    65. 

  65. 				allErrs = append(allErrs, field.Invalid(reqPath, quantity.String(), fmt.Sprintf("must be less than or equal to %s limit", resourceName)))
    66. 

  66. 			}
    67. 

  67. 		}
    68. 

  68. 	}
    69. 

  69. 

  70. 	return allErrs
    71. 

  71. }
    72. 

  72. 

  73. func validateContainerResourceName(value string, fldPath *field.Path) field.ErrorList {
    74. 

  74. 	allErrs := validateResourceName(value, fldPath)
    75. 

  75. 	if len(strings.Split(value, "/")) == 1 {
    76. 

  76. 		if !helper.IsStandardContainerResourceName(value) {
    77. 

  77. 			return append(allErrs, field.Invalid(fldPath, value, "must be a standard resource for containers"))
    78. 

  78. 		}
    79. 

  79. 	} else if !v1helper.IsNativeResource(v1.ResourceName(value)) {
    80. 

  80. 		if !v1helper.IsExtendedResourceName(v1.ResourceName(value)) {
    81. 

  81. 			return append(allErrs, field.Invalid(fldPath, value, "doesn't follow extended resource name standard"))
    82. 

  82. 		}
    83. 

  83. 	}
    84. 

  84. 	return allErrs
    85. 

  85. }
    86. 

  86. 

  87. // ValidateResourceQuantityValue enforces that specified quantity is valid for specified resource
    88. 

  88. func ValidateResourceQuantityValue(resource string, value resource.Quantity, fldPath *field.Path) field.ErrorList {
    89. 

  89. 	allErrs := field.ErrorList{}
    90. 

  90. 	allErrs = append(allErrs, ValidateNonnegativeQuantity(value, fldPath)...)
    91. 

  91. 	if helper.IsIntegerResourceName(resource) {
    92. 

  92. 		if value.MilliValue()%int64(1000) != int64(0) {
    93. 

  93. 			allErrs = append(allErrs, field.Invalid(fldPath, value, isNotIntegerErrorMsg))
    94. 

  94. 		}
    95. 

  95. 	}
    96. 

  96. 	return allErrs
    97. 

  97. }
    98. 

  98. 

  99. // ValidateNonnegativeQuantity checks that a Quantity is not negative.
    100. 

  100. func ValidateNonnegativeQuantity(value resource.Quantity, fldPath *field.Path) field.ErrorList {
    101. 

  101. 	allErrs := field.ErrorList{}
    102. 

  102. 	if value.Cmp(resource.Quantity{}) < 0 {
    103. 

  103. 		allErrs = append(allErrs, field.Invalid(fldPath, value.String(), isNegativeErrorMsg))
    104. 

  104. 	}
    105. 

  105. 	return allErrs
    106. 

  106. }
    107. 

  107. 

  108. // Validate compute resource typename.
    109. 

  109. // Refer to docs/design/resources.md for more details.
    110. 

  110. func validateResourceName(value string, fldPath *field.Path) field.ErrorList {
    111. 

  111. 	allErrs := field.ErrorList{}
    112. 

  112. 	for _, msg := range validation.IsQualifiedName(value) {
    113. 

  113. 		allErrs = append(allErrs, field.Invalid(fldPath, value, msg))
    114. 

  114. 	}
    115. 

  115. 	if len(allErrs) != 0 {
    116. 

  116. 		return allErrs
    117. 

  117. 	}
    118. 

  118. 

  119. 	if len(strings.Split(value, "/")) == 1 {
    120. 

  120. 		if !helper.IsStandardResourceName(value) {
    121. 

  121. 			return append(allErrs, field.Invalid(fldPath, value, "must be a standard resource type or fully qualified"))
    122. 

  122. 		}
    123. 

  123. 	}
    124. 

  124. 

  125. 	return allErrs
    126. 

  126. }
    127. 

  127. 

  128. // ValidatePodLogOptions checks if options that are set are at the correct
    129. 

  129. // value. Any incorrect value will be returned to the ErrorList.
    130. 

  130. func ValidatePodLogOptions(opts *v1.PodLogOptions) field.ErrorList {
    131. 

  131. 	allErrs := field.ErrorList{}
    132. 

  132. 	if opts.TailLines != nil && *opts.TailLines < 0 {
    133. 

  133. 		allErrs = append(allErrs, field.Invalid(field.NewPath("tailLines"), *opts.TailLines, isNegativeErrorMsg))
    134. 

  134. 	}
    135. 

  135. 	if opts.LimitBytes != nil && *opts.LimitBytes < 1 {
    136. 

  136. 		allErrs = append(allErrs, field.Invalid(field.NewPath("limitBytes"), *opts.LimitBytes, "must be greater than 0"))
    137. 

  137. 	}
    138. 

  138. 	switch {
    139. 

  139. 	case opts.SinceSeconds != nil && opts.SinceTime != nil:
    140. 

  140. 		allErrs = append(allErrs, field.Forbidden(field.NewPath(""), "at most one of `sinceTime` or `sinceSeconds` may be specified"))
    141. 

  141. 	case opts.SinceSeconds != nil:
    142. 

  142. 		if *opts.SinceSeconds < 1 {
    143. 

  143. 			allErrs = append(allErrs, field.Invalid(field.NewPath("sinceSeconds"), *opts.SinceSeconds, "must be greater than 0"))
    144. 

  144. 		}
    145. 

  145. 	}
    146. 

  146. 	return allErrs
    147. 

  147. }
    148. 

  148. 

  149. // AccumulateUniqueHostPorts checks all the containers for duplicates ports. Any
    150. 

  150. // duplicate port will be returned in the ErrorList.
    151. 

  151. func AccumulateUniqueHostPorts(containers []v1.Container, accumulator *sets.String, fldPath *field.Path) field.ErrorList {
    152. 

  152. 	allErrs := field.ErrorList{}
    153. 

  153. 

  154. 	for ci, ctr := range containers {
    155. 

  155. 		idxPath := fldPath.Index(ci)
    156. 

  156. 		portsPath := idxPath.Child("ports")
    157. 

  157. 		for pi := range ctr.Ports {
    158. 

  158. 			idxPath := portsPath.Index(pi)
    159. 

  159. 			port := ctr.Ports[pi].HostPort
    160. 

  160. 			if port == 0 {
    161. 

  161. 				continue
    162. 

  162. 			}
    163. 

  163. 			str := fmt.Sprintf("%d/%s", port, ctr.Ports[pi].Protocol)
    164. 

  164. 			if accumulator.Has(str) {
    165. 

  165. 				allErrs = append(allErrs, field.Duplicate(idxPath.Child("hostPort"), str))
    166. 

  166. 			} else {
    167. 

  167. 				accumulator.Insert(str)
    168. 

  168. 			}
    169. 

  169. 		}
    170. 

  170. 	}
    171. 

  171. 	return allErrs
    172. 

  172. }
    173. 

  173.