Strona główna Odkrywaj Pomoc
Zaloguj się
tzeneto
/
custom-kube-scheduler
Obserwuj 1
Polub 0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: c4c2e0c5e5
Gałęzie Tagi
custom-kube-...
/
kubernetes-v1.15.4
/
cmd
/
kubeadm
/
app
/
phases
/
kubelet
/
config.go

config.go 6.0 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171 
  1. /*
    2. 

  2. Copyright 2017 The Kubernetes Authors.
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8.     http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package kubelet
    18. 

  18. 

  19. import (
    20. 

  20. 	"fmt"
    21. 

  21. 	"io/ioutil"
    22. 

  22. 	"os"
    23. 

  23. 	"path/filepath"
    24. 

  24. 

  25. 	"github.com/pkg/errors"
    26. 

  26. 

  27. 	v1 "k8s.io/api/core/v1"
    28. 

  28. 	rbac "k8s.io/api/rbac/v1"
    29. 

  29. 	apierrors "k8s.io/apimachinery/pkg/api/errors"
    30. 

  30. 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
    31. 

  31. 	"k8s.io/apimachinery/pkg/util/version"
    32. 

  32. 	clientset "k8s.io/client-go/kubernetes"
    33. 

  33. 	"k8s.io/kubernetes/cmd/kubeadm/app/componentconfigs"
    34. 

  34. 	kubeadmconstants "k8s.io/kubernetes/cmd/kubeadm/app/constants"
    35. 

  35. 	"k8s.io/kubernetes/cmd/kubeadm/app/util/apiclient"
    36. 

  36. 	rbachelper "k8s.io/kubernetes/pkg/apis/rbac/v1"
    37. 

  37. 	kubeletconfig "k8s.io/kubernetes/pkg/kubelet/apis/config"
    38. 

  38. )
    39. 

  39. 

  40. // WriteConfigToDisk writes the kubelet config object down to a file
    41. 

  41. // Used at "kubeadm init" and "kubeadm upgrade" time
    42. 

  42. func WriteConfigToDisk(kubeletConfig *kubeletconfig.KubeletConfiguration, kubeletDir string) error {
    43. 

  43. 

  44. 	kubeletBytes, err := getConfigBytes(kubeletConfig)
    45. 

  45. 	if err != nil {
    46. 

  46. 		return err
    47. 

  47. 	}
    48. 

  48. 	return writeConfigBytesToDisk(kubeletBytes, kubeletDir)
    49. 

  49. }
    50. 

  50. 

  51. // CreateConfigMap creates a ConfigMap with the generic kubelet configuration.
    52. 

  52. // Used at "kubeadm init" and "kubeadm upgrade" time
    53. 

  53. func CreateConfigMap(cfg *kubeletconfig.KubeletConfiguration, k8sVersionStr string, client clientset.Interface) error {
    54. 

  54. 

  55. 	k8sVersion, err := version.ParseSemantic(k8sVersionStr)
    56. 

  56. 	if err != nil {
    57. 

  57. 		return err
    58. 

  58. 	}
    59. 

  59. 

  60. 	configMapName := kubeadmconstants.GetKubeletConfigMapName(k8sVersion)
    61. 

  61. 	fmt.Printf("[kubelet] Creating a ConfigMap %q in namespace %s with the configuration for the kubelets in the cluster\n", configMapName, metav1.NamespaceSystem)
    62. 

  62. 

  63. 	kubeletBytes, err := getConfigBytes(cfg)
    64. 

  64. 	if err != nil {
    65. 

  65. 		return err
    66. 

  66. 	}
    67. 

  67. 

  68. 	if err := apiclient.CreateOrUpdateConfigMap(client, &v1.ConfigMap{
    69. 

  69. 		ObjectMeta: metav1.ObjectMeta{
    70. 

  70. 			Name:      configMapName,
    71. 

  71. 			Namespace: metav1.NamespaceSystem,
    72. 

  72. 		},
    73. 

  73. 		Data: map[string]string{
    74. 

  74. 			kubeadmconstants.KubeletBaseConfigurationConfigMapKey: string(kubeletBytes),
    75. 

  75. 		},
    76. 

  76. 	}); err != nil {
    77. 

  77. 		return err
    78. 

  78. 	}
    79. 

  79. 

  80. 	if err := createConfigMapRBACRules(client, k8sVersion); err != nil {
    81. 

  81. 		return errors.Wrap(err, "error creating kubelet configuration configmap RBAC rules")
    82. 

  82. 	}
    83. 

  83. 	return nil
    84. 

  84. }
    85. 

  85. 

  86. // createConfigMapRBACRules creates the RBAC rules for exposing the base kubelet ConfigMap in the kube-system namespace to unauthenticated users
    87. 

  87. func createConfigMapRBACRules(client clientset.Interface, k8sVersion *version.Version) error {
    88. 

  88. 	if err := apiclient.CreateOrUpdateRole(client, &rbac.Role{
    89. 

  89. 		ObjectMeta: metav1.ObjectMeta{
    90. 

  90. 			Name:      configMapRBACName(k8sVersion),
    91. 

  91. 			Namespace: metav1.NamespaceSystem,
    92. 

  92. 		},
    93. 

  93. 		Rules: []rbac.PolicyRule{
    94. 

  94. 			rbachelper.NewRule("get").Groups("").Resources("configmaps").Names(kubeadmconstants.GetKubeletConfigMapName(k8sVersion)).RuleOrDie(),
    95. 

  95. 		},
    96. 

  96. 	}); err != nil {
    97. 

  97. 		return err
    98. 

  98. 	}
    99. 

  99. 

  100. 	return apiclient.CreateOrUpdateRoleBinding(client, &rbac.RoleBinding{
    101. 

  101. 		ObjectMeta: metav1.ObjectMeta{
    102. 

  102. 			Name:      configMapRBACName(k8sVersion),
    103. 

  103. 			Namespace: metav1.NamespaceSystem,
    104. 

  104. 		},
    105. 

  105. 		RoleRef: rbac.RoleRef{
    106. 

  106. 			APIGroup: rbac.GroupName,
    107. 

  107. 			Kind:     "Role",
    108. 

  108. 			Name:     configMapRBACName(k8sVersion),
    109. 

  109. 		},
    110. 

  110. 		Subjects: []rbac.Subject{
    111. 

  111. 			{
    112. 

  112. 				Kind: rbac.GroupKind,
    113. 

  113. 				Name: kubeadmconstants.NodesGroup,
    114. 

  114. 			},
    115. 

  115. 			{
    116. 

  116. 				Kind: rbac.GroupKind,
    117. 

  117. 				Name: kubeadmconstants.NodeBootstrapTokenAuthGroup,
    118. 

  118. 			},
    119. 

  119. 		},
    120. 

  120. 	})
    121. 

  121. }
    122. 

  122. 

  123. // DownloadConfig downloads the kubelet configuration from a ConfigMap and writes it to disk.
    124. 

  124. // Used at "kubeadm join" time
    125. 

  125. func DownloadConfig(client clientset.Interface, kubeletVersion *version.Version, kubeletDir string) error {
    126. 

  126. 

  127. 	// Download the ConfigMap from the cluster based on what version the kubelet is
    128. 

  128. 	configMapName := kubeadmconstants.GetKubeletConfigMapName(kubeletVersion)
    129. 

  129. 

  130. 	fmt.Printf("[kubelet-start] Downloading configuration for the kubelet from the %q ConfigMap in the %s namespace\n",
    131. 

  131. 		configMapName, metav1.NamespaceSystem)
    132. 

  132. 

  133. 	kubeletCfg, err := apiclient.GetConfigMapWithRetry(client, metav1.NamespaceSystem, configMapName)
    134. 

  134. 	// If the ConfigMap wasn't found and the kubelet version is v1.10.x, where we didn't support the config file yet
    135. 

  135. 	// just return, don't error out
    136. 

  136. 	if apierrors.IsNotFound(err) && kubeletVersion.Minor() == 10 {
    137. 

  137. 		return nil
    138. 

  138. 	}
    139. 

  139. 	if err != nil {
    140. 

  140. 		return err
    141. 

  141. 	}
    142. 

  142. 

  143. 	return writeConfigBytesToDisk([]byte(kubeletCfg.Data[kubeadmconstants.KubeletBaseConfigurationConfigMapKey]), kubeletDir)
    144. 

  144. }
    145. 

  145. 

  146. // configMapRBACName returns the name for the Role/RoleBinding for the kubelet config configmap for the right branch of k8s
    147. 

  147. func configMapRBACName(k8sVersion *version.Version) string {
    148. 

  148. 	return fmt.Sprintf("%s%d.%d", kubeadmconstants.KubeletBaseConfigMapRolePrefix, k8sVersion.Major(), k8sVersion.Minor())
    149. 

  149. }
    150. 

  150. 

  151. // getConfigBytes marshals a KubeletConfiguration object to bytes
    152. 

  152. func getConfigBytes(kubeletConfig *kubeletconfig.KubeletConfiguration) ([]byte, error) {
    153. 

  153. 	return componentconfigs.Known[componentconfigs.KubeletConfigurationKind].Marshal(kubeletConfig)
    154. 

  154. }
    155. 

  155. 

  156. // writeConfigBytesToDisk writes a byte slice down to disk at the specific location of the kubelet config file
    157. 

  157. func writeConfigBytesToDisk(b []byte, kubeletDir string) error {
    158. 

  158. 	configFile := filepath.Join(kubeletDir, kubeadmconstants.KubeletConfigurationFileName)
    159. 

  159. 	fmt.Printf("[kubelet-start] Writing kubelet configuration to file %q\n", configFile)
    160. 

  160. 

  161. 	// creates target folder if not already exists
    162. 

  162. 	if err := os.MkdirAll(kubeletDir, 0700); err != nil {
    163. 

  163. 		return errors.Wrapf(err, "failed to create directory %q", kubeletDir)
    164. 

  164. 	}
    165. 

  165. 

  166. 	if err := ioutil.WriteFile(configFile, b, 0644); err != nil {
    167. 

  167. 		return errors.Wrapf(err, "failed to write kubelet configuration to the file %q", configFile)
    168. 

  168. 	}
    169. 

  169. 	return nil
    170. 

  170. }
    171. 

  171.