Home Explore Help
Sign In
tzeneto
/
custom-kube-scheduler
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c4c2e0c5e5
Branches Tags
custom-kube-...
/
kubernetes-v1.15.4
/
pkg
/
apis
/
networking
/
validation
/
conditional_validation.go

conditional_validation.go 2.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. /*
    2. 

  2. Copyright 2019 The Kubernetes Authors.
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8.     http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package validation
    18. 

  18. 

  19. import (
    20. 

  20. 	"k8s.io/apimachinery/pkg/util/validation/field"
    21. 

  21. 	utilfeature "k8s.io/apiserver/pkg/util/feature"
    22. 

  22. 	api "k8s.io/kubernetes/pkg/apis/core"
    23. 

  23. 	"k8s.io/kubernetes/pkg/apis/networking"
    24. 

  24. 	"k8s.io/kubernetes/pkg/features"
    25. 

  25. )
    26. 

  26. 

  27. // ValidateConditionalNetworkPolicy validates conditionally valid fields.
    28. 

  28. func ValidateConditionalNetworkPolicy(np, oldNP *networking.NetworkPolicy) field.ErrorList {
    29. 

  29. 	var errs field.ErrorList
    30. 

  30. 	// If the SCTPSupport feature is disabled, and the old object isn't using the SCTP feature, prevent the new object from using it
    31. 

  31. 	if !utilfeature.DefaultFeatureGate.Enabled(features.SCTPSupport) && len(sctpFields(oldNP)) == 0 {
    32. 

  32. 		for _, f := range sctpFields(np) {
    33. 

  33. 			errs = append(errs, field.NotSupported(f, api.ProtocolSCTP, []string{string(api.ProtocolTCP), string(api.ProtocolUDP)}))
    34. 

  34. 		}
    35. 

  35. 	}
    36. 

  36. 	return errs
    37. 

  37. }
    38. 

  38. 

  39. func sctpFields(np *networking.NetworkPolicy) []*field.Path {
    40. 

  40. 	if np == nil {
    41. 

  41. 		return nil
    42. 

  42. 	}
    43. 

  43. 	fields := []*field.Path{}
    44. 

  44. 	for iIndex, e := range np.Spec.Ingress {
    45. 

  45. 		for pIndex, p := range e.Ports {
    46. 

  46. 			if p.Protocol != nil && *p.Protocol == api.ProtocolSCTP {
    47. 

  47. 				fields = append(fields, field.NewPath("spec.ingress").Index(iIndex).Child("ports").Index(pIndex).Child("protocol"))
    48. 

  48. 			}
    49. 

  49. 		}
    50. 

  50. 	}
    51. 

  51. 	for eIndex, e := range np.Spec.Egress {
    52. 

  52. 		for pIndex, p := range e.Ports {
    53. 

  53. 			if p.Protocol != nil && *p.Protocol == api.ProtocolSCTP {
    54. 

  54. 				fields = append(fields, field.NewPath("spec.egress").Index(eIndex).Child("ports").Index(pIndex).Child("protocol"))
    55. 

  55. 			}
    56. 

  56. 		}
    57. 

  57. 	}
    58. 

  58. 	return fields
    59. 

  59. }
    60. 

  60.