2019-02-08 21:43:54 +02:00
|
|
|
/*
|
2021-02-19 07:38:55 +02:00
|
|
|
Copyright 2019-2021 The Kubernetes Authors.
|
2019-02-08 21:43:54 +02:00
|
|
|
|
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
you may not use this file except in compliance with the License.
|
|
|
|
|
You may obtain a copy of the License at
|
|
|
|
|
|
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
|
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
See the License for the specific language governing permissions and
|
|
|
|
|
limitations under the License.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
package nfdmaster
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"crypto/tls"
|
2021-04-20 09:44:32 +01:00
|
|
|
"crypto/x509"
|
2019-02-08 21:43:54 +02:00
|
|
|
"fmt"
|
|
|
|
|
"net"
|
|
|
|
|
"os"
|
2021-02-10 12:49:23 +02:00
|
|
|
"path"
|
2019-02-08 21:43:54 +02:00
|
|
|
"regexp"
|
|
|
|
|
"sort"
|
2020-03-05 16:40:55 +02:00
|
|
|
"strconv"
|
2019-02-08 21:43:54 +02:00
|
|
|
"strings"
|
2019-02-11 15:10:29 +02:00
|
|
|
"time"
|
2019-02-08 21:43:54 +02:00
|
|
|
|
2021-05-13 12:55:33 +02:00
|
|
|
"github.com/k8stopologyawareschedwg/noderesourcetopology-api/pkg/apis/topology/v1alpha1"
|
2019-02-08 21:43:54 +02:00
|
|
|
"golang.org/x/net/context"
|
|
|
|
|
"google.golang.org/grpc"
|
|
|
|
|
"google.golang.org/grpc/credentials"
|
2021-05-13 12:55:33 +02:00
|
|
|
"google.golang.org/grpc/health"
|
|
|
|
|
"google.golang.org/grpc/health/grpc_health_v1"
|
2019-02-08 21:43:54 +02:00
|
|
|
"google.golang.org/grpc/peer"
|
2019-02-12 15:31:59 +02:00
|
|
|
api "k8s.io/api/core/v1"
|
2021-05-13 12:55:33 +02:00
|
|
|
"k8s.io/apimachinery/pkg/api/errors"
|
|
|
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
2021-06-15 14:08:14 +03:00
|
|
|
"k8s.io/apimachinery/pkg/labels"
|
2021-06-08 16:17:38 +03:00
|
|
|
restclient "k8s.io/client-go/rest"
|
2021-02-19 11:03:16 +02:00
|
|
|
"k8s.io/klog/v2"
|
|
|
|
|
|
2021-06-18 18:29:08 +03:00
|
|
|
"sigs.k8s.io/node-feature-discovery/pkg/api/feature"
|
2019-02-08 21:43:54 +02:00
|
|
|
"sigs.k8s.io/node-feature-discovery/pkg/apihelper"
|
2021-06-18 18:29:08 +03:00
|
|
|
nfdv1alpha1 "sigs.k8s.io/node-feature-discovery/pkg/apis/nfd/v1alpha1"
|
2019-02-08 21:43:54 +02:00
|
|
|
pb "sigs.k8s.io/node-feature-discovery/pkg/labeler"
|
2021-05-13 12:55:33 +02:00
|
|
|
topologypb "sigs.k8s.io/node-feature-discovery/pkg/topologyupdater"
|
2021-02-19 07:38:55 +02:00
|
|
|
"sigs.k8s.io/node-feature-discovery/pkg/utils"
|
2019-02-08 21:43:54 +02:00
|
|
|
"sigs.k8s.io/node-feature-discovery/pkg/version"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
const (
|
2021-07-06 14:58:08 +03:00
|
|
|
// FeatureLabelNs is the namespace for feature labels
|
|
|
|
|
FeatureLabelNs = "feature.node.kubernetes.io"
|
2019-02-08 21:43:54 +02:00
|
|
|
|
2021-07-06 14:58:08 +03:00
|
|
|
// FeatureLabelSubNsSuffix is the suffix for allowed feature label sub-namespaces
|
|
|
|
|
FeatureLabelSubNsSuffix = "." + FeatureLabelNs
|
2021-05-26 18:56:16 +03:00
|
|
|
|
2021-07-06 15:03:50 +03:00
|
|
|
// ProfileLabelNs is the namespace for profile labels
|
|
|
|
|
ProfileLabelNs = "profile.node.kubernetes.io"
|
|
|
|
|
|
|
|
|
|
// ProfileLabelSubNsSuffix is the suffix for allowed profile label sub-namespaces
|
|
|
|
|
ProfileLabelSubNsSuffix = "." + ProfileLabelNs
|
2021-05-26 18:56:16 +03:00
|
|
|
|
2021-06-06 16:25:08 -05:00
|
|
|
// AnnotationNsBase namespace for all NFD-related annotations
|
2021-02-03 19:49:02 +02:00
|
|
|
AnnotationNsBase = "nfd.node.kubernetes.io"
|
2020-08-13 17:14:27 +03:00
|
|
|
|
|
|
|
|
// NFD Annotations
|
2021-02-03 19:49:02 +02:00
|
|
|
extendedResourceAnnotation = "extended-resources"
|
|
|
|
|
featureLabelAnnotation = "feature-labels"
|
|
|
|
|
masterVersionAnnotation = "master.version"
|
|
|
|
|
workerVersionAnnotation = "worker.version"
|
2019-02-08 21:43:54 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// Labels are a Kubernetes representation of discovered features.
|
|
|
|
|
type Labels map[string]string
|
|
|
|
|
|
2020-03-05 16:40:55 +02:00
|
|
|
// ExtendedResources are k8s extended resources which are created from discovered features.
|
|
|
|
|
type ExtendedResources map[string]string
|
|
|
|
|
|
2019-02-08 21:43:54 +02:00
|
|
|
// Annotations are used for NFD-related node metadata
|
|
|
|
|
type Annotations map[string]string
|
|
|
|
|
|
2021-06-06 16:25:08 -05:00
|
|
|
// Args holds command line arguments
|
2019-02-08 21:43:54 +02:00
|
|
|
type Args struct {
|
2021-06-09 07:41:39 +03:00
|
|
|
CaFile string
|
|
|
|
|
CertFile string
|
|
|
|
|
ExtraLabelNs utils.StringSetVal
|
|
|
|
|
Instance string
|
|
|
|
|
KeyFile string
|
|
|
|
|
Kubeconfig string
|
|
|
|
|
LabelWhiteList utils.RegexpVal
|
|
|
|
|
FeatureRulesController bool
|
|
|
|
|
NoPublish bool
|
|
|
|
|
Port int
|
|
|
|
|
Prune bool
|
|
|
|
|
VerifyNodeName bool
|
|
|
|
|
ResourceLabels utils.StringSetVal
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type NfdMaster interface {
|
|
|
|
|
Run() error
|
|
|
|
|
Stop()
|
2019-02-11 15:10:29 +02:00
|
|
|
WaitForReady(time.Duration) bool
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type nfdMaster struct {
|
2021-06-08 16:30:35 +03:00
|
|
|
*nfdController
|
|
|
|
|
|
2021-02-03 19:49:02 +02:00
|
|
|
args Args
|
|
|
|
|
nodeName string
|
|
|
|
|
annotationNs string
|
|
|
|
|
server *grpc.Server
|
2021-02-18 12:48:10 +02:00
|
|
|
stop chan struct{}
|
2021-02-03 19:49:02 +02:00
|
|
|
ready chan bool
|
|
|
|
|
apihelper apihelper.APIHelpers
|
2021-06-08 16:17:38 +03:00
|
|
|
kubeconfig *restclient.Config
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
2022-03-03 06:42:46 +05:30
|
|
|
// NewNfdMaster creates a new NfdMaster server instance.
|
2021-02-19 07:38:55 +02:00
|
|
|
func NewNfdMaster(args *Args) (NfdMaster, error) {
|
|
|
|
|
nfd := &nfdMaster{args: *args,
|
2021-02-03 19:15:00 +02:00
|
|
|
nodeName: os.Getenv("NODE_NAME"),
|
2021-02-03 19:49:02 +02:00
|
|
|
ready: make(chan bool, 1),
|
2021-02-18 12:48:10 +02:00
|
|
|
stop: make(chan struct{}, 1),
|
2021-02-03 19:49:02 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if args.Instance == "" {
|
|
|
|
|
nfd.annotationNs = AnnotationNsBase
|
|
|
|
|
} else {
|
2021-02-19 07:38:55 +02:00
|
|
|
if ok, _ := regexp.MatchString(`^([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]$`, args.Instance); !ok {
|
2021-11-25 12:14:19 +02:00
|
|
|
return nfd, fmt.Errorf("invalid -instance %q: instance name "+
|
2021-02-19 07:38:55 +02:00
|
|
|
"must start and end with an alphanumeric character and may only contain "+
|
|
|
|
|
"alphanumerics, `-`, `_` or `.`", args.Instance)
|
|
|
|
|
}
|
2021-02-03 19:49:02 +02:00
|
|
|
nfd.annotationNs = args.Instance + "." + AnnotationNsBase
|
|
|
|
|
}
|
2019-02-08 21:43:54 +02:00
|
|
|
|
|
|
|
|
// Check TLS related args
|
|
|
|
|
if args.CertFile != "" || args.KeyFile != "" || args.CaFile != "" {
|
|
|
|
|
if args.CertFile == "" {
|
2021-11-25 12:14:19 +02:00
|
|
|
return nfd, fmt.Errorf("-cert-file needs to be specified alongside -key-file and -ca-file")
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
if args.KeyFile == "" {
|
2021-11-25 12:14:19 +02:00
|
|
|
return nfd, fmt.Errorf("-key-file needs to be specified alongside -cert-file and -ca-file")
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
if args.CaFile == "" {
|
2021-11-25 12:14:19 +02:00
|
|
|
return nfd, fmt.Errorf("-ca-file needs to be specified alongside -cert-file and -key-file")
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-28 17:12:48 +03:00
|
|
|
// Initialize Kubernetes API helpers
|
2021-06-08 16:17:38 +03:00
|
|
|
if !args.NoPublish {
|
|
|
|
|
kubeconfig, err := nfd.getKubeconfig()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nfd, err
|
|
|
|
|
}
|
|
|
|
|
nfd.apihelper = apihelper.K8sHelpers{Kubeconfig: kubeconfig}
|
|
|
|
|
}
|
2020-05-28 17:12:48 +03:00
|
|
|
|
2019-02-08 21:43:54 +02:00
|
|
|
return nfd, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Run NfdMaster server. The method returns in case of fatal errors or if Stop()
|
|
|
|
|
// is called.
|
|
|
|
|
func (m *nfdMaster) Run() error {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Infof("Node Feature Discovery Master %s", version.Get())
|
2021-02-03 19:49:02 +02:00
|
|
|
if m.args.Instance != "" {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Infof("Master instance: %q", m.args.Instance)
|
2021-02-03 19:49:02 +02:00
|
|
|
}
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Infof("NodeName: %q", m.nodeName)
|
2019-02-08 21:43:54 +02:00
|
|
|
|
2020-05-28 17:12:48 +03:00
|
|
|
if m.args.Prune {
|
|
|
|
|
return m.prune()
|
|
|
|
|
}
|
2019-02-08 21:43:54 +02:00
|
|
|
|
2021-06-09 07:41:39 +03:00
|
|
|
if m.args.FeatureRulesController {
|
|
|
|
|
kubeconfig, err := m.getKubeconfig()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2022-08-17 10:07:26 +03:00
|
|
|
klog.Info("starting nfd api controller")
|
2021-06-09 07:41:39 +03:00
|
|
|
m.nfdController = newNfdController(kubeconfig)
|
2021-06-08 16:30:35 +03:00
|
|
|
}
|
|
|
|
|
|
2019-02-08 21:43:54 +02:00
|
|
|
if !m.args.NoPublish {
|
2021-02-03 19:15:00 +02:00
|
|
|
err := m.updateMasterNode()
|
2019-02-08 21:43:54 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("failed to update master node: %v", err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Create server listening for TCP connections
|
|
|
|
|
lis, err := net.Listen("tcp", fmt.Sprintf(":%d", m.args.Port))
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("failed to listen: %v", err)
|
|
|
|
|
}
|
2019-02-11 15:10:29 +02:00
|
|
|
// Notify that we're ready to accept connections
|
|
|
|
|
m.ready <- true
|
|
|
|
|
close(m.ready)
|
2019-02-08 21:43:54 +02:00
|
|
|
|
|
|
|
|
serverOpts := []grpc.ServerOption{}
|
2021-02-18 12:48:10 +02:00
|
|
|
tlsConfig := utils.TlsConfig{}
|
|
|
|
|
// Create watcher for TLS cert files
|
|
|
|
|
certWatch, err := utils.CreateFsWatcher(time.Second, m.args.CertFile, m.args.KeyFile, m.args.CaFile)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2021-11-25 12:14:19 +02:00
|
|
|
// Enable mutual TLS authentication if -cert-file, -key-file or -ca-file
|
2019-02-08 21:43:54 +02:00
|
|
|
// is defined
|
|
|
|
|
if m.args.CertFile != "" || m.args.KeyFile != "" || m.args.CaFile != "" {
|
2021-02-18 12:48:10 +02:00
|
|
|
if err := tlsConfig.UpdateConfig(m.args.CertFile, m.args.KeyFile, m.args.CaFile); err != nil {
|
|
|
|
|
return err
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
2021-02-18 12:48:10 +02:00
|
|
|
|
|
|
|
|
tlsConfig := &tls.Config{GetConfigForClient: tlsConfig.GetConfig}
|
2019-02-08 21:43:54 +02:00
|
|
|
serverOpts = append(serverOpts, grpc.Creds(credentials.NewTLS(tlsConfig)))
|
|
|
|
|
}
|
|
|
|
|
m.server = grpc.NewServer(serverOpts...)
|
2021-02-03 19:00:02 +02:00
|
|
|
pb.RegisterLabelerServer(m.server, m)
|
2021-08-11 15:13:34 -05:00
|
|
|
grpc_health_v1.RegisterHealthServer(m.server, health.NewServer())
|
2021-05-13 12:55:33 +02:00
|
|
|
topologypb.RegisterNodeTopologyServer(m.server, m)
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Infof("gRPC server serving on port: %d", m.args.Port)
|
2021-02-18 12:48:10 +02:00
|
|
|
|
|
|
|
|
// Run gRPC server
|
|
|
|
|
grpcErr := make(chan error, 1)
|
|
|
|
|
go func() {
|
|
|
|
|
defer lis.Close()
|
|
|
|
|
grpcErr <- m.server.Serve(lis)
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
// NFD-Master main event loop
|
|
|
|
|
for {
|
|
|
|
|
select {
|
|
|
|
|
case <-certWatch.Events:
|
|
|
|
|
klog.Infof("reloading TLS certificates")
|
|
|
|
|
if err := tlsConfig.UpdateConfig(m.args.CertFile, m.args.KeyFile, m.args.CaFile); err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
2022-01-20 20:11:54 +02:00
|
|
|
case err := <-grpcErr:
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("gRPC server exited with an error: %v", err)
|
|
|
|
|
}
|
|
|
|
|
klog.Infof("gRPC server stopped")
|
2021-02-18 12:48:10 +02:00
|
|
|
|
|
|
|
|
case <-m.stop:
|
|
|
|
|
klog.Infof("shutting down nfd-master")
|
|
|
|
|
certWatch.Close()
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
}
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Stop NfdMaster
|
|
|
|
|
func (m *nfdMaster) Stop() {
|
2022-01-20 23:09:40 +02:00
|
|
|
m.server.GracefulStop()
|
2021-02-18 12:48:10 +02:00
|
|
|
|
2021-06-08 16:30:35 +03:00
|
|
|
if m.nfdController != nil {
|
|
|
|
|
m.nfdController.stop()
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-18 12:48:10 +02:00
|
|
|
select {
|
|
|
|
|
case m.stop <- struct{}{}:
|
|
|
|
|
default:
|
|
|
|
|
}
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
2019-02-11 15:10:29 +02:00
|
|
|
// Wait until NfdMaster is able able to accept connections.
|
|
|
|
|
func (m *nfdMaster) WaitForReady(timeout time.Duration) bool {
|
|
|
|
|
select {
|
|
|
|
|
case ready, ok := <-m.ready:
|
|
|
|
|
// Ready if the flag is true or the channel has been closed
|
2020-05-19 16:18:29 +03:00
|
|
|
if ready || !ok {
|
2019-02-11 15:10:29 +02:00
|
|
|
return true
|
|
|
|
|
}
|
|
|
|
|
case <-time.After(timeout):
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
// We should never end-up here
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-28 17:12:48 +03:00
|
|
|
// Prune erases all NFD related properties from the node objects of the cluster.
|
|
|
|
|
func (m *nfdMaster) prune() error {
|
|
|
|
|
cli, err := m.apihelper.GetClient()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
nodes, err := m.apihelper.GetNodes(cli)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for _, node := range nodes.Items {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Infof("pruning node %q...", node.Name)
|
2020-05-28 17:12:48 +03:00
|
|
|
|
|
|
|
|
// Prune labels and extended resources
|
2021-02-03 19:19:51 +02:00
|
|
|
err := m.updateNodeFeatures(node.Name, Labels{}, Annotations{}, ExtendedResources{})
|
2020-05-28 17:12:48 +03:00
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("failed to prune labels from node %q: %v", node.Name, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Prune annotations
|
|
|
|
|
node, err := m.apihelper.GetNode(cli, node.Name)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
for a := range node.Annotations {
|
2021-02-03 19:49:02 +02:00
|
|
|
if strings.HasPrefix(a, m.annotationNs) {
|
2020-05-28 17:12:48 +03:00
|
|
|
delete(node.Annotations, a)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
err = m.apihelper.UpdateNode(cli, node)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("failed to prune annotations from node %q: %v", node.Name, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2019-02-08 21:43:54 +02:00
|
|
|
// Advertise NFD master information
|
2021-02-03 19:15:00 +02:00
|
|
|
func (m *nfdMaster) updateMasterNode() error {
|
|
|
|
|
cli, err := m.apihelper.GetClient()
|
2019-02-08 21:43:54 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2021-02-03 19:15:00 +02:00
|
|
|
node, err := m.apihelper.GetNode(cli, m.nodeName)
|
2019-02-08 21:43:54 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Advertise NFD version as an annotation
|
2021-02-03 19:49:02 +02:00
|
|
|
p := createPatches(nil,
|
|
|
|
|
node.Annotations,
|
|
|
|
|
Annotations{m.annotationName(masterVersionAnnotation): version.Get()},
|
|
|
|
|
"/metadata/annotations")
|
2021-02-03 19:15:00 +02:00
|
|
|
err = m.apihelper.PatchNode(cli, node.Name, p)
|
2019-02-08 21:43:54 +02:00
|
|
|
if err != nil {
|
2021-02-19 11:03:16 +02:00
|
|
|
return fmt.Errorf("failed to patch node annotations: %v", err)
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-12 21:28:21 +03:00
|
|
|
// Filter labels by namespace and name whitelist, and, turn selected labels
|
|
|
|
|
// into extended resources. This function also handles proper namespacing of
|
|
|
|
|
// labels and ERs, i.e. adds the possibly missing default namespace for labels
|
|
|
|
|
// arriving through the gRPC API.
|
2021-02-19 07:38:55 +02:00
|
|
|
func filterFeatureLabels(labels Labels, extraLabelNs map[string]struct{}, labelWhiteList regexp.Regexp, extendedResourceNames map[string]struct{}) (Labels, ExtendedResources) {
|
2020-08-12 21:28:21 +03:00
|
|
|
outLabels := Labels{}
|
|
|
|
|
|
|
|
|
|
for label, value := range labels {
|
|
|
|
|
// Add possibly missing default ns
|
2021-07-06 14:58:08 +03:00
|
|
|
label := addNs(label, FeatureLabelNs)
|
2020-08-12 21:28:21 +03:00
|
|
|
|
|
|
|
|
ns, name := splitNs(label)
|
|
|
|
|
|
|
|
|
|
// Check label namespace, filter out if ns is not whitelisted
|
2021-07-06 15:03:50 +03:00
|
|
|
if ns != FeatureLabelNs && ns != ProfileLabelNs &&
|
|
|
|
|
!strings.HasSuffix(ns, FeatureLabelSubNsSuffix) && !strings.HasSuffix(ns, ProfileLabelSubNsSuffix) {
|
2020-08-12 21:28:21 +03:00
|
|
|
if _, ok := extraLabelNs[ns]; !ok {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Errorf("Namespace %q is not allowed. Ignoring label %q\n", ns, label)
|
2020-08-12 21:28:21 +03:00
|
|
|
continue
|
2019-04-05 15:31:40 -07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-02-08 21:43:54 +02:00
|
|
|
// Skip if label doesn't match labelWhiteList
|
|
|
|
|
if !labelWhiteList.MatchString(name) {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Errorf("%s (%s) does not match the whitelist (%s) and will not be published.", name, label, labelWhiteList.String())
|
2020-08-12 21:28:21 +03:00
|
|
|
continue
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
2020-08-12 21:28:21 +03:00
|
|
|
outLabels[label] = value
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
2020-03-05 16:40:55 +02:00
|
|
|
|
|
|
|
|
// Remove labels which are intended to be extended resources
|
|
|
|
|
extendedResources := ExtendedResources{}
|
2021-02-19 07:38:55 +02:00
|
|
|
for extendedResourceName := range extendedResourceNames {
|
2020-08-12 21:28:21 +03:00
|
|
|
// Add possibly missing default ns
|
2021-07-06 14:58:08 +03:00
|
|
|
extendedResourceName = addNs(extendedResourceName, FeatureLabelNs)
|
2020-08-12 21:28:21 +03:00
|
|
|
if value, ok := outLabels[extendedResourceName]; ok {
|
|
|
|
|
if _, err := strconv.Atoi(value); err != nil {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Errorf("bad label value (%s: %s) encountered for extended resource: %s", extendedResourceName, value, err.Error())
|
2020-03-05 16:40:55 +02:00
|
|
|
continue // non-numeric label can't be used
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-12 21:28:21 +03:00
|
|
|
extendedResources[extendedResourceName] = value
|
|
|
|
|
delete(outLabels, extendedResourceName)
|
2020-03-05 16:40:55 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-12 21:28:21 +03:00
|
|
|
return outLabels, extendedResources
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
2021-04-20 09:44:32 +01:00
|
|
|
func verifyNodeName(cert *x509.Certificate, nodeName string) error {
|
|
|
|
|
if cert.Subject.CommonName == nodeName {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err := cert.VerifyHostname(nodeName)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("Certificate %q not valid for node %q: %v", cert.Subject.CommonName, nodeName, err)
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-03 19:00:02 +02:00
|
|
|
// SetLabels implements LabelerServer
|
|
|
|
|
func (m *nfdMaster) SetLabels(c context.Context, r *pb.SetLabelsRequest) (*pb.SetLabelsReply, error) {
|
2021-05-13 12:55:33 +02:00
|
|
|
err := authorizeClient(c, m.args.VerifyNodeName, r.NodeName)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return &pb.SetLabelsReply{}, err
|
|
|
|
|
}
|
2021-04-23 08:39:54 +03:00
|
|
|
switch {
|
2021-06-15 14:08:14 +03:00
|
|
|
case klog.V(4).Enabled():
|
|
|
|
|
utils.KlogDump(3, "REQUEST", " ", r)
|
2021-04-23 08:39:54 +03:00
|
|
|
case klog.V(1).Enabled():
|
2021-05-13 12:55:33 +02:00
|
|
|
klog.Infof("REQUEST Node: %q NFD-version: %q Labels: %s", r.NodeName, r.NfdVersion, r.Labels)
|
2021-04-23 08:39:54 +03:00
|
|
|
default:
|
2021-05-13 12:55:33 +02:00
|
|
|
klog.Infof("received labeling request for node %q", r.NodeName)
|
|
|
|
|
}
|
|
|
|
|
|
2021-06-15 14:08:14 +03:00
|
|
|
// Mix in CR-originated labels
|
|
|
|
|
rawLabels := make(map[string]string)
|
|
|
|
|
if r.Labels != nil {
|
|
|
|
|
// NOTE: we effectively mangle the request struct by not creating a deep copy of the map
|
|
|
|
|
rawLabels = r.Labels
|
|
|
|
|
}
|
|
|
|
|
for k, v := range m.crLabels(r) {
|
|
|
|
|
rawLabels[k] = v
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
labels, extendedResources := filterFeatureLabels(rawLabels, m.args.ExtraLabelNs, m.args.LabelWhiteList.Regexp, m.args.ResourceLabels)
|
2021-05-13 12:55:33 +02:00
|
|
|
|
|
|
|
|
if !m.args.NoPublish {
|
|
|
|
|
// Advertise NFD worker version as an annotation
|
|
|
|
|
annotations := Annotations{m.annotationName(workerVersionAnnotation): r.NfdVersion}
|
|
|
|
|
|
|
|
|
|
err := m.updateNodeFeatures(r.NodeName, labels, annotations, extendedResources)
|
|
|
|
|
if err != nil {
|
|
|
|
|
klog.Errorf("failed to advertise labels: %v", err)
|
|
|
|
|
return &pb.SetLabelsReply{}, err
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return &pb.SetLabelsReply{}, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func authorizeClient(c context.Context, checkNodeName bool, nodeName string) error {
|
|
|
|
|
if checkNodeName {
|
2019-02-08 21:43:54 +02:00
|
|
|
// Client authorization.
|
|
|
|
|
// Check that the node name matches the CN from the TLS cert
|
|
|
|
|
client, ok := peer.FromContext(c)
|
|
|
|
|
if !ok {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Errorf("gRPC request error: failed to get peer (client)")
|
2021-05-13 12:55:33 +02:00
|
|
|
return fmt.Errorf("failed to get peer (client)")
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
tlsAuth, ok := client.AuthInfo.(credentials.TLSInfo)
|
|
|
|
|
if !ok {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Errorf("gRPC request error: incorrect client credentials from '%v'", client.Addr)
|
2021-05-13 12:55:33 +02:00
|
|
|
return fmt.Errorf("incorrect client credentials")
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
if len(tlsAuth.State.VerifiedChains) == 0 || len(tlsAuth.State.VerifiedChains[0]) == 0 {
|
2021-02-19 11:03:16 +02:00
|
|
|
klog.Errorf("gRPC request error: client certificate verification for '%v' failed", client.Addr)
|
2021-05-13 12:55:33 +02:00
|
|
|
return fmt.Errorf("client certificate verification failed")
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
2021-04-20 09:44:32 +01:00
|
|
|
|
2021-05-13 12:55:33 +02:00
|
|
|
err := verifyNodeName(tlsAuth.State.VerifiedChains[0][0], nodeName)
|
2021-04-20 09:44:32 +01:00
|
|
|
if err != nil {
|
|
|
|
|
klog.Errorf("gRPC request error: authorization for %v failed: %v", client.Addr, err)
|
2021-05-13 12:55:33 +02:00
|
|
|
return err
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
}
|
2021-05-13 12:55:33 +02:00
|
|
|
return nil
|
|
|
|
|
}
|
2021-02-19 11:03:16 +02:00
|
|
|
|
2021-05-13 12:55:33 +02:00
|
|
|
func (m *nfdMaster) UpdateNodeTopology(c context.Context, r *topologypb.NodeTopologyRequest) (*topologypb.NodeTopologyResponse, error) {
|
|
|
|
|
err := authorizeClient(c, m.args.VerifyNodeName, r.NodeName)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return &topologypb.NodeTopologyResponse{}, err
|
|
|
|
|
}
|
|
|
|
|
if klog.V(1).Enabled() {
|
|
|
|
|
klog.Infof("REQUEST Node: %s NFD-version: %s Topology Policy: %s", r.NodeName, r.NfdVersion, r.TopologyPolicies)
|
|
|
|
|
utils.KlogDump(1, "Zones received:", " ", r.Zones)
|
2021-02-19 11:03:16 +02:00
|
|
|
} else {
|
2021-05-13 12:55:33 +02:00
|
|
|
klog.Infof("received CR updation request for node %q", r.NodeName)
|
2021-02-19 11:03:16 +02:00
|
|
|
}
|
2021-02-03 19:00:02 +02:00
|
|
|
if !m.args.NoPublish {
|
2021-11-16 11:58:04 +00:00
|
|
|
err := m.updateCR(r.NodeName, r.TopologyPolicies, r.Zones)
|
2019-02-08 21:43:54 +02:00
|
|
|
if err != nil {
|
2022-08-22 14:39:52 +03:00
|
|
|
klog.Errorf("failed to advertise NodeResourceTopology: %v", err)
|
2021-05-13 12:55:33 +02:00
|
|
|
return &topologypb.NodeTopologyResponse{}, err
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
}
|
2021-05-13 12:55:33 +02:00
|
|
|
return &topologypb.NodeTopologyResponse{}, nil
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
2021-06-15 14:08:14 +03:00
|
|
|
func (m *nfdMaster) crLabels(r *pb.SetLabelsRequest) map[string]string {
|
|
|
|
|
if m.nfdController == nil {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
l := make(map[string]string)
|
|
|
|
|
ruleSpecs, err := m.nfdController.lister.List(labels.Everything())
|
2021-06-18 18:29:08 +03:00
|
|
|
sort.Slice(ruleSpecs, func(i, j int) bool {
|
|
|
|
|
return ruleSpecs[i].Name < ruleSpecs[j].Name
|
|
|
|
|
})
|
|
|
|
|
|
2021-06-15 14:08:14 +03:00
|
|
|
if err != nil {
|
2022-08-22 14:39:52 +03:00
|
|
|
klog.Errorf("failed to list NodeFeatureRule resources: %v", err)
|
2021-06-15 14:08:14 +03:00
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Process all rule CRs
|
|
|
|
|
for _, spec := range ruleSpecs {
|
|
|
|
|
switch {
|
|
|
|
|
case klog.V(3).Enabled():
|
2022-08-17 10:07:26 +03:00
|
|
|
h := fmt.Sprintf("executing NodeFeatureRule %q:", spec.ObjectMeta.Name)
|
2021-06-15 14:08:14 +03:00
|
|
|
utils.KlogDump(3, h, " ", spec.Spec)
|
|
|
|
|
case klog.V(1).Enabled():
|
2022-08-17 10:07:26 +03:00
|
|
|
klog.Infof("executing NodeFeatureRule %q", spec.ObjectMeta.Name)
|
2021-06-15 14:08:14 +03:00
|
|
|
}
|
|
|
|
|
for _, rule := range spec.Spec.Rules {
|
|
|
|
|
ruleOut, err := rule.Execute(r.Features)
|
|
|
|
|
if err != nil {
|
2022-08-22 14:39:52 +03:00
|
|
|
klog.Errorf("failed to process Rule %q: %v", rule.Name, err)
|
2021-06-15 14:08:14 +03:00
|
|
|
continue
|
|
|
|
|
}
|
2021-06-18 18:29:08 +03:00
|
|
|
|
|
|
|
|
for k, v := range ruleOut.Labels {
|
2021-06-15 14:08:14 +03:00
|
|
|
l[k] = v
|
|
|
|
|
}
|
2021-06-18 18:29:08 +03:00
|
|
|
|
|
|
|
|
// Feed back rule output to features map for subsequent rules to match
|
|
|
|
|
feature.InsertFeatureValues(r.Features, nfdv1alpha1.RuleBackrefDomain, nfdv1alpha1.RuleBackrefFeature, ruleOut.Labels)
|
|
|
|
|
feature.InsertFeatureValues(r.Features, nfdv1alpha1.RuleBackrefDomain, nfdv1alpha1.RuleBackrefFeature, ruleOut.Vars)
|
2021-06-15 14:08:14 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return l
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-28 16:27:27 +03:00
|
|
|
// updateNodeFeatures ensures the Kubernetes node object is up to date,
|
|
|
|
|
// creating new labels and extended resources where necessary and removing
|
|
|
|
|
// outdated ones. Also updates the corresponding annotations.
|
2021-02-03 19:19:51 +02:00
|
|
|
func (m *nfdMaster) updateNodeFeatures(nodeName string, labels Labels, annotations Annotations, extendedResources ExtendedResources) error {
|
|
|
|
|
cli, err := m.apihelper.GetClient()
|
2019-02-08 21:43:54 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Get the worker node object
|
2021-02-03 19:19:51 +02:00
|
|
|
node, err := m.apihelper.GetNode(cli, nodeName)
|
2019-02-08 21:43:54 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-18 17:11:52 +03:00
|
|
|
// Store names of labels in an annotation
|
|
|
|
|
labelKeys := make([]string, 0, len(labels))
|
|
|
|
|
for key := range labels {
|
|
|
|
|
// Drop the ns part for labels in the default ns
|
2021-07-06 14:58:08 +03:00
|
|
|
labelKeys = append(labelKeys, strings.TrimPrefix(key, FeatureLabelNs+"/"))
|
2020-08-18 17:11:52 +03:00
|
|
|
}
|
|
|
|
|
sort.Strings(labelKeys)
|
2021-02-03 19:49:02 +02:00
|
|
|
annotations[m.annotationName(featureLabelAnnotation)] = strings.Join(labelKeys, ",")
|
2020-08-18 17:11:52 +03:00
|
|
|
|
|
|
|
|
// Store names of extended resources in an annotation
|
|
|
|
|
extendedResourceKeys := make([]string, 0, len(extendedResources))
|
|
|
|
|
for key := range extendedResources {
|
|
|
|
|
// Drop the ns part if in the default ns
|
2021-07-06 14:58:08 +03:00
|
|
|
extendedResourceKeys = append(extendedResourceKeys, strings.TrimPrefix(key, FeatureLabelNs+"/"))
|
2020-08-18 17:11:52 +03:00
|
|
|
}
|
|
|
|
|
sort.Strings(extendedResourceKeys)
|
2021-02-03 19:49:02 +02:00
|
|
|
annotations[m.annotationName(extendedResourceAnnotation)] = strings.Join(extendedResourceKeys, ",")
|
2020-08-18 17:11:52 +03:00
|
|
|
|
2020-08-13 17:14:27 +03:00
|
|
|
// Create JSON patches for changes in labels and annotations
|
2021-07-06 14:58:08 +03:00
|
|
|
oldLabels := stringToNsNames(node.Annotations[m.annotationName(featureLabelAnnotation)], FeatureLabelNs)
|
2020-08-13 17:14:27 +03:00
|
|
|
patches := createPatches(oldLabels, node.Labels, labels, "/metadata/labels")
|
|
|
|
|
patches = append(patches, createPatches(nil, node.Annotations, annotations, "/metadata/annotations")...)
|
2019-02-08 21:43:54 +02:00
|
|
|
|
|
|
|
|
// Also, remove all labels with the old prefix, and the old version label
|
2020-08-13 17:14:27 +03:00
|
|
|
patches = append(patches, removeLabelsWithPrefix(node, "node.alpha.kubernetes-incubator.io/nfd")...)
|
|
|
|
|
patches = append(patches, removeLabelsWithPrefix(node, "node.alpha.kubernetes-incubator.io/node-feature-discovery")...)
|
2019-02-08 21:43:54 +02:00
|
|
|
|
2020-08-13 17:14:27 +03:00
|
|
|
// Patch the node object in the apiserver
|
2021-02-03 19:19:51 +02:00
|
|
|
err = m.apihelper.PatchNode(cli, node.Name, patches)
|
2019-02-08 21:43:54 +02:00
|
|
|
if err != nil {
|
2021-02-19 11:03:16 +02:00
|
|
|
return fmt.Errorf("error while patching node object: %v", err)
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
|
|
|
|
|
2020-03-05 16:40:55 +02:00
|
|
|
// patch node status with extended resource changes
|
2021-02-03 19:49:02 +02:00
|
|
|
patches = m.createExtendedResourcePatches(node, extendedResources)
|
2021-02-03 19:19:51 +02:00
|
|
|
err = m.apihelper.PatchNodeStatus(cli, node.Name, patches)
|
2020-08-13 17:14:27 +03:00
|
|
|
if err != nil {
|
2021-02-19 11:03:16 +02:00
|
|
|
return fmt.Errorf("error while patching extended resources: %v", err)
|
2020-03-05 16:40:55 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return err
|
2019-02-08 21:43:54 +02:00
|
|
|
}
|
2019-02-12 15:31:59 +02:00
|
|
|
|
2021-02-03 19:49:02 +02:00
|
|
|
func (m *nfdMaster) annotationName(name string) string {
|
|
|
|
|
return path.Join(m.annotationNs, name)
|
|
|
|
|
}
|
|
|
|
|
|
2021-06-08 16:17:38 +03:00
|
|
|
func (m *nfdMaster) getKubeconfig() (*restclient.Config, error) {
|
|
|
|
|
var err error
|
|
|
|
|
if m.kubeconfig == nil {
|
|
|
|
|
m.kubeconfig, err = apihelper.GetKubeconfig(m.args.Kubeconfig)
|
|
|
|
|
}
|
|
|
|
|
return m.kubeconfig, err
|
|
|
|
|
}
|
|
|
|
|
|
2019-02-12 15:31:59 +02:00
|
|
|
// Remove any labels having the given prefix
|
2020-08-13 17:14:27 +03:00
|
|
|
func removeLabelsWithPrefix(n *api.Node, search string) []apihelper.JsonPatch {
|
|
|
|
|
var p []apihelper.JsonPatch
|
|
|
|
|
|
2019-02-12 15:31:59 +02:00
|
|
|
for k := range n.Labels {
|
|
|
|
|
if strings.HasPrefix(k, search) {
|
2020-08-13 17:14:27 +03:00
|
|
|
p = append(p, apihelper.NewJsonPatch("remove", "/metadata/labels", k, ""))
|
2019-02-12 15:31:59 +02:00
|
|
|
}
|
|
|
|
|
}
|
2020-08-13 17:14:27 +03:00
|
|
|
|
|
|
|
|
return p
|
2019-02-12 15:31:59 +02:00
|
|
|
}
|
|
|
|
|
|
2020-08-13 17:14:27 +03:00
|
|
|
// createPatches is a generic helper that returns json patch operations to perform
|
|
|
|
|
func createPatches(removeKeys []string, oldItems map[string]string, newItems map[string]string, jsonPath string) []apihelper.JsonPatch {
|
|
|
|
|
patches := []apihelper.JsonPatch{}
|
|
|
|
|
|
|
|
|
|
// Determine items to remove
|
|
|
|
|
for _, key := range removeKeys {
|
|
|
|
|
if _, ok := oldItems[key]; ok {
|
|
|
|
|
if _, ok := newItems[key]; !ok {
|
|
|
|
|
patches = append(patches, apihelper.NewJsonPatch("remove", jsonPath, key, ""))
|
|
|
|
|
}
|
|
|
|
|
}
|
2019-02-12 15:31:59 +02:00
|
|
|
}
|
2020-08-13 17:14:27 +03:00
|
|
|
|
|
|
|
|
// Determine items to add or replace
|
|
|
|
|
for key, newVal := range newItems {
|
|
|
|
|
if oldVal, ok := oldItems[key]; ok {
|
|
|
|
|
if newVal != oldVal {
|
|
|
|
|
patches = append(patches, apihelper.NewJsonPatch("replace", jsonPath, key, newVal))
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
patches = append(patches, apihelper.NewJsonPatch("add", jsonPath, key, newVal))
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return patches
|
2019-02-12 15:31:59 +02:00
|
|
|
}
|
|
|
|
|
|
2020-08-13 22:19:16 +03:00
|
|
|
// createExtendedResourcePatches returns a slice of operations to perform on
|
|
|
|
|
// the node status
|
2021-02-03 19:49:02 +02:00
|
|
|
func (m *nfdMaster) createExtendedResourcePatches(n *api.Node, extendedResources ExtendedResources) []apihelper.JsonPatch {
|
2020-08-13 17:14:27 +03:00
|
|
|
patches := []apihelper.JsonPatch{}
|
2020-03-05 16:40:55 +02:00
|
|
|
|
2020-08-12 21:28:21 +03:00
|
|
|
// Form a list of namespaced resource names managed by us
|
2021-07-06 14:58:08 +03:00
|
|
|
oldResources := stringToNsNames(n.Annotations[m.annotationName(extendedResourceAnnotation)], FeatureLabelNs)
|
2020-08-13 17:14:27 +03:00
|
|
|
|
|
|
|
|
// figure out which resources to remove
|
|
|
|
|
for _, resource := range oldResources {
|
|
|
|
|
if _, ok := n.Status.Capacity[api.ResourceName(resource)]; ok {
|
|
|
|
|
// check if the ext resource is still needed
|
|
|
|
|
if _, extResNeeded := extendedResources[resource]; !extResNeeded {
|
|
|
|
|
patches = append(patches, apihelper.NewJsonPatch("remove", "/status/capacity", resource, ""))
|
|
|
|
|
patches = append(patches, apihelper.NewJsonPatch("remove", "/status/allocatable", resource, ""))
|
2020-03-05 16:40:55 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// figure out which resources to replace and which to add
|
|
|
|
|
for resource, value := range extendedResources {
|
|
|
|
|
// check if the extended resource already exists with the same capacity in the node
|
2020-08-12 21:28:21 +03:00
|
|
|
if quantity, ok := n.Status.Capacity[api.ResourceName(resource)]; ok {
|
2020-03-05 16:40:55 +02:00
|
|
|
val, _ := quantity.AsInt64()
|
|
|
|
|
if strconv.FormatInt(val, 10) != value {
|
2020-08-13 22:19:16 +03:00
|
|
|
patches = append(patches, apihelper.NewJsonPatch("replace", "/status/capacity", resource, value))
|
|
|
|
|
patches = append(patches, apihelper.NewJsonPatch("replace", "/status/allocatable", resource, value))
|
2020-03-05 16:40:55 +02:00
|
|
|
}
|
|
|
|
|
} else {
|
2020-08-13 22:19:16 +03:00
|
|
|
patches = append(patches, apihelper.NewJsonPatch("add", "/status/capacity", resource, value))
|
2020-03-05 16:40:55 +02:00
|
|
|
// "allocatable" gets added implicitly after adding to capacity
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-13 22:19:16 +03:00
|
|
|
return patches
|
2020-03-05 16:40:55 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// addNs adds a namespace if one isn't already found from src string
|
|
|
|
|
func addNs(src string, nsToAdd string) string {
|
|
|
|
|
if strings.Contains(src, "/") {
|
|
|
|
|
return src
|
|
|
|
|
}
|
2021-02-10 12:49:23 +02:00
|
|
|
return path.Join(nsToAdd, src)
|
2020-08-12 21:28:21 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// splitNs splits a name into its namespace and name parts
|
|
|
|
|
func splitNs(fullname string) (string, string) {
|
|
|
|
|
split := strings.SplitN(fullname, "/", 2)
|
|
|
|
|
if len(split) == 2 {
|
|
|
|
|
return split[0], split[1]
|
|
|
|
|
}
|
|
|
|
|
return "", fullname
|
2020-03-05 16:40:55 +02:00
|
|
|
}
|
2020-08-13 17:14:27 +03:00
|
|
|
|
|
|
|
|
// stringToNsNames is a helper for converting a string of comma-separated names
|
|
|
|
|
// into a slice of fully namespaced names
|
|
|
|
|
func stringToNsNames(cslist, ns string) []string {
|
|
|
|
|
var names []string
|
|
|
|
|
if cslist != "" {
|
|
|
|
|
names = strings.Split(cslist, ",")
|
|
|
|
|
for i, name := range names {
|
|
|
|
|
// Expect that names may omit the ns part
|
|
|
|
|
names[i] = addNs(name, ns)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return names
|
|
|
|
|
}
|
2021-05-13 12:55:33 +02:00
|
|
|
|
2021-07-13 23:24:58 +01:00
|
|
|
func modifyCR(topoUpdaterZones []*v1alpha1.Zone) []v1alpha1.Zone {
|
2021-05-13 12:55:33 +02:00
|
|
|
zones := make([]v1alpha1.Zone, len(topoUpdaterZones))
|
|
|
|
|
// TODO: Avoid copying of data to allow returning the zone info
|
|
|
|
|
// directly in a compatible data type (i.e. []*v1alpha1.Zone).
|
|
|
|
|
for i, zone := range topoUpdaterZones {
|
|
|
|
|
zones[i] = v1alpha1.Zone{
|
|
|
|
|
Name: zone.Name,
|
|
|
|
|
Type: zone.Type,
|
|
|
|
|
Parent: zone.Parent,
|
2021-07-13 23:24:58 +01:00
|
|
|
Costs: zone.Costs,
|
|
|
|
|
Resources: zone.Resources,
|
2021-05-13 12:55:33 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return zones
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-16 11:58:04 +00:00
|
|
|
func (m *nfdMaster) updateCR(hostname string, tmpolicy []string, topoUpdaterZones []*v1alpha1.Zone) error {
|
2021-05-13 12:55:33 +02:00
|
|
|
cli, err := m.apihelper.GetTopologyClient()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
zones := modifyCR(topoUpdaterZones)
|
|
|
|
|
|
2021-11-16 11:58:04 +00:00
|
|
|
nrt, err := cli.TopologyV1alpha1().NodeResourceTopologies().Get(context.TODO(), hostname, metav1.GetOptions{})
|
2021-05-13 12:55:33 +02:00
|
|
|
if errors.IsNotFound(err) {
|
|
|
|
|
nrtNew := v1alpha1.NodeResourceTopology{
|
|
|
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
|
|
|
Name: hostname,
|
|
|
|
|
},
|
|
|
|
|
Zones: zones,
|
|
|
|
|
TopologyPolicies: tmpolicy,
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-16 11:58:04 +00:00
|
|
|
_, err := cli.TopologyV1alpha1().NodeResourceTopologies().Create(context.TODO(), &nrtNew, metav1.CreateOptions{})
|
2021-05-13 12:55:33 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("failed to create v1alpha1.NodeResourceTopology!:%w", err)
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
} else if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
nrtMutated := nrt.DeepCopy()
|
|
|
|
|
nrtMutated.Zones = zones
|
|
|
|
|
|
2021-11-16 11:58:04 +00:00
|
|
|
nrtUpdated, err := cli.TopologyV1alpha1().NodeResourceTopologies().Update(context.TODO(), nrtMutated, metav1.UpdateOptions{})
|
2021-05-13 12:55:33 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("failed to update v1alpha1.NodeResourceTopology!:%w", err)
|
|
|
|
|
}
|
|
|
|
|
utils.KlogDump(2, "CR instance updated resTopo:", " ", nrtUpdated)
|
|
|
|
|
return nil
|
|
|
|
|
}
|
