model

package
v1.20.0-alpha.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 15, 2021 License: Apache-2.0 Imports: 56 Imported by: 273

Documentation

Index

Constants

View Source 
const (
	BastionELBSecurityGroupPrefix = "bastion"
	BastionELBDefaultIdleTimeout  = 5 * time.Minute
)
View Source 
const (
	DefaultEtcdVolumeSize             = 20
	DefaultAWSEtcdVolumeType          = "gp2"
	DefaultAWSEtcdVolumeIonIops       = 100
	DefaultAWSEtcdVolumeGp3Iops       = 3000
	DefaultAWSEtcdVolumeGp3Throughput = 125
	DefaultGCEEtcdVolumeType          = "pd-ssd"
	DefaultALIEtcdVolumeType          = "cloud_ssd"
)
View Source 
const NodeRolePolicyTemplate = `` /* 177-byte string literal not displayed */

Variables

This section is empty.

Functions

func IAMServiceEC2 added in v1.19.0 

func IAMServiceEC2(region string) string

IAMServiceEC2 returns the name of the IAM service for EC2 in the current region. It is ec2.amazonaws.com everywhere but in cn-north / cn-northwest, where it is ec2.amazonaws.com.cn

func JoinSuffixes added in v1.11.0 

func JoinSuffixes(src SecurityGroupInfo, dest SecurityGroupInfo) string

JoinSuffixes constructs a suffix for traffic from the src to the dest group We have to avoid ambiguity in the case where one has a suffix and the other does not, where normally l.Suffix + r.Suffix would equal r.Suffix + l.Suffix

func NewTemplateResource 

func NewTemplateResource(key string, definition string, functions template.FuncMap, context interface{}) (*templateResource, error)

func ParseManifest added in v1.17.0 

func ParseManifest(data []byte) ([]runtime.Object, error)

ParseManifest parses a typed set of objects from a []byte

Types

type BastionModelBuilder 

type BastionModelBuilder struct {
	*KopsModelContext
	Lifecycle         *fi.Lifecycle
	SecurityLifecycle *fi.Lifecycle
}

func (*BastionModelBuilder) Build 

func (b *BastionModelBuilder) Build(c *fi.ModelBuilderContext) error

type BootstrapScript 

type BootstrapScript struct {
	Name string
	// contains filtered or unexported fields
}

func (*BootstrapScript) GetDependencies added in v1.19.0 

func (b *BootstrapScript) GetDependencies(tasks map[string]fi.Task) []fi.Task

func (*BootstrapScript) GetName added in v1.19.0 

func (b *BootstrapScript) GetName() *string

func (*BootstrapScript) Run added in v1.19.0 

func (b *BootstrapScript) Run(c *fi.Context) error

type BootstrapScriptBuilder added in v1.19.0 

type BootstrapScriptBuilder struct {
	NodeUpAssets        map[architectures.Architecture]*mirrors.MirroredAsset
	NodeUpConfigBuilder NodeUpConfigBuilder
}

BootstrapScriptBuilder creates the bootstrap script

func (*BootstrapScriptBuilder) ResourceNodeUp added in v1.19.0 

func (b *BootstrapScriptBuilder) ResourceNodeUp(c *fi.ModelBuilderContext, ig *kops.InstanceGroup) (fi.Resource, error)

ResourceNodeUp generates and returns a nodeup (bootstrap) script from a template file, substituting in specific env vars & cluster spec configuration

type DNSModelBuilder 

type DNSModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

DNSModelBuilder builds DNS related model objects

func (*DNSModelBuilder) Build 

func (b *DNSModelBuilder) Build(c *fi.ModelBuilderContext) error

type ExternalAccessModelBuilder 

type ExternalAccessModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

ExternalAccessModelBuilder configures security group rules for external access (SSHAccess, KubernetesAPIAccess)

func (*ExternalAccessModelBuilder) Build 

func (b *ExternalAccessModelBuilder) Build(c *fi.ModelBuilderContext) error

type FirewallModelBuilder 

type FirewallModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

FirewallModelBuilder configures firewall network objects

func (*FirewallModelBuilder) Build 

func (b *FirewallModelBuilder) Build(c *fi.ModelBuilderContext) error

type IAMModelBuilder 

type IAMModelBuilder struct {
	*KopsModelContext

	Lifecycle *fi.Lifecycle
}

IAMModelBuilder configures IAM objects

func (*IAMModelBuilder) Build 

func (b *IAMModelBuilder) Build(c *fi.ModelBuilderContext) error

func (*IAMModelBuilder) BuildServiceAccountRoleTasks added in v1.19.0 

func (b *IAMModelBuilder) BuildServiceAccountRoleTasks(role iam.Subject, c *fi.ModelBuilderContext) error

BuildServiceAccountRoleTasks build tasks specifically for the ServiceAccount role.

type KopsModelContext 

type KopsModelContext struct {
	iam.IAMModelContext
	InstanceGroups []*kops.InstanceGroup
	Region         string
	SSHPublicKeys  [][]byte
}

KopsModelContext is the kops model

func (*KopsModelContext) APILoadBalancerClass added in v1.19.0 

func (m *KopsModelContext) APILoadBalancerClass() kops.LoadBalancerClass

APILoadBalancerClass returns which type of load balancer to use for the api

func (*KopsModelContext) AddDirectionalGroupRule added in v1.20.0 

func (b *KopsModelContext) AddDirectionalGroupRule(c *fi.ModelBuilderContext, t *awstasks.SecurityGroupRule)

func (*KopsModelContext) AutoscalingGroupName 

func (b *KopsModelContext) AutoscalingGroupName(ig *kops.InstanceGroup) string

AutoscalingGroupName derives the autoscaling group name for us

func (*KopsModelContext) CLBName added in v1.19.0 

func (b *KopsModelContext) CLBName(prefix string) string

CLBName returns CLB name plus cluster name

func (*KopsModelContext) CloudTags 

func (m *KopsModelContext) CloudTags(name string, shared bool) map[string]string

CloudTags computes the tags to apply to a normal cloud resource with the specified name

func (*KopsModelContext) CloudTagsForInstanceGroup 

func (m *KopsModelContext) CloudTagsForInstanceGroup(ig *kops.InstanceGroup) (map[string]string, error)

CloudTagsForInstanceGroup computes the tags to apply to instances in the specified InstanceGroup

func (*KopsModelContext) ELBSecurityGroupName 

func (b *KopsModelContext) ELBSecurityGroupName(prefix string) string

func (*KopsModelContext) FindInstanceGroup 

func (m *KopsModelContext) FindInstanceGroup(name string) *kops.InstanceGroup

FindInstanceGroup returns the instance group with the matching Name (or nil if not found)

func (*KopsModelContext) FindSubnet 

func (m *KopsModelContext) FindSubnet(name string) *kops.ClusterSubnetSpec

FindSubnet returns the subnet with the matching Name (or nil if not found)

func (*KopsModelContext) FindZonesForInstanceGroup 

func (m *KopsModelContext) FindZonesForInstanceGroup(ig *kops.InstanceGroup) ([]string, error)

FindZonesForInstanceGroup finds the zones for an InstanceGroup

func (*KopsModelContext) GatherSubnets 

func (m *KopsModelContext) GatherSubnets(ig *kops.InstanceGroup) ([]*kops.ClusterSubnetSpec, error)

GatherSubnets maps the subnet names in an InstanceGroup to the ClusterSubnetSpec objects (which are stored on the Cluster)

func (*KopsModelContext) GetSecurityGroups added in v1.11.0 

func (b *KopsModelContext) GetSecurityGroups(role kops.InstanceGroupRole) ([]SecurityGroupInfo, error)

func (*KopsModelContext) IAMName 

func (b *KopsModelContext) IAMName(role kops.InstanceGroupRole) string

IAMName determines the name of the IAM Role and Instance Profile to use for the InstanceGroup

func (*KopsModelContext) InstanceName 

func (b *KopsModelContext) InstanceName(ig *kops.InstanceGroup, suffix string) string

func (*KopsModelContext) IsKubernetesGTE 

func (m *KopsModelContext) IsKubernetesGTE(version string) bool

IsKubernetesGTE checks if the kubernetes version is at least version, ignoring prereleases / patches

func (*KopsModelContext) IsKubernetesLT added in v1.17.0 

func (m *KopsModelContext) IsKubernetesLT(version string) bool

IsKubernetesLT checks if the kubernetes version is before the specified version, ignoring prereleases / patches

func (*KopsModelContext) KubernetesVersion 

func (m *KopsModelContext) KubernetesVersion() semver.Version

KubernetesVersion parses the semver version of kubernetes, from the cluster spec

func (*KopsModelContext) LBName32 added in v1.19.0 

func (m *KopsModelContext) LBName32(prefix string) string

LBName32 will attempt to calculate a meaningful name for an ELB given a prefix Will never return a string longer than 32 chars Note this is _not_ the primary identifier for the ELB - we use the Name tag for that.

func (*KopsModelContext) LinkToAutoscalingGroup 

func (b *KopsModelContext) LinkToAutoscalingGroup(ig *kops.InstanceGroup) *awstasks.AutoscalingGroup

func (*KopsModelContext) LinkToCLB added in v1.19.0 

func (b *KopsModelContext) LinkToCLB(prefix string) *awstasks.ClassicLoadBalancer

func (*KopsModelContext) LinkToDNSZone 

func (b *KopsModelContext) LinkToDNSZone() *awstasks.DNSZone

func (*KopsModelContext) LinkToELBSecurityGroup 

func (b *KopsModelContext) LinkToELBSecurityGroup(prefix string) *awstasks.SecurityGroup

func (*KopsModelContext) LinkToIAMInstanceProfile 

func (b *KopsModelContext) LinkToIAMInstanceProfile(ig *kops.InstanceGroup) (*awstasks.IAMInstanceProfile, error)

func (*KopsModelContext) LinkToNLB added in v1.19.0 

func (b *KopsModelContext) LinkToNLB(prefix string) *awstasks.NetworkLoadBalancer

func (*KopsModelContext) LinkToPrivateRouteTableInZone 

func (b *KopsModelContext) LinkToPrivateRouteTableInZone(zoneName string) *awstasks.RouteTable

func (*KopsModelContext) LinkToPublicSubnetInZone 

func (b *KopsModelContext) LinkToPublicSubnetInZone(zoneName string) (*awstasks.Subnet, error)

func (*KopsModelContext) LinkToSSHKey 

func (b *KopsModelContext) LinkToSSHKey() (*awstasks.SSHKey, error)

func (*KopsModelContext) LinkToSecurityGroup 

func (b *KopsModelContext) LinkToSecurityGroup(role kops.InstanceGroupRole) *awstasks.SecurityGroup

LinkToSecurityGroup creates a task link the security group to the instncegroup

func (*KopsModelContext) LinkToSubnet 

func (b *KopsModelContext) LinkToSubnet(z *kops.ClusterSubnetSpec) *awstasks.Subnet

func (*KopsModelContext) LinkToTargetGroup added in v1.19.0 

func (b *KopsModelContext) LinkToTargetGroup(prefix string) *awstasks.TargetGroup

func (*KopsModelContext) LinkToUtilitySubnetInZone 

func (b *KopsModelContext) LinkToUtilitySubnetInZone(zoneName string) (*awstasks.Subnet, error)

func (*KopsModelContext) LinkToVPC 

func (b *KopsModelContext) LinkToVPC() *awstasks.VPC

func (*KopsModelContext) MasterInstanceGroups 

func (m *KopsModelContext) MasterInstanceGroups() []*kops.InstanceGroup

MasterInstanceGroups returns InstanceGroups with the master role

func (*KopsModelContext) NLBName added in v1.19.0 

func (b *KopsModelContext) NLBName(prefix string) string

func (*KopsModelContext) NLBTargetGroupName added in v1.19.0 

func (b *KopsModelContext) NLBTargetGroupName(prefix string) string

func (*KopsModelContext) NameForDNSZone 

func (b *KopsModelContext) NameForDNSZone() string

func (*KopsModelContext) NamePrivateRouteTableInZone 

func (b *KopsModelContext) NamePrivateRouteTableInZone(zoneName string) string

func (*KopsModelContext) NodeInstanceGroups 

func (m *KopsModelContext) NodeInstanceGroups() []*kops.InstanceGroup

NodeInstanceGroups returns InstanceGroups with the node role

func (*KopsModelContext) NodePortRange 

func (m *KopsModelContext) NodePortRange() (utilnet.PortRange, error)

NodePortRange returns the range of ports allocated to NodePorts

func (*KopsModelContext) SSHKeyName 

func (c *KopsModelContext) SSHKeyName() (string, error)

SSHKeyName computes a unique SSH key name, combining the cluster name and the SSH public key fingerprint. If an SSH key name is provided in the cluster configuration, it will use that instead.

func (*KopsModelContext) SecurityGroupName 

func (b *KopsModelContext) SecurityGroupName(role kops.InstanceGroupRole) string

SecurityGroupName returns the security group name for the specific role

func (*KopsModelContext) UseBootstrapTokens 

func (m *KopsModelContext) UseBootstrapTokens() bool

UseBootstrapTokens checks if bootstrap tokens are enabled

func (*KopsModelContext) UseClassicLoadBalancer added in v1.19.0 

func (m *KopsModelContext) UseClassicLoadBalancer() bool

UseClassicLoadBalancer checks if we are using Classic LoadBalancer

func (*KopsModelContext) UseEtcdManager added in v1.15.1 

func (c *KopsModelContext) UseEtcdManager() bool

UseEtcdManager checks to see if etcd manager is enabled

func (*KopsModelContext) UseEtcdTLS 

func (m *KopsModelContext) UseEtcdTLS() bool

UseEtcdTLS checks to see if etcd tls is enabled

func (*KopsModelContext) UseKopsControllerForNodeBootstrap added in v1.19.0 

func (m *KopsModelContext) UseKopsControllerForNodeBootstrap() bool

UseKopsControllerForNodeBootstrap checks if nodeup should use kops-controller to bootstrap.

func (*KopsModelContext) UseLoadBalancerForAPI 

func (m *KopsModelContext) UseLoadBalancerForAPI() bool

UseLoadBalancerForAPI checks if we are using a load balancer for the kubeapi

func (*KopsModelContext) UseLoadBalancerForInternalAPI 

func (m *KopsModelContext) UseLoadBalancerForInternalAPI() bool

UseLoadBalancerForInternalAPI check if true then we will use the created loadbalancer for internal kubelet connections. The intention here is to make connections to apiserver more HA - see https://github.com/kubernetes/kops/issues/4252

func (*KopsModelContext) UseNetworkLoadBalancer added in v1.19.0 

func (m *KopsModelContext) UseNetworkLoadBalancer() bool

UseNetworkLoadBalancer checks if we are using Network LoadBalancer

func (*KopsModelContext) UsePrivateDNS 

func (m *KopsModelContext) UsePrivateDNS() bool

UsePrivateDNS checks if we are using private DNS

func (*KopsModelContext) UseSSHKey added in v1.16.0 

func (m *KopsModelContext) UseSSHKey() bool

UseSSHKey returns true if SSHKeyName from the cluster spec is not set to an empty string (""). Setting SSHKeyName to an empty string indicates that an SSH key should not be set on instances.

func (*KopsModelContext) UseServiceAccountIAM added in v1.19.0 

func (m *KopsModelContext) UseServiceAccountIAM() bool

UseServiceAccountIAM returns true if we are using service-account bound IAM roles.

func (*KopsModelContext) UsesBastionDns 

func (m *KopsModelContext) UsesBastionDns() bool

UsesBastionDns checks if we should use a specific name for the bastion dns

func (*KopsModelContext) UsesSSHBastion 

func (m *KopsModelContext) UsesSSHBastion() bool

UsesSSHBastion checks if we have a Bastion in the cluster

func (*KopsModelContext) WellKnownServiceIP 

func (m *KopsModelContext) WellKnownServiceIP(id int) (net.IP, error)

WellKnownServiceIP returns a service ip with the service cidr

type MasterVolumeBuilder 

type MasterVolumeBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

MasterVolumeBuilder builds master EBS volumes

func (*MasterVolumeBuilder) Build 

func (b *MasterVolumeBuilder) Build(c *fi.ModelBuilderContext) error

type NetworkModelBuilder 

type NetworkModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

NetworkModelBuilder configures network objects

func (*NetworkModelBuilder) Build 

func (b *NetworkModelBuilder) Build(c *fi.ModelBuilderContext) error

type NodeUpConfigBuilder added in v1.19.0 

type NodeUpConfigBuilder interface {
	BuildConfig(ig *kops.InstanceGroup, apiserverAdditionalIPs []string) (*nodeup.Config, error)
}

type PKIModelBuilder 

type PKIModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

PKIModelBuilder configures PKI keypairs, as well as tokens

func (*PKIModelBuilder) Build 

func (b *PKIModelBuilder) Build(c *fi.ModelBuilderContext) error

Build is responsible for generating the various pki assets.

type Protocol 

type Protocol int
const (
	ProtocolIPIP Protocol = 4
)

type SSHKeyModelBuilder 

type SSHKeyModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

SSHKeyModelBuilder configures SSH objects

func (*SSHKeyModelBuilder) Build 

func (b *SSHKeyModelBuilder) Build(c *fi.ModelBuilderContext) error

type SecurityGroupInfo added in v1.11.0 

type SecurityGroupInfo struct {
	Name   string
	Suffix string
	Task   *awstasks.SecurityGroup
}

Source Files

View all Source files

Directories

Path Synopsis
addonmanifests
addonmanifests/dnscontroller
etcdmanager
kubeapiserver

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.