model

package
v1.21.0-alpha.1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Feb 16, 2021 License: Apache-2.0 Imports: 56 Imported by: 273

Documentation

Index

Constants

View Source
const (
	BastionELBSecurityGroupPrefix = "bastion"
	BastionELBDefaultIdleTimeout  = 5 * time.Minute
)
View Source
const (
	DefaultEtcdVolumeSize             = 20
	DefaultAWSEtcdVolumeType          = "gp3"
	DefaultAWSEtcdVolumeIonIops       = 100
	DefaultAWSEtcdVolumeGp3Iops       = 3000
	DefaultAWSEtcdVolumeGp3Throughput = 125
	DefaultGCEEtcdVolumeType          = "pd-ssd"
	DefaultALIEtcdVolumeType          = "cloud_ssd"
)
View Source
const NodeRolePolicyTemplate = `` /* 177-byte string literal not displayed */

Variables

This section is empty.

Functions

func IAMServiceEC2 added in v1.19.0

func IAMServiceEC2(region string) string

IAMServiceEC2 returns the name of the IAM service for EC2 in the current region. It is ec2.amazonaws.com everywhere but in cn-north / cn-northwest, where it is ec2.amazonaws.com.cn

func JoinSuffixes added in v1.11.0

func JoinSuffixes(src SecurityGroupInfo, dest SecurityGroupInfo) string

JoinSuffixes constructs a suffix for traffic from the src to the dest group We have to avoid ambiguity in the case where one has a suffix and the other does not, where normally l.Suffix + r.Suffix would equal r.Suffix + l.Suffix

func NewTemplateResource

func NewTemplateResource(key string, definition string, functions template.FuncMap, context interface{}) (*templateResource, error)

func ParseManifest added in v1.17.0

func ParseManifest(data []byte) ([]runtime.Object, error)

ParseManifest parses a typed set of objects from a []byte

Types

type BastionModelBuilder

type BastionModelBuilder struct {
	*KopsModelContext
	Lifecycle         *fi.Lifecycle
	SecurityLifecycle *fi.Lifecycle
}

func (*BastionModelBuilder) Build

type BootstrapScript

type BootstrapScript struct {
	Name string
	// contains filtered or unexported fields
}

func (*BootstrapScript) GetDependencies added in v1.19.0

func (b *BootstrapScript) GetDependencies(tasks map[string]fi.Task) []fi.Task

func (*BootstrapScript) GetName added in v1.19.0

func (b *BootstrapScript) GetName() *string

func (*BootstrapScript) Run added in v1.19.0

func (b *BootstrapScript) Run(c *fi.Context) error

type BootstrapScriptBuilder added in v1.19.0

type BootstrapScriptBuilder struct {
	NodeUpAssets        map[architectures.Architecture]*mirrors.MirroredAsset
	NodeUpConfigBuilder NodeUpConfigBuilder
}

BootstrapScriptBuilder creates the bootstrap script

func (*BootstrapScriptBuilder) ResourceNodeUp added in v1.19.0

ResourceNodeUp generates and returns a nodeup (bootstrap) script from a template file, substituting in specific env vars & cluster spec configuration

type DNSModelBuilder

type DNSModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

DNSModelBuilder builds DNS related model objects

func (*DNSModelBuilder) Build

type ExternalAccessModelBuilder

type ExternalAccessModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

ExternalAccessModelBuilder configures security group rules for external access (SSHAccess, KubernetesAPIAccess)

func (*ExternalAccessModelBuilder) Build

type FirewallModelBuilder

type FirewallModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

FirewallModelBuilder configures firewall network objects

func (*FirewallModelBuilder) Build

type IAMModelBuilder

type IAMModelBuilder struct {
	*KopsModelContext

	Lifecycle *fi.Lifecycle
}

IAMModelBuilder configures IAM objects

func (*IAMModelBuilder) Build

func (*IAMModelBuilder) BuildServiceAccountRoleTasks added in v1.19.0

func (b *IAMModelBuilder) BuildServiceAccountRoleTasks(role iam.Subject, c *fi.ModelBuilderContext) error

BuildServiceAccountRoleTasks build tasks specifically for the ServiceAccount role.

type KopsModelContext

type KopsModelContext struct {
	iam.IAMModelContext
	InstanceGroups []*kops.InstanceGroup
	Region         string
	SSHPublicKeys  [][]byte
}

KopsModelContext is the kops model

func (*KopsModelContext) APILoadBalancerClass added in v1.19.0

func (m *KopsModelContext) APILoadBalancerClass() kops.LoadBalancerClass

APILoadBalancerClass returns which type of load balancer to use for the api

func (*KopsModelContext) AddDirectionalGroupRule added in v1.20.0

func (b *KopsModelContext) AddDirectionalGroupRule(c *fi.ModelBuilderContext, t *awstasks.SecurityGroupRule)

func (*KopsModelContext) AutoscalingGroupName

func (b *KopsModelContext) AutoscalingGroupName(ig *kops.InstanceGroup) string

AutoscalingGroupName derives the autoscaling group name for us

func (*KopsModelContext) CLBName added in v1.19.0

func (b *KopsModelContext) CLBName(prefix string) string

CLBName returns CLB name plus cluster name

func (*KopsModelContext) CloudTags

func (m *KopsModelContext) CloudTags(name string, shared bool) map[string]string

CloudTags computes the tags to apply to a normal cloud resource with the specified name

func (*KopsModelContext) CloudTagsForInstanceGroup

func (m *KopsModelContext) CloudTagsForInstanceGroup(ig *kops.InstanceGroup) (map[string]string, error)

CloudTagsForInstanceGroup computes the tags to apply to instances in the specified InstanceGroup

func (*KopsModelContext) ELBSecurityGroupName

func (b *KopsModelContext) ELBSecurityGroupName(prefix string) string

func (*KopsModelContext) FindInstanceGroup

func (m *KopsModelContext) FindInstanceGroup(name string) *kops.InstanceGroup

FindInstanceGroup returns the instance group with the matching Name (or nil if not found)

func (*KopsModelContext) FindSubnet

func (m *KopsModelContext) FindSubnet(name string) *kops.ClusterSubnetSpec

FindSubnet returns the subnet with the matching Name (or nil if not found)

func (*KopsModelContext) FindZonesForInstanceGroup

func (m *KopsModelContext) FindZonesForInstanceGroup(ig *kops.InstanceGroup) ([]string, error)

FindZonesForInstanceGroup finds the zones for an InstanceGroup

func (*KopsModelContext) GatherSubnets

func (m *KopsModelContext) GatherSubnets(ig *kops.InstanceGroup) ([]*kops.ClusterSubnetSpec, error)

GatherSubnets maps the subnet names in an InstanceGroup to the ClusterSubnetSpec objects (which are stored on the Cluster)

func (*KopsModelContext) GetSecurityGroups added in v1.11.0

func (b *KopsModelContext) GetSecurityGroups(role kops.InstanceGroupRole) ([]SecurityGroupInfo, error)

func (*KopsModelContext) IAMName

func (b *KopsModelContext) IAMName(role kops.InstanceGroupRole) string

IAMName determines the name of the IAM Role and Instance Profile to use for the InstanceGroup

func (*KopsModelContext) InstanceName

func (b *KopsModelContext) InstanceName(ig *kops.InstanceGroup, suffix string) string

func (*KopsModelContext) IsKubernetesGTE

func (m *KopsModelContext) IsKubernetesGTE(version string) bool

IsKubernetesGTE checks if the kubernetes version is at least version, ignoring prereleases / patches

func (*KopsModelContext) IsKubernetesLT added in v1.17.0

func (m *KopsModelContext) IsKubernetesLT(version string) bool

IsKubernetesLT checks if the kubernetes version is before the specified version, ignoring prereleases / patches

func (*KopsModelContext) KubernetesVersion

func (m *KopsModelContext) KubernetesVersion() semver.Version

KubernetesVersion parses the semver version of kubernetes, from the cluster spec

func (*KopsModelContext) LBName32 added in v1.19.0

func (m *KopsModelContext) LBName32(prefix string) string

LBName32 will attempt to calculate a meaningful name for an ELB given a prefix Will never return a string longer than 32 chars Note this is _not_ the primary identifier for the ELB - we use the Name tag for that.

func (*KopsModelContext) LinkToAutoscalingGroup

func (b *KopsModelContext) LinkToAutoscalingGroup(ig *kops.InstanceGroup) *awstasks.AutoscalingGroup

func (*KopsModelContext) LinkToCLB added in v1.19.0

func (b *KopsModelContext) LinkToCLB(prefix string) *awstasks.ClassicLoadBalancer

func (*KopsModelContext) LinkToDNSZone

func (b *KopsModelContext) LinkToDNSZone() *awstasks.DNSZone

func (*KopsModelContext) LinkToELBSecurityGroup

func (b *KopsModelContext) LinkToELBSecurityGroup(prefix string) *awstasks.SecurityGroup

func (*KopsModelContext) LinkToIAMInstanceProfile

func (b *KopsModelContext) LinkToIAMInstanceProfile(ig *kops.InstanceGroup) (*awstasks.IAMInstanceProfile, error)

func (*KopsModelContext) LinkToNLB added in v1.19.0

func (b *KopsModelContext) LinkToNLB(prefix string) *awstasks.NetworkLoadBalancer

func (*KopsModelContext) LinkToPrivateRouteTableInZone

func (b *KopsModelContext) LinkToPrivateRouteTableInZone(zoneName string) *awstasks.RouteTable

func (*KopsModelContext) LinkToPublicSubnetInZone

func (b *KopsModelContext) LinkToPublicSubnetInZone(zoneName string) (*awstasks.Subnet, error)

func (*KopsModelContext) LinkToSSHKey

func (b *KopsModelContext) LinkToSSHKey() (*awstasks.SSHKey, error)

func (*KopsModelContext) LinkToSecurityGroup

func (b *KopsModelContext) LinkToSecurityGroup(role kops.InstanceGroupRole) *awstasks.SecurityGroup

LinkToSecurityGroup creates a task link the security group to the instncegroup

func (*KopsModelContext) LinkToSubnet

func (b *KopsModelContext) LinkToSubnet(z *kops.ClusterSubnetSpec) *awstasks.Subnet

func (*KopsModelContext) LinkToTargetGroup added in v1.19.0

func (b *KopsModelContext) LinkToTargetGroup(prefix string) *awstasks.TargetGroup

func (*KopsModelContext) LinkToUtilitySubnetInZone

func (b *KopsModelContext) LinkToUtilitySubnetInZone(zoneName string) (*awstasks.Subnet, error)

func (*KopsModelContext) LinkToVPC

func (b *KopsModelContext) LinkToVPC() *awstasks.VPC

func (*KopsModelContext) MasterInstanceGroups

func (m *KopsModelContext) MasterInstanceGroups() []*kops.InstanceGroup

MasterInstanceGroups returns InstanceGroups with the master role

func (*KopsModelContext) NLBName added in v1.19.0

func (b *KopsModelContext) NLBName(prefix string) string

func (*KopsModelContext) NLBTargetGroupName added in v1.19.0

func (b *KopsModelContext) NLBTargetGroupName(prefix string) string

func (*KopsModelContext) NameForDNSZone

func (b *KopsModelContext) NameForDNSZone() string

func (*KopsModelContext) NamePrivateRouteTableInZone

func (b *KopsModelContext) NamePrivateRouteTableInZone(zoneName string) string

func (*KopsModelContext) NodeInstanceGroups

func (m *KopsModelContext) NodeInstanceGroups() []*kops.InstanceGroup

NodeInstanceGroups returns InstanceGroups with the node role

func (*KopsModelContext) NodePortRange

func (m *KopsModelContext) NodePortRange() (utilnet.PortRange, error)

NodePortRange returns the range of ports allocated to NodePorts

func (*KopsModelContext) SSHKeyName

func (c *KopsModelContext) SSHKeyName() (string, error)

SSHKeyName computes a unique SSH key name, combining the cluster name and the SSH public key fingerprint. If an SSH key name is provided in the cluster configuration, it will use that instead.

func (*KopsModelContext) SecurityGroupName

func (b *KopsModelContext) SecurityGroupName(role kops.InstanceGroupRole) string

SecurityGroupName returns the security group name for the specific role

func (*KopsModelContext) UseBootstrapTokens

func (m *KopsModelContext) UseBootstrapTokens() bool

UseBootstrapTokens checks if bootstrap tokens are enabled

func (*KopsModelContext) UseClassicLoadBalancer added in v1.19.0

func (m *KopsModelContext) UseClassicLoadBalancer() bool

UseClassicLoadBalancer checks if we are using Classic LoadBalancer

func (*KopsModelContext) UseEtcdManager added in v1.15.1

func (c *KopsModelContext) UseEtcdManager() bool

UseEtcdManager checks to see if etcd manager is enabled

func (*KopsModelContext) UseEtcdTLS

func (m *KopsModelContext) UseEtcdTLS() bool

UseEtcdTLS checks to see if etcd tls is enabled

func (*KopsModelContext) UseKopsControllerForNodeBootstrap added in v1.19.0

func (m *KopsModelContext) UseKopsControllerForNodeBootstrap() bool

UseKopsControllerForNodeBootstrap checks if nodeup should use kops-controller to bootstrap.

func (*KopsModelContext) UseLoadBalancerForAPI

func (m *KopsModelContext) UseLoadBalancerForAPI() bool

UseLoadBalancerForAPI checks if we are using a load balancer for the kubeapi

func (*KopsModelContext) UseLoadBalancerForInternalAPI

func (m *KopsModelContext) UseLoadBalancerForInternalAPI() bool

UseLoadBalancerForInternalAPI check if true then we will use the created loadbalancer for internal kubelet connections. The intention here is to make connections to apiserver more HA - see https://github.com/kubernetes/kops/issues/4252

func (*KopsModelContext) UseNetworkLoadBalancer added in v1.19.0

func (m *KopsModelContext) UseNetworkLoadBalancer() bool

UseNetworkLoadBalancer checks if we are using Network LoadBalancer

func (*KopsModelContext) UsePrivateDNS

func (m *KopsModelContext) UsePrivateDNS() bool

UsePrivateDNS checks if we are using private DNS

func (*KopsModelContext) UseSSHKey added in v1.16.0

func (m *KopsModelContext) UseSSHKey() bool

UseSSHKey returns true if SSHKeyName from the cluster spec is not set to an empty string (""). Setting SSHKeyName to an empty string indicates that an SSH key should not be set on instances.

func (*KopsModelContext) UseServiceAccountIAM added in v1.19.0

func (m *KopsModelContext) UseServiceAccountIAM() bool

UseServiceAccountIAM returns true if we are using service-account bound IAM roles.

func (*KopsModelContext) UsesBastionDns

func (m *KopsModelContext) UsesBastionDns() bool

UsesBastionDns checks if we should use a specific name for the bastion dns

func (*KopsModelContext) UsesSSHBastion

func (m *KopsModelContext) UsesSSHBastion() bool

UsesSSHBastion checks if we have a Bastion in the cluster

func (*KopsModelContext) WellKnownServiceIP

func (m *KopsModelContext) WellKnownServiceIP(id int) (net.IP, error)

WellKnownServiceIP returns a service ip with the service cidr

type MasterVolumeBuilder

type MasterVolumeBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

MasterVolumeBuilder builds master EBS volumes

func (*MasterVolumeBuilder) Build

type NetworkModelBuilder

type NetworkModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

NetworkModelBuilder configures network objects

func (*NetworkModelBuilder) Build

type NodeUpConfigBuilder added in v1.19.0

type NodeUpConfigBuilder interface {
	BuildConfig(ig *kops.InstanceGroup, apiserverAdditionalIPs []string, ca fi.Resource) (*nodeup.Config, error)
}

type PKIModelBuilder

type PKIModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

PKIModelBuilder configures PKI keypairs, as well as tokens

func (*PKIModelBuilder) Build

Build is responsible for generating the various pki assets.

type Protocol

type Protocol int
const (
	ProtocolIPIP Protocol = 4
)

type SSHKeyModelBuilder

type SSHKeyModelBuilder struct {
	*KopsModelContext
	Lifecycle *fi.Lifecycle
}

SSHKeyModelBuilder configures SSH objects

func (*SSHKeyModelBuilder) Build

type SecurityGroupInfo added in v1.11.0

type SecurityGroupInfo struct {
	Name   string
	Suffix string
	Task   *awstasks.SecurityGroup
}

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL