# Licensed under the Apache License, Version 2.0 (the "License"); you may # not use this file except in compliance with the License. You may obtain # a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the # License for the specific language governing permissions and limitations # under the License. import base64 from oslo_log import log as logging from oslo_utils import strutils from magnum.common import utils from magnum.common.x509 import operations as x509 from magnum.conductor.handlers.common import cert_manager from magnum.drivers.heat import k8s_template_def from magnum.drivers.heat import template_def from oslo_config import cfg CONF = cfg.CONF LOG = logging.getLogger(__name__) class ServerAddressOutputMapping(template_def.NodeGroupOutputMapping): public_ip_output_key = None private_ip_output_key = None def __init__(self, dummy_arg, nodegroup_attr=None, nodegroup_uuid=None): self.nodegroup_attr = nodegroup_attr self.nodegroup_uuid = nodegroup_uuid self.heat_output = self.public_ip_output_key self.is_stack_param = False def set_output(self, stack, cluster_template, cluster): if not cluster_template.floating_ip_enabled: self.heat_output = self.private_ip_output_key LOG.debug("Using heat_output: %s", self.heat_output) super(ServerAddressOutputMapping, self).set_output(stack, cluster_template, cluster) class MasterAddressOutputMapping(ServerAddressOutputMapping): public_ip_output_key = 'kube_masters' private_ip_output_key = 'kube_masters_private' class NodeAddressOutputMapping(ServerAddressOutputMapping): public_ip_output_key = 'kube_minions' private_ip_output_key = 'kube_minions_private' class CoreOSK8sTemplateDefinition(k8s_template_def.K8sTemplateDefinition): """Kubernetes template for a CoreOS.""" def __init__(self): super(CoreOSK8sTemplateDefinition, self).__init__() self.add_parameter('docker_volume_size', cluster_attr='docker_volume_size') self.add_parameter('docker_storage_driver', cluster_template_attr='docker_storage_driver') def add_nodegroup_params(self, cluster): super(CoreOSK8sTemplateDefinition, self).add_nodegroup_params(cluster) worker_ng = cluster.default_ng_worker master_ng = cluster.default_ng_master self.add_parameter('number_of_minions', nodegroup_attr='node_count', nodegroup_uuid=worker_ng.uuid, param_class=template_def.NodeGroupParameterMapping) self.add_parameter('minion_flavor', nodegroup_attr='flavor_id', nodegroup_uuid=worker_ng.uuid, param_class=template_def.NodeGroupParameterMapping) self.add_parameter('master_flavor', nodegroup_attr='flavor_id', nodegroup_uuid=master_ng.uuid, param_class=template_def.NodeGroupParameterMapping) def update_outputs(self, stack, cluster_template, cluster): worker_ng = cluster.default_ng_worker master_ng = cluster.default_ng_master self.add_output('kube_minions', nodegroup_attr='node_addresses', nodegroup_uuid=worker_ng.uuid, mapping_type=NodeAddressOutputMapping) self.add_output('kube_masters', nodegroup_attr='node_addresses', nodegroup_uuid=master_ng.uuid, mapping_type=MasterAddressOutputMapping) self.add_output('number_of_minions', nodegroup_attr='node_count', nodegroup_uuid=worker_ng.uuid, is_stack_param=True) super(CoreOSK8sTemplateDefinition, self).update_outputs(stack, cluster_template, cluster) def get_params(self, context, cluster_template, cluster, **kwargs): extra_params = kwargs.pop('extra_params', {}) extra_params['username'] = context.user_name osc = self.get_osc(context) extra_params['region_name'] = osc.cinder_region_name() # set docker_volume_type # use the configuration default if None provided docker_volume_type = cluster.labels.get( 'docker_volume_type', CONF.cinder.default_docker_volume_type) extra_params['docker_volume_type'] = docker_volume_type extra_params['nodes_affinity_policy'] = \ CONF.cluster.nodes_affinity_policy if cluster_template.network_driver == 'flannel': extra_params["pods_network_cidr"] = \ cluster.labels.get('flannel_network_cidr', '10.100.0.0/16') if cluster_template.network_driver == 'calico': extra_params["pods_network_cidr"] = \ cluster.labels.get('calico_ipv4pool', '192.168.0.0/16') label_list = ['coredns_tag', 'kube_tag', 'container_infra_prefix', 'availability_zone', 'calico_tag', 'calico_cni_tag', 'calico_kube_controllers_tag', 'calico_ipv4pool', 'etcd_tag', 'flannel_tag'] for label in label_list: label_value = cluster.labels.get(label) if label_value: extra_params[label] = label_value cert_manager_api = cluster.labels.get('cert_manager_api') if strutils.bool_from_string(cert_manager_api): extra_params['cert_manager_api'] = cert_manager_api ca_cert = cert_manager.get_cluster_ca_certificate(cluster) extra_params['ca_key'] = x509.decrypt_key( ca_cert.get_private_key(), ca_cert.get_private_key_passphrase()).replace("\n", "\\n") plain_openstack_ca = utils.get_openstack_ca() encoded_openstack_ca = base64.b64encode(plain_openstack_ca.encode()) extra_params['openstack_ca_coreos'] = encoded_openstack_ca.decode() return super(CoreOSK8sTemplateDefinition, self).get_params(context, cluster_template, cluster, extra_params=extra_params, **kwargs) def get_env_files(self, cluster_template, cluster): env_files = [] template_def.add_priv_net_env_file(env_files, cluster_template, cluster) template_def.add_etcd_volume_env_file(env_files, cluster_template) template_def.add_volume_env_file(env_files, cluster) template_def.add_lb_env_file(env_files, cluster_template) template_def.add_fip_env_file(env_files, cluster_template, cluster) return env_files