Home Explore Help
Sign In
cecf
/
deploy
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e4538f3d9b
Branches Tags
deploy
/
rook
/
pkg
/
apis
/
ceph.rook.io
/
v1
/
network.go

network.go 6.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175 
  1. /*
    2. 

  2. Copyright 2019 The Rook Authors. All rights reserved.
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8.     http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package v1
    18. 

  18. 

  19. import (
    20. 

  20. 	"encoding/json"
    21. 

  21. 	"fmt"
    22. 

  22. 	"net"
    23. 

  23. 	"strings"
    24. 

  24. 

  25. 	nadv1 "github.com/k8snetworkplumbingwg/network-attachment-definition-client/pkg/apis/k8s.cni.cncf.io/v1"
    26. 

  26. 	nadutils "github.com/k8snetworkplumbingwg/network-attachment-definition-client/pkg/utils"
    27. 

  27. 	"github.com/pkg/errors"
    28. 

  28. )
    29. 

  29. 

  30. // IsMultus get whether to use multus network provider
    31. 

  31. func (n *NetworkSpec) IsMultus() bool {
    32. 

  32. 	return n.Provider == NetworkProviderMultus
    33. 

  33. }
    34. 

  34. 

  35. // IsHost get whether to use host network provider. This method also preserve
    36. 

  36. // compatibility with the old HostNetwork field.
    37. 

  37. func (n *NetworkSpec) IsHost() bool {
    38. 

  38. 	return (n.HostNetwork && n.Provider == NetworkProviderDefault) || n.Provider == NetworkProviderHost
    39. 

  39. }
    40. 

  40. 

  41. func ValidateNetworkSpec(clusterNamespace string, spec NetworkSpec) error {
    42. 

  42. 	if spec.IsMultus() {
    43. 

  43. 		if len(spec.Selectors) == 0 {
    44. 

  44. 			return errors.Errorf("at least one network selector must be specified when using the %q network provider", NetworkProviderMultus)
    45. 

  45. 		}
    46. 

  46. 

  47. 		if _, err := spec.GetNetworkSelection(clusterNamespace, CephNetworkPublic); err != nil {
    48. 

  48. 			return errors.Wrap(err, "ceph public network selector provided for multus is invalid")
    49. 

  49. 		}
    50. 

  50. 		if _, err := spec.GetNetworkSelection(clusterNamespace, CephNetworkCluster); err != nil {
    51. 

  51. 			return errors.Wrap(err, "ceph cluster network selector provided for multus is invalid")
    52. 

  52. 		}
    53. 

  53. 	}
    54. 

  54. 

  55. 	if !spec.AddressRanges.IsEmpty() {
    56. 

  56. 		if !spec.IsMultus() && !spec.IsHost() {
    57. 

  57. 			// TODO: be sure to update docs that AddressRanges can be specified for host networking  as
    58. 

  58. 			// well as multus so that the override configmap doesn't need to be set
    59. 

  59. 			return errors.Errorf("network ranges can only be specified for %q and %q network providers", NetworkProviderHost, NetworkProviderMultus)
    60. 

  60. 		}
    61. 

  61. 		if spec.IsMultus() {
    62. 

  62. 			if len(spec.AddressRanges.Public) > 0 && !spec.NetworkHasSelection(CephNetworkPublic) {
    63. 

  63. 				return errors.Errorf("public address range can only be specified for multus if there is a public network selection")
    64. 

  64. 			}
    65. 

  65. 			if len(spec.AddressRanges.Cluster) > 0 && !spec.NetworkHasSelection(CephNetworkCluster) {
    66. 

  66. 				return errors.Errorf("cluster address range can only be specified for multus if there is a cluster network selection")
    67. 

  67. 			}
    68. 

  68. 		}
    69. 

  69. 	}
    70. 

  70. 

  71. 	if err := spec.AddressRanges.Validate(); err != nil {
    72. 

  72. 		return err
    73. 

  73. 	}
    74. 

  74. 

  75. 	return nil
    76. 

  76. }
    77. 

  77. 

  78. func ValidateNetworkSpecUpdate(clusterNamespace string, oldSpec, newSpec NetworkSpec) error {
    79. 

  79. 	// Allow an attempt to enable or disable host networking, but not other provider changes
    80. 

  80. 	oldProvider := oldSpec.Provider
    81. 

  81. 	newProvider := newSpec.Provider
    82. 

  82. 	if oldProvider != newProvider && oldProvider != "host" && newProvider != "host" {
    83. 

  83. 		return errors.Errorf("invalid update: network provider change from %q to %q is not allowed", oldProvider, newProvider)
    84. 

  84. 	}
    85. 

  85. 

  86. 	return ValidateNetworkSpec(clusterNamespace, newSpec)
    87. 

  87. }
    88. 

  88. 

  89. // NetworkHasSelection returns true if the given Ceph network has a selection.
    90. 

  90. func (n *NetworkSpec) NetworkHasSelection(network CephNetworkType) bool {
    91. 

  91. 	s, ok := n.Selectors[network]
    92. 

  92. 	if !ok || s == "" {
    93. 

  93. 		return false
    94. 

  94. 	}
    95. 

  95. 	return true
    96. 

  96. }
    97. 

  97. 

  98. // GetNetworkSelection gets the network selection for a given Ceph network, or nil if the network
    99. 

  99. // doesn't have a selection.
    100. 

  100. func (n *NetworkSpec) GetNetworkSelection(clusterNamespace string, network CephNetworkType) (*nadv1.NetworkSelectionElement, error) {
    101. 

  101. 	if !n.NetworkHasSelection(network) {
    102. 

  102. 		return nil, nil // no selection for network
    103. 

  103. 	}
    104. 

  104. 	s := n.Selectors[network]
    105. 

  105. 	// From documentation of the "k8s.v1.cni.cncf.io/network-status" annotation, valid JSON inputs
    106. 

  106. 	// must be in list form, surrounded with brackets. The NAD utility library will only parse
    107. 

  107. 	// list-format JSON input. However, old versions of Rook code allowed non-list JSON objects.
    108. 

  108. 	// In order to support legacy users, make an attempt to turn single-JSON-object inputs into
    109. 

  109. 	// len(1) lists so that they parse correctly by the util library. Do not advertise this
    110. 

  110. 	// "feature" in documentation since it is not technically the correct format.
    111. 

  111. 	if strings.HasPrefix(s, "{") && strings.HasSuffix(s, "}") {
    112. 

  112. 		s = "[" + s + "]"
    113. 

  113. 	}
    114. 

  114. 	selection, err := nadutils.ParseNetworkAnnotation(s, clusterNamespace)
    115. 

  115. 	if err != nil {
    116. 

  116. 		return nil, errors.Wrapf(err, "failed to parse %q network selector %q", network, s)
    117. 

  117. 	}
    118. 

  118. 	if len(selection) != 1 {
    119. 

  119. 		return nil, errors.Errorf("%q network selector %q has multiple (%d) selections, which is not supported", network, s, len(selection))
    120. 

  120. 	}
    121. 

  121. 	return selection[0], nil
    122. 

  122. }
    123. 

  123. 

  124. // NetworkSelectionsToAnnotationValue converts NetworkAttachmentDefinition network selection
    125. 

  125. // elements to an annotation value for the "k8s.v1.cni.cncf.io/networks" annotation key.
    126. 

  126. func NetworkSelectionsToAnnotationValue(selections ...*nadv1.NetworkSelectionElement) (string, error) {
    127. 

  127. 	reduced := []*nadv1.NetworkSelectionElement{}
    128. 

  128. 	for _, s := range selections {
    129. 

  129. 		if s != nil {
    130. 

  130. 			reduced = append(reduced, s)
    131. 

  131. 		}
    132. 

  132. 	}
    133. 

  133. 	if len(reduced) == 0 {
    134. 

  134. 		return "", nil
    135. 

  135. 	}
    136. 

  136. 	b, err := json.Marshal(reduced)
    137. 

  137. 	if err != nil {
    138. 

  138. 		return "", errors.Wrap(err, "failed to convert network selections to annotation value")
    139. 

  139. 	}
    140. 

  140. 	return string(b), nil
    141. 

  141. }
    142. 

  142. 

  143. func (n *AddressRangesSpec) IsEmpty() bool {
    144. 

  144. 	return n == nil || len(n.Public) == 0 && len(n.Cluster) == 0
    145. 

  145. }
    146. 

  146. 

  147. func (n *AddressRangesSpec) Validate() error {
    148. 

  148. 	if n.IsEmpty() {
    149. 

  149. 		return nil
    150. 

  150. 	}
    151. 

  151. 

  152. 	allRanges := append(n.Public, n.Cluster...)
    153. 

  153. 	invalid := []string{}
    154. 

  154. 	for _, cidr := range allRanges {
    155. 

  155. 		_, _, err := net.ParseCIDR(string(cidr))
    156. 

  156. 		if err != nil {
    157. 

  157. 			// returned err is "invalid CIDR: <addr>" & not more useful than invalid list below
    158. 

  158. 			invalid = append(invalid, string(cidr))
    159. 

  159. 		}
    160. 

  160. 	}
    161. 

  161. 	if len(invalid) == 0 {
    162. 

  162. 		return nil
    163. 

  163. 	}
    164. 

  164. 

  165. 	return fmt.Errorf("%d network ranges are invalid: %v", len(invalid), invalid)
    166. 

  166. }
    167. 

  167. 

  168. // String turns a CIDR list into a comma-delimited string of CIDRs
    169. 

  169. func (l *CIDRList) String() string {
    170. 

  170. 	sl := []string{}
    171. 

  171. 	for _, c := range *l {
    172. 

  172. 		sl = append(sl, string(c))
    173. 

  173. 	}
    174. 

  174. 	return strings.Join(sl, ", ")
    175. 

  175. }
    176.