k3s/cluster/gce/debian/helper.sh

#!/bin/bash

# Copyright 2015 The Kubernetes Authors All rights reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

# A library of helper functions and constant for debian os distro

# $1: if 'true', we're building a master yaml, else a node
function build-kube-env {
  local master=$1
  local file=$2

  rm -f ${file}
  cat >$file <<EOF
ENV_TIMESTAMP: $(yaml-quote $(date -u +%Y-%m-%dT%T%z))
INSTANCE_PREFIX: $(yaml-quote ${INSTANCE_PREFIX})
NODE_INSTANCE_PREFIX: $(yaml-quote ${NODE_INSTANCE_PREFIX})
CLUSTER_IP_RANGE: $(yaml-quote ${CLUSTER_IP_RANGE:-10.244.0.0/16})
SERVER_BINARY_TAR_URL: $(yaml-quote ${SERVER_BINARY_TAR_URL})
SALT_TAR_URL: $(yaml-quote ${SALT_TAR_URL})
SERVICE_CLUSTER_IP_RANGE: $(yaml-quote ${SERVICE_CLUSTER_IP_RANGE})
ALLOCATE_NODE_CIDRS: $(yaml-quote ${ALLOCATE_NODE_CIDRS:-false})
ENABLE_CLUSTER_MONITORING: $(yaml-quote ${ENABLE_CLUSTER_MONITORING:-none})
ENABLE_NODE_MONITORING: $(yaml-quote ${ENABLE_NODE_MONITORING:-false})
ENABLE_CLUSTER_LOGGING: $(yaml-quote ${ENABLE_CLUSTER_LOGGING:-false})
ENABLE_NODE_LOGGING: $(yaml-quote ${ENABLE_NODE_LOGGING:-false})
LOGGING_DESTINATION: $(yaml-quote ${LOGGING_DESTINATION:-})
ELASTICSEARCH_LOGGING_REPLICAS: $(yaml-quote ${ELASTICSEARCH_LOGGING_REPLICAS:-})
ENABLE_CLUSTER_DNS: $(yaml-quote ${ENABLE_CLUSTER_DNS:-false})
DNS_REPLICAS: $(yaml-quote ${DNS_REPLICAS:-})
DNS_SERVER_IP: $(yaml-quote ${DNS_SERVER_IP:-})
DNS_DOMAIN: $(yaml-quote ${DNS_DOMAIN:-})
KUBELET_TOKEN: $(yaml-quote ${KUBELET_TOKEN:-})
KUBE_PROXY_TOKEN: $(yaml-quote ${KUBE_PROXY_TOKEN:-})
ADMISSION_CONTROL: $(yaml-quote ${ADMISSION_CONTROL:-})
MASTER_IP_RANGE: $(yaml-quote ${MASTER_IP_RANGE})
CA_CERT: $(yaml-quote ${CA_CERT_BASE64:-})
EOF

  if [[ "${master}" == "true" ]]; then
    # Master-only env vars.
    cat >>$file <<EOF
KUBERNETES_MASTER: "true"
KUBE_USER: $(yaml-quote ${KUBE_USER})
KUBE_PASSWORD: $(yaml-quote ${KUBE_PASSWORD})
KUBE_BEARER_TOKEN: $(yaml-quote ${KUBE_BEARER_TOKEN})
MASTER_CERT: $(yaml-quote ${MASTER_CERT_BASE64:-})
MASTER_KEY: $(yaml-quote ${MASTER_KEY_BASE64:-})
KUBECFG_CERT: $(yaml-quote ${KUBECFG_CERT_BASE64:-})
KUBECFG_KEY: $(yaml-quote ${KUBECFG_KEY_BASE64:-})
EOF
  else
    # Node-only env vars.
    cat >>$file <<EOF
KUBERNETES_MASTER: "false"
KUBERNETES_MASTER_NAME: $(yaml-quote ${MASTER_NAME})
ZONE: $(yaml-quote ${ZONE})
EXTRA_DOCKER_OPTS: $(yaml-quote ${EXTRA_DOCKER_OPTS})
ENABLE_DOCKER_REGISTRY_CACHE: $(yaml-quote ${ENABLE_DOCKER_REGISTRY_CACHE:-false})
KUBELET_CERT: $(yaml-quote ${KUBELET_CERT_BASE64:-})
KUBELET_KEY: $(yaml-quote ${KUBELET_KEY_BASE64:-})
EOF
  fi
}

# create-master-instance creates the master instance. If called with
# an argument, the argument is used as the name to a reserved IP
# address for the master. (In the case of upgrade/repair, we re-use
# the same IP.)
#
# It requires a whole slew of assumed variables, partially due to to
# the call to write-master-env. Listing them would be rather
# futile. Instead, we list the required calls to ensure any additional
# variables are set:
#   ensure-temp-dir
#   detect-project
#   get-bearer-token
#
function create-master-instance {
  local address_opt=""
  [[ -n ${1:-} ]] && address_opt="--address ${1}"

  write-master-env
  gcloud compute instances create "${MASTER_NAME}" \
    ${address_opt} \
    --project "${PROJECT}" \
    --zone "${ZONE}" \
    --machine-type "${MASTER_SIZE}" \
    --image-project="${MASTER_IMAGE_PROJECT}" \
    --image "${MASTER_IMAGE}" \
    --tags "${MASTER_TAG}" \
    --network "${NETWORK}" \
    --scopes "storage-ro,compute-rw" \
    --can-ip-forward \
    --metadata-from-file \
      "startup-script=${KUBE_ROOT}/cluster/gce/configure-vm.sh,kube-env=${KUBE_TEMP}/master-kube-env.yaml" \
    --disk "name=${MASTER_NAME}-pd,device-name=master-pd,mode=rw,boot=no,auto-delete=no"
}

# TODO(mbforbes): Make $1 required.
# TODO(mbforbes): Document required vars (for this and call chain).
# $1 version
function create-node-instance-template {
  local suffix=""
  if [[ -n ${1:-} ]]; then
    suffix="-${1}"
  fi
  create-node-template "${NODE_INSTANCE_PREFIX}-template${suffix}" "${scope_flags[*]}" \
    "startup-script=${KUBE_ROOT}/cluster/gce/configure-vm.sh" \
    "kube-env=${KUBE_TEMP}/node-kube-env.yaml"
}
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`#!/bin/bash`

Make copyright ownership statement generic Instead of saying "Google Inc." (which is not always correct) say "The Kubernetes Authors", which is generic. 2015-05-01 16:19:44 +00:00			`# Copyright 2015 The Kubernetes Authors All rights reserved.`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`

			`# A library of helper functions and constant for debian os distro`

			`# $1: if 'true', we're building a master yaml, else a node`
			`function build-kube-env {`
			`local master=$1`
			`local file=$2`

			`rm -f ${file}`
			`cat >$file <<EOF`
			`ENV_TIMESTAMP: $(yaml-quote $(date -u +%Y-%m-%dT%T%z))`
			`INSTANCE_PREFIX: $(yaml-quote ${INSTANCE_PREFIX})`
			`NODE_INSTANCE_PREFIX: $(yaml-quote ${NODE_INSTANCE_PREFIX})`
Remove restriction that cluster-cidr be a class-b 2015-05-06 21:48:45 +00:00			`CLUSTER_IP_RANGE: $(yaml-quote ${CLUSTER_IP_RANGE:-10.244.0.0/16})`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`SERVER_BINARY_TAR_URL: $(yaml-quote ${SERVER_BINARY_TAR_URL})`
			`SALT_TAR_URL: $(yaml-quote ${SALT_TAR_URL})`
Rename PORTAL_NET all over 2015-05-24 05:17:55 +00:00			`SERVICE_CLUSTER_IP_RANGE: $(yaml-quote ${SERVICE_CLUSTER_IP_RANGE})`
Added flag to set cluster class B network address for pods, add flag to disable allocation CIDRs for Pods. Fixed synchornization bug in NodeController registerNodes(). 2015-04-28 15:02:45 +00:00			`ALLOCATE_NODE_CIDRS: $(yaml-quote ${ALLOCATE_NODE_CIDRS:-false})`
Enable Google Cloud Monitoring and Google Cloud Logging instead of Influxdb for Google Compute Engine deployments. 2015-05-04 23:49:28 +00:00			`ENABLE_CLUSTER_MONITORING: $(yaml-quote ${ENABLE_CLUSTER_MONITORING:-none})`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`ENABLE_NODE_MONITORING: $(yaml-quote ${ENABLE_NODE_MONITORING:-false})`
			`ENABLE_CLUSTER_LOGGING: $(yaml-quote ${ENABLE_CLUSTER_LOGGING:-false})`
			`ENABLE_NODE_LOGGING: $(yaml-quote ${ENABLE_NODE_LOGGING:-false})`
			`LOGGING_DESTINATION: $(yaml-quote ${LOGGING_DESTINATION:-})`
			`ELASTICSEARCH_LOGGING_REPLICAS: $(yaml-quote ${ELASTICSEARCH_LOGGING_REPLICAS:-})`
			`ENABLE_CLUSTER_DNS: $(yaml-quote ${ENABLE_CLUSTER_DNS:-false})`
			`DNS_REPLICAS: $(yaml-quote ${DNS_REPLICAS:-})`
			`DNS_SERVER_IP: $(yaml-quote ${DNS_SERVER_IP:-})`
			`DNS_DOMAIN: $(yaml-quote ${DNS_DOMAIN:-})`
			`KUBELET_TOKEN: $(yaml-quote ${KUBELET_TOKEN:-})`
			`KUBE_PROXY_TOKEN: $(yaml-quote ${KUBE_PROXY_TOKEN:-})`
			`ADMISSION_CONTROL: $(yaml-quote ${ADMISSION_CONTROL:-})`
			`MASTER_IP_RANGE: $(yaml-quote ${MASTER_IP_RANGE})`
Don't assume that CA_CERT_BASE64 will be set. 2015-06-01 18:35:26 +00:00			`CA_CERT: $(yaml-quote ${CA_CERT_BASE64:-})`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`EOF`

Refactor GCE kube-env for both OSes. 2015-05-08 22:47:49 +00:00			`if [[ "${master}" == "true" ]]; then`
			`# Master-only env vars.`
			`cat >>$file <<EOF`
Add an explicit KUBERNETES_MASTER variable to the kube-env. 2015-05-27 21:47:12 +00:00			`KUBERNETES_MASTER: "true"`
Refactor GCE kube-env for both OSes. 2015-05-08 22:47:49 +00:00			`KUBE_USER: $(yaml-quote ${KUBE_USER})`
			`KUBE_PASSWORD: $(yaml-quote ${KUBE_PASSWORD})`
			`KUBE_BEARER_TOKEN: $(yaml-quote ${KUBE_BEARER_TOKEN})`
Static cert distribution for GCE. To make cert validation work, no longer use the fqdn for the master name on the node VMs. 2015-05-11 18:43:44 +00:00			`MASTER_CERT: $(yaml-quote ${MASTER_CERT_BASE64:-})`
			`MASTER_KEY: $(yaml-quote ${MASTER_KEY_BASE64:-})`
			`KUBECFG_CERT: $(yaml-quote ${KUBECFG_CERT_BASE64:-})`
			`KUBECFG_KEY: $(yaml-quote ${KUBECFG_KEY_BASE64:-})`
Refactor GCE kube-env for both OSes. 2015-05-08 22:47:49 +00:00			`EOF`
			`else`
			`# Node-only env vars.`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`cat >>$file <<EOF`
Add an explicit KUBERNETES_MASTER variable to the kube-env. 2015-05-27 21:47:12 +00:00			`KUBERNETES_MASTER: "false"`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`KUBERNETES_MASTER_NAME: $(yaml-quote ${MASTER_NAME})`
			`ZONE: $(yaml-quote ${ZONE})`
			`EXTRA_DOCKER_OPTS: $(yaml-quote ${EXTRA_DOCKER_OPTS})`
			`ENABLE_DOCKER_REGISTRY_CACHE: $(yaml-quote ${ENABLE_DOCKER_REGISTRY_CACHE:-false})`
Static cert distribution for GCE. To make cert validation work, no longer use the fqdn for the master name on the node VMs. 2015-05-11 18:43:44 +00:00			`KUBELET_CERT: $(yaml-quote ${KUBELET_CERT_BASE64:-})`
			`KUBELET_KEY: $(yaml-quote ${KUBELET_KEY_BASE64:-})`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`EOF`
			`fi`
			`}`

			`# create-master-instance creates the master instance. If called with`
			`# an argument, the argument is used as the name to a reserved IP`
			`# address for the master. (In the case of upgrade/repair, we re-use`
			`# the same IP.)`
			`#`
			`# It requires a whole slew of assumed variables, partially due to to`
			`# the call to write-master-env. Listing them would be rather`
			`# futile. Instead, we list the required calls to ensure any additional`
			`# variables are set:`
			`# ensure-temp-dir`
			`# detect-project`
			`# get-bearer-token`
			`#`
			`function create-master-instance {`
			`local address_opt=""`
			`[[ -n ${1:-} ]] && address_opt="--address ${1}"`

			`write-master-env`
			`gcloud compute instances create "${MASTER_NAME}" \`
			`${address_opt} \`
			`--project "${PROJECT}" \`
			`--zone "${ZONE}" \`
			`--machine-type "${MASTER_SIZE}" \`
			`--image-project="${MASTER_IMAGE_PROJECT}" \`
			`--image "${MASTER_IMAGE}" \`
			`--tags "${MASTER_TAG}" \`
			`--network "${NETWORK}" \`
Pass arg lists to gcloud as comma-separated single arg This should get rid of the scary warning messages on GCE up. Fixes #8117 2015-05-23 04:07:09 +00:00			`--scopes "storage-ro,compute-rw" \`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`--can-ip-forward \`
			`--metadata-from-file \`
Pass arg lists to gcloud as comma-separated single arg This should get rid of the scary warning messages on GCE up. Fixes #8117 2015-05-23 04:07:09 +00:00			`"startup-script=${KUBE_ROOT}/cluster/gce/configure-vm.sh,kube-env=${KUBE_TEMP}/master-kube-env.yaml" \`
			`--disk "name=${MASTER_NAME}-pd,device-name=master-pd,mode=rw,boot=no,auto-delete=no"`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`}`

Rolling node upgrade 2015-05-08 00:41:22 +00:00			`# TODO(mbforbes): Make $1 required.`
			`# TODO(mbforbes): Document required vars (for this and call chain).`
			`# $1 version`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`function create-node-instance-template {`
Rolling node upgrade 2015-05-08 00:41:22 +00:00			`local suffix=""`
			`if [[ -n ${1:-} ]]; then`
			`suffix="-${1}"`
			`fi`
			`create-node-template "${NODE_INSTANCE_PREFIX}-template${suffix}" "${scope_flags[*]}" \`
Factory out debian e.g. ContainerVM image specific support to its own helper utility library. 2015-04-28 08:22:25 +00:00			`"startup-script=${KUBE_ROOT}/cluster/gce/configure-vm.sh" \`
			`"kube-env=${KUBE_TEMP}/node-kube-env.yaml"`
			`}`