mirror of https://github.com/k3s-io/k3s
90 lines
3.2 KiB
Go
90 lines
3.2 KiB
Go
/*
|
|
Copyright 2019 The Kubernetes Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package validation
|
|
|
|
import (
|
|
apivalidation "k8s.io/apimachinery/pkg/api/validation"
|
|
unversionedvalidation "k8s.io/apimachinery/pkg/apis/meta/v1/validation"
|
|
"k8s.io/apimachinery/pkg/util/validation/field"
|
|
"k8s.io/kubernetes/pkg/apis/core"
|
|
corevalidation "k8s.io/kubernetes/pkg/apis/core/validation"
|
|
"k8s.io/kubernetes/pkg/apis/node"
|
|
)
|
|
|
|
// ValidateRuntimeClass validates the RuntimeClass
|
|
func ValidateRuntimeClass(rc *node.RuntimeClass) field.ErrorList {
|
|
allErrs := apivalidation.ValidateObjectMeta(&rc.ObjectMeta, false, apivalidation.NameIsDNSSubdomain, field.NewPath("metadata"))
|
|
|
|
for _, msg := range apivalidation.NameIsDNSLabel(rc.Handler, false) {
|
|
allErrs = append(allErrs, field.Invalid(field.NewPath("handler"), rc.Handler, msg))
|
|
}
|
|
|
|
if rc.Overhead != nil {
|
|
allErrs = append(allErrs, validateOverhead(rc.Overhead, field.NewPath("overhead"))...)
|
|
}
|
|
if rc.Scheduling != nil {
|
|
allErrs = append(allErrs, validateScheduling(rc.Scheduling, field.NewPath("scheduling"))...)
|
|
}
|
|
|
|
return allErrs
|
|
}
|
|
|
|
// ValidateRuntimeClassUpdate validates an update to the object
|
|
func ValidateRuntimeClassUpdate(new, old *node.RuntimeClass) field.ErrorList {
|
|
allErrs := apivalidation.ValidateObjectMetaUpdate(&new.ObjectMeta, &old.ObjectMeta, field.NewPath("metadata"))
|
|
|
|
allErrs = append(allErrs, apivalidation.ValidateImmutableField(new.Handler, old.Handler, field.NewPath("handler"))...)
|
|
|
|
return allErrs
|
|
}
|
|
|
|
func validateOverhead(overhead *node.Overhead, fldPath *field.Path) field.ErrorList {
|
|
// reuse the ResourceRequirements validation logic
|
|
return corevalidation.ValidateResourceRequirements(&core.ResourceRequirements{Limits: overhead.PodFixed}, fldPath,
|
|
corevalidation.PodValidationOptions{})
|
|
}
|
|
|
|
func validateScheduling(s *node.Scheduling, fldPath *field.Path) field.ErrorList {
|
|
var allErrs field.ErrorList
|
|
if s.NodeSelector != nil {
|
|
allErrs = append(allErrs, unversionedvalidation.ValidateLabels(s.NodeSelector, fldPath.Child("nodeSelector"))...)
|
|
}
|
|
allErrs = append(allErrs, validateTolerations(s.Tolerations, fldPath.Child("tolerations"))...)
|
|
return allErrs
|
|
}
|
|
|
|
func validateTolerations(tolerations []core.Toleration, fldPath *field.Path) field.ErrorList {
|
|
allErrs := corevalidation.ValidateTolerations(tolerations, fldPath.Child("tolerations"))
|
|
// Ensure uniquenes of tolerations.
|
|
tolerationSet := map[core.Toleration]bool{}
|
|
for i, t := range tolerations {
|
|
// listKey includes the toleration fields identified as listKeys in the API.
|
|
listKey := core.Toleration{
|
|
Key: t.Key,
|
|
Operator: t.Operator,
|
|
Value: t.Value,
|
|
Effect: t.Effect,
|
|
}
|
|
if tolerationSet[listKey] {
|
|
allErrs = append(allErrs, field.Duplicate(fldPath.Index(i), t))
|
|
} else {
|
|
tolerationSet[listKey] = true
|
|
}
|
|
}
|
|
return allErrs
|
|
}
|