kubernetes/cmd/cloud-controller-manager/nodeipamcontroller.go

/*
Copyright 2018 The Kubernetes Authors.

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/

// This file holds the code related with the sample nodeipamcontroller
// which demonstrates how cloud providers add external controllers to cloud-controller-manager

package main

import (
	"context"
	"errors"
	"fmt"
	"net"
	"strings"

	cloudprovider "k8s.io/cloud-provider"
	"k8s.io/cloud-provider/app"
	cloudcontrollerconfig "k8s.io/cloud-provider/app/config"
	genericcontrollermanager "k8s.io/controller-manager/app"
	"k8s.io/controller-manager/controller"
	"k8s.io/klog/v2"
	nodeipamcontrolleroptions "k8s.io/kubernetes/cmd/kube-controller-manager/app/options"
	nodeipamcontroller "k8s.io/kubernetes/pkg/controller/nodeipam"
	nodeipamconfig "k8s.io/kubernetes/pkg/controller/nodeipam/config"
	"k8s.io/kubernetes/pkg/controller/nodeipam/ipam"
	netutils "k8s.io/utils/net"
)

const (
	// defaultNodeMaskCIDRIPv4 is default mask size for IPv4 node cidr
	defaultNodeMaskCIDRIPv4 = 24
	// defaultNodeMaskCIDRIPv6 is default mask size for IPv6 node cidr
	defaultNodeMaskCIDRIPv6 = 64
)

type nodeIPAMController struct {
	nodeIPAMControllerConfiguration nodeipamconfig.NodeIPAMControllerConfiguration
	nodeIPAMControllerOptions       nodeipamcontrolleroptions.NodeIPAMControllerOptions
}

func (nodeIpamController *nodeIPAMController) StartNodeIpamControllerWrapper(initContext app.ControllerInitContext, completedConfig *cloudcontrollerconfig.CompletedConfig, cloud cloudprovider.Interface) app.InitFunc {
	allErrors := nodeIpamController.nodeIPAMControllerOptions.Validate()
	if len(allErrors) > 0 {
		klog.Fatal("NodeIPAM controller values are not properly set.")
	}
	nodeIpamController.nodeIPAMControllerOptions.ApplyTo(&nodeIpamController.nodeIPAMControllerConfiguration)

	return func(ctx context.Context, controllerContext genericcontrollermanager.ControllerContext) (controller.Interface, bool, error) {
		return startNodeIpamController(initContext, completedConfig, nodeIpamController.nodeIPAMControllerConfiguration, controllerContext, cloud)
	}
}

func startNodeIpamController(initContext app.ControllerInitContext, ccmConfig *cloudcontrollerconfig.CompletedConfig, nodeIPAMConfig nodeipamconfig.NodeIPAMControllerConfiguration, ctx genericcontrollermanager.ControllerContext, cloud cloudprovider.Interface) (controller.Interface, bool, error) {
	var serviceCIDR *net.IPNet
	var secondaryServiceCIDR *net.IPNet

	// should we start nodeIPAM
	if !ccmConfig.ComponentConfig.KubeCloudShared.AllocateNodeCIDRs {
		return nil, false, nil
	}

	// failure: bad cidrs in config
	clusterCIDRs, dualStack, err := processCIDRs(ccmConfig.ComponentConfig.KubeCloudShared.ClusterCIDR)
	if err != nil {
		return nil, false, err
	}

	// failure: more than one cidr but they are not configured as dual stack
	if len(clusterCIDRs) > 1 && !dualStack {
		return nil, false, fmt.Errorf("len of ClusterCIDRs==%v and they are not configured as dual stack (at least one from each IPFamily", len(clusterCIDRs))
	}

	// failure: more than cidrs is not allowed even with dual stack
	if len(clusterCIDRs) > 2 {
		return nil, false, fmt.Errorf("len of clusters is:%v > more than max allowed of 2", len(clusterCIDRs))
	}

	// service cidr processing
	if len(strings.TrimSpace(nodeIPAMConfig.ServiceCIDR)) != 0 {
		_, serviceCIDR, err = netutils.ParseCIDRSloppy(nodeIPAMConfig.ServiceCIDR)
		if err != nil {
			klog.ErrorS(err, "Unsuccessful parsing of service CIDR", "CIDR", nodeIPAMConfig.ServiceCIDR)
		}
	}

	if len(strings.TrimSpace(nodeIPAMConfig.SecondaryServiceCIDR)) != 0 {
		_, secondaryServiceCIDR, err = netutils.ParseCIDRSloppy(nodeIPAMConfig.SecondaryServiceCIDR)
		if err != nil {
			klog.ErrorS(err, "Unsuccessful parsing of service CIDR", "CIDR", nodeIPAMConfig.SecondaryServiceCIDR)
		}
	}

	// the following checks are triggered if both serviceCIDR and secondaryServiceCIDR are provided
	if serviceCIDR != nil && secondaryServiceCIDR != nil {
		// should be dual stack (from different IPFamilies)
		dualstackServiceCIDR, err := netutils.IsDualStackCIDRs([]*net.IPNet{serviceCIDR, secondaryServiceCIDR})
		if err != nil {
			return nil, false, fmt.Errorf("failed to perform dualstack check on serviceCIDR and secondaryServiceCIDR error:%v", err)
		}
		if !dualstackServiceCIDR {
			return nil, false, fmt.Errorf("serviceCIDR and secondaryServiceCIDR are not dualstack (from different IPfamiles)")
		}
	}

	nodeCIDRMaskSizes, err := setNodeCIDRMaskSizes(nodeIPAMConfig, clusterCIDRs)
	if err != nil {
		return nil, false, err
	}

	nodeIpamController, err := nodeipamcontroller.NewNodeIpamController(
		ctx.InformerFactory.Core().V1().Nodes(),
		cloud,
		ctx.ClientBuilder.ClientOrDie(initContext.ClientName),
		clusterCIDRs,
		serviceCIDR,
		secondaryServiceCIDR,
		nodeCIDRMaskSizes,
		ipam.CIDRAllocatorType(ccmConfig.ComponentConfig.KubeCloudShared.CIDRAllocatorType),
	)
	if err != nil {
		return nil, true, err
	}
	go nodeIpamController.Run(ctx.Stop)
	return nil, true, nil
}

// processCIDRs is a helper function that works on a comma separated cidrs and returns
// a list of typed cidrs
// a flag if cidrs represents a dual stack
// error if failed to parse any of the cidrs
func processCIDRs(cidrsList string) ([]*net.IPNet, bool, error) {
	cidrsSplit := strings.Split(strings.TrimSpace(cidrsList), ",")

	cidrs, err := netutils.ParseCIDRs(cidrsSplit)
	if err != nil {
		return nil, false, err
	}

	// if cidrs has an error then the previous call will fail
	// safe to ignore error checking on next call
	dualstack, _ := netutils.IsDualStackCIDRs(cidrs)

	return cidrs, dualstack, nil
}

// setNodeCIDRMaskSizes returns the IPv4 and IPv6 node cidr mask sizes to the value provided
// for --node-cidr-mask-size-ipv4 and --node-cidr-mask-size-ipv6 respectively. If value not provided,
// then it will return default IPv4 and IPv6 cidr mask sizes.
func setNodeCIDRMaskSizes(cfg nodeipamconfig.NodeIPAMControllerConfiguration, clusterCIDRs []*net.IPNet) ([]int, error) {

	sortedSizes := func(maskSizeIPv4, maskSizeIPv6 int) []int {
		nodeMaskCIDRs := make([]int, len(clusterCIDRs))

		for idx, clusterCIDR := range clusterCIDRs {
			if netutils.IsIPv6CIDR(clusterCIDR) {
				nodeMaskCIDRs[idx] = maskSizeIPv6
			} else {
				nodeMaskCIDRs[idx] = maskSizeIPv4
			}
		}
		return nodeMaskCIDRs
	}

	// --node-cidr-mask-size flag is incompatible with dual stack clusters.
	ipv4Mask, ipv6Mask := defaultNodeMaskCIDRIPv4, defaultNodeMaskCIDRIPv6
	isDualstack := len(clusterCIDRs) > 1

	// case one: cluster is dualstack (i.e, more than one cidr)
	if isDualstack {
		// if --node-cidr-mask-size then fail, user must configure the correct dual-stack mask sizes (or use default)
		if cfg.NodeCIDRMaskSize != 0 {
			return nil, errors.New("usage of --node-cidr-mask-size is not allowed with dual-stack clusters")
		}

		if cfg.NodeCIDRMaskSizeIPv4 != 0 {
			ipv4Mask = int(cfg.NodeCIDRMaskSizeIPv4)
		}
		if cfg.NodeCIDRMaskSizeIPv6 != 0 {
			ipv6Mask = int(cfg.NodeCIDRMaskSizeIPv6)
		}
		return sortedSizes(ipv4Mask, ipv6Mask), nil
	}

	maskConfigured := cfg.NodeCIDRMaskSize != 0
	maskV4Configured := cfg.NodeCIDRMaskSizeIPv4 != 0
	maskV6Configured := cfg.NodeCIDRMaskSizeIPv6 != 0
	isSingleStackIPv6 := netutils.IsIPv6CIDR(clusterCIDRs[0])

	// original flag is set
	if maskConfigured {
		// original mask flag is still the main reference.
		if maskV4Configured || maskV6Configured {
			return nil, errors.New("usage of --node-cidr-mask-size-ipv4 and --node-cidr-mask-size-ipv6 is not allowed if --node-cidr-mask-size is set. For dual-stack clusters please unset it and use IPFamily specific flags")
		}

		mask := int(cfg.NodeCIDRMaskSize)
		return sortedSizes(mask, mask), nil
	}

	if maskV4Configured {
		if isSingleStackIPv6 {
			return nil, errors.New("usage of --node-cidr-mask-size-ipv4 is not allowed for a single-stack IPv6 cluster")
		}

		ipv4Mask = int(cfg.NodeCIDRMaskSizeIPv4)
	}

	// !maskV4Configured && !maskConfigured && maskV6Configured
	if maskV6Configured {
		if !isSingleStackIPv6 {
			return nil, errors.New("usage of --node-cidr-mask-size-ipv6 is not allowed for a single-stack IPv4 cluster")
		}

		ipv6Mask = int(cfg.NodeCIDRMaskSizeIPv6)
	}
	return sortedSizes(ipv4Mask, ipv6Mask), nil
}
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`/*`
			`Copyright 2018 The Kubernetes Authors.`

			`Licensed under the Apache License, Version 2.0 (the "License");`
			`you may not use this file except in compliance with the License.`
			`You may obtain a copy of the License at`

			`http://www.apache.org/licenses/LICENSE-2.0`

			`Unless required by applicable law or agreed to in writing, software`
			`distributed under the License is distributed on an "AS IS" BASIS,`
			`WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`See the License for the specific language governing permissions and`
			`limitations under the License.`
			`*/`

			`// This file holds the code related with the sample nodeipamcontroller`
			`// which demonstrates how cloud providers add external controllers to cloud-controller-manager`

			`package main`

			`import (`
Wire contexts to Core controllers 2021-04-22 14:27:59 -04:00			`"context"`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`"errors"`
			`"fmt"`
			`"net"`
			`"strings"`

			`cloudprovider "k8s.io/cloud-provider"`
Separate example func and add README.md 2021-01-25 15:52:02 -05:00			`"k8s.io/cloud-provider/app"`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`cloudcontrollerconfig "k8s.io/cloud-provider/app/config"`
			`genericcontrollermanager "k8s.io/controller-manager/app"`
use common controller interface in CCM. 2021-08-24 17:55:36 -04:00			`"k8s.io/controller-manager/controller"`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`"k8s.io/klog/v2"`
Address comments. 2021-03-01 19:14:24 -05:00			`nodeipamcontrolleroptions "k8s.io/kubernetes/cmd/kube-controller-manager/app/options"`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`nodeipamcontroller "k8s.io/kubernetes/pkg/controller/nodeipam"`
			`nodeipamconfig "k8s.io/kubernetes/pkg/controller/nodeipam/config"`
			`"k8s.io/kubernetes/pkg/controller/nodeipam/ipam"`
			`netutils "k8s.io/utils/net"`
			`)`

Adding sample files to demonstrate how cloud provider leverage CCM. 2020-11-09 14:58:09 -05:00			`const (`
			`// defaultNodeMaskCIDRIPv4 is default mask size for IPv4 node cidr`
			`defaultNodeMaskCIDRIPv4 = 24`
			`// defaultNodeMaskCIDRIPv6 is default mask size for IPv6 node cidr`
			`defaultNodeMaskCIDRIPv6 = 64`
			`)`

Address comments. 2021-03-01 19:14:24 -05:00			`type nodeIPAMController struct {`
			`nodeIPAMControllerConfiguration nodeipamconfig.NodeIPAMControllerConfiguration`
			`nodeIPAMControllerOptions nodeipamcontrolleroptions.NodeIPAMControllerOptions`
			`}`
Update NodeIPAM wrapper 2021-03-01 16:19:27 -05:00
Allow custom client names to be used for cloud controllers * This allows a controller to use cloud provider managed RBAC when --use-service-account-credentials is set. * Create ControllerInitFuncConstructor to pass to init funcs to avoid future function signature growth. * Add comments for context around legacy naming of node controllers. * Add example for setting client names from cloud controller manager. 2021-06-25 03:33:31 -04:00			`func (nodeIpamController nodeIPAMController) StartNodeIpamControllerWrapper(initContext app.ControllerInitContext, completedConfig cloudcontrollerconfig.CompletedConfig, cloud cloudprovider.Interface) app.InitFunc {`
fix error variable name 2021-07-29 08:10:06 -04:00			`allErrors := nodeIpamController.nodeIPAMControllerOptions.Validate()`
			`if len(allErrors) > 0 {`
Address review comments 2021-02-17 19:39:03 -05:00			`klog.Fatal("NodeIPAM controller values are not properly set.")`
Separate example func and add README.md 2021-01-25 15:52:02 -05:00			`}`
Address comments. 2021-03-01 19:14:24 -05:00			`nodeIpamController.nodeIPAMControllerOptions.ApplyTo(&nodeIpamController.nodeIPAMControllerConfiguration)`
Separate example func and add README.md 2021-01-25 15:52:02 -05:00
Wire contexts to Core controllers 2021-04-22 14:27:59 -04:00			`return func(ctx context.Context, controllerContext genericcontrollermanager.ControllerContext) (controller.Interface, bool, error) {`
			`return startNodeIpamController(initContext, completedConfig, nodeIpamController.nodeIPAMControllerConfiguration, controllerContext, cloud)`
Separate example func and add README.md 2021-01-25 15:52:02 -05:00			`}`
			`}`

use common controller interface in CCM. 2021-08-24 17:55:36 -04:00			`func startNodeIpamController(initContext app.ControllerInitContext, ccmConfig *cloudcontrollerconfig.CompletedConfig, nodeIPAMConfig nodeipamconfig.NodeIPAMControllerConfiguration, ctx genericcontrollermanager.ControllerContext, cloud cloudprovider.Interface) (controller.Interface, bool, error) {`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`var serviceCIDR *net.IPNet`
			`var secondaryServiceCIDR *net.IPNet`

			`// should we start nodeIPAM`
Optimize some irregular variable names Signed-off-by: changshuchao <chang.shuchao1@zte.com.cn> 2020-11-25 11:54:45 -05:00			`if !ccmConfig.ComponentConfig.KubeCloudShared.AllocateNodeCIDRs {`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`return nil, false, nil`
			`}`

			`// failure: bad cidrs in config`
Optimize some irregular variable names Signed-off-by: changshuchao <chang.shuchao1@zte.com.cn> 2020-11-25 11:54:45 -05:00			`clusterCIDRs, dualStack, err := processCIDRs(ccmConfig.ComponentConfig.KubeCloudShared.ClusterCIDR)`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`if err != nil {`
			`return nil, false, err`
			`}`

			`// failure: more than one cidr but they are not configured as dual stack`
			`if len(clusterCIDRs) > 1 && !dualStack {`
			`return nil, false, fmt.Errorf("len of ClusterCIDRs==%v and they are not configured as dual stack (at least one from each IPFamily", len(clusterCIDRs))`
			`}`

			`// failure: more than cidrs is not allowed even with dual stack`
			`if len(clusterCIDRs) > 2 {`
			`return nil, false, fmt.Errorf("len of clusters is:%v > more than max allowed of 2", len(clusterCIDRs))`
			`}`

			`// service cidr processing`
Optimize some irregular variable names Signed-off-by: changshuchao <chang.shuchao1@zte.com.cn> 2020-11-25 11:54:45 -05:00			`if len(strings.TrimSpace(nodeIPAMConfig.ServiceCIDR)) != 0 {`
run hack/update-netparse-cve.sh 2021-08-19 19:16:14 -04:00			`_, serviceCIDR, err = netutils.ParseCIDRSloppy(nodeIPAMConfig.ServiceCIDR)`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`if err != nil {`
Structured Logging migration: modify logs of controller-manager Signed-off-by: wangyx1992 <wang.yixiang@zte.com.cn> 2021-03-30 09:29:52 -04:00			`klog.ErrorS(err, "Unsuccessful parsing of service CIDR", "CIDR", nodeIPAMConfig.ServiceCIDR)`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`}`
			`}`

Optimize some irregular variable names Signed-off-by: changshuchao <chang.shuchao1@zte.com.cn> 2020-11-25 11:54:45 -05:00			`if len(strings.TrimSpace(nodeIPAMConfig.SecondaryServiceCIDR)) != 0 {`
run hack/update-netparse-cve.sh 2021-08-19 19:16:14 -04:00			`_, secondaryServiceCIDR, err = netutils.ParseCIDRSloppy(nodeIPAMConfig.SecondaryServiceCIDR)`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`if err != nil {`
Structured Logging migration: modify logs of controller-manager Signed-off-by: wangyx1992 <wang.yixiang@zte.com.cn> 2021-03-30 09:29:52 -04:00			`klog.ErrorS(err, "Unsuccessful parsing of service CIDR", "CIDR", nodeIPAMConfig.SecondaryServiceCIDR)`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`}`
			`}`

			`// the following checks are triggered if both serviceCIDR and secondaryServiceCIDR are provided`
			`if serviceCIDR != nil && secondaryServiceCIDR != nil {`
			`// should be dual stack (from different IPFamilies)`
			`dualstackServiceCIDR, err := netutils.IsDualStackCIDRs([]*net.IPNet{serviceCIDR, secondaryServiceCIDR})`
			`if err != nil {`
			`return nil, false, fmt.Errorf("failed to perform dualstack check on serviceCIDR and secondaryServiceCIDR error:%v", err)`
			`}`
			`if !dualstackServiceCIDR {`
			`return nil, false, fmt.Errorf("serviceCIDR and secondaryServiceCIDR are not dualstack (from different IPfamiles)")`
			`}`
			`}`

move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00			`nodeCIDRMaskSizes, err := setNodeCIDRMaskSizes(nodeIPAMConfig, clusterCIDRs)`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`if err != nil {`
			`return nil, false, err`
			`}`

			`nodeIpamController, err := nodeipamcontroller.NewNodeIpamController(`
			`ctx.InformerFactory.Core().V1().Nodes(),`
			`cloud,`
Allow custom client names to be used for cloud controllers * This allows a controller to use cloud provider managed RBAC when --use-service-account-credentials is set. * Create ControllerInitFuncConstructor to pass to init funcs to avoid future function signature growth. * Add comments for context around legacy naming of node controllers. * Add example for setting client names from cloud controller manager. 2021-06-25 03:33:31 -04:00			`ctx.ClientBuilder.ClientOrDie(initContext.ClientName),`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`clusterCIDRs,`
			`serviceCIDR,`
			`secondaryServiceCIDR,`
			`nodeCIDRMaskSizes,`
Optimize some irregular variable names Signed-off-by: changshuchao <chang.shuchao1@zte.com.cn> 2020-11-25 11:54:45 -05:00			`ipam.CIDRAllocatorType(ccmConfig.ComponentConfig.KubeCloudShared.CIDRAllocatorType),`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`)`
			`if err != nil {`
			`return nil, true, err`
			`}`
			`go nodeIpamController.Run(ctx.Stop)`
			`return nil, true, nil`
			`}`

			`// processCIDRs is a helper function that works on a comma separated cidrs and returns`
			`// a list of typed cidrs`
			`// a flag if cidrs represents a dual stack`
			`// error if failed to parse any of the cidrs`
			`func processCIDRs(cidrsList string) ([]*net.IPNet, bool, error) {`
			`cidrsSplit := strings.Split(strings.TrimSpace(cidrsList), ",")`

			`cidrs, err := netutils.ParseCIDRs(cidrsSplit)`
			`if err != nil {`
			`return nil, false, err`
			`}`

			`// if cidrs has an error then the previous call will fail`
			`// safe to ignore error checking on next call`
			`dualstack, _ := netutils.IsDualStackCIDRs(cidrs)`

			`return cidrs, dualstack, nil`
			`}`

move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00			`// setNodeCIDRMaskSizes returns the IPv4 and IPv6 node cidr mask sizes to the value provided`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`// for --node-cidr-mask-size-ipv4 and --node-cidr-mask-size-ipv6 respectively. If value not provided,`
			`// then it will return default IPv4 and IPv6 cidr mask sizes.`
move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00			`func setNodeCIDRMaskSizes(cfg nodeipamconfig.NodeIPAMControllerConfiguration, clusterCIDRs []*net.IPNet) ([]int, error) {`

			`sortedSizes := func(maskSizeIPv4, maskSizeIPv6 int) []int {`
			`nodeMaskCIDRs := make([]int, len(clusterCIDRs))`

			`for idx, clusterCIDR := range clusterCIDRs {`
			`if netutils.IsIPv6CIDR(clusterCIDR) {`
			`nodeMaskCIDRs[idx] = maskSizeIPv6`
			`} else {`
			`nodeMaskCIDRs[idx] = maskSizeIPv4`
			`}`
			`}`
			`return nodeMaskCIDRs`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`}`
move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00
			`// --node-cidr-mask-size flag is incompatible with dual stack clusters.`
			`ipv4Mask, ipv6Mask := defaultNodeMaskCIDRIPv4, defaultNodeMaskCIDRIPv6`
			`isDualstack := len(clusterCIDRs) > 1`

			`// case one: cluster is dualstack (i.e, more than one cidr)`
			`if isDualstack {`
			`// if --node-cidr-mask-size then fail, user must configure the correct dual-stack mask sizes (or use default)`
			`if cfg.NodeCIDRMaskSize != 0 {`
			`return nil, errors.New("usage of --node-cidr-mask-size is not allowed with dual-stack clusters")`
			`}`

			`if cfg.NodeCIDRMaskSizeIPv4 != 0 {`
			`ipv4Mask = int(cfg.NodeCIDRMaskSizeIPv4)`
			`}`
			`if cfg.NodeCIDRMaskSizeIPv6 != 0 {`
			`ipv6Mask = int(cfg.NodeCIDRMaskSizeIPv6)`
			`}`
			`return sortedSizes(ipv4Mask, ipv6Mask), nil`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`}`
move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00
			`maskConfigured := cfg.NodeCIDRMaskSize != 0`
			`maskV4Configured := cfg.NodeCIDRMaskSizeIPv4 != 0`
			`maskV6Configured := cfg.NodeCIDRMaskSizeIPv6 != 0`
			`isSingleStackIPv6 := netutils.IsIPv6CIDR(clusterCIDRs[0])`

			`// original flag is set`
			`if maskConfigured {`
			`// original mask flag is still the main reference.`
			`if maskV4Configured \|\| maskV6Configured {`
			`return nil, errors.New("usage of --node-cidr-mask-size-ipv4 and --node-cidr-mask-size-ipv6 is not allowed if --node-cidr-mask-size is set. For dual-stack clusters please unset it and use IPFamily specific flags")`
			`}`

			`mask := int(cfg.NodeCIDRMaskSize)`
			`return sortedSizes(mask, mask), nil`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`}`

move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00			`if maskV4Configured {`
			`if isSingleStackIPv6 {`
			`return nil, errors.New("usage of --node-cidr-mask-size-ipv4 is not allowed for a single-stack IPv6 cluster")`
			`}`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00
move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00			`ipv4Mask = int(cfg.NodeCIDRMaskSizeIPv4)`
			`}`

			`// !maskV4Configured && !maskConfigured && maskV6Configured`
			`if maskV6Configured {`
			`if !isSingleStackIPv6 {`
			`return nil, errors.New("usage of --node-cidr-mask-size-ipv6 is not allowed for a single-stack IPv4 cluster")`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`}`
move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00
			`ipv6Mask = int(cfg.NodeCIDRMaskSizeIPv6)`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`}`
move IPv6DualStack feature to stable. (#104691) * kube-proxy * endpoints controller * app: kube-controller-manager * app: cloud-controller-manager * kubelet * app: api-server * node utils + registry/strategy * api: validation (comment removal) * api:pod strategy (util pkg) * api: docs * core: integration testing * kubeadm: change feature gate to GA * service registry and rest stack * move feature to GA * generated 2021-09-24 19:30:22 -04:00			`return sortedSizes(ipv4Mask, ipv6Mask), nil`
Adding config extension to CCM. 2020-08-03 06:27:45 -04:00			`}`