/
add-on-csrs.go
98 lines (85 loc) · 2.98 KB
/
add-on-csrs.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
package eksconfig
import (
"errors"
"fmt"
"time"
)
// AddOnCSRs defines parameters for EKS cluster
// add-on "CertificateSigningRequest".
type AddOnCSRs struct {
// Enable is 'true' to create this add-on.
Enable bool `json:"enable"`
// Created is true when the resource has been created.
// Used for delete operations.
Created bool `json:"created" read-only:"true"`
// CreateTook is the duration that took to create the resource.
CreateTook time.Duration `json:"create-took,omitempty" read-only:"true"`
// CreateTookString is the duration that took to create the resource.
CreateTookString string `json:"create-took-string,omitempty" read-only:"true"`
// DeleteTook is the duration that took to create the resource.
DeleteTook time.Duration `json:"delete-took,omitempty" read-only:"true"`
// DeleteTookString is the duration that took to create the resource.
DeleteTookString string `json:"delete-took-string,omitempty" read-only:"true"`
// Namespace is the namespace to create objects in.
Namespace string `json:"namespace"`
// InitialRequestConditionType is the initial CSR condition type
// to simulate CSR condition.
//
// Valid values are:
// "k8s.io/api/certificates/v1beta1.CertificateApproved" == "Approved"
// "k8s.io/api/certificates/v1beta1.CertificateDenied" == "Denied"
// "Random"
// "Pending"
// ""
//
InitialRequestConditionType string `json:"initial-request-condition-type"`
// Objects is the number of "CertificateSigningRequest" objects to create.
Objects int `json:"objects"`
// CreatedNames is the list of created "CertificateSigningRequest" object names.
CreatedNames []string `json:"created-names" read-only:"true"`
// FailThreshold is the number of write failures to allow.
FailThreshold int `json:"fail-threshold"`
}
// EnvironmentVariablePrefixAddOnCSRs is the environment variable prefix used for "eksconfig".
const EnvironmentVariablePrefixAddOnCSRs = AWS_K8S_TESTER_EKS_PREFIX + "ADD_ON_CSRS_"
// IsEnabledAddOnCSRs returns true if "AddOnCSRs" is enabled.
// Otherwise, nil the field for "omitempty".
func (cfg *Config) IsEnabledAddOnCSRs() bool {
if cfg.AddOnCSRs == nil {
return false
}
if cfg.AddOnCSRs.Enable {
return true
}
cfg.AddOnCSRs = nil
return false
}
func getDefaultAddOnCSRs() *AddOnCSRs {
return &AddOnCSRs{
Enable: false,
InitialRequestConditionType: "",
Objects: 10,
// writes total 5 MB data to etcd
// Objects: 1000,
}
}
func (cfg *Config) validateAddOnCSRs() error {
if !cfg.IsEnabledAddOnCSRs() {
return nil
}
if !cfg.IsEnabledAddOnNodeGroups() && !cfg.IsEnabledAddOnManagedNodeGroups() {
return errors.New("AddOnCSRs.Enable true but no node group is enabled")
}
if cfg.AddOnCSRs.Namespace == "" {
cfg.AddOnCSRs.Namespace = cfg.Name + "-csrs"
}
switch cfg.AddOnCSRs.InitialRequestConditionType {
case "Approved":
case "Denied":
case "Pending", "":
case "Random":
default:
return fmt.Errorf("unknown AddOnCSRs.InitialRequestConditionType %q", cfg.AddOnCSRs.InitialRequestConditionType)
}
return nil
}