Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

crd: Add categories for cilium CRDs. #17162

Merged
merged 2 commits into from
Oct 18, 2021
Merged

crd: Add categories for cilium CRDs. #17162

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
4615574
crd: Add categories for cilium CRDs.
sayboras Aug 14, 2021
0e3fd11
build(crds): Add check for CRDs
sayboras Aug 29, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
3 changes: 2 additions & 1 deletion Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -298,7 +298,8 @@ CRD_OPTIONS ?= "crd:crdVersions=v1"
manifests: ## Generate K8s manifests e.g. CRD, RBAC etc.
$(eval TMPDIR := $(shell mktemp -d))
cd "./vendor/sigs.k8s.io/controller-tools/cmd/controller-gen" && \
go run ./... $(CRD_OPTIONS) paths="$(PWD)/pkg/k8s/apis/cilium.io/v2;$(PWD)/pkg/k8s/apis/cilium.io/v2alpha1" output:crd:artifacts:config="$(TMPDIR)";
$(QUIET)$(GO) run ./... $(CRD_OPTIONS) paths="$(PWD)/pkg/k8s/apis/cilium.io/v2;$(PWD)/pkg/k8s/apis/cilium.io/v2alpha1" output:crd:artifacts:config="$(TMPDIR)";
$(QUIET)$(GO) run ./tools/crdcheck "$(TMPDIR)"
mv ${TMPDIR}/cilium.io_ciliumnetworkpolicies.yaml ./pkg/k8s/apis/cilium.io/client/crds/v2/ciliumnetworkpolicies.yaml
mv ${TMPDIR}/cilium.io_ciliumclusterwidenetworkpolicies.yaml ./pkg/k8s/apis/cilium.io/client/crds/v2/ciliumclusterwidenetworkpolicies.yaml
mv ${TMPDIR}/cilium.io_ciliumendpoints.yaml ./pkg/k8s/apis/cilium.io/client/crds/v2/ciliumendpoints.yaml
Expand Down
3 changes: 3 additions & 0 deletions pkg/k8s/apis/cilium.io/client/crds/v2/ciliumclusterwidenetworkpolicies.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,9 @@ metadata:
spec:
group: cilium.io
names:
categories:
- cilium
- ciliumpolicy
kind: CiliumClusterwideNetworkPolicy
listKind: CiliumClusterwideNetworkPolicyList
plural: ciliumclusterwidenetworkpolicies
Expand Down
2 changes: 2 additions & 0 deletions pkg/k8s/apis/cilium.io/client/crds/v2/ciliumendpoints.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,8 @@ metadata:
spec:
group: cilium.io
names:
categories:
- cilium
kind: CiliumEndpoint
listKind: CiliumEndpointList
plural: ciliumendpoints
Expand Down
2 changes: 2 additions & 0 deletions pkg/k8s/apis/cilium.io/client/crds/v2/ciliumexternalworkloads.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,8 @@ metadata:
spec:
group: cilium.io
names:
categories:
- cilium
kind: CiliumExternalWorkload
listKind: CiliumExternalWorkloadList
plural: ciliumexternalworkloads
Expand Down
2 changes: 2 additions & 0 deletions pkg/k8s/apis/cilium.io/client/crds/v2/ciliumidentities.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,8 @@ metadata:
spec:
group: cilium.io
names:
categories:
- cilium
kind: CiliumIdentity
listKind: CiliumIdentityList
plural: ciliumidentities
Expand Down
3 changes: 3 additions & 0 deletions pkg/k8s/apis/cilium.io/client/crds/v2/ciliumlocalredirectpolicies.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,9 @@ metadata:
spec:
group: cilium.io
names:
categories:
- cilium
- ciliumpolicy
kind: CiliumLocalRedirectPolicy
listKind: CiliumLocalRedirectPolicyList
plural: ciliumlocalredirectpolicies
Expand Down
3 changes: 3 additions & 0 deletions pkg/k8s/apis/cilium.io/client/crds/v2/ciliumnetworkpolicies.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,9 @@ metadata:
spec:
group: cilium.io
names:
categories:
- cilium
- ciliumpolicy
kind: CiliumNetworkPolicy
listKind: CiliumNetworkPolicyList
plural: ciliumnetworkpolicies
Expand Down
2 changes: 2 additions & 0 deletions pkg/k8s/apis/cilium.io/client/crds/v2/ciliumnodes.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,8 @@ metadata:
spec:
group: cilium.io
names:
categories:
- cilium
kind: CiliumNode
listKind: CiliumNodeList
plural: ciliumnodes
Expand Down
3 changes: 3 additions & 0 deletions pkg/k8s/apis/cilium.io/client/crds/v2alpha1/ciliumegressnatpolicies.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,9 @@ metadata:
spec:
group: cilium.io
names:
categories:
- cilium
- ciliumpolicy
kind: CiliumEgressNATPolicy
listKind: CiliumEgressNATPolicyList
plural: ciliumegressnatpolicies
Expand Down
2 changes: 1 addition & 1 deletion pkg/k8s/apis/cilium.io/v2/ccnp_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ import (
// +genclient:nonNamespaced
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +deepequal-gen:private-method=true
// +kubebuilder:resource:singular="ciliumclusterwidenetworkpolicy",path="ciliumclusterwidenetworkpolicies",scope="Cluster",shortName={ccnp}
// +kubebuilder:resource:categories={cilium,ciliumpolicy},singular="ciliumclusterwidenetworkpolicy",path="ciliumclusterwidenetworkpolicies",scope="Cluster",shortName={ccnp}
// +kubebuilder:subresource:status
// +kubebuilder:storageversion

Expand Down
2 changes: 1 addition & 1 deletion pkg/k8s/apis/cilium.io/v2/cew_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ import (
// +genclient
// +genclient:nonNamespaced
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +kubebuilder:resource:singular="ciliumexternalworkload",path="ciliumexternalworkloads",scope="Cluster",shortName={cew}
// +kubebuilder:resource:categories={cilium},singular="ciliumexternalworkload",path="ciliumexternalworkloads",scope="Cluster",shortName={cew}
// +kubebuilder:printcolumn:JSONPath=".status.id",name="Cilium ID",type=integer
// +kubebuilder:printcolumn:JSONPath=".status.ip",name="IP",type=string
// +kubebuilder:subresource:status
Expand Down
2 changes: 1 addition & 1 deletion pkg/k8s/apis/cilium.io/v2/clrp_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@ import (

// +genclient
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +kubebuilder:resource:singular="ciliumlocalredirectpolicy",path="ciliumlocalredirectpolicies",scope="Namespaced",shortName={clrp}
// +kubebuilder:resource:categories={cilium,ciliumpolicy},singular="ciliumlocalredirectpolicy",path="ciliumlocalredirectpolicies",scope="Namespaced",shortName={clrp}
// +kubebuilder:printcolumn:JSONPath=".metadata.creationTimestamp",name="Age",type=date

// CiliumLocalRedirectPolicy is a Kubernetes Custom Resource that contains a
Expand Down
2 changes: 1 addition & 1 deletion pkg/k8s/apis/cilium.io/v2/cnp_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ import (
// +genclient
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +deepequal-gen:private-method=true
// +kubebuilder:resource:singular="ciliumnetworkpolicy",path="ciliumnetworkpolicies",scope="Namespaced",shortName={cnp,ciliumnp}
// +kubebuilder:resource:categories={cilium,ciliumpolicy},singular="ciliumnetworkpolicy",path="ciliumnetworkpolicies",scope="Namespaced",shortName={cnp,ciliumnp}
// +kubebuilder:printcolumn:JSONPath=".metadata.creationTimestamp",name="Age",type=date
// +kubebuilder:subresource:status
// +kubebuilder:storageversion
Expand Down
6 changes: 3 additions & 3 deletions pkg/k8s/apis/cilium.io/v2/types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ import (
// +genclient
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +k8s:openapi-gen=false
// +kubebuilder:resource:singular="ciliumendpoint",path="ciliumendpoints",scope="Namespaced",shortName={cep,ciliumep}
// +kubebuilder:resource:categories={cilium},singular="ciliumendpoint",path="ciliumendpoints",scope="Namespaced",shortName={cep,ciliumep}
// +kubebuilder:printcolumn:JSONPath=".status.id",description="Cilium endpoint id",name="Endpoint ID",type=integer
// +kubebuilder:printcolumn:JSONPath=".status.identity.id",description="Cilium identity id",name="Identity ID",type=integer
// +kubebuilder:printcolumn:JSONPath=".status.policy.ingress.enforcing",description="Ingress enforcement in the endpoint",name="Ingress Enforcement",type=boolean
Expand Down Expand Up @@ -206,7 +206,7 @@ type EndpointIdentity struct {
// +genclient
// +genclient:nonNamespaced
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +kubebuilder:resource:singular="ciliumidentity",path="ciliumidentities",scope="Cluster",shortName={ciliumid}
// +kubebuilder:resource:categories={cilium},singular="ciliumidentity",path="ciliumidentities",scope="Cluster",shortName={ciliumid}
// +kubebuilder:printcolumn:JSONPath=".metadata.labels.io\\.kubernetes\\.pod\\.namespace",description="The namespace of the entity",name="Namespace",type=string
// +kubebuilder:printcolumn:JSONPath=".metadata.creationTimestamp",description="The age of the identity",name="Age",type=date
// +kubebuilder:subresource:status
Expand Down Expand Up @@ -304,7 +304,7 @@ type CiliumEndpointList struct {
// +genclient
// +genclient:nonNamespaced
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +kubebuilder:resource:singular="ciliumnode",path="ciliumnodes",scope="Cluster",shortName={cn,ciliumn}
// +kubebuilder:resource:categories={cilium},singular="ciliumnode",path="ciliumnodes",scope="Cluster",shortName={cn,ciliumn}
// +kubebuilder:storageversion
// +kubebuilder:subresource:status

Expand Down
5 changes: 3 additions & 2 deletions pkg/k8s/apis/cilium.io/v2alpha1/types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,14 +4,15 @@
package v2alpha1

import (
slimv1 "github.com/cilium/cilium/pkg/k8s/slim/k8s/apis/meta/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"

slimv1 "github.com/cilium/cilium/pkg/k8s/slim/k8s/apis/meta/v1"
)

// +genclient
// +genclient:nonNamespaced
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +kubebuilder:resource:singular="ciliumegressnatpolicy",path="ciliumegressnatpolicies",scope="Cluster"
// +kubebuilder:resource:categories={cilium,ciliumpolicy},singular="ciliumegressnatpolicy",path="ciliumegressnatpolicies",scope="Cluster"
// +kubebuilder:printcolumn:JSONPath=".metadata.creationTimestamp",description="The age of the identity",name="Age",type=date
// +kubebuilder:storageversion

Expand Down
82 changes: 82 additions & 0 deletions tools/crdcheck/main.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,82 @@
// SPDX-License-Identifier: Apache-2.0
// Copyright 2020-2021 Authors of Cilium

package main

import (
"fmt"
"io/ioutil"
"log"
"os"
"path/filepath"

crdv1 "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1"
"k8s.io/client-go/kubernetes/scheme"
)

const mandatoryCategory = "cilium"

type checkCRDFunc func(*crdv1.CustomResourceDefinition) error

var allChecks = []checkCRDFunc{
checkForCategory,
}

func main() {
if len(os.Args) != 2 {
log.Fatal(fmt.Sprintf("usage: %s <path>", os.Args[0]))
}

_ = crdv1.AddToScheme(scheme.Scheme)

if err := filepath.Walk(os.Args[1], func(path string, info os.FileInfo, _ error) error {
if info.IsDir() {
return nil
}

if ext := filepath.Ext(path); ext != ".yaml" && ext != ".yml" {
return nil
}

fileContent, err := ioutil.ReadFile(path)
if err != nil {
return err
}

obj, _, err := scheme.Codecs.UniversalDeserializer().Decode(fileContent, nil, nil)
if err != nil {
return err
}

crd, ok := obj.(*crdv1.CustomResourceDefinition)
if !ok {
return nil
}

for _, f := range allChecks {
if err = f(crd); err != nil {
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

currently, we have only one check, so i didn't use multi error here. Let's see how it's going.

return err
}
}
return nil
}); err != nil {
log.Fatal(err)
}
}

func checkForCategory(crd *crdv1.CustomResourceDefinition) error {
if len(crd.Spec.Names.Categories) == 0 || !sliceContains(crd.Spec.Names.Categories, mandatoryCategory) {
return fmt.Errorf("category %s missing for %s", mandatoryCategory, crd.GetName())
}

return nil
}

func sliceContains(slice []string, item string) bool {
for _, a := range slice {
if a == item {
return true
}
}
return false
}