Google Git
Sign in
apache / openwhisk / 481fc1864f1faba3d5a863e061e6be78b576e9ce / . / core / invoker / src / main / scala / org / apache / openwhisk / core / containerpool / kubernetes / WhiskPodBuilder.scala
blob: ca7627a1110ecd11b6a6099e3ef3bc9f6cd4c58c [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.openwhisk.core.containerpool.kubernetes
import java.io.ByteArrayInputStream
import java.nio.charset.StandardCharsets.UTF_8
import io.fabric8.kubernetes.api.builder.Predicate
import io.fabric8.kubernetes.api.model.{ContainerBuilder, EnvVarBuilder, Pod, PodBuilder, Quantity}
import io.fabric8.kubernetes.client.NamespacedKubernetesClient
import org.apache.openwhisk.common.{ConfigMapValue, TransactionId}
import org.apache.openwhisk.core.entity.ByteSize
import scala.collection.JavaConverters._
class WhiskPodBuilder(client: NamespacedKubernetesClient,
userPodNodeAffinity: KubernetesInvokerNodeAffinity,
podTemplate: Option[ConfigMapValue] = None) {
private val template = podTemplate.map(_.value.getBytes(UTF_8))
private val actionContainerName = "user-action"
private val actionContainerPredicate: Predicate[ContainerBuilder] = (cb) => cb.getName == actionContainerName
def affinityEnabled: Boolean = userPodNodeAffinity.enabled
def buildPodSpec(name: String,
image: String,
memory: ByteSize,
environment: Map[String, String],
labels: Map[String, String])(implicit transid: TransactionId): Pod = {
val envVars = environment.map {
case (key, value) => new EnvVarBuilder().withName(key).withValue(value).build()
}.toSeq
val baseBuilder = template match {
case Some(bytes) =>
new PodBuilder(loadPodSpec(bytes))
case None => new PodBuilder()
}
val pb1 = baseBuilder
.editOrNewMetadata()
.withName(name)
.addToLabels("name", name)
.addToLabels(labels.asJava)
.endMetadata()
val specBuilder = pb1.editOrNewSpec().withRestartPolicy("Always")
if (userPodNodeAffinity.enabled) {
val affinity = specBuilder
.editOrNewAffinity()
.editOrNewNodeAffinity()
.editOrNewRequiredDuringSchedulingIgnoredDuringExecution()
affinity
.addNewNodeSelectorTerm()
.addNewMatchExpression()
.withKey(userPodNodeAffinity.key)
.withOperator("In")
.withValues(userPodNodeAffinity.value)
.endMatchExpression()
.endNodeSelectorTerm()
.endRequiredDuringSchedulingIgnoredDuringExecution()
.endNodeAffinity()
.endAffinity()
}
val containerBuilder = if (specBuilder.hasMatchingContainer(actionContainerPredicate)) {
specBuilder.editMatchingContainer(actionContainerPredicate)
} else specBuilder.addNewContainer()
//In container its assumed that env, port, resource limits are set explicitly
//Here if any value exist in template then that would be overridden
containerBuilder
.withNewResources()
.withLimits(Map("memory" -> new Quantity(memory.toMB + "Mi")).asJava)
.endResources()
.withName("user-action")
.withImage(image)
.withEnv(envVars.asJava)
.addNewPort()
.withContainerPort(8080)
.withName("action")
.endPort()
//If any existing context entry is present then "update" it else add new
containerBuilder
.editOrNewSecurityContext()
.editOrNewCapabilities()
.addToDrop("NET_RAW", "NET_ADMIN")
.endCapabilities()
.endSecurityContext()
val pod = containerBuilder
.endContainer()
.endSpec()
.build()
pod
}
private def loadPodSpec(bytes: Array[Byte]): Pod = {
val resources = client.load(new ByteArrayInputStream(bytes))
resources.get().get(0).asInstanceOf[Pod]
}
}