mirror of
https://github.com/holos-run/holos.git
synced 2026-03-20 01:04:59 +00:00
4c5429b64a
This patch adds the ceph-csi-rbd helm chart component to the metal
cluster type. The purpose is to enable PersistentVolumeClaims on ois
metal clusters.
Cloud clusters like GKE and EKS are expected to skip rendering the metal
type.
Helm values are handled with CUE. The ceph secret is managed as an
ExternalSecret resource, appended to the rendered output by cue and the
holos cli.
Use:
❯ holos render --cluster-name=k2 ~/workspace/holos-run/holos/docs/examples/platforms/reference/clusters/metal/...
2:45PM INF render.go:40 rendered prod-metal-ceph version=0.47.0 status=ok action=rendered name=prod-metal-ceph
390 lines
13 KiB
Go
390 lines
13 KiB
Go
// Package builder is responsible for building fully rendered kubernetes api
|
|
// objects from various input directories. A directory may contain a platform
|
|
// spec or a component spec.
|
|
package builder
|
|
|
|
import (
|
|
"bytes"
|
|
"context"
|
|
"cuelang.org/go/cue/build"
|
|
"fmt"
|
|
"github.com/holos-run/holos"
|
|
"github.com/holos-run/holos/pkg/logger"
|
|
"github.com/holos-run/holos/pkg/util"
|
|
"github.com/holos-run/holos/pkg/wrapper"
|
|
"os"
|
|
"os/exec"
|
|
"path/filepath"
|
|
|
|
"cuelang.org/go/cue/cuecontext"
|
|
"cuelang.org/go/cue/load"
|
|
)
|
|
|
|
const (
|
|
// Kube is the value of the kind field of holos build output indicating
|
|
// kubernetes api objects.
|
|
Kube = "KubernetesObjects"
|
|
// Helm is the value of the kind field of holos build output indicating helm
|
|
// values and helm command information.
|
|
Helm = "HelmChart"
|
|
// ChartDir is the chart cache directory name.
|
|
ChartDir = "vendor"
|
|
)
|
|
|
|
// An Option configures a Builder
|
|
type Option func(*config)
|
|
|
|
type config struct {
|
|
args []string
|
|
cluster string
|
|
}
|
|
|
|
type Builder struct {
|
|
cfg config
|
|
}
|
|
|
|
// New returns a new *Builder configured by opts Option.
|
|
func New(opts ...Option) *Builder {
|
|
var cfg config
|
|
for _, f := range opts {
|
|
f(&cfg)
|
|
}
|
|
b := &Builder{cfg: cfg}
|
|
return b
|
|
}
|
|
|
|
// Entrypoints configures the leaf directories Builder builds.
|
|
func Entrypoints(args []string) Option {
|
|
return func(cfg *config) { cfg.args = args }
|
|
}
|
|
|
|
// Cluster configures the cluster name for the holos component instance.
|
|
func Cluster(name string) Option {
|
|
return func(cfg *config) { cfg.cluster = name }
|
|
}
|
|
|
|
type buildInfo struct {
|
|
APIVersion string `json:"apiVersion,omitempty"`
|
|
Kind string `json:"kind,omitempty"`
|
|
}
|
|
|
|
// Metadata represents the standard metadata fields of the cue output
|
|
type Metadata struct {
|
|
Name string `json:"name,omitempty"`
|
|
}
|
|
|
|
// Result is the build result for display or writing.
|
|
type Result struct {
|
|
Metadata Metadata `json:"metadata,omitempty"`
|
|
Content string `json:"content,omitempty"`
|
|
ContentType string `json:"contentType"`
|
|
KsContent string `json:"ksContent,omitempty"`
|
|
}
|
|
|
|
type Repository struct {
|
|
Name string `json:"name"`
|
|
URL string `json:"url"`
|
|
}
|
|
|
|
type Chart struct {
|
|
Name string `json:"name"`
|
|
Version string `json:"version"`
|
|
Repository Repository `json:"repository"`
|
|
}
|
|
|
|
// A HelmChart represents a helm command to provide chart values in order to render kubernetes api objects.
|
|
type HelmChart struct {
|
|
APIVersion string `json:"apiVersion"`
|
|
Kind string `json:"kind"`
|
|
Metadata Metadata `json:"metadata"`
|
|
KsContent string `json:"ksContent"`
|
|
Namespace string `json:"namespace"`
|
|
Chart Chart `json:"chart"`
|
|
ValuesContent string `json:"valuesContent"`
|
|
ContentType string `json:"contentType"`
|
|
Content string `json:"content"`
|
|
}
|
|
|
|
// Name returns the metadata name of the result. Equivalent to the
|
|
// OrderedComponent name specified in platform.yaml in the holos prototype.
|
|
func (r *Result) Name() string {
|
|
return r.Metadata.Name
|
|
}
|
|
|
|
func (r *Result) Filename(writeTo string, cluster string) string {
|
|
return filepath.Join(writeTo, "clusters", cluster, "components", r.Name(), r.Name()+".gen.yaml")
|
|
}
|
|
|
|
func (r *Result) KustomizationFilename(writeTo string, cluster string) string {
|
|
return filepath.Join(writeTo, "clusters", cluster, "holos", "components", r.Name()+"-kustomization.gen.yaml")
|
|
}
|
|
|
|
// Save writes the content to the filesystem for git ops.
|
|
func (r *Result) Save(ctx context.Context, path string, content string) error {
|
|
log := logger.FromContext(ctx)
|
|
dir := filepath.Dir(path)
|
|
if err := os.MkdirAll(dir, os.FileMode(0775)); err != nil {
|
|
log.WarnContext(ctx, "could not mkdir", "path", dir, "err", err)
|
|
return wrapper.Wrap(err)
|
|
}
|
|
// Write the kube api objects
|
|
if err := os.WriteFile(path, []byte(content), os.FileMode(0644)); err != nil {
|
|
log.WarnContext(ctx, "could not write", "path", path, "err", err)
|
|
return wrapper.Wrap(err)
|
|
}
|
|
log.DebugContext(ctx, "out: wrote "+path, "action", "write", "path", path, "status", "ok")
|
|
return nil
|
|
}
|
|
|
|
// Cluster returns the cluster name of the component instance being built.
|
|
func (b *Builder) Cluster() string {
|
|
return b.cfg.cluster
|
|
}
|
|
|
|
// Instances returns the cue build instances being built.
|
|
func (b *Builder) Instances(ctx context.Context) ([]*build.Instance, error) {
|
|
log := logger.FromContext(ctx)
|
|
|
|
mod, err := b.findCueMod()
|
|
if err != nil {
|
|
return nil, wrapper.Wrap(err)
|
|
}
|
|
dir := string(mod)
|
|
|
|
cfg := load.Config{Dir: dir}
|
|
|
|
// Make args relative to the module directory
|
|
args := make([]string, len(b.cfg.args))
|
|
for idx, path := range b.cfg.args {
|
|
target, err := filepath.Abs(path)
|
|
if err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("could not find absolute path: %w", err))
|
|
}
|
|
relPath, err := filepath.Rel(dir, target)
|
|
if err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("invalid argument, must be relative to cue.mod: %w", err))
|
|
}
|
|
relPath = "./" + relPath
|
|
args[idx] = relPath
|
|
equiv := fmt.Sprintf("cue export --out yaml -t cluster=%v %v", b.Cluster(), relPath)
|
|
log.Debug("cue: equivalent command: " + equiv)
|
|
}
|
|
|
|
// Refer to https://github.com/cue-lang/cue/blob/v0.7.0/cmd/cue/cmd/common.go#L429
|
|
cfg.Tags = append(cfg.Tags, "cluster="+b.Cluster())
|
|
log.DebugContext(ctx, fmt.Sprintf("cue: tags %v", cfg.Tags))
|
|
|
|
return load.Instances(args, &cfg), nil
|
|
}
|
|
|
|
func (b *Builder) Run(ctx context.Context) (results []*Result, err error) {
|
|
results = make([]*Result, 0, len(b.cfg.args))
|
|
cueCtx := cuecontext.New()
|
|
logger.FromContext(ctx).DebugContext(ctx, "cue: building instances")
|
|
instances, err := b.Instances(ctx)
|
|
if err != nil {
|
|
return results, err
|
|
}
|
|
|
|
for _, instance := range instances {
|
|
var info buildInfo
|
|
var result Result
|
|
log := logger.FromContext(ctx).With("dir", instance.Dir)
|
|
results = append(results, &result)
|
|
if err := instance.Err; err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("could not load: %w", err))
|
|
}
|
|
log.DebugContext(ctx, "cue: building instance")
|
|
value := cueCtx.BuildInstance(instance)
|
|
if err := value.Err(); err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("could not build: %w", err))
|
|
}
|
|
log.DebugContext(ctx, "cue: validating instance")
|
|
if err := value.Validate(); err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("could not validate: %w", err))
|
|
}
|
|
log.DebugContext(ctx, "cue: decoding holos component build info")
|
|
if err := value.Decode(&info); err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("could not decode: %w", err))
|
|
}
|
|
|
|
log.DebugContext(ctx, "cue: processing holos component kind "+info.Kind)
|
|
switch kind := info.Kind; kind {
|
|
case Kube:
|
|
// CUE directly provides the kubernetes api objects in result.Content
|
|
if err := value.Decode(&result); err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("could not decode: %w", err))
|
|
}
|
|
case Helm:
|
|
var helmChart HelmChart
|
|
// First decode into the result. Helm will populate the api objects later.
|
|
if err := value.Decode(&result); err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("could not decode: %w", err))
|
|
}
|
|
// Decode again into the helm chart struct to get the values content to provide to helm.
|
|
if err := value.Decode(&helmChart); err != nil {
|
|
return nil, wrapper.Wrap(fmt.Errorf("could not decode: %w", err))
|
|
}
|
|
// runHelm populates result.Content from helm template output.
|
|
if err := runHelm(ctx, &helmChart, &result, holos.PathComponent(instance.Dir)); err != nil {
|
|
return nil, err
|
|
}
|
|
// Append any cue api objects defined alongside the helm holos component.
|
|
if helmChart.Content != "" && helmChart.ContentType == "application/yaml" {
|
|
buf := []byte(result.Content)
|
|
util.EnsureNewline(buf)
|
|
buf = append(buf, []byte("---\n# Source: holos component overlay objects\n")...)
|
|
buf = append(buf, []byte(helmChart.Content)...)
|
|
log.DebugContext(ctx, "added additional api objects", "bytes", len(buf))
|
|
result.Content = string(buf)
|
|
}
|
|
|
|
default:
|
|
return nil, wrapper.Wrap(fmt.Errorf("build kind not implemented: %v", kind))
|
|
}
|
|
}
|
|
|
|
return results, nil
|
|
}
|
|
|
|
// findCueMod returns the root module location containing the cue.mod file or
|
|
// directory or an error if the builder arguments do not share a common root
|
|
// module.
|
|
func (b *Builder) findCueMod() (dir holos.PathCueMod, err error) {
|
|
for _, origPath := range b.cfg.args {
|
|
absPath, err := filepath.Abs(origPath)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
path := holos.PathCueMod(absPath)
|
|
for {
|
|
if _, err := os.Stat(filepath.Join(string(path), "cue.mod")); err == nil {
|
|
if dir != "" && dir != path {
|
|
return "", fmt.Errorf("multiple modules not supported: %v is not %v", dir, path)
|
|
}
|
|
dir = path
|
|
break
|
|
} else if !os.IsNotExist(err) {
|
|
return "", err
|
|
}
|
|
parentPath := holos.PathCueMod(filepath.Dir(string(path)))
|
|
if parentPath == path {
|
|
return "", fmt.Errorf("no cue.mod from root to leaf: %v", origPath)
|
|
}
|
|
path = parentPath
|
|
}
|
|
}
|
|
return dir, nil
|
|
}
|
|
|
|
type runResult struct {
|
|
stdout *bytes.Buffer
|
|
stderr *bytes.Buffer
|
|
}
|
|
|
|
func runCmd(ctx context.Context, name string, args ...string) (result runResult, err error) {
|
|
result = runResult{
|
|
stdout: new(bytes.Buffer),
|
|
stderr: new(bytes.Buffer),
|
|
}
|
|
cmd := exec.CommandContext(ctx, name, args...)
|
|
cmd.Stdout = result.stdout
|
|
cmd.Stderr = result.stderr
|
|
log := logger.FromContext(ctx)
|
|
log.DebugContext(ctx, "run: "+name, "name", name, "args", args)
|
|
err = cmd.Run()
|
|
return
|
|
}
|
|
|
|
// runHelm provides the values produced by CUE to helm template and returns
|
|
// the rendered kubernetes api objects in the result.
|
|
func runHelm(ctx context.Context, hc *HelmChart, r *Result, path holos.PathComponent) error {
|
|
log := logger.FromContext(ctx).With("chart", hc.Chart.Name)
|
|
|
|
cachedChartPath := filepath.Join(string(path), ChartDir, hc.Chart.Name)
|
|
if isNotExist(cachedChartPath) {
|
|
// Add repositories
|
|
repo := hc.Chart.Repository
|
|
out, err := runCmd(ctx, "helm", "repo", "add", repo.Name, repo.URL)
|
|
if err != nil {
|
|
log.ErrorContext(ctx, "could not run helm", "stderr", out.stderr.String(), "stdout", out.stdout.String())
|
|
return wrapper.Wrap(fmt.Errorf("could not run helm repo add: %w", err))
|
|
}
|
|
// Update repository
|
|
out, err = runCmd(ctx, "helm", "repo", "update", repo.Name)
|
|
if err != nil {
|
|
log.ErrorContext(ctx, "could not run helm", "stderr", out.stderr.String(), "stdout", out.stdout.String())
|
|
return wrapper.Wrap(fmt.Errorf("could not run helm repo update: %w", err))
|
|
}
|
|
// Cache the chart
|
|
if err := cacheChart(ctx, path, ChartDir, hc.Chart); err != nil {
|
|
return fmt.Errorf("could not cache chart: %w", err)
|
|
}
|
|
}
|
|
|
|
// Write values file
|
|
tempDir, err := os.MkdirTemp("", "holos")
|
|
if err != nil {
|
|
return wrapper.Wrap(fmt.Errorf("could not make temp dir: %w", err))
|
|
}
|
|
defer remove(ctx, tempDir)
|
|
|
|
valuesPath := filepath.Join(tempDir, "values.yaml")
|
|
if err := os.WriteFile(valuesPath, []byte(hc.ValuesContent), 0644); err != nil {
|
|
return wrapper.Wrap(fmt.Errorf("could not write values: %w", err))
|
|
}
|
|
log.DebugContext(ctx, "helm: wrote values", "path", valuesPath, "bytes", len(hc.ValuesContent))
|
|
|
|
// Run charts
|
|
chart := hc.Chart
|
|
helmOut, err := runCmd(ctx, "helm", "template", "--values", valuesPath, "--namespace", hc.Namespace, "--kubeconfig", "/dev/null", "--version", chart.Version, chart.Name, cachedChartPath)
|
|
if err != nil {
|
|
return wrapper.Wrap(fmt.Errorf("could not run helm template: %w", err))
|
|
}
|
|
|
|
r.Content = helmOut.stdout.String()
|
|
|
|
return nil
|
|
}
|
|
|
|
// remove cleans up path, useful for temporary directories.
|
|
func remove(ctx context.Context, path string) {
|
|
log := logger.FromContext(ctx)
|
|
if err := os.RemoveAll(path); err != nil {
|
|
log.WarnContext(ctx, "tmp: could not remove", "err", err, "path", path)
|
|
} else {
|
|
log.DebugContext(ctx, "tmp: removed", "path", path)
|
|
}
|
|
}
|
|
|
|
func isNotExist(path string) bool {
|
|
_, err := os.Stat(path)
|
|
return os.IsNotExist(err)
|
|
}
|
|
|
|
// cacheChart stores a cached copy of Chart in the chart sub-directory of path.
|
|
func cacheChart(ctx context.Context, path holos.PathComponent, chartDir string, chart Chart) error {
|
|
log := logger.FromContext(ctx)
|
|
|
|
cacheTemp, err := os.MkdirTemp(string(path), chartDir)
|
|
if err != nil {
|
|
return wrapper.Wrap(fmt.Errorf("could not make temp dir: %w", err))
|
|
}
|
|
defer remove(ctx, cacheTemp)
|
|
|
|
chartName := fmt.Sprintf("%s/%s", chart.Repository.Name, chart.Name)
|
|
helmOut, err := runCmd(ctx, "helm", "pull", "--destination", cacheTemp, "--untar=true", "--version", chart.Version, chartName)
|
|
if err != nil {
|
|
return wrapper.Wrap(fmt.Errorf("could not run helm pull: %w", err))
|
|
}
|
|
log.Debug("helm pull", "stdout", helmOut.stdout, "stderr", helmOut.stderr)
|
|
|
|
cachePath := filepath.Join(string(path), chartDir)
|
|
if err := os.Rename(cacheTemp, cachePath); err != nil {
|
|
return wrapper.Wrap(fmt.Errorf("could not rename: %w", err))
|
|
}
|
|
log.InfoContext(ctx, "cached", "chart", chart.Name, "version", chart.Version, "path", cachePath)
|
|
|
|
return nil
|
|
}
|