Update code for latest k8s

Signed-off-by: Mrunal Patel <mrunalp@gmail.com>
2018-02-12 12:13:07 -08:00 · 2018-02-12 12:13:07 -08:00 · 5f7ac28059
commit 5f7ac28059
parent 8f5e37a83c
792 changed files with 25023 additions and 19841 deletions
--- a/server/container_attach.go
+++ b/server/container_attach.go
@ -14,7 +14,7 @@ import (
 	"golang.org/x/net/context"
 	"golang.org/x/sys/unix"
 	"k8s.io/client-go/tools/remotecommand"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 	kubecontainer "k8s.io/kubernetes/pkg/kubelet/container"
 )

--- a/server/container_create.go
+++ b/server/container_create.go
@ -34,7 +34,7 @@ import (
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
 	"golang.org/x/sys/unix"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 const (
@ -600,7 +600,7 @@ func hostNetwork(containerConfig *pb.ContainerConfig) bool {
 		return false
 	}

-	return securityContext.GetNamespaceOptions().HostNetwork
+	return securityContext.GetNamespaceOptions().GetNetwork() == pb.NamespaceMode_NODE
 }

 // ensureSaneLogPath is a hack to fix https://issues.k8s.io/44043 which causes
@ -997,7 +997,7 @@ func (s *Server) createSandboxContainer(ctx context.Context, containerID string,
 		return nil, err
 	}

-	if containerConfig.GetLinux().GetSecurityContext().GetNamespaceOptions().GetHostPid() {
+	if containerConfig.GetLinux().GetSecurityContext().GetNamespaceOptions().GetPid() == pb.NamespaceMode_NODE {
 		// kubernetes PodSpec specify to use Host PID namespace
 		specgen.RemoveLinuxNamespace(string(rspec.PIDNamespace))
 	} else if s.config.EnableSharedPIDNamespace {
--- a/server/container_exec.go
+++ b/server/container_exec.go
@ -12,7 +12,7 @@ import (
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
 	"k8s.io/client-go/tools/remotecommand"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 	kubecontainer "k8s.io/kubernetes/pkg/kubelet/container"
 	"k8s.io/kubernetes/pkg/util/term"
 	utilexec "k8s.io/utils/exec"
--- a/server/container_execsync.go
+++ b/server/container_execsync.go
@ -7,7 +7,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/oci"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // ExecSync runs a command in a container synchronously.
--- a/server/container_list.go
+++ b/server/container_list.go
@ -7,7 +7,7 @@ import (
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
 	"k8s.io/apimachinery/pkg/fields"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // filterContainer returns whether passed container matches filtering criteria
--- a/server/container_portforward.go
+++ b/server/container_portforward.go
@ -12,7 +12,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/oci"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // PortForward prepares a streaming endpoint to forward ports from a PodSandbox.
--- a/server/container_remove.go
+++ b/server/container_remove.go
@ -5,7 +5,7 @@ import (

 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // RemoveContainer removes the container. If the container is running, the container
--- a/server/container_reopen_log.go
+++ b/server/container_reopen_log.go
@ -0,0 +1,13 @@
+package server
+
+import (
+	"fmt"
+
+	"golang.org/x/net/context"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
+)
+
+// ReopenContainerLog reopens the containers log file
+func (s *Server) ReopenContainerLog(ctx context.Context, in *pb.ReopenContainerLogRequest) (*pb.ReopenContainerLogResponse, error) {
+	return nil, fmt.Errorf("not yet implemented")
+}
--- a/server/container_start.go
+++ b/server/container_start.go
@ -7,7 +7,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/oci"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // StartContainer starts the container.
--- a/server/container_stats.go
+++ b/server/container_stats.go
@ -7,7 +7,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/lib"
 	"github.com/kubernetes-incubator/cri-o/oci"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 func buildContainerStats(stats *lib.ContainerStats, container *oci.Container) *pb.ContainerStats {
--- a/server/container_stats_list.go
+++ b/server/container_stats_list.go
@ -6,7 +6,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/lib"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // ListContainerStats returns stats of all running containers.
--- a/server/container_status.go
+++ b/server/container_status.go
@ -7,7 +7,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/oci"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 const (
--- a/server/container_stop.go
+++ b/server/container_stop.go
@ -5,7 +5,7 @@ import (

 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // StopContainer stops a running container with a grace period (i.e., timeout).
--- a/server/container_update_resources.go
+++ b/server/container_update_resources.go
@ -9,7 +9,7 @@ import (
 	rspec "github.com/opencontainers/runtime-spec/specs-go"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // UpdateContainerResources updates ContainerConfig of the container.
--- a/server/container_updateruntimeconfig.go
+++ b/server/container_updateruntimeconfig.go
@ -4,7 +4,7 @@ import (
 	"time"

 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // UpdateRuntimeConfig updates the configuration of a running container.
--- a/server/image_fs_info.go
+++ b/server/image_fs_info.go
@ -7,7 +7,7 @@ import (
 	"github.com/containers/storage"
 	crioStorage "github.com/kubernetes-incubator/cri-o/utils"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 func getStorageFsInfo(store storage.Store) (*pb.FilesystemUsage, error) {
@ -15,13 +15,6 @@ func getStorageFsInfo(store storage.Store) (*pb.FilesystemUsage, error) {
 	storageDriver := store.GraphDriverName()
 	imagesPath := path.Join(rootPath, storageDriver+"-images")

-	deviceName, err := crioStorage.GetDeviceNameFromPath(imagesPath)
-
-	uuid, err := crioStorage.GetDeviceUUIDFromPath(deviceName)
-	if err != nil {
-		return nil, err
-	}
-
 	bytesUsed, inodesUsed, err := crioStorage.GetDiskUsageStats(imagesPath)
 	if err != nil {
 		return nil, err
@ -29,9 +22,9 @@ func getStorageFsInfo(store storage.Store) (*pb.FilesystemUsage, error) {

 	usage := pb.FilesystemUsage{
 		Timestamp:  time.Now().UnixNano(),
-		StorageId:  &pb.StorageIdentifier{uuid},
-		UsedBytes:  &pb.UInt64Value{bytesUsed},
-		InodesUsed: &pb.UInt64Value{inodesUsed},
+		FsId:       &pb.FilesystemIdentifier{Mountpoint: imagesPath},
+		UsedBytes:  &pb.UInt64Value{Value: bytesUsed},
+		InodesUsed: &pb.UInt64Value{Value: inodesUsed},
 	}

 	return &usage, nil
--- a/server/image_list.go
+++ b/server/image_list.go
@ -5,7 +5,7 @@ import (

 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // ListImages lists existing images.
--- a/server/image_pull.go
+++ b/server/image_pull.go
@ -10,7 +10,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/pkg/storage"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // PullImage pulls a image with authentication config.
--- a/server/image_remove.go
+++ b/server/image_remove.go
@ -7,7 +7,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/pkg/storage"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // RemoveImage removes the image.
--- a/server/image_status.go
+++ b/server/image_status.go
@ -11,7 +11,7 @@ import (
 	"github.com/pkg/errors"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // ImageStatus returns the status of the image.
--- a/server/inspect_test.go
+++ b/server/inspect_test.go
@ -4,7 +4,7 @@ import (
 	"testing"
 	"time"

-	"k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	runtime "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"

 	"github.com/containernetworking/plugins/pkg/ns"
 	"github.com/kubernetes-incubator/cri-o/lib"
--- a/server/naming.go
+++ b/server/naming.go
@ -5,7 +5,7 @@ import (
 	"strings"

 	"github.com/docker/docker/pkg/stringid"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 const (
--- a/server/runtime_status.go
+++ b/server/runtime_status.go
@ -4,7 +4,7 @@ import (
 	"time"

 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // Status returns the status of the runtime
--- a/server/sandbox_list.go
+++ b/server/sandbox_list.go
@ -8,7 +8,7 @@ import (
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
 	"k8s.io/apimachinery/pkg/fields"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // filterSandbox returns whether passed container matches filtering criteria
--- a/server/sandbox_remove.go
+++ b/server/sandbox_remove.go
@ -11,7 +11,7 @@ import (
 	"github.com/pkg/errors"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // RemovePodSandbox deletes the sandbox. If there are any running containers in the
--- a/server/sandbox_run.go
+++ b/server/sandbox_run.go
@ -24,7 +24,7 @@ import (
 	"golang.org/x/net/context"
 	"golang.org/x/sys/unix"
 	"k8s.io/api/core/v1"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 	"k8s.io/kubernetes/pkg/kubelet/leaky"
 	"k8s.io/kubernetes/pkg/kubelet/network/hostport"
 	"k8s.io/kubernetes/pkg/kubelet/types"
@ -57,9 +57,9 @@ func (s *Server) privilegedSandbox(req *pb.RunPodSandboxRequest) bool {
 		return false
 	}

-	if namespaceOptions.HostNetwork ||
-		namespaceOptions.HostPid ||
-		namespaceOptions.HostIpc {
+	if namespaceOptions.GetNetwork() == pb.NamespaceMode_NODE ||
+		namespaceOptions.GetPid() == pb.NamespaceMode_NODE ||
+		namespaceOptions.GetIpc() == pb.NamespaceMode_NODE {
 		return true
 	}

@ -274,13 +274,19 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest
 		logrus.Warn("no security context found in config.")
 	}

+	nsOptsJSON, err := json.Marshal(securityContext.GetNamespaceOptions())
+	if err != nil {
+		return nil, err
+	}
+
 	processLabel, mountLabel, err = getSELinuxLabels(securityContext.GetSelinuxOptions(), privileged)
 	if err != nil {
 		return nil, err
 	}

 	// Don't use SELinux separation with Host Pid or IPC Namespace or privileged.
-	if securityContext.GetNamespaceOptions().GetHostPid() || securityContext.GetNamespaceOptions().GetHostIpc() {
+	if securityContext.GetNamespaceOptions().GetPid() == pb.NamespaceMode_NODE ||
+		securityContext.GetNamespaceOptions().GetIpc() == pb.NamespaceMode_NODE {
 		processLabel, mountLabel = "", ""
 	}
 	g.SetProcessSelinuxLabel(processLabel)
@ -288,7 +294,7 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest

 	// create shm mount for the pod containers.
 	var shmPath string
-	if securityContext.GetNamespaceOptions().GetHostIpc() {
+	if securityContext.GetNamespaceOptions().GetIpc() == pb.NamespaceMode_NODE {
 		shmPath = "/dev/shm"
 	} else {
 		shmPath, err = setupShm(podContainer.RunDir, mountLabel)
@ -329,7 +335,7 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest
 		return nil, err
 	}

-	hostNetwork := securityContext.GetNamespaceOptions().GetHostNetwork()
+	hostNetwork := securityContext.GetNamespaceOptions().GetNetwork() == pb.NamespaceMode_NODE

 	hostname, err := getHostname(id, req.GetConfig().Hostname, hostNetwork)
 	if err != nil {
@ -353,7 +359,7 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest
 	g.AddAnnotation(annotations.TrustedSandbox, fmt.Sprintf("%v", trusted))
 	g.AddAnnotation(annotations.ResolvPath, resolvPath)
 	g.AddAnnotation(annotations.HostName, hostname)
-	g.AddAnnotation(annotations.HostNetwork, fmt.Sprintf("%v", hostNetwork))
+	g.AddAnnotation(annotations.NamespaceOptions, string(nsOptsJSON))
 	g.AddAnnotation(annotations.KubeName, kubeName)
 	if podContainer.Config.Config.StopSignal != "" {
 		// this key is defined in image-spec conversion document at https://github.com/opencontainers/image-spec/pull/492/files#diff-8aafbe2c3690162540381b8cdb157112R57
@ -464,14 +470,14 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest
 		}
 	}

-	if securityContext.GetNamespaceOptions().GetHostPid() {
+	if securityContext.GetNamespaceOptions().GetPid() == pb.NamespaceMode_NODE {
 		err = g.RemoveLinuxNamespace(string(runtimespec.PIDNamespace))
 		if err != nil {
 			return nil, err
 		}
 	}

-	if securityContext.GetNamespaceOptions().GetHostIpc() {
+	if securityContext.GetNamespaceOptions().GetIpc() == pb.NamespaceMode_NODE {
 		err = g.RemoveLinuxNamespace(string(runtimespec.IPCNamespace))
 		if err != nil {
 			return nil, err
@ -529,7 +535,7 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest

 	g.AddAnnotation(annotations.IP, ip)
 	sb.AddIP(ip)
-	sb.SetHostNetwork(hostNetwork)
+	sb.SetNamespaceOptions(securityContext.GetNamespaceOptions())

 	spp := req.GetConfig().GetLinux().GetSecurityContext().GetSeccompProfilePath()
 	g.AddAnnotation(annotations.SeccompProfilePath, spp)
--- a/server/sandbox_status.go
+++ b/server/sandbox_status.go
@ -6,7 +6,7 @@ import (
 	"github.com/kubernetes-incubator/cri-o/oci"
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // PodSandboxStatus returns the Status of the PodSandbox.
@ -34,7 +34,9 @@ func (s *Server) PodSandboxStatus(ctx context.Context, req *pb.PodSandboxStatusR
 	linux := &pb.LinuxPodSandboxStatus{
 		Namespaces: &pb.Namespace{
 			Options: &pb.NamespaceOption{
-				HostNetwork: sb.HostNetwork(),
+				Network: sb.NamespaceOptions().GetNetwork(),
+				Ipc:     sb.NamespaceOptions().GetIpc(),
+				Pid:     sb.NamespaceOptions().GetPid(),
 			},
 		},
 	}
--- a/server/sandbox_stop.go
+++ b/server/sandbox_stop.go
@ -14,7 +14,7 @@ import (
 	"github.com/sirupsen/logrus"
 	"golang.org/x/net/context"
 	"golang.org/x/sys/unix"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 // StopPodSandbox stops the sandbox. If there are any running containers in the
--- a/server/server.go
+++ b/server/server.go
@ -26,7 +26,7 @@ import (
 	"github.com/prometheus/client_golang/prometheus"
 	"github.com/sirupsen/logrus"
 	knet "k8s.io/apimachinery/pkg/util/net"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 	"k8s.io/kubernetes/pkg/kubelet/network/hostport"
 	"k8s.io/kubernetes/pkg/kubelet/server/streaming"
 	iptablesproxy "k8s.io/kubernetes/pkg/proxy/iptables"
--- a/server/utils.go
+++ b/server/utils.go
@ -13,7 +13,7 @@ import (
 	"github.com/opencontainers/image-spec/specs-go/v1"
 	"github.com/opencontainers/runtime-tools/validate"
 	"github.com/syndtr/gocapability/capability"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 const (
--- a/server/utils_test.go
+++ b/server/utils_test.go
@ -6,7 +6,7 @@ import (
 	"testing"

 	"github.com/opencontainers/image-spec/specs-go/v1"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 const (
--- a/server/version.go
+++ b/server/version.go
@ -5,7 +5,7 @@ import (

 	"github.com/kubernetes-incubator/cri-o/version"
 	"golang.org/x/net/context"
-	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/v1alpha1/runtime"
+	pb "k8s.io/kubernetes/pkg/kubelet/apis/cri/runtime/v1alpha2"
 )

 const (