apitech
/
loki
mirror of https://github.com/grafana/loki
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Like Prometheus, but for logs.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5046 Commits
1062 Branches
354 Tags
713 MiB
 
 
 
 
 
 
Tag: Branch: Tree: 1671751cbd
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1671751cbd'
${ noResults }
loki/operator/internal/manifests/build.go

181 lines
4.6 KiB
Raw Blame History

package manifests
import (
lokiv1 "github.com/grafana/loki/operator/apis/loki/v1"
"github.com/grafana/loki/operator/internal/manifests/internal"
"github.com/ViaQ/logerr/v2/kverrors"
"github.com/imdario/mergo"
openshiftconfigv1 "github.com/openshift/api/config/v1"
"github.com/openshift/library-go/pkg/crypto"
"sigs.k8s.io/controller-runtime/pkg/client"
)
// BuildAll builds all manifests required to run a Loki Stack
func BuildAll(opts Options) ([]client.Object, error) {
res := make([]client.Object, 0)
cm, sha1C, mapErr := LokiConfigMap(opts)
if mapErr != nil {
return nil, mapErr
}
opts.ConfigSHA1 = sha1C
distributorObjs, err := BuildDistributor(opts)
if err != nil {
return nil, err
}
ingesterObjs, err := BuildIngester(opts)
if err != nil {
return nil, err
}
querierObjs, err := BuildQuerier(opts)
if err != nil {
return nil, err
}
compactorObjs, err := BuildCompactor(opts)
if err != nil {
return nil, err
}
queryFrontendObjs, err := BuildQueryFrontend(opts)
if err != nil {
return nil, err
}
indexGatewayObjs, err := BuildIndexGateway(opts)
if err != nil {
return nil, err
}
res = append(res, cm)
res = append(res, distributorObjs...)
res = append(res, ingesterObjs...)
res = append(res, querierObjs...)
res = append(res, compactorObjs...)
res = append(res, queryFrontendObjs...)
res = append(res, indexGatewayObjs...)
res = append(res, BuildLokiGossipRingService(opts.Name))
if opts.Stack.Rules != nil && opts.Stack.Rules.Enabled {
rulesCMShards, err := RulesConfigMapShards(&opts)
if err != nil {
return nil, err
}
for _, shard := range rulesCMShards {
opts.RulesConfigMapNames = append(opts.RulesConfigMapNames, shard.Name)
res = append(res, shard)
}
rulerObjs, err := BuildRuler(opts)
if err != nil {
return nil, err
}
res = append(res, rulerObjs...)
}
if opts.Gates.LokiStackGateway {
gatewayObjects, err := BuildGateway(opts)
if err != nil {
return nil, err
}
res = append(res, gatewayObjects...)
}
if opts.Gates.ServiceMonitors {
res = append(res, BuildServiceMonitors(opts)...)
}
if opts.Gates.LokiStackAlerts {
prometheusRuleObjs, err := BuildPrometheusRule(opts)
if err != nil {
return nil, err
}
res = append(res, prometheusRuleObjs...)
}
return res, nil
}
// DefaultLokiStackSpec returns the default configuration for a LokiStack of
// the specified size
func DefaultLokiStackSpec(size lokiv1.LokiStackSizeType) *lokiv1.LokiStackSpec {
defaults := internal.StackSizeTable[size]
return (&defaults).DeepCopy()
}
// ApplyDefaultSettings manipulates the options to conform to
// build specifications
func ApplyDefaultSettings(opts *Options) error {
spec := DefaultLokiStackSpec(opts.Stack.Size)
if err := mergo.Merge(spec, opts.Stack, mergo.WithOverride); err != nil {
return kverrors.Wrap(err, "failed merging stack user options", "name", opts.Name)
}
strictOverrides := lokiv1.LokiStackSpec{
Template: &lokiv1.LokiTemplateSpec{
Compactor: &lokiv1.LokiComponentSpec{
// Compactor is a singelton application.
// Only one replica allowed!!!
Replicas: 1,
},
},
}
if err := mergo.Merge(spec, strictOverrides, mergo.WithOverride); err != nil {
return kverrors.Wrap(err, "failed to merge strict defaults")
}
opts.ResourceRequirements = internal.ResourceRequirementsTable[opts.Stack.Size]
opts.Stack = *spec
return nil
}
// ApplyTLSSettings manipulates the options to conform to the
// TLS profile specifications
func ApplyTLSSettings(opts *Options, profile *openshiftconfigv1.TLSSecurityProfile) error {
tlsSecurityProfile := &openshiftconfigv1.TLSSecurityProfile{
Type: openshiftconfigv1.TLSProfileIntermediateType,
}
if profile != nil {
tlsSecurityProfile = profile
}
var (
minTLSVersion openshiftconfigv1.TLSProtocolVersion
ciphers []string
)
switch tlsSecurityProfile.Type {
case openshiftconfigv1.TLSProfileCustomType:
if tlsSecurityProfile.Custom == nil {
return kverrors.New("missing TLS custom profile spec")
}
minTLSVersion = tlsSecurityProfile.Custom.MinTLSVersion
ciphers = tlsSecurityProfile.Custom.Ciphers
case openshiftconfigv1.TLSProfileOldType, openshiftconfigv1.TLSProfileIntermediateType, openshiftconfigv1.TLSProfileModernType:
spec := openshiftconfigv1.TLSProfiles[tlsSecurityProfile.Type]
minTLSVersion = spec.MinTLSVersion
ciphers = spec.Ciphers
default:
return kverrors.New("unable to determine tls profile settings %s", tlsSecurityProfile.Type)
}
// need to remap all ciphers to their respective IANA names used by Go
opts.TLSProfile = TLSProfileSpec{
MinTLSVersion: string(minTLSVersion),
Ciphers: crypto.OpenSSLToIANACipherSuites(ciphers),
}
return nil
}