first commit with changes

Author: asimpleidea

hack/update-codegen.sh

@@ -19,15 +19,15 @@ set -o nounset
 set -o pipefail
 
 SCRIPT_ROOT=$(dirname "${BASH_SOURCE[0]}")/..
-CODEGEN_PKG=${CODEGEN_PKG:-$(cd "${SCRIPT_ROOT}"; ls -d -1 ./vendor/k8s.io/code-generator 2>/dev/null || echo ../code-generator)}
-
+#CODEGEN_PKG=${CODEGEN_PKG:-$(cd "${SCRIPT_ROOT}"; ls -d -1 ./vendor/k8s.io/code-generator 2>/dev/null || echo ../code-generator)}
+CODEGEN_PKG=$GOPATH/src/k8s.io/code-generator
 # generate the code with:
 # --output-base    because this script should also be able to run inside the vendor dir of
 #                  k8s.io/kubernetes. The output-base is needed for the generators to output into the vendor dir
 #                  instead of the $GOPATH directly. For normal projects this can be dropped.
 "${CODEGEN_PKG}"/generate-groups.sh "deepcopy,client,informer,lister" \
   k8s.io/sample-controller/pkg/generated k8s.io/sample-controller/pkg/apis \
-  samplecontroller:v1alpha1 \
+  polycubenetworkpolicy:v1abeta1 \
   --output-base "$(dirname "${BASH_SOURCE[0]}")/../../.." \
   --go-header-file "${SCRIPT_ROOT}"/hack/boilerplate.go.txt
 

pkg/apis/polycubenetworkpolicy/register.go

@@ -0,0 +1,22 @@
+/*
+Copyright 2017 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package polycubenetworkpolicy
+
+// GroupName is the group name used in this package
+const (
+	GroupName = "polycubenetwork.com"
+)

pkg/apis/polycubenetworkpolicy/v1beta1/doc.go

@@ -0,0 +1,21 @@
+/*
+Copyright 2017 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+// +k8s:deepcopy-gen=package
+// +groupName=polycubenetwork.com
+
+// Package v1beta1 is the v1beta1 version of the API.
+package v1beta1

pkg/apis/polycubenetworkpolicy/v1beta1/register.go

@@ -0,0 +1,55 @@
+/*
+Copyright 2017 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package v1beta1
+
+import (
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/runtime"
+	"k8s.io/apimachinery/pkg/runtime/schema"
+
+	polycubenetworkpolicy "github.com/SunSince90/sample-controller"
+)
+
+// SchemeGroupVersion is group version used to register these objects
+var SchemeGroupVersion = schema.GroupVersion{Group: polycubenetworkpolicy.GroupName, Version: "v1beta1"}
+
+// Kind takes an unqualified kind and returns back a Group qualified GroupKind
+func Kind(kind string) schema.GroupKind {
+	return SchemeGroupVersion.WithKind(kind).GroupKind()
+}
+
+// Resource takes an unqualified resource and returns a Group qualified GroupResource
+func Resource(resource string) schema.GroupResource {
+	return SchemeGroupVersion.WithResource(resource).GroupResource()
+}
+
+var (
+	// SchemeBuilder initializes a scheme builder
+	SchemeBuilder = runtime.NewSchemeBuilder(addKnownTypes)
+	// AddToScheme is a global function that registers this API group & version to a scheme
+	AddToScheme = SchemeBuilder.AddToScheme
+)
+
+// Adds the list of known types to Scheme.
+func addKnownTypes(scheme *runtime.Scheme) error {
+	scheme.AddKnownTypes(SchemeGroupVersion,
+		&PolycubeNetworkPolicy{},
+		&PolycubeNetworkPolicyList{},
+	)
+	metav1.AddToGroupVersion(scheme, SchemeGroupVersion)
+	return nil
+}

pkg/apis/polycubenetworkpolicy/v1beta1/types.go

@@ -0,0 +1,233 @@
+package v1beta1
+
+import metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+// +genclient
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// PolycubeNetworkPolicy is a network policy handled by polycube
+type PolycubeNetworkPolicy struct {
+	metav1.TypeMeta `json:",inline"`
+	// +optional
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+	// ApplyTo defines who this policy is intended for
+	ApplyTo PolycubeNetworkPolicyTarget `json:"applyTo,omitempty"`
+	// Spec of this policy
+	Spec PolycubeNetworkPolicySpec `json:"spec,omitempty"`
+}
+
+// PolycubeNetworkPolicyTarget is the target of this policy
+type PolycubeNetworkPolicyTarget struct {
+	// Target is the object that should enforce this policy
+	Target PolycubeNetworkPolicyTargetObject `json:"target,omitempty"`
+	// +optional
+	// If name and labels are irrelevant
+	Any *bool `json:"any,omitempty"`
+	// +optional
+	// WithName specifies the name of the object. Valid only for Service
+	WithName string `json:"withName,omitempty"`
+	// +optional
+	// WithLabels specifies the labels of the target. Valid only for Pod
+	WithLabels map[string]string `json:"withLabels,omitempty"`
+}
+
+// PolycubeNetworkPolicyTargetObject is the target object
+type PolycubeNetworkPolicyTargetObject string
+
+const (
+	// PodTarget represents a Pod
+	PodTarget PolycubeNetworkPolicyTargetObject = "pod"
+	// ServiceTarget represents a Service
+	ServiceTarget PolycubeNetworkPolicyTargetObject = "service"
+)
+
+// PolycubeNetworkPolicySpec contains the specifications of this Network Policy
+type PolycubeNetworkPolicySpec struct {
+	// +optional
+	// Description is the description of the policy
+	Description string `json:"description,omitempty"`
+	// +optional
+	// IngressRules contains the ingress rules
+	IngressRules PolycubeNetworkPolicyIngressRuleContainer `json:"ingressRules,omitempty"`
+	// +optional
+	// EgressRules contains the egress rules
+	EngressRules PolycubeNetworkPolicyEgressRuleContainer `json:"egressRules,omitempty"`
+}
+
+// PolycubeNetworkPolicyIngressRuleContainer is a container of ingress rules
+type PolycubeNetworkPolicyIngressRuleContainer struct {
+	// +optional
+	// DropAll specifies to drop everything in ingress
+	DropAll *bool `json:"dropAll,omitempty"`
+	// +optional
+	// AllowAll specifies to allow anyone in ingress
+	AllowAll *bool `json:"allowAll,omitempty"`
+	// +optional
+	// Rules is a list of ingress rules
+	Rules []PolycubeNetworkPolicyIngressRule `json:"rules,omitempty"`
+}
+
+// PolycubeNetworkPolicyEgressRuleContainer is a container of egress rules
+type PolycubeNetworkPolicyEgressRuleContainer struct {
+	// +optional
+	// DropAll specifies to drop everything in egress
+	DropAll *bool `json:"dropAll,omitempty"`
+	// +optional
+	// AllowAll specifies to allow anyone in egress
+	AllowAll *bool `json:"allowAll,omitempty"`
+	// +optional
+	// Rules is a list of egress rules
+	Rules []PolycubeNetworkPolicyEgressRule `json:"rules,omitempty"`
+}
+
+// PolycubeNetworkPolicyIngressRule is an ingress rule
+type PolycubeNetworkPolicyIngressRule struct {
+	// From is the peer
+	From PolycubeNetworkPolicyPeer `json:"from,omitempty"`
+	// Protocols is the level 4 protocol list
+	Protocols []PolycubeNetworkPolicyProtocolContainer `json:"protocols,omitempty"`
+	// TCPFlags is a list of TCP flags
+	TCPFlags []PolycubeNetworkPolicyTCPFlag `json:"tcpflags,omitempty"`
+	// Action is the action to be taken
+	Action PolycubeNetworkPolicyRuleAction `json:"action,omitempty"`
+	// Description is the description of the rule
+	Description string `json:"description,omitempty"`
+}
+
+// PolycubeNetworkPolicyProtocolContainer contains the protocol details
+type PolycubeNetworkPolicyProtocolContainer struct {
+	// Ports is the container of the ports
+	Ports PolycubeNetworkPolicyPorts `json:"ports,omitempty"`
+	// Protocol is the l4 protocol
+	Protocol PolycubeNetworkPolicyProtocol
+}
+
+// PolycubeNetworkPolicyEgressRule the rule for egress
+type PolycubeNetworkPolicyEgressRule struct {
+	// To is the peer
+	To PolycubeNetworkPolicyPeer `json:"to,omitempty"`
+	// Protocols is the protocols list
+	Protocols []PolycubeNetworkPolicyProtocolContainer `json:"protocols,omitempty"`
+	// TCPFlags is a list of TCP flags
+	TCPFlags []PolycubeNetworkPolicyTCPFlag `json:"tcpflags,omitempty"`
+	// Action is the action to be taken
+	Action PolycubeNetworkPolicyRuleAction `json:"action,omitempty"`
+	// Description is the description of the rule
+	Description string `json:"description,omitempty"`
+}
+
+// PolycubeNetworkPolicyPeer contains data of the peer
+type PolycubeNetworkPolicyPeer struct {
+	// Peer is the peer type
+	Peer PolycubeNetworkPolicyPeerObject `json:"peer,omitempty"`
+	// +optional
+	// Any tells if name and labels don't matter
+	Any *bool `json:"any,omitempty"`
+	// +optional
+	// WithName specifies the name of the object. Only for Service
+	//WithName string `json:"withName,omitempty"`
+	// +optional
+	// WithLabels specifies the labels of the object. Only for Pod
+	WithLabels map[string]string `json:"withLabels,omitempty"`
+	// +optional
+	// WithIP specifies the ip. Only for World
+	WithIP PolycubeNetworkPolicyWithIP `json:"withIP,omitempty"`
+	// +optional
+	// OnNamespace specifies the namespaces of the peer. Only for Pod
+	OnNamespace *PolycubeNetworkPolicyNamespaceSelector `json:"onNamespace,omitempty"`
+}
+
+// PolycubeNetworkPolicyWithIP is the IP container
+type PolycubeNetworkPolicyWithIP struct {
+	//	List is a list of IPs in CIDR notation
+	List []string `json:"list,omitempty"`
+}
+
+// PolycubeNetworkPolicyPeerObject is the object peer
+type PolycubeNetworkPolicyPeerObject string
+
+const (
+	// ServicePeer is the Service
+	ServicePeer PolycubeNetworkPolicyPeerObject = "service"
+	// PodPeer is the Pod
+	PodPeer PolycubeNetworkPolicyPeerObject = "pod"
+	// WorldPeer is the World
+	WorldPeer PolycubeNetworkPolicyPeerObject = "world"
+)
+
+// PolycubeNetworkPolicyNamespaceSelector is a selector for namespaces
+type PolycubeNetworkPolicyNamespaceSelector struct {
+	// +optional
+	// WithName is a list of the names of the namespace
+	WithNames []string `json:"withNames,omitempty"`
+	// +optional
+	// WithLabels is the namespace's labels
+	WithLabels map[string]string `json:"withLabels,omitempty"`
+	// +optional
+	// Any specifies any namespace
+	Any *bool `json:"any,omitempty"`
+}
+
+// PolycubeNetworkPolicyProtocol is the level 4 protocol
+type PolycubeNetworkPolicyProtocol string
+
+const (
+	// TCP is TCP
+	TCP PolycubeNetworkPolicyProtocol = "tcp"
+	// UDP is UDP
+	UDP PolycubeNetworkPolicyProtocol = "udp"
+	// ICMP is ICMPv4
+	ICMP PolycubeNetworkPolicyProtocol = "icmp"
+)
+
+// PolycubeNetworkPolicyPorts contains the ports
+type PolycubeNetworkPolicyPorts struct {
+	// +optional
+	// Source is the source port
+	Source int32 `json:"source,omitempty"`
+	// Destination is the destination port
+	Destination int32 `json:"destination,omitempty"`
+}
+
+// PolycubeNetworkPolicyTCPFlag is the TCP flag
+type PolycubeNetworkPolicyTCPFlag string
+
+const (
+	// SYNFlag is SYN
+	SYNFlag PolycubeNetworkPolicyTCPFlag = "SYN"
+	// FINFlag is FIN
+	FINFlag PolycubeNetworkPolicyTCPFlag = "FIN"
+	// ACKFlag is ACK
+	ACKFlag PolycubeNetworkPolicyTCPFlag = "ACK"
+	// RSTFlag is RST
+	RSTFlag PolycubeNetworkPolicyTCPFlag = "RST"
+	// PSHFlag is PSH
+	PSHFlag PolycubeNetworkPolicyTCPFlag = "PSH"
+	// URGFlag is URG
+	URGFlag PolycubeNetworkPolicyTCPFlag = "URG"
+	// CWRFlag is CWR
+	CWRFlag PolycubeNetworkPolicyTCPFlag = "CWR"
+	// ECEFlag is ECE
+	ECEFlag PolycubeNetworkPolicyTCPFlag = "ECE"
+)
+
+// PolycubeNetworkPolicyRuleAction is the action
+type PolycubeNetworkPolicyRuleAction string
+
+const (
+	// DropAction is DROP
+	DropAction PolycubeNetworkPolicyRuleAction = "drop"
+	// AllowAction is Forward
+	AllowAction PolycubeNetworkPolicyRuleAction = "forward"
+)
+
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// PolycubeNetworkPolicyList contains a list of Network Policies.
+type PolycubeNetworkPolicyList struct {
+	metav1.TypeMeta `json:",inline"`
+	// +optional
+	metav1.ListMeta `son:"metadata,omitempty"`
+	// Items contains the network policies
+	Items []PolycubeNetworkPolicy `json:"items"`
+}