| // Copyright (c) HashiCorp, Inc. |
| // SPDX-License-Identifier: MPL-2.0 |
| package container |
| |
| import ( |
| "fmt" |
| "log" |
| "regexp" |
| "strings" |
| "time" |
| |
| "github.com/hashicorp/terraform-plugin-sdk/v2/helper/customdiff" |
| "github.com/hashicorp/terraform-plugin-sdk/v2/helper/id" |
| "github.com/hashicorp/terraform-plugin-sdk/v2/helper/retry" |
| "github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema" |
| "github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation" |
| |
| "github.com/hashicorp/terraform-provider-google-beta/google-beta/tpgresource" |
| transport_tpg "github.com/hashicorp/terraform-provider-google-beta/google-beta/transport" |
| "github.com/hashicorp/terraform-provider-google-beta/google-beta/verify" |
| |
| container "google.golang.org/api/container/v1beta1" |
| ) |
| |
| var clusterIdRegex = regexp.MustCompile("projects/(?P<project>[^/]+)/locations/(?P<location>[^/]+)/clusters/(?P<name>[^/]+)") |
| |
| func ResourceContainerNodePool() *schema.Resource { |
| return &schema.Resource{ |
| Create: resourceContainerNodePoolCreate, |
| Read: resourceContainerNodePoolRead, |
| Update: resourceContainerNodePoolUpdate, |
| Delete: resourceContainerNodePoolDelete, |
| Exists: resourceContainerNodePoolExists, |
| |
| Timeouts: &schema.ResourceTimeout{ |
| Create: schema.DefaultTimeout(30 * time.Minute), |
| Update: schema.DefaultTimeout(30 * time.Minute), |
| Delete: schema.DefaultTimeout(30 * time.Minute), |
| }, |
| |
| SchemaVersion: 1, |
| MigrateState: resourceContainerNodePoolMigrateState, |
| |
| Importer: &schema.ResourceImporter{ |
| State: resourceContainerNodePoolStateImporter, |
| }, |
| |
| CustomizeDiff: customdiff.All( |
| tpgresource.DefaultProviderProject, |
| resourceNodeConfigEmptyGuestAccelerator, |
| ), |
| |
| UseJSONNumber: true, |
| |
| Schema: tpgresource.MergeSchemas( |
| schemaNodePool, |
| map[string]*schema.Schema{ |
| "project": { |
| Type: schema.TypeString, |
| Optional: true, |
| Computed: true, |
| ForceNew: true, |
| Description: `The ID of the project in which to create the node pool. If blank, the provider-configured project will be used.`, |
| }, |
| "cluster": { |
| Type: schema.TypeString, |
| Required: true, |
| ForceNew: true, |
| Description: `The cluster to create the node pool for. Cluster must be present in location provided for zonal clusters.`, |
| }, |
| "location": { |
| Type: schema.TypeString, |
| Optional: true, |
| Computed: true, |
| ForceNew: true, |
| Description: `The location (region or zone) of the cluster.`, |
| }, |
| "operation": { |
| Type: schema.TypeString, |
| Computed: true, |
| }, |
| }), |
| } |
| } |
| |
| var schemaBlueGreenSettings = &schema.Schema{ |
| Type: schema.TypeList, |
| Optional: true, |
| Computed: true, |
| MaxItems: 1, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "standard_rollout_policy": { |
| Type: schema.TypeList, |
| Required: true, |
| MaxItems: 1, |
| Description: `Standard rollout policy is the default policy for blue-green.`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "batch_percentage": { |
| Type: schema.TypeFloat, |
| Optional: true, |
| Computed: true, |
| Description: `Percentage of the blue pool nodes to drain in a batch.`, |
| ValidateFunc: validation.FloatBetween(0.0, 1.0), |
| }, |
| "batch_node_count": { |
| Type: schema.TypeInt, |
| Optional: true, |
| Computed: true, |
| Description: `Number of blue nodes to drain in a batch.`, |
| }, |
| "batch_soak_duration": { |
| Type: schema.TypeString, |
| Optional: true, |
| Computed: true, |
| Description: `Soak time after each batch gets drained.`, |
| }, |
| }, |
| }, |
| }, |
| "node_pool_soak_duration": { |
| Type: schema.TypeString, |
| Optional: true, |
| Computed: true, |
| Description: `Time needed after draining entire blue pool. After this period, blue pool will be cleaned up.`, |
| }, |
| }, |
| }, |
| Description: `Settings for BlueGreen node pool upgrade.`, |
| } |
| |
| var schemaNodePool = map[string]*schema.Schema{ |
| "autoscaling": { |
| Type: schema.TypeList, |
| Optional: true, |
| MaxItems: 1, |
| Description: `Configuration required by cluster autoscaler to adjust the size of the node pool to the current cluster usage.`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "min_node_count": { |
| Type: schema.TypeInt, |
| Optional: true, |
| ValidateFunc: validation.IntAtLeast(0), |
| Description: `Minimum number of nodes per zone in the node pool. Must be >=0 and <= max_node_count. Cannot be used with total limits.`, |
| }, |
| |
| "max_node_count": { |
| Type: schema.TypeInt, |
| Optional: true, |
| ValidateFunc: validation.IntAtLeast(0), |
| Description: `Maximum number of nodes per zone in the node pool. Must be >= min_node_count. Cannot be used with total limits.`, |
| }, |
| |
| "total_min_node_count": { |
| Type: schema.TypeInt, |
| Optional: true, |
| ValidateFunc: validation.IntAtLeast(0), |
| Description: `Minimum number of all nodes in the node pool. Must be >=0 and <= total_max_node_count. Cannot be used with per zone limits.`, |
| }, |
| |
| "total_max_node_count": { |
| Type: schema.TypeInt, |
| Optional: true, |
| ValidateFunc: validation.IntAtLeast(0), |
| Description: `Maximum number of all nodes in the node pool. Must be >= total_min_node_count. Cannot be used with per zone limits.`, |
| }, |
| |
| "location_policy": { |
| Type: schema.TypeString, |
| Optional: true, |
| Computed: true, |
| ValidateFunc: validation.StringInSlice([]string{"BALANCED", "ANY"}, false), |
| Description: `Location policy specifies the algorithm used when scaling-up the node pool. "BALANCED" - Is a best effort policy that aims to balance the sizes of available zones. "ANY" - Instructs the cluster autoscaler to prioritize utilization of unused reservations, and reduces preemption risk for Spot VMs.`, |
| }, |
| }, |
| }, |
| }, |
| |
| "placement_policy": { |
| Type: schema.TypeList, |
| Optional: true, |
| MaxItems: 1, |
| Description: `Specifies the node placement policy`, |
| ForceNew: true, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "type": { |
| Type: schema.TypeString, |
| Required: true, |
| Description: `Type defines the type of placement policy`, |
| }, |
| "policy_name": { |
| Type: schema.TypeString, |
| Optional: true, |
| ForceNew: true, |
| Description: `If set, refers to the name of a custom resource policy supplied by the user. The resource policy must be in the same project and region as the node pool. If not found, InvalidArgument error is returned.`, |
| }, |
| "tpu_topology": { |
| Type: schema.TypeString, |
| Optional: true, |
| Description: `TPU placement topology for pod slice node pool. https://cloud.google.com/tpu/docs/types-topologies#tpu_topologies`, |
| }, |
| }, |
| }, |
| }, |
| |
| "queued_provisioning": { |
| Type: schema.TypeList, |
| Optional: true, |
| MaxItems: 1, |
| Description: `Specifies the configuration of queued provisioning`, |
| ForceNew: true, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "enabled": { |
| Type: schema.TypeBool, |
| Required: true, |
| ForceNew: true, |
| Description: `Whether nodes in this node pool are obtainable solely through the ProvisioningRequest API`, |
| }, |
| }, |
| }, |
| }, |
| |
| "max_pods_per_node": { |
| Type: schema.TypeInt, |
| Optional: true, |
| ForceNew: true, |
| Computed: true, |
| Description: `The maximum number of pods per node in this node pool. Note that this does not work on node pools which are "route-based" - that is, node pools belonging to clusters that do not have IP Aliasing enabled.`, |
| }, |
| |
| "node_locations": { |
| Type: schema.TypeSet, |
| Optional: true, |
| Computed: true, |
| Elem: &schema.Schema{Type: schema.TypeString}, |
| Description: `The list of zones in which the node pool's nodes should be located. Nodes must be in the region of their regional cluster or in the same region as their cluster's zone for zonal clusters. If unspecified, the cluster-level node_locations will be used.`, |
| }, |
| |
| "upgrade_settings": { |
| Type: schema.TypeList, |
| Optional: true, |
| Computed: true, |
| MaxItems: 1, |
| Description: `Specify node upgrade settings to change how many nodes GKE attempts to upgrade at once. The number of nodes upgraded simultaneously is the sum of max_surge and max_unavailable. The maximum number of nodes upgraded simultaneously is limited to 20.`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "max_surge": { |
| Type: schema.TypeInt, |
| Optional: true, |
| Computed: true, |
| ValidateFunc: validation.IntAtLeast(0), |
| Description: `The number of additional nodes that can be added to the node pool during an upgrade. Increasing max_surge raises the number of nodes that can be upgraded simultaneously. Can be set to 0 or greater.`, |
| }, |
| |
| "max_unavailable": { |
| Type: schema.TypeInt, |
| Optional: true, |
| Computed: true, |
| ValidateFunc: validation.IntAtLeast(0), |
| Description: `The number of nodes that can be simultaneously unavailable during an upgrade. Increasing max_unavailable raises the number of nodes that can be upgraded in parallel. Can be set to 0 or greater.`, |
| }, |
| |
| "strategy": { |
| Type: schema.TypeString, |
| Optional: true, |
| Default: "SURGE", |
| ValidateFunc: validation.StringInSlice([]string{"SURGE", "BLUE_GREEN"}, false), |
| Description: `Update strategy for the given nodepool.`, |
| }, |
| |
| "blue_green_settings": schemaBlueGreenSettings, |
| }, |
| }, |
| }, |
| |
| "initial_node_count": { |
| Type: schema.TypeInt, |
| Optional: true, |
| ForceNew: true, |
| Computed: true, |
| Description: `The initial number of nodes for the pool. In regional or multi-zonal clusters, this is the number of nodes per zone. Changing this will force recreation of the resource.`, |
| }, |
| |
| "instance_group_urls": { |
| Type: schema.TypeList, |
| Computed: true, |
| Elem: &schema.Schema{Type: schema.TypeString}, |
| Description: `The resource URLs of the managed instance groups associated with this node pool.`, |
| }, |
| |
| "managed_instance_group_urls": { |
| Type: schema.TypeList, |
| Computed: true, |
| Elem: &schema.Schema{Type: schema.TypeString}, |
| Description: `List of instance group URLs which have been assigned to this node pool.`, |
| }, |
| |
| "management": { |
| Type: schema.TypeList, |
| Optional: true, |
| Computed: true, |
| MaxItems: 1, |
| Description: `Node management configuration, wherein auto-repair and auto-upgrade is configured.`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "auto_repair": { |
| Type: schema.TypeBool, |
| Optional: true, |
| Default: true, |
| Description: `Whether the nodes will be automatically repaired. Enabled by default.`, |
| }, |
| |
| "auto_upgrade": { |
| Type: schema.TypeBool, |
| Optional: true, |
| Default: true, |
| Description: `Whether the nodes will be automatically upgraded. Enabled by default.`, |
| }, |
| }, |
| }, |
| }, |
| |
| "name": { |
| Type: schema.TypeString, |
| Optional: true, |
| Computed: true, |
| ForceNew: true, |
| Description: `The name of the node pool. If left blank, Terraform will auto-generate a unique name.`, |
| }, |
| |
| "name_prefix": { |
| Type: schema.TypeString, |
| Optional: true, |
| Computed: true, |
| ForceNew: true, |
| Description: `Creates a unique name for the node pool beginning with the specified prefix. Conflicts with name.`, |
| }, |
| |
| "node_config": schemaNodeConfig(), |
| |
| "node_count": { |
| Type: schema.TypeInt, |
| Optional: true, |
| Computed: true, |
| ValidateFunc: validation.IntAtLeast(0), |
| Description: `The number of nodes per instance group. This field can be used to update the number of nodes per instance group but should not be used alongside autoscaling.`, |
| }, |
| |
| "version": { |
| Type: schema.TypeString, |
| Optional: true, |
| Computed: true, |
| Description: `The Kubernetes version for the nodes in this pool. Note that if this field and auto_upgrade are both specified, they will fight each other for what the node version should be, so setting both is highly discouraged. While a fuzzy version can be specified, it's recommended that you specify explicit versions as Terraform will see spurious diffs when fuzzy versions are used. See the google_container_engine_versions data source's version_prefix field to approximate fuzzy versions in a Terraform-compatible way.`, |
| }, |
| |
| "network_config": { |
| Type: schema.TypeList, |
| Optional: true, |
| Computed: true, |
| MaxItems: 1, |
| Description: `Networking configuration for this NodePool. If specified, it overrides the cluster-level defaults.`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "create_pod_range": { |
| Type: schema.TypeBool, |
| Optional: true, |
| ForceNew: true, |
| Description: `Whether to create a new range for pod IPs in this node pool. Defaults are provided for pod_range and pod_ipv4_cidr_block if they are not specified.`, |
| }, |
| "enable_private_nodes": { |
| Type: schema.TypeBool, |
| Optional: true, |
| Computed: true, |
| Description: `Whether nodes have internal IP addresses only.`, |
| }, |
| "pod_range": { |
| Type: schema.TypeString, |
| Optional: true, |
| ForceNew: true, |
| Computed: true, |
| Description: `The ID of the secondary range for pod IPs. If create_pod_range is true, this ID is used for the new range. If create_pod_range is false, uses an existing secondary range with this ID.`, |
| }, |
| "pod_ipv4_cidr_block": { |
| Type: schema.TypeString, |
| Optional: true, |
| ForceNew: true, |
| Computed: true, |
| ValidateFunc: verify.ValidateIpCidrRange, |
| Description: `The IP address range for pod IPs in this node pool. Only applicable if create_pod_range is true. Set to blank to have a range chosen with the default size. Set to /netmask (e.g. /14) to have a range chosen with a specific netmask. Set to a CIDR notation (e.g. 10.96.0.0/14) to pick a specific range to use.`, |
| }, |
| "additional_node_network_configs": { |
| Type: schema.TypeList, |
| Optional: true, |
| ForceNew: true, |
| Description: `We specify the additional node networks for this node pool using this list. Each node network corresponds to an additional interface`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "network": { |
| Type: schema.TypeString, |
| Optional: true, |
| ForceNew: true, |
| Description: `Name of the VPC where the additional interface belongs.`, |
| }, |
| "subnetwork": { |
| Type: schema.TypeString, |
| Optional: true, |
| ForceNew: true, |
| Description: `Name of the subnetwork where the additional interface belongs.`, |
| }, |
| }, |
| }, |
| }, |
| "additional_pod_network_configs": { |
| Type: schema.TypeList, |
| Optional: true, |
| ForceNew: true, |
| Description: `We specify the additional pod networks for this node pool using this list. Each pod network corresponds to an additional alias IP range for the node`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "subnetwork": { |
| Type: schema.TypeString, |
| Optional: true, |
| ForceNew: true, |
| Description: `Name of the subnetwork where the additional pod network belongs.`, |
| }, |
| "secondary_pod_range": { |
| Type: schema.TypeString, |
| Optional: true, |
| ForceNew: true, |
| Description: `The name of the secondary range on the subnet which provides IP address for this pod range.`, |
| }, |
| "max_pods_per_node": { |
| Type: schema.TypeInt, |
| Optional: true, |
| ForceNew: true, |
| Computed: true, |
| Description: `The maximum number of pods per node which use this pod network.`, |
| }, |
| }, |
| }, |
| }, |
| "pod_cidr_overprovision_config": { |
| Type: schema.TypeList, |
| Optional: true, |
| Computed: true, |
| ForceNew: true, |
| MaxItems: 1, |
| Description: `Configuration for node-pool level pod cidr overprovision. If not set, the cluster level setting will be inherited`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "disabled": { |
| Type: schema.TypeBool, |
| Required: true, |
| }, |
| }, |
| }, |
| }, |
| "network_performance_config": { |
| Type: schema.TypeList, |
| Optional: true, |
| MaxItems: 1, |
| Description: `Network bandwidth tier configuration.`, |
| Elem: &schema.Resource{ |
| Schema: map[string]*schema.Schema{ |
| "total_egress_bandwidth_tier": { |
| Type: schema.TypeString, |
| Required: true, |
| Description: `Specifies the total network bandwidth tier for the NodePool.`, |
| }, |
| }, |
| }, |
| }, |
| }, |
| }, |
| }, |
| } |
| |
| type NodePoolInformation struct { |
| project string |
| location string |
| cluster string |
| } |
| |
| func (nodePoolInformation *NodePoolInformation) fullyQualifiedName(nodeName string) string { |
| return fmt.Sprintf( |
| "projects/%s/locations/%s/clusters/%s/nodePools/%s", |
| nodePoolInformation.project, |
| nodePoolInformation.location, |
| nodePoolInformation.cluster, |
| nodeName, |
| ) |
| } |
| |
| func (nodePoolInformation *NodePoolInformation) parent() string { |
| return fmt.Sprintf( |
| "projects/%s/locations/%s/clusters/%s", |
| nodePoolInformation.project, |
| nodePoolInformation.location, |
| nodePoolInformation.cluster, |
| ) |
| } |
| |
| func (nodePoolInformation *NodePoolInformation) clusterLockKey() string { |
| return containerClusterMutexKey(nodePoolInformation.project, |
| nodePoolInformation.location, nodePoolInformation.cluster) |
| } |
| |
| func (nodePoolInformation *NodePoolInformation) nodePoolLockKey(nodePoolName string) string { |
| return fmt.Sprintf( |
| "projects/%s/locations/%s/clusters/%s/nodePools/%s", |
| nodePoolInformation.project, |
| nodePoolInformation.location, |
| nodePoolInformation.cluster, |
| nodePoolName, |
| ) |
| } |
| |
| func extractNodePoolInformation(d *schema.ResourceData, config *transport_tpg.Config) (*NodePoolInformation, error) { |
| cluster := d.Get("cluster").(string) |
| |
| if fieldValues := clusterIdRegex.FindStringSubmatch(cluster); fieldValues != nil { |
| log.Printf("[DEBUG] matching parent cluster %s to regex %s", cluster, clusterIdRegex.String()) |
| return &NodePoolInformation{ |
| project: fieldValues[1], |
| location: fieldValues[2], |
| cluster: fieldValues[3], |
| }, nil |
| } |
| log.Printf("[DEBUG] parent cluster %s does not match regex %s", cluster, clusterIdRegex.String()) |
| |
| project, err := tpgresource.GetProject(d, config) |
| if err != nil { |
| return nil, err |
| } |
| |
| location, err := tpgresource.GetLocation(d, config) |
| if err != nil { |
| return nil, err |
| } |
| |
| return &NodePoolInformation{ |
| project: project, |
| location: location, |
| cluster: cluster, |
| }, nil |
| } |
| |
| func resourceContainerNodePoolCreate(d *schema.ResourceData, meta interface{}) error { |
| config := meta.(*transport_tpg.Config) |
| userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent) |
| if err != nil { |
| return err |
| } |
| |
| nodePoolInfo, err := extractNodePoolInformation(d, config) |
| if err != nil { |
| return err |
| } |
| |
| nodePool, err := expandNodePool(d, "") |
| if err != nil { |
| return err |
| } |
| |
| // Acquire read-lock on cluster. |
| clusterLockKey := nodePoolInfo.clusterLockKey() |
| transport_tpg.MutexStore.RLock(clusterLockKey) |
| defer transport_tpg.MutexStore.RUnlock(clusterLockKey) |
| |
| // Acquire write-lock on nodepool. |
| npLockKey := nodePoolInfo.nodePoolLockKey(nodePool.Name) |
| transport_tpg.MutexStore.Lock(npLockKey) |
| defer transport_tpg.MutexStore.Unlock(npLockKey) |
| |
| req := &container.CreateNodePoolRequest{ |
| NodePool: nodePool, |
| } |
| |
| timeout := d.Timeout(schema.TimeoutCreate) |
| startTime := time.Now() |
| |
| // we attempt to prefetch the node pool to make sure it doesn't exist before creation |
| var id = fmt.Sprintf("projects/%s/locations/%s/clusters/%s/nodePools/%s", nodePoolInfo.project, nodePoolInfo.location, nodePoolInfo.cluster, nodePool.Name) |
| name := getNodePoolName(id) |
| clusterNodePoolsGetCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Get(nodePoolInfo.fullyQualifiedName(name)) |
| if config.UserProjectOverride { |
| clusterNodePoolsGetCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| _, err = clusterNodePoolsGetCall.Do() |
| if err != nil && transport_tpg.IsGoogleApiErrorWithCode(err, 404) { |
| // Set the ID before we attempt to create if the resource doesn't exist. That |
| // way, if we receive an error but the resource is created anyway, it will be |
| // refreshed on the next call to apply. |
| d.SetId(id) |
| } else if err == nil { |
| return fmt.Errorf("resource - %s - already exists", id) |
| } |
| |
| var operation *container.Operation |
| err = retry.Retry(timeout, func() *retry.RetryError { |
| clusterNodePoolsCreateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Create(nodePoolInfo.parent(), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsCreateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| operation, err = clusterNodePoolsCreateCall.Do() |
| |
| if err != nil { |
| if tpgresource.IsFailedPreconditionError(err) || tpgresource.IsQuotaError(err) { |
| // We get failed precondition errors if the cluster is updating |
| // while we try to add the node pool. |
| // We get quota errors if there the number of running concurrent |
| // operations reaches the quota. |
| return retry.RetryableError(err) |
| } |
| return retry.NonRetryableError(err) |
| } |
| return nil |
| }) |
| if err != nil { |
| return fmt.Errorf("error creating NodePool: %s", err) |
| } |
| timeout -= time.Since(startTime) |
| |
| waitErr := ContainerOperationWait(config, |
| operation, nodePoolInfo.project, |
| nodePoolInfo.location, "creating GKE NodePool", userAgent, timeout) |
| |
| if waitErr != nil { |
| // Check if the create operation failed because Terraform was prematurely terminated. If it was we can persist the |
| // operation id to state so that a subsequent refresh of this resource will wait until the operation has terminated |
| // before attempting to Read the state of the cluster. This allows a graceful resumption of a Create that was killed |
| // by the upstream Terraform process exiting early such as a sigterm. |
| select { |
| case <-config.Context.Done(): |
| log.Printf("[DEBUG] Persisting %s so this operation can be resumed \n", operation.Name) |
| if err := d.Set("operation", operation.Name); err != nil { |
| return fmt.Errorf("Error setting operation: %s", err) |
| } |
| return nil |
| default: |
| // leaving default case to ensure this is non blocking |
| } |
| // Check if resource was created but apply timed out. |
| // Common cause for that is GCE_STOCKOUT which will wait for resources and return error after timeout, |
| // but in fact nodepool will be created so we have to capture that in state. |
| _, err = clusterNodePoolsGetCall.Do() |
| if err != nil { |
| d.SetId("") |
| return waitErr |
| } |
| } |
| |
| log.Printf("[INFO] GKE NodePool %s has been created", nodePool.Name) |
| |
| if err = resourceContainerNodePoolRead(d, meta); err != nil { |
| return err |
| } |
| |
| state, err := containerNodePoolAwaitRestingState(config, d.Id(), nodePoolInfo.project, userAgent, d.Timeout(schema.TimeoutCreate)) |
| if err != nil { |
| return err |
| } |
| |
| if containerNodePoolRestingStates[state] == ErrorState { |
| return fmt.Errorf("NodePool %s was created in the error state %q", nodePool.Name, state) |
| } |
| |
| return nil |
| } |
| |
| func resourceContainerNodePoolRead(d *schema.ResourceData, meta interface{}) error { |
| config := meta.(*transport_tpg.Config) |
| userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent) |
| if err != nil { |
| return err |
| } |
| |
| nodePoolInfo, err := extractNodePoolInformation(d, config) |
| if err != nil { |
| return err |
| } |
| |
| operation := d.Get("operation").(string) |
| if operation != "" { |
| log.Printf("[DEBUG] in progress operation detected at %v, attempting to resume", operation) |
| op := &container.Operation{ |
| Name: operation, |
| } |
| if err := d.Set("operation", ""); err != nil { |
| return fmt.Errorf("Error setting operation: %s", err) |
| } |
| waitErr := ContainerOperationWait(config, op, nodePoolInfo.project, nodePoolInfo.location, "resuming GKE node pool", userAgent, d.Timeout(schema.TimeoutRead)) |
| if waitErr != nil { |
| return waitErr |
| } |
| } |
| |
| name := getNodePoolName(d.Id()) |
| |
| clusterNodePoolsGetCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Get(nodePoolInfo.fullyQualifiedName(name)) |
| if config.UserProjectOverride { |
| clusterNodePoolsGetCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| nodePool, err := clusterNodePoolsGetCall.Do() |
| if err != nil { |
| return transport_tpg.HandleNotFoundError(err, d, fmt.Sprintf("NodePool %q from cluster %q", name, nodePoolInfo.cluster)) |
| } |
| |
| npMap, err := flattenNodePool(d, config, nodePool, "") |
| if err != nil { |
| return err |
| } |
| |
| for k, v := range npMap { |
| if err := d.Set(k, v); err != nil { |
| return fmt.Errorf("Error setting %s: %s", k, err) |
| } |
| } |
| |
| if err := d.Set("location", nodePoolInfo.location); err != nil { |
| return fmt.Errorf("Error setting location: %s", err) |
| } |
| if err := d.Set("project", nodePoolInfo.project); err != nil { |
| return fmt.Errorf("Error setting project: %s", err) |
| } |
| |
| return nil |
| } |
| |
| func resourceContainerNodePoolUpdate(d *schema.ResourceData, meta interface{}) error { |
| config := meta.(*transport_tpg.Config) |
| userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent) |
| if err != nil { |
| return err |
| } |
| |
| nodePoolInfo, err := extractNodePoolInformation(d, config) |
| if err != nil { |
| return err |
| } |
| name := getNodePoolName(d.Id()) |
| |
| _, err = containerNodePoolAwaitRestingState(config, nodePoolInfo.fullyQualifiedName(name), nodePoolInfo.project, userAgent, d.Timeout(schema.TimeoutUpdate)) |
| if err != nil { |
| return err |
| } |
| |
| d.Partial(true) |
| if err := nodePoolUpdate(d, meta, nodePoolInfo, "", d.Timeout(schema.TimeoutUpdate)); err != nil { |
| return err |
| } |
| d.Partial(false) |
| |
| //Check cluster is in running state |
| _, err = containerClusterAwaitRestingState(config, nodePoolInfo.project, nodePoolInfo.location, nodePoolInfo.cluster, userAgent, d.Timeout(schema.TimeoutCreate)) |
| if err != nil { |
| return err |
| } |
| _, err = containerNodePoolAwaitRestingState(config, nodePoolInfo.fullyQualifiedName(name), nodePoolInfo.project, userAgent, d.Timeout(schema.TimeoutUpdate)) |
| if err != nil { |
| return err |
| } |
| |
| return resourceContainerNodePoolRead(d, meta) |
| } |
| |
| func resourceContainerNodePoolDelete(d *schema.ResourceData, meta interface{}) error { |
| config := meta.(*transport_tpg.Config) |
| userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent) |
| if err != nil { |
| return err |
| } |
| |
| nodePoolInfo, err := extractNodePoolInformation(d, config) |
| if err != nil { |
| return err |
| } |
| |
| name := getNodePoolName(d.Id()) |
| |
| _, err = containerNodePoolAwaitRestingState(config, nodePoolInfo.fullyQualifiedName(name), nodePoolInfo.project, userAgent, d.Timeout(schema.TimeoutDelete)) |
| if err != nil { |
| // If the node pool doesn't get created and then we try to delete it, we get an error, |
| // but I don't think we need an error during delete if it doesn't exist |
| if transport_tpg.IsGoogleApiErrorWithCode(err, 404) { |
| log.Printf("node pool %q not found, doesn't need to be cleaned up", name) |
| return nil |
| } else { |
| return err |
| } |
| } |
| |
| // Acquire read-lock on cluster. |
| clusterLockKey := nodePoolInfo.clusterLockKey() |
| transport_tpg.MutexStore.RLock(clusterLockKey) |
| defer transport_tpg.MutexStore.RUnlock(clusterLockKey) |
| |
| // Acquire write-lock on nodepool. |
| npLockKey := nodePoolInfo.nodePoolLockKey(name) |
| transport_tpg.MutexStore.Lock(npLockKey) |
| defer transport_tpg.MutexStore.Unlock(npLockKey) |
| |
| timeout := d.Timeout(schema.TimeoutDelete) |
| startTime := time.Now() |
| |
| var operation *container.Operation |
| err = retry.Retry(timeout, func() *retry.RetryError { |
| clusterNodePoolsDeleteCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Delete(nodePoolInfo.fullyQualifiedName(name)) |
| if config.UserProjectOverride { |
| clusterNodePoolsDeleteCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| operation, err = clusterNodePoolsDeleteCall.Do() |
| |
| if err != nil { |
| if tpgresource.IsFailedPreconditionError(err) || tpgresource.IsQuotaError(err) { |
| // We get failed precondition errors if the cluster is updating |
| // while we try to delete the node pool. |
| // We get quota errors if there the number of running concurrent |
| // operations reaches the quota. |
| return retry.RetryableError(err) |
| } |
| return retry.NonRetryableError(err) |
| } |
| |
| return nil |
| }) |
| |
| if err != nil { |
| return fmt.Errorf("Error deleting NodePool: %s", err) |
| } |
| |
| timeout -= time.Since(startTime) |
| |
| // Wait until it's deleted |
| waitErr := ContainerOperationWait(config, operation, nodePoolInfo.project, nodePoolInfo.location, "deleting GKE NodePool", userAgent, timeout) |
| if waitErr != nil { |
| return waitErr |
| } |
| |
| log.Printf("[INFO] GKE NodePool %s has been deleted", d.Id()) |
| |
| d.SetId("") |
| |
| return nil |
| } |
| |
| func resourceContainerNodePoolExists(d *schema.ResourceData, meta interface{}) (bool, error) { |
| config := meta.(*transport_tpg.Config) |
| nodePoolInfo, err := extractNodePoolInformation(d, config) |
| if err != nil { |
| return false, err |
| } |
| |
| userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent) |
| if err != nil { |
| return false, err |
| } |
| |
| name := getNodePoolName(d.Id()) |
| clusterNodePoolsGetCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Get(nodePoolInfo.fullyQualifiedName(name)) |
| if config.UserProjectOverride { |
| clusterNodePoolsGetCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| _, err = clusterNodePoolsGetCall.Do() |
| |
| if err != nil { |
| if err = transport_tpg.HandleNotFoundError(err, d, fmt.Sprintf("Container NodePool %s", name)); err == nil { |
| return false, nil |
| } |
| // There was some other error in reading the resource |
| return true, err |
| } |
| return true, nil |
| } |
| |
| func resourceContainerNodePoolStateImporter(d *schema.ResourceData, meta interface{}) ([]*schema.ResourceData, error) { |
| config := meta.(*transport_tpg.Config) |
| |
| userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent) |
| if err != nil { |
| return nil, err |
| } |
| |
| if err := tpgresource.ParseImportId([]string{"projects/(?P<project>[^/]+)/locations/(?P<location>[^/]+)/clusters/(?P<cluster>[^/]+)/nodePools/(?P<name>[^/]+)", "(?P<project>[^/]+)/(?P<location>[^/]+)/(?P<cluster>[^/]+)/(?P<name>[^/]+)", "(?P<location>[^/]+)/(?P<cluster>[^/]+)/(?P<name>[^/]+)"}, d, config); err != nil { |
| return nil, err |
| } |
| |
| id, err := tpgresource.ReplaceVars(d, config, "projects/{{project}}/locations/{{location}}/clusters/{{cluster}}/nodePools/{{name}}") |
| if err != nil { |
| return nil, err |
| } |
| |
| d.SetId(id) |
| |
| project, err := tpgresource.GetProject(d, config) |
| if err != nil { |
| return nil, err |
| } |
| |
| nodePoolInfo, err := extractNodePoolInformation(d, config) |
| if err != nil { |
| return nil, err |
| } |
| |
| //Check cluster is in running state |
| _, err = containerClusterAwaitRestingState(config, nodePoolInfo.project, nodePoolInfo.location, nodePoolInfo.cluster, userAgent, d.Timeout(schema.TimeoutCreate)) |
| if err != nil { |
| return nil, err |
| } |
| |
| if _, err := containerNodePoolAwaitRestingState(config, d.Id(), project, userAgent, d.Timeout(schema.TimeoutCreate)); err != nil { |
| return nil, err |
| } |
| |
| return []*schema.ResourceData{d}, nil |
| } |
| |
| func expandNodePool(d *schema.ResourceData, prefix string) (*container.NodePool, error) { |
| var name string |
| if v, ok := d.GetOk(prefix + "name"); ok { |
| if _, ok := d.GetOk(prefix + "name_prefix"); ok { |
| return nil, fmt.Errorf("Cannot specify both name and name_prefix for a node_pool") |
| } |
| name = v.(string) |
| } else if v, ok := d.GetOk(prefix + "name_prefix"); ok { |
| name = id.PrefixedUniqueId(v.(string)) |
| } else { |
| name = id.UniqueId() |
| } |
| |
| nodeCount := 0 |
| if initialNodeCount, ok := d.GetOk(prefix + "initial_node_count"); ok { |
| nodeCount = initialNodeCount.(int) |
| } |
| if nc, ok := d.GetOk(prefix + "node_count"); ok { |
| if nodeCount != 0 { |
| return nil, fmt.Errorf("Cannot set both initial_node_count and node_count on node pool %s", name) |
| } |
| nodeCount = nc.(int) |
| } |
| |
| var locations []string |
| if v, ok := d.GetOk("node_locations"); ok && v.(*schema.Set).Len() > 0 { |
| locations = tpgresource.ConvertStringSet(v.(*schema.Set)) |
| } |
| |
| np := &container.NodePool{ |
| Name: name, |
| InitialNodeCount: int64(nodeCount), |
| Config: expandNodeConfig(d.Get(prefix + "node_config")), |
| Locations: locations, |
| Version: d.Get(prefix + "version").(string), |
| NetworkConfig: expandNodeNetworkConfig(d.Get(prefix + "network_config")), |
| } |
| |
| if v, ok := d.GetOk(prefix + "autoscaling"); ok { |
| if autoscaling, ok := v.([]interface{})[0].(map[string]interface{}); ok { |
| np.Autoscaling = &container.NodePoolAutoscaling{ |
| Enabled: true, |
| MinNodeCount: int64(autoscaling["min_node_count"].(int)), |
| MaxNodeCount: int64(autoscaling["max_node_count"].(int)), |
| TotalMinNodeCount: int64(autoscaling["total_min_node_count"].(int)), |
| TotalMaxNodeCount: int64(autoscaling["total_max_node_count"].(int)), |
| LocationPolicy: autoscaling["location_policy"].(string), |
| ForceSendFields: []string{"MinNodeCount", "MaxNodeCount", "TotalMinNodeCount", "TotalMaxNodeCount"}, |
| } |
| } |
| } |
| |
| if v, ok := d.GetOk(prefix + "placement_policy"); ok { |
| if v.([]interface{}) != nil && v.([]interface{})[0] != nil { |
| placement_policy := v.([]interface{})[0].(map[string]interface{}) |
| np.PlacementPolicy = &container.PlacementPolicy{ |
| Type: placement_policy["type"].(string), |
| PolicyName: placement_policy["policy_name"].(string), |
| TpuTopology: placement_policy["tpu_topology"].(string), |
| } |
| } |
| } |
| |
| if v, ok := d.GetOk(prefix + "queued_provisioning"); ok { |
| if v.([]interface{}) != nil && v.([]interface{})[0] != nil { |
| queued_provisioning := v.([]interface{})[0].(map[string]interface{}) |
| np.QueuedProvisioning = &container.QueuedProvisioning{ |
| Enabled: queued_provisioning["enabled"].(bool), |
| } |
| } |
| } |
| |
| if v, ok := d.GetOk(prefix + "max_pods_per_node"); ok { |
| np.MaxPodsConstraint = &container.MaxPodsConstraint{ |
| MaxPodsPerNode: int64(v.(int)), |
| } |
| } |
| |
| if v, ok := d.GetOk(prefix + "management"); ok { |
| managementConfig := v.([]interface{})[0].(map[string]interface{}) |
| np.Management = &container.NodeManagement{} |
| |
| if v, ok := managementConfig["auto_repair"]; ok { |
| np.Management.AutoRepair = v.(bool) |
| } |
| |
| if v, ok := managementConfig["auto_upgrade"]; ok { |
| np.Management.AutoUpgrade = v.(bool) |
| } |
| } |
| |
| if v, ok := d.GetOk(prefix + "upgrade_settings"); ok { |
| upgradeSettingsConfig := v.([]interface{})[0].(map[string]interface{}) |
| np.UpgradeSettings = &container.UpgradeSettings{} |
| |
| if v, ok := upgradeSettingsConfig["strategy"]; ok { |
| np.UpgradeSettings.Strategy = v.(string) |
| } |
| |
| if d.HasChange(prefix + "upgrade_settings.0.max_surge") { |
| if np.UpgradeSettings.Strategy != "SURGE" { |
| return nil, fmt.Errorf("Surge upgrade settings may not be changed when surge strategy is not enabled") |
| } |
| if v, ok := upgradeSettingsConfig["max_surge"]; ok { |
| np.UpgradeSettings.MaxSurge = int64(v.(int)) |
| } |
| } |
| |
| if d.HasChange(prefix + "upgrade_settings.0.max_unavailable") { |
| if np.UpgradeSettings.Strategy != "SURGE" { |
| return nil, fmt.Errorf("Surge upgrade settings may not be changed when surge strategy is not enabled") |
| } |
| if v, ok := upgradeSettingsConfig["max_unavailable"]; ok { |
| np.UpgradeSettings.MaxUnavailable = int64(v.(int)) |
| } |
| } |
| |
| if v, ok := upgradeSettingsConfig["blue_green_settings"]; ok && len(v.([]interface{})) > 0 { |
| blueGreenSettingsConfig := v.([]interface{})[0].(map[string]interface{}) |
| np.UpgradeSettings.BlueGreenSettings = &container.BlueGreenSettings{} |
| |
| if np.UpgradeSettings.Strategy != "BLUE_GREEN" { |
| return nil, fmt.Errorf("Blue-green upgrade settings may not be changed when blue-green strategy is not enabled") |
| } |
| |
| if v, ok := blueGreenSettingsConfig["node_pool_soak_duration"]; ok { |
| np.UpgradeSettings.BlueGreenSettings.NodePoolSoakDuration = v.(string) |
| } |
| |
| if v, ok := blueGreenSettingsConfig["standard_rollout_policy"]; ok && len(v.([]interface{})) > 0 { |
| standardRolloutPolicyConfig := v.([]interface{})[0].(map[string]interface{}) |
| standardRolloutPolicy := &container.StandardRolloutPolicy{} |
| |
| if v, ok := standardRolloutPolicyConfig["batch_soak_duration"]; ok { |
| standardRolloutPolicy.BatchSoakDuration = v.(string) |
| } |
| if v, ok := standardRolloutPolicyConfig["batch_node_count"]; ok { |
| standardRolloutPolicy.BatchNodeCount = int64(v.(int)) |
| } |
| if v, ok := standardRolloutPolicyConfig["batch_percentage"]; ok { |
| standardRolloutPolicy.BatchPercentage = v.(float64) |
| } |
| |
| np.UpgradeSettings.BlueGreenSettings.StandardRolloutPolicy = standardRolloutPolicy |
| } |
| } |
| } |
| |
| return np, nil |
| } |
| |
| func flattenNodePoolStandardRolloutPolicy(rp *container.StandardRolloutPolicy) []map[string]interface{} { |
| if rp == nil { |
| return nil |
| } |
| |
| return []map[string]interface{}{ |
| { |
| "batch_node_count": rp.BatchNodeCount, |
| "batch_percentage": rp.BatchPercentage, |
| "batch_soak_duration": rp.BatchSoakDuration, |
| }, |
| } |
| } |
| |
| func flattenNodePoolBlueGreenSettings(bg *container.BlueGreenSettings) []map[string]interface{} { |
| if bg == nil { |
| return nil |
| } |
| return []map[string]interface{}{ |
| { |
| "node_pool_soak_duration": bg.NodePoolSoakDuration, |
| "standard_rollout_policy": flattenNodePoolStandardRolloutPolicy(bg.StandardRolloutPolicy), |
| }, |
| } |
| } |
| |
| func flattenNodePoolUpgradeSettings(us *container.UpgradeSettings) []map[string]interface{} { |
| if us == nil { |
| return nil |
| } |
| |
| upgradeSettings := make(map[string]interface{}) |
| |
| upgradeSettings["blue_green_settings"] = flattenNodePoolBlueGreenSettings(us.BlueGreenSettings) |
| upgradeSettings["max_surge"] = us.MaxSurge |
| upgradeSettings["max_unavailable"] = us.MaxUnavailable |
| |
| upgradeSettings["strategy"] = us.Strategy |
| return []map[string]interface{}{upgradeSettings} |
| } |
| |
| func flattenNodePool(d *schema.ResourceData, config *transport_tpg.Config, np *container.NodePool, prefix string) (map[string]interface{}, error) { |
| userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent) |
| if err != nil { |
| return nil, err |
| } |
| |
| // Node pools don't expose the current node count in their API, so read the |
| // instance groups instead. They should all have the same size, but in case a resize |
| // failed or something else strange happened, we'll just use the average size. |
| size := 0 |
| igmUrls := []string{} |
| managedIgmUrls := []string{} |
| for _, url := range np.InstanceGroupUrls { |
| // retrieve instance group manager (InstanceGroupUrls are actually URLs for InstanceGroupManagers) |
| matches := instanceGroupManagerURL.FindStringSubmatch(url) |
| if len(matches) < 4 { |
| return nil, fmt.Errorf("Error reading instance group manage URL '%q'", url) |
| } |
| igm, err := config.NewComputeClient(userAgent).InstanceGroupManagers.Get(matches[1], matches[2], matches[3]).Do() |
| if transport_tpg.IsGoogleApiErrorWithCode(err, 404) { |
| // The IGM URL in is stale; don't include it |
| continue |
| } |
| if err != nil { |
| return nil, fmt.Errorf("Error reading instance group manager returned as an instance group URL: %q", err) |
| } |
| size += int(igm.TargetSize) |
| igmUrls = append(igmUrls, url) |
| managedIgmUrls = append(managedIgmUrls, igm.InstanceGroup) |
| } |
| nodeCount := 0 |
| if len(igmUrls) > 0 { |
| nodeCount = size / len(igmUrls) |
| } |
| nodePool := map[string]interface{}{ |
| "name": np.Name, |
| "name_prefix": d.Get(prefix + "name_prefix"), |
| "initial_node_count": np.InitialNodeCount, |
| "node_locations": schema.NewSet(schema.HashString, tpgresource.ConvertStringArrToInterface(np.Locations)), |
| "node_count": nodeCount, |
| "node_config": flattenNodeConfig(np.Config, d.Get(prefix+"node_config")), |
| "instance_group_urls": igmUrls, |
| "managed_instance_group_urls": managedIgmUrls, |
| "version": np.Version, |
| "network_config": flattenNodeNetworkConfig(np.NetworkConfig, d, prefix), |
| } |
| |
| if np.Autoscaling != nil { |
| if np.Autoscaling.Enabled { |
| nodePool["autoscaling"] = []map[string]interface{}{ |
| { |
| "min_node_count": np.Autoscaling.MinNodeCount, |
| "max_node_count": np.Autoscaling.MaxNodeCount, |
| "total_min_node_count": np.Autoscaling.TotalMinNodeCount, |
| "total_max_node_count": np.Autoscaling.TotalMaxNodeCount, |
| "location_policy": np.Autoscaling.LocationPolicy, |
| }, |
| } |
| } else { |
| nodePool["autoscaling"] = []map[string]interface{}{} |
| } |
| } |
| |
| if np.PlacementPolicy != nil { |
| nodePool["placement_policy"] = []map[string]interface{}{ |
| { |
| "type": np.PlacementPolicy.Type, |
| "policy_name": np.PlacementPolicy.PolicyName, |
| "tpu_topology": np.PlacementPolicy.TpuTopology, |
| }, |
| } |
| } |
| |
| if np.QueuedProvisioning != nil { |
| nodePool["queued_provisioning"] = []map[string]interface{}{ |
| { |
| "enabled": np.QueuedProvisioning.Enabled, |
| }, |
| } |
| } |
| |
| if np.MaxPodsConstraint != nil { |
| nodePool["max_pods_per_node"] = np.MaxPodsConstraint.MaxPodsPerNode |
| } |
| |
| nodePool["management"] = []map[string]interface{}{ |
| { |
| "auto_repair": np.Management.AutoRepair, |
| "auto_upgrade": np.Management.AutoUpgrade, |
| }, |
| } |
| |
| if np.UpgradeSettings != nil { |
| nodePool["upgrade_settings"] = flattenNodePoolUpgradeSettings(np.UpgradeSettings) |
| } else { |
| delete(nodePool, "upgrade_settings") |
| } |
| |
| return nodePool, nil |
| } |
| |
| func flattenNodeNetworkConfig(c *container.NodeNetworkConfig, d *schema.ResourceData, prefix string) []map[string]interface{} { |
| result := []map[string]interface{}{} |
| if c != nil { |
| result = append(result, map[string]interface{}{ |
| "create_pod_range": d.Get(prefix + "network_config.0.create_pod_range"), // API doesn't return this value so we set the old one. Field is ForceNew + Required |
| "pod_ipv4_cidr_block": c.PodIpv4CidrBlock, |
| "pod_range": c.PodRange, |
| "enable_private_nodes": c.EnablePrivateNodes, |
| "pod_cidr_overprovision_config": flattenPodCidrOverprovisionConfig(c.PodCidrOverprovisionConfig), |
| "network_performance_config": flattenNodeNetworkPerformanceConfig(c.NetworkPerformanceConfig), |
| "additional_node_network_configs": flattenAdditionalNodeNetworkConfig(c.AdditionalNodeNetworkConfigs), |
| "additional_pod_network_configs": flattenAdditionalPodNetworkConfig(c.AdditionalPodNetworkConfigs), |
| }) |
| } |
| return result |
| } |
| |
| func flattenNodeNetworkPerformanceConfig(c *container.NetworkPerformanceConfig) []map[string]interface{} { |
| result := []map[string]interface{}{} |
| if c != nil { |
| result = append(result, map[string]interface{}{ |
| "total_egress_bandwidth_tier": c.TotalEgressBandwidthTier, |
| }) |
| } |
| return result |
| } |
| |
| func flattenAdditionalNodeNetworkConfig(c []*container.AdditionalNodeNetworkConfig) []map[string]interface{} { |
| if c == nil { |
| return nil |
| } |
| |
| result := []map[string]interface{}{} |
| for _, nodeNetworkConfig := range c { |
| result = append(result, map[string]interface{}{ |
| "network": nodeNetworkConfig.Network, |
| "subnetwork": nodeNetworkConfig.Subnetwork, |
| }) |
| } |
| return result |
| } |
| |
| func flattenAdditionalPodNetworkConfig(c []*container.AdditionalPodNetworkConfig) []map[string]interface{} { |
| if c == nil { |
| return nil |
| } |
| |
| result := []map[string]interface{}{} |
| for _, podNetworkConfig := range c { |
| result = append(result, map[string]interface{}{ |
| "subnetwork": podNetworkConfig.Subnetwork, |
| "secondary_pod_range": podNetworkConfig.SecondaryPodRange, |
| "max_pods_per_node": podNetworkConfig.MaxPodsPerNode.MaxPodsPerNode, |
| }) |
| } |
| return result |
| } |
| |
| func expandNodeNetworkConfig(v interface{}) *container.NodeNetworkConfig { |
| networkNodeConfigs := v.([]interface{}) |
| |
| nnc := &container.NodeNetworkConfig{} |
| |
| if len(networkNodeConfigs) == 0 { |
| return nnc |
| } |
| |
| networkNodeConfig := networkNodeConfigs[0].(map[string]interface{}) |
| |
| if v, ok := networkNodeConfig["create_pod_range"]; ok { |
| nnc.CreatePodRange = v.(bool) |
| } |
| |
| if v, ok := networkNodeConfig["pod_range"]; ok { |
| nnc.PodRange = v.(string) |
| } |
| |
| if v, ok := networkNodeConfig["pod_ipv4_cidr_block"]; ok { |
| nnc.PodIpv4CidrBlock = v.(string) |
| } |
| |
| if v, ok := networkNodeConfig["enable_private_nodes"]; ok { |
| nnc.EnablePrivateNodes = v.(bool) |
| nnc.ForceSendFields = []string{"EnablePrivateNodes"} |
| } |
| |
| if v, ok := networkNodeConfig["additional_node_network_configs"]; ok && len(v.([]interface{})) > 0 { |
| node_network_configs := v.([]interface{}) |
| nodeNetworkConfigs := make([]*container.AdditionalNodeNetworkConfig, 0, len(node_network_configs)) |
| for _, raw := range node_network_configs { |
| data := raw.(map[string]interface{}) |
| networkConfig := &container.AdditionalNodeNetworkConfig{ |
| Network: data["network"].(string), |
| Subnetwork: data["subnetwork"].(string), |
| } |
| nodeNetworkConfigs = append(nodeNetworkConfigs, networkConfig) |
| } |
| nnc.AdditionalNodeNetworkConfigs = nodeNetworkConfigs |
| } |
| |
| if v, ok := networkNodeConfig["additional_pod_network_configs"]; ok && len(v.([]interface{})) > 0 { |
| pod_network_configs := v.([]interface{}) |
| podNetworkConfigs := make([]*container.AdditionalPodNetworkConfig, 0, len(pod_network_configs)) |
| for _, raw := range pod_network_configs { |
| data := raw.(map[string]interface{}) |
| podnetworkConfig := &container.AdditionalPodNetworkConfig{ |
| Subnetwork: data["subnetwork"].(string), |
| SecondaryPodRange: data["secondary_pod_range"].(string), |
| MaxPodsPerNode: &container.MaxPodsConstraint{ |
| MaxPodsPerNode: int64(data["max_pods_per_node"].(int)), |
| }, |
| } |
| podNetworkConfigs = append(podNetworkConfigs, podnetworkConfig) |
| } |
| nnc.AdditionalPodNetworkConfigs = podNetworkConfigs |
| } |
| |
| nnc.PodCidrOverprovisionConfig = expandPodCidrOverprovisionConfig(networkNodeConfig["pod_cidr_overprovision_config"]) |
| |
| if v, ok := networkNodeConfig["network_performance_config"]; ok && len(v.([]interface{})) > 0 { |
| nnc.NetworkPerformanceConfig = &container.NetworkPerformanceConfig{} |
| network_performance_config := v.([]interface{})[0].(map[string]interface{}) |
| if total_egress_bandwidth_tier, ok := network_performance_config["total_egress_bandwidth_tier"]; ok { |
| nnc.NetworkPerformanceConfig.TotalEgressBandwidthTier = total_egress_bandwidth_tier.(string) |
| } |
| } |
| |
| return nnc |
| } |
| |
| func nodePoolUpdate(d *schema.ResourceData, meta interface{}, nodePoolInfo *NodePoolInformation, prefix string, timeout time.Duration) error { |
| config := meta.(*transport_tpg.Config) |
| name := d.Get(prefix + "name").(string) |
| |
| userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent) |
| if err != nil { |
| return err |
| } |
| |
| // Acquire read-lock on cluster. |
| clusterLockKey := nodePoolInfo.clusterLockKey() |
| transport_tpg.MutexStore.RLock(clusterLockKey) |
| defer transport_tpg.MutexStore.RUnlock(clusterLockKey) |
| |
| // Nodepool write-lock will be acquired when update function is called. |
| npLockKey := nodePoolInfo.nodePoolLockKey(name) |
| |
| if d.HasChange(prefix + "autoscaling") { |
| update := &container.ClusterUpdate{ |
| DesiredNodePoolId: name, |
| } |
| if v, ok := d.GetOk(prefix + "autoscaling"); ok { |
| autoscaling := v.([]interface{})[0].(map[string]interface{}) |
| update.DesiredNodePoolAutoscaling = &container.NodePoolAutoscaling{ |
| Enabled: true, |
| MinNodeCount: int64(autoscaling["min_node_count"].(int)), |
| MaxNodeCount: int64(autoscaling["max_node_count"].(int)), |
| TotalMinNodeCount: int64(autoscaling["total_min_node_count"].(int)), |
| TotalMaxNodeCount: int64(autoscaling["total_max_node_count"].(int)), |
| LocationPolicy: autoscaling["location_policy"].(string), |
| ForceSendFields: []string{"MinNodeCount", "TotalMinNodeCount"}, |
| } |
| } else { |
| update.DesiredNodePoolAutoscaling = &container.NodePoolAutoscaling{ |
| Enabled: false, |
| } |
| } |
| |
| req := &container.UpdateClusterRequest{ |
| Update: update, |
| } |
| |
| updateF := func() error { |
| clusterUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.Update(nodePoolInfo.parent(), req) |
| if config.UserProjectOverride { |
| clusterUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, "updating GKE node pool", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated autoscaling in Node Pool %s", d.Id()) |
| } |
| |
| if d.HasChange(prefix + "node_config") { |
| |
| if d.HasChange(prefix + "node_config.0.logging_variant") { |
| if v, ok := d.GetOk(prefix + "node_config.0.logging_variant"); ok { |
| loggingVariant := v.(string) |
| req := &container.UpdateNodePoolRequest{ |
| Name: name, |
| LoggingConfig: &container.NodePoolLoggingConfig{ |
| VariantConfig: &container.LoggingVariantConfig{ |
| Variant: loggingVariant, |
| }, |
| }, |
| } |
| |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool logging_variant", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| |
| log.Printf("[INFO] Updated logging_variant for node pool %s", name) |
| } |
| } |
| |
| if d.HasChange("node_config.0.disk_size_gb") || |
| d.HasChange("node_config.0.disk_type") || |
| d.HasChange("node_config.0.machine_type") { |
| req := &container.UpdateNodePoolRequest{ |
| Name: name, |
| DiskSizeGb: int64(d.Get("node_config.0.disk_size_gb").(int)), |
| DiskType: d.Get("node_config.0.disk_type").(string), |
| MachineType: d.Get("node_config.0.machine_type").(string), |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool disk_size_gb/disk_type/machine_type", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated disk disk_size_gb/disk_type/machine_type for Node Pool %s", d.Id()) |
| } |
| |
| if d.HasChange(prefix + "node_config.0.taint") { |
| req := &container.UpdateNodePoolRequest{ |
| Name: name, |
| } |
| if v, ok := d.GetOk(prefix + "node_config.0.taint"); ok { |
| taintsList := v.([]interface{}) |
| taints := make([]*container.NodeTaint, 0, len(taintsList)) |
| for _, v := range taintsList { |
| if v != nil { |
| data := v.(map[string]interface{}) |
| taint := &container.NodeTaint{ |
| Key: data["key"].(string), |
| Value: data["value"].(string), |
| Effect: data["effect"].(string), |
| } |
| taints = append(taints, taint) |
| } |
| } |
| ntaints := &container.NodeTaints{ |
| Taints: taints, |
| } |
| req.Taints = ntaints |
| } |
| |
| if req.Taints == nil { |
| taints := make([]*container.NodeTaint, 0, 0) |
| ntaints := &container.NodeTaints{ |
| Taints: taints, |
| } |
| req.Taints = ntaints |
| } |
| |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool taints", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated taints for Node Pool %s", d.Id()) |
| } |
| |
| if d.HasChange(prefix + "node_config.0.tags") { |
| req := &container.UpdateNodePoolRequest{ |
| Name: name, |
| } |
| if v, ok := d.GetOk(prefix + "node_config.0.tags"); ok { |
| tagsList := v.([]interface{}) |
| tags := []string{} |
| for _, v := range tagsList { |
| if v != nil { |
| tags = append(tags, v.(string)) |
| } |
| } |
| ntags := &container.NetworkTags{ |
| Tags: tags, |
| } |
| req.Tags = ntags |
| } |
| |
| // sets tags to the empty list when user removes a previously defined list of tags entriely |
| // aka the node pool goes from having tags to no longer having any |
| if req.Tags == nil { |
| tags := []string{} |
| ntags := &container.NetworkTags{ |
| Tags: tags, |
| } |
| req.Tags = ntags |
| } |
| |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool tags", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated tags for node pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "node_config.0.resource_manager_tags") { |
| req := &container.UpdateNodePoolRequest{ |
| Name: name, |
| } |
| if v, ok := d.GetOk(prefix + "node_config.0.resource_manager_tags"); ok { |
| req.ResourceManagerTags = expandResourceManagerTags(v) |
| } |
| |
| // sets resource manager tags to the empty list when user removes a previously defined list of tags entriely |
| // aka the node pool goes from having tags to no longer having any |
| if req.ResourceManagerTags == nil { |
| tags := make(map[string]string) |
| rmTags := &container.ResourceManagerTags{ |
| Tags: tags, |
| } |
| req.ResourceManagerTags = rmTags |
| } |
| |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool resource manager tags", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated resource manager tags for node pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "node_config.0.resource_labels") { |
| req := &container.UpdateNodePoolRequest{ |
| Name: name, |
| } |
| |
| if v, ok := d.GetOk(prefix + "node_config.0.resource_labels"); ok { |
| resourceLabels := v.(map[string]interface{}) |
| req.ResourceLabels = &container.ResourceLabels{ |
| Labels: tpgresource.ConvertStringMap(resourceLabels), |
| } |
| } |
| |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool resource labels", userAgent, |
| timeout) |
| } |
| |
| // Call update serially. |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| |
| log.Printf("[INFO] Updated resource labels for node pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "node_config.0.labels") { |
| req := &container.UpdateNodePoolRequest{ |
| Name: name, |
| } |
| |
| if v, ok := d.GetOk(prefix + "node_config.0.labels"); ok { |
| labels := v.(map[string]interface{}) |
| req.Labels = &container.NodeLabels{ |
| Labels: tpgresource.ConvertStringMap(labels), |
| } |
| } |
| |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool labels", userAgent, |
| timeout) |
| } |
| |
| // Call update serially. |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| |
| log.Printf("[INFO] Updated labels for node pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "node_config.0.image_type") { |
| req := &container.UpdateClusterRequest{ |
| Update: &container.ClusterUpdate{ |
| DesiredNodePoolId: name, |
| DesiredImageType: d.Get(prefix + "node_config.0.image_type").(string), |
| }, |
| } |
| |
| updateF := func() error { |
| clusterUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.Update(nodePoolInfo.parent(), req) |
| if config.UserProjectOverride { |
| clusterUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, "updating GKE node pool", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated image type in Node Pool %s", d.Id()) |
| } |
| |
| if d.HasChange(prefix + "node_config.0.workload_metadata_config") { |
| req := &container.UpdateNodePoolRequest{ |
| NodePoolId: name, |
| WorkloadMetadataConfig: expandWorkloadMetadataConfig( |
| d.Get(prefix + "node_config.0.workload_metadata_config")), |
| } |
| if req.WorkloadMetadataConfig == nil { |
| req.ForceSendFields = []string{"WorkloadMetadataConfig"} |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool workload_metadata_config", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated workload_metadata_config for node pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "node_config.0.kubelet_config") { |
| req := &container.UpdateNodePoolRequest{ |
| NodePoolId: name, |
| KubeletConfig: expandKubeletConfig( |
| d.Get(prefix + "node_config.0.kubelet_config")), |
| } |
| if req.KubeletConfig == nil { |
| req.ForceSendFields = []string{"KubeletConfig"} |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool kubelet_config", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| |
| log.Printf("[INFO] Updated kubelet_config for node pool %s", name) |
| } |
| if d.HasChange(prefix + "node_config.0.linux_node_config") { |
| req := &container.UpdateNodePoolRequest{ |
| NodePoolId: name, |
| LinuxNodeConfig: expandLinuxNodeConfig( |
| d.Get(prefix + "node_config.0.linux_node_config")), |
| } |
| if req.LinuxNodeConfig == nil { |
| req.ForceSendFields = []string{"LinuxNodeConfig"} |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool linux_node_config", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| |
| log.Printf("[INFO] Updated linux_node_config for node pool %s", name) |
| } |
| if d.HasChange(prefix + "node_config.0.fast_socket") { |
| req := &container.UpdateNodePoolRequest{ |
| NodePoolId: name, |
| FastSocket: &container.FastSocket{}, |
| } |
| if v, ok := d.GetOk(prefix + "node_config.0.fast_socket"); ok { |
| fastSocket := v.([]interface{})[0].(map[string]interface{}) |
| req.FastSocket = &container.FastSocket{ |
| Enabled: fastSocket["enabled"].(bool), |
| } |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool fast_socket", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| |
| log.Printf("[INFO] Updated fast_socket for node pool %s", name) |
| } |
| } |
| |
| if d.HasChange(prefix + "node_count") { |
| newSize := int64(d.Get(prefix + "node_count").(int)) |
| req := &container.SetNodePoolSizeRequest{ |
| NodeCount: newSize, |
| } |
| updateF := func() error { |
| clusterNodePoolsSetSizeCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.SetSize(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsSetSizeCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsSetSizeCall.Do() |
| |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, "updating GKE node pool size", userAgent, |
| timeout) |
| } |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] GKE node pool %s size has been updated to %d", name, newSize) |
| } |
| |
| if d.HasChange(prefix + "management") { |
| management := &container.NodeManagement{} |
| if v, ok := d.GetOk(prefix + "management"); ok { |
| managementConfig := v.([]interface{})[0].(map[string]interface{}) |
| management.AutoRepair = managementConfig["auto_repair"].(bool) |
| management.AutoUpgrade = managementConfig["auto_upgrade"].(bool) |
| management.ForceSendFields = []string{"AutoRepair", "AutoUpgrade"} |
| } |
| req := &container.SetNodePoolManagementRequest{ |
| Management: management, |
| } |
| |
| updateF := func() error { |
| clusterNodePoolsSetManagementCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.SetManagement(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsSetManagementCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsSetManagementCall.Do() |
| |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, "updating GKE node pool management", userAgent, timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated management in Node Pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "version") { |
| req := &container.UpdateNodePoolRequest{ |
| NodePoolId: name, |
| NodeVersion: d.Get(prefix + "version").(string), |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, "updating GKE node pool version", userAgent, timeout) |
| } |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated version in Node Pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "node_locations") { |
| req := &container.UpdateNodePoolRequest{ |
| Locations: tpgresource.ConvertStringSet(d.Get(prefix + "node_locations").(*schema.Set)), |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, nodePoolInfo.project, nodePoolInfo.location, "updating GKE node pool node locations", userAgent, timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated node locations in Node Pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "upgrade_settings") { |
| upgradeSettings := &container.UpgradeSettings{} |
| if v, ok := d.GetOk(prefix + "upgrade_settings"); ok { |
| upgradeSettingsConfig := v.([]interface{})[0].(map[string]interface{}) |
| upgradeSettings.Strategy = upgradeSettingsConfig["strategy"].(string) |
| |
| if d.HasChange(prefix + "upgrade_settings.0.max_surge") { |
| if upgradeSettings.Strategy != "SURGE" { |
| return fmt.Errorf("Surge upgrade settings may not be changed when surge strategy is not enabled") |
| } |
| if v, ok := upgradeSettingsConfig["max_surge"]; ok { |
| upgradeSettings.MaxSurge = int64(v.(int)) |
| } |
| // max_unavailable not be preserved if only max_surge is updated |
| if v, ok := upgradeSettingsConfig["max_unavailable"]; ok { |
| upgradeSettings.MaxUnavailable = int64(v.(int)) |
| } |
| } |
| |
| if d.HasChange(prefix + "upgrade_settings.0.max_unavailable") { |
| if upgradeSettings.Strategy != "SURGE" { |
| return fmt.Errorf("Surge upgrade settings may not be changed when surge strategy is not enabled") |
| } |
| if v, ok := upgradeSettingsConfig["max_unavailable"]; ok { |
| upgradeSettings.MaxUnavailable = int64(v.(int)) |
| } |
| // max_surge not be preserved if only max_unavailable is updated |
| if v, ok := upgradeSettingsConfig["max_surge"]; ok { |
| upgradeSettings.MaxSurge = int64(v.(int)) |
| } |
| } |
| |
| if d.HasChange(prefix + "upgrade_settings.0.blue_green_settings") { |
| if upgradeSettings.Strategy != "BLUE_GREEN" { |
| return fmt.Errorf("Blue-green upgrade settings may not be changed when blue-green strategy is not enabled") |
| } |
| |
| blueGreenSettings := &container.BlueGreenSettings{} |
| blueGreenSettingsConfig := upgradeSettingsConfig["blue_green_settings"].([]interface{})[0].(map[string]interface{}) |
| blueGreenSettings.NodePoolSoakDuration = blueGreenSettingsConfig["node_pool_soak_duration"].(string) |
| |
| if v, ok := blueGreenSettingsConfig["standard_rollout_policy"]; ok && len(v.([]interface{})) > 0 { |
| standardRolloutPolicy := &container.StandardRolloutPolicy{} |
| if standardRolloutPolicyConfig, ok := v.([]interface{})[0].(map[string]interface{}); ok { |
| standardRolloutPolicy.BatchSoakDuration = standardRolloutPolicyConfig["batch_soak_duration"].(string) |
| if v, ok := standardRolloutPolicyConfig["batch_node_count"]; ok { |
| standardRolloutPolicy.BatchNodeCount = int64(v.(int)) |
| } |
| if v, ok := standardRolloutPolicyConfig["batch_percentage"]; ok { |
| standardRolloutPolicy.BatchPercentage = v.(float64) |
| } |
| } |
| blueGreenSettings.StandardRolloutPolicy = standardRolloutPolicy |
| } |
| upgradeSettings.BlueGreenSettings = blueGreenSettings |
| } |
| } |
| req := &container.UpdateNodePoolRequest{ |
| UpgradeSettings: upgradeSettings, |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, nodePoolInfo.project, nodePoolInfo.location, "updating GKE node pool upgrade settings", userAgent, timeout) |
| } |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| log.Printf("[INFO] Updated upgrade settings in Node Pool %s", name) |
| } |
| |
| if d.HasChange(prefix + "network_config") { |
| if d.HasChange(prefix+"network_config.0.enable_private_nodes") || d.HasChange(prefix+"network_config.0.network_performance_config") { |
| req := &container.UpdateNodePoolRequest{ |
| NodePoolId: name, |
| NodeNetworkConfig: expandNodeNetworkConfig(d.Get(prefix + "network_config")), |
| } |
| updateF := func() error { |
| clusterNodePoolsUpdateCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Update(nodePoolInfo.fullyQualifiedName(name), req) |
| if config.UserProjectOverride { |
| clusterNodePoolsUpdateCall.Header().Add("X-Goog-User-Project", nodePoolInfo.project) |
| } |
| op, err := clusterNodePoolsUpdateCall.Do() |
| |
| if err != nil { |
| return err |
| } |
| |
| // Wait until it's updated |
| return ContainerOperationWait(config, op, |
| nodePoolInfo.project, |
| nodePoolInfo.location, |
| "updating GKE node pool network_config", userAgent, |
| timeout) |
| } |
| |
| if err := retryWhileIncompatibleOperation(timeout, npLockKey, updateF); err != nil { |
| return err |
| } |
| |
| log.Printf("[INFO] Updated network_config for node pool %s", name) |
| } |
| } |
| |
| return nil |
| } |
| |
| func getNodePoolName(id string) string { |
| // name can be specified with name, name_prefix, or neither, so read it from the id. |
| splits := strings.Split(id, "/") |
| return splits[len(splits)-1] |
| } |
| |
| var containerNodePoolRestingStates = RestingStates{ |
| "RUNNING": ReadyState, |
| "RUNNING_WITH_ERROR": ErrorState, |
| "ERROR": ErrorState, |
| } |
| |
| // takes in a config object, full node pool name, project name and the current CRUD action timeout |
| // returns a state with no error if the state is a resting state, and the last state with an error otherwise |
| func containerNodePoolAwaitRestingState(config *transport_tpg.Config, name, project, userAgent string, timeout time.Duration) (state string, err error) { |
| err = retry.Retry(timeout, func() *retry.RetryError { |
| clusterNodePoolsGetCall := config.NewContainerClient(userAgent).Projects.Locations.Clusters.NodePools.Get(name) |
| if config.UserProjectOverride { |
| clusterNodePoolsGetCall.Header().Add("X-Goog-User-Project", project) |
| } |
| nodePool, gErr := clusterNodePoolsGetCall.Do() |
| if gErr != nil { |
| return retry.NonRetryableError(gErr) |
| } |
| |
| state = nodePool.Status |
| switch stateType := containerNodePoolRestingStates[state]; stateType { |
| case ReadyState: |
| log.Printf("[DEBUG] NodePool %q has status %q with message %q.", name, state, nodePool.StatusMessage) |
| return nil |
| case ErrorState: |
| log.Printf("[DEBUG] NodePool %q has error state %q with message %q.", name, state, nodePool.StatusMessage) |
| return nil |
| default: |
| return retry.RetryableError(fmt.Errorf("NodePool %q has state %q with message %q", name, state, nodePool.StatusMessage)) |
| } |
| }) |
| |
| return state, err |
| } |
| |
| // Retries an operation while the canonical error code is FAILED_PRECONDTION |
| // or RESOURCE_EXHAUSTED which indicates there is an incompatible operation |
| // already running on the cluster or there are the number of allowed |
| // concurrent operations running on the cluster. These errors can be safely |
| // retried until the incompatible operation completes, and the newly |
| // requested operation can begin. |
| func retryWhileIncompatibleOperation(timeout time.Duration, lockKey string, f func() error) error { |
| return retry.Retry(timeout, func() *retry.RetryError { |
| if err := transport_tpg.LockedCall(lockKey, f); err != nil { |
| if tpgresource.IsFailedPreconditionError(err) || tpgresource.IsQuotaError(err) { |
| return retry.RetryableError(err) |
| } |
| return retry.NonRetryableError(err) |
| } |
| return nil |
| }) |
| } |
