From 567e456124594ca168675630df92d02d1b3006b2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Cz=C3=A9kus=20M=C3=A1t=C3=A9?= Date: Sat, 13 May 2023 14:55:23 +0200 Subject: [PATCH] add flag for to disable automatic port forwarding without specifying any MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Czékus Máté --- cmd/podman/kube/play.go | 4 ++++ docs/source/markdown/podman-kube-play.1.md.in | 4 ++++ pkg/api/handlers/libpod/kube.go | 2 ++ pkg/domain/entities/play.go | 2 ++ pkg/domain/entities/pods.go | 1 + pkg/domain/infra/abi/play.go | 1 + pkg/specgen/generate/kube/kube.go | 8 +++++--- 7 files changed, 19 insertions(+), 3 deletions(-) diff --git a/cmd/podman/kube/play.go b/cmd/podman/kube/play.go index 663c89de21..1d6278ce5c 100644 --- a/cmd/podman/kube/play.go +++ b/cmd/podman/kube/play.go @@ -158,6 +158,10 @@ func playFlags(cmd *cobra.Command) { flags.StringSliceVar(&playOptions.PublishPorts, publishPortsFlagName, []string{}, "Publish a container's port, or a range of ports, to the host") _ = cmd.RegisterFlagCompletionFunc(publishPortsFlagName, completion.AutocompleteNone) + publishAllFlagName := "publish-all" + flags.BoolVar(&playOptions.PublishAll, publishAllFlagName, false, "Publish all containerPorts from the YAML file without a matching hostPort") + _ = cmd.RegisterFlagCompletionFunc(publishAllFlagName, completion.AutocompleteNone) + waitFlagName := "wait" flags.BoolVarP(&playOptions.Wait, waitFlagName, "w", false, "Clean up all objects created when a SIGTERM is received or pods exit") diff --git a/docs/source/markdown/podman-kube-play.1.md.in b/docs/source/markdown/podman-kube-play.1.md.in index 9dd37172e9..3ea5224c33 100644 --- a/docs/source/markdown/podman-kube-play.1.md.in +++ b/docs/source/markdown/podman-kube-play.1.md.in @@ -221,6 +221,10 @@ Define or override a port definition in the YAML file. The lists of ports in the YAML file and the command line are merged. Matching is done by using the **containerPort** field. If **containerPort** exists in both the YAML file and the option, the latter takes precedence. +#### **--publish-all** + +Allow container port publication without specifying a `hostPort` pair + #### **--quiet**, **-q** Suppress output information when pulling images diff --git a/pkg/api/handlers/libpod/kube.go b/pkg/api/handlers/libpod/kube.go index 2f53f82d7e..7fdc3f278a 100644 --- a/pkg/api/handlers/libpod/kube.go +++ b/pkg/api/handlers/libpod/kube.go @@ -28,6 +28,7 @@ func KubePlay(w http.ResponseWriter, r *http.Request) { StaticIPs []string `schema:"staticIPs"` StaticMACs []string `schema:"staticMACs"` NoHosts bool `schema:"noHosts"` + PublishAll bool `schema:"publishAll"` PublishPorts []string `schema:"publishPorts"` Wait bool `schema:"wait"` ServiceContainer bool `schema:"serviceContainer"` @@ -100,6 +101,7 @@ func KubePlay(w http.ResponseWriter, r *http.Request) { PublishPorts: query.PublishPorts, Wait: query.Wait, ServiceContainer: query.ServiceContainer, + PublishAll: query.PublishAll, } if _, found := r.URL.Query()["tlsVerify"]; found { options.SkipTLSVerify = types.NewOptionalBool(!query.TLSVerify) diff --git a/pkg/domain/entities/play.go b/pkg/domain/entities/play.go index 3989f96a68..a9808eec67 100644 --- a/pkg/domain/entities/play.go +++ b/pkg/domain/entities/play.go @@ -64,6 +64,8 @@ type PlayKubeOptions struct { Force bool // PublishPorts - configure how to expose ports configured inside the K8S YAML file PublishPorts []string + // PublishAll - expose all container ports without a host pair + PublishAll bool // Wait - indicates whether to return after having created the pods Wait bool } diff --git a/pkg/domain/entities/pods.go b/pkg/domain/entities/pods.go index 585b0e6ca5..b2112ec818 100644 --- a/pkg/domain/entities/pods.go +++ b/pkg/domain/entities/pods.go @@ -143,6 +143,7 @@ type PodCreateOptions struct { Userns specgen.Namespace `json:"-"` Volume []string `json:"volume,omitempty"` VolumesFrom []string `json:"volumes_from,omitempty"` + PublishAll bool `` SecurityOpt []string `json:"security_opt,omitempty"` Sysctl []string `json:"sysctl,omitempty"` } diff --git a/pkg/domain/infra/abi/play.go b/pkg/domain/infra/abi/play.go index c5258b9fd4..91a1ca4237 100644 --- a/pkg/domain/infra/abi/play.go +++ b/pkg/domain/infra/abi/play.go @@ -417,6 +417,7 @@ func (ic *ContainerEngine) playKubePod(ctx context.Context, podName string, podY Infra: true, Net: &entities.NetOptions{NoHosts: options.NoHosts}, ExitPolicy: string(config.PodExitPolicyStop), + PublishAll: options.PublishAll, } podOpt, err = kube.ToPodOpt(ctx, podName, podOpt, podYAML) if err != nil { diff --git a/pkg/specgen/generate/kube/kube.go b/pkg/specgen/generate/kube/kube.go index a1a96a8af0..e78a08c084 100644 --- a/pkg/specgen/generate/kube/kube.go +++ b/pkg/specgen/generate/kube/kube.go @@ -77,7 +77,7 @@ func ToPodOpt(ctx context.Context, podName string, p entities.PodCreateOptions, } p.Net.AddHosts = hosts } - podPorts := getPodPorts(podYAML.Spec.Containers) + podPorts := getPodPorts(podYAML.Spec.Containers, p.PublishAll) p.Net.PublishPorts = podPorts if dnsConfig := podYAML.Spec.DNSConfig; dnsConfig != nil { @@ -1044,7 +1044,7 @@ func getContainerResources(container v1.Container) (v1.ResourceRequirements, err // getPodPorts converts a slice of kube container descriptions to an // array of portmapping -func getPodPorts(containers []v1.Container) []types.PortMapping { +func getPodPorts(containers []v1.Container, publishAll bool) []types.PortMapping { var infraPorts []types.PortMapping for _, container := range containers { for _, p := range container.Ports { @@ -1052,7 +1052,9 @@ func getPodPorts(containers []v1.Container) []types.PortMapping { p.ContainerPort = p.HostPort } if p.HostPort == 0 && p.ContainerPort != 0 { - p.HostPort = p.ContainerPort + if publishAll { + p.HostPort = p.ContainerPort + } } if p.Protocol == "" { p.Protocol = "tcp"