zouy414
diff --git a/‎staging/src/k8s.io/cli-runtime/artifacts/openapi/swagger.json‎
Lines changed: 110465 additions & 0 deletions b/‎staging/src/k8s.io/cli-runtime/artifacts/openapi/swagger.json‎
Lines changed: 110465 additions & 0 deletions
diff --git a/‎staging/src/k8s.io/cli-runtime/go.mod‎
Lines changed: 3 additions & 0 deletions b/‎staging/src/k8s.io/cli-runtime/go.mod‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎staging/src/k8s.io/cli-runtime/go.sum‎
Lines changed: 1 addition & 0 deletions b/‎staging/src/k8s.io/cli-runtime/go.sum‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎staging/src/k8s.io/cli-runtime/pkg/resource/BUILD‎
Lines changed: 9 additions & 0 deletions b/‎staging/src/k8s.io/cli-runtime/pkg/resource/BUILD‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎staging/src/k8s.io/kubectl/pkg/cmd/util/crdfinder.go‎ renamed to ‎staging/src/k8s.io/cli-runtime/pkg/resource/crd_finder.go‎
Lines changed: 1 addition & 1 deletion b/‎staging/src/k8s.io/kubectl/pkg/cmd/util/crdfinder.go‎ renamed to ‎staging/src/k8s.io/cli-runtime/pkg/resource/crd_finder.go‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎staging/src/k8s.io/kubectl/pkg/cmd/util/crdfinder_test.go‎ renamed to ‎staging/src/k8s.io/cli-runtime/pkg/resource/crd_finder_test.go‎
Lines changed: 4 additions & 5 deletions b/‎staging/src/k8s.io/kubectl/pkg/cmd/util/crdfinder_test.go‎ renamed to ‎staging/src/k8s.io/cli-runtime/pkg/resource/crd_finder_test.go‎
Lines changed: 4 additions & 5 deletions
diff --git a/‎staging/src/k8s.io/cli-runtime/pkg/resource/dry_run_verifier.go‎
Lines changed: 121 additions & 0 deletions b/‎staging/src/k8s.io/cli-runtime/pkg/resource/dry_run_verifier.go‎
Lines changed: 121 additions & 0 deletions
@@ -11,16 +11,19 @@ require (
 	github.com/ghodss/yaml v1.0.0 // indirect
 	github.com/go-openapi/jsonreference v0.19.3 // indirect
 	github.com/go-openapi/spec v0.19.3 // indirect
+	github.com/googleapis/gnostic v0.1.0
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de
 	github.com/mailru/easyjson v0.7.0 // indirect
 	github.com/pkg/errors v0.8.1
 	github.com/spf13/cobra v0.0.5
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.4.0
 	golang.org/x/text v0.3.2
+	gopkg.in/yaml.v2 v2.2.7
 	k8s.io/api v0.0.0
 	k8s.io/apimachinery v0.0.0
 	k8s.io/client-go v0.0.0
+	k8s.io/kube-openapi v0.0.0-20191107075043-30be4d16710a
 	sigs.k8s.io/kustomize v2.0.3+incompatible
 	sigs.k8s.io/yaml v1.1.0
 )
 
@@ -5,7 +5,9 @@ go_library(
     srcs = [
         "builder.go",
         "client.go",
+        "crd_finder.go",
         "doc.go",
+        "dry_run_verifier.go",
         "fake.go",
         "helper.go",
         "interfaces.go",
@@ -39,11 +41,14 @@ go_library(
         "//staging/src/k8s.io/apimachinery/pkg/watch:go_default_library",
         "//staging/src/k8s.io/cli-runtime/pkg/kustomize:go_default_library",
         "//staging/src/k8s.io/client-go/discovery:go_default_library",
+        "//staging/src/k8s.io/client-go/dynamic:go_default_library",
         "//staging/src/k8s.io/client-go/kubernetes/scheme:go_default_library",
         "//staging/src/k8s.io/client-go/rest:go_default_library",
         "//staging/src/k8s.io/client-go/restmapper:go_default_library",
+        "//vendor/github.com/googleapis/gnostic/OpenAPIv2:go_default_library",
         "//vendor/golang.org/x/text/encoding/unicode:go_default_library",
         "//vendor/golang.org/x/text/transform:go_default_library",
+        "//vendor/gopkg.in/yaml.v2:go_default_library",
         "//vendor/sigs.k8s.io/kustomize/pkg/fs:go_default_library",
     ],
 )
@@ -52,6 +57,8 @@ go_test(
     name = "go_default_test",
     srcs = [
         "builder_test.go",
+        "crd_finder_test.go",
+        "dry_run_verifier_test.go",
         "helper_test.go",
         "scheme_test.go",
         "visitor_test.go",
@@ -81,7 +88,9 @@ go_test(
         "//staging/src/k8s.io/client-go/restmapper:go_default_library",
         "//staging/src/k8s.io/client-go/util/testing:go_default_library",
         "//vendor/github.com/davecgh/go-spew/spew:go_default_library",
+        "//vendor/github.com/googleapis/gnostic/OpenAPIv2:go_default_library",
         "//vendor/github.com/stretchr/testify/assert:go_default_library",
+        "//vendor/k8s.io/kube-openapi/pkg/util/proto/testing:go_default_library",
         "//vendor/sigs.k8s.io/yaml:go_default_library",
     ],
 )
 
@@ -14,7 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package util
+package resource
 
 import (
 	"fmt"
 
@@ -14,14 +14,13 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package util_test
+package resource
 
 import (
 	"errors"
 	"testing"
 
 	"k8s.io/apimachinery/pkg/runtime/schema"
-	"k8s.io/kubectl/pkg/cmd/util"
 )
 
 func TestCacheCRDFinder(t *testing.T) {
@@ -30,7 +29,7 @@ func TestCacheCRDFinder(t *testing.T) {
 		called += 1
 		return nil, nil
 	}
-	finder := util.NewCRDFinder(getter)
+	finder := NewCRDFinder(getter)
 	if called != 0 {
 		t.Fatalf("Creating the finder shouldn't call the getter, has called = %v", called)
 	}
@@ -55,7 +54,7 @@ func TestCRDFinderErrors(t *testing.T) {
 	getter := func() ([]schema.GroupKind, error) {
 		return nil, errors.New("not working")
 	}
-	finder := util.NewCRDFinder(getter)
+	finder := NewCRDFinder(getter)
 	found, err := finder.HasCRD(schema.GroupKind{Group: "", Kind: "Pod"})
 	if found == true {
 		t.Fatalf("Found the CRD with non-working getter function")
@@ -78,7 +77,7 @@ func TestCRDFinder(t *testing.T) {
 			},
 		}, nil
 	}
-	finder := util.NewCRDFinder(getter)
+	finder := NewCRDFinder(getter)
 
 	if found, _ := finder.HasCRD(schema.GroupKind{Group: "crd.com", Kind: "MyCRD"}); !found {
 		t.Fatalf("Failed to find CRD MyCRD")
 
@@ -0,0 +1,121 @@
+/*
+Copyright 2019 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package resource
+
+import (
+	"errors"
+	"fmt"
+
+	openapi_v2 "github.com/googleapis/gnostic/OpenAPIv2"
+	yaml "gopkg.in/yaml.v2"
+	"k8s.io/apimachinery/pkg/runtime/schema"
+	"k8s.io/client-go/discovery"
+	"k8s.io/client-go/dynamic"
+)
+
+// VerifyDryRun returns nil if a resource group-version-kind supports
+// server-side dry-run. Otherwise, an error is returned.
+func VerifyDryRun(gvk schema.GroupVersionKind, dynamicClient dynamic.Interface, discoveryClient discovery.DiscoveryInterface) error {
+	verifier := NewDryRunVerifier(dynamicClient, discoveryClient)
+	return verifier.HasSupport(gvk)
+}
+
+func NewDryRunVerifier(dynamicClient dynamic.Interface, discoveryClient discovery.DiscoveryInterface) *DryRunVerifier {
+	return &DryRunVerifier{
+		Finder:        NewCRDFinder(CRDFromDynamic(dynamicClient)),
+		OpenAPIGetter: discoveryClient,
+	}
+}
+
+func hasGVKExtension(extensions []*openapi_v2.NamedAny, gvk schema.GroupVersionKind) bool {
+	for _, extension := range extensions {
+		if extension.GetValue().GetYaml() == "" ||
+			extension.GetName() != "x-kubernetes-group-version-kind" {
+			continue
+		}
+		var value map[string]string
+		err := yaml.Unmarshal([]byte(extension.GetValue().GetYaml()), &value)
+		if err != nil {
+			continue
+		}
+
+		if value["group"] == gvk.Group && value["kind"] == gvk.Kind && value["version"] == gvk.Version {
+			return true
+		}
+		return false
+	}
+	return false
+}
+
+// DryRunVerifier verifies if a given group-version-kind supports DryRun
+// against the current server. Sending dryRun requests to apiserver that
+// don't support it will result in objects being unwillingly persisted.
+//
+// It reads the OpenAPI to see if the given GVK supports dryRun. If the
+// GVK can not be found, we assume that CRDs will have the same level of
+// support as "namespaces", and non-CRDs will not be supported. We
+// delay the check for CRDs as much as possible though, since it
+// requires an extra round-trip to the server.
+type DryRunVerifier struct {
+	Finder        CRDFinder
+	OpenAPIGetter discovery.OpenAPISchemaInterface
+}
+
+// HasSupport verifies if the given gvk supports DryRun. An error is
+// returned if it doesn't.
+func (v *DryRunVerifier) HasSupport(gvk schema.GroupVersionKind) error {
+	oapi, err := v.OpenAPIGetter.OpenAPISchema()
+	if err != nil {
+		return fmt.Errorf("failed to download openapi: %v", err)
+	}
+	supports, err := SupportsDryRun(oapi, gvk)
+	if err != nil {
+		// We assume that we couldn't find the type, then check for namespace:
+		supports, _ = SupportsDryRun(oapi, schema.GroupVersionKind{Group: "", Version: "v1", Kind: "Namespace"})
+		// If namespace supports dryRun, then we will support dryRun for CRDs only.
+		if supports {
+			supports, err = v.Finder.HasCRD(gvk.GroupKind())
+			if err != nil {
+				return fmt.Errorf("failed to check CRD: %v", err)
+			}
+		}
+	}
+	if !supports {
+		return fmt.Errorf("%v doesn't support dry-run", gvk)
+	}
+	return nil
+}
+
+// SupportsDryRun is a method that let's us look in the OpenAPI if the
+// specific group-version-kind supports the dryRun query parameter for
+// the PATCH end-point.
+func SupportsDryRun(doc *openapi_v2.Document, gvk schema.GroupVersionKind) (bool, error) {
+	for _, path := range doc.GetPaths().GetPath() {
+		// Is this describing the gvk we're looking for?
+		if !hasGVKExtension(path.GetValue().GetPatch().GetVendorExtension(), gvk) {
+			continue
+		}
+		for _, param := range path.GetValue().GetPatch().GetParameters() {
+			if param.GetParameter().GetNonBodyParameter().GetQueryParameterSubSchema().GetName() == "dryRun" {
+				return true, nil
+			}
+		}
+		return false, nil
+	}
+
+	return false, errors.New("couldn't find GVK in openapi")
+}