K
Q

Is kustomize for k8s backward chaining?

6/3/2019

The README for kustomize says that

It's like make, in that what it does is declared in a file, and it's like sed, in that it emits edited text.

Does this analogy extend beyond the fact that files are used to declare what is needed?

Or, is kustomize backward chaining like make in that it reads all command input before working out what it has to do rather than work sequentially and step through the command input like bash working through a shell script?

EDIT: Jeff Regan, of the Kustomize team in Google, explains the model for the way kustomize works towards the beginning of his talk Kustomize: Kubernetes Configuration Customization. He also shows how kustomize may be daisy chained so the output of one kustomize may serve as the input to another kustomize. It seems that, as pointed out by ITChap below, kustomize starts by gathering all the resources referenced in the kustomization.yml file in the base dir. It the executes sequentially in a series of steps to perform the required substitutions and transformations interatively. Repeating the substitution/tranformation step as often as needed to complete. It then spits out the generated YAML on stdout. So I would say that it is not backward chaining like make but rather somewhere in between. HTH.

-- Rob Wells
kubernetes
kustomize

Similar Questions

Traefik adds huge overhead to the requests in Kubernetes
What can I do to get k8s to return json in the form of an underscore instead of a camel case
How to get number of replicas of StatefulSet Kubernetes
How to fix routes configuration for the gce ingress?

1 Answer

6/6/2019

What I noticed so far is that kustomize will first accumulate the content of all the base resources then apply the transformations from your kustomization.yml files. If you have multiple level of overlays, it doesn't seem to pass the result from one level to the next.

Let's consider the following:

./base/pod.yml:

apiVersion: v1
kind: Pod
metadata:
  name: test
spec:
  containers:
  - name: test
    image: busybox

./base/kustomization.yml:

apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
  - ../pod.yml

./overlays/l1/kustomization.yml:

apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
bases:
  - ../base
nameSuffix: "-l1"

./overlays/l2/kustomization.yml:

apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
bases:
  - ../l1
nameSuffix: "-l2"

When running kustomize build overlays/l2 you are going to get a pod named test-l1-l2 as expected.

But if you try to patch the base pod you would have to reference the pod using:

patchesJson6902:
- target:
    version: v1
    kind: Pod
    name: test
  path: patch.yml

in your ./overlays/l1/kustomization.yml but also in ./overlays/l2/kustomization.yml. At the time the patch of l2 is applied, the referenced resource is still test and not test-l1.

I don't know kustomize well enough to understand the intention behind this but these are my observations. Hope it answers your question.

PS: this might change with https://github.com/kubernetes-sigs/kustomize/issues/1036

-- ITChap
Source: StackOverflow