feat: add token format checking to yurtadm join process

Signed-off-by: Liang Deng <283304489@qq.com>

pkg/yurtadm/cmd/join/join.go

@@ -261,6 +261,10 @@ func newJoinData(args []string, opt *joinOptions) (*joinData, error) {
 		return nil, errors.New("join token is empty, so unable to bootstrap worker node.")
 	}
 
+	if !yurtadmutil.IsValidBootstrapToken(opt.token) {
+		return nil, errors.Errorf("the bootstrap token %s was not of the form %s", opt.token, yurtconstants.BootstrapTokenPattern)
+	}
+
 	if opt.nodeType != yurtconstants.EdgeNode && opt.nodeType != yurtconstants.CloudNode {
 		return nil, errors.Errorf("node type(%s) is invalid, only \"edge and cloud\" are supported", opt.nodeType)
 	}

pkg/yurtadm/constants/constants.go

@@ -57,6 +57,8 @@ const (
 	KubeletHostname        = "--hostname-override=[^\"\\s]*"
 	KubeletEnvironmentFile = "EnvironmentFile=.*"
 
+	BootstrapTokenPattern = `\A([a-z0-9]{6})\.([a-z0-9]{16})\z`
+
 	DaemonReload      = "systemctl daemon-reload"
 	RestartKubeletSvc = "systemctl restart kubelet"
 

pkg/yurtadm/util/kubernetes/kubernetes.go

@@ -25,6 +25,7 @@ import (
 	"os"
 	"os/exec"
 	"path/filepath"
+	"regexp"
 	"runtime"
 	"strings"
 	"time"
@@ -62,6 +63,9 @@ var (
 	PropagationPolicy = metav1.DeletePropagationBackground
 
 	ErrClusterVersionEmpty = errors.New("cluster version should not be empty")
+
+	// BootstrapTokenRegexp is a compiled regular expression of TokenRegexpString
+	BootstrapTokenRegexp = regexp.MustCompile(constants.BootstrapTokenPattern)
 )
 
 // RunJobAndCleanup runs the job, wait for it to be complete, and delete it
@@ -541,3 +545,9 @@ func GetDefaultClientSet() (*kubernetes.Clientset, error) {
 	}
 	return cliSet, nil
 }
+
+// IsValidBootstrapToken returns whether the given string is valid as a Bootstrap Token and
+// in other words satisfies the BootstrapTokenRegexp
+func IsValidBootstrapToken(token string) bool {
+	return BootstrapTokenRegexp.MatchString(token)
+}