-
Notifications
You must be signed in to change notification settings - Fork 408
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Co-authored-by: Wesley Su <hengxuan.sh@alibaba-inc.com>
- Loading branch information
Showing
9 changed files
with
672 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,261 @@ | ||
/* | ||
Copyright 2023 The OpenYurt Authors. | ||
Licensed under the Apache License, Version 2.0 (the License); | ||
you may not use this file except in compliance with the License. | ||
You may obtain a copy of the License at | ||
http://www.apache.org/licenses/LICENSE-2.0 | ||
Unless required by applicable law or agreed to in writing, software | ||
distributed under the License is distributed on an AS IS BASIS, | ||
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
See the License for the specific language governing permissions and | ||
limitations under the License. | ||
*/ | ||
|
||
package dns | ||
|
||
import ( | ||
"context" | ||
"fmt" | ||
"net" | ||
"sort" | ||
"strings" | ||
"time" | ||
|
||
corev1 "k8s.io/api/core/v1" | ||
apierrors "k8s.io/apimachinery/pkg/api/errors" | ||
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" | ||
"k8s.io/apimachinery/pkg/runtime" | ||
"k8s.io/apimachinery/pkg/types" | ||
"k8s.io/apimachinery/pkg/util/wait" | ||
"k8s.io/client-go/tools/record" | ||
"k8s.io/klog/v2" | ||
"sigs.k8s.io/controller-runtime/pkg/client" | ||
"sigs.k8s.io/controller-runtime/pkg/controller" | ||
"sigs.k8s.io/controller-runtime/pkg/manager" | ||
"sigs.k8s.io/controller-runtime/pkg/predicate" | ||
"sigs.k8s.io/controller-runtime/pkg/reconcile" | ||
"sigs.k8s.io/controller-runtime/pkg/source" | ||
|
||
appconfig "github.com/openyurtio/openyurt/cmd/yurt-manager/app/config" | ||
common "github.com/openyurtio/openyurt/pkg/yurtmanager/controller/raven" | ||
"github.com/openyurtio/openyurt/pkg/yurtmanager/controller/raven/utils" | ||
) | ||
|
||
func Format(format string, args ...interface{}) string { | ||
s := fmt.Sprintf(format, args...) | ||
return fmt.Sprintf("%s: %s", common.GatewayDNSControllerName, s) | ||
} | ||
|
||
// Add creates a new Ravendns Controller and adds it to the Manager with default RBAC. The Manager will set fields on the Controller | ||
// and Start it when the Manager is Started. | ||
func Add(c *appconfig.CompletedConfig, mgr manager.Manager) error { | ||
return add(mgr, newReconciler(mgr)) | ||
} | ||
|
||
var _ reconcile.Reconciler = &ReconcileDns{} | ||
|
||
type ReconcileDns struct { | ||
client.Client | ||
scheme *runtime.Scheme | ||
recorder record.EventRecorder | ||
} | ||
|
||
// newReconciler returns a new reconcile.Reconciler | ||
func newReconciler(mgr manager.Manager) reconcile.Reconciler { | ||
return &ReconcileDns{ | ||
Client: mgr.GetClient(), | ||
scheme: mgr.GetScheme(), | ||
recorder: mgr.GetEventRecorderFor(common.GatewayDNSControllerName), | ||
} | ||
} | ||
|
||
// add adds a new Controller to mgr with r as the reconcile.Reconciler | ||
func add(mgr manager.Manager, r reconcile.Reconciler) error { | ||
// Create a new controller | ||
c, err := controller.New(common.GatewayDNSControllerName, mgr, controller.Options{ | ||
Reconciler: r, MaxConcurrentReconciles: common.ConcurrentReconciles, | ||
}) | ||
if err != nil { | ||
return err | ||
} | ||
|
||
// Watch for changes to service | ||
err = c.Watch(&source.Kind{Type: &corev1.Service{}}, &EnqueueRequestForServiceEvent{}, predicate.NewPredicateFuncs( | ||
func(obj client.Object) bool { | ||
svc, ok := obj.(*corev1.Service) | ||
if !ok { | ||
return false | ||
} | ||
if svc.Spec.Type != corev1.ServiceTypeClusterIP { | ||
return false | ||
} | ||
return svc.Namespace == utils.WorkingNamespace && svc.Name == utils.GatewayProxyInternalService | ||
})) | ||
if err != nil { | ||
return err | ||
} | ||
//Watch for changes to nodes | ||
err = c.Watch(&source.Kind{Type: &corev1.Node{}}, &EnqueueRequestForNodeEvent{}) | ||
if err != nil { | ||
return err | ||
} | ||
|
||
return nil | ||
} | ||
|
||
func (r *ReconcileDns) Reconcile(ctx context.Context, req reconcile.Request) (reconcile.Result, error) { | ||
klog.V(4).Info(Format("Reconcile DNS configMap for gateway %s", req.Name)) | ||
defer func() { | ||
klog.V(4).Info(Format("finished DNS configMap for gateway %s", req.Name)) | ||
}() | ||
var proxyAddress = "" | ||
//1. ensure configmap to record dns | ||
cm, err := r.getProxyDNS(ctx, client.ObjectKey{Namespace: utils.WorkingNamespace, Name: utils.RavenProxyNodesConfig}) | ||
if err != nil { | ||
return reconcile.Result{Requeue: true, RequeueAfter: 2 * time.Second}, err | ||
} | ||
|
||
// 2. acquired raven global config to check whether the proxy s enabled | ||
enableProxy, _ := utils.CheckServer(ctx, r.Client) | ||
if !enableProxy { | ||
r.recorder.Event(cm.DeepCopy(), corev1.EventTypeNormal, "MaintainDNSRecord", "The Raven Layer 7 proxy feature is not enabled for the cluster") | ||
} else { | ||
svc, err := r.getService(ctx, types.NamespacedName{Namespace: utils.WorkingNamespace, Name: utils.GatewayProxyInternalService}) | ||
if err != nil && !apierrors.IsNotFound(err) { | ||
klog.V(2).Infof(Format("failed to get service %s/%s", utils.WorkingNamespace, utils.GatewayProxyInternalService)) | ||
return reconcile.Result{Requeue: true, RequeueAfter: 2 * time.Second}, err | ||
} | ||
if apierrors.IsNotFound(err) || svc.DeletionTimestamp != nil { | ||
r.recorder.Event(cm.DeepCopy(), corev1.EventTypeNormal, "MaintainDNSRecord", | ||
fmt.Sprintf("The Raven Layer 7 proxy lacks service %s/%s", utils.WorkingNamespace, utils.GatewayProxyInternalService)) | ||
} | ||
if svc != nil { | ||
if svc.Spec.ClusterIP == "" { | ||
r.recorder.Event(cm.DeepCopy(), corev1.EventTypeNormal, "MaintainDNSRecord", | ||
fmt.Sprintf("The service %s/%s cluster IP is empty", utils.WorkingNamespace, utils.GatewayProxyInternalService)) | ||
} else { | ||
proxyAddress = svc.Spec.ClusterIP | ||
} | ||
} | ||
} | ||
|
||
//3. update dns record | ||
nodeList := new(corev1.NodeList) | ||
err = r.Client.List(ctx, nodeList, &client.ListOptions{}) | ||
if err != nil { | ||
return reconcile.Result{Requeue: true, RequeueAfter: 2 * time.Second}, fmt.Errorf("failed to list node, error %s", err.Error()) | ||
} | ||
cm.Data[utils.ProxyNodesKey] = buildDNSRecords(nodeList, enableProxy, proxyAddress) | ||
err = r.updateDNS(cm) | ||
if err != nil { | ||
return reconcile.Result{Requeue: true, RequeueAfter: 2 * time.Second}, fmt.Errorf("failed to update configmap %s/%s, error %s", | ||
cm.GetNamespace(), cm.GetName(), err.Error()) | ||
} | ||
return reconcile.Result{}, nil | ||
} | ||
|
||
func (r ReconcileDns) getProxyDNS(ctx context.Context, objKey client.ObjectKey) (*corev1.ConfigMap, error) { | ||
var cm corev1.ConfigMap | ||
err := wait.PollImmediate(5*time.Second, time.Minute, func() (done bool, err error) { | ||
err = r.Client.Get(ctx, objKey, &cm) | ||
if err != nil { | ||
if apierrors.IsNotFound(err) { | ||
err = r.buildRavenDNSConfigMap() | ||
if err != nil { | ||
klog.Errorf(Format("failed to generate dns record , error %s", err.Error())) | ||
return false, nil | ||
} | ||
} | ||
klog.Error(Format("failed to get ConfigMap %s, error %s", objKey.String(), err.Error())) | ||
return false, nil | ||
} | ||
return true, nil | ||
}) | ||
if err != nil { | ||
return cm.DeepCopy(), fmt.Errorf("failed to get ConfigMap %s, error %s", objKey.String(), err.Error()) | ||
} | ||
return cm.DeepCopy(), nil | ||
} | ||
|
||
func (r *ReconcileDns) buildRavenDNSConfigMap() error { | ||
cm := &corev1.ConfigMap{ | ||
ObjectMeta: metav1.ObjectMeta{ | ||
Name: utils.RavenProxyNodesConfig, | ||
Namespace: utils.WorkingNamespace, | ||
}, | ||
Data: map[string]string{ | ||
utils.ProxyNodesKey: "", | ||
}, | ||
} | ||
err := r.Client.Create(context.TODO(), cm, &client.CreateOptions{}) | ||
if err != nil { | ||
return fmt.Errorf("failed to create ConfigMap %s/%s, error %s", cm.GetNamespace(), cm.GetName(), err.Error()) | ||
} | ||
return nil | ||
} | ||
|
||
func (r *ReconcileDns) getService(ctx context.Context, objectKey client.ObjectKey) (*corev1.Service, error) { | ||
svc := corev1.Service{} | ||
err := r.Client.Get(ctx, objectKey, &svc) | ||
if err != nil { | ||
return nil, err | ||
} | ||
return svc.DeepCopy(), nil | ||
} | ||
|
||
func (r *ReconcileDns) updateDNS(cm *corev1.ConfigMap) error { | ||
err := r.Client.Update(context.TODO(), cm, &client.UpdateOptions{}) | ||
if err != nil { | ||
return fmt.Errorf("failed to update configmap %s/%s, %s", cm.GetNamespace(), cm.GetName(), err.Error()) | ||
} | ||
return nil | ||
} | ||
|
||
func buildDNSRecords(nodeList *corev1.NodeList, needProxy bool, proxyIp string) string { | ||
// record node name <-> ip address | ||
if needProxy && proxyIp == "" { | ||
klog.Errorf(Format("internal proxy address is empty for dns record, redirect node internal address")) | ||
needProxy = false | ||
} | ||
var err error | ||
dns := make([]string, 0, len(nodeList.Items)) | ||
for _, node := range nodeList.Items { | ||
ip := proxyIp | ||
if !needProxy { | ||
ip, err = getHostIP(&node) | ||
if err != nil { | ||
klog.Errorf(Format("failed to parse node address for %s, %s", node.Name, err.Error())) | ||
continue | ||
} | ||
} | ||
dns = append(dns, fmt.Sprintf("%s\t%s", ip, node.Name)) | ||
} | ||
sort.Strings(dns) | ||
return strings.Join(dns, "\n") | ||
} | ||
|
||
func getHostIP(node *corev1.Node) (string, error) { | ||
// get InternalIPs first and then ExternalIPs | ||
var internalIP, externalIP net.IP | ||
for _, addr := range node.Status.Addresses { | ||
switch addr.Type { | ||
case corev1.NodeInternalIP: | ||
ip := net.ParseIP(addr.Address) | ||
if ip != nil { | ||
return ip.String(), nil | ||
} | ||
case corev1.NodeExternalIP: | ||
ip := net.ParseIP(addr.Address) | ||
if ip != nil { | ||
externalIP = ip | ||
} | ||
} | ||
} | ||
if internalIP == nil && externalIP == nil { | ||
return "", fmt.Errorf("host IP unknown; known addresses: %v", node.Status.Addresses) | ||
} | ||
return externalIP.String(), nil | ||
} |
Oops, something went wrong.