Skip to content

Commit

Permalink
refactor: updated IP controller for new ipam
Browse files Browse the repository at this point in the history
  • Loading branch information
fra98 committed Nov 21, 2024
1 parent 49facb9 commit af4fd26
Show file tree
Hide file tree
Showing 26 changed files with 387 additions and 270 deletions.
12 changes: 6 additions & 6 deletions apis/ipam/v1alpha1/ip_types.go
Original file line number Diff line number Diff line change
Expand Up @@ -49,10 +49,10 @@ type IPSpec struct {
// IP is the local IP.
// +kubebuilder:validation:XValidation:rule="self == oldSelf",message="IP field is immutable"
IP networkingv1beta1.IP `json:"ip"`
// CIDR is the network CIDR where the desired IP should be allocated from.
// NetworkRef is the reference to the Network CR containing the CIDR where the desired IP should be allocated from.
// It is optional, if left empty the IP will be allocated in a default network CIDR (e.g., external CIDR).
// +kubebuilder:validation:Optional
CIDR *networkingv1beta1.CIDR `json:"cidr,omitempty"`
NetworkRef *v1.ObjectReference `json:"networkRef,omitempty"`
// ServiceTemplate contains the template to create the associated service (and endpointslice) for the IP endopoint.
// If empty the creation of the service is disabled (default).
// +kubebuilder:validation:Optional
Expand All @@ -65,21 +65,21 @@ type IPSpec struct {

// IPStatus defines remapped IPs.
type IPStatus struct {
// IPMappings contains the mapping of the local IP for each remote cluster.
IPMappings map[string]networkingv1beta1.IP `json:"ipMappings,omitempty"`
// IP is the remapped IP.
// +kubebuilder:validation:XValidation:rule="self == oldSelf",message="IP field is immutable"
IP networkingv1beta1.IP `json:"ip"`
IP networkingv1beta1.IP `json:"ip,omitempty"`
// CIDR is the network CIDR where the IP is allocated.
// +kubebuilder:validation:XValidation:rule="self == oldSelf",message="CIDR field is immutable"
CIDR networkingv1beta1.CIDR `json:"cidr,omitempty"`
}

// +kubebuilder:object:root=true
// +kubebuilder:resource:categories=liqo
// +kubebuilder:subresource:status
// +kubebuilder:printcolumn:name="Local IP",type=string,JSONPath=`.spec.ip`
// +kubebuilder:printcolumn:name="Remapped IP",type=string,JSONPath=`.status.ip`
// +kubebuilder:printcolumn:name="Remapped IP CIDR",type=string,JSONPath=`.status.cidr`
// +kubebuilder:printcolumn:name="Age",type=date,JSONPath=`.metadata.creationTimestamp`
// +kubebuilder:printcolumn:name="Remapped IPs",type=string,JSONPath=`.status.ipMappings`,priority=1
// +genclient

// IP is the Schema for the IP API.
Expand Down
17 changes: 5 additions & 12 deletions apis/ipam/v1alpha1/zz_generated.deepcopy.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion cmd/liqo-controller-manager/main.go
Original file line number Diff line number Diff line change
Expand Up @@ -260,7 +260,7 @@ func main() {
ipamClient = ipam.NewIPAMClient(conn)
}

if err := modules.SetupNetworkingModule(ctx, mgr, &modules.NetworkingOption{
if err := modules.SetupNetworkingModule(mgr, &modules.NetworkingOption{
DynClient: dynClient,
Factory: factory,

Expand Down
16 changes: 7 additions & 9 deletions cmd/liqo-controller-manager/modules/networking.go
Original file line number Diff line number Diff line change
Expand Up @@ -15,8 +15,6 @@
package modules

import (
"context"

"k8s.io/client-go/dynamic"
"k8s.io/klog/v2"
"sigs.k8s.io/controller-runtime/pkg/manager"
Expand All @@ -35,6 +33,7 @@ import (
nodecontroller "github.com/liqotech/liqo/pkg/liqo-controller-manager/networking/internal-network/node-controller"
"github.com/liqotech/liqo/pkg/liqo-controller-manager/networking/internal-network/route"
internalservercontroller "github.com/liqotech/liqo/pkg/liqo-controller-manager/networking/internal-network/server-controller"
ipctrl "github.com/liqotech/liqo/pkg/liqo-controller-manager/networking/ip-controller"
networkctrl "github.com/liqotech/liqo/pkg/liqo-controller-manager/networking/network-controller"
dynamicutils "github.com/liqotech/liqo/pkg/utils/dynamic"
)
Expand All @@ -60,19 +59,18 @@ type NetworkingOption struct {
}

// SetupNetworkingModule setup the networking module and initializes its controllers .
func SetupNetworkingModule(_ context.Context, mgr manager.Manager, opts *NetworkingOption) error {
func SetupNetworkingModule(mgr manager.Manager, opts *NetworkingOption) error {
networkReconciler := networkctrl.NewNetworkReconciler(mgr.GetClient(), mgr.GetScheme(), opts.IpamClient)
if err := networkReconciler.SetupWithManager(mgr, opts.NetworkWorkers); err != nil {
klog.Errorf("Unable to start the networkReconciler: %v", err)
return err
}

// TODO: refactor IP reconciler with the new IPAM client.
// ipReconciler := ipctrl.NewIPReconciler(mgr.GetClient(), mgr.GetScheme(), opts.IpamClient)
// if err := ipReconciler.SetupWithManager(ctx, mgr, opts.IPWorkers); err != nil {
// klog.Errorf("Unable to start the ipReconciler: %v", err)
// return err
// }
ipReconciler := ipctrl.NewIPReconciler(mgr.GetClient(), mgr.GetScheme(), opts.IpamClient)
if err := ipReconciler.SetupWithManager(mgr, opts.IPWorkers); err != nil {
klog.Errorf("Unable to start the ipReconciler: %v", err)
return err
}

cfgReconciler := configuration.NewConfigurationReconciler(mgr.GetClient(), mgr.GetScheme(),
mgr.GetEventRecorderFor("configuration-controller"))
Expand Down
74 changes: 54 additions & 20 deletions deployments/liqo/charts/liqo-crds/crds/ipam.liqo.io_ips.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -20,13 +20,15 @@ spec:
- jsonPath: .spec.ip
name: Local IP
type: string
- jsonPath: .status.ip
name: Remapped IP
type: string
- jsonPath: .status.cidr
name: Remapped IP CIDR
type: string
- jsonPath: .metadata.creationTimestamp
name: Age
type: date
- jsonPath: .status.ipMappings
name: Remapped IPs
priority: 1
type: string
name: v1alpha1
schema:
openAPIV3Schema:
Expand All @@ -52,12 +54,6 @@ spec:
spec:
description: IPSpec defines a local IP.
properties:
cidr:
description: |-
CIDR is the network CIDR where the desired IP should be allocated from.
It is optional, if left empty the IP will be allocated in a default network CIDR (e.g., external CIDR).
format: cidr
type: string
ip:
description: IP is the local IP.
format: ipv4
Expand All @@ -70,6 +66,51 @@ spec:
Masquerade is a flag to enable masquerade for the local IP on nodes.
If empty the masquerade is disabled.
type: boolean
networkRef:
description: |-
NetworkRef is the reference to the Network CR containing the CIDR where the desired IP should be allocated from.
It is optional, if left empty the IP will be allocated in a default network CIDR (e.g., external CIDR).
properties:
apiVersion:
description: API version of the referent.
type: string
fieldPath:
description: |-
If referring to a piece of an object instead of an entire object, this string
should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].
For example, if the object reference is to a container within a pod, this would take on a value like:
"spec.containers{name}" (where "name" refers to the name of the container that triggered
the event) or if no container name is specified "spec.containers[2]" (container with
index 2 in this pod). This syntax is chosen only to have some well-defined way of
referencing a part of an object.
type: string
kind:
description: |-
Kind of the referent.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
name:
description: |-
Name of the referent.
More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
type: string
namespace:
description: |-
Namespace of the referent.
More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
type: string
resourceVersion:
description: |-
Specific resourceVersion to which this reference is made, if any.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
type: string
uid:
description: |-
UID of the referent.
More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids
type: string
type: object
x-kubernetes-map-type: atomic
serviceTemplate:
description: |-
ServiceTemplate contains the template to create the associated service (and endpointslice) for the IP endopoint.
Expand Down Expand Up @@ -449,23 +490,16 @@ spec:
description: CIDR is the network CIDR where the IP is allocated.
format: cidr
type: string
x-kubernetes-validations:
- message: CIDR field is immutable
rule: self == oldSelf
ip:
description: IP is the remapped IP.
format: ipv4
type: string
x-kubernetes-validations:
- message: IP field is immutable
rule: self == oldSelf
ipMappings:
additionalProperties:
description: IP defines a syntax validated IP.
format: ipv4
type: string
description: IPMappings contains the mapping of the local IP for each
remote cluster.
type: object
required:
- ip
type: object
required:
- spec
Expand Down
4 changes: 2 additions & 2 deletions docs/advanced/external-ip-remapping.md
Original file line number Diff line number Diff line change
Expand Up @@ -59,8 +59,8 @@ apiVersion: ipam.liqo.io/v1alpha1
kind: IP
...
status:
ipMappings:
cluster1: <REMAPPED_IP>
ip: <REMAPPED_IP>
cidr: <CIDR_REMAPPED_IP>
```

Expand Down
5 changes: 5 additions & 0 deletions pkg/consts/ipam.go
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,11 @@ const (
// IPTypeAPIServerProxy is the constant representing an IP of type APIServerProxy.
IPTypeAPIServerProxy = "api-server-proxy"

// NetworkNamespaceLabelKey is the label key used to indicate the namespace of a Network.
NetworkNamespaceLabelKey = "ipam.liqo.io/network-namespace"
// NetworkNameLabelKey is the label key used to indicate the name of a Network.
NetworkNameLabelKey = "ipam.liqo.io/network-name"

// DefaultCIDRValue is the default value for a string that contains a CIDR.
DefaultCIDRValue = "None"
)
7 changes: 6 additions & 1 deletion pkg/ipam/ips.go
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,7 @@ import (
"context"
"time"

"github.com/google/nftables"
klog "k8s.io/klog/v2"
"sigs.k8s.io/controller-runtime/pkg/client"

Expand Down Expand Up @@ -64,8 +65,12 @@ func (lipam *LiqoIPAM) acquireIP(cidr string) (string, error) {
if lipam.cacheIPs == nil {
lipam.cacheIPs = make(map[string]ipInfo)
}
firstIP, _, err := nftables.NetFirstAndLastIP(cidr)
if err != nil {
return "", err
}
ip := ipCidr{
ip: "",
ip: firstIP.String(),
cidr: cidr,
}
lipam.cacheIPs[ip.String()] = ipInfo{
Expand Down
4 changes: 1 addition & 3 deletions pkg/ipam/sync_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,6 @@ import (
. "github.com/onsi/gomega"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/client-go/kubernetes/scheme"
"k8s.io/utils/ptr"
"sigs.k8s.io/controller-runtime/pkg/client/fake"

ipamv1alpha1 "github.com/liqotech/liqo/apis/ipam/v1alpha1"
Expand Down Expand Up @@ -81,8 +80,7 @@ var _ = Describe("Sync routine tests", func() {
Namespace: testNamespace,
},
Spec: ipamv1alpha1.IPSpec{
IP: networkingv1beta1.IP(ip),
CIDR: ptr.To(networkingv1beta1.CIDR(cidr)),
IP: networkingv1beta1.IP(ip),
},
Status: ipamv1alpha1.IPStatus{
IP: networkingv1beta1.IP(ip),
Expand Down
3 changes: 2 additions & 1 deletion pkg/ipamold/ipam.go
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,7 @@ import (
"github.com/liqotech/liqo/pkg/consts"
ipamerrors "github.com/liqotech/liqo/pkg/ipamold/errors"
ipamutils "github.com/liqotech/liqo/pkg/ipamold/utils"
utils "github.com/liqotech/liqo/pkg/utils/ipam"
)

// Ipam Interface.
Expand Down Expand Up @@ -415,7 +416,7 @@ func (liqoIPAM *IPAM) GetOrSetExternalCIDR(ctx context.Context, getOrSetExtCIDRR

// Acquire the UnknownSourceIP
// It must be the first ip in the externalCIDR
unknownSourceIP, err := ipamutils.GetUnknownSourceIP(externalCIDR)
unknownSourceIP, err := utils.GetUnknownSourceIP(externalCIDR)
if err != nil {
return &GetOrSetExtCIDRResponse{}, fmt.Errorf("cannot get the UnknownSourceIP: %w", err)
}
Expand Down
13 changes: 0 additions & 13 deletions pkg/ipamold/utils/utils.go
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,6 @@ import (
"net"
"net/netip"

"github.com/google/nftables"
"go4.org/netipx"
utilruntime "k8s.io/apimachinery/pkg/util/runtime"

Expand Down Expand Up @@ -117,15 +116,3 @@ func SplitNetwork(network string) []string {

return halves
}

// GetUnknownSourceIP returns the IP address used to map unknown sources.
func GetUnknownSourceIP(extCIDR string) (string, error) {
if extCIDR == "" {
return "", fmt.Errorf("ExternalCIDR not set")
}
firstExtCIDRip, _, err := nftables.NetFirstAndLastIP(extCIDR)
if err != nil {
return "", fmt.Errorf("cannot get first IP of ExternalCIDR")
}
return firstExtCIDRip.String(), nil
}
Original file line number Diff line number Diff line change
Expand Up @@ -32,8 +32,8 @@ import (
ipamv1alpha1 "github.com/liqotech/liqo/apis/ipam/v1alpha1"
networkingv1beta1 "github.com/liqotech/liqo/apis/networking/v1beta1"
"github.com/liqotech/liqo/pkg/consts"
"github.com/liqotech/liqo/pkg/ipamold/utils"
configuration "github.com/liqotech/liqo/pkg/liqo-controller-manager/networking/external-network/configuration"
ipamutils "github.com/liqotech/liqo/pkg/utils/ipam"
)

// cluster-role
Expand Down Expand Up @@ -74,7 +74,7 @@ func (r *ConfigurationReconciler) Reconcile(ctx context.Context, req ctrl.Reques
klog.V(4).Infof("Reconciling configuration %q", req.NamespacedName)

extCIDR := cfg.Status.Remote.CIDR.External
remoteUnknownSourceIP, err := utils.GetUnknownSourceIP(string(extCIDR))
remoteUnknownSourceIP, err := ipamutils.GetUnknownSourceIP(string(extCIDR))
if err != nil {
return ctrl.Result{}, fmt.Errorf("unable to get the unknown source IP: %w", err)
}
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -23,18 +23,18 @@ import (
)

const (
// ipMappingsControllerFinalizer is the finalizer added to IP resources (related to mapping) to allow the controller to clean up.
ipMappingsControllerFinalizer = "ipmapping-nat-controller.liqo.io/finalizer"
// ipMappingControllerFinalizer is the finalizer added to IP resources (related to mapping) to allow the controller to clean up.
ipMappingControllerFinalizer = "ipmapping-nat-controller.liqo.io/finalizer"
)

func (r *IPReconciler) ensureIPMappingFinalizerPresence(
ctx context.Context, ip *ipamv1alpha1.IP) error {
controllerutil.AddFinalizer(ip, ipMappingsControllerFinalizer)
controllerutil.AddFinalizer(ip, ipMappingControllerFinalizer)
return r.Client.Update(ctx, ip)
}

func (r *IPReconciler) ensureIPMappingFinalizerAbsence(
ctx context.Context, ip *ipamv1alpha1.IP) error {
controllerutil.RemoveFinalizer(ip, ipMappingsControllerFinalizer)
controllerutil.RemoveFinalizer(ip, ipMappingControllerFinalizer)
return r.Client.Update(ctx, ip)
}
Loading

0 comments on commit af4fd26

Please sign in to comment.