Home Explore Help
Sign In
tzeneto
/
custom-kube-scheduler
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: a2a212880b
Branches Tags
custom-kube-...
/
kubernetes-v1.15.4
/
pkg
/
util
/
ipvs
/
ipvs_linux.go

ipvs_linux.go 7.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310 
  1. // +build linux
    2. 

  2. 

  3. /*
    4. 

  4. Copyright 2017 The Kubernetes Authors.
    5. 

  5. 

  6. Licensed under the Apache License, Version 2.0 (the "License");
    7. 

  7. you may not use this file except in compliance with the License.
    8. 

  8. You may obtain a copy of the License at
    9. 

  9. 

  10.     http://www.apache.org/licenses/LICENSE-2.0
    11. 

  11. 

  12. Unless required by applicable law or agreed to in writing, software
    13. 

  13. distributed under the License is distributed on an "AS IS" BASIS,
    14. 

  14. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    15. 

  15. See the License for the specific language governing permissions and
    16. 

  16. limitations under the License.
    17. 

  17. */
    18. 

  18. 

  19. package ipvs
    20. 

  20. 

  21. import (
    22. 

  22. 	"errors"
    23. 

  23. 	"fmt"
    24. 

  24. 	"net"
    25. 

  25. 	"strings"
    26. 

  26. 	"sync"
    27. 

  27. 	"syscall"
    28. 

  28. 

  29. 	libipvs "github.com/docker/libnetwork/ipvs"
    30. 

  30. 	"k8s.io/klog"
    31. 

  31. 	utilexec "k8s.io/utils/exec"
    32. 

  32. )
    33. 

  33. 

  34. // runner implements ipvs.Interface.
    35. 

  35. type runner struct {
    36. 

  36. 	exec       utilexec.Interface
    37. 

  37. 	ipvsHandle *libipvs.Handle
    38. 

  38. 	mu         sync.Mutex // Protect Netlink calls
    39. 

  39. }
    40. 

  40. 

  41. // Protocol is the IPVS service protocol type
    42. 

  42. type Protocol uint16
    43. 

  43. 

  44. // New returns a new Interface which will call ipvs APIs.
    45. 

  45. func New(exec utilexec.Interface) Interface {
    46. 

  46. 	handle, err := libipvs.New("")
    47. 

  47. 	if err != nil {
    48. 

  48. 		klog.Errorf("IPVS interface can't be initialized, error: %v", err)
    49. 

  49. 		return nil
    50. 

  50. 	}
    51. 

  51. 	return &runner{
    52. 

  52. 		exec:       exec,
    53. 

  53. 		ipvsHandle: handle,
    54. 

  54. 	}
    55. 

  55. }
    56. 

  56. 

  57. // AddVirtualServer is part of ipvs.Interface.
    58. 

  58. func (runner *runner) AddVirtualServer(vs *VirtualServer) error {
    59. 

  59. 	svc, err := toIPVSService(vs)
    60. 

  60. 	if err != nil {
    61. 

  61. 		return err
    62. 

  62. 	}
    63. 

  63. 	runner.mu.Lock()
    64. 

  64. 	defer runner.mu.Unlock()
    65. 

  65. 	return runner.ipvsHandle.NewService(svc)
    66. 

  66. }
    67. 

  67. 

  68. // UpdateVirtualServer is part of ipvs.Interface.
    69. 

  69. func (runner *runner) UpdateVirtualServer(vs *VirtualServer) error {
    70. 

  70. 	svc, err := toIPVSService(vs)
    71. 

  71. 	if err != nil {
    72. 

  72. 		return err
    73. 

  73. 	}
    74. 

  74. 	runner.mu.Lock()
    75. 

  75. 	defer runner.mu.Unlock()
    76. 

  76. 	return runner.ipvsHandle.UpdateService(svc)
    77. 

  77. }
    78. 

  78. 

  79. // DeleteVirtualServer is part of ipvs.Interface.
    80. 

  80. func (runner *runner) DeleteVirtualServer(vs *VirtualServer) error {
    81. 

  81. 	svc, err := toIPVSService(vs)
    82. 

  82. 	if err != nil {
    83. 

  83. 		return err
    84. 

  84. 	}
    85. 

  85. 	runner.mu.Lock()
    86. 

  86. 	defer runner.mu.Unlock()
    87. 

  87. 	return runner.ipvsHandle.DelService(svc)
    88. 

  88. }
    89. 

  89. 

  90. // GetVirtualServer is part of ipvs.Interface.
    91. 

  91. func (runner *runner) GetVirtualServer(vs *VirtualServer) (*VirtualServer, error) {
    92. 

  92. 	svc, err := toIPVSService(vs)
    93. 

  93. 	if err != nil {
    94. 

  94. 		return nil, err
    95. 

  95. 	}
    96. 

  96. 	runner.mu.Lock()
    97. 

  97. 	ipvsSvc, err := runner.ipvsHandle.GetService(svc)
    98. 

  98. 	runner.mu.Unlock()
    99. 

  99. 

  100. 	if err != nil {
    101. 

  101. 		return nil, err
    102. 

  102. 	}
    103. 

  103. 	vServ, err := toVirtualServer(ipvsSvc)
    104. 

  104. 	if err != nil {
    105. 

  105. 		return nil, err
    106. 

  106. 	}
    107. 

  107. 	return vServ, nil
    108. 

  108. }
    109. 

  109. 

  110. // GetVirtualServers is part of ipvs.Interface.
    111. 

  111. func (runner *runner) GetVirtualServers() ([]*VirtualServer, error) {
    112. 

  112. 	runner.mu.Lock()
    113. 

  113. 	ipvsSvcs, err := runner.ipvsHandle.GetServices()
    114. 

  114. 	runner.mu.Unlock()
    115. 

  115. 	if err != nil {
    116. 

  116. 		return nil, err
    117. 

  117. 	}
    118. 

  118. 	vss := make([]*VirtualServer, 0)
    119. 

  119. 	for _, ipvsSvc := range ipvsSvcs {
    120. 

  120. 		vs, err := toVirtualServer(ipvsSvc)
    121. 

  121. 		if err != nil {
    122. 

  122. 			return nil, err
    123. 

  123. 		}
    124. 

  124. 		vss = append(vss, vs)
    125. 

  125. 	}
    126. 

  126. 	return vss, nil
    127. 

  127. }
    128. 

  128. 

  129. // Flush is part of ipvs.Interface. Currently we delete IPVS services one by one
    130. 

  130. func (runner *runner) Flush() error {
    131. 

  131. 	runner.mu.Lock()
    132. 

  132. 	defer runner.mu.Unlock()
    133. 

  133. 	return runner.ipvsHandle.Flush()
    134. 

  134. }
    135. 

  135. 

  136. // AddRealServer is part of ipvs.Interface.
    137. 

  137. func (runner *runner) AddRealServer(vs *VirtualServer, rs *RealServer) error {
    138. 

  138. 	svc, err := toIPVSService(vs)
    139. 

  139. 	if err != nil {
    140. 

  140. 		return err
    141. 

  141. 	}
    142. 

  142. 	dst, err := toIPVSDestination(rs)
    143. 

  143. 	if err != nil {
    144. 

  144. 		return err
    145. 

  145. 	}
    146. 

  146. 	runner.mu.Lock()
    147. 

  147. 	defer runner.mu.Unlock()
    148. 

  148. 	return runner.ipvsHandle.NewDestination(svc, dst)
    149. 

  149. }
    150. 

  150. 

  151. // DeleteRealServer is part of ipvs.Interface.
    152. 

  152. func (runner *runner) DeleteRealServer(vs *VirtualServer, rs *RealServer) error {
    153. 

  153. 	svc, err := toIPVSService(vs)
    154. 

  154. 	if err != nil {
    155. 

  155. 		return err
    156. 

  156. 	}
    157. 

  157. 	dst, err := toIPVSDestination(rs)
    158. 

  158. 	if err != nil {
    159. 

  159. 		return err
    160. 

  160. 	}
    161. 

  161. 	runner.mu.Lock()
    162. 

  162. 	defer runner.mu.Unlock()
    163. 

  163. 	return runner.ipvsHandle.DelDestination(svc, dst)
    164. 

  164. }
    165. 

  165. 

  166. func (runner *runner) UpdateRealServer(vs *VirtualServer, rs *RealServer) error {
    167. 

  167. 	svc, err := toIPVSService(vs)
    168. 

  168. 	if err != nil {
    169. 

  169. 		return err
    170. 

  170. 	}
    171. 

  171. 	dst, err := toIPVSDestination(rs)
    172. 

  172. 	if err != nil {
    173. 

  173. 		return err
    174. 

  174. 	}
    175. 

  175. 	runner.mu.Lock()
    176. 

  176. 	defer runner.mu.Unlock()
    177. 

  177. 	return runner.ipvsHandle.UpdateDestination(svc, dst)
    178. 

  178. }
    179. 

  179. 

  180. // GetRealServers is part of ipvs.Interface.
    181. 

  181. func (runner *runner) GetRealServers(vs *VirtualServer) ([]*RealServer, error) {
    182. 

  182. 	svc, err := toIPVSService(vs)
    183. 

  183. 	if err != nil {
    184. 

  184. 		return nil, err
    185. 

  185. 	}
    186. 

  186. 	runner.mu.Lock()
    187. 

  187. 	dsts, err := runner.ipvsHandle.GetDestinations(svc)
    188. 

  188. 	runner.mu.Unlock()
    189. 

  189. 	if err != nil {
    190. 

  190. 		return nil, err
    191. 

  191. 	}
    192. 

  192. 	rss := make([]*RealServer, 0)
    193. 

  193. 	for _, dst := range dsts {
    194. 

  194. 		dst, err := toRealServer(dst)
    195. 

  195. 		// TODO: aggregate errors?
    196. 

  196. 		if err != nil {
    197. 

  197. 			return nil, err
    198. 

  198. 		}
    199. 

  199. 		rss = append(rss, dst)
    200. 

  200. 	}
    201. 

  201. 	return rss, nil
    202. 

  202. }
    203. 

  203. 

  204. // toVirtualServer converts an IPVS Service to the equivalent VirtualServer structure.
    205. 

  205. func toVirtualServer(svc *libipvs.Service) (*VirtualServer, error) {
    206. 

  206. 	if svc == nil {
    207. 

  207. 		return nil, errors.New("ipvs svc should not be empty")
    208. 

  208. 	}
    209. 

  209. 	vs := &VirtualServer{
    210. 

  210. 		Address:   svc.Address,
    211. 

  211. 		Port:      svc.Port,
    212. 

  212. 		Scheduler: svc.SchedName,
    213. 

  213. 		Protocol:  protocolToString(Protocol(svc.Protocol)),
    214. 

  214. 		Timeout:   svc.Timeout,
    215. 

  215. 	}
    216. 

  216. 

  217. 	// Test Flags >= 0x2, valid Flags ranges [0x2, 0x3]
    218. 

  218. 	if svc.Flags&FlagHashed == 0 {
    219. 

  219. 		return nil, fmt.Errorf("Flags of successfully created IPVS service should be >= %d since every service is hashed into the service table", FlagHashed)
    220. 

  220. 	}
    221. 

  221. 	// Sub Flags to 0x2
    222. 

  222. 	// 011 -> 001, 010 -> 000
    223. 

  223. 	vs.Flags = ServiceFlags(svc.Flags &^ uint32(FlagHashed))
    224. 

  224. 

  225. 	if vs.Address == nil {
    226. 

  226. 		if svc.AddressFamily == syscall.AF_INET {
    227. 

  227. 			vs.Address = net.IPv4zero
    228. 

  228. 		} else {
    229. 

  229. 			vs.Address = net.IPv6zero
    230. 

  230. 		}
    231. 

  231. 	}
    232. 

  232. 	return vs, nil
    233. 

  233. }
    234. 

  234. 

  235. // toRealServer converts an IPVS Destination to the equivalent RealServer structure.
    236. 

  236. func toRealServer(dst *libipvs.Destination) (*RealServer, error) {
    237. 

  237. 	if dst == nil {
    238. 

  238. 		return nil, errors.New("ipvs destination should not be empty")
    239. 

  239. 	}
    240. 

  240. 	return &RealServer{
    241. 

  241. 		Address:      dst.Address,
    242. 

  242. 		Port:         dst.Port,
    243. 

  243. 		Weight:       dst.Weight,
    244. 

  244. 		ActiveConn:   dst.ActiveConnections,
    245. 

  245. 		InactiveConn: dst.InactiveConnections,
    246. 

  246. 	}, nil
    247. 

  247. }
    248. 

  248. 

  249. // toIPVSService converts a VirtualServer to the equivalent IPVS Service structure.
    250. 

  250. func toIPVSService(vs *VirtualServer) (*libipvs.Service, error) {
    251. 

  251. 	if vs == nil {
    252. 

  252. 		return nil, errors.New("virtual server should not be empty")
    253. 

  253. 	}
    254. 

  254. 	ipvsSvc := &libipvs.Service{
    255. 

  255. 		Address:   vs.Address,
    256. 

  256. 		Protocol:  stringToProtocol(vs.Protocol),
    257. 

  257. 		Port:      vs.Port,
    258. 

  258. 		SchedName: vs.Scheduler,
    259. 

  259. 		Flags:     uint32(vs.Flags),
    260. 

  260. 		Timeout:   vs.Timeout,
    261. 

  261. 	}
    262. 

  262. 

  263. 	if ip4 := vs.Address.To4(); ip4 != nil {
    264. 

  264. 		ipvsSvc.AddressFamily = syscall.AF_INET
    265. 

  265. 		ipvsSvc.Netmask = 0xffffffff
    266. 

  266. 	} else {
    267. 

  267. 		ipvsSvc.AddressFamily = syscall.AF_INET6
    268. 

  268. 		ipvsSvc.Netmask = 128
    269. 

  269. 	}
    270. 

  270. 	return ipvsSvc, nil
    271. 

  271. }
    272. 

  272. 

  273. // toIPVSDestination converts a RealServer to the equivalent IPVS Destination structure.
    274. 

  274. func toIPVSDestination(rs *RealServer) (*libipvs.Destination, error) {
    275. 

  275. 	if rs == nil {
    276. 

  276. 		return nil, errors.New("real server should not be empty")
    277. 

  277. 	}
    278. 

  278. 	return &libipvs.Destination{
    279. 

  279. 		Address: rs.Address,
    280. 

  280. 		Port:    rs.Port,
    281. 

  281. 		Weight:  rs.Weight,
    282. 

  282. 	}, nil
    283. 

  283. }
    284. 

  284. 

  285. // stringToProtocolType returns the protocol type for the given name
    286. 

  286. func stringToProtocol(protocol string) uint16 {
    287. 

  287. 	switch strings.ToLower(protocol) {
    288. 

  288. 	case "tcp":
    289. 

  289. 		return uint16(syscall.IPPROTO_TCP)
    290. 

  290. 	case "udp":
    291. 

  291. 		return uint16(syscall.IPPROTO_UDP)
    292. 

  292. 	case "sctp":
    293. 

  293. 		return uint16(syscall.IPPROTO_SCTP)
    294. 

  294. 	}
    295. 

  295. 	return uint16(0)
    296. 

  296. }
    297. 

  297. 

  298. // protocolTypeToString returns the name for the given protocol.
    299. 

  299. func protocolToString(proto Protocol) string {
    300. 

  300. 	switch proto {
    301. 

  301. 	case syscall.IPPROTO_TCP:
    302. 

  302. 		return "TCP"
    303. 

  303. 	case syscall.IPPROTO_UDP:
    304. 

  304. 		return "UDP"
    305. 

  305. 	case syscall.IPPROTO_SCTP:
    306. 

  306. 		return "SCTP"
    307. 

  307. 	}
    308. 

  308. 	return ""
    309. 

  309. }
    310. 

  310.