134 lines
4.3 KiB
Go
134 lines
4.3 KiB
Go
/*
|
|
Copyright The containerd Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package server
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"net"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
"text/template"
|
|
|
|
"github.com/containerd/containerd/log"
|
|
runtime "k8s.io/cri-api/pkg/apis/runtime/v1"
|
|
)
|
|
|
|
// cniConfigTemplate contains the values containerd will overwrite
|
|
// in the cni config template.
|
|
type cniConfigTemplate struct {
|
|
// PodCIDR is the cidr for pods on the node.
|
|
PodCIDR string
|
|
// PodCIDRRanges is the cidr ranges for pods on the node.
|
|
PodCIDRRanges []string
|
|
// Routes is a list of routes configured.
|
|
Routes []string
|
|
}
|
|
|
|
const (
|
|
// cniConfigFileName is the name of cni config file generated by containerd.
|
|
cniConfigFileName = "10-containerd-net.conflist"
|
|
// zeroCIDRv6 is the null route for IPv6.
|
|
zeroCIDRv6 = "::/0"
|
|
// zeroCIDRv4 is the null route for IPv4.
|
|
zeroCIDRv4 = "0.0.0.0/0"
|
|
)
|
|
|
|
// UpdateRuntimeConfig updates the runtime config. Currently only handles podCIDR updates.
|
|
func (c *criService) UpdateRuntimeConfig(ctx context.Context, r *runtime.UpdateRuntimeConfigRequest) (*runtime.UpdateRuntimeConfigResponse, error) {
|
|
podCIDRs := r.GetRuntimeConfig().GetNetworkConfig().GetPodCidr()
|
|
if podCIDRs == "" {
|
|
return &runtime.UpdateRuntimeConfigResponse{}, nil
|
|
}
|
|
cidrs := strings.Split(podCIDRs, ",")
|
|
for i := range cidrs {
|
|
cidrs[i] = strings.TrimSpace(cidrs[i])
|
|
}
|
|
routes, err := getRoutes(cidrs)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("get routes: %w", err)
|
|
}
|
|
|
|
confTemplate := c.config.NetworkPluginConfTemplate
|
|
if confTemplate == "" {
|
|
log.G(ctx).Info("No cni config template is specified, wait for other system components to drop the config.")
|
|
return &runtime.UpdateRuntimeConfigResponse{}, nil
|
|
}
|
|
netPlugin := c.netPlugin[defaultNetworkPlugin]
|
|
if netPlugin == nil {
|
|
log.G(ctx).Infof("Network plugin is ready, skip generating cni config from template %q", confTemplate)
|
|
return &runtime.UpdateRuntimeConfigResponse{}, nil
|
|
}
|
|
if err := netPlugin.Status(); err == nil {
|
|
log.G(ctx).Infof("Network plugin is ready, skip generating cni config from template %q", confTemplate)
|
|
return &runtime.UpdateRuntimeConfigResponse{}, nil
|
|
} else if err := netPlugin.Load(c.cniLoadOptions()...); err == nil {
|
|
log.G(ctx).Infof("CNI config is successfully loaded, skip generating cni config from template %q", confTemplate)
|
|
return &runtime.UpdateRuntimeConfigResponse{}, nil
|
|
}
|
|
log.G(ctx).Infof("Generating cni config from template %q", confTemplate)
|
|
// generate cni config file from the template with updated pod cidr.
|
|
t, err := template.ParseFiles(confTemplate)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to parse cni config template %q: %w", confTemplate, err)
|
|
}
|
|
if err := os.MkdirAll(c.config.NetworkPluginConfDir, 0755); err != nil {
|
|
return nil, fmt.Errorf("failed to create cni config directory: %q: %w", c.config.NetworkPluginConfDir, err)
|
|
}
|
|
confFile := filepath.Join(c.config.NetworkPluginConfDir, cniConfigFileName)
|
|
f, err := os.OpenFile(confFile, os.O_WRONLY|os.O_CREATE, 0644)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to open cni config file %q: %w", confFile, err)
|
|
}
|
|
defer f.Close()
|
|
if err := t.Execute(f, cniConfigTemplate{
|
|
PodCIDR: cidrs[0],
|
|
PodCIDRRanges: cidrs,
|
|
Routes: routes,
|
|
}); err != nil {
|
|
return nil, fmt.Errorf("failed to generate cni config file %q: %w", confFile, err)
|
|
}
|
|
return &runtime.UpdateRuntimeConfigResponse{}, nil
|
|
}
|
|
|
|
// getRoutes generates required routes for the passed in cidrs.
|
|
func getRoutes(cidrs []string) ([]string, error) {
|
|
var (
|
|
routes []string
|
|
hasV4, hasV6 bool
|
|
)
|
|
for _, c := range cidrs {
|
|
_, cidr, err := net.ParseCIDR(c)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if cidr.IP.To4() != nil {
|
|
hasV4 = true
|
|
} else {
|
|
hasV6 = true
|
|
}
|
|
}
|
|
if hasV4 {
|
|
routes = append(routes, zeroCIDRv4)
|
|
}
|
|
if hasV6 {
|
|
routes = append(routes, zeroCIDRv6)
|
|
}
|
|
return routes, nil
|
|
}
|