mirror of
https://github.com/kubernetes-sigs/external-dns.git
synced 2025-10-31 02:31:00 +01:00
111df9f1fb
* feat: use transformers in pod informers to reduce memory footprint Add a transformer to the pods informer of the pod and service sources. Refs: #5595 Signed-off-by: Valerian Roche <valerian.roche@datadoghq.com> * Do not use transformer when fqdnTemplate is set * Update source/pod_test.go Co-authored-by: Michel Loiseleur <97035654+mloiseleur@users.noreply.github.com> --------- Signed-off-by: Valerian Roche <valerian.roche@datadoghq.com> Co-authored-by: Michel Loiseleur <97035654+mloiseleur@users.noreply.github.com>
300 lines
10 KiB
Go
300 lines
10 KiB
Go
/*
|
|
Copyright 2021 The Kubernetes Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package source
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"maps"
|
|
"text/template"
|
|
|
|
log "github.com/sirupsen/logrus"
|
|
corev1 "k8s.io/api/core/v1"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/apimachinery/pkg/labels"
|
|
|
|
kubeinformers "k8s.io/client-go/informers"
|
|
coreinformers "k8s.io/client-go/informers/core/v1"
|
|
"k8s.io/client-go/kubernetes"
|
|
|
|
"sigs.k8s.io/external-dns/endpoint"
|
|
"sigs.k8s.io/external-dns/source/annotations"
|
|
"sigs.k8s.io/external-dns/source/fqdn"
|
|
"sigs.k8s.io/external-dns/source/informers"
|
|
)
|
|
|
|
type podSource struct {
|
|
client kubernetes.Interface
|
|
namespace string
|
|
fqdnTemplate *template.Template
|
|
combineFQDNAnnotation bool
|
|
|
|
podInformer coreinformers.PodInformer
|
|
nodeInformer coreinformers.NodeInformer
|
|
compatibility string
|
|
ignoreNonHostNetworkPods bool
|
|
podSourceDomain string
|
|
}
|
|
|
|
// NewPodSource creates a new podSource with the given config.
|
|
func NewPodSource(
|
|
ctx context.Context,
|
|
kubeClient kubernetes.Interface,
|
|
namespace string,
|
|
compatibility string,
|
|
ignoreNonHostNetworkPods bool,
|
|
podSourceDomain string,
|
|
fqdnTemplate string,
|
|
combineFqdnAnnotation bool,
|
|
annotationFilter string,
|
|
labelSelector labels.Selector,
|
|
) (Source, error) {
|
|
informerFactory := kubeinformers.NewSharedInformerFactoryWithOptions(kubeClient, 0, kubeinformers.WithNamespace(namespace))
|
|
podInformer := informerFactory.Core().V1().Pods()
|
|
nodeInformer := informerFactory.Core().V1().Nodes()
|
|
|
|
err := podInformer.Informer().AddIndexers(informers.IndexerWithOptions[*corev1.Pod](
|
|
informers.IndexSelectorWithAnnotationFilter(annotationFilter),
|
|
informers.IndexSelectorWithLabelSelector(labelSelector),
|
|
))
|
|
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to add indexers to pod informer: %w", err)
|
|
}
|
|
|
|
_, _ = podInformer.Informer().AddEventHandler(informers.DefaultEventHandler())
|
|
|
|
if fqdnTemplate == "" {
|
|
// Transformer is used to reduce the memory usage of the informer.
|
|
// The pod informer will otherwise store a full in-memory, go-typed copy of all pod schemas in the cluster.
|
|
// If watchList is not used it will not prevent memory bursts on the initial informer sync.
|
|
// When fqdnTemplate is used the entire pod needs to be provided to the rendering call, but the informer itself becomes unneeded.
|
|
podInformer.Informer().SetTransform(func(i interface{}) (interface{}, error) {
|
|
pod, ok := i.(*corev1.Pod)
|
|
if !ok {
|
|
return nil, fmt.Errorf("object is not a pod")
|
|
}
|
|
if pod.UID == "" {
|
|
// Pod was already transformed and we must be idempotent.
|
|
return pod, nil
|
|
}
|
|
return &corev1.Pod{
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
// Name/namespace must always be kept for the informer to work.
|
|
Name: pod.Name,
|
|
Namespace: pod.Namespace,
|
|
// Used by the controller. This includes non-external-dns prefixed annotations.
|
|
Annotations: pod.Annotations,
|
|
},
|
|
Spec: corev1.PodSpec{
|
|
HostNetwork: pod.Spec.HostNetwork,
|
|
NodeName: pod.Spec.NodeName,
|
|
},
|
|
Status: corev1.PodStatus{
|
|
PodIP: pod.Status.PodIP,
|
|
},
|
|
}, nil
|
|
})
|
|
}
|
|
|
|
_, _ = nodeInformer.Informer().AddEventHandler(informers.DefaultEventHandler())
|
|
|
|
informerFactory.Start(ctx.Done())
|
|
|
|
// wait for the local cache to be populated.
|
|
if err := informers.WaitForCacheSync(context.Background(), informerFactory); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
tmpl, err := fqdn.ParseTemplate(fqdnTemplate)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &podSource{
|
|
client: kubeClient,
|
|
podInformer: podInformer,
|
|
nodeInformer: nodeInformer,
|
|
namespace: namespace,
|
|
compatibility: compatibility,
|
|
ignoreNonHostNetworkPods: ignoreNonHostNetworkPods,
|
|
podSourceDomain: podSourceDomain,
|
|
fqdnTemplate: tmpl,
|
|
combineFQDNAnnotation: combineFqdnAnnotation,
|
|
}, nil
|
|
}
|
|
|
|
func (ps *podSource) AddEventHandler(_ context.Context, handler func()) {
|
|
_, _ = ps.podInformer.Informer().AddEventHandler(eventHandlerFunc(handler))
|
|
}
|
|
|
|
func (ps *podSource) Endpoints(_ context.Context) ([]*endpoint.Endpoint, error) {
|
|
indexKeys := ps.podInformer.Informer().GetIndexer().ListIndexFuncValues(informers.IndexWithSelectors)
|
|
|
|
endpointMap := make(map[endpoint.EndpointKey][]string)
|
|
for _, key := range indexKeys {
|
|
pod, err := informers.GetByKey[*corev1.Pod](ps.podInformer.Informer().GetIndexer(), key)
|
|
if err != nil {
|
|
continue
|
|
}
|
|
|
|
if ps.fqdnTemplate == nil || ps.combineFQDNAnnotation {
|
|
ps.addPodEndpointsToEndpointMap(endpointMap, pod)
|
|
}
|
|
|
|
if ps.fqdnTemplate != nil {
|
|
fqdnHosts, err := ps.hostsFromTemplate(pod)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
maps.Copy(endpointMap, fqdnHosts)
|
|
}
|
|
}
|
|
|
|
var endpoints []*endpoint.Endpoint
|
|
for key, targets := range endpointMap {
|
|
endpoints = append(endpoints, endpoint.NewEndpointWithTTL(key.DNSName, key.RecordType, key.RecordTTL, targets...))
|
|
}
|
|
return endpoints, nil
|
|
}
|
|
|
|
func (ps *podSource) addPodEndpointsToEndpointMap(endpointMap map[endpoint.EndpointKey][]string, pod *corev1.Pod) {
|
|
if ps.ignoreNonHostNetworkPods && !pod.Spec.HostNetwork {
|
|
log.Debugf("skipping pod %s. hostNetwork=false", pod.Name)
|
|
return
|
|
}
|
|
|
|
targets := annotations.TargetsFromTargetAnnotation(pod.Annotations)
|
|
|
|
ps.addInternalHostnameAnnotationEndpoints(endpointMap, pod, targets)
|
|
ps.addHostnameAnnotationEndpoints(endpointMap, pod, targets)
|
|
ps.addKopsDNSControllerEndpoints(endpointMap, pod, targets)
|
|
ps.addPodSourceDomainEndpoints(endpointMap, pod, targets)
|
|
}
|
|
|
|
func (ps *podSource) addInternalHostnameAnnotationEndpoints(endpointMap map[endpoint.EndpointKey][]string, pod *corev1.Pod, targets []string) {
|
|
if domainAnnotation, ok := pod.Annotations[internalHostnameAnnotationKey]; ok {
|
|
domainList := annotations.SplitHostnameAnnotation(domainAnnotation)
|
|
for _, domain := range domainList {
|
|
if len(targets) == 0 {
|
|
addToEndpointMap(endpointMap, pod, domain, suitableType(pod.Status.PodIP), pod.Status.PodIP)
|
|
} else {
|
|
addTargetsToEndpointMap(endpointMap, pod, targets, domain)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func (ps *podSource) addHostnameAnnotationEndpoints(endpointMap map[endpoint.EndpointKey][]string, pod *corev1.Pod, targets []string) {
|
|
if domainAnnotation, ok := pod.Annotations[hostnameAnnotationKey]; ok {
|
|
domainList := annotations.SplitHostnameAnnotation(domainAnnotation)
|
|
if len(targets) == 0 {
|
|
ps.addPodNodeEndpointsToEndpointMap(endpointMap, pod, domainList)
|
|
} else {
|
|
addTargetsToEndpointMap(endpointMap, pod, targets, domainList...)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (ps *podSource) addKopsDNSControllerEndpoints(endpointMap map[endpoint.EndpointKey][]string, pod *corev1.Pod, targets []string) {
|
|
if ps.compatibility == "kops-dns-controller" {
|
|
if domainAnnotation, ok := pod.Annotations[kopsDNSControllerInternalHostnameAnnotationKey]; ok {
|
|
domainList := annotations.SplitHostnameAnnotation(domainAnnotation)
|
|
for _, domain := range domainList {
|
|
addToEndpointMap(endpointMap, pod, domain, suitableType(pod.Status.PodIP), pod.Status.PodIP)
|
|
}
|
|
}
|
|
|
|
if domainAnnotation, ok := pod.Annotations[kopsDNSControllerHostnameAnnotationKey]; ok {
|
|
domainList := annotations.SplitHostnameAnnotation(domainAnnotation)
|
|
ps.addPodNodeEndpointsToEndpointMap(endpointMap, pod, domainList)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (ps *podSource) addPodSourceDomainEndpoints(endpointMap map[endpoint.EndpointKey][]string, pod *corev1.Pod, targets []string) {
|
|
if ps.podSourceDomain != "" {
|
|
domain := pod.Name + "." + ps.podSourceDomain
|
|
if len(targets) == 0 {
|
|
addToEndpointMap(endpointMap, pod, domain, suitableType(pod.Status.PodIP), pod.Status.PodIP)
|
|
}
|
|
addTargetsToEndpointMap(endpointMap, pod, targets, domain)
|
|
}
|
|
}
|
|
|
|
func (ps *podSource) addPodNodeEndpointsToEndpointMap(endpointMap map[endpoint.EndpointKey][]string, pod *corev1.Pod, domainList []string) {
|
|
node, err := ps.nodeInformer.Lister().Get(pod.Spec.NodeName)
|
|
if err != nil {
|
|
log.Debugf("Get node[%s] of pod[%s] error: %v; ignoring", pod.Spec.NodeName, pod.GetName(), err)
|
|
return
|
|
}
|
|
for _, domain := range domainList {
|
|
for _, address := range node.Status.Addresses {
|
|
recordType := suitableType(address.Address)
|
|
// IPv6 addresses are labeled as NodeInternalIP despite being usable externally as well.
|
|
if address.Type == corev1.NodeExternalIP || (address.Type == corev1.NodeInternalIP && recordType == endpoint.RecordTypeAAAA) {
|
|
addToEndpointMap(endpointMap, pod, domain, recordType, address.Address)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func (ps *podSource) hostsFromTemplate(pod *corev1.Pod) (map[endpoint.EndpointKey][]string, error) {
|
|
hosts, err := fqdn.ExecTemplate(ps.fqdnTemplate, pod)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("skipping generating endpoints from template for pod %s: %w", pod.Name, err)
|
|
}
|
|
|
|
result := make(map[endpoint.EndpointKey][]string)
|
|
for _, target := range hosts {
|
|
for _, address := range pod.Status.PodIPs {
|
|
if address.IP == "" {
|
|
log.Debugf("skipping pod %q. PodIP is empty with phase %q", pod.Name, pod.Status.Phase)
|
|
continue
|
|
}
|
|
key := endpoint.EndpointKey{
|
|
DNSName: target,
|
|
RecordType: suitableType(address.IP),
|
|
RecordTTL: annotations.TTLFromAnnotations(pod.Annotations, fmt.Sprintf("pod/%s", pod.Name)),
|
|
}
|
|
result[key] = append(result[key], address.IP)
|
|
}
|
|
}
|
|
|
|
return result, nil
|
|
}
|
|
|
|
func addTargetsToEndpointMap(endpointMap map[endpoint.EndpointKey][]string, pod *corev1.Pod, targets []string, domainList ...string) {
|
|
for _, domain := range domainList {
|
|
for _, target := range targets {
|
|
addToEndpointMap(endpointMap, pod, domain, suitableType(target), target)
|
|
}
|
|
}
|
|
}
|
|
|
|
func addToEndpointMap(endpointMap map[endpoint.EndpointKey][]string, pod *corev1.Pod, domain string, recordType string, address string) {
|
|
key := endpoint.EndpointKey{
|
|
DNSName: domain,
|
|
RecordType: recordType,
|
|
RecordTTL: annotations.TTLFromAnnotations(pod.Annotations, fmt.Sprintf("pod/%s", pod.Name)),
|
|
}
|
|
if _, ok := endpointMap[key]; !ok {
|
|
endpointMap[key] = []string{}
|
|
}
|
|
endpointMap[key] = append(endpointMap[key], address)
|
|
}
|