mirrors/kube-router
1
0
Fork 0
mirror of https://github.com/cloudnativelabs/kube-router.git synced 2025-11-18 03:21:05 +01:00
Code Issues Packages Projects Releases Wiki Activity

Routes Synchronization Routine

Browse Source
This commit is contained in:
RusoX89 2021-08-13 16:18:57 +01:00 committed by Aaron U'Ren
parent 492e0d126b
commit 23ac78cf94
5 changed files with 113 additions and 68 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
docs/user-guide.md
View File

@ -64,6 +64,7 @@ Usage of kube-router:
--health-port uint16 Health check port, 0 = Disabled (default 20244)
-h, --help Print usage information.
--hostname-override string Overrides the NodeName of the node. Set this if kube-router is unable to determine your NodeName automatically.
--injected-routes-sync-period duration The delay between route table synchronizations (e.g. '5s', '1m', '2h22m'). Must be greater than 0. (default 15s)
--iptables-sync-period duration The delay between iptables rule synchronizations (e.g. '5s', '1m'). Must be greater than 0. (default 5m0s)
--ipvs-graceful-period duration The graceful period before removing destinations from IPVS services (e.g. '5s', '1m', '2h22m'). Must be greater than 0. (default 30s)
--ipvs-graceful-termination Enables the experimental IPVS graceful terminaton capability

6
pkg/controllers/routing/bgp_policies_test.go
View File

@ -46,6 +46,7 @@ func Test_AddPolicies(t *testing.T) {
activeNodes: make(map[string]bool),
nodeAsnNumber: 100,
podCidr: "172.20.0.0/24",
injectedRoutesSyncPeriod: 15,
},
[]*v1core.Node{
{
@ -196,6 +197,7 @@ func Test_AddPolicies(t *testing.T) {
},
},
nodeAsnNumber: 100,
injectedRoutesSyncPeriod: 15,
},
[]*v1core.Node{
{
@ -367,6 +369,7 @@ func Test_AddPolicies(t *testing.T) {
},
},
nodeAsnNumber: 100,
injectedRoutesSyncPeriod: 15,
},
[]*v1core.Node{
{
@ -521,6 +524,7 @@ func Test_AddPolicies(t *testing.T) {
},
},
nodeAsnNumber: 100,
injectedRoutesSyncPeriod: 15,
},
[]*v1core.Node{
{
@ -698,6 +702,7 @@ func Test_AddPolicies(t *testing.T) {
},
},
nodeAsnNumber: 100,
injectedRoutesSyncPeriod: 15,
},
[]*v1core.Node{
{
@ -875,6 +880,7 @@ func Test_AddPolicies(t *testing.T) {
},
},
nodeAsnNumber: 100,
injectedRoutesSyncPeriod: 15,
},
[]*v1core.Node{
{

30
pkg/controllers/routing/network_routes_controller.go
View File

@ -132,6 +132,8 @@ type NetworkRoutingController struct {
podCidr string
CNIFirewallSetup *sync.Cond
ipsetMutex *sync.Mutex
injectedRoutesSyncPeriod time.Duration
routeTableStateMap map[string]*netlink.Route
nodeLister cache.Indexer
svcLister cache.Indexer
@ -142,6 +144,10 @@ type NetworkRoutingController struct {
EndpointsEventHandler cache.ResourceEventHandler
}
func (nrc *NetworkRoutingController) addInjectedRoute(route *netlink.Route, dst *net.IPNet) {
nrc.routeTableStateMap[dst.String()] = route
}
// Run runs forever until we are notified on stop channel
func (nrc *NetworkRoutingController) Run(healthChan chan<- *healthcheck.ControllerHeartbeat, stopCh <-chan struct{},
wg *sync.WaitGroup) {
@ -434,7 +440,26 @@ func (nrc *NetworkRoutingController) autoConfigureMTU() error {
return nil
}
func (nrc *NetworkRoutingController) watchRouteTable() {
go func() {
t := time.NewTicker(nrc.injectedRoutesSyncPeriod)
defer t.Stop()
for {
for _, route := range nrc.routeTableStateMap {
err := netlink.RouteReplace(route)
if err != nil {
klog.Errorf("Route could not be replaced due to : " + err.Error())
}
}
// Wait until the next iteration
<-t.C
}
}()
}
func (nrc *NetworkRoutingController) watchBgpUpdates() {
// Start the route table watcher prior to adding anything
nrc.watchRouteTable()
pathWatch := func(path *gobgpapi.Path) {
if nrc.MetricsEnabled {
metrics.ControllerBGPadvertisementsReceived.Inc()
@ -622,7 +647,8 @@ func (nrc *NetworkRoutingController) injectRoute(path *gobgpapi.Path) error {
// Alright, everything is in place, and we have our route configured, let's add it to the host's routing table
klog.V(2).Infof("Inject route: '%s via %s' from peer to routing table", dst, nextHop)
return netlink.RouteReplace(route)
nrc.addInjectedRoute(route, dst)
return nil
}
func (nrc *NetworkRoutingController) isPeerEstablished(peerIP string) (bool, error) {
@ -1155,6 +1181,7 @@ func NewNetworkRoutingController(clientset kubernetes.Interface,
nrc.peerMultihopTTL = kubeRouterConfig.PeerMultihopTTL
nrc.enablePodEgress = kubeRouterConfig.EnablePodEgress
nrc.syncPeriod = kubeRouterConfig.RoutesSyncPeriod
nrc.injectedRoutesSyncPeriod = kubeRouterConfig.InjectedRoutesSyncPeriod
nrc.overrideNextHop = kubeRouterConfig.OverrideNextHop
nrc.clientset = clientset
nrc.activeNodes = make(map[string]bool)
@ -1163,6 +1190,7 @@ func NewNetworkRoutingController(clientset kubernetes.Interface,
nrc.bgpServerStarted = false
nrc.disableSrcDstCheck = kubeRouterConfig.DisableSrcDstCheck
nrc.initSrcDstCheckDone = false
nrc.routeTableStateMap = make(map[string]*netlink.Route)
nrc.bgpHoldtime = kubeRouterConfig.BGPHoldTime.Seconds()
if nrc.bgpHoldtime > 65536 || nrc.bgpHoldtime < 3 {

6
pkg/controllers/routing/network_routes_controller_test.go
View File

@ -1539,6 +1539,7 @@ func Test_routeReflectorConfiguration(t *testing.T) {
activeNodes: make(map[string]bool),
nodeAsnNumber: 100,
hostnameOverride: "node-1",
injectedRoutesSyncPeriod: 15,
},
&v1core.Node{
ObjectMeta: metav1.ObjectMeta{
@ -1566,6 +1567,7 @@ func Test_routeReflectorConfiguration(t *testing.T) {
activeNodes: make(map[string]bool),
nodeAsnNumber: 100,
hostnameOverride: "node-1",
injectedRoutesSyncPeriod: 15,
},
&v1core.Node{
ObjectMeta: metav1.ObjectMeta{
@ -1593,6 +1595,7 @@ func Test_routeReflectorConfiguration(t *testing.T) {
activeNodes: make(map[string]bool),
nodeAsnNumber: 100,
hostnameOverride: "node-1",
injectedRoutesSyncPeriod: 15,
},
&v1core.Node{
ObjectMeta: metav1.ObjectMeta{
@ -1620,6 +1623,7 @@ func Test_routeReflectorConfiguration(t *testing.T) {
activeNodes: make(map[string]bool),
nodeAsnNumber: 100,
hostnameOverride: "node-1",
injectedRoutesSyncPeriod: 15,
},
&v1core.Node{
ObjectMeta: metav1.ObjectMeta{
@ -1646,6 +1650,7 @@ func Test_routeReflectorConfiguration(t *testing.T) {
activeNodes: make(map[string]bool),
nodeAsnNumber: 100,
hostnameOverride: "node-1",
injectedRoutesSyncPeriod: 15,
},
&v1core.Node{
ObjectMeta: metav1.ObjectMeta{
@ -1672,6 +1677,7 @@ func Test_routeReflectorConfiguration(t *testing.T) {
activeNodes: make(map[string]bool),
nodeAsnNumber: 100,
hostnameOverride: "node-1",
injectedRoutesSyncPeriod: 15,
},
&v1core.Node{
ObjectMeta: metav1.ObjectMeta{

4
pkg/options/options.go
View File

@ -42,6 +42,7 @@ type KubeRouterConfig struct {
HealthPort uint16
HelpRequested bool
HostnameOverride string
InjectedRoutesSyncPeriod time.Duration
IPTablesSyncPeriod time.Duration
IpvsGracefulPeriod time.Duration
IpvsGracefulTermination bool
@ -89,6 +90,7 @@ func NewKubeRouterConfig() *KubeRouterConfig {
NodePortRange: "30000-32767",
OverlayType: "subnet",
RoutesSyncPeriod: 5 * time.Minute,
InjectedRoutesSyncPeriod: 15 * time.Second,
}
}
@ -149,6 +151,8 @@ func (s *KubeRouterConfig) AddFlags(fs *pflag.FlagSet) {
fs.StringVar(&s.HostnameOverride, "hostname-override", s.HostnameOverride,
"Overrides the NodeName of the node. Set this if kube-router is unable to determine your NodeName "+
"automatically.")
fs.DurationVar(&s.InjectedRoutesSyncPeriod, "injected-routes-sync-period", s.InjectedRoutesSyncPeriod,
"The delay between route table synchronizations (e.g. '5s', '1m', '2h22m'). Must be greater than 0.")
fs.DurationVar(&s.IPTablesSyncPeriod, "iptables-sync-period", s.IPTablesSyncPeriod,
"The delay between iptables rule synchronizations (e.g. '5s', '1m'). Must be greater than 0.")
fs.DurationVar(&s.IpvsGracefulPeriod, "ipvs-graceful-period", s.IpvsGracefulPeriod,