Add service proxy for k8s

Author: Joji Mekkatt

core/core.go

@@ -21,6 +21,10 @@ limitations under the License.
 // hardware/kernel/device specific programming implementation, if any.
 package core
 
+import (
+	"github.com/contiv/ofnet"
+)
+
 // Address is a string represenation of a network address (mac, ip, dns-name, url etc)
 type Address struct {
 	addr string
@@ -101,6 +105,12 @@ type NetworkDriver interface {
 	DeleteMaster(node ServiceInfo) error
 	AddBgp(id string) error
 	DeleteBgp(id string) error
+	// Add a service spec to proxy
+	AddSvcSpec(svcName string, spec *ofnet.ServiceSpec) error
+	// Remove a service spec from proxy
+	DelSvcSpec(svcName string, spec *ofnet.ServiceSpec)
+	// Service Proxy Back End update
+	SvcProviderUpdate(svcName string, providers []string)
 }
 
 // WatchState is used to provide a difference between core.State structs by

drivers/ovsSwitch.go

@@ -598,3 +598,19 @@ func (sw *OvsSwitch) DeleteBgp() error {
 	}
 	return nil
 }
+
+// AddSvcSpec invokes ofnetAgent api
+func (sw *OvsSwitch) AddSvcSpec(svcName string, spec *ofnet.ServiceSpec) error {
+	log.Infof("OvsSwitch AddSvcSpec %s", svcName)
+	return sw.ofnetAgent.AddSvcSpec(svcName, spec)
+}
+
+// DelSvcSpec invokes ofnetAgent api
+func (sw *OvsSwitch) DelSvcSpec(svcName string, spec *ofnet.ServiceSpec) {
+	sw.ofnetAgent.DelSvcSpec(svcName, spec)
+}
+
+// SvcProviderUpdate invokes ofnetAgent api
+func (sw *OvsSwitch) SvcProviderUpdate(svcName string, providers []string) {
+	sw.ofnetAgent.SvcProviderUpdate(svcName, providers)
+}

drivers/ovsdriver.go

@@ -17,11 +17,13 @@ package drivers
 
 import (
 	"encoding/json"
+	"errors"
 	"fmt"
 	"strconv"
 	"strings"
 
 	log "github.com/Sirupsen/logrus"
+	"github.com/contiv/ofnet"
 	"github.com/vishvananda/netlink"
 
 	"github.com/contiv/netplugin/core"
@@ -461,3 +463,36 @@ func (d *OvsDriver) DeleteBgp(id string) error {
 	return sw.DeleteBgp()
 
 }
+
+// AddSvcSpec invokes switch api
+func (d *OvsDriver) AddSvcSpec(svcName string, spec *ofnet.ServiceSpec) error {
+	log.Infof("AddSvcSpec: %s", svcName)
+	errs := ""
+	for _, sw := range d.switchDb {
+		log.Infof("sw AddSvcSpec: %s", svcName)
+		err := sw.AddSvcSpec(svcName, spec)
+		if err != nil {
+			errs += err.Error()
+		}
+	}
+
+	if errs != "" {
+		return errors.New(errs)
+	}
+
+	return nil
+}
+
+// DelSvcSpec invokes switch api
+func (d *OvsDriver) DelSvcSpec(svcName string, spec *ofnet.ServiceSpec) {
+	for _, sw := range d.switchDb {
+		sw.DelSvcSpec(svcName, spec)
+	}
+}
+
+// SvcProviderUpdate invokes switch api
+func (d *OvsDriver) SvcProviderUpdate(svcName string, providers []string) {
+	for _, sw := range d.switchDb {
+		sw.SvcProviderUpdate(svcName, providers)
+	}
+}

mgmtfn/k8splugin/cniserver.go

@@ -103,6 +103,58 @@ func makeHTTPHandler(handlerFunc restAPIFunc) http.HandlerFunc {
 	}
 }
 
+// InitKubServiceWatch initializes the k8s service watch
+func InitKubServiceWatch(np *plugin.NetPlugin) {
+
+	watchClient := setUpAPIClient()
+	if watchClient == nil {
+		log.Fatalf("Could not init kubernetes API client")
+	}
+
+	svcCh := make(chan SvcWatchResp, 1)
+	epCh := make(chan EpWatchResp, 1)
+	go func() {
+		for {
+			select {
+			case svcEvent := <-svcCh:
+				switch svcEvent.opcode {
+				case "WARN":
+					break
+				case "FATAL":
+					break
+				case "ERROR":
+					log.Errorf("svcWatch : %s", svcEvent.errStr)
+					watchClient.WatchServices(svcCh)
+					break
+
+				case "DELETED":
+					np.NetworkDriver.DelSvcSpec(svcEvent.svcName, &svcEvent.svcSpec)
+					break
+				default:
+					np.NetworkDriver.AddSvcSpec(svcEvent.svcName, &svcEvent.svcSpec)
+				}
+			case epEvent := <-epCh:
+				switch epEvent.opcode {
+				case "WARN":
+					break
+				case "FATAL":
+					break
+				case "ERROR":
+					log.Errorf("epWatch : %s", epEvent.errStr)
+					watchClient.WatchSvcEps(epCh)
+					break
+
+				default:
+					np.NetworkDriver.SvcProviderUpdate(epEvent.svcName, epEvent.providers)
+				}
+			}
+		}
+	}()
+
+	watchClient.WatchServices(svcCh)
+	watchClient.WatchSvcEps(epCh)
+}
+
 // InitCNIServer initializes the k8s cni server
 func InitCNIServer(netplugin *plugin.NetPlugin) error {
 
@@ -146,6 +198,7 @@ func InitCNIServer(netplugin *plugin.NetPlugin) error {
 		log.Infof("k8s plugin closing %s", driverPath)
 	}()
 
+	//InitKubServiceWatch(netplugin)
 	return nil
 }
 

mgmtfn/k8splugin/kubeClient.go

@@ -16,11 +16,15 @@ limitations under the License.
 package k8splugin
 
 import (
+	"bufio"
 	"crypto/tls"
 	"crypto/x509"
 	"encoding/json"
 	"fmt"
 	log "github.com/Sirupsen/logrus"
+	"github.com/contiv/ofnet"
+	"golang.org/x/net/context"
+	"golang.org/x/net/context/ctxhttp"
 	"io/ioutil"
 	"net/http"
 )
@@ -29,11 +33,42 @@ const (
 	nsURL = "/api/v1/namespaces/"
 )
 
-// APIClient defines informatio needed for the k8s api client
+// APIClient defines information needed for the k8s api client
 type APIClient struct {
-	baseURL  string
-	client   *http.Client
-	podCache podInfo
+	baseURL   string
+	watchBase string
+	client    *http.Client
+	podCache  podInfo
+}
+
+// SvcWatchResp is the response to a service watch
+type SvcWatchResp struct {
+	opcode  string
+	errStr  string
+	svcName string
+	svcSpec ofnet.ServiceSpec
+}
+
+// EpWatchResp is the response to service endpoints watch
+type EpWatchResp struct {
+	opcode    string
+	errStr    string
+	svcName   string
+	providers []string
+}
+
+type watchSvcStatus struct {
+	// The type of watch update contained in the message
+	Type string `json:"type"`
+	// Pod details
+	Object Service `json:"object"`
+}
+
+type watchSvcEpStatus struct {
+	// The type of watch update contained in the message
+	Type string `json:"type"`
+	// Pod details
+	Object Endpoints `json:"object"`
 }
 
 type podInfo struct {
@@ -46,6 +81,7 @@ type podInfo struct {
 func NewAPIClient(serverURL, caFile, keyFile, certFile string) *APIClient {
 	c := APIClient{}
 	c.baseURL = serverURL + "/api/v1/namespaces/"
+	c.watchBase = serverURL + "/api/v1/watch/"
 
 	// Read client cert
 	cert, err := tls.LoadX509KeyPair(certFile, keyFile)
@@ -172,3 +208,140 @@ func (c *APIClient) GetPodLabel(ns, name, label string) (string, error) {
 	log.Infof("label %s not found in podSpec for %s.%s", label, ns, name)
 	return "", nil
 }
+
+// WatchServices watches the services object on the api server
+func (c *APIClient) WatchServices(respCh chan SvcWatchResp) {
+	ctx, _ := context.WithCancel(context.Background())
+
+	go func() {
+		// Make request to Kubernetes API
+		getURL := c.watchBase + "services"
+		req, err := http.NewRequest("GET", getURL, nil)
+		if err != nil {
+			respCh <- SvcWatchResp{opcode: "FATAL", errStr: fmt.Sprintf("Req %v", err)}
+			return
+		}
+		res, err := ctxhttp.Do(ctx, c.client, req)
+		defer res.Body.Close()
+		if err != nil {
+			respCh <- SvcWatchResp{opcode: "FATAL", errStr: fmt.Sprintf("Do %v", err)}
+			return
+		}
+
+		var wss watchSvcStatus
+		reader := bufio.NewReader(res.Body)
+
+		// bufio.Reader.ReadBytes is blocking, so we watch for
+		// context timeout or cancellation in a goroutine
+		// and close the response body when see see it. The
+		// response body is also closed via defer when the
+		// request is made, but closing twice is OK.
+		go func() {
+			<-ctx.Done()
+			res.Body.Close()
+		}()
+
+		for {
+			line, err := reader.ReadBytes('\n')
+			if ctx.Err() != nil {
+				respCh <- SvcWatchResp{opcode: "ERROR", errStr: fmt.Sprintf("ctx %v", err)}
+				return
+			}
+			if err != nil {
+				respCh <- SvcWatchResp{opcode: "ERROR", errStr: fmt.Sprintf("read %v", err)}
+				return
+			}
+			if err := json.Unmarshal(line, &wss); err != nil {
+				respCh <- SvcWatchResp{opcode: "WARN", errStr: fmt.Sprintf("unmarshal %v", err)}
+				continue
+			}
+
+			//if wss.Object.ObjectMeta.Namespace != "default" {
+			//	continue
+			//}
+			resp := SvcWatchResp{opcode: wss.Type}
+			resp.svcName = wss.Object.ObjectMeta.Name
+			sSpec := ofnet.ServiceSpec{}
+			sSpec.Ports = make([]ofnet.PortSpec, 0, 1)
+			sSpec.IpAddress = wss.Object.Spec.ClusterIP
+			for _, port := range wss.Object.Spec.Ports {
+				ps := ofnet.PortSpec{Protocol: string(port.Protocol),
+					SvcPort:  uint16(port.Port),
+					ProvPort: uint16(port.TargetPort),
+				}
+				sSpec.Ports = append(sSpec.Ports, ps)
+			}
+
+			resp.svcSpec = sSpec
+			log.Infof("resp: %+v", resp)
+
+			respCh <- resp
+		}
+	}()
+}
+
+// WatchSvcEps watches the service endpoints object
+func (c *APIClient) WatchSvcEps(respCh chan EpWatchResp) {
+	ctx, _ := context.WithCancel(context.Background())
+
+	go func() {
+		// Make request to Kubernetes API
+		getURL := c.watchBase + "endpoints"
+		req, err := http.NewRequest("GET", getURL, nil)
+		if err != nil {
+			respCh <- EpWatchResp{opcode: "FATAL", errStr: fmt.Sprintf("Req %v", err)}
+			return
+		}
+		res, err := ctxhttp.Do(ctx, c.client, req)
+		defer res.Body.Close()
+		if err != nil {
+			respCh <- EpWatchResp{opcode: "FATAL", errStr: fmt.Sprintf("Do %v", err)}
+			return
+		}
+
+		var weps watchSvcEpStatus
+		reader := bufio.NewReader(res.Body)
+
+		// bufio.Reader.ReadBytes is blocking, so we watch for
+		// context timeout or cancellation in a goroutine
+		// and close the response body when see see it. The
+		// response body is also closed via defer when the
+		// request is made, but closing twice is OK.
+		go func() {
+			<-ctx.Done()
+			res.Body.Close()
+		}()
+
+		for {
+			line, err := reader.ReadBytes('\n')
+			if ctx.Err() != nil {
+				respCh <- EpWatchResp{opcode: "ERROR", errStr: fmt.Sprintf("ctx %v", err)}
+				return
+			}
+			if err != nil {
+				respCh <- EpWatchResp{opcode: "ERROR", errStr: fmt.Sprintf("read %v", err)}
+				return
+			}
+			if err := json.Unmarshal(line, &weps); err != nil {
+				respCh <- EpWatchResp{opcode: "WARN", errStr: fmt.Sprintf("unmarshal %v", err)}
+				continue
+			}
+			//if weps.Object.ObjectMeta.Namespace != "default" {
+			//	continue
+			//}
+
+			resp := EpWatchResp{opcode: weps.Type}
+			resp.svcName = weps.Object.ObjectMeta.Name
+			resp.providers = make([]string, 0, 1)
+			for _, subset := range weps.Object.Subsets {
+				// TODO: handle partially ready providers
+				for _, addr := range subset.Addresses {
+					resp.providers = append(resp.providers, addr.IP)
+				}
+			}
+
+			log.Infof("kube ep watch: %v", resp)
+			respCh <- resp
+		}
+	}()
+}