multus affinity

Signed-off-by: Icarus9913 <[email protected]>

Author: Icarus9913

.licenserc.yaml

@@ -23,4 +23,4 @@ header:
       - '**/*.sh'
     paths-ignore:
       - 'vendor'
-    comment: on-failure
+    comment: on-failure

charts/spiderpool/crds/spiderpool.spidernet.io_spiderippools.yaml

@@ -43,7 +43,18 @@ spec:
     - description: disable
       jsonPath: .spec.disable
       name: DISABLE
+      priority: 10
       type: boolean
+    - description: disable
+      jsonPath: .spec.nodeName
+      name: NodeName
+      priority: 10
+      type: string
+    - description: disable
+      jsonPath: .spec.multusName
+      name: MultusName
+      priority: 10
+      type: string
     - description: AppNamespace
       jsonPath: .spec.podAffinity.matchLabels['ipam\.spidernet\.io/app\-namespace']
       name: APP-NAMESPACE
@@ -91,6 +102,10 @@ spec:
                 items:
                   type: string
                 type: array
+              multusName:
+                items:
+                  type: string
+                type: array
               namespaceAffinity:
                 description: A label selector is a label query over a set of resources.
                   The result of matchLabels and matchExpressions are ANDed. An empty
@@ -139,6 +154,10 @@ spec:
                     type: object
                 type: object
                 x-kubernetes-map-type: atomic
+              namespaceName:
+                items:
+                  type: string
+                type: array
               nodeAffinity:
                 description: A label selector is a label query over a set of resources.
                   The result of matchLabels and matchExpressions are ANDed. An empty
@@ -187,6 +206,10 @@ spec:
                     type: object
                 type: object
                 x-kubernetes-map-type: atomic
+              nodeName:
+                items:
+                  type: string
+                type: array
               podAffinity:
                 description: A label selector is a label query over a set of resources.
                   The result of matchLabels and matchExpressions are ANDed. An empty

charts/spiderpool/templates/daemonset.yaml

@@ -166,6 +166,10 @@ spec:
           value: {{ .Values.spiderpoolAgent.httpPort | quote }}
         - name: SPIDERPOOL_GOPS_LISTEN_PORT
           value: {{ .Values.spiderpoolAgent.debug.gopsPort | quote }}
+        {{- if .Values.multus.multusCNI.defaultCniCRName }}
+        - name: MULTUS_CLUSTER_NETWORK
+          value: {{ .Release.Namespace }}/{{ .Values.multus.multusCNI.defaultCniCRName }}
+        {{ end }}
         {{- with .Values.spiderpoolAgent.extraEnv }}
         {{- toYaml . | nindent 8 }}
         {{- end }}

charts/spiderpool/templates/multus-daemonset.yaml

@@ -119,7 +119,7 @@ data:
       "namespaceIsolation": false,
       "clusterNetwork": "{{ .Values.multus.multusCNI.defaultCniCRName }}",
       "defaultNetworks": [],
-      "multusNamespace": "",
+      "multusNamespace": "{{ .Release.Namespace }}",
       "systemNamespaces": [],
       "kubeconfig": "/etc/cni/net.d/multus.d/multus.kubeconfig"
     }

cmd/coordinator/cmd/command_add.go

@@ -6,7 +6,6 @@ package cmd
 import (
 	"context"
 	"fmt"
-	"golang.org/x/sync/errgroup"
 	"time"
 
 	"github.com/containernetworking/cni/pkg/skel"
@@ -15,17 +14,18 @@ import (
 	"github.com/containernetworking/plugins/pkg/ns"
 	"github.com/vishvananda/netlink"
 	"go.uber.org/zap"
+	"golang.org/x/sync/errgroup"
 
 	"github.com/spidernet-io/spiderpool/api/v1/agent/client/daemonset"
 	"github.com/spidernet-io/spiderpool/api/v1/agent/models"
-	"github.com/spidernet-io/spiderpool/cmd/spiderpool-agent/cmd"
 	plugincmd "github.com/spidernet-io/spiderpool/cmd/spiderpool/cmd"
 	"github.com/spidernet-io/spiderpool/pkg/constant"
 	"github.com/spidernet-io/spiderpool/pkg/logutils"
 	"github.com/spidernet-io/spiderpool/pkg/networking/gwconnection"
 	"github.com/spidernet-io/spiderpool/pkg/networking/ipchecking"
 	"github.com/spidernet-io/spiderpool/pkg/networking/networking"
 	"github.com/spidernet-io/spiderpool/pkg/networking/sysctl"
+	"github.com/spidernet-io/spiderpool/pkg/openapi"
 )
 
 func CmdAdd(args *skel.CmdArgs) (err error) {
@@ -36,7 +36,7 @@ func CmdAdd(args *skel.CmdArgs) (err error) {
 		return fmt.Errorf("failed to load CNI ENV args: %w", err)
 	}
 
-	client, err := cmd.NewAgentOpenAPIUnixClient(constant.DefaultIPAMUnixSocketPath)
+	client, err := openapi.NewAgentOpenAPIUnixClient(constant.DefaultIPAMUnixSocketPath)
 	if err != nil {
 		return err
 	}

cmd/coordinator/cmd/command_del.go

@@ -5,21 +5,21 @@ package cmd
 
 import (
 	"fmt"
-	"github.com/containernetworking/cni/pkg/types"
-	"github.com/spidernet-io/spiderpool/api/v1/agent/models"
-	plugincmd "github.com/spidernet-io/spiderpool/cmd/spiderpool/cmd"
 	"os"
 
-	"github.com/spidernet-io/spiderpool/api/v1/agent/client/daemonset"
-	"github.com/spidernet-io/spiderpool/cmd/spiderpool-agent/cmd"
-	"github.com/spidernet-io/spiderpool/pkg/constant"
-	"github.com/spidernet-io/spiderpool/pkg/logutils"
-	"github.com/spidernet-io/spiderpool/pkg/networking/networking"
-
 	"github.com/containernetworking/cni/pkg/skel"
+	"github.com/containernetworking/cni/pkg/types"
 	"github.com/containernetworking/plugins/pkg/ns"
 	"github.com/vishvananda/netlink"
 	"go.uber.org/zap"
+
+	"github.com/spidernet-io/spiderpool/api/v1/agent/client/daemonset"
+	"github.com/spidernet-io/spiderpool/api/v1/agent/models"
+	plugincmd "github.com/spidernet-io/spiderpool/cmd/spiderpool/cmd"
+	"github.com/spidernet-io/spiderpool/pkg/constant"
+	"github.com/spidernet-io/spiderpool/pkg/logutils"
+	"github.com/spidernet-io/spiderpool/pkg/networking/networking"
+	"github.com/spidernet-io/spiderpool/pkg/openapi"
 )
 
 func CmdDel(args *skel.CmdArgs) (err error) {
@@ -28,7 +28,7 @@ func CmdDel(args *skel.CmdArgs) (err error) {
 		return fmt.Errorf("failed to load CNI ENV args: %w", err)
 	}
 
-	client, err := cmd.NewAgentOpenAPIUnixClient(constant.DefaultIPAMUnixSocketPath)
+	client, err := openapi.NewAgentOpenAPIUnixClient(constant.DefaultIPAMUnixSocketPath)
 	if err != nil {
 		return err
 	}

cmd/spiderpool-agent/cmd/config.go

@@ -60,6 +60,8 @@ var envInfo = []envConf{
 	{"SPIDERPOOL_IPPOOL_MAX_ALLOCATED_IPS", "5000", true, nil, nil, &agentContext.Cfg.IPPoolMaxAllocatedIPs},
 	{"SPIDERPOOL_WAIT_SUBNET_POOL_TIME_IN_SECOND", "2", false, nil, nil, &agentContext.Cfg.WaitSubnetPoolTime},
 	{"SPIDERPOOL_WAIT_SUBNET_POOL_MAX_RETRIES", "25", false, nil, nil, &agentContext.Cfg.WaitSubnetPoolMaxRetries},
+
+	{"MULTUS_CLUSTER_NETWORK", "", false, &agentContext.Cfg.MultusClusterNetwork, nil, nil},
 }
 
 type Config struct {
@@ -85,6 +87,8 @@ type Config struct {
 	WaitSubnetPoolTime       int
 	WaitSubnetPoolMaxRetries int
 
+	MultusClusterNetwork string
+
 	// configmap
 	IpamUnixSocketPath                string   `yaml:"ipamUnixSocketPath"`
 	EnableIPv4                        bool     `yaml:"enableIPv4"`

cmd/spiderpool-agent/cmd/daemon.go

@@ -19,13 +19,15 @@ import (
 	"github.com/pyroscope-io/client/pyroscope"
 	apiruntime "k8s.io/apimachinery/pkg/runtime"
 	"k8s.io/client-go/rest"
+	"k8s.io/utils/pointer"
 	ctrl "sigs.k8s.io/controller-runtime"
 
 	"github.com/spidernet-io/spiderpool/pkg/ipam"
 	"github.com/spidernet-io/spiderpool/pkg/ippoolmanager"
 	"github.com/spidernet-io/spiderpool/pkg/logutils"
 	"github.com/spidernet-io/spiderpool/pkg/namespacemanager"
 	"github.com/spidernet-io/spiderpool/pkg/nodemanager"
+	"github.com/spidernet-io/spiderpool/pkg/openapi"
 	"github.com/spidernet-io/spiderpool/pkg/podmanager"
 	"github.com/spidernet-io/spiderpool/pkg/reservedipmanager"
 	"github.com/spidernet-io/spiderpool/pkg/statefulsetmanager"
@@ -128,17 +130,21 @@ func DaemonMain() {
 	initAgentServiceManagers(agentContext.InnerCtx)
 
 	logger.Info("Begin to initialize IPAM")
+	ipamConfig := ipam.IPAMConfig{
+		EnableIPv4:               agentContext.Cfg.EnableIPv4,
+		EnableIPv6:               agentContext.Cfg.EnableIPv6,
+		ClusterDefaultIPv4IPPool: agentContext.Cfg.ClusterDefaultIPv4IPPool,
+		ClusterDefaultIPv6IPPool: agentContext.Cfg.ClusterDefaultIPv6IPPool,
+		EnableSpiderSubnet:       agentContext.Cfg.EnableSpiderSubnet,
+		EnableStatefulSet:        agentContext.Cfg.EnableStatefulSet,
+		OperationRetries:         agentContext.Cfg.WaitSubnetPoolMaxRetries,
+		OperationGapDuration:     time.Duration(agentContext.Cfg.WaitSubnetPoolTime) * time.Second,
+	}
+	if len(agentContext.Cfg.MultusClusterNetwork) != 0 {
+		ipamConfig.MultusClusterNetwork = pointer.String(agentContext.Cfg.MultusClusterNetwork)
+	}
 	ipam, err := ipam.NewIPAM(
-		ipam.IPAMConfig{
-			EnableIPv4:               agentContext.Cfg.EnableIPv4,
-			EnableIPv6:               agentContext.Cfg.EnableIPv6,
-			ClusterDefaultIPv4IPPool: agentContext.Cfg.ClusterDefaultIPv4IPPool,
-			ClusterDefaultIPv6IPPool: agentContext.Cfg.ClusterDefaultIPv6IPPool,
-			EnableSpiderSubnet:       agentContext.Cfg.EnableSpiderSubnet,
-			EnableStatefulSet:        agentContext.Cfg.EnableStatefulSet,
-			OperationRetries:         agentContext.Cfg.WaitSubnetPoolMaxRetries,
-			OperationGapDuration:     time.Duration(agentContext.Cfg.WaitSubnetPoolTime) * time.Second,
-		},
+		ipamConfig,
 		agentContext.IPPoolManager,
 		agentContext.EndpointManager,
 		agentContext.NodeManager,
@@ -192,7 +198,7 @@ func DaemonMain() {
 	if err := os.RemoveAll(agentContext.Cfg.IpamUnixSocketPath); err != nil {
 		logger.Sugar().Fatalf("Failed to clean up socket %s: %v", agentContext.Cfg.IpamUnixSocketPath, err)
 	}
-	unixServer, err := NewAgentOpenAPIUnixServer()
+	unixServer, err := newAgentOpenAPIUnixServer()
 	if nil != err {
 		logger.Fatal(err.Error())
 	}
@@ -208,7 +214,7 @@ func DaemonMain() {
 		}
 	}()
 
-	spiderpoolAgentAPI, err := NewAgentOpenAPIUnixClient(agentContext.Cfg.IpamUnixSocketPath)
+	spiderpoolAgentAPI, err := openapi.NewAgentOpenAPIUnixClient(agentContext.Cfg.IpamUnixSocketPath)
 	if nil != err {
 		logger.Fatal(err.Error())
 	}

cmd/spiderpool-agent/cmd/unix_server.go

@@ -4,23 +4,15 @@
 package cmd
 
 import (
-	"context"
-	"fmt"
-	"net"
-	"net/http"
-
 	"github.com/go-openapi/loads"
-	runtime_client "github.com/go-openapi/runtime/client"
-	"github.com/go-openapi/strfmt"
 	"github.com/jessevdk/go-flags"
 
-	agentOpenAPIClient "github.com/spidernet-io/spiderpool/api/v1/agent/client"
 	agentOpenAPIServer "github.com/spidernet-io/spiderpool/api/v1/agent/server"
 	agentOpenAPIRestapi "github.com/spidernet-io/spiderpool/api/v1/agent/server/restapi"
 )
 
-// NewAgentOpenAPIUnixServer instantiates a new instance of the agent OpenAPI server on the unix.
-func NewAgentOpenAPIUnixServer() (*agentOpenAPIServer.Server, error) {
+// newAgentOpenAPIUnixServer instantiates a new instance of the agent OpenAPI server on the unix.
+func newAgentOpenAPIUnixServer() (*agentOpenAPIServer.Server, error) {
 	// read yaml spec
 	swaggerSpec, err := loads.Embedded(agentOpenAPIServer.SwaggerJSON, agentOpenAPIServer.FlatSwaggerJSON)
 	if nil != err {
@@ -54,24 +46,3 @@ func NewAgentOpenAPIUnixServer() (*agentOpenAPIServer.Server, error) {
 
 	return srv, nil
 }
-
-// NewAgentOpenAPIUnixClient creates a new instance of the agent OpenAPI unix client.
-func NewAgentOpenAPIUnixClient(unixSocketPath string) (*agentOpenAPIClient.SpiderpoolAgentAPI, error) {
-	if unixSocketPath == "" {
-		return nil, fmt.Errorf("unix socket path must be specified")
-	}
-
-	httpClient := &http.Client{
-		Transport: &http.Transport{
-			DisableCompression: true,
-			DialContext: func(_ context.Context, _, _ string) (net.Conn, error) {
-				return net.Dial("unix", unixSocketPath)
-			},
-			DisableKeepAlives: true,
-		},
-	}
-	clientTrans := runtime_client.NewWithClient(unixSocketPath, agentOpenAPIClient.DefaultBasePath,
-		agentOpenAPIClient.DefaultSchemes, httpClient)
-	client := agentOpenAPIClient.New(clientTrans, strfmt.Default)
-	return client, nil
-}

cmd/spiderpool/cmd/command_add.go

@@ -19,8 +19,8 @@ import (
 	"github.com/spidernet-io/spiderpool/api/v1/agent/client/connectivity"
 	"github.com/spidernet-io/spiderpool/api/v1/agent/client/daemonset"
 	"github.com/spidernet-io/spiderpool/api/v1/agent/models"
-	"github.com/spidernet-io/spiderpool/cmd/spiderpool-agent/cmd"
 	spiderpoolip "github.com/spidernet-io/spiderpool/pkg/ip"
+	"github.com/spidernet-io/spiderpool/pkg/openapi"
 )
 
 // CmdAdd follows CNI SPEC cmdAdd.
@@ -78,7 +78,7 @@ func CmdAdd(args *skel.CmdArgs) (err error) {
 	)
 	logger.Sugar().Debugf("CNI ENV args: %+v", k8sArgs)
 
-	spiderpoolAgentAPI, err := cmd.NewAgentOpenAPIUnixClient(conf.IPAM.IPAMUnixSocketPath)
+	spiderpoolAgentAPI, err := openapi.NewAgentOpenAPIUnixClient(conf.IPAM.IPAMUnixSocketPath)
 	if nil != err {
 		err := fmt.Errorf("failed to create spiderpool-agent client: %w", err)
 		logger.Error(err.Error())

cmd/spiderpool/cmd/command_delete.go

@@ -16,7 +16,7 @@ import (
 	"github.com/spidernet-io/spiderpool/api/v1/agent/client/connectivity"
 	"github.com/spidernet-io/spiderpool/api/v1/agent/client/daemonset"
 	"github.com/spidernet-io/spiderpool/api/v1/agent/models"
-	"github.com/spidernet-io/spiderpool/cmd/spiderpool-agent/cmd"
+	"github.com/spidernet-io/spiderpool/pkg/openapi"
 )
 
 // CmdDel follows CNI SPEC cmdDel.
@@ -74,7 +74,7 @@ func CmdDel(args *skel.CmdArgs) (err error) {
 	)
 	logger.Sugar().Debugf("CNI ENV args: %+v", k8sArgs)
 
-	spiderpoolAgentAPI, err := cmd.NewAgentOpenAPIUnixClient(conf.IPAM.IPAMUnixSocketPath)
+	spiderpoolAgentAPI, err := openapi.NewAgentOpenAPIUnixClient(conf.IPAM.IPAMUnixSocketPath)
 	if nil != err {
 		err := fmt.Errorf("failed to create spiderpool-agent client: %w", err)
 		logger.Error(err.Error())

cmd/spiderpool/cmd/command_test.go

@@ -25,10 +25,10 @@ import (
 	"github.com/spidernet-io/spiderpool/api/v1/agent/models"
 	"github.com/spidernet-io/spiderpool/api/v1/agent/server/restapi/connectivity"
 	"github.com/spidernet-io/spiderpool/api/v1/agent/server/restapi/daemonset"
-	agentcmd "github.com/spidernet-io/spiderpool/cmd/spiderpool-agent/cmd"
 	"github.com/spidernet-io/spiderpool/cmd/spiderpool/cmd"
 	"github.com/spidernet-io/spiderpool/pkg/constant"
 	"github.com/spidernet-io/spiderpool/pkg/logutils"
+	"github.com/spidernet-io/spiderpool/pkg/openapi"
 )
 
 const ifName string = "eth0"
@@ -522,7 +522,7 @@ var _ = Describe("spiderpool plugin", Label("unitest", "ipam_plugin_test"), func
 		})
 
 		It("Failed to new agent openAPI unix client with cmdAdd and cmdDel", func() {
-			patches := gomonkey.ApplyFuncSeq(agentcmd.NewAgentOpenAPIUnixClient, []gomonkey.OutputCell{
+			patches := gomonkey.ApplyFuncSeq(openapi.NewAgentOpenAPIUnixClient, []gomonkey.OutputCell{
 				{Values: gomonkey.Params{nil, constant.ErrUnknown}},
 				{Values: gomonkey.Params{nil, constant.ErrUnknown}},
 			})

pkg/constant/k8s.go

@@ -99,6 +99,8 @@ const (
 	Spiderpool           = "spiderpool"
 	SpiderpoolAgent      = "spiderpool-agent"
 	SpiderpoolController = "spiderpool-controller"
+	Coordinator          = "coordinator"
+	Ifacer               = "ifacer"
 )
 
 const (
@@ -135,3 +137,10 @@ const (
 )
 
 const ClusterDefaultInterfaceName = "eth0"
+
+// multus-cni annotation
+const (
+	MultusDefaultNetAnnot        = "v1.multus-cni.io/default-network"
+	MultusNetworkAttachmentAnnot = "k8s.v1.cni.cncf.io/networks"
+	ResourceNameAnnot            = "k8s.v1.cni.cncf.io/resourceName"
+)