mirror of https://github.com/k3s-io/k3s
140 lines
5.3 KiB
Go
140 lines
5.3 KiB
Go
/*
|
|
Copyright 2017 The Kubernetes Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package ipvs
|
|
|
|
import (
|
|
"net"
|
|
"strconv"
|
|
"strings"
|
|
"time"
|
|
|
|
"k8s.io/apimachinery/pkg/util/version"
|
|
)
|
|
|
|
// Interface is an injectable interface for running ipvs commands. Implementations must be goroutine-safe.
|
|
type Interface interface {
|
|
// Flush clears all virtual servers in system. return occurred error immediately.
|
|
Flush() error
|
|
// AddVirtualServer creates the specified virtual server.
|
|
AddVirtualServer(*VirtualServer) error
|
|
// UpdateVirtualServer updates an already existing virtual server. If the virtual server does not exist, return error.
|
|
UpdateVirtualServer(*VirtualServer) error
|
|
// DeleteVirtualServer deletes the specified virtual server. If the virtual server does not exist, return error.
|
|
DeleteVirtualServer(*VirtualServer) error
|
|
// Given a partial virtual server, GetVirtualServer will return the specified virtual server information in the system.
|
|
GetVirtualServer(*VirtualServer) (*VirtualServer, error)
|
|
// GetVirtualServers lists all virtual servers in the system.
|
|
GetVirtualServers() ([]*VirtualServer, error)
|
|
// AddRealServer creates the specified real server for the specified virtual server.
|
|
AddRealServer(*VirtualServer, *RealServer) error
|
|
// GetRealServers returns all real servers for the specified virtual server.
|
|
GetRealServers(*VirtualServer) ([]*RealServer, error)
|
|
// DeleteRealServer deletes the specified real server from the specified virtual server.
|
|
DeleteRealServer(*VirtualServer, *RealServer) error
|
|
// UpdateRealServer updates the specified real server from the specified virtual server.
|
|
UpdateRealServer(*VirtualServer, *RealServer) error
|
|
// ConfigureTimeouts is the equivalent to running "ipvsadm --set" to configure tcp, tcpfin and udp timeouts
|
|
ConfigureTimeouts(time.Duration, time.Duration, time.Duration) error
|
|
}
|
|
|
|
// VirtualServer is an user-oriented definition of an IPVS virtual server in its entirety.
|
|
type VirtualServer struct {
|
|
Address net.IP
|
|
Protocol string
|
|
Port uint16
|
|
Scheduler string
|
|
Flags ServiceFlags
|
|
Timeout uint32
|
|
}
|
|
|
|
// ServiceFlags is used to specify session affinity, ip hash etc.
|
|
type ServiceFlags uint32
|
|
|
|
const (
|
|
// FlagPersistent specify IPVS service session affinity
|
|
FlagPersistent = 0x1
|
|
// FlagHashed specify IPVS service hash flag
|
|
FlagHashed = 0x2
|
|
)
|
|
|
|
// IPVS required kernel modules.
|
|
const (
|
|
// KernelModuleIPVS is the kernel module "ip_vs"
|
|
KernelModuleIPVS string = "ip_vs"
|
|
// KernelModuleIPVSRR is the kernel module "ip_vs_rr"
|
|
KernelModuleIPVSRR string = "ip_vs_rr"
|
|
// KernelModuleIPVSWRR is the kernel module "ip_vs_wrr"
|
|
KernelModuleIPVSWRR string = "ip_vs_wrr"
|
|
// KernelModuleIPVSSH is the kernel module "ip_vs_sh"
|
|
KernelModuleIPVSSH string = "ip_vs_sh"
|
|
// KernelModuleNfConntrackIPV4 is the module "nf_conntrack_ipv4"
|
|
KernelModuleNfConntrackIPV4 string = "nf_conntrack_ipv4"
|
|
// KernelModuleNfConntrack is the kernel module "nf_conntrack"
|
|
KernelModuleNfConntrack string = "nf_conntrack"
|
|
)
|
|
|
|
// Equal check the equality of virtual server.
|
|
// We don't use struct == since it doesn't work because of slice.
|
|
func (svc *VirtualServer) Equal(other *VirtualServer) bool {
|
|
return svc.Address.Equal(other.Address) &&
|
|
svc.Protocol == other.Protocol &&
|
|
svc.Port == other.Port &&
|
|
svc.Scheduler == other.Scheduler &&
|
|
svc.Flags == other.Flags &&
|
|
svc.Timeout == other.Timeout
|
|
}
|
|
|
|
func (svc *VirtualServer) String() string {
|
|
return net.JoinHostPort(svc.Address.String(), strconv.Itoa(int(svc.Port))) + "/" + svc.Protocol
|
|
}
|
|
|
|
// RealServer is an user-oriented definition of an IPVS real server in its entirety.
|
|
type RealServer struct {
|
|
Address net.IP
|
|
Port uint16
|
|
Weight int
|
|
ActiveConn int
|
|
InactiveConn int
|
|
}
|
|
|
|
func (rs *RealServer) String() string {
|
|
return net.JoinHostPort(rs.Address.String(), strconv.Itoa(int(rs.Port)))
|
|
}
|
|
|
|
// Equal check the equality of real server.
|
|
// We don't use struct == since it doesn't work because of slice.
|
|
func (rs *RealServer) Equal(other *RealServer) bool {
|
|
return rs.Address.Equal(other.Address) &&
|
|
rs.Port == other.Port
|
|
}
|
|
|
|
// GetRequiredIPVSModules returns the required ipvs modules for the given linux kernel version.
|
|
func GetRequiredIPVSModules(kernelVersion *version.Version) []string {
|
|
// "nf_conntrack_ipv4" has been removed since v4.19
|
|
// see https://github.com/torvalds/linux/commit/a0ae2562c6c4b2721d9fddba63b7286c13517d9f
|
|
if kernelVersion.LessThan(version.MustParseGeneric("4.19")) {
|
|
return []string{KernelModuleIPVS, KernelModuleIPVSRR, KernelModuleIPVSWRR, KernelModuleIPVSSH, KernelModuleNfConntrackIPV4}
|
|
}
|
|
return []string{KernelModuleIPVS, KernelModuleIPVSRR, KernelModuleIPVSWRR, KernelModuleIPVSSH, KernelModuleNfConntrack}
|
|
|
|
}
|
|
|
|
// IsRsGracefulTerminationNeeded returns true if protocol requires graceful termination for the stale connections
|
|
func IsRsGracefulTerminationNeeded(proto string) bool {
|
|
return !strings.EqualFold(proto, "UDP") && !strings.EqualFold(proto, "SCTP")
|
|
}
|