mirror of
https://github.com/kubenetworks/kubevpn.git
synced 2025-12-24 11:51:13 +08:00
212 lines
4.8 KiB
Go
212 lines
4.8 KiB
Go
package action
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"github.com/spf13/pflag"
|
|
"io"
|
|
"os"
|
|
"time"
|
|
|
|
log "github.com/sirupsen/logrus"
|
|
|
|
"github.com/wencaiwulue/kubevpn/pkg/config"
|
|
"github.com/wencaiwulue/kubevpn/pkg/daemon/rpc"
|
|
"github.com/wencaiwulue/kubevpn/pkg/handler"
|
|
"github.com/wencaiwulue/kubevpn/pkg/util"
|
|
)
|
|
|
|
type proxyWarp struct {
|
|
server rpc.Daemon_ProxyServer
|
|
}
|
|
|
|
func (r *proxyWarp) Write(p []byte) (n int, err error) {
|
|
err = r.server.Send(&rpc.ConnectResponse{
|
|
Message: string(p),
|
|
})
|
|
return len(p), err
|
|
}
|
|
|
|
func newProxyWarp(server rpc.Daemon_ProxyServer) io.Writer {
|
|
return &proxyWarp{server: server}
|
|
}
|
|
|
|
// 1. if not connect to cluster
|
|
// 1.1 connect to cluster
|
|
// 1.2 proxy workloads
|
|
// 2. if already connect to cluster
|
|
// 2.1 disconnect from cluster
|
|
// 2.2 same as step 1
|
|
|
|
func (svr *Server) Proxy(req *rpc.ConnectRequest, resp rpc.Daemon_ProxyServer) error {
|
|
out := newProxyWarp(resp)
|
|
log.SetOutput(out)
|
|
defer func() {
|
|
log.SetOutput(os.Stdout)
|
|
log.SetLevel(log.DebugLevel)
|
|
}()
|
|
ctx := resp.Context()
|
|
util.InitLogger(false)
|
|
connect := &handler.ConnectOptions{
|
|
Namespace: req.Namespace,
|
|
Headers: req.Headers,
|
|
Workloads: req.Workloads,
|
|
ExtraCIDR: req.ExtraCIDR,
|
|
ExtraDomain: req.ExtraDomain,
|
|
UseLocalDNS: req.UseLocalDNS,
|
|
Engine: config.Engine(req.Engine),
|
|
}
|
|
var sshConf = &util.SshConfig{
|
|
Addr: req.Addr,
|
|
User: req.User,
|
|
Password: req.Password,
|
|
Keyfile: req.Keyfile,
|
|
ConfigAlias: req.ConfigAlias,
|
|
RemoteKubeconfig: req.RemoteKubeconfig,
|
|
}
|
|
|
|
file, err := util.ConvertToTempFile([]byte(req.KubeconfigBytes))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
flags := pflag.NewFlagSet("", pflag.ContinueOnError)
|
|
flags.AddFlag(&pflag.Flag{
|
|
Name: "kubeconfig",
|
|
DefValue: file,
|
|
})
|
|
err = handler.SshJump(ctx, sshConf, flags)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
err = connect.InitClient(InitFactory(req.KubeconfigBytes, req.Namespace))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
err = connect.PreCheckResource()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
daemonClient := svr.GetClient(false)
|
|
if daemonClient == nil {
|
|
return fmt.Errorf("daemon is not avaliable")
|
|
}
|
|
if svr.connect != nil {
|
|
isSameCluster, err := util.IsSameCluster(
|
|
svr.connect.GetClientset().CoreV1().ConfigMaps(svr.connect.Namespace), svr.connect.Namespace,
|
|
connect.GetClientset().CoreV1().ConfigMaps(connect.Namespace), connect.Namespace,
|
|
)
|
|
if err == nil && isSameCluster && svr.connect.Equal(connect) {
|
|
// same cluster, do nothing
|
|
log.Debugf("already connect to cluster")
|
|
} else {
|
|
log.Debugf("try to disconnect from another cluster")
|
|
disconnect, err := daemonClient.Disconnect(ctx, &rpc.DisconnectRequest{})
|
|
if err != nil {
|
|
return err
|
|
}
|
|
for {
|
|
recv, err := disconnect.Recv()
|
|
if err == io.EOF {
|
|
break
|
|
} else if err != nil {
|
|
return err
|
|
}
|
|
err = resp.Send(&rpc.ConnectResponse{Message: recv.Message})
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if svr.connect == nil {
|
|
log.Debugf("connectting to cluster")
|
|
connResp, err := daemonClient.Connect(ctx, req)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
for {
|
|
recv, err := connResp.Recv()
|
|
if err == io.EOF {
|
|
break
|
|
} else if err != nil {
|
|
return err
|
|
}
|
|
err = resp.Send(recv)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
}
|
|
|
|
log.Debugf("proxy resource...")
|
|
err = svr.connect.CreateRemoteInboundPod(ctx)
|
|
log.Debugf("proxy resource done")
|
|
return err
|
|
}
|
|
|
|
func (svr *Server) redirectToSudoDaemon1(req *rpc.ConnectRequest, resp rpc.Daemon_ConnectServer) error {
|
|
cli := svr.GetClient(true)
|
|
if cli == nil {
|
|
return fmt.Errorf("sudo daemon not start")
|
|
}
|
|
connResp, err := cli.Connect(resp.Context(), req)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
for {
|
|
recv, err := connResp.Recv()
|
|
if err == io.EOF {
|
|
break
|
|
} else if err != nil {
|
|
return err
|
|
}
|
|
err = resp.Send(recv)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
svr.t = time.Now()
|
|
svr.connect = &handler.ConnectOptions{
|
|
Namespace: req.Namespace,
|
|
Headers: req.Headers,
|
|
Workloads: req.Workloads,
|
|
ExtraCIDR: req.ExtraCIDR,
|
|
ExtraDomain: req.ExtraDomain,
|
|
UseLocalDNS: req.UseLocalDNS,
|
|
Engine: config.Engine(req.Engine),
|
|
}
|
|
var sshConf = &util.SshConfig{
|
|
Addr: req.Addr,
|
|
User: req.User,
|
|
Password: req.Password,
|
|
Keyfile: req.Keyfile,
|
|
ConfigAlias: req.ConfigAlias,
|
|
RemoteKubeconfig: req.RemoteKubeconfig,
|
|
}
|
|
file, err := util.ConvertToTempFile([]byte(req.KubeconfigBytes))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
flags := pflag.NewFlagSet("", pflag.ContinueOnError)
|
|
flags.AddFlag(&pflag.Flag{
|
|
Name: "kubeconfig",
|
|
DefValue: file,
|
|
})
|
|
err = handler.SshJump(context.Background(), sshConf, flags)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
err = svr.connect.InitClient(InitFactory(req.KubeconfigBytes, req.Namespace))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
err = svr.connect.PreCheckResource()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|