apps/kubevpn
1
0
Fork 0
mirror of https://github.com/kubenetworks/kubevpn.git synced 2025-10-05 07:16:54 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
b0ed57794f15d71c0886b86d965252051aec4d30
kubevpn/pkg/dns/dns.go
fengcaiwen b0ed57794f fix: fix cidr-domain not works bug
2023-07-17 16:25:11 +08:00

223 lines
5.6 KiB
Go
Raw Blame History

package dns
import (
"bytes"
"context"
"fmt"
"net"
"os"
"sort"
"strings"
"text/tabwriter"
"time"
miekgdns "github.com/miekg/dns"
"github.com/pkg/errors"
v12 "k8s.io/api/core/v1"
apierrors "k8s.io/apimachinery/pkg/api/errors"
"k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/fields"
utilnet "k8s.io/apimachinery/pkg/util/net"
"k8s.io/apimachinery/pkg/util/sets"
"k8s.io/apimachinery/pkg/watch"
"k8s.io/client-go/kubernetes"
v13 "k8s.io/client-go/kubernetes/typed/core/v1"
"k8s.io/client-go/rest"
"k8s.io/client-go/util/flowcontrol"
"k8s.io/utils/pointer"
"github.com/wencaiwulue/kubevpn/pkg/util"
)
func GetDNSServiceIPFromPod(clientset *kubernetes.Clientset, restclient *rest.RESTClient, config *rest.Config, podName, namespace string) (*miekgdns.ClientConfig, error) {
resolvConfStr, err := util.Shell(clientset, restclient, config, podName, "", namespace, []string{"cat", "/etc/resolv.conf"})
if err != nil {
return nil, err
}
resolvConf, err := miekgdns.ClientConfigFromReader(bytes.NewBufferString(resolvConfStr))
if err != nil {
return nil, err
}
if ips, err := GetDNSIPFromDnsPod(clientset); err == nil && len(ips) != 0 {
resolvConf.Servers = ips
}
// linux nameserver only support amount is 3, so if namespace too much, just use two, left one to system
if len(resolvConf.Servers) > 2 {
resolvConf.Servers = resolvConf.Servers[:2]
}
return resolvConf, nil
}
func GetDNSIPFromDnsPod(clientset *kubernetes.Clientset) (ips []string, err error) {
var serviceList *v12.ServiceList
serviceList, err = clientset.CoreV1().Services(v1.NamespaceSystem).List(context.Background(), v1.ListOptions{
LabelSelector: fields.OneTermEqualSelector("k8s-app", "kube-dns").String(),
})
if err != nil {
return
}
for _, item := range serviceList.Items {
if len(item.Spec.ClusterIP) != 0 {
ips = append(ips, item.Spec.ClusterIP)
}
}
var podList *v12.PodList
podList, err = clientset.CoreV1().Pods(v1.NamespaceSystem).List(context.Background(), v1.ListOptions{
LabelSelector: fields.OneTermEqualSelector("k8s-app", "kube-dns").String(),
})
if err == nil {
for _, pod := range podList.Items {
if pod.Status.Phase == v12.PodRunning && pod.DeletionTimestamp == nil {
ips = append(ips, pod.Status.PodIP)
}
}
}
if len(ips) == 0 {
err = errors.New("can not found any dns service ip")
return
}
err = nil
return
}
func AddServiceNameToHosts(ctx context.Context, serviceInterface v13.ServiceInterface, hosts ...Entry) {
rateLimiter := flowcontrol.NewTokenBucketRateLimiter(0.2, 1)
defer rateLimiter.Stop()
var last string
serviceList, err := serviceInterface.List(ctx, v1.ListOptions{})
if err == nil && len(serviceList.Items) != 0 {
entry := generateHostsEntry(serviceList.Items, hosts)
if err = updateHosts(entry); err == nil {
last = entry
}
}
for {
select {
case <-ctx.Done():
return
default:
func() {
w, err := serviceInterface.Watch(ctx, v1.ListOptions{
Watch: true, TimeoutSeconds: pointer.Int64(30), ResourceVersion: serviceList.ResourceVersion,
})
if err != nil {
if utilnet.IsConnectionRefused(err) || apierrors.IsTooManyRequests(err) {
time.Sleep(time.Second * 5)
}
return
}
defer w.Stop()
for {
select {
case c, ok := <-w.ResultChan():
if !ok {
return
}
if watch.Error == c.Type || watch.Bookmark == c.Type {
continue
}
if !rateLimiter.TryAccept() {
return
}
list, err := serviceInterface.List(ctx, v1.ListOptions{})
if err != nil {
return
}
entry := generateHostsEntry(list.Items, hosts)
if entry == last {
continue
}
if err = updateHosts(entry); err != nil {
return
}
last = entry
}
}
}()
}
}
}
func updateHosts(str string) error {
path := GetHostFile()
file, err := os.ReadFile(path)
if err != nil {
return err
}
split := strings.Split(string(file), "\n")
for i := 0; i < len(split); i++ {
if strings.Contains(split[i], "KubeVPN") {
split = append(split[:i], split[i+1:]...)
i--
}
}
var sb strings.Builder
sb.WriteString(strings.Join(split, "\n"))
if str != "" {
sb.WriteString("\n")
sb.WriteString(str)
}
s := sb.String()
// remove last empty line
strList := strings.Split(s, "\n")
for {
if len(strList) > 0 {
if strList[len(strList)-1] == "" {
strList = strList[:len(strList)-1]
continue
}
}
break
}
return os.WriteFile(path, []byte(strings.Join(strList, "\n")), 0644)
}
type Entry struct {
IP string
Domain string
}
func generateHostsEntry(list []v12.Service, hosts []Entry) string {
const ServiceKubernetes = "kubernetes"
var entryList []Entry
for _, item := range list {
if strings.EqualFold(item.Name, ServiceKubernetes) {
continue
}
ipList := sets.New[string](item.Spec.ClusterIPs...).Insert(item.Spec.ExternalIPs...).UnsortedList()
domainList := sets.New[string](item.Name).Insert(item.Spec.ExternalName).UnsortedList()
for _, ip := range ipList {
for _, domain := range domainList {
if net.ParseIP(ip) == nil || domain == "" {
continue
}
entryList = append(entryList, Entry{IP: ip, Domain: domain})
}
}
}
sort.SliceStable(entryList, func(i, j int) bool {
if entryList[i].Domain == entryList[j].Domain {
return entryList[i].IP > entryList[j].IP
}
return entryList[i].Domain > entryList[j].Domain
})
entryList = append(entryList, hosts...)
var sb = new(bytes.Buffer)
w := tabwriter.NewWriter(sb, 1, 1, 1, ' ', 0)
for _, e := range entryList {
_, _ = fmt.Fprintf(w, "%s\t%s\t%s\t%s\n", e.IP, e.Domain, "", "# Add by KubeVPN")
}
_ = w.Flush()
return sb.String()
}
Reference in New Issue View Git Blame Copy Permalink