Documentation ¶
Index ¶
- Constants
- type EndpointSynchronizer
- type K8sWatcher
- func (k *K8sWatcher) DeleteHostPortMapping(pod *slim_corev1.Pod, podIPs []string) error
- func (k *K8sWatcher) EnableK8sWatcher(ctx context.Context) error
- func (k *K8sWatcher) GetAPIGroups() []string
- func (k *K8sWatcher) GetCachedNamespace(namespace string) (*slim_corev1.Namespace, error)
- func (k *K8sWatcher) GetCachedPod(namespace, name string) (*slim_corev1.Pod, error)
- func (k *K8sWatcher) GetStore(name string) cache.Store
- func (k *K8sWatcher) InitK8sSubsystem(ctx context.Context) <-chan struct{}
- func (k *K8sWatcher) K8sEventProcessed(scope string, action string, status bool)
- func (k *K8sWatcher) K8sEventReceived(scope string, action string, valid, equal bool)
- func (k *K8sWatcher) RunK8sServiceHandler()
- func (k *K8sWatcher) WaitForCRDsToRegister(ctx context.Context) error
- func (k *K8sWatcher) WaitForCacheSync(resourceNames ...string)
- type WatcherConfiguration
Constants ¶
const ( K8sAPIGroupServiceV1Core = "core/v1::Service" K8sAPIGroupEndpointV1Core = "core/v1::Endpoint" K8sAPIGroupPodV1Core = "core/v1::Pods" K8sAPIGroupEndpointSliceV1Beta1Discovery = "discovery/v1beta1::EndpointSlice" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type EndpointSynchronizer ¶
type EndpointSynchronizer struct{}
EndpointSynchronizer currently is an empty type, which wraps around syncing of CiliumEndpoint resources.
func (*EndpointSynchronizer) DeleteK8sCiliumEndpointSync ¶
func (epSync *EndpointSynchronizer) DeleteK8sCiliumEndpointSync(e *endpoint.Endpoint)
DeleteK8sCiliumEndpointSync replaces the endpoint controller to remove the CEP from Kubernetes once the endpoint is stopped / removed from the Cilium agent.
func (*EndpointSynchronizer) RunK8sCiliumEndpointSync ¶
func (epSync *EndpointSynchronizer) RunK8sCiliumEndpointSync(e *endpoint.Endpoint, conf endpoint.EndpointStatusConfiguration)
RunK8sCiliumEndpointSync starts a controller that synchronizes the endpoint to the corresponding k8s CiliumEndpoint CRD. It is expected that each CEP has 1 controller that updates it, and a local copy is retained and only updates are pushed up. CiliumEndpoint objects have the same name as the pod they represent.
type K8sWatcher ¶
type K8sWatcher struct { // K8sSvcCache is a cache of all Kubernetes services and endpoints K8sSvcCache k8s.ServiceCache // contains filtered or unexported fields }
func NewK8sWatcher ¶
func NewK8sWatcher( endpointManager endpointManager, nodeDiscoverManager nodeDiscoverManager, policyManager policyManager, policyRepository policyRepository, svcManager svcManager, datapath datapath.Datapath, redirectPolicyManager redirectPolicyManager, cfg WatcherConfiguration, ) *K8sWatcher
func (*K8sWatcher) DeleteHostPortMapping ¶ added in v1.8.0
func (k *K8sWatcher) DeleteHostPortMapping(pod *slim_corev1.Pod, podIPs []string) error
func (*K8sWatcher) EnableK8sWatcher ¶ added in v1.7.0
func (k *K8sWatcher) EnableK8sWatcher(ctx context.Context) error
EnableK8sWatcher watches for policy, services and endpoint changes on the Kubernetes api server defined in the receiver's daemon k8sClient.
func (*K8sWatcher) GetAPIGroups ¶
func (k *K8sWatcher) GetAPIGroups() []string
func (*K8sWatcher) GetCachedNamespace ¶
func (k *K8sWatcher) GetCachedNamespace(namespace string) (*slim_corev1.Namespace, error)
GetCachedNamespace returns a namespace from the local store.
func (*K8sWatcher) GetCachedPod ¶
func (k *K8sWatcher) GetCachedPod(namespace, name string) (*slim_corev1.Pod, error)
GetCachedPod returns a pod from the local store. Depending if the Cilium agent flag `option.Config.K8sEventHandover` this function might only return local pods. If `option.Config.K8sEventHandover` is:
- true: returns only local pods received by the pod watcher.
- false: returns any pod in the cluster received by the pod watcher.
func (*K8sWatcher) GetStore ¶
func (k *K8sWatcher) GetStore(name string) cache.Store
GetStore returns the k8s cache store for the given resource name.
func (*K8sWatcher) InitK8sSubsystem ¶
func (k *K8sWatcher) InitK8sSubsystem(ctx context.Context) <-chan struct{}
InitK8sSubsystem returns a channel for which it will be closed when all caches essential for daemon are synchronized. To be called after WaitForCRDsToRegister() so that all needed CRDs have already been registered.
func (*K8sWatcher) K8sEventProcessed ¶
func (k *K8sWatcher) K8sEventProcessed(scope string, action string, status bool)
K8sEventProcessed is called to do metrics accounting for each processed Kubernetes event
func (*K8sWatcher) K8sEventReceived ¶
func (k *K8sWatcher) K8sEventReceived(scope string, action string, valid, equal bool)
K8sEventReceived does metric accounting for each received Kubernetes event
func (*K8sWatcher) RunK8sServiceHandler ¶
func (k *K8sWatcher) RunK8sServiceHandler()
func (*K8sWatcher) WaitForCRDsToRegister ¶
func (k *K8sWatcher) WaitForCRDsToRegister(ctx context.Context) error
WaitForCRDsToRegister will wait for the Cilium Operator to register the CRDs with the apiserver. This step is required before launching the full K8s watcher, as those resource controllers need the resources to be registered with K8s first.
func (*K8sWatcher) WaitForCacheSync ¶
func (k *K8sWatcher) WaitForCacheSync(resourceNames ...string)
type WatcherConfiguration ¶
type WatcherConfiguration interface { utils.ServiceConfiguration }
WatcherConfiguration is the required configuration for EnableK8sWatcher