Documentation ¶
Overview ¶
Package antctl provides the antctl framework and antctl command implementations.
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var CommandList = &commandList{ definitions: []commandDefinition{ { use: "version", short: "Print version information", long: "Print version information of antctl and ${component}", commandGroup: flat, controllerEndpoint: &endpoint{ resourceEndpoint: &resourceEndpoint{ resourceName: controllerinforest.ControllerInfoResourceName, groupVersionResource: &systemv1beta1.ControllerInfoVersionResource, }, addonTransform: version.ControllerTransform, }, agentEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/version", }, addonTransform: version.AgentTransform, }, transformedResponse: reflect.TypeOf(version.Response{}), }, { use: "networkpolicy", aliases: []string{"networkpolicies", "netpol"}, short: "Print NetworkPolicies", long: "Print NetworkPolicies in ${component}. 'namespace' is required if 'name' is provided.", example: ` Get a specific NetworkPolicy $ antctl get networkpolicy np1 -n ns1 Get the list of NetworkPolicies in a Namespace $ antctl get networkpolicy -n ns1 Get the list of NetworkPolicies in all Namespaces $ antctl get networkpolicy Get the list of NetworkPolicies applied to a Pod (supported by agent only) $ antctl get networkpolicy -p pod1 -n ns1`, commandGroup: get, controllerEndpoint: &endpoint{ resourceEndpoint: &resourceEndpoint{ groupVersionResource: &cpv1beta1.NetworkPolicyVersionResource, resourceName: "", namespaced: true, }, addonTransform: networkpolicy.Transform, }, agentEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/networkpolicies", params: []flagInfo{ { name: "name", usage: "Get NetworkPolicy by name. If present, Namespace must be provided.", arg: true, }, { name: "namespace", usage: "Get Networkpolicies from specific Namespace", shorthand: "n", }, { name: "pod", usage: "Get NetworkPolicies applied to the Pod. If present, Namespace must be provided.", shorthand: "p", }, }, }, addonTransform: networkpolicy.Transform, }, transformedResponse: reflect.TypeOf(networkpolicy.Response{}), }, { use: "appliedtogroup", aliases: []string{"appliedtogroups", "atg"}, short: "Print appliedto groups", long: "Print appliedto groups in ${component}", commandGroup: get, controllerEndpoint: &endpoint{ resourceEndpoint: &resourceEndpoint{ groupVersionResource: &cpv1beta1.AppliedToGroupVersionResource, }, addonTransform: appliedtogroup.Transform, }, agentEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/appliedtogroups", params: []flagInfo{ { usage: "Retrieve resource by name", name: "name", arg: true, }, }, }, addonTransform: appliedtogroup.Transform, }, transformedResponse: reflect.TypeOf(appliedtogroup.Response{}), }, { use: "addressgroup", aliases: []string{"addressgroups", "ag"}, short: "Print address groups", long: "Print address groups in ${component}", commandGroup: get, controllerEndpoint: &endpoint{ resourceEndpoint: &resourceEndpoint{ groupVersionResource: &cpv1beta1.AddressGroupVersionResource, }, addonTransform: addressgroup.Transform, }, agentEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/addressgroups", params: []flagInfo{ { usage: "Retrieve resource by name", name: "name", arg: true, }, }, }, addonTransform: addressgroup.Transform, }, transformedResponse: reflect.TypeOf(addressgroup.Response{}), }, { use: "controllerinfo", aliases: []string{"controllerinfos", "ci"}, short: "Print Antrea controller's basic information", long: "Print Antrea controller's basic information including version, deployment, NetworkPolicy controller, ControllerConditions, etc.", controllerEndpoint: &endpoint{ resourceEndpoint: &resourceEndpoint{ resourceName: controllerinforest.ControllerInfoResourceName, groupVersionResource: &systemv1beta1.ControllerInfoVersionResource, }, addonTransform: controllerinfo.Transform, }, commandGroup: get, transformedResponse: reflect.TypeOf(controllerinfo.Response{}), }, { use: "agentinfo", aliases: []string{"agentinfos", "ai"}, short: "Print agent's basic information", long: "Print agent's basic information including version, deployment, Node subnet, OVS info, AgentConditions, etc.", agentEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/agentinfo", outputType: single, }, }, commandGroup: get, transformedResponse: reflect.TypeOf(agentinfo.AntreaAgentInfoResponse{}), }, { use: "podinterface", aliases: []string{"podinterfaces", "pi"}, short: "Print Pod's network interface information", long: "Print information about the network interface(s) created by the Antrea agent for the specified Pod.", example: ` Get a pod-interface $ antctl get podinterface pod1 -n ns1 Get the list of podinterfaces in a Namespace $ antctl get podinterface -n ns1 Get the list of podinterfaces whose names match in all Namespaces $ antctl get podinterface pod1 Get the list of podinterfaces in all Namespaces $ antctl get podinterface`, agentEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/podinterfaces", params: []flagInfo{ { name: "name", usage: "Retrieve Pod interface by name. If present, Namespace must be provided.", arg: true, }, { name: "namespace", usage: "Get Pod interfaces from specific Namespace", shorthand: "n", }, }, outputType: multiple, }, }, commandGroup: get, transformedResponse: reflect.TypeOf(podinterface.Response{}), }, { use: "ovsflows", aliases: []string{"of"}, short: "Dump OVS flows", long: "Dump all the OVS flows or the flows installed for the specified entity.", example: ` Dump all OVS flows $ antctl get ovsflows Dump OVS flows of a local Pod $ antctl get ovsflows -p pod1 -n ns1 Dump OVS flows of a NetworkPolicy $ antctl get ovsflows --networkpolicy np1 -n ns1 Dump OVS flows of a flow Table $ antctl get ovsflows -T IngressRule Antrea OVS Flow Tables:` + generateFlowTableHelpMsg(), agentEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/ovsflows", params: []flagInfo{ { name: "namespace", usage: "Namespace of the entity", shorthand: "n", }, { name: "pod", usage: "Name of a local Pod. If present, Namespace must be provided.", shorthand: "p", }, { name: "networkpolicy", usage: "NetworkPolicy name. If present, Namespace must be provided.", }, { name: "table", usage: "Antrea OVS flow table name or number", shorthand: "T", }, }, outputType: multiple, }, }, commandGroup: get, transformedResponse: reflect.TypeOf(ovsflows.Response{}), }, { use: "trace-packet", short: "OVS packet tracing", long: "Trace the OVS flows the specified packet traverses, leveraging OVS 'ofproto/trace'. Check ovs-vswitchd(8) manpage for more information about 'ofproto/trace'.", example: ` Trace an IP packet between two Pods $ antctl trace-packet -S ns1/pod1 -D ns2/pod2 Trace a TCP packet from a local Pod to a Service $ antctl trace-packet -S ns1/pod1 -D ns2/srv2 -f tcp,tcp_dst=80 Trace a UDP packet from a Pod to an IP address $ antctl trace-packet -S ns1/pod1 -D 10.1.2.3 -f udp,udp_dst=1234 Trace an IP packet from a Pod to gateway port $ antctl trace-packet -S ns1/pod1 -D antrea-gw0 Trace a UDP packet from an IP to a Pod $ antctl trace-packet -D ns1/pod1 -S 10.1.2.3 -f udp,udp_src=1234 Trace an IP packet from OVS port using a specified source IP $ antctl trace-packet -p port1 -S 10.1.2.3 -D ns1/pod1 Trace an ARP packet from a local Pod $ antctl trace-packet -p ns1/pod1 -f arp`, agentEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/ovstracing", params: []flagInfo{ { name: "port", usage: "OVS port to input the tracing packet. Can be an OVS port name, or a local Pod (specified by <Namespace>/<name>). If not specified, the input port will be automatically figured out based on the 'source', and the gateway port will be used if `source` is not specified either. If specified, the 'in_port' field should not be added in the 'flow' argument.", shorthand: "p", }, { name: "source", usage: "Source of the packet. Can be an OVS port name, or a (local or remote) Pod (specified by <Namespace>/<name>), or an IP address. If specified, the source's IP addresss will be used as the tracing packet's source IP address, and the 'nw_src' field should not be added in the 'flow' argument.", shorthand: "S", }, { name: "destination", usage: "Destination of the packet. Can be an OVS port name, or a (local or remote) Pod or a Service (specified by <Namespace>/<name>). If there are both a Pod and a Service matching the destination name in a Namespace, the Pod will be set as the destination. It can also be an IP address. If specified, the destination's IP address (the ClusterIP for a Service) will be used as the tacing packet's destination IP address, and the 'nw_dst' field should not be added in the 'flow' argument.", shorthand: "D", }, { name: "flow", usage: "Specify the flow (packet headers) of the tracing packet. Check the flow syntax descriptions in ovs-ofctl(8) manpage.", shorthand: "f", }, }, outputType: single, }, }, commandGroup: flat, transformedResponse: reflect.TypeOf(ovstracing.Response{}), }, { use: "endpoint", aliases: []string{"endpoints"}, short: "Filter network policies relevant to an endpoint.", long: "Filter network policies relevant to an endpoint into three categories: network policies which apply to the endpoint and policies which select the endpoint in an ingress and/or egress rule.", example: ` Query network policies given Pod and Namespace $ antctl query endpoint -p pod1 -n ns1 `, commandGroup: query, controllerEndpoint: &endpoint{ nonResourceEndpoint: &nonResourceEndpoint{ path: "/endpoint", params: []flagInfo{ { name: "namespace", usage: "Namespace of the endpoint (defaults to 'default')", shorthand: "n", }, { name: "pod", usage: "Name of a Pod endpoint", shorthand: "p", }, }, outputType: single, }, }, transformedResponse: reflect.TypeOf(controllernetworkpolicy.EndpointQueryResponse{}), }, }, rawCommands: []rawCommand{ { cobraCommand: supportbundle.Command, supportAgent: true, supportController: true, }, { cobraCommand: traceflow.Command, supportAgent: true, supportController: true, }, }, codec: scheme.Codecs, }
CommandList defines all commands that could be used in the antctl for both agents and controller. The unit test "TestCommandListValidation" ensures it to be valid.
Functions ¶
This section is empty.
Types ¶
type OutputType ¶ added in v0.5.0
type OutputType uint
Source Files ¶
Click to show internal directories.
Click to hide internal directories.