Documentation
¶
Index ¶
Constants ¶
View Source
const ( MatchDstIP int = iota MatchSrcIP MatchDstIPNet MatchSrcIPNet MatchDstOFPort MatchSrcOFPort MatchTCPDstPort MatchUDPDstPort MatchSCTPDstPort Unsupported )
Variables ¶
View Source
var (
ReentranceMAC, _ = net.ParseMAC("de:ad:be:ef:de:ad")
)
Functions ¶
This section is empty.
Types ¶
type Client ¶
type Client interface {
// Initialize sets up all basic flows on the specific OVS bridge. It returns a channel which
// is used to notify the caller in case of a reconnection, in which case ReplayFlows should
// be called to ensure that the set of OVS flows is correct. All flows programmed in the
// switch which match the current round number will be deleted before any new flow is
// installed.
Initialize(roundInfo types.RoundInfo, config *config.NodeConfig, encapMode config.TrafficEncapModeType, gatewayOFPort uint32) (<-chan struct{}, error)
// InstallGatewayFlows sets up flows related to an OVS gateway port, the gateway must exist.
InstallGatewayFlows(gatewayAddr net.IP, gatewayMAC net.HardwareAddr, gatewayOFPort uint32) error
// InstallClusterServiceCIDRFlows sets up the appropriate flows so that traffic can reach
// the different Services running in the Cluster. This method needs to be invoked once with
// the Cluster Service CIDR as a parameter.
InstallClusterServiceCIDRFlows(serviceNet *net.IPNet, gatewayMAC net.HardwareAddr, gatewayOFPort uint32) error
// InstallDefaultTunnelFlows sets up the classification flow for the default (flow based) tunnel.
InstallDefaultTunnelFlows(tunnelOFPort uint32) error
// InstallNodeFlows should be invoked when a connection to a remote Node is going to be set
// up. The hostname is used to identify the added flows. When IPSec tunnel is enabled,
// ipsecTunOFPort must be set to the OFPort number of the IPSec tunnel port to the remote Node;
// otherwise ipsecTunOFPort must be set to 0.
// InstallNodeFlows has all-or-nothing semantics(call succeeds if all the flows are installed
// successfully, otherwise no flows will be installed). Calls to InstallNodeFlows are idempotent.
// Concurrent calls to InstallNodeFlows and / or UninstallNodeFlows are supported as long as they
// are all for different hostnames.
InstallNodeFlows(
hostname string,
localGatewayMAC net.HardwareAddr,
peerPodCIDR net.IPNet,
peerGatewayIP, tunnelPeerIP net.IP,
tunOFPort, ipsecTunOFPort uint32) error
// UninstallNodeFlows removes the connection to the remote Node specified with the
// hostname. UninstallNodeFlows will do nothing if no connection to the host was established.
UninstallNodeFlows(hostname string) error
// InstallPodFlows should be invoked when a connection to a Pod on current Node. The
// containerID is used to identify the added flows. InstallPodFlows has all-or-nothing
// semantics(call succeeds if all the flows are installed successfully, otherwise no
// flows will be installed). Calls to InstallPodFlows are idempotent. Concurrent calls
// to InstallPodFlows and / or UninstallPodFlows are supported as long as they are all
// for different containerIDs.
InstallPodFlows(containerID string, podInterfaceIP net.IP, podInterfaceMAC, gatewayMAC net.HardwareAddr, ofPort uint32) error
// UninstallPodFlows removes the connection to the local Pod specified with the
// containerID. UninstallPodFlows will do nothing if no connection to the Pod was established.
UninstallPodFlows(containerID string) error
// GetFlowTableStatus should return an array of flow table status, all existing flow tables should be included in the list.
GetFlowTableStatus() []binding.TableStatus
// InstallPolicyRuleFlows installs flows for a new NetworkPolicy rule. Rule should include all fields in the
// NetworkPolicy rule. Each ingress/egress policy rule installs Openflow entries on two tables, one for
// ruleTable and the other for dropTable. If a packet does not pass the ruleTable, it will be dropped by the
// dropTable.
InstallPolicyRuleFlows(ruleID uint32, rule *types.PolicyRule) error
// UninstallPolicyRuleFlows removes the Openflow entry relevant to the specified NetworkPolicy rule.
// UninstallPolicyRuleFlows will do nothing if no Openflow entry for the rule is installed.
UninstallPolicyRuleFlows(ruleID uint32) error
// AddPolicyRuleAddress adds one or multiple addresses to the specified NetworkPolicy rule. If addrType is true, the
// addresses are added to PolicyRule.From, else to PolicyRule.To.
AddPolicyRuleAddress(ruleID uint32, addrType types.AddressType, addresses []types.Address) error
// DeletePolicyRuleAddress removes addresses from the specified NetworkPolicy rule. If addrType is srcAddress, the addresses
// are removed from PolicyRule.From, else from PolicyRule.To.
DeletePolicyRuleAddress(ruleID uint32, addrType types.AddressType, addresses []types.Address) error
// Disconnect disconnects the connection between client and OFSwitch.
Disconnect() error
// IsConnected returns the connection status between client and OFSwitch. The return value is true if the OFSwitch is connected.
IsConnected() bool
// ReplayFlows should be called when a spurious disconnection occurs. After we reconnect to
// the OFSwitch, we need to replay all the flows cached by the client. ReplayFlows will try
// to replay as many flows as possible, and will log an error when a flow cannot be
// installed.
ReplayFlows()
// DeleteStaleFlows deletes all flows from the previous round which are no longer needed. It
// should be called by the agent after all required flows have been installed / updated with
// the new round number.
DeleteStaleFlows() error
}
Client is the interface to program OVS flows for entity connectivity of Antrea.
type ConjunctionNotFound ¶
type ConjunctionNotFound uint32
ConjunctionNotFound is an error response when the specified policyRuleConjunction is not found from the local cache.
func (*ConjunctionNotFound) Error ¶
func (e *ConjunctionNotFound) Error() string
type FlowOperations ¶
type IPAddress ¶
IP address calculated from Pod's address.
func NewIPAddress ¶
func (*IPAddress) GetMatchKey ¶
func (a *IPAddress) GetMatchKey(addrType types.AddressType) int
func (*IPAddress) GetMatchValue ¶
type IPNetAddress ¶
IP block calculated from Pod's address.
func NewIPNetAddress ¶
func NewIPNetAddress(addr net.IPNet) *IPNetAddress
func (*IPNetAddress) GetMatchKey ¶
func (a *IPNetAddress) GetMatchKey(addrType types.AddressType) int
func (*IPNetAddress) GetMatchValue ¶
func (a *IPNetAddress) GetMatchValue() string
func (*IPNetAddress) GetValue ¶
func (a *IPNetAddress) GetValue() interface{}
type OFPortAddress ¶
type OFPortAddress int32
OFPortAddress is the Openflow port of an interface.
func NewOFPortAddress ¶
func NewOFPortAddress(addr int32) *OFPortAddress
func (*OFPortAddress) GetMatchKey ¶
func (a *OFPortAddress) GetMatchKey(addrType types.AddressType) int
func (*OFPortAddress) GetMatchValue ¶
func (a *OFPortAddress) GetMatchValue() string
func (*OFPortAddress) GetValue ¶
func (a *OFPortAddress) GetValue() interface{}
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.