apps/k8s-networking/app/src/main/java/org/onosproject/k8snetworking/web/K8sManagementWebResource.java - onos - Gitiles

 /*
  * Copyright 2019-present Open Networking Foundation
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 package org.onosproject.k8snetworking.web;

 import io.fabric8.kubernetes.api.model.Pod;
 import io.fabric8.kubernetes.client.KubernetesClient;
 import org.onlab.packet.IpAddress;
 import org.onlab.packet.MacAddress;
 import org.onlab.util.ItemNotFoundException;
 import org.onosproject.k8snetworking.api.DefaultK8sPort;
 import org.onosproject.k8snetworking.api.K8sEndpointsAdminService;
 import org.onosproject.k8snetworking.api.K8sIngressAdminService;
 import org.onosproject.k8snetworking.api.K8sNetworkAdminService;
 import org.onosproject.k8snetworking.api.K8sNetworkPolicyAdminService;
 import org.onosproject.k8snetworking.api.K8sPodAdminService;
 import org.onosproject.k8snetworking.api.K8sPort;
 import org.onosproject.k8snetworking.api.K8sServiceAdminService;
 import org.onosproject.k8snetworking.util.K8sNetworkingUtil;
 import org.onosproject.k8snode.api.K8sApiConfig;
 import org.onosproject.k8snode.api.K8sApiConfigService;
 import org.onosproject.k8snode.api.K8sNode;
 import org.onosproject.k8snode.api.K8sNodeAdminService;
 import org.onosproject.k8snode.api.K8sNodeState;
 import org.onosproject.net.DeviceId;
 import org.onosproject.net.PortNumber;
 import org.onosproject.rest.AbstractWebResource;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;

 import javax.ws.rs.GET;
 import javax.ws.rs.Path;
 import javax.ws.rs.Produces;
 import javax.ws.rs.core.MediaType;
 import javax.ws.rs.core.Response;
 import java.util.Map;

 import static java.lang.Thread.sleep;
 import static org.onosproject.k8snetworking.api.K8sPort.State.INACTIVE;
 import static org.onosproject.k8snode.api.K8sNode.Type.MASTER;
 import static org.onosproject.k8snode.api.K8sNode.Type.MINION;
 import static org.onosproject.k8snode.api.K8sNodeState.COMPLETE;

 /**
  * REST interface for synchronizing kubernetes network states and rules.
  */
 @Path("management")
 public class K8sManagementWebResource extends AbstractWebResource {
     private final Logger log = LoggerFactory.getLogger(getClass());

     private static final String PORT_ID = "portId";
     private static final String DEVICE_ID = "deviceId";
     private static final String PORT_NUMBER = "portNumber";
     private static final String IP_ADDRESS = "ipAddress";
     private static final String MAC_ADDRESS = "macAddress";
     private static final String NETWORK_ID = "networkId";

     private static final long SLEEP_MIDDLE_MS = 3000; // we wait 3s
     private static final long TIMEOUT_MS = 10000; // we wait 10s

     private final K8sApiConfigService configService = get(K8sApiConfigService.class);
     private final K8sPodAdminService podAdminService = get(K8sPodAdminService.class);
     private final K8sServiceAdminService serviceAdminService =
                                             get(K8sServiceAdminService.class);
     private final K8sIngressAdminService ingressAdminService =
                                             get(K8sIngressAdminService.class);
     private final K8sEndpointsAdminService endpointsAdminService =
                                             get(K8sEndpointsAdminService.class);
     private final K8sNetworkAdminService networkAdminService =
                                             get(K8sNetworkAdminService.class);
     private final K8sNodeAdminService nodeAdminService =
                                             get(K8sNodeAdminService.class);
     private final K8sNetworkPolicyAdminService policyAdminService =
                                             get(K8sNetworkPolicyAdminService.class);

     /**
      * Synchronizes the all states with kubernetes API server.
      *
      * @return 200 OK with sync result, 404 not found
      * @throws InterruptedException exception
      */
     @GET
     @Produces(MediaType.APPLICATION_JSON)
     @Path("sync/states")
     public Response syncStates() {
         K8sApiConfig config =
                 configService.apiConfigs().stream().findAny().orElse(null);
         if (config == null) {
             throw new ItemNotFoundException("Failed to find valid kubernetes API configuration.");
         }

         KubernetesClient client = K8sNetworkingUtil.k8sClient(config);

         if (client == null) {
             throw new ItemNotFoundException("Failed to connect to kubernetes API server.");
         }

         client.services().inAnyNamespace().list().getItems().forEach(svc -> {
             if (serviceAdminService.service(svc.getMetadata().getUid()) != null) {
                 serviceAdminService.updateService(svc);
             } else {
                 serviceAdminService.createService(svc);
             }
         });

         client.endpoints().inAnyNamespace().list().getItems().forEach(ep -> {
             if (endpointsAdminService.endpoints(ep.getMetadata().getUid()) != null) {
                 endpointsAdminService.updateEndpoints(ep);
             } else {
                 endpointsAdminService.createEndpoints(ep);
             }
         });

         client.pods().inAnyNamespace().list().getItems().forEach(pod -> {
             if (podAdminService.pod(pod.getMetadata().getUid()) != null) {
                 podAdminService.updatePod(pod);
             } else {
                 podAdminService.createPod(pod);
             }

             syncPortFromPod(pod, networkAdminService);
         });

         client.extensions().ingresses().inAnyNamespace().list().getItems().forEach(ingress -> {
             if (ingressAdminService.ingress(ingress.getMetadata().getUid()) != null) {
                 ingressAdminService.updateIngress(ingress);
             } else {
                 ingressAdminService.createIngress(ingress);
             }
         });

         client.network().networkPolicies().inAnyNamespace().list().getItems().forEach(policy -> {
             if (policyAdminService.networkPolicy(policy.getMetadata().getUid()) != null) {
                 policyAdminService.updateNetworkPolicy(policy);
             } else {
                 policyAdminService.createNetworkPolicy(policy);
             }
         });

         return ok(mapper().createObjectNode()).build();
     }

     /**
      * Synchronizes the flow rules.
      *
      * @return 200 OK with sync result, 404 not found
      */
     @GET
     @Produces(MediaType.APPLICATION_JSON)
     @Path("sync/rules")
     public Response syncRules() {

         syncRulesBase();
         return ok(mapper().createObjectNode()).build();
     }

     private void syncPortFromPod(Pod pod, K8sNetworkAdminService adminService) {
         Map<String, String> annotations = pod.getMetadata().getAnnotations();
         if (annotations != null && !annotations.isEmpty() &&
                 annotations.get(PORT_ID) != null) {
             String portId = annotations.get(PORT_ID);

             K8sPort oldPort = adminService.port(portId);

             String networkId = annotations.get(NETWORK_ID);
             DeviceId deviceId = DeviceId.deviceId(annotations.get(DEVICE_ID));
             PortNumber portNumber = PortNumber.portNumber(annotations.get(PORT_NUMBER));
             IpAddress ipAddress = IpAddress.valueOf(annotations.get(IP_ADDRESS));
             MacAddress macAddress = MacAddress.valueOf(annotations.get(MAC_ADDRESS));

             K8sPort newPort = DefaultK8sPort.builder()
                     .portId(portId)
                     .networkId(networkId)
                     .deviceId(deviceId)
                     .ipAddress(ipAddress)
                     .macAddress(macAddress)
                     .portNumber(portNumber)
                     .state(INACTIVE)
                     .build();

             if (oldPort == null) {
                 adminService.createPort(newPort);
             } else {
                 adminService.updatePort(newPort);
             }
         }
     }

     private void syncRulesBase() {
         nodeAdminService.completeNodes(MASTER).forEach(this::syncRulesBaseForNode);
         nodeAdminService.completeNodes(MINION).forEach(this::syncRulesBaseForNode);
     }

     private void syncRulesBaseForNode(K8sNode k8sNode) {
         K8sNode updated = k8sNode.updateState(K8sNodeState.INIT);
         nodeAdminService.updateNode(updated);

         boolean result = true;
         long timeoutExpiredMs = System.currentTimeMillis() + TIMEOUT_MS;

         while (nodeAdminService.node(k8sNode.hostname()).state() != COMPLETE) {

             long  waitMs = timeoutExpiredMs - System.currentTimeMillis();

             try {
                 sleep(SLEEP_MIDDLE_MS);
             } catch (InterruptedException e) {
                 log.error("Exception caused during node synchronization...");
             }

             if (nodeAdminService.node(k8sNode.hostname()).state() == COMPLETE) {
                 break;
             } else {
                 nodeAdminService.updateNode(updated);
                 log.info("Failed to synchronize flow rules, retrying...");
             }

             if (waitMs <= 0) {
                 result = false;
                 break;
             }
         }

         if (result) {
             log.info("Successfully synchronize flow rules for node {}!", k8sNode.hostname());
         } else {
             log.warn("Failed to synchronize flow rules for node {}.", k8sNode.hostname());
         }
     }
 }
	/*
	* Copyright 2019-present Open Networking Foundation
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/
	package org.onosproject.k8snetworking.web;

	import io.fabric8.kubernetes.api.model.Pod;
	import io.fabric8.kubernetes.client.KubernetesClient;
	import org.onlab.packet.IpAddress;
	import org.onlab.packet.MacAddress;
	import org.onlab.util.ItemNotFoundException;
	import org.onosproject.k8snetworking.api.DefaultK8sPort;
	import org.onosproject.k8snetworking.api.K8sEndpointsAdminService;
	import org.onosproject.k8snetworking.api.K8sIngressAdminService;
	import org.onosproject.k8snetworking.api.K8sNetworkAdminService;
	import org.onosproject.k8snetworking.api.K8sNetworkPolicyAdminService;
	import org.onosproject.k8snetworking.api.K8sPodAdminService;
	import org.onosproject.k8snetworking.api.K8sPort;
	import org.onosproject.k8snetworking.api.K8sServiceAdminService;
	import org.onosproject.k8snetworking.util.K8sNetworkingUtil;
	import org.onosproject.k8snode.api.K8sApiConfig;
	import org.onosproject.k8snode.api.K8sApiConfigService;
	import org.onosproject.k8snode.api.K8sNode;
	import org.onosproject.k8snode.api.K8sNodeAdminService;
	import org.onosproject.k8snode.api.K8sNodeState;
	import org.onosproject.net.DeviceId;
	import org.onosproject.net.PortNumber;
	import org.onosproject.rest.AbstractWebResource;
	import org.slf4j.Logger;
	import org.slf4j.LoggerFactory;

	import javax.ws.rs.GET;
	import javax.ws.rs.Path;
	import javax.ws.rs.Produces;
	import javax.ws.rs.core.MediaType;
	import javax.ws.rs.core.Response;
	import java.util.Map;

	import static java.lang.Thread.sleep;
	import static org.onosproject.k8snetworking.api.K8sPort.State.INACTIVE;
	import static org.onosproject.k8snode.api.K8sNode.Type.MASTER;
	import static org.onosproject.k8snode.api.K8sNode.Type.MINION;
	import static org.onosproject.k8snode.api.K8sNodeState.COMPLETE;

	/**
	* REST interface for synchronizing kubernetes network states and rules.
	*/
	@Path("management")
	public class K8sManagementWebResource extends AbstractWebResource {
	private final Logger log = LoggerFactory.getLogger(getClass());

	private static final String PORT_ID = "portId";
	private static final String DEVICE_ID = "deviceId";
	private static final String PORT_NUMBER = "portNumber";
	private static final String IP_ADDRESS = "ipAddress";
	private static final String MAC_ADDRESS = "macAddress";
	private static final String NETWORK_ID = "networkId";

	private static final long SLEEP_MIDDLE_MS = 3000; // we wait 3s
	private static final long TIMEOUT_MS = 10000; // we wait 10s

	private final K8sApiConfigService configService = get(K8sApiConfigService.class);
	private final K8sPodAdminService podAdminService = get(K8sPodAdminService.class);
	private final K8sServiceAdminService serviceAdminService =
	get(K8sServiceAdminService.class);
	private final K8sIngressAdminService ingressAdminService =
	get(K8sIngressAdminService.class);
	private final K8sEndpointsAdminService endpointsAdminService =
	get(K8sEndpointsAdminService.class);
	private final K8sNetworkAdminService networkAdminService =
	get(K8sNetworkAdminService.class);
	private final K8sNodeAdminService nodeAdminService =
	get(K8sNodeAdminService.class);
	private final K8sNetworkPolicyAdminService policyAdminService =
	get(K8sNetworkPolicyAdminService.class);

	/**
	* Synchronizes the all states with kubernetes API server.
	*
	* @return 200 OK with sync result, 404 not found
	* @throws InterruptedException exception
	*/
	@GET
	@Produces(MediaType.APPLICATION_JSON)
	@Path("sync/states")
	public Response syncStates() {
	K8sApiConfig config =
	configService.apiConfigs().stream().findAny().orElse(null);
	if (config == null) {
	throw new ItemNotFoundException("Failed to find valid kubernetes API configuration.");
	}

	KubernetesClient client = K8sNetworkingUtil.k8sClient(config);

	if (client == null) {
	throw new ItemNotFoundException("Failed to connect to kubernetes API server.");
	}

	client.services().inAnyNamespace().list().getItems().forEach(svc -> {
	if (serviceAdminService.service(svc.getMetadata().getUid()) != null) {
	serviceAdminService.updateService(svc);
	} else {
	serviceAdminService.createService(svc);
	}
	});

	client.endpoints().inAnyNamespace().list().getItems().forEach(ep -> {
	if (endpointsAdminService.endpoints(ep.getMetadata().getUid()) != null) {
	endpointsAdminService.updateEndpoints(ep);
	} else {
	endpointsAdminService.createEndpoints(ep);
	}
	});

	client.pods().inAnyNamespace().list().getItems().forEach(pod -> {
	if (podAdminService.pod(pod.getMetadata().getUid()) != null) {
	podAdminService.updatePod(pod);
	} else {
	podAdminService.createPod(pod);
	}

	syncPortFromPod(pod, networkAdminService);
	});

	client.extensions().ingresses().inAnyNamespace().list().getItems().forEach(ingress -> {
	if (ingressAdminService.ingress(ingress.getMetadata().getUid()) != null) {
	ingressAdminService.updateIngress(ingress);
	} else {
	ingressAdminService.createIngress(ingress);
	}
	});

	client.network().networkPolicies().inAnyNamespace().list().getItems().forEach(policy -> {
	if (policyAdminService.networkPolicy(policy.getMetadata().getUid()) != null) {
	policyAdminService.updateNetworkPolicy(policy);
	} else {
	policyAdminService.createNetworkPolicy(policy);
	}
	});

	return ok(mapper().createObjectNode()).build();
	}

	/**
	* Synchronizes the flow rules.
	*
	* @return 200 OK with sync result, 404 not found
	*/
	@GET
	@Produces(MediaType.APPLICATION_JSON)
	@Path("sync/rules")
	public Response syncRules() {

	syncRulesBase();
	return ok(mapper().createObjectNode()).build();
	}

	private void syncPortFromPod(Pod pod, K8sNetworkAdminService adminService) {
	Map<String, String> annotations = pod.getMetadata().getAnnotations();
	if (annotations != null && !annotations.isEmpty() &&
	annotations.get(PORT_ID) != null) {
	String portId = annotations.get(PORT_ID);

	K8sPort oldPort = adminService.port(portId);

	String networkId = annotations.get(NETWORK_ID);
	DeviceId deviceId = DeviceId.deviceId(annotations.get(DEVICE_ID));
	PortNumber portNumber = PortNumber.portNumber(annotations.get(PORT_NUMBER));
	IpAddress ipAddress = IpAddress.valueOf(annotations.get(IP_ADDRESS));
	MacAddress macAddress = MacAddress.valueOf(annotations.get(MAC_ADDRESS));

	K8sPort newPort = DefaultK8sPort.builder()
	.portId(portId)
	.networkId(networkId)
	.deviceId(deviceId)
	.ipAddress(ipAddress)
	.macAddress(macAddress)
	.portNumber(portNumber)
	.state(INACTIVE)
	.build();

	if (oldPort == null) {
	adminService.createPort(newPort);
	} else {
	adminService.updatePort(newPort);
	}
	}
	}

	private void syncRulesBase() {
	nodeAdminService.completeNodes(MASTER).forEach(this::syncRulesBaseForNode);
	nodeAdminService.completeNodes(MINION).forEach(this::syncRulesBaseForNode);
	}

	private void syncRulesBaseForNode(K8sNode k8sNode) {
	K8sNode updated = k8sNode.updateState(K8sNodeState.INIT);
	nodeAdminService.updateNode(updated);

	boolean result = true;
	long timeoutExpiredMs = System.currentTimeMillis() + TIMEOUT_MS;

	while (nodeAdminService.node(k8sNode.hostname()).state() != COMPLETE) {

	long waitMs = timeoutExpiredMs - System.currentTimeMillis();

	try {
	sleep(SLEEP_MIDDLE_MS);
	} catch (InterruptedException e) {
	log.error("Exception caused during node synchronization...");
	}

	if (nodeAdminService.node(k8sNode.hostname()).state() == COMPLETE) {
	break;
	} else {
	nodeAdminService.updateNode(updated);
	log.info("Failed to synchronize flow rules, retrying...");
	}

	if (waitMs <= 0) {
	result = false;
	break;
	}
	}

	if (result) {
	log.info("Successfully synchronize flow rules for node {}!", k8sNode.hostname());
	} else {
	log.warn("Failed to synchronize flow rules for node {}.", k8sNode.hostname());
	}
	}
	}