d3bdcd0465
Add new crd to convert kubesphere network policy to k8s network policy, and then other network plugin will do the rest work. Use cache.go from calico project's kube-controller, it aim to sync nsnp with k8s np, delete unused np, and relieve the pressure on k8s restful client. If you want higher performance, you can implement interface NsNetworkPolicyProvider in pkg/controller/provider/namespace_np.go. Signed-off-by: Duan Jiong <djduanjiong@gmail.com>
50 lines
1.2 KiB
Go
50 lines
1.2 KiB
Go
package provider
|
|
|
|
import (
|
|
"fmt"
|
|
|
|
"github.com/projectcalico/kube-controllers/pkg/converter"
|
|
api "github.com/projectcalico/libcalico-go/lib/apis/v3"
|
|
constants "github.com/projectcalico/libcalico-go/lib/backend/k8s/conversion"
|
|
v1 "k8s.io/api/networking/v1"
|
|
)
|
|
|
|
func NewFakeNetworkProvider() *FakeNetworkProvider {
|
|
f := new(FakeNetworkProvider)
|
|
f.NSNPData = make(map[string]*api.NetworkPolicy)
|
|
f.policyConverter = converter.NewPolicyConverter()
|
|
return f
|
|
}
|
|
|
|
type FakeNetworkProvider struct {
|
|
NSNPData map[string]*api.NetworkPolicy
|
|
policyConverter converter.Converter
|
|
}
|
|
|
|
func (f *FakeNetworkProvider) Delete(key string) {
|
|
delete(f.NSNPData, key)
|
|
}
|
|
|
|
func (f *FakeNetworkProvider) Start(stopCh <-chan struct{}) {
|
|
|
|
}
|
|
|
|
func (f *FakeNetworkProvider) Set(np *v1.NetworkPolicy) error {
|
|
policy, err := f.policyConverter.Convert(np)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// Add to cache.
|
|
k := f.policyConverter.GetKey(policy)
|
|
tmp := policy.(api.NetworkPolicy)
|
|
f.NSNPData[k] = &tmp
|
|
|
|
return nil
|
|
}
|
|
|
|
func (f *FakeNetworkProvider) GetKey(name, nsname string) string {
|
|
policyName := fmt.Sprintf(constants.K8sNetworkPolicyNamePrefix + name)
|
|
return fmt.Sprintf("%s/%s", nsname, policyName)
|
|
}
|