Skip to content

Commit 2bf5327

Browse files
zbb88888zbb88888
authored
fix: nat rule finalizer (#5806)
* fix: nat rule finalizer * fix: remove deprecated finalizer from iptables rules * fix: remove deprecated finalizer from iptables rules handling * fix: handle finalizer checks for iptables rules --------- Signed-off-by: zbb88888 <jmdxjsjgcxy@gmail.com>
1 parent dd79c77 commit 2bf5327

File tree

1 file changed

+6
-4
lines changed

1 file changed

+6
-4
lines changed

pkg/controller/vpc_nat_gw_nat.go

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -778,10 +778,11 @@ func (c *Controller) handleAddIptablesFipFinalizer(key string) error {
778778
klog.Error(err)
779779
return err
780780
}
781-
if !cachedIptablesFip.DeletionTimestamp.IsZero() || len(cachedIptablesFip.GetFinalizers()) != 0 {
781+
if !cachedIptablesFip.DeletionTimestamp.IsZero() || controllerutil.ContainsFinalizer(cachedIptablesFip, util.KubeOVNControllerFinalizer) {
782782
return nil
783783
}
784784
newIptablesFip := cachedIptablesFip.DeepCopy()
785+
controllerutil.RemoveFinalizer(newIptablesFip, util.DepreciatedFinalizerName)
785786
controllerutil.AddFinalizer(newIptablesFip, util.KubeOVNControllerFinalizer)
786787
patch, err := util.GenerateMergePatchPayload(cachedIptablesFip, newIptablesFip)
787788
if err != nil {
@@ -850,10 +851,11 @@ func (c *Controller) handleAddIptablesDnatFinalizer(key string) error {
850851
klog.Error(err)
851852
return err
852853
}
853-
if !cachedIptablesDnat.DeletionTimestamp.IsZero() || len(cachedIptablesDnat.GetFinalizers()) != 0 {
854+
if !cachedIptablesDnat.DeletionTimestamp.IsZero() || controllerutil.ContainsFinalizer(cachedIptablesDnat, util.KubeOVNControllerFinalizer) {
854855
return nil
855856
}
856857
newIptablesDnat := cachedIptablesDnat.DeepCopy()
858+
controllerutil.RemoveFinalizer(newIptablesDnat, util.DepreciatedFinalizerName)
857859
controllerutil.AddFinalizer(newIptablesDnat, util.KubeOVNControllerFinalizer)
858860
patch, err := util.GenerateMergePatchPayload(cachedIptablesDnat, newIptablesDnat)
859861
if err != nil {
@@ -974,12 +976,12 @@ func (c *Controller) handleAddIptablesSnatFinalizer(key string) error {
974976
klog.Error(err)
975977
return err
976978
}
977-
if !cachedIptablesSnat.DeletionTimestamp.IsZero() || len(cachedIptablesSnat.GetFinalizers()) != 0 {
979+
if !cachedIptablesSnat.DeletionTimestamp.IsZero() || controllerutil.ContainsFinalizer(cachedIptablesSnat, util.KubeOVNControllerFinalizer) {
978980
return nil
979981
}
980982
newIptablesSnat := cachedIptablesSnat.DeepCopy()
981983
controllerutil.RemoveFinalizer(newIptablesSnat, util.DepreciatedFinalizerName)
982-
controllerutil.RemoveFinalizer(newIptablesSnat, util.KubeOVNControllerFinalizer)
984+
controllerutil.AddFinalizer(newIptablesSnat, util.KubeOVNControllerFinalizer)
983985
patch, err := util.GenerateMergePatchPayload(cachedIptablesSnat, newIptablesSnat)
984986
if err != nil {
985987
klog.Errorf("failed to generate patch payload for iptables snat '%s', %v", cachedIptablesSnat.Name, err)

0 commit comments

Comments
 (0)