feat(endpoints): auto-detect provider to adjust ip mapping

SkalaNetworks · SkalaNetworks · commit b8faf2d2dca0 · 2025-06-26T15:44:21.000+02:00
Signed-off-by: SkalaNetworks &lt;contact@skala.network&gt;
diff --git a/pkg/controller/endpoint_slice.go b/pkg/controller/endpoint_slice.go
@@ -177,7 +177,7 @@ func (c *Controller) handleUpdateEndpointSlice(key string) error {
 				checkIP = util.MasqueradeCheckIP
 			}
 			isGenIPPortMapping := !ignoreHealthCheck || isPreferLocalBackend
-			ipPortMapping, backends = getIPPortMappingBackend(endpointSlices, port, lbVip, checkIP, isGenIPPortMapping)
+			ipPortMapping, backends = c.getIPPortMappingBackend(endpointSlices, port, lbVip, checkIP, isGenIPPortMapping)
 			// for performance reason delete lb with no backends
 			if len(backends) != 0 {
 				vip = util.JoinHostPort(lbVip, port.Port)
@@ -353,7 +353,7 @@ func (c *Controller) getHealthCheckVip(subnetName, lbVip string) (string, error)
 	return checkIP, nil
 }
 
-func getIPPortMappingBackend(endpointSlices []*discoveryv1.EndpointSlice, servicePort v1.ServicePort, serviceIP, checkVip string, isGenIPPortMapping bool) (map[string]string, []string) {
+func (c *Controller) getIPPortMappingBackend(endpointSlices []*discoveryv1.EndpointSlice, servicePort v1.ServicePort, serviceIP, checkVip string, isGenIPPortMapping bool) (map[string]string, []string) {
 	var (
 		ipPortMapping = map[string]string{}
 		backends      = []string{}
@@ -374,7 +374,12 @@ func getIPPortMappingBackend(endpointSlices []*discoveryv1.EndpointSlice, servic
 
 		for _, endpoint := range endpointSlice.Endpoints {
 			if isGenIPPortMapping && endpoint.TargetRef.Name != "" {
-				lspName := getEndpointTargetLSP(endpoint.TargetRef.Name, endpoint.TargetRef.Namespace, util.OvnProvider)
+				lspName, err := c.getEndpointTargetLSP(endpoint.TargetRef.Name, endpoint.TargetRef.Namespace, endpoint.Addresses)
+				if err != nil {
+					err := fmt.Errorf("couldn't get LSP for the endpoint's target: %w", err)
+					klog.Error(err)
+				}
+
 				for _, address := range endpoint.Addresses {
 					ipPortMapping[address] = fmt.Sprintf(util.HealthCheckNamedVipTemplate, lspName, checkVip)
 				}
@@ -401,30 +406,77 @@ func endpointReady(endpoint discoveryv1.Endpoint) bool {
 	return endpoint.Conditions.Ready == nil || *endpoint.Conditions.Ready
 }
 
-// getEndpointTargetLSP returns the name of the LSP for a given target/namespace.
+// getMatchingProviderForAddress returns the provider linked to a subnet in which a particular address is present
+func getMatchingProviderForAddress(pod *v1.Pod, providers []string, address string) string {
+	if pod.Annotations == nil {
+		return ""
+	}
+
+	// Find which provider is linked to this address
+	for _, provider := range providers {
+		ipsForProvider, exists := pod.Annotations[fmt.Sprintf(util.IPAddressAnnotationTemplate, provider)]
+		if !exists {
+			continue
+		}
+
+		ips := strings.Split(ipsForProvider, ",")
+		for _, ip := range ips {
+			if ip == address {
+				return provider
+			}
+		}
+	}
+
+	return ""
+}
+
+// getEndpointTargetLSPName returns the name of the LSP for a pod targeted by an endpoint.
 // A custom provider can be specified if the LSP is within a subnet that doesn't use
 // the default "ovn" provider.
-func getEndpointTargetLSP(target, namespace, provider string) string {
-	// This pod seems to be a VM launcher pod, but we do not use the same syntax for the LSP
-	// of normal pods and for VM pods. We need to retrieve the real name of the VM from
-	// the pod's name to compute the LSP.
-	if strings.HasPrefix(target, util.VMLauncherPrefix) {
-		target = getVMNameFromLauncherPod(target)
+func getEndpointTargetLSPName(pod *v1.Pod, provider string) string {
+	// If no provider is specified, use the default one
+	if provider == "" {
+		provider = util.OvnProvider
+	}
+
+	target := pod.Name
+
+	// If this pod is a VM launcher pod, we need to retrieve the name of the VM. This is necessary
+	// because we do not use the same syntax for the LSP of normal pods and for VM pods
+	if vmName, exists := pod.Annotations[fmt.Sprintf(util.VMAnnotationTemplate, provider)]; exists {
+		target = vmName
 	}
 
-	return ovs.PodNameToPortName(target, namespace, provider)
+	return ovs.PodNameToPortName(target, pod.Namespace, provider)
 }
 
-// getVMNameFromLauncherPod returns the name of a VirtualMachine from the name of its launcher pod (virt-launcher)
-func getVMNameFromLauncherPod(podName string) string {
-	// Remove the VM launcher pod prefix
-	vmName := strings.TrimPrefix(podName, util.VMLauncherPrefix)
+// getEndpointTargetLSP returns the name of the LSP on which addresses are attached for a specific pod
+func (c *Controller) getEndpointTargetLSP(pod, namespace string, addresses []string) (string, error) {
+	// Retrieve the pod object from its namespace and name
+	podObj, err := c.podsLister.Pods(namespace).Get(pod)
+	if err != nil {
+		return "", fmt.Errorf("failed to get pod %s/%s: %w", namespace, pod, err)
+	}
 
-	// Remove the ID of the pod
-	slice := strings.Split(vmName, "-")
-	if len(slice) > 0 {
-		vmName = strings.Join(slice[:len(slice)-1], "-")
+	// Get all the networks to which the pod is attached
+	podNetworks, err := c.getPodKubeovnNets(podObj)
+	if err != nil {
+		return "", fmt.Errorf("failed to get pod networks: %w", err)
+	}
+
+	// Retrieve all the providers
+	var providers []string
+	for _, podNetwork := range podNetworks {
+		providers = append(providers, podNetwork.ProviderName)
+	}
+
+	// Get the first matching provider for any of the address in the endpoint
+	var provider string
+	for _, address := range addresses {
+		if provider = getMatchingProviderForAddress(podObj, providers, address); provider != "" {
+			break
+		}
 	}
 
-	return vmName
+	return getEndpointTargetLSPName(podObj, provider), nil
 }
diff --git a/pkg/controller/endpoint_slice_test.go b/pkg/controller/endpoint_slice_test.go
@@ -1,10 +1,14 @@
 package controller
 
 import (
+	"fmt"
 	"testing"
 
+	corev1 "k8s.io/api/core/v1"
 	discoveryv1 "k8s.io/api/discovery/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	"github.com/kubeovn/kube-ovn/pkg/util"
 )
 
 func TestFindServiceKey(t *testing.T) {
@@ -110,63 +114,188 @@ func TestEndpointReady(t *testing.T) {
 	}
 }
 
-func TestGetEndpointTargetLSP(t *testing.T) {
+func TestGetEndpointTargetLSPName(t *testing.T) {
+	tests := []struct {
+		name     string
+		pod      *corev1.Pod
+		provider string
+		expected string
+	}{
+		{
+			name: "No provider, faulty pod",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Name:      "",
+				Namespace: ""},
+			},
+			provider: "",
+			expected: ".",
+		},
+		{
+			name: "Endpoint empty with default provider and faulty pod",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Name:      "",
+				Namespace: ""},
+			},
+			provider: util.OvnProvider,
+			expected: ".",
+		},
+		{
+			name: "Pod target with no provider",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Name:      "some-pod-1d8fn",
+				Namespace: "default"},
+			},
+			provider: "",
+			expected: "some-pod-1d8fn.default",
+		},
+		{
+			name: "Pod target with default provider",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Name:      "some-pod-1d8fn",
+				Namespace: "default"},
+			},
+			provider: util.OvnProvider,
+			expected: "some-pod-1d8fn.default",
+		},
+		{
+			name: "Pod target with custom provider",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Name:      "some-pod-1d8fn",
+				Namespace: "default"},
+			},
+			provider: "custom.provider",
+			expected: "some-pod-1d8fn.default.custom.provider",
+		},
+		{
+			name: "VM target with no provider",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Name:      "virt-launcher-some-vm-67jd3",
+				Namespace: "default",
+				Annotations: map[string]string{
+					fmt.Sprintf(util.VMAnnotationTemplate, util.OvnProvider): "some-vm",
+				}},
+			},
+			provider: "",
+			expected: "some-vm.default",
+		},
+		{
+			name: "VM target with default provider",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Name:      "virt-launcher-some-vm-67jd3",
+				Namespace: "default",
+				Annotations: map[string]string{
+					fmt.Sprintf(util.VMAnnotationTemplate, util.OvnProvider): "some-vm",
+				}},
+			},
+			provider: util.OvnProvider,
+			expected: "some-vm.default",
+		},
+		{
+			name: "VM target with custom provider",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Name:      "virt-launcher-some-vm-67jd3",
+				Namespace: "default",
+				Annotations: map[string]string{
+					fmt.Sprintf(util.VMAnnotationTemplate, "custom.provider"): "some-vm",
+				}},
+			},
+			provider: "custom.provider",
+			expected: "some-vm.default.custom.provider",
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			result := getEndpointTargetLSPName(tt.pod, tt.provider)
+			if result != tt.expected {
+				t.Errorf("getEndpointTargetLSPName() = %q, want %q", result, tt.expected)
+			}
+		})
+	}
+}
+
+func TestGetMatchingProviderForAddress(t *testing.T) {
 	tests := []struct {
 		name      string
-		target    string
-		namespace string
-		provider  string
+		pod       *corev1.Pod
+		providers []string
+		address   string
 		expected  string
 	}{
 		{
-			name:      "Endpoint empty",
-			target:    "",
-			namespace: "",
-			provider:  "",
-			expected:  "..",
+			name: "IP is on default provider and single stack",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Annotations: map[string]string{
+					fmt.Sprintf(util.IPAddressAnnotationTemplate, util.OvnProvider): "1.1.1.1",
+				}},
+			},
+			providers: []string{util.OvnProvider},
+			address:   "1.1.1.1",
+			expected:  util.OvnProvider,
 		},
 		{
-			name:      "Endpoint empty with default provider",
-			target:    "",
-			namespace: "",
-			provider:  "ovn",
-			expected:  ".",
+			name: "IP is on default provider and dual stack",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Annotations: map[string]string{
+					fmt.Sprintf(util.IPAddressAnnotationTemplate, util.OvnProvider): "1.1.1.1,fd00::a",
+				}},
+			},
+			providers: []string{util.OvnProvider},
+			address:   "fd00::a",
+			expected:  util.OvnProvider,
 		},
 		{
-			name:      "Pod target with default provider",
-			target:    "some-pod-1d8fn",
-			namespace: "default",
-			provider:  "ovn",
-			expected:  "some-pod-1d8fn.default",
+			name: "IP is on custom provider and dual stack",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Annotations: map[string]string{
+					fmt.Sprintf(util.IPAddressAnnotationTemplate, "custom.provider"): "1.1.1.1,fd00::a",
+				}},
+			},
+			providers: []string{"custom.provider"},
+			address:   "fd00::a",
+			expected:  "custom.provider",
 		},
 		{
-			name:      "Pod target with custom provider",
-			target:    "some-pod-6xjd8",
-			namespace: "default",
-			provider:  "custom.provider",
-			expected:  "some-pod-6xjd8.default.custom.provider",
+			name: "IP is on custom provider with multiple other providers present on the pod",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Annotations: map[string]string{
+					fmt.Sprintf(util.IPAddressAnnotationTemplate, util.OvnProvider):  "10.0.0.1,fd10:0:0::1",
+					fmt.Sprintf(util.IPAddressAnnotationTemplate, "first.provider"):  "1.1.1.1,fd00::a",
+					fmt.Sprintf(util.IPAddressAnnotationTemplate, "second.provider"): "2.2.2.2,fd00::b",
+					fmt.Sprintf(util.IPAddressAnnotationTemplate, "third.provider"):  "3.3.3.3,fd00::c",
+				}},
+			},
+			providers: []string{util.OvnProvider, "first.provider", "second.provider", "third.provider"},
+			address:   "fd00::b",
+			expected:  "second.provider",
 		},
 		{
-			name:      "VM target with default provider",
-			target:    "virt-launcher-some-vm-67jd3",
-			namespace: "default",
-			provider:  "ovn",
-			expected:  "some-vm.default",
+			name: "No provider is matching",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Annotations: map[string]string{
+					fmt.Sprintf(util.IPAddressAnnotationTemplate, util.OvnProvider): "10.0.0.1,fd10:0:0::1",
+				}},
+			},
+			providers: []string{util.OvnProvider},
+			address:   "fd00::b",
+			expected:  "",
 		},
 		{
-			name:      "VM target with custom provider",
-			target:    "virt-launcher-some-vm-67jd3",
-			namespace: "default",
-			provider:  "custom.provider",
-			expected:  "some-vm.default.custom.provider",
+			name: "No annotation is present",
+			pod: &corev1.Pod{ObjectMeta: metav1.ObjectMeta{
+				Annotations: nil},
+			},
+			providers: []string{},
+			address:   "fd00::b",
+			expected:  "",
 		},
 	}
 
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			result := getEndpointTargetLSP(tt.target, tt.namespace, tt.provider)
+			result := getMatchingProviderForAddress(tt.pod, tt.providers, tt.address)
 			if result != tt.expected {
-				t.Errorf("getEndpointTargetLSP() = %q, want %q", result, tt.expected)
+				t.Errorf("getMatchingProviderForAddress() = %q, want %q", result, tt.expected)
 			}
 		})
 	}
diff --git a/pkg/util/const.go b/pkg/util/const.go
@@ -240,9 +240,8 @@ const (
 	ChassisCniDaemonRetryInterval  = 1
 	ChassisControllerRetryInterval = 3
 
-	VM               = "VirtualMachine"
-	VMInstance       = "VirtualMachineInstance"
-	VMLauncherPrefix = "virt-launcher-"
+	VM         = "VirtualMachine"
+	VMInstance = "VirtualMachineInstance"
 
 	StatefulSet = "StatefulSet"
 
