实现一个controller 同步远程私有集群状态

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105

apiVersion: v1
kind: Node
metadata:
  annotations:
    node.alpha.kubernetes.io/ttl: "0"
    volumes.kubernetes.io/controller-managed-attach-detach: "true"
  labels:
    beta.kubernetes.io/arch: arm64
    beta.kubernetes.io/os: linux
    kubernetes.io/arch: arm64
    kubernetes.io/hostname: aman01
    kubernetes.io/os: linux
    node-role.kubernetes.io/agent: ""
    node-role.kubernetes.io/edge: ""
    machine.type: aman
    spacecloud.zhejianglab.cn/belonging-to: aman
    satellites: aman
    usage: aman
  name: aman01
spec:
  podCIDR: 192.168.2.0/24
  podCIDRs:
    - 192.168.2.0/24
  taints:
    - effect: NoSchedule
      key: node.kubernetes.io/unreachable
    - effect: NoExecute
      key: node.kubernetes.io/unreachable
status:
  addresses:
    - address: 192.168.***.***
      type: InternalIP
    - address: aman01
      type: Hostname
  daemonEndpoints:
    kubeletEndpoint:
      Port: 10351
  images:
    - names:
        - docker.io/library/algorithm-python:240912
      sizeBytes: 17788280435
  nodeInfo:
    architecture: arm64
    bootID: 2fd860f0-d1ee-4084-b072-7a18264ef901
    containerRuntimeVersion: containerd://1.7.2
    kernelVersion: 5.15.136-tegra
    kubeProxyVersion: v0.0.0-master+$Format:%H$
    kubeletVersion: v1.26.10-kubeedge-v0.0.0-master+$Format:%h$
    machineID: 5dbfb12414a3456d9014d88183e338b1
    operatingSystem: linux
    osImage: Ubuntu 22.04.4 LTS
    systemUUID: 5dbfb12414a3456d9014d88183e338b1
---
apiVersion: v1
kind: Node
metadata:
  annotations:
    node.alpha.kubernetes.io/ttl: "0"
    volumes.kubernetes.io/controller-managed-attach-detach: "true"
  labels:
    beta.kubernetes.io/arch: arm64
    beta.kubernetes.io/os: linux
    kubernetes.io/arch: arm64
    kubernetes.io/hostname: aman02
    kubernetes.io/os: linux
    node-role.kubernetes.io/agent: ""
    node-role.kubernetes.io/edge: ""
    machine.type: aman
    spacecloud.zhejianglab.cn/belonging-to: aman
    satellites: aman
    usage: aman
  name: aman02
spec:
  podCIDR: 192.168.2.0/24
  podCIDRs:
    - 192.168.2.0/24
  taints:
    - effect: NoSchedule
      key: node.kubernetes.io/unreachable
    - effect: NoExecute
      key: node.kubernetes.io/unreachable
status:
  addresses:
    - address: 192.168.***.***
      type: InternalIP
    - address: aman01
      type: Hostname
  daemonEndpoints:
    kubeletEndpoint:
      Port: 10351
  images:
    - names:
        - docker.io/library/algorithm-python:240912
      sizeBytes: 17788280435
  nodeInfo:
    architecture: arm64
    bootID: 2fd860f0-d1ee-4084-b072-7a18264ef901
    containerRuntimeVersion: containerd://1.7.2
    kernelVersion: 5.15.136-tegra
    kubeProxyVersion: v0.0.0-master+$Format:%H$
    kubeletVersion: v1.26.10-kubeedge-v0.0.0-master+$Format:%h$
    machineID: 5dbfb12414a3456d9014d88183e338b1
    operatingSystem: linux
    osImage: Ubuntu 22.04.4 LTS
    systemUUID: 5dbfb12414a3456d9014d88183e338b1

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20

func startNodeController(ctx context.Context, cfg *rest.Config, labelSelector, prometheusAddr string, nodeExporterPort int) {
    kubeClient, err := kubernetes.NewForConfig(cfg)
    if err != nil {
        setupLog.Error(err, "Error building kubernetes clientset")
        os.Exit(1)
    }
    // 新增一个远程客户端，通过远程集群的 admin.conf 创建
    remoteClient, err := createRemoteClient("./admin.conf")
    if err != nil {
        klog.Fatalf("Failed to create remote client: %v", err)
    }

    kubeInformerFactory := kubeinformers.NewSharedInformerFactory(kubeClient, time.Second*60)
    nodeController := controller.NewNodeController(kubeClient, remoteClient, kubeInformerFactory.Core().V1().Nodes(), labelSelector, prometheusAddr, nodeExporterPort)

    // notice that there is no need to run Start methods in a separate goroutine. (i.e. go kubeInformerFactory.Start(ctx.done())
    // Start method is non-blocking and runs all registered informers in a dedicated goroutine.
    kubeInformerFactory.Start(ctx.Done())
    nodeController.Start(ctx.Done())
}

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35

// 创建远程集群客户端的函数
func createRemoteClient(kubeconfigPath string) (kubernetes.Interface, error) {
    config, err := clientcmd.BuildConfigFromFlags("", kubeconfigPath)
    if err != nil {
        return nil, fmt.Errorf("failed to build config from kubeconfig: %v", err)
    }

    // 打印连接信息
    klog.Infof("Remote cluster host: %s", config.Host)

    // 临时解决方案：跳过证书验证
    config.TLSClientConfig.Insecure = true
    config.TLSClientConfig.CAData = nil
    config.TLSClientConfig.CAFile = ""

    clientset, err := kubernetes.NewForConfig(config)
    if err != nil {
        return nil, fmt.Errorf("failed to create clientset: %v", err)
    }

    // 测试连接
    _, err = clientset.CoreV1().Nodes().List(context.Background(), metav1.ListOptions{})
    if err != nil {
        klog.Errorf("Test connection failed: %v", err)
        // 打印详细错误信息
        klog.Errorf("Error type: %T", err)
        if statusErr, ok := err.(*errors.StatusError); ok {
            klog.Errorf("Status code: %d", statusErr.Status().Code)
            klog.Errorf("Status reason: %s", statusErr.Status().Reason)
            klog.Errorf("Status message: %s", statusErr.Status().Message)
        }
    }

    return clientset, nil
}

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89

func (nc *NodeController) nodeObjectSyncsAman() {
    // 1.get nodes with machine.type=aman label selector
    selector := labels.SelectorFromSet(labels.Set{"machine.type": "aman"})
    nodeList, err := nc.nodesLister.List(selector)
    if err != nil {
        klog.Errorf("Failed to list aman nodes, error: %s", err.Error())
        return
    }
    if len(nodeList) == 0 {
        return
    }

    // 2.initializes node status map
    nodes := make(map[string]string)
    nodeStatus := make(map[string]corev1.ConditionStatus)
    for _, node := range nodeList {
        nodes[getNodeIp(node)] = node.Name
        nodeStatus[node.Name] = corev1.ConditionFalse
    }

    klog.Infof("Local nodes: %+v", nodes)
    klog.Infof("Local node status: %+v", nodeStatus)

    // 3.get node status from another k8s cluster
    remoteNodes, err := nc.remoteKubeClientset.CoreV1().Nodes().List(context.TODO(), metav1.ListOptions{})
    if err != nil {
        klog.Errorf("Failed to list nodes from remote cluster: %v", err)
        return
    }

    klog.Infof("Remote nodes count: %d", len(remoteNodes.Items))
    for _, node := range remoteNodes.Items {
        klog.Infof("Remote node: %s, IP: %s", node.Name, getNodeIp(&node))
    }

    // 遍历远程集群的节点，更新节点状态
    for _, remoteNode := range remoteNodes.Items {
        remoteNodeIP := getNodeIp(&remoteNode)
        klog.Infof("Processing remote node: %s, IP: %s", remoteNode.Name, remoteNodeIP)
        
        if localNodeName, exists := nodes[remoteNodeIP]; exists {
            klog.Infof("Found matching local node: %s for remote node: %s", localNodeName, remoteNode.Name)
            // 检查远程节点的状态
            for _, condition := range remoteNode.Status.Conditions {
                if condition.Type == corev1.NodeReady {
                    klog.Infof("Remote node %s Ready condition: %v", remoteNode.Name, condition.Status)
                    nodeStatus[localNodeName] = condition.Status
                    break
                }
            }
        } else {
            klog.Warningf("No matching local node found for remote node IP: %s", remoteNodeIP)
        }
    }

    klog.Infof("Local node status after update: %+v", nodeStatus)
    // 6.update node status
    for nodeName, status := range nodeStatus {
        // get node by client-go informer
        node, err := nc.nodesLister.Get(nodeName)
        if err != nil {
            klog.Errorf("Failed to get node(%s), error: %s", nodeName, err.Error())
            continue
        }
        // update node status condition
        for i, condition := range node.Status.Conditions {
            if condition.Type == corev1.NodeReady {
                currentTime := metav1.Now()
                if status == corev1.ConditionTrue {
                    node.Status.Conditions[i].Reason = "EdgeReady"
                    node.Status.Conditions[i].Message = "edge is posting ready status"
                } else {
                    node.Status.Conditions[i].Reason = "NodeStatusUnknown"
                    node.Status.Conditions[i].Message = "Kubelet stopped posting node status."
                }
                node.Status.Conditions[i].Status = status
                node.Status.Conditions[i].LastHeartbeatTime = currentTime
                node.Status.Conditions[i].LastTransitionTime = currentTime
                break
            }
        }
        // update node status by client-go
        _, err = nc.kubeClientset.CoreV1().Nodes().UpdateStatus(context.TODO(), node, metav1.UpdateOptions{})
        if err != nil {
            klog.Errorf("Failed to update node(%s) status, error: %s", nodeName, err.Error())
            continue
        }
    }
}