coredns/plugin/kubernetes/ns.go

package kubernetes

import (
	"net"
	"strings"

	"github.com/miekg/dns"
)

func isDefaultNS(name, zone string) bool {
	return strings.Index(name, defaultNSName) == 0 && strings.Index(name, zone) == len(defaultNSName)
}

// nsAddrs returns the A or AAAA records for the CoreDNS service in the cluster. If the service cannot be found,
// it returns a record for the local address of the machine we're running on.
func (k *Kubernetes) nsAddrs(external, headless bool, zone string) []dns.RR {
	var (
		svcNames      []string
		svcIPs        []net.IP
		foundEndpoint bool
	)

	// Find the CoreDNS Endpoints
	for _, localIP := range k.localIPs {
		endpoints := k.APIConn.EpIndexReverse(localIP.String())

		// Collect IPs for all Services of the Endpoints
		for _, endpoint := range endpoints {
			foundEndpoint = true
			svcs := k.APIConn.SvcIndex(endpoint.Index)
			for _, svc := range svcs {
				if external {
					svcName := strings.Join([]string{svc.Name, svc.Namespace, zone}, ".")

					if headless && svc.Headless() {
						for _, s := range endpoint.Subsets {
							for _, a := range s.Addresses {
								svcNames = append(svcNames, endpointHostname(a, k.endpointNameMode)+"."+svcName)
								svcIPs = append(svcIPs, net.ParseIP(a.IP))
							}
						}
					} else {
						for _, exIP := range svc.ExternalIPs {
							svcNames = append(svcNames, svcName)
							svcIPs = append(svcIPs, net.ParseIP(exIP))
						}
					}

					continue
				}
				svcName := strings.Join([]string{svc.Name, svc.Namespace, Svc, zone}, ".")
				if svc.Headless() {
					// For a headless service, use the endpoints IPs
					for _, s := range endpoint.Subsets {
						for _, a := range s.Addresses {
							svcNames = append(svcNames, endpointHostname(a, k.endpointNameMode)+"."+svcName)
							svcIPs = append(svcIPs, net.ParseIP(a.IP))
						}
					}
				} else {
					for _, clusterIP := range svc.ClusterIPs {
						svcNames = append(svcNames, svcName)
						svcIPs = append(svcIPs, net.ParseIP(clusterIP))
					}
				}
			}
		}
	}

	// If no CoreDNS endpoints were found, use the localIPs directly
	if !foundEndpoint {
		svcIPs = make([]net.IP, len(k.localIPs))
		svcNames = make([]string, len(k.localIPs))
		for i, localIP := range k.localIPs {
			svcNames[i] = defaultNSName + zone
			svcIPs[i] = localIP
		}
	}

	// Create an RR slice of collected IPs
	rrs := make([]dns.RR, len(svcIPs))
	for i, ip := range svcIPs {
		if ip.To4() == nil {
			rr := new(dns.AAAA)
			rr.Hdr.Class = dns.ClassINET
			rr.Hdr.Rrtype = dns.TypeAAAA
			rr.Hdr.Name = svcNames[i]
			rr.AAAA = ip
			rrs[i] = rr
			continue
		}
		rr := new(dns.A)
		rr.Hdr.Class = dns.ClassINET
		rr.Hdr.Rrtype = dns.TypeA
		rr.Hdr.Name = svcNames[i]
		rr.A = ip
		rrs[i] = rr
	}

	return rrs
}

const defaultNSName = "ns.dns."
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00			`package kubernetes`

			`import (`
			`"net"`
			`"strings"`

			`"github.com/miekg/dns"`
			`)`

mw/federation: add federation back as separate mw for k8s (#929) * mw/federaration This PR add the federation back as a middleware to keep it more contained from the main kubernetes code. It also makes parseRequest less import and pushes this functionlity down in the k.Entries. This minimizes (or tries to) the importance for the qtype in the query. In the end the qtype checking should only happen in ServeDNS - but for k8s this might proof difficult. Numerous other cleanup in code and kubernetes tests. * up test coverage 2017-08-18 14:45:20 +01:00			`func isDefaultNS(name, zone string) bool {`
			`return strings.Index(name, defaultNSName) == 0 && strings.Index(name, zone) == len(defaultNSName)`
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00			`}`

plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`// nsAddrs returns the A or AAAA records for the CoreDNS service in the cluster. If the service cannot be found,`
fix the-the mistake (#3216) 2019-08-28 14:18:33 +08:00			`// it returns a record for the local address of the machine we're running on.`
plugin/k8s_external: Resolve headless services (#5505) *add option for resolving headless Services without external IPs in k8s_external Signed-off-by: Tomas Kohout <tomas.kohout1995@gmail.com> 2022-08-30 20:59:27 +02:00			`func (k *Kubernetes) nsAddrs(external, headless bool, zone string) []dns.RR {`
middleware/kubernetes: cleanup (#818) Drop the interfaceAddr interfaces and just use a function. Cleanup all fallout from that. Remove the use of global variables and cleanup the tests a bit. 2017-08-03 23:14:11 -07:00			`var (`
plugin/k8s_external: fix external nsAddrs when CoreDNS Service has no External IPs (#4891) fix external nsAddrs; add tests; Signed-off-by: Chris O'Haver <cohaver@infoblox.com> 2022-03-07 12:18:23 -05:00			`svcNames []string`
			`svcIPs []net.IP`
			`foundEndpoint bool`
middleware/kubernetes: cleanup (#818) Drop the interfaceAddr interfaces and just use a function. Cleanup all fallout from that. Remove the use of global variables and cleanup the tests a bit. 2017-08-03 23:14:11 -07:00			`)`
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00
plugin/kubernetes: Handle multiple local IPs and bind (#3208) * use all local IPs * mult/bind ips * gofmt + boundIPs fix * fix no matching endpoint case * don't duplicate NS records in answer * fix answer dedup * fix comment * add multi local ip test case 2019-09-05 09:07:55 -04:00			`// Find the CoreDNS Endpoints`
			`for _, localIP := range k.localIPs {`
			`endpoints := k.APIConn.EpIndexReverse(localIP.String())`
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00
plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`// Collect IPs for all Services of the Endpoints`
			`for _, endpoint := range endpoints {`
plugin/k8s_external: fix external nsAddrs when CoreDNS Service has no External IPs (#4891) fix external nsAddrs; add tests; Signed-off-by: Chris O'Haver <cohaver@infoblox.com> 2022-03-07 12:18:23 -05:00			`foundEndpoint = true`
plugin/kubernetes: Watch EndpointSlices (#4209) * initial commit Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * convert endpointslices to object.endpoints Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * add opt hard coded for now Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * check that server supports endpointslice Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * fix import grouping Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * dont use endpoint slice in 1.17 or 1.18 Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * bump kind/k8s in circle ci to latest Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * drop k8s to latest supported by kind Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * use endpointslice name as endoint Name; index by Service name Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * use index key comparison in nsAddrs() Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * add Index to object.Endpoint fixtures; fix direct endpoint name compares Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * add slice dup check and test Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * todo Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * add ep-slice skew dup test for reverse Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * nsaddrs: de-dup ep-slice skew dups; add test Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * remove todo Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * address various feedback Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * consolidate endpoint/slice informer code Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * fix endpoint informer consolidation; use clearer func name Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * log info; use major/minor fields Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * fix nsAddr and unit test Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * add latency tracking for endpointslices Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * endpointslice latency unit test & fix Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * code shuffling Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * rename endpointslices in tests Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * remove de-dup from nsAddrs and test Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * remove de-dup from findServices / test Signed-off-by: Chris O'Haver <cohaver@infoblox.com> 2020-10-30 08:14:30 -04:00			`svcs := k.APIConn.SvcIndex(endpoint.Index)`
plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`for _, svc := range svcs {`
			`if external {`
			`svcName := strings.Join([]string{svc.Name, svc.Namespace, zone}, ".")`
plugin/k8s_external: Resolve headless services (#5505) *add option for resolving headless Services without external IPs in k8s_external Signed-off-by: Tomas Kohout <tomas.kohout1995@gmail.com> 2022-08-30 20:59:27 +02:00
			`if headless && svc.Headless() {`
			`for _, s := range endpoint.Subsets {`
			`for _, a := range s.Addresses {`
			`svcNames = append(svcNames, endpointHostname(a, k.endpointNameMode)+"."+svcName)`
			`svcIPs = append(svcIPs, net.ParseIP(a.IP))`
			`}`
			`}`
			`} else {`
			`for _, exIP := range svc.ExternalIPs {`
			`svcNames = append(svcNames, svcName)`
			`svcIPs = append(svcIPs, net.ParseIP(exIP))`
			`}`
plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`}`
plugin/k8s_external: Resolve headless services (#5505) *add option for resolving headless Services without external IPs in k8s_external Signed-off-by: Tomas Kohout <tomas.kohout1995@gmail.com> 2022-08-30 20:59:27 +02:00
plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`continue`
			`}`
			`svcName := strings.Join([]string{svc.Name, svc.Namespace, Svc, zone}, ".")`
plugin/kubernetes: Add support for dual stack ClusterIP Services (#4339) * support dual stack clusterIPs Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * stickler Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * fix ClusterIPs make Signed-off-by: Chris O'Haver <cohaver@infoblox.com> 2020-12-21 05:30:24 -05:00			`if svc.Headless() {`
plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`// For a headless service, use the endpoints IPs`
			`for _, s := range endpoint.Subsets {`
			`for _, a := range s.Addresses {`
			`svcNames = append(svcNames, endpointHostname(a, k.endpointNameMode)+"."+svcName)`
			`svcIPs = append(svcIPs, net.ParseIP(a.IP))`
			`}`
			`}`
			`} else {`
plugin/kubernetes: Add support for dual stack ClusterIP Services (#4339) * support dual stack clusterIPs Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * stickler Signed-off-by: Chris O'Haver <cohaver@infoblox.com> * fix ClusterIPs make Signed-off-by: Chris O'Haver <cohaver@infoblox.com> 2020-12-21 05:30:24 -05:00			`for _, clusterIP := range svc.ClusterIPs {`
			`svcNames = append(svcNames, svcName)`
			`svcIPs = append(svcIPs, net.ParseIP(clusterIP))`
			`}`
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00			`}`
			`}`
			`}`
mw/k8s: remove dependence on global var (#888) * mw/k8s: remove dependence on global var Remove the global coreDNSRecord that was used. Remove tests the referenced that var. Cleanup the rest. * Rename function as well * fixes 2017-08-10 23:13:08 +01:00			`}`
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00
plugin/k8s_external: fix external nsAddrs when CoreDNS Service has no External IPs (#4891) fix external nsAddrs; add tests; Signed-off-by: Chris O'Haver <cohaver@infoblox.com> 2022-03-07 12:18:23 -05:00			`// If no CoreDNS endpoints were found, use the localIPs directly`
			`if !foundEndpoint {`
plugin/kubernetes: Handle multiple local IPs and bind (#3208) * use all local IPs * mult/bind ips * gofmt + boundIPs fix * fix no matching endpoint case * don't duplicate NS records in answer * fix answer dedup * fix comment * add multi local ip test case 2019-09-05 09:07:55 -04:00			`svcIPs = make([]net.IP, len(k.localIPs))`
			`svcNames = make([]string, len(k.localIPs))`
			`for i, localIP := range k.localIPs {`
			`svcNames[i] = defaultNSName + zone`
			`svcIPs[i] = localIP`
			`}`
			`}`

plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`// Create an RR slice of collected IPs`
cleanup code by lint (#3312) Signed-off-by: Guangming Wang <guangming.wang@daocloud.io> 2019-09-27 18:10:34 +08:00			`rrs := make([]dns.RR, len(svcIPs))`
plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`for i, ip := range svcIPs {`
			`if ip.To4() == nil {`
			`rr := new(dns.AAAA)`
			`rr.Hdr.Class = dns.ClassINET`
			`rr.Hdr.Rrtype = dns.TypeAAAA`
			`rr.Hdr.Name = svcNames[i]`
			`rr.AAAA = ip`
			`rrs[i] = rr`
			`continue`
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00			`}`
plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`rr := new(dns.A)`
			`rr.Hdr.Class = dns.ClassINET`
			`rr.Hdr.Rrtype = dns.TypeA`
			`rr.Hdr.Name = svcNames[i]`
			`rr.A = ip`
			`rrs[i] = rr`
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00			`}`
mw/k8s: remove dependence on global var (#888) * mw/k8s: remove dependence on global var Remove the global coreDNSRecord that was used. Remove tests the referenced that var. Cleanup the rest. * Rename function as well * fixes 2017-08-10 23:13:08 +01:00
plugin/k8s_external/kubernetes: handle NS records (#3160) * fix external ns records * use k8s service name for ns record * update test, add func comment * expand nsAddrs() test cases * support local ipv6 ip * use less confusing pod ip in test 2019-08-23 12:54:06 -04:00			`return rrs`
Handle K8s middleware NS record (#662) * commit for testing in cluster * commit for testing in cluster * refactor and add ns.dns record * Release 007 * reduce heap allocations * gofmt * revert accidental Makefile commits * restore prior rcode for disabled pod mode * revert Makefile deltas * add unit tests * more unit tests * make isRequestInReverseRange easier to test * more unit tests * addressing review feedback * commit setup.go 2017-05-22 16:05:48 -04:00			`}`
mw/k8s: remove dependence on global var (#888) * mw/k8s: remove dependence on global var Remove the global coreDNSRecord that was used. Remove tests the referenced that var. Cleanup the rest. * Rename function as well * fixes 2017-08-10 23:13:08 +01:00
			`const defaultNSName = "ns.dns."`