From 450766b66fdae91abaaa6070a53485a496ff0998 Mon Sep 17 00:00:00 2001 From: gaius Date: Sun, 6 Feb 2022 20:37:43 +0800 Subject: [PATCH 1/4] feat: match pod dnspolicy to hostNetwork --- pkg/collector/daemonset.go | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/pkg/collector/daemonset.go b/pkg/collector/daemonset.go index ef48b05933..93ecce6491 100644 --- a/pkg/collector/daemonset.go +++ b/pkg/collector/daemonset.go @@ -32,7 +32,10 @@ func DaemonSet(cfg config.Config, logger logr.Logger, otelcol v1alpha1.OpenTelem annotations := Annotations(otelcol) podAnnotations := PodAnnotations(otelcol) - + dnsPolicy := corev1.DNSClusterFirst + if otelcol.Spec.HostNetwork { + dnsPolicy = corev1.DNSClusterFirstWithHostNet + } return appsv1.DaemonSet{ ObjectMeta: metav1.ObjectMeta{ Name: naming.Collector(otelcol), @@ -55,6 +58,7 @@ func DaemonSet(cfg config.Config, logger logr.Logger, otelcol v1alpha1.OpenTelem Volumes: Volumes(cfg, otelcol), Tolerations: otelcol.Spec.Tolerations, HostNetwork: otelcol.Spec.HostNetwork, + DNSPolicy: dnsPolicy, SecurityContext: otelcol.Spec.PodSecurityContext, }, }, From f8afe9c6467c458b7b9285117a416da35f3e79c5 Mon Sep 17 00:00:00 2001 From: gaius Date: Sun, 6 Feb 2022 20:53:03 +0800 Subject: [PATCH 2/4] feat: add dnspolicy support to deployment and sts --- pkg/collector/daemonset.go | 6 +----- pkg/collector/deployment.go | 1 + pkg/collector/statefulset.go | 1 + pkg/collector/utils.go | 29 +++++++++++++++++++++++++++++ 4 files changed, 32 insertions(+), 5 deletions(-) create mode 100644 pkg/collector/utils.go diff --git a/pkg/collector/daemonset.go b/pkg/collector/daemonset.go index 93ecce6491..4da5b04092 100644 --- a/pkg/collector/daemonset.go +++ b/pkg/collector/daemonset.go @@ -32,10 +32,6 @@ func DaemonSet(cfg config.Config, logger logr.Logger, otelcol v1alpha1.OpenTelem annotations := Annotations(otelcol) podAnnotations := PodAnnotations(otelcol) - dnsPolicy := corev1.DNSClusterFirst - if otelcol.Spec.HostNetwork { - dnsPolicy = corev1.DNSClusterFirstWithHostNet - } return appsv1.DaemonSet{ ObjectMeta: metav1.ObjectMeta{ Name: naming.Collector(otelcol), @@ -58,7 +54,7 @@ func DaemonSet(cfg config.Config, logger logr.Logger, otelcol v1alpha1.OpenTelem Volumes: Volumes(cfg, otelcol), Tolerations: otelcol.Spec.Tolerations, HostNetwork: otelcol.Spec.HostNetwork, - DNSPolicy: dnsPolicy, + DNSPolicy: getDnsPolicy(otelcol), SecurityContext: otelcol.Spec.PodSecurityContext, }, }, diff --git a/pkg/collector/deployment.go b/pkg/collector/deployment.go index 35533c628c..b8caf0f563 100644 --- a/pkg/collector/deployment.go +++ b/pkg/collector/deployment.go @@ -54,6 +54,7 @@ func Deployment(cfg config.Config, logger logr.Logger, otelcol v1alpha1.OpenTele ServiceAccountName: ServiceAccountName(otelcol), Containers: []corev1.Container{Container(cfg, logger, otelcol)}, Volumes: Volumes(cfg, otelcol), + DNSPolicy: getDnsPolicy(otelcol), Tolerations: otelcol.Spec.Tolerations, SecurityContext: otelcol.Spec.PodSecurityContext, }, diff --git a/pkg/collector/statefulset.go b/pkg/collector/statefulset.go index f100054cf4..7e6515263a 100644 --- a/pkg/collector/statefulset.go +++ b/pkg/collector/statefulset.go @@ -54,6 +54,7 @@ func StatefulSet(cfg config.Config, logger logr.Logger, otelcol v1alpha1.OpenTel ServiceAccountName: ServiceAccountName(otelcol), Containers: []corev1.Container{Container(cfg, logger, otelcol)}, Volumes: Volumes(cfg, otelcol), + DNSPolicy: getDnsPolicy(otelcol), Tolerations: otelcol.Spec.Tolerations, SecurityContext: otelcol.Spec.PodSecurityContext, }, diff --git a/pkg/collector/utils.go b/pkg/collector/utils.go new file mode 100644 index 0000000000..813910bc45 --- /dev/null +++ b/pkg/collector/utils.go @@ -0,0 +1,29 @@ +// Copyright The OpenTelemetry Authors +// +// Licensed under the Apache License, Version 2.0 (the "License"); +// you may not use this file except in compliance with the License. +// You may obtain a copy of the License at +// +// http://www.apache.org/licenses/LICENSE-2.0 +// +// Unless required by applicable law or agreed to in writing, software +// distributed under the License is distributed on an "AS IS" BASIS, +// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +// See the License for the specific language governing permissions and +// limitations under the License. + +package collector + +import ( + corev1 "k8s.io/api/core/v1" + + "github.com/open-telemetry/opentelemetry-operator/apis/v1alpha1" +) + +func getDnsPolicy(otelcol v1alpha1.OpenTelemetryCollector) corev1.DNSPolicy { + dnsPolicy := corev1.DNSClusterFirst + if otelcol.Spec.HostNetwork { + dnsPolicy = corev1.DNSClusterFirstWithHostNet + } + return dnsPolicy +} From fe57e64316a8928a77ce9dae79b66266fdc9b87d Mon Sep 17 00:00:00 2001 From: gaius Date: Tue, 8 Feb 2022 21:13:52 +0800 Subject: [PATCH 3/4] added tests for hostNetwork DNSpolicy --- pkg/collector/daemonset_test.go | 2 ++ pkg/collector/deployment_test.go | 32 +++++++++++++++++++++++++++++++ pkg/collector/statefulset_test.go | 32 +++++++++++++++++++++++++++++++ 3 files changed, 66 insertions(+) diff --git a/pkg/collector/daemonset_test.go b/pkg/collector/daemonset_test.go index 81a66cc5f7..71fec012ac 100644 --- a/pkg/collector/daemonset_test.go +++ b/pkg/collector/daemonset_test.go @@ -67,6 +67,7 @@ func TestDaemonsetHostNetwork(t *testing.T) { Spec: v1alpha1.OpenTelemetryCollectorSpec{}, }) assert.False(t, d1.Spec.Template.Spec.HostNetwork) + assert.Equal(t, d1.Spec.Template.Spec.DNSPolicy, v1.DNSClusterFirst) // verify custom d2 := DaemonSet(config.New(), logger, v1alpha1.OpenTelemetryCollector{ @@ -75,6 +76,7 @@ func TestDaemonsetHostNetwork(t *testing.T) { }, }) assert.True(t, d2.Spec.Template.Spec.HostNetwork) + assert.Equal(t, d2.Spec.Template.Spec.DNSPolicy, v1.DNSClusterFirstWithHostNet) } func TestDaemonsetPodAnnotations(t *testing.T) { diff --git a/pkg/collector/deployment_test.go b/pkg/collector/deployment_test.go index e88a427423..7ed3d959b1 100644 --- a/pkg/collector/deployment_test.go +++ b/pkg/collector/deployment_test.go @@ -119,3 +119,35 @@ func TestDeploymenttPodSecurityContext(t *testing.T) { assert.Equal(t, &runAsUser, d.Spec.Template.Spec.SecurityContext.RunAsUser) assert.Equal(t, &runasGroup, d.Spec.Template.Spec.SecurityContext.RunAsGroup) } + +func TestDeploymentHostNetwork(t *testing.T) { + // Test default + otelcol_1 := v1alpha1.OpenTelemetryCollector{ + ObjectMeta: metav1.ObjectMeta{ + Name: "my-instance", + }, + } + + cfg := config.New() + + d1 := Deployment(cfg, logger, otelcol_1) + + assert.Equal(t, d1.Spec.Template.Spec.HostNetwork, false) + assert.Equal(t, d1.Spec.Template.Spec.DNSPolicy, v1.DNSClusterFirst) + + // Test hostNetwork=true + otelcol_2 := v1alpha1.OpenTelemetryCollector{ + ObjectMeta: metav1.ObjectMeta{ + Name: "my-instance-hostnetwork", + }, + Spec: v1alpha1.OpenTelemetryCollectorSpec{ + HostNetwork: true, + }, + } + + cfg = config.New() + + d2 := Deployment(cfg, logger, otelcol_2) + assert.Equal(t, d2.Spec.Template.Spec.HostNetwork, true) + assert.Equal(t, d2.Spec.Template.Spec.DNSPolicy, v1.DNSClusterFirstWithHostNet) +} diff --git a/pkg/collector/statefulset_test.go b/pkg/collector/statefulset_test.go index d19c506038..f4f5141b03 100644 --- a/pkg/collector/statefulset_test.go +++ b/pkg/collector/statefulset_test.go @@ -178,3 +178,35 @@ func TestStatefulSetPodSecurityContext(t *testing.T) { assert.Equal(t, &runAsUser, d.Spec.Template.Spec.SecurityContext.RunAsUser) assert.Equal(t, &runasGroup, d.Spec.Template.Spec.SecurityContext.RunAsGroup) } + +func TestStatefulSetHostNetwork(t *testing.T) { + // Test default + otelcol_1 := v1alpha1.OpenTelemetryCollector{ + ObjectMeta: metav1.ObjectMeta{ + Name: "my-instance", + }, + } + + cfg := config.New() + + d1 := StatefulSet(cfg, logger, otelcol_1) + + assert.Equal(t, d1.Spec.Template.Spec.HostNetwork, false) + assert.Equal(t, d1.Spec.Template.Spec.DNSPolicy, v1.DNSClusterFirst) + + // Test hostNetwork=true + otelcol_2 := v1alpha1.OpenTelemetryCollector{ + ObjectMeta: metav1.ObjectMeta{ + Name: "my-instance-hostnetwork", + }, + Spec: v1alpha1.OpenTelemetryCollectorSpec{ + HostNetwork: true, + }, + } + + cfg = config.New() + + d2 := StatefulSet(cfg, logger, otelcol_2) + assert.Equal(t, d2.Spec.Template.Spec.HostNetwork, true) + assert.Equal(t, d2.Spec.Template.Spec.DNSPolicy, v1.DNSClusterFirstWithHostNet) +} From 4d5f669ca3c5b949ff311f9a96ab0f432035ae29 Mon Sep 17 00:00:00 2001 From: gaius Date: Tue, 22 Feb 2022 22:45:19 +0800 Subject: [PATCH 4/4] use hostnetwork spec in deployment and statefulset --- pkg/collector/deployment.go | 1 + pkg/collector/statefulset.go | 1 + 2 files changed, 2 insertions(+) diff --git a/pkg/collector/deployment.go b/pkg/collector/deployment.go index b8caf0f563..8a4abd212c 100644 --- a/pkg/collector/deployment.go +++ b/pkg/collector/deployment.go @@ -55,6 +55,7 @@ func Deployment(cfg config.Config, logger logr.Logger, otelcol v1alpha1.OpenTele Containers: []corev1.Container{Container(cfg, logger, otelcol)}, Volumes: Volumes(cfg, otelcol), DNSPolicy: getDnsPolicy(otelcol), + HostNetwork: otelcol.Spec.HostNetwork, Tolerations: otelcol.Spec.Tolerations, SecurityContext: otelcol.Spec.PodSecurityContext, }, diff --git a/pkg/collector/statefulset.go b/pkg/collector/statefulset.go index 7e6515263a..6427633c0a 100644 --- a/pkg/collector/statefulset.go +++ b/pkg/collector/statefulset.go @@ -55,6 +55,7 @@ func StatefulSet(cfg config.Config, logger logr.Logger, otelcol v1alpha1.OpenTel Containers: []corev1.Container{Container(cfg, logger, otelcol)}, Volumes: Volumes(cfg, otelcol), DNSPolicy: getDnsPolicy(otelcol), + HostNetwork: otelcol.Spec.HostNetwork, Tolerations: otelcol.Spec.Tolerations, SecurityContext: otelcol.Spec.PodSecurityContext, },