# This is a combination of 3 commits.

weiling61 · weiling61 · commit 6e153131e592 · 2022-03-23T21:49:45.000-07:00
# This is the 1st commit message: update 2 # This is the commit message kubernetes-retired#2: update add dnsoption flag # This is the commit message kubernetes-retired#3: add init
diff --git a/virtualcluster/cmd/syncer/app/options/options.go b/virtualcluster/cmd/syncer/app/options/options.go
@@ -19,6 +19,7 @@ package options
 import (
 	"fmt"
 	"io/ioutil"
+	"k8s.io/utils/pointer"
 	"os"
 	"time"
 
@@ -67,6 +68,7 @@ type ResourceSyncerOptions struct {
 	Port                string
 	CertFile            string
 	KeyFile             string
+	DnsOptions          map[string]string
 }
 
 // NewResourceSyncerOptions creates a new resource syncer with a default config.
@@ -101,6 +103,9 @@ func NewResourceSyncerOptions() (*ResourceSyncerOptions, error) {
 		Port:       "80",
 		CertFile:   "",
 		KeyFile:    "",
+		DnsOptions:    map[string]string{
+			"ndots":      "5",
+		},
 	}, nil
 }
 
@@ -237,6 +242,7 @@ func (o *ResourceSyncerOptions) Config() (*syncerappconfig.Config, error) {
 		return nil, err
 	}
 	c.ComponentConfig.RestConfig = superRestConfig
+	c.ComponentConfig.DnsOptions = DnsOptionsConvert(o.DnsOptions)
 	c.VirtualClusterClient = virtualClusterClient
 	c.VirtualClusterInformer = vcinformers.NewSharedInformerFactory(virtualClusterClient, 0).Tenancy().V1alpha1().VirtualClusters()
 	c.MetaClusterClient = metaClusterClient
@@ -363,3 +369,19 @@ func getClientConfig(config componentbaseconfig.ClientConnectionConfiguration, m
 
 	return restConfig, nil
 }
+
+func DnsOptionsConvert(dnsoptions map[string]string) []corev1.PodDNSConfigOption {
+	var podDnsOptions []corev1.PodDNSConfigOption
+	podDnsOptions = make([]corev1.PodDNSConfigOption, len(dnsoptions))
+	i := 0
+	for k, v := range dnsoptions {
+			podDnsOptions[i].Name = k
+			if v == "" {
+				podDnsOptions[i].Value = nil
+			} else {
+				podDnsOptions[i].Value = pointer.StringPtr(v)
+			}
+			i++
+	}
+	return podDnsOptions
+}
diff --git a/virtualcluster/pkg/syncer/apis/config/types.go b/virtualcluster/pkg/syncer/apis/config/types.go
@@ -19,6 +19,7 @@ package config
 import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/client-go/rest"
+	v1 "k8s.io/api/core/v1"
 	componentbaseconfig "k8s.io/component-base/config"
 )
 
@@ -73,6 +74,9 @@ type SyncerConfiguration struct {
 
 	// The maximum length of time to wait before giving up on a server request. A value of "" means use default.
 	Timeout string
+
+	// The DnsOptions are the DNS options in resolv.conf that is attached to pod
+	DnsOptions []v1.PodDNSConfigOption
 }
 
 // SyncerLeaderElectionConfiguration expands LeaderElectionConfiguration
diff --git a/virtualcluster/pkg/syncer/conversion/mutate.go b/virtualcluster/pkg/syncer/conversion/mutate.go
@@ -112,7 +112,7 @@ func mutateWeightedPodAffinityTerms(weightedTerms []v1.WeightedPodAffinityTerm,
 	}
 }
 
-func PodMutateDefault(vPod *v1.Pod, saSecretMap map[string]string, services []*v1.Service, nameServer string) PodMutator {
+func PodMutateDefault(vPod *v1.Pod, saSecretMap map[string]string, services []*v1.Service, nameServer string, dnsOption []v1.PodDNSConfigOption) PodMutator {
 	return func(p *podMutateCtx) error {
 		p.pPod.Status = v1.PodStatus{}
 		p.pPod.Spec.NodeName = ""
@@ -173,7 +173,7 @@ func PodMutateDefault(vPod *v1.Pod, saSecretMap map[string]string, services []*v
 		if err != nil {
 			return err
 		}
-		mutateDNSConfig(p, vPod, vc.Spec.ClusterDomain, nameServer)
+		mutateDNSConfig(p, vPod, vc.Spec.ClusterDomain, nameServer, dnsOption)
 
 		// FIXME(zhuangqh): how to support pod subdomain.
 		if p.pPod.Spec.Subdomain != "" {
@@ -287,7 +287,7 @@ func getServiceEnvVarMap(ns, cluster string, enableServiceLinks *bool, services
 	return apiServerService, m
 }
 
-func mutateDNSConfig(p *podMutateCtx, vPod *v1.Pod, clusterDomain, nameServer string) {
+func mutateDNSConfig(p *podMutateCtx, vPod *v1.Pod, clusterDomain, nameServer string, dnsOption []v1.PodDNSConfigOption) {
 	// If the TenantAllowDNSPolicy feature gate is added AND if the vPod labels include
 	// tenancy.x-k8s.io/disable.dnsPolicyMutation: "true" then we should return without
 	// mutating the config. This is to allow special pods like coredns to use the
@@ -304,11 +304,11 @@ func mutateDNSConfig(p *podMutateCtx, vPod *v1.Pod, clusterDomain, nameServer st
 	case v1.DNSNone:
 		return
 	case v1.DNSClusterFirstWithHostNet:
-		mutateClusterFirstDNS(p, vPod, clusterDomain, nameServer)
+		mutateClusterFirstDNS(p, vPod, clusterDomain, nameServer, dnsOption)
 		return
 	case v1.DNSClusterFirst:
 		if !p.pPod.Spec.HostNetwork {
-			mutateClusterFirstDNS(p, vPod, clusterDomain, nameServer)
+			mutateClusterFirstDNS(p, vPod, clusterDomain, nameServer, dnsOption)
 			return
 		}
 		// Fallback to DNSDefault for pod on hostnetwork.
@@ -318,7 +318,7 @@ func mutateDNSConfig(p *podMutateCtx, vPod *v1.Pod, clusterDomain, nameServer st
 	}
 }
 
-func mutateClusterFirstDNS(p *podMutateCtx, vPod *v1.Pod, clusterDomain, nameServer string) {
+func mutateClusterFirstDNS(p *podMutateCtx, vPod *v1.Pod, clusterDomain, nameServer string, dnsOption []v1.PodDNSConfigOption) {
 	if nameServer == "" {
 		klog.Infof("vc %s does not have ClusterDNS IP configured and cannot create Pod using %q policy. Falling back to %q policy.",
 			p.clusterName, v1.DNSClusterFirst, v1.DNSDefault)
@@ -333,12 +333,13 @@ func mutateClusterFirstDNS(p *podMutateCtx, vPod *v1.Pod, clusterDomain, nameSer
 	// itself.
 	dnsConfig := &v1.PodDNSConfig{
 		Nameservers: []string{nameServer},
-		Options: []v1.PodDNSConfigOption{
+		Options: dnsOption,
+	/*	Options: []v1.PodDNSConfigOption{
 			{
 				Name:  "ndots",
 				Value: pointer.StringPtr("5"),
 			},
-		},
+		},*/
 	}
 
 	if clusterDomain != "" {
@@ -495,3 +496,4 @@ func (s *saSecretMutator) Mutate(vSecret *v1.Secret, clusterName string) {
 	s.pSecret.Name = ""
 	s.pSecret.GenerateName = vSecret.GetAnnotations()[v1.ServiceAccountNameKey] + "-token-"
 }
+
diff --git a/virtualcluster/pkg/syncer/resources/pod/dws.go b/virtualcluster/pkg/syncer/resources/pod/dws.go
@@ -198,7 +198,7 @@ func (c *controller) reconcilePodCreate(clusterName, targetNamespace, requestUID
 
 	var ms = []conversion.PodMutator{
 		conversion.PodMutateServiceLink(c.Config.DisablePodServiceLinks),
-		conversion.PodMutateDefault(vPod, pSecretMap, services, nameServer),
+		conversion.PodMutateDefault(vPod, pSecretMap, services, nameServer, c.Config.DnsOptions),
 		conversion.PodMutateAutoMountServiceAccountToken(c.Config.DisableServiceAccountToken),
 		// TODO: make extension configurable
 		//conversion.PodAddExtensionMeta(vPod),

Original file line number	Diff line number	Diff line change
`@@ -19,6 +19,7 @@ package config`
`19`	`19`	`import (`
`20`	`20`	`metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"`
`21`	`21`	`"k8s.io/client-go/rest"`
	`22`	`+ v1 "k8s.io/api/core/v1"`
`22`	`23`	`componentbaseconfig "k8s.io/component-base/config"`
`23`	`24`	`)`
`24`	`25`
`@@ -73,6 +74,9 @@ type SyncerConfiguration struct {`
`73`	`74`
`74`	`75`	`// The maximum length of time to wait before giving up on a server request. A value of "" means use default.`
`75`	`76`	`Timeout string`
	`77`	`+`
	`78`	`+ // The DnsOptions are the DNS options in resolv.conf that is attached to pod`
	`79`	`+ DnsOptions []v1.PodDNSConfigOption`
`76`	`80`	`}`
`77`	`81`
`78`	`82`	`// SyncerLeaderElectionConfiguration expands LeaderElectionConfiguration`