Merge pull request #42 from BetaCat0/feat-kubelet-proxy

feat: kubelet proxy

Author: lylingzhen

.golangci.yml

@@ -17,3 +17,7 @@ formatters:
   enable:
     - gofumpt
     - goimports
+
+
+run:
+  tests: false

Dockerfile

@@ -1,5 +1,5 @@
 # Build the manager binary
-FROM golang:1.22 as builder
+FROM golang:1.24 as builder
 ARG TARGETOS
 ARG TARGETARCH
 
@@ -36,4 +36,4 @@ EXPOSE 9090
 EXPOSE 8080
 EXPOSE 7777
 
-ENTRYPOINT ["./module_controller"]
+ENTRYPOINT ["./module_controller"]

cmd/module-controller/main.go

@@ -18,37 +18,46 @@ import (
 	"context"
 	"errors"
 	"fmt"
-	"github.com/koupleless/module_controller/common/zaplogger"
-	"github.com/koupleless/module_controller/report_server"
-	"github.com/koupleless/virtual-kubelet/vnode_controller"
 	"os"
 	"os/signal"
-	ctrl "sigs.k8s.io/controller-runtime"
-	"sigs.k8s.io/controller-runtime/pkg/healthz"
 	"strconv"
 	"syscall"
 
 	"github.com/google/uuid"
 	"github.com/koupleless/module_controller/common/model"
+	"github.com/koupleless/module_controller/common/zaplogger"
 	"github.com/koupleless/module_controller/controller/module_deployment_controller"
 	"github.com/koupleless/module_controller/module_tunnels/koupleless_http_tunnel"
 	"github.com/koupleless/module_controller/module_tunnels/koupleless_mqtt_tunnel"
+	"github.com/koupleless/module_controller/report_server"
+	"github.com/koupleless/module_controller/staging/kubelet_proxy"
 	"github.com/koupleless/virtual-kubelet/common/tracker"
 	"github.com/koupleless/virtual-kubelet/common/utils"
 	vkModel "github.com/koupleless/virtual-kubelet/model"
 	"github.com/koupleless/virtual-kubelet/tunnel"
+	"github.com/koupleless/virtual-kubelet/vnode_controller"
 	"github.com/sirupsen/logrus"
 	"github.com/virtual-kubelet/virtual-kubelet/log"
 	logruslogger "github.com/virtual-kubelet/virtual-kubelet/log/logrus"
 	"github.com/virtual-kubelet/virtual-kubelet/trace"
 	"github.com/virtual-kubelet/virtual-kubelet/trace/opencensus"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/kubernetes"
+	ctrl "sigs.k8s.io/controller-runtime"
 	"sigs.k8s.io/controller-runtime/pkg/cache"
 	"sigs.k8s.io/controller-runtime/pkg/client/config"
+	"sigs.k8s.io/controller-runtime/pkg/healthz"
 	"sigs.k8s.io/controller-runtime/pkg/manager"
 	"sigs.k8s.io/controller-runtime/pkg/manager/signals"
 	"sigs.k8s.io/controller-runtime/pkg/metrics/server"
 )
 
+const (
+	certFilePath                 = "/etc/virtual-kubelet/tls/tls.crt"
+	keyFilePath                  = "/etc/virtual-kubelet/tls/tls.key"
+	DefaultKubeletHttpListenAddr = "10250" // Default listen address for the HTTP server
+)
+
 // Main function for the module controller
 // Responsibilities:
 // 1. Sets up signal handling for graceful shutdown
@@ -59,6 +68,7 @@ import (
 // 6. Creates and configures the VNode controller
 // 7. Optionally creates module deployment controller
 // 8. Starts all tunnels and the manager
+// 9. Starts the kubelet proxy server(if enabled)
 
 func main() {
 	ctx, cancel := context.WithCancel(context.Background())
@@ -75,27 +85,29 @@ func main() {
 	trace.T = opencensus.Adapter{}
 
 	// Get configuration from environment variables
-	clientID := utils.GetEnv("CLIENT_ID", uuid.New().String())
+	clientID := utils.GetEnv(model.EnvKeyOfClientID, uuid.New().String())
 	env := utils.GetEnv("ENV", "dev")
 
 	zlogger := zaplogger.GetLogger()
 	ctx = zaplogger.WithLogger(ctx, zlogger)
 
 	// Parse configuration with defaults
-	isCluster := utils.GetEnv("IS_CLUSTER", "") == "true"
-	workloadMaxLevel, err := strconv.Atoi(utils.GetEnv("WORKLOAD_MAX_LEVEL", "3"))
+	isCluster := utils.GetEnv(model.EnvKeyOfClusterModeEnabled, "") == "true"
+	workloadMaxLevel, err := strconv.Atoi(utils.GetEnv(model.EnvKeyOfWorkloadMaxLevel, "3"))
 
 	if err != nil {
 		zlogger.Error(err, "failed to parse WORKLOAD_MAX_LEVEL, will be set to 3 default")
 		workloadMaxLevel = 3
 	}
 
-	vnodeWorkerNum, err := strconv.Atoi(utils.GetEnv("VNODE_WORKER_NUM", "8"))
+	vnodeWorkerNum, err := strconv.Atoi(utils.GetEnv(model.EnvKeyOfVNodeWorkerNum, "8"))
 	if err != nil {
 		zlogger.Error(err, "failed to parse VNODE_WORKER_NUM, will be set to 8 default")
 		vnodeWorkerNum = 8
 	}
 
+	deployNamespace := utils.GetEnv(model.EnvKeyOfNamespace, "default")
+
 	// Initialize controller manager
 	kubeConfig := config.GetConfigOrDie()
 	// TODO: should support to set from parameter
@@ -111,14 +123,25 @@ func main() {
 			BindAddress: ":9090",
 		},
 	})
-
 	if err != nil {
 		zlogger.Error(err, "unable to set up overall controller manager")
 		os.Exit(1)
 	}
 
 	tracker.SetTracker(&tracker.DefaultTracker{})
 
+	k8sClientSet := kubernetes.NewForConfigOrDie(kubeConfig)
+
+	var moduleControllerServiceIP string
+	var kubeletProxyEnabled bool
+	if os.Getenv(model.EnvKeyOfKubeletProxyEnabled) == "true" {
+		moduleControllerServiceIP, err = lookupProxyServiceIP(ctx, deployNamespace, k8sClientSet)
+		if err != nil {
+			log.G(ctx).Fatalf("Failed to lookup kubelet proxy service IP: %v", err)
+		}
+		kubeletProxyEnabled = true
+	}
+
 	// Configure and create VNode controller
 	vNodeControllerConfig := vkModel.BuildVNodeControllerConfig{
 		ClientID:         clientID,
@@ -127,6 +150,8 @@ func main() {
 		IsCluster:        isCluster,
 		WorkloadMaxLevel: workloadMaxLevel,
 		VNodeWorkerNum:   vnodeWorkerNum,
+		// vnode ip will fall back to the ip of the base pod if not set
+		PseudoNodeIP: moduleControllerServiceIP,
 	}
 
 	moduleDeploymentController, err := module_deployment_controller.NewModuleDeploymentController(env)
@@ -164,6 +189,21 @@ func main() {
 		os.Exit(1)
 	}
 
+	if kubeletProxyEnabled {
+		zlogger.Info("starting kubelet proxy server")
+		err := kubelet_proxy.StartKubeletProxy(
+			ctx,
+			certFilePath,
+			keyFilePath,
+			":"+utils.GetEnv(model.EnvKeyOfKubeletProxyPort, DefaultKubeletHttpListenAddr),
+			k8sClientSet,
+		)
+		if err != nil {
+			zlogger.Error(err, "failed to start kubelet proxy server")
+			os.Exit(1)
+		}
+	}
+
 	zlogger.Info("Module controller running")
 	err = k8sControllerManager.Start(signals.SetupSignalHandler())
 	if err != nil {
@@ -218,3 +258,25 @@ func startTunnels(ctx context.Context, clientId string, env string, mgr manager.
 	// we only using one tunnel for now
 	return tunnels[0]
 }
+
+// lookupProxyServiceIP retrieves the ClusterIP of the kubelet proxy service in the specified namespace.
+func lookupProxyServiceIP(ctx context.Context, namespace string, clientSet kubernetes.Interface) (string, error) {
+	svcList, err := clientSet.CoreV1().Services(namespace).List(ctx, metav1.ListOptions{
+		LabelSelector: fmt.Sprintf("%s=%s", model.LabelKeyOfKubeletProxyService, "true"),
+	})
+	if err != nil {
+		return "", fmt.Errorf("failed to list services in namespace %s: %w", namespace, err)
+	}
+	if len(svcList.Items) == 0 {
+		return "", fmt.Errorf("no kubelet proxy service found in namespace %s", namespace)
+	}
+	if len(svcList.Items) > 1 {
+		return "", fmt.Errorf("multiple kubelet proxy services deteched in namespace %s, expected only one", namespace)
+	}
+
+	firstSvc := svcList.Items[0]
+	if firstSvc.Spec.ClusterIP == "" || firstSvc.Spec.ClusterIP == "None" {
+		return "", fmt.Errorf("kubelet proxy service %s in namespace %s has no valid ClusterIP", firstSvc.Name, namespace)
+	}
+	return firstSvc.Spec.ClusterIP, nil
+}

common/model/consts.go

@@ -14,6 +14,28 @@ const (
 	LabelKeyOfSkipReplicasControl = "virtual-kubelet.koupleless.io/replicas-control"
 	// LabelKeyOfVPodDeploymentStrategy specifies the deployment strategy
 	LabelKeyOfVPodDeploymentStrategy = "virtual-kubelet.koupleless.io/strategy"
+	// LabelKeyOfKubeletProxyService indicates the kubelet proxy service
+	LabelKeyOfKubeletProxyService = "virtual-kubelet.koupleless.io/kubelet-proxy-service"
+)
+
+// Env keys for module controller
+const (
+	// EnvKeyOfClientID is the environment variable key for the client ID
+	EnvKeyOfClientID = "CLIENT_ID"
+	// EnvKeyOfNamespace is the environment variable key for the deployment namespace, default to "default"
+	EnvKeyOfNamespace = "NAMESPACE"
+	// EnvKeyOfENV is the environment variable key for the environment label
+	EnvKeyOfENV = "ENV"
+	// EnvKeyOfClusterModeEnabled is the environment variable key for the cluster flag, use "true" or "false"
+	EnvKeyOfClusterModeEnabled = "IS_CLUSTER"
+	// EnvKeyOfWorkloadMaxLevel is the environment variable key for the maximum workload level
+	EnvKeyOfWorkloadMaxLevel = "WORKLOAD_MAX_LEVEL"
+	// EnvKeyOfVNodeWorkerNum is the environment variable key for the number of vnode worker threads
+	EnvKeyOfVNodeWorkerNum = "VNODE_WORKER_NUM"
+	// EnvKeyOfKubeletProxyEnabled is the environment variable key for enabling kubelet proxy
+	EnvKeyOfKubeletProxyEnabled = "KUBELET_PROXY_ENABLED"
+	// EnvKeyOfKubeletProxyPort is the environment variable key for the kubelet proxy port
+	EnvKeyOfKubeletProxyPort = "KUBELET_PROXY_PORT"
 )
 
 // Component types

debug.Dockerfile

@@ -1,5 +1,5 @@
 # Build the manager binary
-FROM golang:1.22 as builder
+FROM golang:1.24 as builder
 ARG TARGETOS
 ARG TARGETARCH
 
@@ -43,4 +43,4 @@ EXPOSE 7777
 EXPOSE 2345
 
 #ENTRYPOINT ["dlv --listen=:2345 --headless=true --api-version=2 --accept-multiclient exec ./module_controller"]
-CMD ["/bin/sh", "-c", "tail -f /dev/null"]
+CMD ["/bin/sh", "-c", "tail -f /dev/null"]

go.mod

@@ -1,20 +1,20 @@
 module github.com/koupleless/module_controller
 
-go 1.22.0
+go 1.23.0
 
-toolchain go1.22.4
+toolchain go1.24.5
 
 require (
 	github.com/eclipse/paho.mqtt.golang v1.5.0
 	github.com/go-logr/logr v1.4.2
 	github.com/go-resty/resty/v2 v2.11.0
 	github.com/google/uuid v1.6.0
 	github.com/koupleless/arkctl v0.2.4-0.20250106035535-5ed5cb871995
-	github.com/koupleless/virtual-kubelet v0.3.8
+	github.com/koupleless/virtual-kubelet v0.3.9
 	github.com/onsi/ginkgo/v2 v2.19.0
 	github.com/onsi/gomega v1.33.1
 	github.com/sirupsen/logrus v1.9.3
-	github.com/stretchr/testify v1.9.0
+	github.com/stretchr/testify v1.10.0
 	github.com/virtual-kubelet/virtual-kubelet v1.11.0
 	github.com/wind-c/comqtt/v2 v2.6.0
 	k8s.io/api v0.31.0
@@ -27,6 +27,7 @@ require (
 
 require (
 	github.com/beorn7/perks v1.0.1 // indirect
+	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
 	github.com/emicklei/go-restful/v3 v3.11.0 // indirect
@@ -42,22 +43,26 @@ require (
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
-	github.com/google/go-cmp v0.6.0 // indirect
+	github.com/google/go-cmp v0.7.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
 	github.com/google/pprof v0.0.0-20240525223248-4bfdf5a9a2af // indirect
+	github.com/gorilla/mux v1.8.0 // indirect
 	github.com/gorilla/websocket v1.5.3 // indirect
 	github.com/imdario/mergo v0.3.12 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/klauspost/compress v1.17.9 // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
+	github.com/moby/spdystream v0.4.0 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 // indirect
-	github.com/prometheus/client_golang v1.19.1 // indirect
-	github.com/prometheus/client_model v0.6.1 // indirect
-	github.com/prometheus/common v0.55.0 // indirect
+	github.com/prometheus/client_golang v1.20.4 // indirect
+	github.com/prometheus/client_model v0.6.2 // indirect
+	github.com/prometheus/common v0.64.0 // indirect
 	github.com/prometheus/procfs v0.15.1 // indirect
 	github.com/rs/xid v1.5.0 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
@@ -66,21 +71,23 @@ require (
 	go.uber.org/multierr v1.11.0 // indirect
 	go.uber.org/zap v1.27.0 // indirect
 	golang.org/x/exp v0.0.0-20230626212559-97b1e661b5df // indirect
-	golang.org/x/net v0.27.0 // indirect
-	golang.org/x/oauth2 v0.21.0 // indirect
-	golang.org/x/sync v0.7.0 // indirect
-	golang.org/x/sys v0.22.0 // indirect
-	golang.org/x/term v0.22.0 // indirect
-	golang.org/x/text v0.16.0 // indirect
+	golang.org/x/net v0.40.0 // indirect
+	golang.org/x/oauth2 v0.30.0 // indirect
+	golang.org/x/sync v0.14.0 // indirect
+	golang.org/x/sys v0.33.0 // indirect
+	golang.org/x/term v0.32.0 // indirect
+	golang.org/x/text v0.25.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.23.0 // indirect
 	gomodules.xyz/jsonpatch/v2 v2.4.0 // indirect
-	google.golang.org/protobuf v1.34.2 // indirect
+	google.golang.org/protobuf v1.36.6 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/apiextensions-apiserver v0.31.0 // indirect
+	k8s.io/apiserver v0.31.0 // indirect
+	k8s.io/component-base v0.31.0 // indirect
 	k8s.io/klog/v2 v2.130.1 // indirect
 	k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect