merge conflict

Author: zac-nixon

go.mod

@@ -42,6 +42,7 @@ require (
 	k8s.io/klog/v2 v2.130.1
 	k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738
 	sigs.k8s.io/controller-runtime v0.19.3
+	sigs.k8s.io/gateway-api v1.2.0
 	sigs.k8s.io/yaml v1.4.0
 )
 
@@ -128,7 +129,6 @@ require (
 	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/mattn/go-isatty v0.0.20 // indirect
 	github.com/mattn/go-runewidth v0.0.9 // indirect
-	github.com/miekg/dns v1.1.62 // indirect
 	github.com/mitchellh/copystructure v1.2.0 // indirect
 	github.com/mitchellh/go-wordwrap v1.0.1 // indirect
 	github.com/mitchellh/reflectwalk v1.0.2 // indirect

go.sum

@@ -623,6 +623,8 @@ oras.land/oras-go v1.2.5 h1:XpYuAwAb0DfQsunIyMfeET92emK8km3W4yEzZvUbsTo=
 oras.land/oras-go v1.2.5/go.mod h1:PuAwRShRZCsZb7g8Ar3jKKQR/2A/qN+pkYxIOd/FAoo=
 sigs.k8s.io/controller-runtime v0.19.3 h1:XO2GvC9OPftRst6xWCpTgBZO04S2cbp0Qqkj8bX1sPw=
 sigs.k8s.io/controller-runtime v0.19.3/go.mod h1:j4j87DqtsThvwTv5/Tc5NFRyyF/RF0ip4+62tbTSIUM=
+sigs.k8s.io/gateway-api v1.2.0 h1:LrToiFwtqKTKZcZtoQPTuo3FxhrrhTgzQG0Te+YGSo8=
+sigs.k8s.io/gateway-api v1.2.0/go.mod h1:EpNfEXNjiYfUJypf0eZ0P5iXA9ekSGWaS1WgPaM42X0=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 h1:/Rv+M11QRah1itp8VhT6HoVx1Ray9eB4DBr+K+/sCJ8=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3/go.mod h1:18nIHnGi6636UCz6m8i4DhaJ65T6EruyzmoQqI2BVDo=
 sigs.k8s.io/kustomize/api v0.18.0 h1:hTzp67k+3NEVInwz5BHyzc9rGxIauoXferXyjv5lWPo=

pkg/gateway/routeutils/backend.go

@@ -0,0 +1,29 @@
+package routeutils
+
+import v1 "k8s.io/api/core/v1"
+
+type BackendDescription interface {
+	GetService() *v1.Service
+	GetWeight() int32
+	GetPort() int
+}
+
+var _ BackendDescription = &backendDescriptionImpl{}
+
+type backendDescriptionImpl struct {
+}
+
+func (b backendDescriptionImpl) GetService() *v1.Service {
+	//TODO implement me
+	panic("implement me")
+}
+
+func (b backendDescriptionImpl) GetWeight() int32 {
+	//TODO implement me
+	panic("implement me")
+}
+
+func (b backendDescriptionImpl) GetPort() int {
+	//TODO implement me
+	panic("implement me")
+}

pkg/gateway/routeutils/constants.go

@@ -0,0 +1,31 @@
+package routeutils
+
+import (
+	"context"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+	gwv1 "sigs.k8s.io/gateway-api/apis/v1"
+)
+
+const (
+	TCPRouteKind  = "TCPRoute"
+	UDPRouteKind  = "UDPRoute"
+	TLSRouteKind  = "TLSRoute"
+	HTTPRouteKind = "HTTPRoute"
+	GRPCRouteKind = "GRPCRoute"
+)
+
+var allRoutes = map[string]func(context context.Context, client client.Client) ([]RouteDescriptor, error){
+	TCPRouteKind:  ListTCPRoutes,
+	UDPRouteKind:  ListUDPRoutes,
+	TLSRouteKind:  ListTLSRoutes,
+	HTTPRouteKind: nil,
+	GRPCRouteKind: nil,
+}
+
+var defaultProtocolToRouteKindMap = map[gwv1.ProtocolType]string{
+	gwv1.TCPProtocolType:   TCPRouteKind,
+	gwv1.UDPProtocolType:   UDPRouteKind,
+	gwv1.TLSProtocolType:   TLSRouteKind,
+	gwv1.HTTPProtocolType:  HTTPRouteKind,
+	gwv1.HTTPSProtocolType: HTTPRouteKind,
+}

pkg/gateway/routeutils/descriptor.go

@@ -0,0 +1,9 @@
+package routeutils
+
+type RouteDescriptor interface {
+	GetRouteNamespace() string
+	GetRouteName() string
+	GetRouteKind() string
+	GetAttachedRules() []BackendDescription
+	GetRawRoute() interface{}
+}

pkg/gateway/routeutils/loader.go

@@ -0,0 +1,56 @@
+package routeutils
+
+import (
+	"context"
+	"k8s.io/apimachinery/pkg/util/sets"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+	gwv1 "sigs.k8s.io/gateway-api/apis/v1"
+)
+
+type LoadRouteFilter interface {
+	IsApplicable(kind string) bool
+}
+
+type routeFilterImpl struct {
+	acceptedKinds sets.Set[string]
+}
+
+func (r *routeFilterImpl) IsApplicable(kind string) bool {
+	return r.acceptedKinds.Has(kind)
+}
+
+var L4RouteFilter LoadRouteFilter = &routeFilterImpl{
+	acceptedKinds: sets.New(UDPRouteKind, TCPRouteKind, TLSRouteKind),
+}
+
+var L7RouteFilter LoadRouteFilter = &routeFilterImpl{
+	acceptedKinds: sets.New(HTTPRouteKind, GRPCRouteKind),
+}
+
+type Loader interface {
+	LoadRoutesForGateway(ctx context.Context, client client.Client, gw *gwv1.Gateway, filter LoadRouteFilter) (map[int][]RouteDescriptor, error)
+}
+
+var _ Loader = &loaderImpl{}
+
+type loaderImpl struct {
+	mapper ListenerToRouteMapper
+}
+
+func (l *loaderImpl) LoadRoutesForGateway(ctx context.Context, k8sclient client.Client, gw *gwv1.Gateway, filter LoadRouteFilter) (map[int][]RouteDescriptor, error) {
+	// 1. Load all relevant routes according to the filter
+	loadedRoutes := make([]RouteDescriptor, 0)
+	for route, loader := range allRoutes {
+		if filter.IsApplicable(route) {
+			data, err := loader(ctx, k8sclient)
+			if err != nil {
+				return nil, err
+			}
+			loadedRoutes = append(loadedRoutes, data...)
+		}
+	}
+
+	// 2. Remove routes that aren't granted attachment by the listener.
+	// Map any routes that are granted attachment to the listener port that allows the attachment.
+	return l.mapper.Map(ctx, k8sclient, gw, loadedRoutes)
+}

pkg/gateway/routeutils/route_listener_mapper.go

@@ -0,0 +1,139 @@
+package routeutils
+
+import (
+	"context"
+	v1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/util/sets"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+	gwv1 "sigs.k8s.io/gateway-api/apis/v1"
+)
+
+type ListenerToRouteMapper interface {
+	Map(context context.Context, client client.Client, gw *gwv1.Gateway, routes []RouteDescriptor) (map[int][]RouteDescriptor, error)
+}
+
+var _ ListenerToRouteMapper = &listenerToRouteMapper{}
+
+type listenerToRouteMapper struct {
+}
+
+func (ltr *listenerToRouteMapper) Map(ctx context.Context, k8sclient client.Client, gw *gwv1.Gateway, routes []RouteDescriptor) (map[int][]RouteDescriptor, error) {
+	result := make(map[int][]RouteDescriptor)
+
+	// Approach is to greedily add as many relevant routes to each listener.
+	for _, listener := range gw.Spec.Listeners {
+		for _, route := range routes {
+			allowedAttachment, err := ltr.listenerAllowsAttachment(ctx, k8sclient, gw, listener, route)
+			if err != nil {
+				return nil, err
+			}
+
+			if allowedAttachment {
+				result[int(listener.Port)] = append(result[int(listener.Port)], route)
+			}
+		}
+	}
+	return result, nil
+}
+
+func (ltr *listenerToRouteMapper) listenerAllowsAttachment(ctx context.Context, k8sclient client.Client, gw *gwv1.Gateway, listener gwv1.Listener, route RouteDescriptor) (bool, error) {
+	namespaceOK, err := ltr.namespaceCheck(ctx, k8sclient, gw, listener, route)
+	if err != nil {
+		return false, err
+	}
+
+	if !namespaceOK {
+		return false, nil
+	}
+
+	if !ltr.kindCheck(listener, route) {
+		return false, nil
+	}
+	return true, nil
+}
+
+func (ltr *listenerToRouteMapper) namespaceCheck(ctx context.Context, k8sclient client.Client, gw *gwv1.Gateway, listener gwv1.Listener, route RouteDescriptor) (bool, error) {
+	if listener.AllowedRoutes == nil {
+		return gw.Namespace == route.GetRouteNamespace(), nil
+	}
+
+	var allowedNamespaces gwv1.FromNamespaces
+
+	if listener.AllowedRoutes.Namespaces == nil || listener.AllowedRoutes.Namespaces.From == nil {
+		allowedNamespaces = gwv1.NamespacesFromSame
+	} else {
+		allowedNamespaces = *listener.AllowedRoutes.Namespaces.From
+	}
+
+	switch allowedNamespaces {
+	case gwv1.NamespacesFromSame:
+		if gw.Namespace != route.GetRouteNamespace() {
+			return false, nil
+		}
+		break
+	case gwv1.NamespacesFromSelector:
+		if listener.AllowedRoutes.Namespaces.Selector == nil {
+			return false, nil
+		}
+		// This should be executed off the client-go cache, hence we do not need to perform local caching.
+		namespaces, err := ltr.getNamespacesFromSelector(ctx, k8sclient, listener.AllowedRoutes.Namespaces.Selector)
+		if err != nil {
+			return false, err
+		}
+
+		if !namespaces.Has(route.GetRouteNamespace()) {
+			return false, nil
+		}
+		break
+	case gwv1.NamespacesFromAll:
+		// Nothing to check
+		break
+	default:
+		// Unclear what to do in this case, let's try to be best effort and just ignore this value.
+		return false, nil
+	}
+
+	return false, nil
+}
+
+func (ltr *listenerToRouteMapper) kindCheck(listener gwv1.Listener, route RouteDescriptor) bool {
+
+	var allowedRoutes sets.Set[string]
+
+	// Allowed Routes being null defaults to no checking required.
+	if listener.AllowedRoutes.Kinds == nil {
+		allowedRoutes = sets.New[string](defaultProtocolToRouteKindMap[listener.Protocol])
+	} else {
+		// TODO - Not sure how to handle versioning (correctly) here.
+		// So going to ignore the group checks for now :x
+		allowedRoutes = sets.New[string]()
+		for _, v := range listener.AllowedRoutes.Kinds {
+			allowedRoutes.Insert(string(v.Kind))
+		}
+	}
+	return allowedRoutes.Has(route.GetRouteKind())
+}
+
+func (ltr *listenerToRouteMapper) getNamespacesFromSelector(context context.Context, k8sclient client.Client, selector *metav1.LabelSelector) (sets.Set[string], error) {
+	namespaceList := v1.NamespaceList{}
+
+	convertedSelector, err := metav1.LabelSelectorAsSelector(selector)
+	if err != nil {
+		return nil, err
+	}
+	listOpts := client.ListOptions{LabelSelector: convertedSelector}
+
+	err = k8sclient.List(context, &namespaceList, &listOpts)
+	if err != nil {
+		return nil, err
+	}
+
+	namespaces := sets.New[string]()
+
+	for _, ns := range namespaceList.Items {
+		namespaces.Insert(ns.Name)
+	}
+
+	return namespaces, nil
+}

pkg/gateway/routeutils/route_rule.go

@@ -0,0 +1,34 @@
+package routeutils
+
+import v1 "k8s.io/api/core/v1"
+
+type Rule interface {
+	GetSectionName() string
+	GetService() *v1.Service
+	GetHostnames() []string
+	GetWeight() int32
+}
+
+var _ Rule = &ruleImpl{}
+
+type ruleImpl struct{}
+
+func (s *ruleImpl) GetHostnames() []string {
+	//TODO implement me
+	panic("implement me")
+}
+
+func (s *ruleImpl) GetSectionName() string {
+	//TODO implement me
+	panic("implement me")
+}
+
+func (s *ruleImpl) GetService() *v1.Service {
+	//TODO implement me
+	panic("implement me")
+}
+
+func (s *ruleImpl) GetWeight() int32 {
+	//TODO implement me
+	panic("implement me")
+}

pkg/gateway/routeutils/tcp.go

@@ -0,0 +1,56 @@
+package routeutils
+
+import (
+	"context"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+	gwalpha2 "sigs.k8s.io/gateway-api/apis/v1alpha2"
+)
+
+type tcpRouteDescription struct {
+	route *gwalpha2.TCPRoute
+}
+
+func (t *tcpRouteDescription) GetRouteKind() string {
+	return TCPRouteKind
+}
+
+func (t *tcpRouteDescription) GetRouteNamespace() string {
+	return t.route.Namespace
+}
+
+func (t *tcpRouteDescription) GetRouteName() string {
+	return t.route.Name
+}
+
+func convertTCPRoute(r gwalpha2.TCPRoute) *tcpRouteDescription {
+	return &tcpRouteDescription{route: &r}
+}
+
+func (t *tcpRouteDescription) GetAttachedRules() []BackendDescription {
+	//TODO implement me
+	panic("implement me")
+}
+
+func (t *tcpRouteDescription) GetRawRoute() interface{} {
+	return t.route
+}
+
+var _ RouteDescriptor = &tcpRouteDescription{}
+
+// Can we use an indexer here to query more efficiently?
+
+func ListTCPRoutes(context context.Context, client client.Client) ([]RouteDescriptor, error) {
+	routeList := &gwalpha2.TCPRouteList{}
+	err := client.List(context, routeList)
+	if err != nil {
+		return nil, err
+	}
+
+	result := make([]RouteDescriptor, 0)
+
+	for _, item := range routeList.Items {
+		result = append(result, convertTCPRoute(item))
+	}
+
+	return result, err
+}