@@ -32,27 +32,25 @@ import (
3232)
3333
3434// CleanStaleEntries takes care of flushing stale conntrack entries for services and endpoints.
35- func CleanStaleEntries (ct Interface , svcPortMap proxy.ServicePortMap ,
35+ func CleanStaleEntries (ct Interface , ipFamily v1. IPFamily , svcPortMap proxy.ServicePortMap ,
3636 serviceUpdateResult proxy.UpdateServiceMapResult , endpointsUpdateResult proxy.UpdateEndpointsMapResult ) {
37- deleteStaleServiceConntrackEntries (ct , svcPortMap , serviceUpdateResult , endpointsUpdateResult )
38- deleteStaleEndpointConntrackEntries (ct , svcPortMap , endpointsUpdateResult )
37+ deleteStaleServiceConntrackEntries (ct , ipFamily , svcPortMap , serviceUpdateResult , endpointsUpdateResult )
38+ deleteStaleEndpointConntrackEntries (ct , ipFamily , svcPortMap , endpointsUpdateResult )
3939}
4040
4141// deleteStaleServiceConntrackEntries takes care of flushing stale conntrack entries related
4242// to UDP Service IPs. When a service has no endpoints and we drop traffic to it, conntrack
4343// may create "black hole" entries for that IP+port. When the service gets endpoints we
4444// need to delete those entries so further traffic doesn't get dropped.
45- func deleteStaleServiceConntrackEntries (ct Interface , svcPortMap proxy.ServicePortMap , serviceUpdateResult proxy.UpdateServiceMapResult , endpointsUpdateResult proxy.UpdateEndpointsMapResult ) {
45+ func deleteStaleServiceConntrackEntries (ct Interface , ipFamily v1. IPFamily , svcPortMap proxy.ServicePortMap , serviceUpdateResult proxy.UpdateServiceMapResult , endpointsUpdateResult proxy.UpdateEndpointsMapResult ) {
4646 var filters []netlink.CustomConntrackFilter
4747 conntrackCleanupServiceIPs := serviceUpdateResult .DeletedUDPClusterIPs
4848 conntrackCleanupServiceNodePorts := sets .New [int ]()
49- isIPv6 := false
5049
5150 // merge newly active services gathered from endpointsUpdateResult
5251 // a UDP service that changes from 0 to non-0 endpoints is newly active.
5352 for _ , svcPortName := range endpointsUpdateResult .NewlyActiveUDPServices {
5453 if svcInfo , ok := svcPortMap [svcPortName ]; ok {
55- isIPv6 = netutils .IsIPv6 (svcInfo .ClusterIP ())
5654 klog .V (4 ).InfoS ("Newly-active UDP service may have stale conntrack entries" , "servicePortName" , svcPortName )
5755 conntrackCleanupServiceIPs .Insert (svcInfo .ClusterIP ().String ())
5856 for _ , extIP := range svcInfo .ExternalIPs () {
@@ -77,20 +75,18 @@ func deleteStaleServiceConntrackEntries(ct Interface, svcPortMap proxy.ServicePo
7775 filters = append (filters , filterForPort (nodePort , v1 .ProtocolUDP ))
7876 }
7977
80- if err := ct .ClearEntries (getUnixIPFamily ( isIPv6 ) , filters ... ); err != nil {
78+ if err := ct .ClearEntries (ipFamilyMap [ ipFamily ] , filters ... ); err != nil {
8179 klog .ErrorS (err , "Failed to delete stale service connections" )
8280 }
8381}
8482
8583// deleteStaleEndpointConntrackEntries takes care of flushing stale conntrack entries related
8684// to UDP endpoints. After a UDP endpoint is removed we must flush any conntrack entries
8785// for it so that if the same client keeps sending, the packets will get routed to a new endpoint.
88- func deleteStaleEndpointConntrackEntries (ct Interface , svcPortMap proxy.ServicePortMap , endpointsUpdateResult proxy.UpdateEndpointsMapResult ) {
86+ func deleteStaleEndpointConntrackEntries (ct Interface , ipFamily v1. IPFamily , svcPortMap proxy.ServicePortMap , endpointsUpdateResult proxy.UpdateEndpointsMapResult ) {
8987 var filters []netlink.CustomConntrackFilter
90- isIPv6 := false
9188 for _ , epSvcPair := range endpointsUpdateResult .DeletedUDPEndpoints {
9289 if svcInfo , ok := svcPortMap [epSvcPair .ServicePortName ]; ok {
93- isIPv6 = netutils .IsIPv6 (svcInfo .ClusterIP ())
9490 endpointIP := proxyutil .IPPart (epSvcPair .Endpoint )
9591 nodePort := svcInfo .NodePort ()
9692 if nodePort != 0 {
@@ -107,17 +103,15 @@ func deleteStaleEndpointConntrackEntries(ct Interface, svcPortMap proxy.ServiceP
107103 }
108104 }
109105
110- if err := ct .ClearEntries (getUnixIPFamily ( isIPv6 ) , filters ... ); err != nil {
106+ if err := ct .ClearEntries (ipFamilyMap [ ipFamily ] , filters ... ); err != nil {
111107 klog .ErrorS (err , "Failed to delete stale endpoint connections" )
112108 }
113109}
114110
115- // getUnixIPFamily returns the unix IPFamily constant.
116- func getUnixIPFamily (isIPv6 bool ) uint8 {
117- if isIPv6 {
118- return unix .AF_INET6
119- }
120- return unix .AF_INET
111+ // ipFamilyMap maps v1.IPFamily to the corresponding unix constant.
112+ var ipFamilyMap = map [v1.IPFamily ]uint8 {
113+ v1 .IPv4Protocol : unix .AF_INET ,
114+ v1 .IPv6Protocol : unix .AF_INET6 ,
121115}
122116
123117// protocolMap maps v1.Protocol to the Assigned Internet Protocol Number.
0 commit comments