• kube-controller-manager源码分析(一)之 NewControllerManagerCommand
  • 1. Main函数
  • 2. NewControllerManagerCommand
    • 2.1. NewKubeControllerManagerOptions
    • 2.2. AddFlagSet
  • 3. Run
    • 3.1. CreateControllerContext
    • 3.2. NewControllerInitializers
    • 3.3. StartControllers
    • 3.4. InformerFactory.Start
      • 3.4.1. SharedInformerFactory
      • 3.4.2. sharedInformerFactory.Start
      • 3.4.3. sharedIndexInformer.Run
  • 4. initFn(ctx)
    • 4.1. startStatefulSetController
    • 4.2. startDeploymentController
  • 5. 总结

    kube-controller-manager源码分析(一)之 NewControllerManagerCommand

    以下代码分析基于 kubernetes v1.12.0 版本。

    本文主要分析https://github.com/kubernetes/kubernetes/tree/v1.12.0/cmd/kube-controller-manager 部分的代码。

    本文主要分析 kubernetes/cmd/kube-controller-manager部分,该部分主要涉及各种类型的controller的参数解析,及初始化,例如 deployment controllerstatefulset controller。并没有具体controller运行的详细逻辑,该部分位于kubernetes/pkg/controller模块,待后续文章分析。

    kube-controller-managercmd部分代码目录结构如下:

    1. kube-controller-manager
    2. ├── app
    3.    ├── apps.go   # 包含:startDeploymentController、startReplicaSetController、startStatefulSetController、startDaemonSetController
    4.    ├── autoscaling.go # startHPAController
    5.    ├── batch.go  # startJobController、startCronJobController
    6.    ├── bootstrap.go
    7.    ├── certificates.go
    8.    ├── cloudproviders.go
    9.    ├── config
    10.       └── config.go   # config: controller manager执行的上下文
    11.    ├── controllermanager.go   # 包含:NewControllerManagerCommand、Run、NewControllerInitializers、StartControllers等
    12.    ├── core.go   # startServiceController、startNodeIpamController、startPersistentVolumeBinderController、startNamespaceController等
    13.    ├── options    # 包含不同controller的option参数
    14.       ├── attachdetachcontroller.go
    15.       ├── csrsigningcontroller.go
    16.       ├── daemonsetcontroller.go   # DaemonSetControllerOptions
    17.       ├── deploymentcontroller.go  # DeploymentControllerOptions
    18.       ├── deprecatedcontroller.go
    19.       ├── endpointcontroller.go
    20.       ├── garbagecollectorcontroller.go
    21.       ├── hpacontroller.go
    22.       ├── jobcontroller.go
    23.       ├── namespacecontroller.go   # NamespaceControllerOptions
    24.       ├── nodeipamcontroller.go
    25.       ├── nodelifecyclecontroller.go
    26.       ├── options.go  # KubeControllerManagerOptions、NewKubeControllerManagerOptions
    27.       ├── persistentvolumebindercontroller.go
    28.       ├── podgccontroller.go
    29.       ├── replicasetcontroller.go   # ReplicaSetControllerOptions
    30.       ├── replicationcontroller.go
    31.       ├── resourcequotacontroller.go
    32.       ├── serviceaccountcontroller.go
    33.       └── ttlafterfinishedcontroller.go
    34. └── controller-manager.go  # main入口函数

    1. Main函数

    kube-controller-manager的入口函数Main函数,仍然是采用统一的代码风格,使用Cobra命令行框架。

    1. func main() {
    2.     rand.Seed(time.Now().UTC().UnixNano())
    4.     command := app.NewControllerManagerCommand()
    6.     // TODO: once we switch everything over to Cobra commands, we can go back to calling
    7.     // utilflag.InitFlags() (by removing its pflag.Parse() call). For now, we have to set the
    8.     // normalize func and add the go flag set by hand.
    9.     pflag.CommandLine.SetNormalizeFunc(utilflag.WordSepNormalizeFunc)
    10.     pflag.CommandLine.AddGoFlagSet(goflag.CommandLine)
    11.     // utilflag.InitFlags()
    12.     logs.InitLogs()
    13.     defer logs.FlushLogs()
    15.     if err := command.Execute(); err != nil {
    16.         fmt.Fprintf(os.Stderr, "%v\n", err)
    17.         os.Exit(1)
    18.     }
    19. }

    核心代码:

    1. // 初始化命令行结构体
    2. command := app.NewControllerManagerCommand()
    3. // 执行Execute
    4. err := command.Execute()

    2. NewControllerManagerCommand

    该部分代码位于:kubernetes/cmd/kube-controller-manager/app/controllermanager.go

    1. // NewControllerManagerCommand creates a *cobra.Command object with default parameters
    2. func NewControllerManagerCommand() *cobra.Command {
    3.     ...
    4.     cmd := &cobra.Command{
    5.         Use: "kube-controller-manager",
    6.         Long: `The Kubernetes controller manager is a daemon that embeds
    7. the core control loops shipped with Kubernetes. In applications of robotics and
    8. automation, a control loop is a non-terminating loop that regulates the state of
    9. the system. In Kubernetes, a controller is a control loop that watches the shared
    10. state of the cluster through the apiserver and makes changes attempting to move the
    11. current state towards the desired state. Examples of controllers that ship with
    12. Kubernetes today are the replication controller, endpoints controller, namespace
    13. controller, and serviceaccounts controller.`,
    14.         Run: func(cmd *cobra.Command, args []string) {
    15.             verflag.PrintAndExitIfRequested()
    16.             utilflag.PrintFlags(cmd.Flags())
    18.             c, err := s.Config(KnownControllers(), ControllersDisabledByDefault.List())
    19.             if err != nil {
    20.                 fmt.Fprintf(os.Stderr, "%v\n", err)
    21.                 os.Exit(1)
    22.             }
    24.             if err := Run(c.Complete(), wait.NeverStop); err != nil {
    25.                 fmt.Fprintf(os.Stderr, "%v\n", err)
    26.                 os.Exit(1)
    27.             }
    28.         },
    29.     }
    30.     ...
    31. }

    构建一个*cobra.Command对象,然后执行Run函数。

    2.1. NewKubeControllerManagerOptions

    1. s, err := options.NewKubeControllerManagerOptions()
    2. if err != nil {
    3.     glog.Fatalf("unable to initialize command options: %v", err)
    4. }

    初始化controllerManager的参数,其中主要包括了各种controller的option,例如DeploymentControllerOptions:

    1. // DeploymentControllerOptions holds the DeploymentController options.
    2. type DeploymentControllerOptions struct {
    3.     ConcurrentDeploymentSyncs      int32
    4.     DeploymentControllerSyncPeriod metav1.Duration
    5. }

    具体代码如下:

    1. // NewKubeControllerManagerOptions creates a new KubeControllerManagerOptions with a default config.
    2. func NewKubeControllerManagerOptions() (*KubeControllerManagerOptions, error) {
    3.     componentConfig, err := NewDefaultComponentConfig(ports.InsecureKubeControllerManagerPort)
    4.     if err != nil {
    5.         return nil, err
    6.     }
    8.     s := KubeControllerManagerOptions{
    9.         Generic:         cmoptions.NewGenericControllerManagerConfigurationOptions(componentConfig.Generic),
    10.         KubeCloudShared: cmoptions.NewKubeCloudSharedOptions(componentConfig.KubeCloudShared),
    11.         AttachDetachController: &AttachDetachControllerOptions{
    12.             ReconcilerSyncLoopPeriod: componentConfig.AttachDetachController.ReconcilerSyncLoopPeriod,
    13.         },
    14.         CSRSigningController: &CSRSigningControllerOptions{
    15.             ClusterSigningCertFile: componentConfig.CSRSigningController.ClusterSigningCertFile,
    16.             ClusterSigningKeyFile:  componentConfig.CSRSigningController.ClusterSigningKeyFile,
    17.             ClusterSigningDuration: componentConfig.CSRSigningController.ClusterSigningDuration,
    18.         },
    19.         DaemonSetController: &DaemonSetControllerOptions{
    20.             ConcurrentDaemonSetSyncs: componentConfig.DaemonSetController.ConcurrentDaemonSetSyncs,
    21.         },
    22.         DeploymentController: &DeploymentControllerOptions{
    23.             ConcurrentDeploymentSyncs:      componentConfig.DeploymentController.ConcurrentDeploymentSyncs,
    24.             DeploymentControllerSyncPeriod: componentConfig.DeploymentController.DeploymentControllerSyncPeriod,
    25.         },
    26.         DeprecatedFlags: &DeprecatedControllerOptions{
    27.             RegisterRetryCount: componentConfig.DeprecatedController.RegisterRetryCount,
    28.         },
    29.         EndpointController: &EndpointControllerOptions{
    30.             ConcurrentEndpointSyncs: componentConfig.EndpointController.ConcurrentEndpointSyncs,
    31.         },
    32.         GarbageCollectorController: &GarbageCollectorControllerOptions{
    33.             ConcurrentGCSyncs:      componentConfig.GarbageCollectorController.ConcurrentGCSyncs,
    34.             EnableGarbageCollector: componentConfig.GarbageCollectorController.EnableGarbageCollector,
    35.         },
    36.         HPAController: &HPAControllerOptions{
    37.             HorizontalPodAutoscalerSyncPeriod:                   componentConfig.HPAController.HorizontalPodAutoscalerSyncPeriod,
    38.             HorizontalPodAutoscalerUpscaleForbiddenWindow:       componentConfig.HPAController.HorizontalPodAutoscalerUpscaleForbiddenWindow,
    39.             HorizontalPodAutoscalerDownscaleForbiddenWindow:     componentConfig.HPAController.HorizontalPodAutoscalerDownscaleForbiddenWindow,
    40.             HorizontalPodAutoscalerDownscaleStabilizationWindow: componentConfig.HPAController.HorizontalPodAutoscalerDownscaleStabilizationWindow,
    41.             HorizontalPodAutoscalerCPUInitializationPeriod:      componentConfig.HPAController.HorizontalPodAutoscalerCPUInitializationPeriod,
    42.             HorizontalPodAutoscalerInitialReadinessDelay:        componentConfig.HPAController.HorizontalPodAutoscalerInitialReadinessDelay,
    43.             HorizontalPodAutoscalerTolerance:                    componentConfig.HPAController.HorizontalPodAutoscalerTolerance,
    44.             HorizontalPodAutoscalerUseRESTClients:               componentConfig.HPAController.HorizontalPodAutoscalerUseRESTClients,
    45.         },
    46.         JobController: &JobControllerOptions{
    47.             ConcurrentJobSyncs: componentConfig.JobController.ConcurrentJobSyncs,
    48.         },
    49.         NamespaceController: &NamespaceControllerOptions{
    50.             NamespaceSyncPeriod:      componentConfig.NamespaceController.NamespaceSyncPeriod,
    51.             ConcurrentNamespaceSyncs: componentConfig.NamespaceController.ConcurrentNamespaceSyncs,
    52.         },
    53.         NodeIPAMController: &NodeIPAMControllerOptions{
    54.             NodeCIDRMaskSize: componentConfig.NodeIPAMController.NodeCIDRMaskSize,
    55.         },
    56.         NodeLifecycleController: &NodeLifecycleControllerOptions{
    57.             EnableTaintManager:     componentConfig.NodeLifecycleController.EnableTaintManager,
    58.             NodeMonitorGracePeriod: componentConfig.NodeLifecycleController.NodeMonitorGracePeriod,
    59.             NodeStartupGracePeriod: componentConfig.NodeLifecycleController.NodeStartupGracePeriod,
    60.             PodEvictionTimeout:     componentConfig.NodeLifecycleController.PodEvictionTimeout,
    61.         },
    62.         PersistentVolumeBinderController: &PersistentVolumeBinderControllerOptions{
    63.             PVClaimBinderSyncPeriod: componentConfig.PersistentVolumeBinderController.PVClaimBinderSyncPeriod,
    64.             VolumeConfiguration:     componentConfig.PersistentVolumeBinderController.VolumeConfiguration,
    65.         },
    66.         PodGCController: &PodGCControllerOptions{
    67.             TerminatedPodGCThreshold: componentConfig.PodGCController.TerminatedPodGCThreshold,
    68.         },
    69.         ReplicaSetController: &ReplicaSetControllerOptions{
    70.             ConcurrentRSSyncs: componentConfig.ReplicaSetController.ConcurrentRSSyncs,
    71.         },
    72.         ReplicationController: &ReplicationControllerOptions{
    73.             ConcurrentRCSyncs: componentConfig.ReplicationController.ConcurrentRCSyncs,
    74.         },
    75.         ResourceQuotaController: &ResourceQuotaControllerOptions{
    76.             ResourceQuotaSyncPeriod:      componentConfig.ResourceQuotaController.ResourceQuotaSyncPeriod,
    77.             ConcurrentResourceQuotaSyncs: componentConfig.ResourceQuotaController.ConcurrentResourceQuotaSyncs,
    78.         },
    79.         SAController: &SAControllerOptions{
    80.             ConcurrentSATokenSyncs: componentConfig.SAController.ConcurrentSATokenSyncs,
    81.         },
    82.         ServiceController: &cmoptions.ServiceControllerOptions{
    83.             ConcurrentServiceSyncs: componentConfig.ServiceController.ConcurrentServiceSyncs,
    84.         },
    85.         TTLAfterFinishedController: &TTLAfterFinishedControllerOptions{
    86.             ConcurrentTTLSyncs: componentConfig.TTLAfterFinishedController.ConcurrentTTLSyncs,
    87.         },
    88.         SecureServing: apiserveroptions.NewSecureServingOptions().WithLoopback(),
    89.         InsecureServing: (&apiserveroptions.DeprecatedInsecureServingOptions{
    90.             BindAddress: net.ParseIP(componentConfig.Generic.Address),
    91.             BindPort:    int(componentConfig.Generic.Port),
    92.             BindNetwork: "tcp",
    93.         }).WithLoopback(),
    94.         Authentication: apiserveroptions.NewDelegatingAuthenticationOptions(),
    95.         Authorization:  apiserveroptions.NewDelegatingAuthorizationOptions(),
    96.     }
    98.     s.Authentication.RemoteKubeConfigFileOptional = true
    99.     s.Authorization.RemoteKubeConfigFileOptional = true
    100.     s.Authorization.AlwaysAllowPaths = []string{"/healthz"}
    102.     s.SecureServing.ServerCert.CertDirectory = "/var/run/kubernetes"
    103.     s.SecureServing.ServerCert.PairName = "kube-controller-manager"
    104.     s.SecureServing.BindPort = ports.KubeControllerManagerPort
    106.     gcIgnoredResources := make([]kubectrlmgrconfig.GroupResource, 0, len(garbagecollector.DefaultIgnoredResources()))
    107.     for r := range garbagecollector.DefaultIgnoredResources() {
    108.         gcIgnoredResources = append(gcIgnoredResources, kubectrlmgrconfig.GroupResource{Group: r.Group, Resource: r.Resource})
    109.     }
    111.     s.GarbageCollectorController.GCIgnoredResources = gcIgnoredResources
    113.     return &s, nil
    114. }

    2.2. AddFlagSet

    添加参数及帮助函数。

    1. fs := cmd.Flags()
    2. namedFlagSets := s.Flags(KnownControllers(), ControllersDisabledByDefault.List())
    3. for _, f := range namedFlagSets.FlagSets {
    4.     fs.AddFlagSet(f)
    5. }
    6. usageFmt := "Usage:\n  %s\n"
    7. cols, _, _ := apiserverflag.TerminalSize(cmd.OutOrStdout())
    8. cmd.SetUsageFunc(func(cmd *cobra.Command) error {
    9.     fmt.Fprintf(cmd.OutOrStderr(), usageFmt, cmd.UseLine())
    10.     apiserverflag.PrintSections(cmd.OutOrStderr(), namedFlagSets, cols)
    11.     return nil
    12. })
    13. cmd.SetHelpFunc(func(cmd *cobra.Command, args []string) {
    14.     fmt.Fprintf(cmd.OutOrStdout(), "%s\n\n"+usageFmt, cmd.Long, cmd.UseLine())
    15.     apiserverflag.PrintSections(cmd.OutOrStdout(), namedFlagSets, cols)
    16. })

    3. Run

    此部分的代码位于cmd/kube-controller-manager/app/controllermanager.go

    基于KubeControllerManagerOptions运行controllerManager,不退出。

    1. // Run runs the KubeControllerManagerOptions.  This should never exit.
    2. func Run(c *config.CompletedConfig, stopCh <-chan struct{}) error {
    3.     ...
    4.     run := func(ctx context.Context) {
    5.         ...
    6.         controllerContext, err := CreateControllerContext(c, rootClientBuilder, clientBuilder, ctx.Done())
    7.         if err != nil {
    8.             glog.Fatalf("error building controller context: %v", err)
    9.         }
    10.         saTokenControllerInitFunc := serviceAccountTokenControllerStarter{rootClientBuilder: rootClientBuilder}.startServiceAccountTokenController
    12.         if err := StartControllers(controllerContext, saTokenControllerInitFunc, NewControllerInitializers(controllerContext.LoopMode), unsecuredMux); err != nil {
    13.             glog.Fatalf("error starting controllers: %v", err)
    14.         }
    16.         controllerContext.InformerFactory.Start(controllerContext.Stop)
    17.         close(controllerContext.InformersStarted)
    19.         select {}
    20.     }
    21.     ...
    22. }

    Run函数涉及的核心代码如下:

    1. // 创建controller的context
    2. controllerContext, err := CreateControllerContext(c, rootClientBuilder, clientBuilder, ctx.Done())
    3. // 启动各种controller
    4. err := StartControllers(controllerContext, saTokenControllerInitFunc, NewControllerInitializers(controllerContext.LoopMode), unsecuredMux)

    其中StartControllers中的入参NewControllerInitializers初始化了各种controller。

    3.1. CreateControllerContext

    CreateControllerContext构建了各种controller所需的资源的上下文,各种controller在启动时,入参为该context,具体参考initFn(ctx)

    1. // CreateControllerContext creates a context struct containing references to resources needed by the
    2. // controllers such as the cloud provider and clientBuilder. rootClientBuilder is only used for
    3. // the shared-informers client and token controller.
    4. func CreateControllerContext(s *config.CompletedConfig, rootClientBuilder, clientBuilder controller.ControllerClientBuilder, stop <-chan struct{}) (ControllerContext, error) {
    5.     versionedClient := rootClientBuilder.ClientOrDie("shared-informers")
    6.     sharedInformers := informers.NewSharedInformerFactory(versionedClient, ResyncPeriod(s)())
    8.     // If apiserver is not running we should wait for some time and fail only then. This is particularly
    9.     // important when we start apiserver and controller manager at the same time.
    10.     if err := genericcontrollermanager.WaitForAPIServer(versionedClient, 10*time.Second); err != nil {
    11.         return ControllerContext{}, fmt.Errorf("failed to wait for apiserver being healthy: %v", err)
    12.     }
    14.     // Use a discovery client capable of being refreshed.
    15.     discoveryClient := rootClientBuilder.ClientOrDie("controller-discovery")
    16.     cachedClient := cacheddiscovery.NewMemCacheClient(discoveryClient.Discovery())
    17.     restMapper := restmapper.NewDeferredDiscoveryRESTMapper(cachedClient)
    18.     go wait.Until(func() {
    19.         restMapper.Reset()
    20.     }, 30*time.Second, stop)
    22.     availableResources, err := GetAvailableResources(rootClientBuilder)
    23.     if err != nil {
    24.         return ControllerContext{}, err
    25.     }
    27.     cloud, loopMode, err := createCloudProvider(s.ComponentConfig.KubeCloudShared.CloudProvider.Name, s.ComponentConfig.KubeCloudShared.ExternalCloudVolumePlugin,
    28.         s.ComponentConfig.KubeCloudShared.CloudProvider.CloudConfigFile, s.ComponentConfig.KubeCloudShared.AllowUntaggedCloud, sharedInformers)
    29.     if err != nil {
    30.         return ControllerContext{}, err
    31.     }
    33.     ctx := ControllerContext{
    34.         ClientBuilder:      clientBuilder,
    35.         InformerFactory:    sharedInformers,
    36.         ComponentConfig:    s.ComponentConfig,
    37.         RESTMapper:         restMapper,
    38.         AvailableResources: availableResources,
    39.         Cloud:              cloud,
    40.         LoopMode:           loopMode,
    41.         Stop:               stop,
    42.         InformersStarted:   make(chan struct{}),
    43.         ResyncPeriod:       ResyncPeriod(s),
    44.     }
    45.     return ctx, nil
    46. }

    核心代码为NewSharedInformerFactory

    1. // 创建SharedInformerFactory
    2. sharedInformers := informers.NewSharedInformerFactory(versionedClient, ResyncPeriod(s)())
    3. // 赋值给ControllerContext
    4. ctx := ControllerContext{
    5.     InformerFactory:    sharedInformers,
    6. }

    SharedInformerFactory提供了公共的k8s对象的informers

    1. // SharedInformerFactory provides shared informers for resources in all known
    2. // API group versions.
    3. type SharedInformerFactory interface {
    4.     internalinterfaces.SharedInformerFactory
    5.     ForResource(resource schema.GroupVersionResource) (GenericInformer, error)
    6.     WaitForCacheSync(stopCh <-chan struct{}) map[reflect.Type]bool
    8.     Admissionregistration() admissionregistration.Interface
    9.     Apps() apps.Interface
    10.     Autoscaling() autoscaling.Interface
    11.     Batch() batch.Interface
    12.     Certificates() certificates.Interface
    13.     Coordination() coordination.Interface
    14.     Core() core.Interface
    15.     Events() events.Interface
    16.     Extensions() extensions.Interface
    17.     Networking() networking.Interface
    18.     Policy() policy.Interface
    19.     Rbac() rbac.Interface
    20.     Scheduling() scheduling.Interface
    21.     Settings() settings.Interface
    22.     Storage() storage.Interface
    23. }

    3.2. NewControllerInitializers

    NewControllerInitializers定义了各种controller的类型和其对于的启动函数,例如deployment``、statefulsetreplicasetreplicationcontrollernamespace等。

    1. // NewControllerInitializers is a public map of named controller groups (you can start more than one in an init func)
    2. // paired to their InitFunc.  This allows for structured downstream composition and subdivision.
    3. func NewControllerInitializers(loopMode ControllerLoopMode) map[string]InitFunc {
    4.     controllers := map[string]InitFunc{}
    5.     controllers["endpoint"] = startEndpointController
    6.     controllers["replicationcontroller"] = startReplicationController
    7.     controllers["podgc"] = startPodGCController
    8.     controllers["resourcequota"] = startResourceQuotaController
    9.     controllers["namespace"] = startNamespaceController
    10.     controllers["serviceaccount"] = startServiceAccountController
    11.     controllers["garbagecollector"] = startGarbageCollectorController
    12.     controllers["daemonset"] = startDaemonSetController
    13.     controllers["job"] = startJobController
    14.     controllers["deployment"] = startDeploymentController
    15.     controllers["replicaset"] = startReplicaSetController
    16.     controllers["horizontalpodautoscaling"] = startHPAController
    17.     controllers["disruption"] = startDisruptionController
    18.     controllers["statefulset"] = startStatefulSetController
    19.     controllers["cronjob"] = startCronJobController
    20.     controllers["csrsigning"] = startCSRSigningController
    21.     controllers["csrapproving"] = startCSRApprovingController
    22.     controllers["csrcleaner"] = startCSRCleanerController
    23.     controllers["ttl"] = startTTLController
    24.     controllers["bootstrapsigner"] = startBootstrapSignerController
    25.     controllers["tokencleaner"] = startTokenCleanerController
    26.     controllers["nodeipam"] = startNodeIpamController
    27.     if loopMode == IncludeCloudLoops {
    28.         controllers["service"] = startServiceController
    29.         controllers["route"] = startRouteController
    30.         // TODO: volume controller into the IncludeCloudLoops only set.
    31.         // TODO: Separate cluster in cloud check from node lifecycle controller.
    32.     }
    33.     controllers["nodelifecycle"] = startNodeLifecycleController
    34.     controllers["persistentvolume-binder"] = startPersistentVolumeBinderController
    35.     controllers["attachdetach"] = startAttachDetachController
    36.     controllers["persistentvolume-expander"] = startVolumeExpandController
    37.     controllers["clusterrole-aggregation"] = startClusterRoleAggregrationController
    38.     controllers["pvc-protection"] = startPVCProtectionController
    39.     controllers["pv-protection"] = startPVProtectionController
    40.     controllers["ttl-after-finished"] = startTTLAfterFinishedController
    42.     return controllers
    43. }

    3.3. StartControllers

    1. func StartControllers(ctx ControllerContext, startSATokenController InitFunc, controllers map[string]InitFunc, unsecuredMux *mux.PathRecorderMux) error {
    2.     ...
    3.     for controllerName, initFn := range controllers {
    4.         if !ctx.IsControllerEnabled(controllerName) {
    5.             glog.Warningf("%q is disabled", controllerName)
    6.             continue
    7.         }
    8.         time.Sleep(wait.Jitter(ctx.ComponentConfig.Generic.ControllerStartInterval.Duration, ControllerStartJitter))
    10.         glog.V(1).Infof("Starting %q", controllerName)
    11.         debugHandler, started, err := initFn(ctx)
    12.         if err != nil {
    13.             glog.Errorf("Error starting %q", controllerName)
    14.             return err
    15.         }
    16.         if !started {
    17.             glog.Warningf("Skipping %q", controllerName)
    18.             continue
    19.         }
    20.         if debugHandler != nil && unsecuredMux != nil {
    21.             basePath := "/debug/controllers/" + controllerName
    22.             unsecuredMux.UnlistedHandle(basePath, http.StripPrefix(basePath, debugHandler))
    23.             unsecuredMux.UnlistedHandlePrefix(basePath+"/", http.StripPrefix(basePath, debugHandler))
    24.         }
    25.         glog.Infof("Started %q", controllerName)
    26.     }
    28.     return nil
    29. }

    核心代码:

    1. for controllerName, initFn := range controllers {
    2.     debugHandler, started, err := initFn(ctx)
    3. }

    启动各种controller,controller的启动函数在NewControllerInitializers中定义了,例如:

    1. // deployment
    2. controllers["deployment"] = startDeploymentController
    3. // statefulset
    4. controllers["statefulset"] = startStatefulSetController

    3.4. InformerFactory.Start

    InformerFactory实际上是SharedInformerFactory,具体的实现逻辑在client-go中的informer的实现机制。

    1. controllerContext.InformerFactory.Start(controllerContext.Stop)
    2. close(controllerContext.InformersStarted)

    3.4.1. SharedInformerFactory

    SharedInformerFactory是一个informer工厂的接口定义。

    1. // SharedInformerFactory a small interface to allow for adding an informer without an import cycle
    2. type SharedInformerFactory interface {
    3.     Start(stopCh <-chan struct{})
    4.     InformerFor(obj runtime.Object, newFunc NewInformerFunc) cache.SharedIndexInformer
    5. }

    3.4.2. sharedInformerFactory.Start

    Start方法初始化各种类型的informer

    1. // Start initializes all requested informers.
    2. func (f *sharedInformerFactory) Start(stopCh <-chan struct{}) {
    3.     f.lock.Lock()
    4.     defer f.lock.Unlock()
    6.     for informerType, informer := range f.informers {
    7.         if !f.startedInformers[informerType] {
    8.             go informer.Run(stopCh)
    9.             f.startedInformers[informerType] = true
    10.         }
    11.     }
    12. }

    3.4.3. sharedIndexInformer.Run

    sharedIndexInformer.Run具体运行了sharedIndexInformer的实现逻辑,该部分待后续对informer机制做专题分析。

    1. func (s *sharedIndexInformer) Run(stopCh <-chan struct{}) {
    2.     defer utilruntime.HandleCrash()
    4.     fifo := NewDeltaFIFO(MetaNamespaceKeyFunc, nil, s.indexer)
    6.     cfg := &Config{
    7.         Queue:            fifo,
    8.         ListerWatcher:    s.listerWatcher,
    9.         ObjectType:       s.objectType,
    10.         FullResyncPeriod: s.resyncCheckPeriod,
    11.         RetryOnError:     false,
    12.         ShouldResync:     s.processor.shouldResync,
    14.         Process: s.HandleDeltas,
    15.     }
    17.     func() {
    18.         s.startedLock.Lock()
    19.         defer s.startedLock.Unlock()
    21.         s.controller = New(cfg)
    22.         s.controller.(*controller).clock = s.clock
    23.         s.started = true
    24.     }()
    26.     // Separate stop channel because Processor should be stopped strictly after controller
    27.     processorStopCh := make(chan struct{})
    28.     var wg wait.Group
    29.     defer wg.Wait()              // Wait for Processor to stop
    30.     defer close(processorStopCh) // Tell Processor to stop
    31.     wg.StartWithChannel(processorStopCh, s.cacheMutationDetector.Run)
    32.     wg.StartWithChannel(processorStopCh, s.processor.run)
    34.     defer func() {
    35.         s.startedLock.Lock()
    36.         defer s.startedLock.Unlock()
    37.         s.stopped = true // Don't want any new listeners
    38.     }()
    39.     s.controller.Run(stopCh)
    40. }

    4. initFn(ctx)

    initFn实际调用的就是各种类型的controller,代码位于kubernetes/cmd/kube-controller-manager/app/apps.go,本文以startStatefulSetControllerstartDeploymentController为例,controller中实际调用的函数逻辑位于kubernetes/pkg/controller中,待后续分析。

    4.1. startStatefulSetController

    1. func startStatefulSetController(ctx ControllerContext) (http.Handler, bool, error) {
    2.     if !ctx.AvailableResources[schema.GroupVersionResource{Group: "apps", Version: "v1", Resource: "statefulsets"}] {
    3.         return nil, false, nil
    4.     }
    5.     go statefulset.NewStatefulSetController(
    6.         ctx.InformerFactory.Core().V1().Pods(),
    7.         ctx.InformerFactory.Apps().V1().StatefulSets(),
    8.         ctx.InformerFactory.Core().V1().PersistentVolumeClaims(),
    9.         ctx.InformerFactory.Apps().V1().ControllerRevisions(),
    10.         ctx.ClientBuilder.ClientOrDie("statefulset-controller"),
    11.     ).Run(1, ctx.Stop)
    12.     return nil, true, nil
    13. }

    其中使用到了InformerFactory,包含了Pods、StatefulSets、PersistentVolumeClaims、ControllerRevisions的informer。

    startStatefulSetController主要调用的函数为NewStatefulSetController和对应的Run函数。

    4.2. startDeploymentController

    1. func startDeploymentController(ctx ControllerContext) (http.Handler, bool, error) {
    2.     if !ctx.AvailableResources[schema.GroupVersionResource{Group: "apps", Version: "v1", Resource: "deployments"}] {
    3.         return nil, false, nil
    4.     }
    5.     dc, err := deployment.NewDeploymentController(
    6.         ctx.InformerFactory.Apps().V1().Deployments(),
    7.         ctx.InformerFactory.Apps().V1().ReplicaSets(),
    8.         ctx.InformerFactory.Core().V1().Pods(),
    9.         ctx.ClientBuilder.ClientOrDie("deployment-controller"),
    10.     )
    11.     if err != nil {
    12.         return nil, true, fmt.Errorf("error creating Deployment controller: %v", err)
    13.     }
    14.     go dc.Run(int(ctx.ComponentConfig.DeploymentController.ConcurrentDeploymentSyncs), ctx.Stop)
    15.     return nil, true, nil
    16. }

    startDeploymentController主要调用的函数为NewDeploymentController和对应的Run函数。该部分逻辑在kubernetes/pkg/controller中。

    5. 总结

    1. Kube-controller-manager的代码风格仍然是Cobra命令行框架。通过构造ControllerManagerCommand,然后执行command.Execute()函数。基本的流程就是构造option,添加Flags,执行Run函数。
    2. cmd部分的调用流程如下:Main-->NewControllerManagerCommand--> Run(c.Complete(), wait.NeverStop)-->StartControllers-->initFn(ctx)-->startDeploymentController/startStatefulSetController-->sts.NewStatefulSetController.Run/dc.NewDeploymentController.Run-->pkg/controller
    3. 其中CreateControllerContext函数用来创建各类型controller所需要使用的context,NewControllerInitializers初始化了各种类型的controller,其中就包括DeploymentControllerStatefulSetController等。

    基本流程如下:

    1. 构造controller manager option,并转化为Config对象,执行Run函数。
    2. 基于Config对象创建ControllerContext,其中包含InformerFactory。
    3. 基于ControllerContext运行各种controller,各种controller的定义在NewControllerInitializers中。
    4. 执行InformerFactory.Start。
    5. 每种controller都会构造自身的结构体并执行对应的Run函数。

    参考:

    • https://github.com/kubernetes/kubernetes/tree/v1.12.0/cmd/kube-controller-manager
    • https://github.com/kubernetes/kubernetes/blob/v1.12.0/cmd/kube-controller-manager/controller-manager.go
    • https://github.com/kubernetes/kubernetes/blob/v1.12.0/cmd/kube-controller-manager/app/controllermanager.go
    • https://github.com/kubernetes/kubernetes/blob/v1.12.0/cmd/kube-controller-manager/app/apps.go