sandbox: pass correct pod Namespace/Name to network plugins and fix id/name ordering

Two issues: 1) pod Namespace was always set to "", which prevents plugins from figuring out what the actual pod is, and from getting more info about that pod from the runtime via out-of-band mechanisms 2) the pod Name and ID arguments were switched, further preventing #1 Signed-off-by: Dan Williams <dcbw@redhat.com>
2017-05-04 11:41:15 -05:00 · 2017-05-04 11:41:15 -05:00 · 13f6e95685
commit 13f6e95685
parent cf0afef675
8 changed files with 93 additions and 18 deletions
--- a/server/sandbox.go
+++ b/server/sandbox.go
@ -125,8 +125,12 @@ func hostNetNsPath() (string, error) {
 }

 type sandbox struct {
-	id             string
-	name           string
+	id        string
+	namespace string
+	// OCI pod name (eg "<namespace>-<name>-<attempt>")
+	name string
+	// Kubernetes pod name (eg, "<name>")
+	kubeName       string
 	logDir         string
 	labels         fields.Set
 	annotations    map[string]string
@ -144,10 +148,9 @@ type sandbox struct {
 }

 const (
-	podDefaultNamespace = "default"
-	defaultShmSize      = 64 * 1024 * 1024
-	nsRunDir            = "/var/run/netns"
-	podInfraCommand     = "/pause"
+	defaultShmSize  = 64 * 1024 * 1024
+	nsRunDir        = "/var/run/netns"
+	podInfraCommand = "/pause"
 )

 var (
@ -254,7 +257,7 @@ func (s *Server) generatePodIDandName(name string, namespace string, attempt uin
 		id  = stringid.GenerateNonCryptoID()
 	)
 	if namespace == "" {
-		namespace = podDefaultNamespace
+		return "", "", fmt.Errorf("cannot generate pod ID without namespace")
 	}

 	if name, err = s.reservePodName(id, fmt.Sprintf("%s-%s-%v", namespace, name, attempt)); err != nil {
--- a/server/sandbox_run.go
+++ b/server/sandbox_run.go
@ -71,15 +71,15 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest
 	logrus.Debugf("RunPodSandboxRequest %+v", req)
 	var processLabel, mountLabel, netNsPath, resolvPath string
 	// process req.Name
-	name := req.GetConfig().GetMetadata().Name
-	if name == "" {
+	kubeName := req.GetConfig().GetMetadata().Name
+	if kubeName == "" {
 		return nil, fmt.Errorf("PodSandboxConfig.Name should not be empty")
 	}

 	namespace := req.GetConfig().GetMetadata().Namespace
 	attempt := req.GetConfig().GetMetadata().Attempt

-	id, name, err := s.generatePodIDandName(name, namespace, attempt)
+	id, name, err := s.generatePodIDandName(kubeName, namespace, attempt)
 	if err != nil {
 		return nil, err
 	}
@ -268,7 +268,9 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest

 	sb := &sandbox{
 		id:           id,
+		namespace:    namespace,
 		name:         name,
+		kubeName:     kubeName,
 		logDir:       logDir,
 		labels:       labels,
 		annotations:  annotations,
@ -405,8 +407,7 @@ func (s *Server) RunPodSandbox(ctx context.Context, req *pb.RunPodSandboxRequest

 	// setup the network
 	if !hostNetwork {
-		podNamespace := ""
-		if err = s.netPlugin.SetUpPod(netNsPath, podNamespace, id, containerName); err != nil {
+		if err = s.netPlugin.SetUpPod(netNsPath, namespace, kubeName, id); err != nil {
 			return nil, fmt.Errorf("failed to create network for container %s in sandbox %s: %v", containerName, id, err)
 		}
 	}
--- a/server/sandbox_status.go
+++ b/server/sandbox_status.go
@ -27,8 +27,7 @@ func (s *Server) PodSandboxStatus(ctx context.Context, req *pb.PodSandboxStatusR
 	if err != nil {
 		return nil, err
 	}
-	podNamespace := ""
-	ip, err := s.netPlugin.GetContainerNetworkStatus(netNsPath, podNamespace, sb.id, podInfraContainer.Name())
+	ip, err := s.netPlugin.GetContainerNetworkStatus(netNsPath, sb.namespace, sb.kubeName, sb.id)
 	if err != nil {
 		// ignore the error on network status
 		ip = ""
--- a/server/sandbox_stop.go
+++ b/server/sandbox_stop.go
@ -19,20 +19,19 @@ func (s *Server) StopPodSandbox(ctx context.Context, req *pb.StopPodSandboxReque
 		return nil, err
 	}

-	podNamespace := ""
 	podInfraContainer := sb.infraContainer
 	netnsPath, err := podInfraContainer.NetNsPath()
 	if err != nil {
 		return nil, err
 	}
 	if _, err := os.Stat(netnsPath); err == nil {
-		if err2 := s.netPlugin.TearDownPod(netnsPath, podNamespace, sb.id, podInfraContainer.Name()); err2 != nil {
+		if err2 := s.netPlugin.TearDownPod(netnsPath, sb.namespace, sb.kubeName, sb.id); err2 != nil {
 			return nil, fmt.Errorf("failed to destroy network for container %s in sandbox %s: %v",
 				podInfraContainer.Name(), sb.id, err2)
 		}
 	} else if !os.IsNotExist(err) { // it's ok for netnsPath to *not* exist
 		return nil, fmt.Errorf("failed to stat netns path for container %s in sandbox %s before tearing down the network: %v",
-			podInfraContainer.Name(), sb.id, err)
+			sb.name, sb.id, err)
 	}

 	// Close the sandbox networking namespace.