!38 kubelet support websocket protocol for isula attach

From: @jingxiaolu Reviewed-by: @duguhaotian Signed-off-by: @duguhaotian
2022-04-30 02:19:33 +00:00 · 2022-04-30 02:19:33 +00:00 · c0198a8eac
commit c0198a8eac
parent deee413a4e c2c9301fba
2 changed files with 68 additions and 1 deletions
--- a/0006-kubelet-support-attach-websocket-protocol.patch
+++ b/0006-kubelet-support-attach-websocket-protocol.patch
@ -0,0 +1,63 @@
+From 460bb849ad71236890c2c3fa7757a0cdbfda2c2b Mon Sep 17 00:00:00 2001
+From: zhangxiaoyu <zhangxiaoyu58@huawei.com>
+Date: Sat, 19 Mar 2022 16:23:01 +0800
+Subject: [PATCH] kubelet support attach websocket protocol
+
+Signed-off-by: zhangxiaoyu <zhangxiaoyu58@huawei.com>
+---
+ pkg/kubelet/server/server.go | 22 ++++++++++++++++++----
+ 1 file changed, 18 insertions(+), 4 deletions(-)
+
+diff --git a/pkg/kubelet/server/server.go b/pkg/kubelet/server/server.go
+index 1d19fed6..0cf69b5f 100644
+--- a/pkg/kubelet/server/server.go
+++ b/pkg/kubelet/server/server.go
+@@ -757,27 +757,41 @@ func proxyStream(w http.ResponseWriter, r *http.Request, url *url.URL) {
+ 
+ // getAttach handles requests to attach to a container.
+ func (s *Server) getAttach(request *restful.Request, response *restful.Response) {
+-	params := getExecRequestParams(request)
+ 	streamOpts, err := remotecommandserver.NewOptions(request.Request)
+ 	if err != nil {
+ 		utilruntime.HandleError(err)
+ 		response.WriteError(http.StatusBadRequest, err)
+ 		return
+ 	}
+
+	url, err := s.getAttachUrl(request, response, streamOpts)
+	if err != nil {
+		klog.Errorf("failed to get backend url %v", err)
+		return
+	}
+	if url.Scheme == "ws" || url.Scheme == "wss" {
+		remotecommandserver.ProxyToWebSocket(response.ResponseWriter, request.Request, url, streamOpts)
+	} else {
+		proxyStream(response.ResponseWriter, request.Request, url)
+	}
+}
+
+func (s *Server) getAttachUrl(request *restful.Request, response *restful.Response, streamOpts *remotecommandserver.Options) (*url.URL, error) {
+	params := getExecRequestParams(request)
+ 	pod, ok := s.host.GetPodByName(params.podNamespace, params.podName)
+ 	if !ok {
+ 		response.WriteError(http.StatusNotFound, fmt.Errorf("pod does not exist"))
+-		return
+		return nil, fmt.Errorf("pod not found")
+ 	}
+ 
+ 	podFullName := kubecontainer.GetPodFullName(pod)
+ 	url, err := s.host.GetAttach(podFullName, params.podUID, params.containerName, *streamOpts)
+ 	if err != nil {
+ 		streaming.WriteError(err, response.ResponseWriter)
+-		return
+		return nil, err
+ 	}
+ 
+-	proxyStream(response.ResponseWriter, request.Request, url)
+	return url, nil
+ }
+ 
+ // getExec handles requests to run a command inside a container.
+-- 
+2.25.1
+
--- a/kubernetes.spec
+++ b/kubernetes.spec
@ -3,7 +3,7 @@

 Name:         kubernetes
 Version:      1.20.2
-Release:      7
+Release:      8
 Summary:      Container cluster management
 License:      ASL 2.0
 URL:          https://k8s.io/kubernetes
@ -29,6 +29,7 @@ Patch6001: 0002-fix-compile-options.patch
 Patch6002: 0003-fix-CVE-2021-25735.patch
 Patch6003: 0004-fix-CVE-2021-25737.patch
 Patch6004: 0005-fix-CVE-2021-25741.patch
+Patch6005: 0006-kubelet-support-attach-websocket-protocol.patch

 %description
 Container cluster management.
@ -260,6 +261,9 @@ getent passwd kube >/dev/null || useradd -r -g kube -d / -s /sbin/nologin \
 %systemd_postun kubelet kube-proxy

 %changelog
+* Sat Mar 19 2022 zhangxiaoyu <zhangxiaoyu58@huawei.com> - 1.20.2-8
+- DESC: kubelet attach support ws
+
 * Wed Mar 02 2022 zhangxiaoyu <zhangxiaoyu58@huawei.com> - 1.20.2-7
 - DESC: fix CVE-2021-25741