Skip to content

Change conflicting FQDN logic in HTTPProxy #7268

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
wants to merge 1 commit into
base: main
Choose a base branch
from
+25 −19
Draft

Change conflicting FQDN logic in HTTPProxy #7268

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
44 changes: 25 additions & 19 deletions internal/dag/httpproxy_processor.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,7 @@ import (
"net/http"
"net/url"
"regexp"
"slices"
"sort"
"strconv"
"strings"
Expand Down Expand Up @@ -1345,30 +1346,35 @@ func (p *HTTPProxyProcessor) validHTTPProxies() []*contour_v1.HTTPProxy {
}

for fqdn, proxies := range fqdnHTTPProxies {
switch len(proxies) {
case 1:
valid = append(valid, proxies[0])
default:
// multiple proxies use the same fqdn. mark them as invalid.
var conflicting []string
for _, proxy := range proxies {
conflicting = append(conflicting, proxy.Namespace+"/"+proxy.Name)
}
sort.Strings(conflicting) // sort for test stability
msg := fmt.Sprintf("fqdn %q is used in multiple HTTPProxies: %s", fqdn, strings.Join(conflicting, ", "))
for _, proxy := range proxies {
pa, commit := p.dag.StatusCache.ProxyAccessor(proxy)
pa.Vhost = fqdn
pa.ConditionFor(status.ValidCondition).AddError(contour_v1.ConditionTypeVirtualHostError,
"DuplicateVhost",
msg)
commit()
}
sortHTTPProxies(proxies)
valid = append(valid, proxies[0])
conflicting := proxies[1:]
for _, proxy := range conflicting {
pa, commit := p.dag.StatusCache.ProxyAccessor(proxy)
pa.Vhost = fqdn
pa.ConditionFor(status.ValidCondition).AddError(contour_v1.ConditionTypeVirtualHostError,
"DuplicateVhost",
fmt.Sprintf("fqdn %q already in use by a pre-existing HTTPProxy", fqdn))
commit()
}
}
return valid
}

// For multiple proxies that use the same FQDN, sort based on creation timestamp
// first and namespace/name lexicographic order second to resolve conflicts. The
// HTTPProxy that sorts first (i.e. oldest/first in alphabet) should not be
// marked invalid, as it claimed the FQDN first.
func sortHTTPProxies(proxies []*contour_v1.HTTPProxy) {
slices.SortFunc(proxies, func(a, b *contour_v1.HTTPProxy) int {
// if the creation time is the same, compare the proxy name
if a.CreationTimestamp.Equal(&b.CreationTimestamp) {
return strings.Compare(k8s.NamespacedNameOf(a).String(), k8s.NamespacedNameOf(b).String())
}
return a.CreationTimestamp.Compare(b.CreationTimestamp.Time)
})
}

// rootAllowed returns true if the HTTPProxy lives in a permitted root namespace.
func (p *HTTPProxyProcessor) rootAllowed(namespace string) bool {
if len(p.source.RootNamespaces) == 0 {
Expand Down
Loading