Merge pull request #45492 from matt-potter/multizone-dns-fed

Automatic merge from submit-queue (batch tested with PRs 46429, 46308, 46395, 45867, 45492) deduplicate endpoints before DNS registration **What this PR does / why we need it**: Multizone clusters will return duplicated endpoints to the federation controller manager. The FCM will then attempt to create an A record with duplicate entries, which will fail. As a result, federated services on multi-AZ clusters don't work right now. This PR deduplicates the endpoint IPs before attempting the DNS record registration. **Which issue this PR fixes**: fixes #35997 **Special notes for your reviewer**: I believe there is a lot of refactoring required with multizone federated clusters, most notably with regard to AWS and optimising for ALIAS records rather than A, but this PR will at least allow basic functionality to work. ```release-note NONE ```
2025-07-23 19:56:01 +00:00 · 2017-05-25 22:42:11 -07:00 · 2017-05-25 22:42:11 -07:00 · f006dcc9e1
commit f006dcc9e1
parent 7d37a2685c 76a95e8ce8
2 changed files with 9 additions and 6 deletions
--- a/federation/pkg/federation-controller/service/BUILD
+++ b/federation/pkg/federation-controller/service/BUILD
@ -38,6 +38,7 @@ go_library(
        "//vendor/k8s.io/apimachinery/pkg/runtime/schema:go_default_library",
        "//vendor/k8s.io/apimachinery/pkg/types:go_default_library",
        "//vendor/k8s.io/apimachinery/pkg/util/runtime:go_default_library",
+        "//vendor/k8s.io/apimachinery/pkg/util/sets:go_default_library",
        "//vendor/k8s.io/apimachinery/pkg/util/wait:go_default_library",
        "//vendor/k8s.io/apimachinery/pkg/watch:go_default_library",
        "//vendor/k8s.io/client-go/pkg/api/v1:go_default_library",
--- a/federation/pkg/federation-controller/service/dns.go
+++ b/federation/pkg/federation-controller/service/dns.go
@ -27,6 +27,7 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	pkgruntime "k8s.io/apimachinery/pkg/runtime"
 	"k8s.io/apimachinery/pkg/util/runtime"
+	"k8s.io/apimachinery/pkg/util/sets"
 	"k8s.io/apimachinery/pkg/util/wait"
 	"k8s.io/apimachinery/pkg/watch"
 	"k8s.io/client-go/tools/cache"
@ -332,22 +333,23 @@ func findRrset(list []dnsprovider.ResourceRecordSet, rrset dnsprovider.ResourceR
   non-nil error is also returned (possibly along with a partially complete list of resolved endpoints.
 */
 func getResolvedEndpoints(endpoints []string) ([]string, error) {
-	resolvedEndpoints := make([]string, 0, len(endpoints))
+	resolvedEndpoints := sets.String{}
 	for _, endpoint := range endpoints {
 		if net.ParseIP(endpoint) == nil {
 			// It's not a valid IP address, so assume it's a DNS name, and try to resolve it,
 			// replacing its DNS name with its IP addresses in expandedEndpoints
 			ipAddrs, err := net.LookupHost(endpoint)
 			if err != nil {
-				return resolvedEndpoints, err
+				return resolvedEndpoints.List(), err
+			}
+			for _, ip := range ipAddrs {
+				resolvedEndpoints = resolvedEndpoints.Union(sets.NewString(ip))
 			}
-			resolvedEndpoints = append(resolvedEndpoints, ipAddrs...)
-
 		} else {
-			resolvedEndpoints = append(resolvedEndpoints, endpoint)
+			resolvedEndpoints = resolvedEndpoints.Union(sets.NewString(endpoint))
 		}
 	}
-	return resolvedEndpoints, nil
+	return resolvedEndpoints.List(), nil
 }

 /* ensureDNSRrsets ensures (idempotently, and with minimum mutations) that all of the DNS resource record sets for dnsName are consistent with endpoints.