device-injector: add network device injection.

klihub · klihub · commit 0a960437bb20 · 2025-10-15T17:33:42.000+03:00
Signed-off-by: Krisztian Litkey &lt;krisztian.litkey@intel.com&gt;
diff --git a/plugins/device-injector/device-injector.go b/plugins/device-injector/device-injector.go
@@ -47,6 +47,10 @@ const (
 	ioPrioKey = "io-priority.noderesource.dev"
 	// Deprecated: Prefix of the key used for I/O priority adjustment.
 	oldIoPrioKey = "io-priority.nri.io"
+	// Prefix of the key used for network device injection.
+	netDeviceKey = "network-devices.noderesource.dev"
+	// Deprecated: Prefix of the key used for network device injection.
+	oldNetDeviceKey = "network-devices.nri.io"
 )
 
 var (
@@ -79,6 +83,12 @@ type ioPrio struct {
 	Priority int32  `json:"priority"`
 }
 
+// a network device to inject
+type netDevice struct {
+	HostIf string `json:"hostIf"`
+	Name   string `json:"name"`
+}
+
 // our injector plugin
 type plugin struct {
 	stub stub.Stub
@@ -108,6 +118,10 @@ func (p *plugin) CreateContainer(_ context.Context, pod *api.PodSandbox, ctr *ap
 		return nil, nil, err
 	}
 
+	if err := injectNetDevices(pod, ctr, adjust); err != nil {
+		return nil, nil, err
+	}
+
 	if verbose {
 		dump(containerName(pod, ctr), "ContainerAdjustment", adjust)
 	}
@@ -286,6 +300,51 @@ func parseIOPriority(ctr string, annotations map[string]string) (*ioPrio, error)
 	return priority, nil
 }
 
+func injectNetDevices(pod *api.PodSandbox, ctr *api.Container, a *api.ContainerAdjustment) error {
+	devices, err := parseNetDevices(ctr.Name, pod.Annotations)
+	if err != nil {
+		return err
+	}
+
+	if len(devices) == 0 {
+		log.Debugf("%s: no network devices annotated...", containerName(pod, ctr))
+		return nil
+	}
+
+	if verbose {
+		dump(containerName(pod, ctr), "annotated network devices", devices)
+	}
+
+	for _, d := range devices {
+		a.AddLinuxNetDevice(d.HostIf, &api.LinuxNetDevice{
+			Name: d.Name,
+		})
+		if !verbose {
+			log.Infof("%s: injected network device %q -> %q...", containerName(pod, ctr),
+				d.HostIf, d.Name)
+		}
+	}
+
+	return nil
+}
+
+func parseNetDevices(ctr string, annotations map[string]string) ([]*netDevice, error) {
+	var (
+		devices []*netDevice
+	)
+
+	annotation := getAnnotation(annotations, netDeviceKey, oldNetDeviceKey, ctr)
+	if annotation == nil {
+		return nil, nil
+	}
+
+	if err := yaml.Unmarshal(annotation, &devices); err != nil {
+		return nil, fmt.Errorf("invalid net device annotation %q: %w", string(annotation), err)
+	}
+
+	return devices, nil
+}
+
 func getAnnotation(annotations map[string]string, mainKey, oldKey, ctr string) []byte {
 	for _, key := range []string{
 		mainKey + "/container." + ctr,
