Create additional NEGs based on subnets in Node Topology CR. #2702
Conversation
sawsa307
commented
Oct 18, 2024
sawsa307
commented
- Query Node Topology CR for the current set of NEGs in the cluster.
- When ensureNetworkEndpointGroups(), ensure NEGs are properly provisioned in the non-default subnets as well.
k8s-ci-robot
added
the
cncf-cla: yes
k8s-ci-robot
added
the
size/XXL
k8s-ci-robot
added
the
do-not-merge/work-in-progress
sawsa307
force-pushed
the
create-non-default-neg
branch
from
2f593bb
to
29bc49a
Compare
k8s-ci-robot
added
size/L
k8s-ci-robot
removed
the
do-not-merge/work-in-progress
|
/assign @gauravkghildiyal |
sawsa307
force-pushed
the
create-non-default-neg
branch
from
29bc49a
to
8b82474
Compare
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: sawsa307 The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
sawsa307
force-pushed
the
create-non-default-neg
branch
2 times, most recently
from
644e229
to
264bd6c
Compare
|
/label tide/merge-method-squash |
k8s-ci-robot
added
the
tide/merge-method-squash
There was a problem hiding this comment.
Just addressed all the comments, @gauravkghildiyal could you take another look when you have time? Thank you!
|
Also, is this TODO something that we plan on fixing independently? I guess as long as the MSC flags are disabled, this shouldn't cause any problems but please do confirm. Thanks! |
k8s-ci-robot
added
size/XL
Yes I'm planning to tackle those TODO in follow up PRs(like #2728), but if you would like, I can also include some of them in this PR as well. |
sawsa307
force-pushed
the
create-non-default-neg
branch
2 times, most recently
from
4bc66aa
to
6d44fe7
Compare
pkg/utils/zonegetter/zone_getter.go
Outdated
| nodeTopologyNotSynced := z.nodeTopologyInformer != nil && !z.nodeTopologyHasSynced() | ||
| if z.onlyIncludeDefaultSubnetNodes || z.nodeTopologyInformer == nil || nodeTopologyNotSynced { | ||
| if z.nodeTopologyInformer == nil || nodeTopologyNotSynced { | ||
| logger.Info("NodeTopologyInformer is not ready, fall back to use default subnet only") |
There was a problem hiding this comment.
I'd recommend
logger.Info("Falling back to only using default subnet", "z.onlyIncludeDefaultSubnetNodes", z.onlyIncludeDefaultSubnetNodes, <Rest of the variables influencing this decision>)
There was a problem hiding this comment.
It may be useful to know what was the reason why we are using "default subnet only", which means it's worth logging ALL the variables which went into that decision. So maybe we don't have an if !z.nodeTopologyHasSynced() { condition for the logs, and instead log:
logger.Info("Falling back to only using default subnet when listing nodes", "z.onlyIncludeDefaultSubnetNodes", z.onlyIncludeDefaultSubnetNodes, "z.nodeTopologyHasSynced()", nodeTopologyHasSynced)
On a related note, it plan on using or logging z.nodeTopologyHasSynced(), it may be useful to store it in a variable before. Reason being that since it's a function, it may return a different value between two independent invocations -- if that ever happens for some reason, our logs would simply end up confusing us.
* Remove NodeTopologyInformer from controller context hasSynced so it won't block controllers from starting up in case of the CRD or CR does not exist.
* Query Node Topology CR for the current set of NEGs in the cluster. * When ensureNetworkEndpointGroups(), ensure NEGs are properly provisioned in the non-default subnets as well.
sawsa307
force-pushed
the
create-non-default-neg
branch
from
6d44fe7
to
055d691
Compare
| namer negtypes.NetworkEndpointGroupNamer | ||
| l4Namer namer.L4ResourcesNamer |
There was a problem hiding this comment.
do we need both. the namer should be L4 / L7 agnostic. The right namer should be set on transactionSyncer creation
There was a problem hiding this comment.
We need both since they have different interface and naming schema.
For L4 NEGs, the NEG name is determined by L4Backend(), while NEG() is only for L7 NEGs. As a result, I also separated the naming schema for L4 and L7 non-default subnet NEGs as L4NonDefaultSubnetNEG and NonDefaultSubnetNEG.
There was a problem hiding this comment.
Interestingly, because of this complication of having two separate L4 and L7 namers, even the existing code has a bug at:
ingress-gce/pkg/neg/manager.go
Line 246 in 169b2c0
where this value determines the value of customName bool. The way our new logic is, this should lead to customName always being true for L4 NEGs and thus it would end up using the L7 custom namer for L4 NEGs.
Do we want to make L4 and L7 namers implement the following?
NonDefaultSubnetNEG(namespace, name, subnetName string, port int32) string
NonDefaultSubnetCustomNEG(customNEGName, subnetName string) (string, error)
- The
portvalue will not be used for L4 - Because we will set customNEG for L4 to always be false, the L4
NonDefaultSubnetCustomNEGshould also never be used.
|
@gauravkghildiyal @swetharepakula This PR is ready for another round of review, please take a look, thank you! |
|
Github is just the worst at showing newly added comments so sharing the links: |
Addressed both comments, please take a look! @gauravkghildiyal |
