Improve traffic-managers podCIDR discovery #2093
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
thallgren
added
bug
josecv
reviewed
Sep 17, 2021
charts/telepresence/values.yaml
Outdated
| # nodePodCIDRs extract CIDRs from the podCIDR and podCIDRs field of the Node Spec. | ||
| # coverPodIPs extract IPs from the podIP and podIPs field of the Pod Status and compute the CIDRs needed to cover those IPs. | ||
| # environment use CIDRs listed in the space separated POD_CIDRS environment variable verbatim. | ||
| # auto first tru nodePodCIDRs and if that fails, tru coverPodIPs |
There was a problem hiding this comment.
typo -- it says tru instead of try
| informer cache.SharedIndexInformer | ||
| subnets []*net.IPNet | ||
| changed time.Time | ||
| lock sync.Mutex // Protects all access to ipsMap |
There was a problem hiding this comment.
should this read Protects all access to subnets?
| return changed | ||
| } | ||
|
|
||
| func (w *nodeWatcher) watch(ctx context.Context) { |
There was a problem hiding this comment.
maybe i'm just confused but it seems like watch is never invoked?
Comment on lines
64
to
108
| func (w *nodeWatcher) viable(ctx context.Context) bool { | ||
| nodes, err := w.lister.List(labels.Everything()) | ||
| if err != nil { | ||
| dlog.Errorf(ctx, "unable to list nodes: %v", err) | ||
| return false | ||
| } | ||
|
|
||
| // Create the initial snapshot | ||
| w.lock.Lock() | ||
| defer w.lock.Unlock() | ||
| changed := false | ||
| dlog.Infof(ctx, "Scanning %d nodes", len(nodes)) | ||
| for _, node := range nodes { | ||
| if w.addLocked(nodeSubnets(ctx, node)) { | ||
| changed = true | ||
| } | ||
| } | ||
| if changed { | ||
| dlog.Infof(ctx, "Found %d subnets", len(w.subnets)) | ||
| w.changed = time.Now() | ||
| } else { | ||
| dlog.Info(ctx, "No subnets found") | ||
| } | ||
| return changed | ||
| } |
There was a problem hiding this comment.
it seems like this function combines initialization with a precondition check (i.e. "Are we actually able to watch subnets from nodes?") -- that's okay, but calling it twice in a row will make the second call return false, no? Maybe we should short-circuit return if w.subnets is already populated -- after all, if they're there then getting them is definitely viable
| @@ -0,0 +1,247 @@ | |||
| package cluster | |||
There was a problem hiding this comment.
same comments apply here as for the nodewatcher :)
thallgren
force-pushed
the
thallgren/replace-agent-kates
branch
2 times, most recently
from
b7b0415 to
497ec40
Compare
The kates package provides nice and simple to use generalisations, but it also introduces overhead and removes the ability to control some aspects of watching. This commit replaces the traffic-manager's use of the kates package with more standard k8s APIs. Signed-off-by: Thomas Hallgren <[email protected]>
Fixes the ``` goroutine "/daemon/watch-cluster-info" exited with error: PANIC: close of closed channel ``` that happens the second time the traffic-manager reports status info. Signed-off-by: Thomas Hallgren <[email protected]>
Adds two environment variables to the traffic manager that controls how it discovers what subnets the cluster is using for the pods. The environment variables are configurable in the Helm chart. Signed-off-by: Thomas Hallgren <[email protected]>
Signed-off-by: Thomas Hallgren <[email protected]>
thallgren
force-pushed
the
thallgren/replace-agent-kates
branch
from
497ec40 to
3c13df6
Compare
|
The |
Creates a new `subnet.Set` datatype with methods for adding, deleting, and appending `net.IPNet` instances. Signed-off-by: Thomas Hallgren <[email protected]>
Signed-off-by: Thomas Hallgren <[email protected]>
Signed-off-by: Thomas Hallgren <[email protected]>
Signed-off-by: Thomas Hallgren <[email protected]>
thallgren
force-pushed
the
thallgren/replace-agent-kates
branch
from
3c13df6 to
07706f3
Compare
josecv
approved these changes
Sep 20, 2021
| @@ -79,7 +79,7 @@ podCIDRs: [] | |||
| # nodePodCIDRs extract CIDRs from the podCIDR and podCIDRs field of the Node Spec. | |||
| # coverPodIPs extract IPs from the podIP and podIPs field of the Pod Status and compute the CIDRs needed to cover those IPs. | |||
| # environment use CIDRs listed in the space separated POD_CIDRS environment variable verbatim. | |||
| # auto first tru nodePodCIDRs and if that fails, tru coverPodIPs | |||
| # auto first try nodePodCIDRs and if that fails, tru coverPodIPs | |||
thallgren
force-pushed
the
thallgren/replace-agent-kates
branch
2 times, most recently
from
0045fb6 to
07706f3
Compare
The 2 minutes timeout would sometimes fail. Signed-off-by: Thomas Hallgren <[email protected]>
If the read at line 901 returned an error other than `io.EOF`, the surrounding loop would continue in infinity. This commit ensures that the loop brakes on any error. Signed-off-by: Thomas Hallgren <[email protected]>
thallgren
force-pushed
the
thallgren/replace-agent-kates
branch
from
f2326be to
b592579
Compare
Signed-off-by: Thomas Hallgren <[email protected]>
thallgren
force-pushed
the
thallgren/replace-agent-kates
branch
from
b592579 to
3fd1746
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
This PR contains two improvements to the pod CIDR discovery mechanism.
Checklist
./CHANGELOG.md.