Changes to make lighthouse MCS API complaint #230
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
🤖 Created branch: z_pr230/vthapar/mcs-compliance |
4e09002 to
a99f141
Compare
tpantelis
requested changes
Aug 27, 2024
a99f141 to
92e5b51
Compare
tpantelis
requested changes
Aug 28, 2024
lighthouse/mcs-compliance.md
Outdated
Comment on lines
18
to
19
| When creating `ServiceExport`, users will have option to add annotation for enabling VIP for that Service and another | ||
| to use PodIPs in `EndpointSlices`. These annotations will also be added to the aggregated `ServiceImport`. |
There was a problem hiding this comment.
Suggested change
| When creating `ServiceExport`, users will have option to add annotation for enabling VIP for that Service and another | |
| to use PodIPs in `EndpointSlices`. These annotations will also be added to the aggregated `ServiceImport`. | |
| When creating `ServiceExport`, users will have the option to add an annotation for enabling VIP for that Service. This annotation will also be added to the aggregated `ServiceImport`. |
lighthouse/mcs-compliance.md
Outdated
Comment on lines
21
to
23
| Configuration flags will also be added to `Submariner` and `ServiceDiscovery` CRDs, and `subctl` to set these options at | ||
| global level. This is for deployments where user only wants to use one specific option and doesn't want to set the | ||
| annotation explicitly for each `ServiceExport`. |
There was a problem hiding this comment.
Suggested change
| Configuration flags will also be added to `Submariner` and `ServiceDiscovery` CRDs, and `subctl` to set these options at | |
| global level. This is for deployments where user only wants to use one specific option and doesn't want to set the | |
| annotation explicitly for each `ServiceExport`. | |
| A configuration flag will also be added to the `Submariner` and `ServiceDiscovery` CRDs, and `subctl` to set the options at | |
| the global level. This is for deployments where the user wants the option set for all exported Services and doesn't want to set the | |
| annotation explicitly for each `ServiceExport`. |
lighthouse/mcs-compliance.md
Outdated
Comment on lines
67
to
70
| 4. If `ServiceImport` exists, compare the combination of annotations on `ServiceExport` and global flags against | ||
| annotations in `ServiceImport` for any conflicts. | ||
| 5. In case of conflict, set `ServiceExportConflict` condition on the `ServiceExport` and attempt conflict resolution. | ||
| 6. In case conflict can't be resolved, don't export the service. |
There was a problem hiding this comment.
Suggested change
| 4. If `ServiceImport` exists, compare the combination of annotations on `ServiceExport` and global flags against | |
| annotations in `ServiceImport` for any conflicts. | |
| 5. In case of conflict, set `ServiceExportConflict` condition on the `ServiceExport` and attempt conflict resolution. | |
| 6. In case conflict can't be resolved, don't export the service. | |
| 4. If a `ServiceImport` exists, compare the annotation on the `ServiceExport` and global flag against | |
| the annotation in `ServiceImport` for any conflicts. | |
| 5. In case of conflict, set `ServiceExportConflict` condition on the `ServiceExport` and continue with export. |
Currently Lighthouse implementation of MCS API differs on 2 key points: 1. There is no VIP allocated for a MultiCluster Service. 2. EndpointSlices don't carry PodIPs for ClusterIP services. This Enhancement proposes design changes to support above two in a user configurable way without impacting existing deployments. Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
92e5b51 to
1a0cc91
Compare
tpantelis
approved these changes
Aug 29, 2024
vthapar
added a commit
to vthapar/submariner-operator
that referenced
this pull request
Sep 2, 2024
Add fields to CRDs to support ClustersetIPs Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
vthapar
added a commit
to vthapar/submariner-operator
that referenced
this pull request
Sep 2, 2024
Add fields to CRDs to support ClustersetIPs Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
yboaron
reviewed
Sep 2, 2024
| 4. When Service is exported on subsequent clusters, no VIP allocation is done if VIP already present on `ServiceImport`. | ||
| 5. VIP is deallocated only when `ServiceImport` is deleted i.e. `Service` or `ServiceExport` are no longer present on any | ||
| of the clusters. | ||
| 6. If Submariner is uninstalled on the cluster that allocated a given VIP, VIP is not changed on `ServiceImport`. |
There was a problem hiding this comment.
Some corner case Qs:
Regarding
If Submariner is uninstalled on the cluster that allocated a given VIP, VIP is not changed on ServiceImport
Don't we delete all serviceimport CRs when submariner is uninstalled ?
Regarding
VIP allocation is done by the first cluster to export the Service.
do we need to implement some lock mechanism to resolve race condition in case two clusters export service at the same time ?
There was a problem hiding this comment.
No - that’s handled by using K8s retry on conflict functionality.
There was a problem hiding this comment.
Some corner case Qs:
Regarding
If Submariner is uninstalled on the cluster that allocated a given VIP, VIP is not changed on ServiceImportDon't we delete all serviceimport CRs when submariner is uninstalled ?
Aggregated ServiceImport will still exist if service is exported on other clusters. Deletion will only happen if this was the last cluster to export service, in which case it will be deleted. Point here is that if the cluster allocating VIP is no longer there [deleted or submariner removed] we don't try to change the VIP as it will impact existing clients.Do we expect that cluster will get the same VIPs cidr subset after reinstall ?
No. We don't make any assumptions and it is also possible that some other cluster gets that CIDR. We can see this happen with Globalnet.Regarding
VIP allocation is done by the first cluster to export the Service.do we need to implement some lock mechanism to resolve race condition in case two clusters export service at the same time ?
Not needed. As both try to create Aggregated ServiceImport, only one will be able to do so. Other will get conflict withResource already existserror.
vthapar
added a commit
to vthapar/submariner-operator
that referenced
this pull request
Sep 3, 2024
Add fields to CRDs to support ClustersetIPs Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
yboaron
approved these changes
Sep 3, 2024
|
🤖 Closed branches: [z_pr230/vthapar/mcs-compliance] |
vthapar
added a commit
to vthapar/submariner-operator
that referenced
this pull request
Sep 4, 2024
Add fields to CRDs to support ClustersetIPs Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
23 tasks
vthapar
added a commit
to vthapar/submariner-operator
that referenced
this pull request
Sep 6, 2024
Add fields to CRDs to support ClustersetIPs Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
vthapar
added a commit
to submariner-io/submariner-operator
that referenced
this pull request
Sep 6, 2024
Add fields to CRDs to support ClustersetIPs Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
vthapar
added a commit
to vthapar/subctl
that referenced
this pull request
Sep 24, 2024
1. Add ClustersetIP flags to deploy-broker and join. 2. Add ClustersetIP CIDRs to config CRs. 3. Show clustersetupCIDR in `show networks` output. 4. Add use-clusterset-ip flag to `service export` Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
vthapar
added a commit
to vthapar/subctl
that referenced
this pull request
Sep 25, 2024
1. Add ClustersetIP flags to deploy-broker and join. 2. Add ClustersetIP CIDRs to config CRs. 3. Show clustersetupCIDR in `show networks` output. 4. Add use-clusterset-ip flag to `service export` Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
vthapar
added a commit
to vthapar/subctl
that referenced
this pull request
Sep 25, 2024
1. Add ClustersetIP flags to deploy-broker and join. 2. Add ClustersetIP CIDRs to config CRs. 3. Show clustersetupCIDR in `show networks` output. 4. Add use-clusterset-ip flag to `service export` Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
vthapar
added a commit
to vthapar/subctl
that referenced
this pull request
Sep 25, 2024
1. Add ClustersetIP flags to deploy-broker and join. 2. Add ClustersetIP CIDRs to config CRs. 3. Show clustersetupCIDR in `show networks` output. 4. Add use-clusterset-ip flag to `service export` Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
tpantelis
pushed a commit
to vthapar/subctl
that referenced
this pull request
Sep 25, 2024
1. Add ClustersetIP flags to deploy-broker and join. 2. Add ClustersetIP CIDRs to config CRs. 3. Show clustersetupCIDR in `show networks` output. 4. Add use-clusterset-ip flag to `service export` Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
tpantelis
pushed a commit
to submariner-io/subctl
that referenced
this pull request
Sep 25, 2024
1. Add ClustersetIP flags to deploy-broker and join. 2. Add ClustersetIP CIDRs to config CRs. 3. Show clustersetupCIDR in `show networks` output. 4. Add use-clusterset-ip flag to `service export` Refer: submariner-io/enhancements#230 Signed-off-by: Vishal Thapar <5137689+vthapar@users.noreply.github.com>
tpantelis
added a commit
to tpantelis/submariner-website
that referenced
this pull request
Sep 26, 2024
Enhancement submariner-io/enhancements#230 Signed-off-by: Tom Pantelis <tompantelis@gmail.com>
tpantelis
added a commit
to tpantelis/submariner-website
that referenced
this pull request
Sep 26, 2024
Enhancement submariner-io/enhancements#230 Signed-off-by: Tom Pantelis <tompantelis@gmail.com>
tpantelis
added a commit
to tpantelis/submariner-website
that referenced
this pull request
Oct 7, 2024
Enhancement submariner-io/enhancements#230 Signed-off-by: Tom Pantelis <tompantelis@gmail.com>
tpantelis
added a commit
to submariner-io/submariner-website
that referenced
this pull request
Oct 7, 2024
Enhancement submariner-io/enhancements#230 Signed-off-by: Tom Pantelis <tompantelis@gmail.com>
tpantelis
added a commit
to tpantelis/submariner-website
that referenced
this pull request
Oct 25, 2024
Enhancement submariner-io/enhancements#230 Signed-off-by: Tom Pantelis <tompantelis@gmail.com>
dfarrell07
pushed a commit
to submariner-io/submariner-website
that referenced
this pull request
Oct 25, 2024
Enhancement submariner-io/enhancements#230 Signed-off-by: Tom Pantelis <tompantelis@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Currently Lighthouse implementation of MCS API differs on 2 key points:
This Enhancement proposes design changes to support above two in a user configurable way without impacting existing deployments.