Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Automated backport of #2543: Shortening datapath downtime for libreswan cable #2597

Merged
merged 1 commit into from
Jul 4, 2023
Merged

Automated backport of #2543: Shortening datapath downtime for libreswan cable #2597

merged 1 commit into from
Jul 4, 2023

Conversation

yboaron
Copy link
Contributor

@yboaron yboaron commented Jul 3, 2023

Backport of #2543 on release-0.14.

#2543: Shortening datapath downtime for libreswan cable

For details on the backport process, see the backport requests page.

@yboaron
Shortening datapath downtime for libreswan cable
a8a18c5 
Currently there is about 2 seconds of downtime in datapath for
libreswan cable when the gateway pod restarts.

When Pluto starts running [1] the IPsec datapath rules created by the
previous GW pod are cleared, and traffic is only recovered after
ConnectToEndpoint events are handled by the libreswan cable driver.

This PR reduces datapath downtime by:
A. Checking Pluto control socket status at faster rate
B. Starting Pluto right before the first ConnectToEndpoint event
   is handled by libreswan cable driver.

With this PR, the datapath downtime is reduced to ~0.5 seconds.

[1]
https://github.com/submariner-io/submariner/blob/devel/pkg/cable/libreswan/libreswan.go#L158

Signed-off-by: Yossi Boaron <yboaron@redhat.com>
@submariner-bot
Copy link
Contributor

🤖 Created branch: z_pr2597/yboaron/automated-backport-of-#2543-origin-release-0.14
🚀 Full E2E won't run until the "ready-to-test" label is applied. I will add it automatically once the PR has 2 approvals, or you can add it manually.

@submariner-bot submariner-bot added the ready-to-test When a PR is ready for full E2E testing label Jul 3, 2023
@nyechiel nyechiel mentioned this pull request Jul 4, 2023
Closed
@skitt skitt merged commit acce4f0 into submariner-io:release-0.14 Jul 4, 2023
@submariner-bot
Copy link
Contributor

🤖 Closed branches: [z_pr2597/yboaron/automated-backport-of-#2543-origin-release-0.14]

@dfarrell07 dfarrell07 added the release-note-needed Should be mentioned in the release notes label Jul 18, 2023
@tpantelis tpantelis mentioned this pull request Nov 2, 2023
Closed
@yboaron yboaron deleted the automated-backport-of-#2543-origin-release-0.14 branch February 14, 2024 12:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sridhargaddam sridhargaddam sridhargaddam approved these changes

@dfarrell07 dfarrell07 dfarrell07 approved these changes

@Oats87 Oats87 Awaiting requested review from Oats87 Oats87 is a code owner

@skitt skitt Awaiting requested review from skitt skitt is a code owner

@tpantelis tpantelis Awaiting requested review from tpantelis tpantelis is a code owner

Assignees
No one assigned
Labels
automated-backport ready-to-test When a PR is ready for full E2E testing release-note-handled release-note-needed Should be mentioned in the release notes
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@yboaron @submariner-bot @dfarrell07 @sridhargaddam @skitt @tpantelis