Admission Control Filter

CODEOWNERS

@@ -68,6 +68,8 @@ extensions/filters/common/original_src @snowp @klarose
 /*/extensions/common/aws @lavignes @mattklein123
 # adaptive concurrency limit extension.
 /*/extensions/filters/http/adaptive_concurrency @tonya11en @mattklein123
+# admission control extension.
+/*/extensions/filters/http/admission_control @tonya11en @mattklein123
 # http inspector
 /*/extensions/filters/listener/http_inspector @yxue @PiotrSikora @lizan
 # attribute context

api/BUILD

@@ -165,6 +165,7 @@ proto_library(
         "//envoy/extensions/compression/gzip/decompressor/v3:pkg",
         "//envoy/extensions/filters/common/fault/v3:pkg",
         "//envoy/extensions/filters/http/adaptive_concurrency/v3:pkg",
+        "//envoy/extensions/filters/http/admission_control/v3alpha:pkg",
         "//envoy/extensions/filters/http/aws_lambda/v3:pkg",
         "//envoy/extensions/filters/http/aws_request_signing/v3:pkg",
         "//envoy/extensions/filters/http/buffer/v3:pkg",

api/envoy/extensions/filters/http/adaptive_concurrency/v3/adaptive_concurrency.proto

@@ -5,7 +5,6 @@ package envoy.extensions.filters.http.adaptive_concurrency.v3;
 import "envoy/config/core/v3/base.proto";
 import "envoy/type/v3/percent.proto";
 
-import "google/api/annotations.proto";
 import "google/protobuf/duration.proto";
 import "google/protobuf/wrappers.proto";
 

api/envoy/extensions/filters/http/admission_control/v3alpha/BUILD

@@ -0,0 +1,13 @@
+# DO NOT EDIT. This file is generated by tools/proto_sync.py.
+
+load("@envoy_api//bazel:api_build_system.bzl", "api_proto_package")
+
+licenses(["notice"])  # Apache 2
+
+api_proto_package(
+    deps = [
+        "//envoy/config/core/v3:pkg",
+        "//envoy/type/v3:pkg",
+        "@com_github_cncf_udpa//udpa/annotations:pkg",
+    ],
+)

api/envoy/extensions/filters/http/admission_control/v3alpha/admission_control.proto

@@ -0,0 +1,62 @@
+syntax = "proto3";
+
+package envoy.extensions.filters.http.admission_control.v3alpha;
+
+import "envoy/config/core/v3/base.proto";
+import "envoy/type/v3/range.proto";
+
+import "google/api/annotations.proto";
+import "google/protobuf/duration.proto";
+import "google/protobuf/wrappers.proto";
+import "google/rpc/status.proto";
+
+import "udpa/annotations/migrate.proto";
+import "udpa/annotations/status.proto";
+import "validate/validate.proto";
+
+option java_package = "io.envoyproxy.envoy.extensions.filters.http.admission_control.v3alpha";
+option java_outer_classname = "AdmissionControlProto";
+option java_multiple_files = true;
+option (udpa.annotations.file_status).work_in_progress = true;
+option (udpa.annotations.file_status).package_version_status = ACTIVE;
+
+// [#protodoc-title: Admission Control]
+// [#extension: envoy.filters.http.admission_control]
+
+message AdmissionControl {
+  // Default method of specifying what constitutes a failed request. All status codes that
+  // indicate a failed request must be explicitly specified if not relying on the default
+  // values.
+  message DefaultEvaluationCriteria {
+    // If HTTP statuses are unspecified, defaults to 5xx.
+    repeated type.v3.Int32Range http_status = 1;
+
+    // GRPC status codes to consider as request successes. If unspecified, defaults to "OK".
+    repeated uint32 grpc_status = 2;
+  }
+
+  // If set to false, the admission control filter will operate as a pass-through filter. If the
+  // message is unspecified, the filter will be enabled.
+  config.core.v3.RuntimeFeatureFlag enabled = 1;
+
+  // Defines how a request is considered a success/failure.
+  oneof evaluation_criteria {
+    option (validate.required) = true;
+
+    DefaultEvaluationCriteria default_eval_criteria = 2;
+  }
+
+  // The sliding time window over which the success rate is calculated. The window is rounded to the
+  // nearest second. Defaults to 120s.
+  google.protobuf.Duration sampling_window = 3;
+
+  // Rejection probability is defined by the formula::
+  //
+  //     max(0, (rq_count - aggression_coefficient * rq_success_count) / (rq_count + 1))
+  //
+  // The coefficient dictates how aggressively the admission controller will throttle requests as
+  // the success rate drops. Lower values will cause throttling to kick in at higher success rates
+  // and result in more aggressive throttling. Any values less than 1.0, will be set to 1.0. If the
+  // message is unspecified, the coefficient is 2.0.
+  config.core.v3.RuntimeDouble aggression_coefficient = 4;
+}

api/versioning/BUILD

@@ -48,6 +48,7 @@ proto_library(
         "//envoy/extensions/compression/gzip/decompressor/v3:pkg",
         "//envoy/extensions/filters/common/fault/v3:pkg",
         "//envoy/extensions/filters/http/adaptive_concurrency/v3:pkg",
+        "//envoy/extensions/filters/http/admission_control/v3alpha:pkg",
         "//envoy/extensions/filters/http/aws_lambda/v3:pkg",
         "//envoy/extensions/filters/http/aws_request_signing/v3:pkg",
         "//envoy/extensions/filters/http/buffer/v3:pkg",

docs/root/configuration/http/http_filters/http_filters.rst

@@ -40,4 +40,5 @@ HTTP filters
 .. toctree::
   :hidden:
 
+  ../../../api-v3/extensions/filters/http/admission_control/v3alpha/admission_control.proto
   ../../../api-v3/extensions/filters/http/cache/v3alpha/cache.proto

generated_api_shadow/BUILD

@@ -34,6 +34,7 @@ proto_library(
         "//envoy/config/filter/dubbo/router/v2alpha1:pkg",
         "//envoy/config/filter/fault/v2:pkg",
         "//envoy/config/filter/http/adaptive_concurrency/v2alpha:pkg",
+        "//envoy/config/filter/http/admission_control/v2alpha:pkg",
         "//envoy/config/filter/http/buffer/v2:pkg",
         "//envoy/config/filter/http/compressor/v2:pkg",
         "//envoy/config/filter/http/cors/v2:pkg",
@@ -129,6 +130,7 @@ proto_library(
         "//envoy/extensions/common/tap/v3:pkg",
         "//envoy/extensions/filters/common/fault/v3:pkg",
         "//envoy/extensions/filters/http/adaptive_concurrency/v3:pkg",
+        "//envoy/extensions/filters/http/admission_control/v3alpha:pkg",
         "//envoy/extensions/filters/http/buffer/v3:pkg",
         "//envoy/extensions/filters/http/compressor/v3:pkg",
         "//envoy/extensions/filters/http/cors/v3:pkg",

source/extensions/extensions_build_config.bzl

@@ -41,6 +41,7 @@ EXTENSIONS = {
     #
 
     "envoy.filters.http.adaptive_concurrency":          "//source/extensions/filters/http/adaptive_concurrency:config",
+    "envoy.filters.http.admission_control":             "//source/extensions/filters/http/admission_control:config",
     "envoy.filters.http.aws_lambda":                    "//source/extensions/filters/http/aws_lambda:config",
     "envoy.filters.http.aws_request_signing":           "//source/extensions/filters/http/aws_request_signing:config",
     "envoy.filters.http.buffer":                        "//source/extensions/filters/http/buffer:config",

source/extensions/filters/http/admission_control/BUILD

@@ -0,0 +1,53 @@
+licenses(["notice"])  # Apache 2
+
+# HTTP L7 filter that probabilistically rejects requests based on upstream success-rate.
+# Public docs: docs/root/configuration/http_filters/admission_control.rst
+
+load(
+    "//bazel:envoy_build_system.bzl",
+    "envoy_cc_extension",
+    "envoy_cc_library",
+    "envoy_package",
+)
+
+envoy_package()
+
+envoy_cc_library(
+    name = "admission_control_filter_lib",
+    srcs = [
+        "admission_control.cc",
+        "thread_local_controller.cc",
+    ],
+    hdrs = [
+        "admission_control.h",
+        "thread_local_controller.h",
+    ],
+    deps = [
+        "//include/envoy/http:filter_interface",
+        "//include/envoy/runtime:runtime_interface",
+        "//source/common/common:cleanup_lib",
+        "//source/common/http:codes_lib",
+        "//source/common/runtime:runtime_lib",
+        "//source/extensions/filters/http:well_known_names",
+        "//source/extensions/filters/http/admission_control/evaluators:response_evaluator_lib",
+        "//source/extensions/filters/http/common:pass_through_filter_lib",
+        "@envoy_api//envoy/extensions/filters/http/admission_control/v3alpha:pkg_cc_proto",
+    ],
+)
+
+envoy_cc_extension(
+    name = "config",
+    srcs = ["config.cc"],
+    hdrs = ["config.h"],
+    security_posture = "unknown",
+    status = "alpha",
+    deps = [
+        "//include/envoy/registry",
+        "//source/common/common:enum_to_int",
+        "//source/extensions/filters/http:well_known_names",
+        "//source/extensions/filters/http/admission_control:admission_control_filter_lib",
+        "//source/extensions/filters/http/admission_control/evaluators:response_evaluator_lib",
+        "//source/extensions/filters/http/common:factory_base_lib",
+        "@envoy_api//envoy/extensions/filters/http/admission_control/v3alpha:pkg_cc_proto",
+    ],
+)