tcproute: add support for round-robin load balancing #148
Conversation
k8s-ci-robot
added
the
cncf-cla: yes
k8s-ci-robot
added
the
size/XL
aryan9600
force-pushed
the
tcp-rr
branch
2 times, most recently
from
bb64438
to
2f41083
Compare
There was a problem hiding this comment.
This looks great, thank you for jumping on this!
Many of my comments are about small improvements or idioms but nothing major. While I think in the future we can probably take a look at other TCP implementations and take some inspiration there, I think it's reasonable to have this as a first step which gives us something that works and then work iteratively up from here.
I'm specifically appreciative of the comments you've been adding, these can be very helpful to future readers of the code and make our codebase more inviting/inclusive for the community.
As an aside and unrelated to any specific bit of code or suggestion: just a general reminder that we're in a memory constrained environment of 512 bytes stack memory with ebpf programs, which felt kind of relevant to me while reading this PR as we've added quite a bit to those programs here. I don't think there's any immediate action to take, as I don't think we're anywhere near in danger of exhausting that limit right now but just something to think about as we continue to add functionality as if we can do some of our optimizations up front we can potentially reduce the size of refactors later.
shaneutt
added
area/dataplane
area/controlplane
area/maintenance
priority/important-soon
There was a problem hiding this comment.
Looks really good @aryan9600!!! Mostly nit's and some questions for yah which might result in some follow up issues
Thanks for all the hard work here!
dataplane/ebpf/src/egress/tcp.rs
Outdated
| @@ -68,6 +71,39 @@ pub fn handle_tcp_egress(ctx: TcContext) -> Result<i32, i64> { | |||
| unsafe { (*tcp_hdr).check = 0 }; | |||
|
|
|||
| // TODO: connection tracking cleanup https://github.com/kubernetes-sigs/blixt/issues/85 | |||
There was a problem hiding this comment.
So the TODO was to have proper conntrack mechanisms, i.e connection tracktion entries should time out at some point if there's and error in the flow etc
| @@ -51,6 +54,40 @@ impl BackendService { | |||
| backends_map.remove(&key)?; | |||
| let mut gateway_indexes_map = self.gateway_indexes_map.lock().await; | |||
| gateway_indexes_map.remove(&key)?; | |||
|
|
|||
| // Delete all entries in our tcp connection tracking map that this backend | |||
There was a problem hiding this comment.
Do we need to think about adding a "timeout" at some point so that stale threads are automatically pruned?
There was a problem hiding this comment.
are you talking about deleting stale TCP connections based on a certain period of inactivity? this got me thinking about whether we should (and how) deal with TCP keepalive?
There was a problem hiding this comment.
Correct, I'm not even sure we need that mechanism yet just thinking about it, Let's defer for a follow up.
Add support for round-robin load balancing for `TCPRoute`. This enables mutliple backend references in a UDPRoute object, with traffic being distributed to each backend in a round-robin fashion. A new BPF map `TCP_CONNECTIONS` was introduced to help keep track of active TCP connections, with its key storing the client <ip:port> identifier and the value storing the backend's <ip:port> along with the state of the connection. Signed-off-by: Sanskar Jaiswal <[email protected]>
Signed-off-by: Sanskar Jaiswal <[email protected]>
Signed-off-by: Sanskar Jaiswal <[email protected]>
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: aryan9600, astoycos The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
|
/lgtm |
k8s-ci-robot
added
the
lgtm
Add support for round-robin load balancing for
TCPRoute. This enables mutliple backend references in a UDPRoute object, with traffic being distributed to each backend in a round-robin fashion.A new BPF map
TCP_CONNECTIONSwas introduced to help keep track of active TCP connections, with its key storing the clien <ip:port> identifier and the value storing the backend's <ip:port> along with the state of the connection.Fixes #119
Follow up items:
TCP_CONNECTIONSto be more generic; get rid ofBLIXT_CONNTRACKand refactor udp ingress and icmp egress to use the new generic map