gke-autoneg-controller icon indicating copy to clipboard operation
gke-autoneg-controller copied to clipboard

Published 20 hours ago verified publisher icon GoogleCloudPlatform

New configuration annotations

Open soellman opened this issue 3 years ago • 4 comments

With #34 merged, we have a new configuration annotation (controller.autoneg.dev/neg) that exposes the full configuration surface as json.

I've been considering a simpler interface for those who don't need that full flexibility, specifically targeting (what I assume is) the basic case of a single-port service, needing only two configuration options: controller.autoneg.dev/backend-service:<name> (optional, defaulting to the name of the k8s service) controller.autoneg.dev/max-rate-per-endpoint:<number> OR controller.autoneg.dev/max-connections-per-endpoint:<integer>

Thoughts?

soellman avatar Aug 05 '21 11:08 soellman

@fdfzcq Do you and/or Fabric have thoughts here? With the new service name defaulting, I think you would need only a single annotation (controller.autoneg.dev/max-rate-per-endpoint:<number>).

soellman avatar Aug 17 '21 12:08 soellman

@soellman Sorry I totally missed this question :sweat_smile: We will discuss in the team and get back to you!

fdfzcq avatar Sep 21 '21 10:09 fdfzcq

I think there is an opportunity here to make the setup even cleaner. Today, a full setup for a single port would look something like this:

apiVersion: v1
kind: Service
metadata:
  name: fabric-test
  namespace: fabric
  annotations:
    cloud.google.com/neg: '{"exposed_ports":{"5990":{}}}'
    controller.autoneg.dev/neg: '{"backend_services":{"5990":[{"max_rate_per_endpoint":800}]}}'
  labels:
    app: fabric-test
spec:
  selector:
    app: fabric-test
  type: ClusterIP
  clusterIP: None
  ports:
  - name: http
    port: 8080
    protocol: TCP
  - name: grpc
    port: 5990
    protocol: TCP

And it's for example not great that we need to specify the port number 5990 in three different places to make it work. For our use-case, we usually also have multiple ports listed while we only care about one being exposed (for now at least).

One possible simplification might be if autoneg also could help with setting the cloud.google.com/neg annotation on the service. So the flow would look something like:

  1. autoneg sees some controller.autoneg.dev annotation(s)
  2. autoneg sets the cloud.google.com/neg annotation accordingly
  3. ingress-gce sees the cloud.google.com/neg annotation and creates the NEGs and sets cloud.google.com/neg-status
  4. autoneg sees the cloud.google.com/neg-status and finally can add the NEGs to the backend service accordingly

This flow together with utilization of named ports can probably simplify things all the way down to something like this:

apiVersion: v1
kind: Service
metadata:
  name: fabric-test
  namespace: fabric
  annotations:
    controller.autoneg.dev/port-name: grpc
    controller.autoneg.dev/max-rate-per-endpoint: 800
  labels:
    app: fabric-test
spec:
  selector:
    app: fabric-test
  type: ClusterIP
  clusterIP: None
  ports:
  - name: http
    port: 8080
    protocol: TCP
  - name: grpc
    port: 5990
    protocol: TCP

And for other cases we could have options like for example: controller.autoneg.dev/port-names: grpc,http, controller.autoneg.dev/port-names: '["grpc","http"'] controller.autoneg.dev/port: 5990, controller.autoneg.dev/ports: '["5990","8080"']

erikjoh avatar Sep 23 '21 11:09 erikjoh

Erik I think that's a great idea! Users can still manually set the cloud.google.com/neg and controller.autoneg.dev/neg annotations as they like.

soellman avatar Sep 28 '21 15:09 soellman