envoy icon indicating copy to clipboard operation
envoy copied to clipboard

Published 20 hours ago verified publisher icon envoyproxy

local rate limit: add cross local cluster rate limit support

Open wbpcode opened this issue 1 year ago • 3 comments

Commit Message: local rate limit: add cross local cluster rate limit support Additional Description:

Envoy provides lots of rate limit related filters/features. The global rate limit provides the most powerful feature. But it also introduce additional dependencies (rate limit server, redis, etc) and latency (additional calling to rate limit server).

The local rate limit is more stable and has better performance, and has no dependency to external server. But the local rate limit is work at single instance or connection scope. That means that if local rate limit is used, we cannot get a stable total limit for a Envoy cluster. Because the total limit of local rate limit filter is single instance limit multiply the instance number of Envoy. But the instance number may changed when the cluster scaling.

This PR add a new interesting feature. It make the local rate limit filter could aware the membership of the local cluster (the cluster contains current Envoy self). That means the local rate limit could compute it's tokens based on the membership of local cluster and achieve the target to share the total limit between multiple Envoy instances (a Envoy cluster).

See #34230 for more discussion.

Risk Level: low. (nothing will be changed if we don't enable the feature explicitly) Testing: unit. Docs Changes: n/a. Release Notes: n/a. Platform Specific Features: n/a.

wbpcode avatar May 21 '24 12:05 wbpcode

CC @envoyproxy/api-shepherds: Your approval is needed for changes made to (api/envoy/|docs/root/api-docs/). envoyproxy/api-shepherds assignee is @markdroth CC @envoyproxy/api-watchers: FYI only for changes made to (api/envoy/|docs/root/api-docs/).

:cat:

Caused by: https://github.com/envoyproxy/envoy/pull/34276 was opened by wbpcode.

see: more, trace.

repokitteh-read-only[bot] avatar May 21 '24 12:05 repokitteh-read-only[bot]

Can we have Tianyu take a pass and then I will send to a maintainer?

jmarantz avatar May 29 '24 12:05 jmarantz

Seems @markdroth is busy recently, re-assign this to @adisuissa for API review.

wbpcode avatar May 30 '24 01:05 wbpcode

/retest

wbpcode avatar Jun 03 '24 13:06 wbpcode

@adisuissa looks like this is ready for review - the main merge is just for review notes

alyssawilk avatar Jun 10 '24 12:06 alyssawilk

One other idea: will it be possible to redesign this so that each instance owns a reference to the endpointStats() object or the membership_total object of the static local cluster, and when tokensPerFill is called, it will fetch the current number of endpoints?

It's my initial implementation when doing the POC. It's actually simpler but means it's hard to use different algorithms to calculate the ratio. For example, we may want take the weight into the account in the future. Current design provides a well defined interface and abstraction for more complex share calculating.

wbpcode avatar Jun 12 '24 02:06 wbpcode

/retest

wbpcode avatar Jun 14 '24 17:06 wbpcode