proxy-lifecycle: add HTTP Server with endpoints for proxy lifecycle shutdown #115
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
mikemorris
force-pushed
the
proxy-lcm/shutdown
branch
from
5a3d46d to
5be431b
Compare
mikemorris
force-pushed
the
proxy-lcm/shutdown-http-endpoints
branch
from
ada8d83 to
47d0424
Compare
mikemorris
force-pushed
the
proxy-lcm/shutdown
branch
from
5be431b to
1ffb8ac
Compare
mikemorris
force-pushed
the
proxy-lcm/shutdown-http-endpoints
branch
2 times, most recently
from
a5bd187 to
a6e6f0a
Compare
4 tasks
mikemorris
force-pushed
the
proxy-lcm/shutdown-http-endpoints
branch
from
e824175 to
52c214d
Compare
mikemorris
commented
May 30, 2023
pkg/consuldp/consul_dataplane.go
Outdated
Comment on lines
228
to
247
| case <-cdp.xdsServerExited(): | ||
| if err := proxy.Stop(); err != nil { | ||
| // Initiate graceful shutdown of Envoy, kill if error | ||
| if err := proxy.Quit(); err != nil { | ||
| cdp.logger.Error("failed to stop proxy", "error", err) | ||
| if err := proxy.Kill(); err != nil { | ||
| cdp.logger.Error("failed to kill proxy", "error", err) | ||
| } | ||
| } | ||
| doneCh <- errors.New("xDS server exited unexpectedly") | ||
| case <-cdp.metricsConfig.metricsServerExited(): | ||
| doneCh <- errors.New("metrics server exited unexpectedly") | ||
| case <-cdp.lifecycleConfig.lifecycleServerExited(): | ||
| // Initiate graceful shutdown of Envoy, kill if error | ||
| if err := proxy.Quit(); err != nil { | ||
| cdp.logger.Error("failed to stop proxy", "error", err) | ||
| if err := proxy.Kill(); err != nil { | ||
| cdp.logger.Error("failed to kill proxy", "error", err) | ||
| } | ||
| } | ||
| doneCh <- errors.New("proxy lifecycle maangement server exited unexpectedly") |
There was a problem hiding this comment.
This should be the only change to existing logic aside from introducing the new proxy lifecycle management server exposing the /shutdown endpoint - attempting to cleanly exit the Envoy process if a subprocess exits unexpectedly instead of the prior hard kill.
mikemorris
commented
May 30, 2023
mikemorris
commented
May 30, 2023
| url := fmt.Sprintf("http://127.0.0.1:%d%s", port, m.gracefulShutdownPath) | ||
| log.Printf("sending request to %s\n", url) | ||
|
|
||
| resp, err := http.Get(url) |
There was a problem hiding this comment.
Could possibly add some way to check that the lifecycle management server blocks for c.shutdownGracePeriod seconds here before calling Proxy.Quit(), but not sure how to best implement that in a non-flaky way.
mikemorris
changed the title
nathancoleman
requested changes
May 31, 2023
| @@ -32,7 +32,7 @@ jobs: | |||
| - uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0 | |||
| with: | |||
| go-version: ${{ needs.get-go-version.outputs.go-version }} | |||
| - run: go test ./... | |||
| - run: go test ./... -p 1 # disable parallelism to avoid port conflicts from default metrics and lifecycle server configuration | |||
There was a problem hiding this comment.
What kind of impact does this have on the runtime for these tests?
There was a problem hiding this comment.
I'd like to clean this up, but skipped for now in the interest of expediency. It didn't feel substantial enough to warrant the effort at this time, as the full suite still completes in under a minute.
Comment on lines
+304
to
+301
| AdminAddr: cdp.cfg.Envoy.AdminBindAddress, | ||
| AdminBindPort: cdp.cfg.Envoy.AdminBindPort, |
There was a problem hiding this comment.
Curious why these are showing up in this PR
There was a problem hiding this comment.
It felt reasonable to pull these out of the consul-dataplane Envoy config at this point when creating the config to pass as the only argument into envoy.NewProxy (happy to change if they're already somewhere else I didn't notice) to make them accessible within pkg/envoy/proxy.go where they're needed for the HTTP calls to Envoy's admin API for the Drain() and Quit() methods.
This was not needed previously, as the Envoy process was just terminated with a process kill signal.
pglass
approved these changes
May 31, 2023
nathancoleman
approved these changes
May 31, 2023
curtbushko
requested changes
Jun 1, 2023
There was a problem hiding this comment.
Looking pretty good! I can tell that you put a lot of thought and effort into this!
I only have a few comments, but nothing that I will stop you on.
Note: There is going to be another release of consul-dataplane tomorrow (Thursday, June 1st) so I am going to block here so this doesn't get merged in by accident.
mikemorris
force-pushed
the
proxy-lcm/shutdown
branch
from
1ffb8ac to
04e73f2
Compare
mikemorris
force-pushed
the
proxy-lcm/shutdown-http-endpoints
branch
2 times, most recently
from
d548340 to
8bc0b14
Compare
|
Addressed feedback and pushed some naming changes up into #100, which I'd like to merge before this to get the chain started. |
pglass
approved these changes
Jun 6, 2023
Co-authored-by: Paul Glass <[email protected]>
…tenersEnabled after rebase
mikemorris
force-pushed
the
proxy-lcm/shutdown-http-endpoints
branch
from
268e173 to
bf8f0c8
Compare
curtbushko
approved these changes
Jun 6, 2023
DanStough
added a commit
that referenced
this pull request
Jun 14, 2023
* Revert "proxy-lifecycle: catch SIGTERM and initiate graceful shutdown (#130)" This reverts commit 40c99dc. * Revert "proxy-lifecycle: add HTTP Server with endpoints for proxy lifecycle shutdown (#115)" This reverts commit 0047e65. * Revert "cmd: add CLI flags for proxy shutdown lifecycle management (#100)" This reverts commit 3d37b9f.
This was referenced Jun 27, 2023
Merged
curtbushko
added
backport/1.0
backport/1.1
curtbushko
pushed a commit
that referenced
this pull request
Jun 27, 2023
…hutdown (#115) * envoy: set drain time and strategy passthrough config with sensible defaults for sidecar proxy shutdown lifecycle * pkg/consuldp/lifecycle: wire up lifecycle mgmt server into consul-dataplane main config * pkg/envoy: add Drain and Quit methods, rename Stop to Kill * pkg/consuldp/lifecycle: gracefully shutdown Envoy if xDS or lifecycle mgmt server exits unexpectedly * ci: disable parallelism in unit tests to avoid port conflicts * pkg/envoy: add http client to dial Envoy admin interface * pkg/consuldp/lifecycle: replace http client with proxy manager interface and mock * test/lifecycle: pick an available port if gracefulPort is unspecified * pkg/consuldp/lifecycle: check errors and close errorExitCh if any problems gracefully shutting down Envoy * add changelong --------- Co-authored-by: Nathan Coleman <[email protected]> Co-authored-by: Paul Glass <[email protected]>
curtbushko
added a commit
that referenced
this pull request
Jun 27, 2023
… lifecycle shutdown into release/1.0.x (#182) * proxy-lifecycle: add HTTP Server with endpoints for proxy lifecycle shutdown (#115) * envoy: set drain time and strategy passthrough config with sensible defaults for sidecar proxy shutdown lifecycle * pkg/consuldp/lifecycle: wire up lifecycle mgmt server into consul-dataplane main config * pkg/envoy: add Drain and Quit methods, rename Stop to Kill * pkg/consuldp/lifecycle: gracefully shutdown Envoy if xDS or lifecycle mgmt server exits unexpectedly * ci: disable parallelism in unit tests to avoid port conflicts * pkg/envoy: add http client to dial Envoy admin interface * pkg/consuldp/lifecycle: replace http client with proxy manager interface and mock * test/lifecycle: pick an available port if gracefulPort is unspecified * pkg/consuldp/lifecycle: check errors and close errorExitCh if any problems gracefully shutting down Envoy * add changelong --------- Co-authored-by: Nathan Coleman <[email protected]> Co-authored-by: Paul Glass <[email protected]> * fix automation * fix unit tests --------- Co-authored-by: Mike Morris <[email protected]> Co-authored-by: Nathan Coleman <[email protected]> Co-authored-by: Paul Glass <[email protected]>
wilkermichael
pushed a commit
that referenced
this pull request
Jun 28, 2023
… lifecycle shutdown into release/1.0.x (#182) * proxy-lifecycle: add HTTP Server with endpoints for proxy lifecycle shutdown (#115) * envoy: set drain time and strategy passthrough config with sensible defaults for sidecar proxy shutdown lifecycle * pkg/consuldp/lifecycle: wire up lifecycle mgmt server into consul-dataplane main config * pkg/envoy: add Drain and Quit methods, rename Stop to Kill * pkg/consuldp/lifecycle: gracefully shutdown Envoy if xDS or lifecycle mgmt server exits unexpectedly * ci: disable parallelism in unit tests to avoid port conflicts * pkg/envoy: add http client to dial Envoy admin interface * pkg/consuldp/lifecycle: replace http client with proxy manager interface and mock * test/lifecycle: pick an available port if gracefulPort is unspecified * pkg/consuldp/lifecycle: check errors and close errorExitCh if any problems gracefully shutting down Envoy * add changelong --------- Co-authored-by: Nathan Coleman <[email protected]> Co-authored-by: Paul Glass <[email protected]> * fix automation * fix unit tests --------- Co-authored-by: Mike Morris <[email protected]> Co-authored-by: Nathan Coleman <[email protected]> Co-authored-by: Paul Glass <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Refs hashicorp/consul-k8s#536, hashicorp/consul-k8s#650
Adds a proxy lifecycle management server and starts it from the consul-dataplane main process. This server exposes an HTTP endpoint (configurable, defaulting to
/graceful_shutdownon port 20300) to optionally start draining inbound (external) connections to the managed Envoy proxy, while allowing outbound requests from the application for which this proxy is acting as a sidecar to continue, up to a configurable grace period timeout, to facilitate application shutdown.Refactors the
envoypackage proxy manager to introduce new states (stateDrainingandstateExited) and new methods (Drain(),Quit()and renamingStop()toKill()to avoid confusion and better describe the actual implementation) and implement an interface to allow a mock implementation for testing the lifecycle management server in isolation.Notes for reviewers
/graceful_shutdownendpoint explicitly (which will be necessary for handling job termination from apreStophook) in the future.envoypackage does not have proper test coverage yet - I'm hoping to add this as a followup by replacing the currentfake-envoyimplementation with a Go-based version to include an HTTP server mocking the/drain_listenersand/quitquitquitEnvoy admin API endpoints.envoyExtraArgsrefactor will likely conflict with fix: log level present in extra args using envoy-extra-args annotation : NET-2190 #133 and need to be resolvedLinks