Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

connectivity: Introduce Cilium feature detection #998

Merged
merged 6 commits into from Jul 29, 2022
Merged

connectivity: Introduce Cilium feature detection #998

merged 6 commits into from Jul 29, 2022

Conversation

gandro
Copy link
Member

@gandro gandro commented Jul 28, 2022

This PR adds Cilium feature detection to the Cilium connectivity test suite. Cilium features are things like L7 proxy status, chaining
mode, flow aggregation mode etc. Because some features are dependent on run-time information like kernel versions, we prefer to collect the feature status from cilium status where available. Other features are currently detected by parsing the Cilium ConfigMap.

Some features are either simply turned on or off, while others additionally might include a Mode string which provides more information about in what mode a particular feature is running (e.g. when running with CNI chaining, Enabled will be true, and the Mode string will additionally contain the name of the chained CNI).

With these changes, tests can now require certain features to be enabled. This PR adds the FeatureL7Proxy requirement to all tests which depend on the L7 proxy being available. Subsequent PRs will also add more conditional connectivity test behavior based on the features introduced by this PR (e.g. host firewall and chaining mode).

Review per commit

@gandro gandro requested a review from a team as a code owner July 28, 2022 15:39
@gandro gandro requested a review from squeed July 28, 2022 15:39
@gandro gandro temporarily deployed to ci July 28, 2022 15:39 Inactive
@maintainer-s-little-helper
Copy link

Commit 855bf47 does not contain "Signed-off-by".

Please follow instructions provided in https://docs.cilium.io/en/stable/contributing/development/contributing_guide/#developer-s-certificate-of-origin

tklauser
tklauser reviewed Jul 28, 2022
View reviewed changes
Copy link
Member

@tklauser tklauser left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Very nice work 🚀 Thanks for splitting this up into commits that are easy to review by themselves.

I like the approach of using per-node cilium status and falling back to ConfigMap in case information is not available there.

A few small nits inline. There's also a linter and an MLH warning about missing Signed-off-by. Other than that LGTM.

connectivity/check/features.go Outdated Show resolved Hide resolved
connectivity/check/features.go Outdated Show resolved Hide resolved
connectivity/check/features.go Outdated Show resolved Hide resolved
@gandro
connectivity: Split out cilium pod initialization
488bbc9 
This fetches the Cilium pod information right after we initialized the
client. This change should not have any functional changes, but allows
future commits to access those Cilium pods early.

Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
@gandro
connectivity: Add feature detection
d564e22 
This commit adds Cilium feature detection to the Cilium connectivity
test suite. Cilium features are things like L7 proxy status, chaining
mode, flow aggregation mode etc. Because some features are dependent on
run-time information like kernel versions, we prefer to collect the
feature status from `cilium status` where available. Other features are
currently detected by parsing the Cilium ConfigMap.

The current code assumes that the detected feature set is consistent
across all Cilium pods and clusters. If a discrepancy is detected, the
current code simply emits a warning and assumes the feature set from the
first Cilium pod probed.

Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
@gandro
connectivity: Use features to detect flow aggregation
d9a2389 
This commit switches the flow aggregation detection to use the newly
introduced Cilium feature set. This commit should introduce no
functional changes.

The flow aggregation log line is moved to a later stage ensure feature
detection has been run before we print the status.

Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
@gandro
connectivity: Introduce feature requirements
96e106c 
This commit introduces a new function to the connectivity test framework
to specify feature requirements for certain tests. All tests requiring
the L7 proxy are updated to use the new requirements framework to skip
those tests if the L7 proxy is not available.

Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
@gandro gandro force-pushed the pr/gandro/cilium-feature-detection branch from 38605c4 to 96e106c Compare July 28, 2022 16:09
@gandro gandro temporarily deployed to ci July 28, 2022 16:09 Inactive
@gandro gandro requested a review from tklauser July 28, 2022 16:09
@tklauser
connectivity: add feature detection unit tests
73ec800 
Testing (*FeatureSet).MatchRequirements for now.

Adresses #998 (comment)

Signed-off-by: Tobias Klauser <tobias@cilium.io>
@tklauser
connectivity: debug log detected features
ea465b1 
This might be useful in CI to catch issues with feature detection.

Signed-off-by: Tobias Klauser <tobias@cilium.io>
@gandro gandro requested a review from a team as a code owner July 29, 2022 11:58
tklauser
tklauser approved these changes Jul 29, 2022
View reviewed changes
Copy link
Member

@tklauser tklauser left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thank you!

FWIW, I've pushed two additional commits: one to introduce a basic unit test for (*FeatureSet).MatchRequirements, adressing #998 (comment) and a second to add a debug log with all detected features which IMO might be helpful for Cilium CI to catch issues with feature detection.

@tklauser tklauser temporarily deployed to ci July 29, 2022 11:58 Inactive
@brb
Copy link
Member

brb commented Jul 29, 2022

Sweet! Can I provide a feature list for the feature detection? 😅

@tklauser
Copy link
Member

Sweet! Can I provide a feature list for the feature detection? sweat_smile

Please do. FWIW, it should be fairly easy to add new features to be detected here: https://github.com/cilium/cilium-cli/pull/998/files#diff-30fe8f14d3d70ed606b3e8a9ed2305d14bc2f7630530af495df364d8d6609e74R113-R172

@tklauser tklauser merged commit 6b5553e into master Jul 29, 2022
@tklauser tklauser deleted the pr/gandro/cilium-feature-detection branch July 29, 2022 14:11
tklauser added a commit that referenced this pull request Jul 29, 2022
@tklauser
connectivity: add feature detection unit tests
65fd0c1 
Testing (*FeatureSet).MatchRequirements for now.

Adresses #998 (comment)

Signed-off-by: Tobias Klauser <tobias@cilium.io>
@tklauser tklauser removed the request for review from squeed August 8, 2022 13:37
aditighag pushed a commit to aditighag/cilium-cli that referenced this pull request Apr 21, 2023
@tklauser @aditighag
connectivity: add feature detection unit tests
f36067d 
Testing (*FeatureSet).MatchRequirements for now.

Adresses cilium#998 (comment)

Signed-off-by: Tobias Klauser <tobias@cilium.io>
michi-covalent pushed a commit to michi-covalent/cilium that referenced this pull request May 30, 2023
@tklauser @michi-covalent
connectivity: add feature detection unit tests
49db817 
Testing (*FeatureSet).MatchRequirements for now.

Adresses cilium/cilium-cli#998 (comment)

Signed-off-by: Tobias Klauser <tobias@cilium.io>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tklauser tklauser tklauser approved these changes

Assignees
No one assigned
Labels
ci/hyperjump
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@gandro @brb @tklauser