Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fqdn: skip ipcache insertion for names without fqdn selectors #30110

Merged
merged 1 commit into from
Jan 9, 2024
Merged

fqdn: skip ipcache insertion for names without fqdn selectors #30110

merged 1 commit into from
Jan 9, 2024

Conversation

squeed
Copy link
Contributor

@squeed squeed commented Jan 4, 2024

This small fix prevents allocating a local identity for IPs with names that are not selected by a toFQDN selector. Without this change, an identity is allocated for every IP included in an intercepted DNS response. For the (common) case where all DNS requests are proxied, this could potentially lead to a waste of resources and thus a performance regression.

Previously (v1.14 and before), we did not allocate identities for un-selected IPs. That was inadvertently changed in #29036.

@squeed
fqdn: skip ipcache insertion for names without fqdn selectors
e095fc3 
This small fix prevents allocating a local identity for IPs with names
that are not selected by a toFQDN selector. Without this change, an
identity is allocated for every IP included in an intercepted DNS
response. For the (common) case where all DNS requests are proxied, this
could potentially lead to a waste of resources and thus a performance
regression.

Previously (v1.14 and before), we did not allocate identities for
un-selected IPs. That was inadvertently changed in cilium#29036.

Signed-off-by: Casey Callendrello <cdc@isovalent.com>
@squeed squeed added release-note/misc This PR makes changes that have no direct user impact. area/fqdn Affects the FQDN policies feature needs-backport/1.15 This PR / issue needs backporting to the v1.15 branch labels Jan 4, 2024
@squeed squeed requested a review from a team as a code owner January 4, 2024 22:19
@squeed squeed requested a review from pippolo84 January 4, 2024 22:19
@maintainer-s-little-helper maintainer-s-little-helper bot added this to Needs backport from main in v1.15.0-rc.1 Jan 4, 2024
@squeed
Copy link
Contributor Author

squeed commented Jan 4, 2024

/test

pippolo84
pippolo84 approved these changes Jan 9, 2024
View reviewed changes
Copy link
Member

@pippolo84 pippolo84 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 🚀

@maintainer-s-little-helper maintainer-s-little-helper bot added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Jan 9, 2024
@julianwiedmann julianwiedmann added this pull request to the merge queue Jan 9, 2024
Merged via the queue into cilium:main with commit eed73af Jan 9, 2024
63 checks passed
@jibi jibi mentioned this pull request Jan 12, 2024
Merged
32 tasks
@jibi jibi added backport-pending/1.15 The backport for Cilium 1.15.x for this PR is in progress. and removed needs-backport/1.15 This PR / issue needs backporting to the v1.15 branch labels Jan 12, 2024
@aanm aanm mentioned this pull request Jan 16, 2024
Merged
@giorio94 giorio94 added backport-done/1.15 The backport for Cilium 1.15.x for this PR is done. and removed backport-pending/1.15 The backport for Cilium 1.15.x for this PR is in progress. labels Jan 29, 2024
@maintainer-s-little-helper maintainer-s-little-helper bot moved this from Needs backport from main to Backport done to v1.15 in v1.15.0-rc.1 Jan 29, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@pippolo84 pippolo84 pippolo84 approved these changes

Assignees
No one assigned
Labels
area/fqdn Affects the FQDN policies feature backport-done/1.15 The backport for Cilium 1.15.x for this PR is done. ready-to-merge This PR has passed all tests and received consensus from code owners to merge. release-note/misc This PR makes changes that have no direct user impact.
Projects
No open projects
v1.15.0-rc.1
Backport done to v1.15
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@squeed @pippolo84 @jibi @julianwiedmann @giorio94