support override host status restriction for stateful session

[wbpcode]

Commit Message: support override host status restriction for stateful session
Additional Description:

Stateful session will try to parse upstream address from downstream request directly and override the result of load balancing algorithm by the LoadBalancerContext::overrideHostToSelect API.

To avoid the load balancer selecting hosts that in unexpected statuses, specifying some expected statuses are necessary.

In the previous design, we will provide expected statuses of override host by the LoadBalancerContext::overrideHostToSelect API.

And in the PR #18207, after some discussion with @htuch, we found may be cluster-level config may be more reasonable design and implementation.
Ref some more details: #18207 (comment)

So this PR try to close previous discussion in the #18207:

• Refactoring LoadBalancerContext::overrideHostToSelect API to remove expected statuses for the return value.
• Add new common lb config override_host_status and related implementation.

Risk Level: Mid.
Testing: N/A.
Docs Changes: N/A.
Release Notes: N/A.
Platform Specific Features: N/A.

[repokitteh-read-only]

CC @envoyproxy/api-shepherds: Your approval is needed for changes made to (api/envoy/|docs/root/api-docs/).
envoyproxy/api-shepherds assignee is @adisuissa
CC @envoyproxy/api-watchers: FYI only for changes made to (api/envoy/|docs/root/api-docs/).

🐱

Caused by: #19665 was opened by wbpcode.

see: more, trace.

[wbpcode]

@htuch Could you please give a review to the new proto API when you have free time? 😄

[wbpcode]

And @snowp Could you please add some comments for these new code when you have some bandwidth? 🌷

[wbpcode]

cc @howardjohn

[adisuissa]

Thanks for working on this!
Looked mostly at the API, left a few comments.

[adisuissa]

Do you expect this message to have more fields?
If not, what's the advantage over just specifying the repeated field directly (in your specific case renaming the field to override_host_status_set)?

[wbpcode]

This is because we need to distinguish between the case where no override_host_status is configured at all and the case where 0 items are configured. The former will provide a default value.

[adisuissa]

Is this field only relevant when the stateful_session extension is used?
If so, can you add this to the comment, and also add a reference to it?

[snowp]

Should we be referring to the specific extension here at all? Or should we instead have this talk about the host override feature in general? I can imagine other extensions wanting to use host overrides as well

[wbpcode]

For the moment, it does. I will add some more comments. Thanks.

[adisuissa]

One thing that I do not fully grok is what is expected if a config has this field set, but doesn't have the sticky_session extension configured.

[wbpcode]

Should we be referring to the specific extension here at all? Or should we instead have this talk about the host override feature in general? I can imagine other extensions wanting to use host overrides as well

@htuch @snowp This configuration is designed for general host override. But LoadBalancerContext::overrideHostToSelect() is internaly C++ API which is annomymous for public users and the stateful session is the only related implemenatation for now. Although we will have more extensions in the future, now we still need a specific example to help users to understand this config.

The result of load balancing is allowed to be overwritten by the L4/L7 filters specified host.
For example the `stateful session filter <........>` will specfic upstream host directly accoriding to the 
downstream request.
But the overridden will only worked when the status of specficed host is as expected in the configuration.

how about some comments like this? cc @htuch cc @adisuissa

[htuch]

I'm a bit lost reading this. I think there is context assumed of the reader that isn't likely to be there in most cases. Can you explain this section as if the reader had never heard of this override feature, pointing them to the relevant docs with RST links and/or some examples?

[wbpcode]

The override host feature is currently only available through the L4/L7 extensions. Now stateful session is the only extension that is ready.

So my intention is to use the stateful session as an example to help the reader understand the functionality and the configuration.

I will think about how to make it clearer and easier to understand. 🤔

[adisuissa]

What happens if there is but it is empty?

[wbpcode]

Then override_host_status will be zero and all the override host from LoadBalancerContext::overrideHostToSelect() will be ignored and stateful session stickiness will be disabled for current cluster.

[adisuissa]

Could this be an empty set? If not, then add a PGV constraint.

[wbpcode]

Yep, it can be an empty set.

Then override_host_status will be zero and all the override host from LoadBalancerContext::overrideHostToSelect() will be ignored and stateful session stickiness will be disabled for current cluster.

[snowp]

That sounds like the case when the override_host_status field is set which is technically different from being set with a zero list. Is there a distinction between override_host_status not being set and it being set with an empty list of statuses?

[wbpcode]

@snowp Yep. If override_host_status is set with an empty list of statuses then the override host will be ignored. And if override_host_status is not set completely, we will give some default statuses.

[adisuissa]

Minor comment about the api, but otherwise LGTM.

[adisuissa]

/wait

[wbpcode]

@adisuissa @htuch docs/API is updated. Thanks for all your patient reivews 😄. And sorry for the delayed replies and updates.

[adisuissa]

/lgtm api

[wbpcode]

hi, @snowp , the API is ready and could you give a review to the implementation when you have free time? Thanks. 🌷

[htuch]

/lgtm api

[wbpcode]

/retest

[repokitteh-read-only]

Retrying Azure Pipelines:
Retried failed jobs in: envoy-presubmit

🐱

Caused by: a #19665 (comment) was created by @wbpcode.

see: more, trace.

[KBaichoo]

ping @snowp PTAL :)

[htuch]

I can provide senior maintainer coverage once @adisuissa has reviewed.

[wbpcode]

/retest

[repokitteh-read-only]

Retrying Azure Pipelines:
Retried failed jobs in: envoy-presubmit

🐱

Caused by: a #19665 (comment) was created by @wbpcode.

see: more, trace.

[wbpcode]

Hi, @adisuissa the review comments from @snowp are addressed. PTAL, thanks. 🌷

[adisuissa]

Thanks! Overall LGTM.
Left one minor comment.
/wait

[adisuissa]

I think this may hide a case where the server sends a config with some other health status.
Consider adding [(validate.rules).enum.defined_only = true] to the statuses, and maybe a emit a log here.

[wbpcode]

get it.

[rojkov]

@adisuissa gentle ping

[adisuissa]

/lgtm api
LGTM code changes.
@htuch for final review.
Also, not sure if this needs release notes.

[htuch]

Looks good, but a few suggestions.

[htuch]

LGTM modulo one last nit on type alias.

[htuch]

Nit: can you add a using type alias for this, e.g. using HostStatusSet = std::bitset<32>? search-replace this across the diff.

[wbpcode]

get it.

[htuch]

FWIW it doesn't need to be 32-bit long, but it probably doesn't matter that much either.

[wbpcode]

Yes. Only 3 bits are used for now. But in the x64 matchine, the storage size of std::bitset<N> (N > 0) is at least 8 bytes. So I think setting N to 32 or 8 makes little difference.

    std::cout << sizeof(std::bitset<8>) << std::endl;  // 8
    std::cout << sizeof(std::bitset<16>) << std::endl;  // 8
    std::cout << sizeof(std::bitset<32>) << std::endl;  // 8
    std::cout << sizeof(std::bitset<64>) << std::endl;  // 8
    std::cout << sizeof(std::bitset<128>) << std::endl; // 16

[wbpcode]

/retest

[repokitteh-read-only]

Retrying Azure Pipelines:
Retried failed jobs in: envoy-presubmit

🐱

Caused by: a #19665 (comment) was created by @wbpcode.

see: more, trace.

[htuch]

LGTM, thanks!