Add support for source-based routing

[kyessenov]

No description provided.

[ayj]

(optional) you could invert the rule.match != nil check here and get rid of the extra found variable, e.g.

if rule.Match == nil {
    continue
}
for _, instance := range instances {
    if rule.Match.Source != "" && rule.Match.Source != instance.Service.Hostname {
        continue
    }
    var tags Tags = rule.Match.SourceTags
    if !tags.SubsetOf(instance.Tags) {
        continue
    }
    out = append(out, rule)
}

[kyessenov]

yeah, thanks. also need a break statement after append.

[kyessenov]

actually, we'd have to duplicate code for rule.Match == nil. maybe leave it as is?

[ayj]

Whoops, yeah. Leave it as is and ignore my comment.

[istio-testing]

Jenkins job manager/presubmit passed

[codecov]

Codecov Report

Merging #225 into master will decrease coverage by -0.16%.
The diff coverage is 0%.

@@            Coverage Diff            @@
##           master    #225      +/-   ##
=========================================
- Coverage   31.05%   30.9%   -0.16%     
=========================================
  Files          19      19              
  Lines        1803    1812       +9     
=========================================
  Hits          560     560              
- Misses       1187    1196       +9     
  Partials       56      56

Impacted Files	Coverage Δ
model/service.go	77.66% <ø> (ø)	✅
proxy/envoy/watcher.go	0% <ø> (ø)	✅
proxy/envoy/config.go	0% <0%> (ø)	✅
proxy/envoy/route.go	19.84% <0%> (+1.04%)	✅
model/config.go	0% <0%> (ø)	✅

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 1421d2d...2e389cf. Read the comment docs.

[kyessenov]

Let's merge this, and send coverage tests in another PR.

[rshriram]

Why can't this be sorted by precedence and destination?

[kyessenov]

We certainly need to sort route rules by all its fields. I documented precendece since that's how it works now.

[rshriram]

If instances is the set of all destination services in k8s, then this function basically does that rulesByDestination did.

[kyessenov]

No, instances is co-located instances, not external destinations.

[rshriram]

This needs to go as a separate test to ensure that other services are unable to call service "worldl

[kyessenov]

We need two versions of world?

[rshriram]

No. Two versions of hello, hello v1 can only call world v1, so on. Otherwise this test as is, is not checking whether service hello-v2 can access service world-v1 or not.

[kyessenov]

Yeah, we can do a follow-up test PR. I will get mocks set-up as well.

[rshriram]

Where is this code expected to run? When running in a pod, this will be a single instance and not an array. This cannot run on the host as a daemon set. And even if it does, same concept applies.

[kyessenov]

It's in a pod. If there are two services pointing to the pod, or two services with distinct ports, we'd get two elements in the array, wouldn't we?

[rshriram]

That's true. We really need to rename these variables in future for better readability. May be call these as localSvcInstances ?

[kyessenov]

The top-level call takes instances and services, so I was just following that naming pattern. Pretend instance is always local instances throughout.

[rshriram]

I don't think you need arrays here. It's just the pod filtering out rules before generating the config.

[kyessenov]

It's for per-node case, but I don't think it makes any difference how many instances are behind the proxy.

[rshriram]

Please wait