feat(kuma-cp) Proxy Template modifications #883
Conversation
Some cool example for testing (patch all cluster timeouts, add a new one, remove existing. Remove all network filters on outbound and add static response) |
Signed-off-by: Nikolay Nikolaev <nikolay.nikolaev@konghq.com>
Signed-off-by: Nikolay Nikolaev <nikolay.nikolaev@konghq.com>
Signed-off-by: Nikolay Nikolaev <nikolay.nikolaev@konghq.com>
Makefile
Outdated
| echo '// Import all Envoy packages so protobuf are registered and are ready to used in functions such as MarshalAny.' >> imports.go | ||
| echo '// This file is autogenerated. run "make generate/envoy-imports" to regenerate it after go-control-plane upgrade' >> imports.go | ||
| echo 'import (' >> imports.go | ||
| go list github.com/envoyproxy/go-control-plane/... | grep "github.com/envoyproxy/go-control-plane/envoy/" | awk '{printf "\t_ \"%s\"\n", $$1}' >> imports.go |
There was a problem hiding this comment.
Can we run into versioning issues here? Is there a way to pin what we test and support?
There was a problem hiding this comment.
As far as I know it uses version from go.mod. The only problem here is that after upgrade go-control-plane we need to rerun it, because there might be new packages.
| // Network Filter modification | ||
| NetworkFilter networkFilter = 3; | ||
| // HTTP Filter modification | ||
| HttpFilter httpFilter = 4; |
There was a problem hiding this comment.
Is this all? I look here https://www.envoyproxy.io/docs/envoy/latest/api-v2/api, and there are more entities.
There was a problem hiding this comment.
There are only a couple of fundamental Envoy resources:
- Cluster - it's here
- Listener - it's here
- ClusterLoadAssignment - there might be a use case of adding extra endpoint, but I don't want to implement it for now. I think I'll open an issue for this and maybe someone from the community will pick this up.
- RouteConfiguration - I want to add it in a separate PR
- Secret - I don't think there will be a use case for this
- Runtime - again, no "popular" use case for now
You can see a lot of entities that are embedded in fundamental types. We added modifications for filters because it needs a special treatment (add in proper order). Having a "framework" for modifications we can later easily add other extension points if needed.
| "github.com/Kong/kuma/pkg/core" | ||
| "github.com/Kong/kuma/pkg/core/runtime/component" | ||
| "github.com/kumahq/kuma/pkg/core" | ||
| "github.com/kumahq/kuma/pkg/core/runtime/component" |
There was a problem hiding this comment.
That is fixed in master :)
| // Resource represents a generic xDS resource with name and version. | ||
| type Resource struct { | ||
| Name string | ||
| Version string | ||
| Origin string |
There was a problem hiding this comment.
Why removing the version?
There was a problem hiding this comment.
Version is useless here. We don't use it anyways, we override version anyways (see SnapshotAutoVersioner)
| } | ||
| case mesh_proto.OpRemove: | ||
| default: | ||
| verr.AddViolation("operation", fmt.Sprintf("invalid operation. Available operations: %q, %q, %q, %q, %q", mesh_proto.OpAddFirst, mesh_proto.OpAddLast, mesh_proto.OpAddBefore, mesh_proto.OpAddAfter, mesh_proto.OpPatch)) |
There was a problem hiding this comment.
You missed mesh_proto.OpRemove here
| } | ||
| case mesh_proto.OpRemove: | ||
| default: | ||
| verr.AddViolation("operation", fmt.Sprintf("invalid operation. Available operations: %q, %q, %q, %q, %q", mesh_proto.OpAddFirst, mesh_proto.OpAddLast, mesh_proto.OpAddBefore, mesh_proto.OpAddAfter, mesh_proto.OpPatch)) |
| func ValidateResourceYAML(msg proto.Message, resYAML string) error { | ||
| json, err := yaml.YAMLToJSON([]byte(resYAML)) | ||
| if err != nil { | ||
| json = []byte(resYAML) |
There was a problem hiding this comment.
Is it legal? If err is not nil then resYAML already json for sure?
There was a problem hiding this comment.
Oh, probably you imply that it will fail further
| if s.typeToNamesIndex[typeName] == nil { | ||
| s.typeToNamesIndex[typeName] = map[string]bool{} | ||
| for typ, resources := range set.typeToNamesIndex { | ||
| if s.typeToNamesIndex[typ] == nil { |
There was a problem hiding this comment.
I think you can reuse s.Add here
There was a problem hiding this comment.
Well, not exactly. I'd have to do s.Add(set.List()...) which creates a lot of lists etc.
| msgTypeName := strings.ReplaceAll(dst.TypeUrl, googleApis, "") // TypeURL in Any contains type.googleapis.com/ prefix, but in Proto registry it does not have this prefix. | ||
| msgType := proto.MessageType(msgTypeName).Elem() | ||
|
|
||
| dstMsg := reflect.New(msgType).Interface().(proto.Message) |
There was a problem hiding this comment.
There is ptypes.UnmarshalAny(any *any.Any, pb proto.Message) error, so you don't need to use reflect
There was a problem hiding this comment.
Yes but then what do you pass as pb proto.Message? We don't know what is the type.
I tried to experiment with DynamicAny
func MergeAnys(dst *any.Any, src *any.Any) (*any.Any, error) {
if src == nil {
return dst, nil
}
if dst == nil {
return src, nil
}
if src.TypeUrl != dst.TypeUrl {
return nil, errors.Errorf("type URL of dst %q is different than src %q", dst.TypeUrl, src.TypeUrl)
}
dstMsg := &ptypes.DynamicAny{}
if err := ptypes.UnmarshalAny(dst, dstMsg); err != nil {
return nil, err
}
srcMsg := &ptypes.DynamicAny{}
if err := ptypes.UnmarshalAny(src, srcMsg); err != nil {
return nil, err
}
proto.Merge(dstMsg, srcMsg)
any, err := MarshalAnyDeterministic(dstMsg)
if err != nil {
return nil, err
}
any.TypeUrl = src.TypeUrl
return any, nil
}
but there is a problem with merging on DynamicAny objects
Summary
This PR introduces long-awaited modifications to Envoy config generated by Kuma 🎉
For now implemented parts are:
TODO
Documentation
kumahq/kuma-website#238