Skip to content

fcds: add unimplemented api #39154

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 10 commits into from
Apr 26, 2025
Merged

fcds: add unimplemented api #39154

merged 10 commits into from
Apr 26, 2025

Conversation

ohadvano
Copy link
Contributor

Additional Description: Adding unimplemented FCDS API as a first step in roadmap to support this feature. See #39141 for feature description. Most of the specifications are described inline with the API changes but for extra clarity I will describe them here:

  • Current FCDS implementation is intended to discover a filter chain object (including its name)
  • It's meant to support both delta and SoTW APIs
  • A discovery request should include the containing context name. The containing context can either be customized per discovery in the config or derived by the listener's name.
  • A listener may contain both statically configured filter chains as well as runtime discovered filter chains. However, if a discovered filter chain matches any of another existing filter chain, its configuration is discarded (this will be later indicated by metrics and/or logs).
  • The model here is very similar to how EDS works. A cluster owns an EDS subscription. It uses a custom service name or the cluster name in the discovery request and the server responds with a list of endpoints. In this discovery service, the listener owns the FCDS subscription, mentioned by the listener name or custom configured name, and the server responds with list of filter chains.

Example usage:

static_resources:
  listeners:
  - name: tcp_listener_1
    stat_prefix: tcp_listener
    address:
      socket_address:
        protocol: TCP
        address: 0.0.0.0
        port_value: 1111
    filter_chains:
    - name: some_static_filter_chain
      filters:
      - filter_1
      - filter_2
    fcds_config:
      name: tcp_listener_1_dynamic_filter_chains
      config_source:
        api_config_source:
          api_type: GRPC
          transport_api_version: V3
          grpc_services:
          - envoy_grpc:
              cluster_name: xds_cluster

Risk Level: low
Testing: none
Docs Changes: API
Release Notes: none
Platform Specific Features: none

@ohadvano
add unimplemented fcds api
a9479a9 
Signed-off-by: Ohad Vano <ohadvano@gmail.com>
@repokitteh-read-only RepoKitteh - Read Only
Copy link

CC @envoyproxy/api-shepherds: Your approval is needed for changes made to (api/envoy/|docs/root/api-docs/).
envoyproxy/api-shepherds assignee is @wbpcode
CC @envoyproxy/api-watchers: FYI only for changes made to (api/envoy/|docs/root/api-docs/).

🐱

Caused by: #39154 was opened by ohadvano.

see: more, trace.

ohadvano and others added 4 commits April 17, 2025 11:00
@ohadvano
fix folder
1761511 
Signed-off-by: Ohad Vano <ohadvano@gmail.com>
@ohadvano
Update fcds.proto
29b2b70 
Signed-off-by: ohadvano <49730675+ohadvano@users.noreply.github.com>
@ohadvano
Merge branch 'envoyproxy:main' into add_fcds_api
7884ee4
@ohadvano
Merge branch 'envoyproxy:main' into add_fcds_api
8cf302a
@ohadvano ohadvano mentioned this pull request Apr 18, 2025
Open
4 tasks
adisuissa
adisuissa reviewed Apr 18, 2025
View reviewed changes
Copy link
Contributor

@adisuissa adisuissa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks!
cc @markdroth

markdroth
markdroth reviewed Apr 18, 2025
View reviewed changes
@wbpcode wbpcode assigned adisuissa and markdroth and unassigned wbpcode Apr 20, 2025
ohadvano and others added 4 commits April 21, 2025 18:51
@ohadvano
remove required annotation
013ce0d 
Signed-off-by: Ohad Vano <ohadvano@gmail.com>
@ohadvano
remove fcds service definition
561ddbf 
Signed-off-by: Ohad Vano <ohadvano@gmail.com>
@ohadvano
Merge branch 'envoyproxy:main' into add_fcds_api
8a8e53b
@ohadvano
add note
6db29d7 
Signed-off-by: Ohad Vano <ohadvano@gmail.com>
@ohadvano
Copy link
Contributor Author

@markdroth, @adisuissa please review latest iteration

@markdroth
Copy link
Contributor

This looks good to me! I'll defer to @wbpcode as the designated API reviewer.

@wbpcode wbpcode self-assigned this Apr 24, 2025
wbpcode
wbpcode approved these changes Apr 26, 2025
View reviewed changes
Copy link
Member

@wbpcode wbpcode left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Thanks.

@wbpcode wbpcode merged commit 9ede1da into envoyproxy:main Apr 26, 2025
25 checks passed
@ohadvano ohadvano deleted the add_fcds_api branch April 26, 2025 12:30
jtlisi pushed a commit to jtlisi/envoy that referenced this pull request Apr 28, 2025
@ohadvano @jtlisi
fcds: add unimplemented api (envoyproxy#39154)
c187960 
Additional Description: Adding unimplemented FCDS API as a first step in
roadmap to support this feature. See envoyproxy#39141 for feature description.
Most of the specifications are described inline with the API changes but
for extra clarity I will describe them here:
- Current FCDS implementation is intended to discover a filter chain
object (including its name)
- It's meant to support both delta and SoTW APIs
- A discovery request should include the containing context name. The
containing context can either be customized per discovery in the config
or derived by the listener's name.
- A listener may contain both statically configured filter chains as
well as runtime discovered filter chains. However, if a discovered
filter chain matches any of another existing filter chain, its
configuration is discarded (this will be later indicated by metrics
and/or logs).
- The model here is very similar to how EDS works. A cluster owns an EDS
subscription. It uses a custom service name or the cluster name in the
discovery request and the server responds with a list of endpoints. In
this discovery service, the listener owns the FCDS subscription,
mentioned by the listener name or custom configured name, and the server
responds with list of filter chains.

Example usage:
```
static_resources:
  listeners:
  - name: tcp_listener_1
    stat_prefix: tcp_listener
    address:
      socket_address:
        protocol: TCP
        address: 0.0.0.0
        port_value: 1111
    filter_chains:
    - name: some_static_filter_chain
      filters:
      - filter_1
      - filter_2
    fcds_config:
      name: tcp_listener_1_dynamic_filter_chains
      config_source:
        api_config_source:
          api_type: GRPC
          transport_api_version: V3
          grpc_services:
          - envoy_grpc:
              cluster_name: xds_cluster
```

Risk Level: low
Testing: none
Docs Changes: API
Release Notes: none
Platform Specific Features: none

---------

Signed-off-by: Ohad Vano <ohadvano@gmail.com>
Signed-off-by: ohadvano <49730675+ohadvano@users.noreply.github.com>
Signed-off-by: Jacob Lisi <jtlisi@google.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@adisuissa adisuissa

@kyessenov kyessenov

@markdroth markdroth

@wbpcode wbpcode

Assignees

@adisuissa adisuissa

@wbpcode wbpcode

@markdroth markdroth

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@ohadvano @markdroth @adisuissa @kyessenov @wbpcode