KEP-5237: watch-based route controller reconciliation using informers

[lukasmetzner]

• One-line PR description: Introduce a feature gate to enable informer-based reconciliation in the routes' controller of cloud-controller-manager, reducing API calls and improving efficiency.

• Issue link: CCM: watch-based route controller reconciliation using informers #5237

• Other comments:

[k8s-ci-robot]

Welcome @lukasmetzner!

It looks like this is your first PR to kubernetes/enhancements 🎉. Please refer to our pull request process documentation to help your PR have a smooth ride to approval.

You will be prompted by a bot to use commands during the review process. Do not be afraid to follow the prompts! It is okay to experiment. Here is the bot commands documentation.

You can also check if kubernetes/enhancements has its own contribution guidelines.

You may want to refer to our testing guide if you run into trouble with your tests not passing.

If you are having difficulty getting your pull request seen, please follow the recommended escalation practices. Also, for tips and tricks in the contribution process you may want to read the Kubernetes contributor cheat sheet. We want to make sure your contribution gets all the attention it needs!

Thank you, and welcome to Kubernetes. 😃

[k8s-ci-robot]

Hi @lukasmetzner. Thanks for your PR.

I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[lukasmetzner]

/cc @elmiko @JoelSpeed

[apricote]

/ok-to-test

[elmiko]

the core concepts make sense to me, i think we should clean up the language around the term "cloud provider". in some places we use it to mean the controllers (ie the ccm), and other places we use it to mean the infrastructure provider (eg aws, azure, gcp), and we also refer to the framework as well.

we also need to make some decisions about the open questions. i wonder if we should go over these questions at the next sig meeting?

[lukasmetzner]

@elmiko If possible, I’d love to work through the open questions here in the PR so we can keep things moving, and then have a discussion in the next SIG meeting. Otherwise, we might end up losing a two of weeks of time. What do you think?

Open Questions:

• What should be the default frequency for the periodic full reconciliation?
  • Input from @JoelSpeed: We should do it similar to other controllers and choose a random time between 12h and 24h.
  • As we use the same shared informers' factory as in other controllers, this should already be implemented.
• Are there other Node fields besides node.status.addresses and PodCIDRs that should trigger a route update?
• How should we set the interval for the periodic reconcile? Options:
  • Adjust --route-reconcile-period when feature gate enabled
  • Use --min-resync-period; currently defaults to 12h
  • Introduce a new flag
  • If we use the 12h-24h option we can probably reuse --min-resync-period.

[elmiko]

i'm fine to continue the discussions here.

Input from @JoelSpeed: We should do it similar to other controllers and choose a random time between 12h and 24h.

i think 12h sounds fine to me.

Are there other Node fields besides node.status.addresses and PodCIDRs that should trigger a route update?

i'll have to think about this a little more, i have a feeling that those are good to start with.

How should we set the interval for the periodic reconcile?

i like the idea of adjusting the default for the --route-reconcile-period, but i don't want users to get confused about this.

my only issue with using --min-resync-period is that it sounds much more general and we are just focusing on the route controller.

[lukasmetzner]

i like the idea of adjusting the default for the --route-reconcile-period, but i don't want users to get confused about this.
my only issue with using --min-resync-period is that it sounds much more general and we are just focusing on the route controller

To my understanding, both the service and node controllers are already watch-based and should utilize the --min-resync-period flag. Adopting this approach would bring consistency across the CCM components. In this context, the --route-reconcile-period flag could be considered for deprecation.

[elmiko]

ack, thank you @lukasmetzner that makes sense to me. it seems we should focus on --min-resync period then.

[elmiko]

@lukasmetzner do we need another round of reviews here?

[lukasmetzner]

@elmiko From my point of view, I am happy with the content, and we could get this merged or move forward.

This is my first contribution, have I missed adding some labels? 😅

[elmiko]

This is my first contribution, have I missed adding some labels? 😅

no, i don't think so. just wanted to make sure i didn't miss anything. i will give another review before end of week.

[lukasmetzner]

This is my first contribution, have I missed adding some labels? 😅

no, i don't think so. just wanted to make sure i didn't miss anything. i will give another review before end of week.

Sounds good. With the PRR freeze tomorrow, I guess we won't make it into the v1.34 milestone. I will bump the milestone targets then.

[elmiko]

Sounds good. With the PRR freeze tomorrow, I guess we won't make it into the v1.34 milestone. I will bump the milestone targets then.

ahh, apologies. i missed that the freeze is today. sorry for the inconvenience and delay.

[elmiko]

found a few places to clean things up, also i'd like to ask @JoelSpeed to take a review as well.

[elmiko]

thanks for the updates @lukasmetzner , i probably won't get a chance to review today but i will review again early next week.

[elmiko]

i think this is looking good, i'm happy to label it. i would also like @JoelSpeed to take another review.

/lgtm

[JoelSpeed]

Do we have metrics that can be used to A/B test the count of reconciles before/after this change?

[lukasmetzner]

As far as I know, the current CCM implementation doesn't expose metrics to measure this directly. I’d expect cloud providers might be able to observe the impact through their own API request logs.

In our WIP implementation, we’ve introduced a new named workqueue, which does emit some metrics that could be useful for analysis. However, these metrics will only be available when the new feature is enabled.

[JoelSpeed]

If we see an event for the Node, but we cannot find the Node object, is there a way to clear up the associated routes/cause a full resync?

Is this issue described here associated with every Node removal or, only some?

[lukasmetzner]

The node informer periodically (every 12 to 24 hours) emits update events for all nodes in the cluster. If the resource version has not changed, we still enqueue a reconcile call to trigger regular cleanup of stale routes.

The issue described here is associated with every Node removal.

[JoelSpeed]

Are we expecting any major changes to be needed by each provider to integrate the new version of the route controller?

[lukasmetzner]

There’s no change to the cloud-provider interface — we’re still calling the same reconcile() method in the routes controller. The only difference is when it gets invoked.

Apart from the new feature gate, I don't expect anything to change for the providers.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: lukasmetzner
Once this PR has been reviewed and has the lgtm label, please ask for approval from elmiko. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• keps/sig-cloud-provider/OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[elmiko]

just checking back here, i'm still lgtm on this.

/lgtm

[lukasmetzner]

@elmiko I forgot to update the milestones to now target v1.35 for the alpha.

[elmiko]

thanks @lukasmetzner !

/lgtm

[lukasmetzner]

@JoelSpeed Just wondering if you’ve had a chance to review the PR again, or if you might be able to soon?