Skip to content

clustermesh: drain all known entries upon cluster ID change #32996

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jun 10, 2024
Merged

clustermesh: drain all known entries upon cluster ID change #32996

merged 1 commit into from
Jun 10, 2024

Conversation

giorio94
Copy link
Member

Recent changes (#32749, #32785) introduced improved validation to ensure that the information retrieved from remote clusters matches the advertised cluster ID, and discard it otherwise. Let's additionally fully drain all previously known entries upon cluster ID change. Indeed, although synthetic deletion events would be generated in any case upon initial listing (as the entries with the incorrect cluster ID would not pass validation), that would leave a window of time in which there would still be stale entries for a cluster ID that has already been released, potentially leading to inconsistencies if the same ID is acquired again in the meanwhile by a different cluster.

@giorio94 giorio94 added area/clustermesh Relates to multi-cluster routing functionality in Cilium. release-note/misc This PR makes changes that have no direct user impact. labels Jun 10, 2024
@giorio94 giorio94 requested a review from a team as a code owner June 10, 2024 07:03
@giorio94 giorio94 requested a review from YutaroHayakawa June 10, 2024 07:04
@giorio94
Copy link
Member Author

/test

@giorio94 giorio94 force-pushed the mio/clustermesh-cluster-id-change branch from 5f913da to ae55c5e Compare June 10, 2024 08:34
@giorio94
Copy link
Member Author

/test

@giorio94
Copy link
Member Author

Converting back to draft while I figure out the reason of the conformance runtime failure, which looks legitimate.

@giorio94 giorio94 marked this pull request as draft June 10, 2024 10:23
@giorio94
clustermesh: drain all known entries upon cluster ID change
d068e74 
Recent changes introduced improved validation to ensure that the
information retrieved from remote clusters matches the advertised
cluster ID, and discard it otherwise. Let's additionally fully drain
all previously known entries upon cluster ID change. Indeed, although
synthetic deletion events would be generated in any case upon initial
listing (as the entries with the incorrect cluster ID would not pass
validation), that would leave a window of time in which there would
still be stale entries for a cluster ID that has already been released,
potentially leading to inconsistencies if the same ID is acquired again
in the meanwhile by a different cluster.

Signed-off-by: Marco Iorio <marco.iorio@isovalent.com>
@giorio94
Copy link
Member Author

Converting back to draft while I figure out the reason of the conformance runtime failure, which looks legitimate.

I had accidentally removed testutils.IntegrationTest(t) from one of the tests. Should be good now.

@giorio94 giorio94 force-pushed the mio/clustermesh-cluster-id-change branch from ae55c5e to d068e74 Compare June 10, 2024 10:29
@giorio94
Copy link
Member Author

/test

@giorio94 giorio94 mentioned this pull request Jun 10, 2024
Closed
@giorio94 giorio94 marked this pull request as ready for review June 10, 2024 12:22
@maintainer-s-little-helper maintainer-s-little-helper bot added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Jun 10, 2024
@julianwiedmann julianwiedmann added this pull request to the merge queue Jun 10, 2024
Merged via the queue into cilium:main with commit fda5b55 Jun 10, 2024
@giorio94 giorio94 mentioned this pull request Jun 11, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@YutaroHayakawa YutaroHayakawa YutaroHayakawa approved these changes

Assignees
No one assigned
Labels
area/clustermesh Relates to multi-cluster routing functionality in Cilium. ready-to-merge This PR has passed all tests and received consensus from code owners to merge. release-note/misc This PR makes changes that have no direct user impact.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@giorio94 @YutaroHayakawa @julianwiedmann