Promote feature CleanupStaleUDPSvcConntrack from Alpha to Beta #6372

hongliangl · 2024-05-27T05:39:39Z

In #5112, due to the limitations of the Go netlink library, AntreaProxy
would unconditionally delete conntrack entries added by kube-proxy in
conntrack zone 0. AntreaProxy was supposed to only delete its own entries
in conntrack zones 65520 or 65521. To address this, a feature was added
to isolate the relevant code.

After the merge of #6193, the netlink library was updated, allowing
AntreaProxy to precisely delete conntrack entries in zones 65520 or 65521.
It is now safe to enable the corresponding code by default.

Depends on #6379

antoninbas

Are we planning to bump this up to GA for v2.2?
With the current state of things, is there any situation where a user would want to be able to disable this functionality?

(You may to update some unit tests with this change)

hongliangl · 2024-05-29T01:45:31Z

Are we planning to bump this up to GA for v2.2?

I think we can do it in v2.2. After all, this is a basic functionality. It was not supposed to add a feature gate when adding this. However, due to the limitation of netlink, we had to add a feature gate in #5112.

With the current state of things, is there any situation where a user would want to be able to disable this functionality?

Maybe there is no reason to disable the functionality since it is a very basic. You can find the corresponding e2e tests in this link https://github.com/kubernetes/kubernetes/master/test/e2e/network/conntrack.go.

(You may to update some unit tests with this change)

Yes, I'll add or update some unit tests to cover all code of the functionality.

tnqn · 2024-05-29T14:20:56Z

I see you already extracted virtualNodeIP related cleanup to #6379, which is the right thing. The PR should just focus on the promotion.

hongliangl · 2024-05-29T14:35:51Z

I see you already extracted virtualNodeIP related cleanup to #6379, which is the right thing. The PR should just focus on the promotion.

I should mention that the fix #6372 should be merged first, and this pr can be merged then.

antoninbas

could we extract the refactoring of pkg/agent/proxy/proxier_test.go from this graduation PR? Are the 2 changes inter-dependent?

hongliangl · 2024-06-07T01:13:24Z

could we extract the refactoring of pkg/agent/proxy/proxier_test.go from this graduation PR?

Will do.

Are the 2 changes inter-dependent?

No, the refactoring of pkg/agent/proxy/proxier_test.go could be dependent. Though my original motivation for refactoring the file is to enable CleanupStaleUDPSvcConntrack in some tests.

In antrea-io#5112, due to the limitations of the Go netlink library, AntreaProxy would unconditionally delete conntrack entries added by kube-proxy in conntrack zone 0. AntreaProxy was supposed to only delete its own entries in conntrack zones 65520 or 65521. To address this, a feature was added to isolate the relevant code. After the merge of antrea-io#6193, the netlink library was updated, allowing AntreaProxy to precisely delete conntrack entries in zones 65520 or 65521. It is now safe to enable the corresponding code by default. Signed-off-by: Hongliang Liu <lhongliang@vmware.com>

antoninbas

LGTM

hongliangl · 2024-06-13T12:12:10Z

/test-all

tnqn

LGTM

hongliangl force-pushed the 20240527-proxy-udp-beta branch 3 times, most recently from 2159797 to 50c73bb Compare May 28, 2024 15:58

hongliangl changed the title ~~[WIP] Promote CleanupStaleUDPSvcConntrack to Beta stage~~ Promote feature CleanupStaleUDPSvcConntrack from Alpha to Beta May 28, 2024

hongliangl marked this pull request as ready for review May 28, 2024 15:59

hongliangl added the action/release-note Indicates a PR that should be included in release notes. label May 28, 2024

antoninbas reviewed May 28, 2024

View reviewed changes

antoninbas requested a review from tnqn May 28, 2024 20:02

hongliangl force-pushed the 20240527-proxy-udp-beta branch 2 times, most recently from 24a3f0c to a6fc051 Compare May 29, 2024 10:53

hongliangl force-pushed the 20240527-proxy-udp-beta branch from a6fc051 to 3044aff Compare May 30, 2024 02:33

hongliangl force-pushed the 20240527-proxy-udp-beta branch from 3044aff to 9b82e7b Compare June 6, 2024 09:47

hongliangl requested a review from antoninbas June 6, 2024 12:27

antoninbas reviewed Jun 6, 2024

View reviewed changes

hongliangl force-pushed the 20240527-proxy-udp-beta branch from 9b82e7b to a1f9f7f Compare June 7, 2024 01:30

hongliangl force-pushed the 20240527-proxy-udp-beta branch from a1f9f7f to 8bdc2b1 Compare June 12, 2024 17:05

antoninbas approved these changes Jun 12, 2024

View reviewed changes

tnqn approved these changes Jun 13, 2024

View reviewed changes

tnqn merged commit 79a4693 into antrea-io:main Jun 13, 2024
52 of 55 checks passed

hongliangl deleted the 20240527-proxy-udp-beta branch June 14, 2024 00:04

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Promote feature CleanupStaleUDPSvcConntrack from Alpha to Beta #6372

Promote feature CleanupStaleUDPSvcConntrack from Alpha to Beta #6372

hongliangl commented May 27, 2024 •

edited

Loading

antoninbas left a comment

hongliangl commented May 29, 2024

tnqn commented May 29, 2024

hongliangl commented May 29, 2024

antoninbas left a comment

hongliangl commented Jun 7, 2024

antoninbas left a comment

hongliangl commented Jun 13, 2024

tnqn left a comment

Promote feature CleanupStaleUDPSvcConntrack from Alpha to Beta #6372

Promote feature CleanupStaleUDPSvcConntrack from Alpha to Beta #6372

Conversation

hongliangl commented May 27, 2024 • edited Loading

antoninbas left a comment

Choose a reason for hiding this comment

hongliangl commented May 29, 2024

tnqn commented May 29, 2024

hongliangl commented May 29, 2024

antoninbas left a comment

Choose a reason for hiding this comment

hongliangl commented Jun 7, 2024

antoninbas left a comment

Choose a reason for hiding this comment

hongliangl commented Jun 13, 2024

tnqn left a comment

Choose a reason for hiding this comment

hongliangl commented May 27, 2024 •

edited

Loading