Skip to content

Commit

Permalink
Cleanup finalizer workflow and improve Ingress GC
Browse files Browse the repository at this point in the history
  • Loading branch information
skmatti committed Aug 28, 2019
1 parent e3bdc95 commit 78801b3
Show file tree
Hide file tree
Showing 9 changed files with 358 additions and 74 deletions.
15 changes: 4 additions & 11 deletions pkg/backends/backends.go
Original file line number Diff line number Diff line change
Expand Up @@ -139,31 +139,24 @@ func (b *Backends) Get(name string, version meta.Version, scope meta.KeyType) (*
}

// Delete implements Pool.
func (b *Backends) Delete(name string, version meta.Version, scope meta.KeyType) (err error) {
defer func() {
if utils.IsHTTPErrorCode(err, http.StatusNotFound) {
err = nil
}
}()

func (b *Backends) Delete(name string, version meta.Version, scope meta.KeyType) error {
klog.V(2).Infof("Deleting backend service %v", name)

// Try deleting health checks even if a backend is not found.
key, err := composite.CreateKey(b.cloud, name, scope)
if err != nil {
return err
}
err = composite.DeleteBackendService(b.cloud, key, version)
if err != nil {
if utils.IsHTTPErrorCode(err, http.StatusNotFound) {
klog.Infof("DeleteBackendService(_, %v, %v) = %v; backend service does not exists, ignoring", key, version, err)
if utils.IsHTTPErrorCode(err, http.StatusNotFound) || utils.IsInUsedByError(err) {
klog.Infof("DeleteBackendService(_, %v, %v) = %v; ignorable error", key, version, err)
return nil
}
klog.Errorf("DeleteBackendService(_, %v, %v) = %v", key, version, err)
return err
}
klog.V(2).Infof("DeleteBackendService(_, %v, %v) ok", key, version)
return
return nil
}

// Health implements Pool.
Expand Down
114 changes: 67 additions & 47 deletions pkg/controller/controller.go
Original file line number Diff line number Diff line change
Expand Up @@ -23,10 +23,6 @@ import (
"sync"
"time"

"k8s.io/ingress-gce/pkg/frontendconfig"

"k8s.io/klog"

"github.com/GoogleCloudPlatform/k8s-cloud-provider/pkg/cloud/meta"
apiv1 "k8s.io/api/core/v1"
"k8s.io/api/networking/v1beta1"
Expand All @@ -37,23 +33,23 @@ import (
listers "k8s.io/client-go/listers/core/v1"
"k8s.io/client-go/tools/cache"
"k8s.io/client-go/tools/record"
"k8s.io/ingress-gce/pkg/annotations"
backendconfigv1beta1 "k8s.io/ingress-gce/pkg/apis/backendconfig/v1beta1"
frontendconfigv1beta1 "k8s.io/ingress-gce/pkg/apis/frontendconfig/v1beta1"
"k8s.io/ingress-gce/pkg/backends"
"k8s.io/ingress-gce/pkg/common/operator"
"k8s.io/ingress-gce/pkg/healthchecks"
"k8s.io/ingress-gce/pkg/instances"

"k8s.io/ingress-gce/pkg/annotations"
"k8s.io/ingress-gce/pkg/context"
"k8s.io/ingress-gce/pkg/controller/translator"
"k8s.io/ingress-gce/pkg/flags"
"k8s.io/ingress-gce/pkg/frontendconfig"
"k8s.io/ingress-gce/pkg/healthchecks"
"k8s.io/ingress-gce/pkg/instances"
"k8s.io/ingress-gce/pkg/loadbalancers"
negtypes "k8s.io/ingress-gce/pkg/neg/types"
ingsync "k8s.io/ingress-gce/pkg/sync"
"k8s.io/ingress-gce/pkg/tls"
"k8s.io/ingress-gce/pkg/utils"
"k8s.io/kubernetes/pkg/util/slice"
"k8s.io/klog"
)

// LoadBalancerController watches the kubernetes api and adds/removes services
Expand Down Expand Up @@ -106,7 +102,6 @@ func NewLoadBalancerController(

healthChecker := healthchecks.NewHealthChecker(ctx.Cloud, ctx.HealthCheckPath, ctx.DefaultBackendHealthCheckPath, ctx.ClusterNamer, ctx.DefaultBackendSvcPort.ID.Service)
instancePool := instances.NewNodePool(ctx.Cloud, ctx.ClusterNamer)

backendPool := backends.NewPool(ctx.Cloud, ctx.ClusterNamer)

lbc := LoadBalancerController{
Expand Down Expand Up @@ -142,6 +137,15 @@ func NewLoadBalancerController(
},
DeleteFunc: func(obj interface{}) {
delIng := obj.(*v1beta1.Ingress)
if delIng == nil {
klog.Errorf("Invalid object type: %T", obj)
return
}
if delIng.ObjectMeta.DeletionTimestamp != nil {
klog.V(2).Infof("Ignoring delete event for Ingress %v, deletion will be handled via the finalizer", utils.IngressKeyFunc(delIng))
return
}

if !utils.IsGLBCIngress(delIng) {
klog.V(4).Infof("Ignoring delete for ingress %v based on annotation %v", utils.IngressKeyFunc(delIng), annotations.IngressClassKey)
return
Expand Down Expand Up @@ -378,31 +382,39 @@ func (lbc *LoadBalancerController) GCBackends(state interface{}) error {
return fmt.Errorf("expected state type to be gcState, type was %T", state)
}

if err := lbc.backendSyncer.GC(gcState.svcPorts); err != nil {
if err := lbc.backendSyncer.GC(gcState.svcPortsToKeep); err != nil {
return err
}

// TODO(ingress#120): Move this to the backend pool so it mirrors creation
if len(gcState.lbNames) == 0 {
if len(gcState.lbNamesToKeep) == 0 {
igName := lbc.ctx.ClusterNamer.InstanceGroup()
klog.Infof("Deleting instance group %v", igName)
if err := lbc.instancePool.DeleteInstanceGroup(igName); err != err {
return err
}
}
return nil
}

for _, ing := range gcState.ingresses {
if utils.IsDeletionCandidate(ing.ObjectMeta, utils.FinalizerKey) {
ingClient := lbc.ctx.KubeClient.NetworkingV1beta1().Ingresses(ing.Namespace)
if flags.F.FinalizerRemove {
if err := utils.RemoveFinalizer(ing, ingClient); err != nil {
klog.Errorf("Failed to remove Finalizer from Ingress %v/%v: %v", ing.Namespace, ing.Name, err)
return err
}
}
}
// MaybeRemoveFinalizers cleans up Finalizers if needed.
func (lbc *LoadBalancerController) MaybeRemoveFinalizers(state interface{}) error {
if !flags.F.FinalizerRemove {
klog.V(4).Infof("Removing finalizers not enabled")
return nil
}
gcState, ok := state.(*gcState)
if !ok {
return fmt.Errorf("expected state type to be gcState, type was %T", state)
}

for _, ing := range gcState.ingressesToCleanup {
ingClient := lbc.ctx.KubeClient.NetworkingV1beta1().Ingresses(ing.Namespace)
if err := utils.RemoveFinalizer(ing, ingClient); err != nil {
klog.Errorf("Failed to remove Finalizer from Ingress %v/%v: %v", ing.Namespace, ing.Name, err)
return err
}
}
return nil
}

Expand Down Expand Up @@ -437,7 +449,7 @@ func (lbc *LoadBalancerController) GCLoadBalancers(state interface{}) error {
return fmt.Errorf("expected state type to be gcState, type was %T", state)
}

if err := lbc.l7Pool.GC(gcState.lbNames); err != nil {
if err := lbc.l7Pool.GC(gcState.lbNamesToKeep); err != nil {
return err
}

Expand All @@ -464,22 +476,14 @@ func (lbc *LoadBalancerController) sync(key string) error {
}
klog.V(3).Infof("Syncing %v", key)

// Create state needed for GC.
gceIngresses := operator.Ingresses(lbc.ctx.Ingresses().List()).Filter(func(ing *v1beta1.Ingress) bool {
return utils.IsGCEIngress(ing)
}).AsList()

// gceSvcPorts contains the ServicePorts used by only single-cluster ingress.
gceSvcPorts := lbc.ToSvcPorts(gceIngresses)
lbNames := lbc.ctx.Ingresses().ListKeys()

ing, ingExists, err := lbc.ctx.Ingresses().GetByKey(key)
if err != nil {
return fmt.Errorf("error getting Ingress for key %s: %v", key, err)
}
gcState := &gcState{lbc.ctx.Ingresses().List(), lbNames, gceSvcPorts}
if !ingExists || utils.IsDeletionCandidate(ing.ObjectMeta, utils.FinalizerKey) {
klog.V(2).Infof("Ingress %q no longer exists, triggering GC", key)

gcState := lbc.createGCState()
// Determine if the ingress needs to be GCed.
if !ingExists || utils.NeedsCleanup(ing) {
// GC will find GCE resources that were used for this ingress and delete them.
return lbc.ingSyncer.GC(gcState)
}
Expand All @@ -494,18 +498,6 @@ func (lbc *LoadBalancerController) sync(key string) error {
}
}

// Check if ingress class was changed to non-GLBC to remove ingress LB from state and trigger GC
if !utils.IsGLBCIngress(ing) {
klog.V(2).Infof("Ingress %q class was changed, triggering GC", key)
// Remove lb from state for GC
gcState.lbNames = slice.RemoveString(gcState.lbNames, key, nil)
if gcErr := lbc.ingSyncer.GC(gcState); gcErr != nil {
return gcErr
}

return nil
}

// Bootstrap state for GCP sync.
urlMap, errs := lbc.Translator.TranslateIngress(ing, lbc.ctx.DefaultBackendSvcPort.ID)

Expand Down Expand Up @@ -644,3 +636,31 @@ func (lbc *LoadBalancerController) ToSvcPorts(ings []*v1beta1.Ingress) []utils.S
}
return knownPorts
}

// createGCState constructs GC State for GC.
func (lbc *LoadBalancerController) createGCState() *gcState {
all := lbc.ctx.Ingresses().List()
// An Ingress is considered to exist and managed by our controller if:
// 1) It is a GCE Ingress.
// 2) It is not a candidate for deletion.
// Note: Multi-cluster Ingress resources are not managed by this controller, hence filtered out.
toKeep := operator.Ingresses(all).Filter(func(ing *v1beta1.Ingress) bool {
return utils.IsGCEIngress(ing) && !utils.IsDeletionCandidate(ing.ObjectMeta, utils.FinalizerKey)
}).AsList()
// List all of the Ingresses that are deletion candidates.
toCleanup := operator.Ingresses(all).Filter(utils.NeedsCleanup).AsList()
toKeepSvcPorts := lbc.ToSvcPorts(toKeep)
toKeepLbNames := toLbNames(toKeep)

// gcState needs to have all three fields be a snapshot of the current state to avoid inconsistency.
return &gcState{toCleanup, toKeepLbNames, toKeepSvcPorts}
}

// toLbNames translates a list of ingresses into their corresponding load balancer names.
func toLbNames(ings []*v1beta1.Ingress) []string {
lbNames := make([]string, 0, len(ings))
for _, ing := range ings {
lbNames = append(lbNames, utils.IngressKeyFunc(ing))
}
return lbNames
}
Loading

0 comments on commit 78801b3

Please sign in to comment.