Add filter state receive_before_connect to tcp_proxy#36581
Closed
akshita31 wants to merge 8 commits intoenvoyproxy:mainfrom
Closed
Add filter state receive_before_connect to tcp_proxy#36581akshita31 wants to merge 8 commits intoenvoyproxy:mainfrom
akshita31 wants to merge 8 commits intoenvoyproxy:mainfrom
Conversation
|
Hi @akshita31, welcome and thank you for your contribution. We will try to review your Pull Request as quickly as possible. In the meantime, please take a look at the contribution guidelines if you have not done so already. |
5f83a94 to
5c171de
Compare
hbhasker
reviewed
Oct 16, 2024
docs/root/configuration/listeners/network_filters/tcp_proxy_filter.rst
Outdated
Show resolved
Hide resolved
38f5d35 to
f82ccc7
Compare
hbhasker
suggested changes
Oct 21, 2024
| ASSERT(0 == early_data_buffer_.length()); | ||
|
|
||
| // Read enable the connection now that early data has been flushed to the upstream. | ||
| read_callbacks_->connection().readDisable(false); |
There was a problem hiding this comment.
Should we in that case check connection state and assert that its actually readDisabled before enabling? Or maybe we don't care?
| ASSERT_FALSE(fake_upstreams_[0]->waitForRawConnection(fake_upstream_connection)); | ||
|
|
||
| ASSERT_TRUE(tcp_client->write("world")); | ||
| test_server_->waitForCounterEq("tcp.tcpproxy_stats.early_data_received_count_total", 1); |
There was a problem hiding this comment.
Do we have a metric for how much data is received in early data. That would be good to have a metric on as well.
cacf44e to
cdcb41c
Compare
hbhasker
approved these changes
Oct 21, 2024
| ASSERT(0 == early_data_buffer_.length()); | ||
|
|
||
| // Read enable the connection now that early data has been flushed to the upstream. | ||
| read_callbacks_->connection().readDisable(false); |
cdcb41c to
f17adbe
Compare
dwj300
reviewed
Oct 23, 2024
Add filter state object bool proxy_receive_before_connect that tcp_proxy filter checks for and when set to 'true' will not set readDisable on the downstream connection before upstream connection is established. This change allows advanced cases where a network read filter needs to receive (and possibly send) downstream data that may change the destination of the upstream TCP connection, e.g. via metadata set based on the received data. If this is the case, then the read filter preceding the tcp_proxy filter must return StopIteration from its onNewConnection() call, causing tcp_proxy filter to postpone its upstream connection establishment until onData() returns Continue. Any data reaching the tcp_proxy filter before the upstream connection is established is buffered so that the downstream filters do not see the same data again which would be the case if it would remaining in the buffer and more data is received. This also allows downstream filters inject data before the upstream connection is established; such injected data would be lost if tcp_proxy would not buffer it while connection establishment is still ongoing. An existing dynamic metadata integration test is modified to use proxy_receive_before_connect=true. This makes the use case less reliant on the tcp_proxy internal detail, such as balancing and timing of the readDisable() calls on the downstream connection. Signed-off-by: Jarno Rajahalme <jarno@isovalent.com>
Signed-off-by: Jarno Rajahalme <jarno@isovalent.com>
Signed-off-by: Akshita Agarwal <akshita.agarwal@airbnb.com>
Signed-off-by: Akshita Agarwal <akshita.agarwal@airbnb.com>
Signed-off-by: Akshita Agarwal <akshita.agarwal@airbnb.com>
Signed-off-by: Akshita Agarwal <akshita.agarwal@airbnb.com>
ebff2d1 to
56c3b24
Compare
Signed-off-by: Akshita Agarwal <akshita.agarwal@airbnb.com>
56c3b24 to
9f4875d
Compare
|
This pull request has been automatically marked as stale because it has not had activity in the last 30 days. It will be closed in 7 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions! |
|
This pull request has been automatically closed because it has not had activity in the last 37 days. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions! |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Commit Message:
This PR picks up the work done in #25804.
receive_before_connectfilter state which can be read by TCP_PROXY and if set TCP_PROXY will not disable downstream reads until the upstream connection is established. This can hence be used by filters before TCP_PROXY to set the filter state ininitializeReadFilterCallbacks, and then StopIteration in onNewConnection and onData, until they have read the required amount of data before upstream connection establishment.Additional Description:
Risk Level: Low
Testing: Added integration and unit tests
Docs Changes: Done
Release Notes:
Platform Specific Features:
[Optional Runtime guard:]
[Optional Fixes #Issue]
[Optional Fixes commit #PR or SHA]
[Optional Deprecated:]
[Optional API Considerations:]