Introduce trafficDistribution field for Kubernetes Services

[gauravkghildiyal]

What type of PR is this?

/kind feature
/kind api-change

What this PR does / why we need it:

This is an initial implementation of the changes discussed in KEP-4444 (new field offering greater control over traffic distribution to Service endpoints)

Special notes for your reviewer:

We were planning on finalizing the names during the implementation. Given no one liked the initial field name (routingPreference), I've choosen a different one from the discussions:

Field name: trafficDistribution
Allowed values: PreferClose (not specifying any value results in default behaviour)

Does this PR introduce a user-facing change?

A new (alpha) field, `trafficDistribution`, has been added to the Service `spec`.
This field provides a way to express preferences for how traffic is distributed to the endpoints for a Service.
It can be enabled through the `ServiceTrafficDistribution` feature gate.

Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:

- [KEP]: https://github.com/kubernetes/enhancements/tree/master/keps/sig-network/4444-service-traffic-distribution

/sig network
/priority important-soon

[gauravkghildiyal]

/assign @danwinship
/assign @robscott
/assign @thockin

[k8s-triage-robot]

This PR may require API review.

If so, when the changes are ready, complete the pre-review checklist and request an API review.

Status of requested reviews is tracked in the API Review project.

[sftim]

Changelog suggestion

-A new field, `trafficDistribution`, has been added to the Service `spec`. This field provides a way to express preferences for how traffic is distributed to Service endpoints. It can be enabled through the `ServiceTrafficDistribution` feature gate.
+A new (alpha) field, `trafficDistribution`, has been added to the Service `spec`.
+This field provides a way to express preferences for how traffic is distributed to the endpoints for a Service.
+It can be enabled through the `ServiceTrafficDistribution` feature gate.

[aojea]

ok, it seems we are not going to use Defaultvalue and use nil as Default, I was thinking that was the best option too, and it is easy to implementn backwards compatibility and skew support

[gauravkghildiyal]

Yep that is the case!

[thockin]

Re-open.

I'm not sure unspecified makes sense in the new naming, and if it does make sense we should not equate "" with unspecified. "" is a value.

[aojea]

How will this play with terminating endpoints @robscott ?

The feature is critical for rolling updates, I think is fair to say that users will expect it to keep working once hints are enabled, do we need to consider them for the hints or just only in the proxy implementation?

[aojea]

ok, it is answered later in the unit tests https://github.com/kubernetes/kubernetes/pull/123487/files#r1503894252, it seems externalTrafficPolicy Local disable hints

[aojea]

do we need to make this an option?
if this is going to be a field this will be assumed to be always true and governed by the feature gate until then,

[gauravkghildiyal]

By "option", did you mean something like reconciler := NewReconciler(other_params, WithTrafficDistributionEnabled())?

• If not, can you please elaborate? Yes the idea here was for this to be a featuregate equivalent, similar to what topologyCache does for topology hints to some extend...nil topologyCache means feature gate is disabled.
• If yes, doesn't it needlessly make this more complex for just one option?

[aojea]

in the future when the feature gate graduates this will be always true, bceause the feature will be removed, so no need to pass a parameter

[khenidak]

I think the question is: why is the feature gate passed as an argument to the reconciler? is it because feature module is not available to k8s.io/endpointslice?

[gauravkghildiyal]

I think the question is: why is the feature gate passed as an argument to the reconciler? is it because feature module is not available to k8s.io/endpointslice?

@khenidak -- Yes that is the intent -- the package is used independently as well (outside the kube-controller-manager binary), which means it's not helpful to explicitly create a dependency from the k8s.io/endpointslice package to the featuregates. Hence the need to pass a flag.

in the future when the feature gate graduates this will be always true, bceause the feature will be removed, so no need to pass a parameter

@aojea -- Thanks I understood the intent and have made the change. My thoughts initially were to eventually remove this additional parameter from NewReconciler when it is not needed -- I was hoping such change to the package's API surface should be one which independent users of this package can easily accommodate. But I agree if we can avoid such things at lower cost, then why not.

[aojea]

changes to public apis are disruptive for users as they conflict when they revendor,

[khenidak]

s/slice.Endpoints[i].Hints/endpoint.Hints/

[khenidak]

also, are we ok with empty hints?

[gauravkghildiyal]

s/slice.Endpoints[i].Hints/endpoint.Hints/

The intent is to modify the value in the slice. Using endpoint.Hints would just modify the copied endpoint (and not the one in the slice), which would be incorrect.

also, are we ok with empty hints?

Yes you are right, we would be okay with that!

[khenidak]

why do we need to separate needsUpdate(..) and update(..)?

[gauravkghildiyal]

Good question! The answer to this is how ReconcileHints is structured:

• needsUpdate helps us decide when an endpointslice needs update so that we can deepcopy it (and not modify the original)
• update helps us modify the an EndpointSlice inplace.

There is a case where we DON'T need to deepcopy and just modify the original EndpointSlice (viz. slicesToCreate), so having this separation helps us use them independently.

[gauravkghildiyal]

/unhold Added the "options" construct.

Would need an lgtm again from someone here :)

[gauravkghildiyal]

/unhold

[robscott]

/lgtm

[k8s-ci-robot]

LGTM label has been added.

Git tree hash: bdec775adc250a85d8f2bbdaa8e1df7c9827bac3

[thockin]

I interpret us makingPreferClose to mean PreferZone as trying to somewhat balance the risks and meeting half way between

I think we need to find a way to offer PreferNode, and I'd prefer (ha!) not to have 4 different traffic-control knobs.

[pacoxu]

/test pull-kubernetes-node-e2e-containerd

[gauravkghildiyal]

I think we need to find a way to offer PreferNode, and I'd prefer (ha!) not to have 4 different traffic-control knobs.

I think we should be able to use the trafficDistribution field to offer prefer-node-behaviour as well -- I certainly agree that we should/would not need a 4th knob for such a thing.

Assuming if I'm understanding the concern correctly, on the question of whether:

• PreferClose (which for now offers perfer-zone-behaviour) could in the future mean a prefer-node-behaviour
  OR
• We would need to introduce a separate PreferNode in addition to existing PreferClose

...this exact thing is something we've delved into in the past at https://github.com/kubernetes/enhancements/pull/4445#discussion_r1475298305 It's a long conversation, but certainly one of the very insightful ones, and worth a re-read.

Pulling in the thoughts from that conversation here for a more structured comparision of the choice we have made (viz. defining PreferClose instead of PreferZone) and how it affects future decisions. I, for one feel like we have made the right choice with using PreferClose (although, I agree, initially I may have been the one advocating using PreferZone)

PreferClose

Pros

• Having a generic term like PreferClose means that implementations are free to interpret it as they want and offer a certain level of "closeness" which they are comfortable with offering without taking a "huge" amount of risk.

  • For kube-proxy, this would mean that PreferClose=prefer-zone-behaviour is something that we deemed okay
  • For some other implementation, they might be able to offer a better PreferClose=prefer-node-and-waterfall-based-on-load-behaviour while still not making it too risky (maybe that implementation can monitor backend traffic and appropriately use the fallback when appropriate)

  ...The advantage being, that the same PreferClose word is suitable for both the "naive" (kube-proxy) and the "smart" (some-future-implementation) implementation. This encourages standardization where the end-user can use PreferClose across implementations and expect somewhat good results (in the form of improved latency, or cost savings by avoiding cross-zone traffic)

Cons

• For an implementation like kube-proxy, which initialy delivered PreferClose=prefer-zone-behaviour, it may not be seen appropriate to have a behaviour change and start delivering PreferClose=prefer-node-behaviour (without also adding any kind of load-based-feedback to avoid node-local overload) since this is certainly increasing the risk. In other words, if kube-proxy were to start support prefer-node-behaviour without having any feedback mechanism, a new PreferNode would need to be introduced to the API. This means that the new set of supported values would be [PreferClose, PreferNode] and an argument could be made that the choices have overlapping behaviour and could be seen as confusing.

If we really treat this as a valid-concern, a possible solution here would be an introduction of an implementaiton specific heuristic for kube-proxy to deliver prefer-node-behaviour (something like kube-proxy.io/PreferNode).

PreferZone

Pros

The advantage with only having precise terms like PreferZone is that if in the future kube-proxy wants to offer prefer-node-behaviour, it only has the option of adding a new choice PreferNode to the API and the new possibe set of values [PreferZone, PreferNode] don't have any overlapping behaviour (which may be considered less confusing)

Cons

This choice forces smarter implementations to only be able to deliver prefer-zone-behaviour, even though they could have delivered a a prefer-node-and-waterfall-based-on-load-behaviour. The implementation would either have to:

• define an "implementation-specific-heuristic" to deliver such a thing (which results in less standardization across implementations)
• or wait for such a terminology to be introduced to the kubernetes standard API (which could take ~year)

[gyutaeb]

KEP-4444 link is changed.