Support setting LocalAddr in peer communication - with e2e tests #17661
Conversation
|
Hi @flawedmatrix. Thanks for your PR. I'm waiting for a etcd-io member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
flawedmatrix
force-pushed
the
fix/17068
branch
2 times, most recently
from
1ddb114
to
8c46359
Compare
|
/ok-to-test |
|
Thank you @ahrtr for the very thorough review. I've made the suggested changes to my PR. |
|
cc @fuweid @jmhbnz @serathius PTAL |
|
/retest |
|
@vivekpatani @ivanvc @fuweid @jmhbnz @serathius Please take a look at this PR. It resolve a real production issue #17068 |
There was a problem hiding this comment.
Thanks for working on this @flawedmatrix and @ahrtr. Some questions below.
| @@ -107,6 +107,8 @@ Member: | |||
| Clustering: | |||
| --initial-advertise-peer-urls 'http://localhost:2380' | |||
| List of this member's peer URLs to advertise to the rest of the cluster. | |||
| --set-member-localaddr 'false' | |||
There was a problem hiding this comment.
Note so we don't forget to do follow-up pr for website for this new clustering flag in https://etcd.io/docs/v3.6/op-guide/configuration.
server/etcdmain/help.go
Outdated
| @@ -107,6 +107,8 @@ Member: | |||
| Clustering: | |||
| --initial-advertise-peer-urls 'http://localhost:2380' | |||
| List of this member's peer URLs to advertise to the rest of the cluster. | |||
| --set-member-localaddr 'false' | |||
| Enable to have etcd use the first specified and non-loopback host from initial-advertise-peer-urls as the local address when communicating with a peer. | |||
There was a problem hiding this comment.
Would it make more sense to say local address rather than host? Basing this on the test case above where local IPv4 is prioritised over hostname.
| Enable to have etcd use the first specified and non-loopback host from initial-advertise-peer-urls as the local address when communicating with a peer. | |
| Enable to have etcd use the first specified and non-loopback local address from initial-advertise-peer-urls as the local address when communicating with a peer. |
Alternatively we might just want to state what the priority order is so users aren't left to figure this out on their own.
There was a problem hiding this comment.
I'm not sure if it's just me, but I feel like mentioning etcd in this case is redundant (without addressing the priority order) something like:
Enable using the first specified and non-loopback local address from initial-advertise-peer-urls as the local address when communicating with a peer.
Sounds more straightforward.
server/etcdmain/help.go
Outdated
| @@ -107,6 +107,8 @@ Member: | |||
| Clustering: | |||
| --initial-advertise-peer-urls 'http://localhost:2380' | |||
| List of this member's peer URLs to advertise to the rest of the cluster. | |||
| --set-member-localaddr 'false' | |||
| Enable to have etcd use the first specified and non-loopback host from initial-advertise-peer-urls as the local address when communicating with a peer. | |||
There was a problem hiding this comment.
I'm not sure if it's just me, but I feel like mentioning etcd in this case is redundant (without addressing the priority order) something like:
Enable using the first specified and non-loopback local address from initial-advertise-peer-urls as the local address when communicating with a peer.
Sounds more straightforward.
| return addr.String() | ||
| } | ||
| } | ||
| return "" |
There was a problem hiding this comment.
Suggest to return error or print warning log here, because user wants to use target IP
There was a problem hiding this comment.
That's a good point. I added more logging around this area.
flawedmatrix
force-pushed
the
fix/17068
branch
2 times, most recently
from
5a19043
to
4ea35aa
Compare
|
Thanks all for the suggestions. I've made the changes, added more unit test cases and added some logging to |
|
/retest |
flawedmatrix
force-pushed
the
fix/17068
branch
2 times, most recently
from
d5f26d0
to
39453ca
Compare
|
Hi @ahrtr, I just rebased again to fix the merge conflict. Could you please take a look? |
|
Hi @flawedmatrix, I suggest squashing the commits in preparation for merging this PR. |
Signed-off-by: HighPon <s.shiraki.business@gmail.com>
Which sets the LocalAddr to an IP address from --initial-advertise-peer-urls. Also adds e2e test that requires this flag to succeed. Signed-off-by: Edwin Xie <edwin.xie@broadcom.com>
|
Hi @ivanvc, I've squashed the commits that were my contributions. Thanks. |
This PR builds upon #17085 in addressing issue #17068.
The e2e test added includes a positive test that --set-member-localaddr is needed for an etcd node to come up, and a test that without it, etcd will fail to connect to peers due to the certificate being issued for a different IP.
I did have to add in some cert generation to create certificates for the host IP where the test is running.
There is an implementation detail here that
--set-member-localaddrwill set the LocalAddr only if there is a specified non-loopback IP address in the--initial-advertise-peer-urlslist. But I don't know if this is too restrictive.