Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
Istio / User Experience Working Group / 14 Jul 2020
Istio / User Experience Working Group / 14 Jul 2020
Previous Meeting Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: Istio User Experience working group meeting held July 14 2020

Description

The Istio User Experience working group meeting held via WebEx on July 14 2020

A

The feature freeze is next tuesday if anyone has a pr that is due 417, but will not make this, please let me know so we can discuss it now.

A

I've spent the last week working on the xds based istio commands for version and proxy status, and I got frustrated with a large number of command line options for them, and I decided to implement a customer request, a config file or istio cuddle. So I would like now to walk everyone through what I implemented. So we can see if this is what is needed and the right solution for it.

A

So before one seven, we picked up a lot of important things from the kubernetes config file, such as the current context and the which, of course gives us where the control plane is located most of the stuff that we needed was there.

A

But if we don't have kubernetes in the picture, we have just um a control plane out there on the internet somewhere. We won't have that. So I wanted to make sure that we had a replacement for that. So I designed a config file for the settings. The goals were that it should be very familiar.

A

Our users commands shouldn't change. The new required parameters should just sort of be there, and other flags are also going to just be there. It should be easy uh for someone who's used, cube cuddle to set those defaults. It should be easy to override those defaults and it should be easy to implement because the code freezes soon- and I actually want this in so I propose that there'd be a config file located dot is to cuddle config.yml similar to what you see with cube.yaml for kubernetes.

A

I want the user experience to be nearly the same. So this is how the proxy status command should be.

A

The current command doesn't require parameters, but when I was testing this, there were a lot of parameters that were needed. I kept having to put the xts address the cert directory in and I would off get those wrong. It was difficult, so I wanted them all to be defaultable.

A

I wanted this to work with other things that users commonly do. I know people can customize the sgo namespace, and these people have complained about how his two cuddle doesn't pick up that customization.

A

We could also consider, but I didn't do the.

A

Context context: if we wanted uh with kubernetes people, often keep multiple config files around and they use cubeconfig to point to them. So I put the same functionality in so I should be able to point to one configuration file and do proxy status against one control. Plane instance should be able to do the same thing with another status against another instance.

A

And if you didn't want to use a config file, I took advantage of the viper feature allowing any of those parameters to be environment variables. So let's say your istio namespace was called, not steal system. You would just do this and from then on, it would default for the rest of the work that you were doing.

A

I also found that I didn't I looked the documentation and didn't want to write pages and pages. Telling people to do is to cuddle experimental version, still cuddle experimental proxy status.

A

We don't really want to replace the commands that are there right now, because these new xds ones kind of only alpha level in my opinion, but explaining that is too difficult, especially in 1 8. They might become the standard. So I have an additional setting called prefer experimental and if a user sets that the experimental commands appear instead of the current 1 6 implementations,.

A

All good so far yep. So let me show you what the config file looks like it's just a yaml file. Here's a sample one that I'll like to put into istio samples that it ships with.

A

Sort of gives some examples of things you can set, such as the xcr address.

A

We can talk about what this should look like, but here's, some of the things that I have set it for in the past just commented out comment another example of how to set the namespace and the cert directory.

A

Since I wrote this document, I've added a few other settings, but this is basically it I've also added a config list command that will show you the values that are going to be picked up from istio defaults and this list sort of combined um I'll give you a demo of that in a moment.

A

Liam had asked for there to be a set command to set these defaults, but I didn't implement that because the stuff in vipre for setting piece parameters was blowing away all the comments, the comments were almost more useful than being able to set it. I could be wrong about. I didn't. I have actually have the change, but it's not in the pr that I'm trying to get merged.

A

So I will um and the implementation says viper and it's small, so I'd like to give a demo of it now.

A

So if I do config list, I see the values of the things that I have set. This is to a namespace that we all know and a bunch of parameters for central.

A

Sdod and currently I have no istio config and if I do uh this to cuddle x version, it will go out to the control, plane and use these settings. So when you don't set xds address but set, you use the default xts port, it uses kubernetes to find sdod, but it will be passing in these certificates.

A

So it's really going to use this the secure um 1512 port, but it will pass in these certificates. If these were invalid, it wouldn't work. You can see that it sort of gives the version here if I set it to a different thing. So now I've, given it the insecure configuration.

A

I do config list to show you that it's not going to use 1510, it doesn't have certs, and I do version same as we saw before the implementation is the same. Ignore this, because it's not part of the pr and we can see that the stuff is all happening and use these values.

A

We can also set it to my test, one localhost, which is what I use when I'm running s2d locally on my laptop or from portfolio.

A

Settings there and if I do the command.

B

When you have both address and port specified, is there a precedence in those.

A

There is, um and I'm not super happy with the fact that port appears here, because it is not in the config file that is the default um for that setting. So it might be that we need to get rid of it.

A

um I sort of um it's it's unclear what this value should be, and I just my first version was just to put the sort of defaults in and the default for port is 1512 and it does take precedence if the user sets this.

A

So I did so.

B

The order of precedence, then, would would be first, the default, then a user specified xds address and then a user specified xds port or what? What happens if the user specifies both of those in their config file.

A

I believe that if the user specifies both xds address and port, that it should complain, but I will ch I can check that right now, um so I don't currently have pilot running, so it sort of gives me this error connection refused.

A

If I was to do xds address localhost 1510, xds, port 1234 it it is sort of ignoring this silently, which may not be the correct behavior. So let me write that down. That's a long-standing thing.

B

I think uh maybe on the config list command, it would be good to put defaults in brackets so that it's clear that it's not set and will not apply in terms of precedence.

A

You have a good point I might make this only show over writings. It's.

B

I really like the idea of showing the defaults it just. We need to call them out as defaults.

A

Right, um I um it was it sort of picks it up from this default here so um and some of the settings I didn't I didn't put in. If you look at the pr you can see that the list of things that are there is explicit as part of the pr and the code has to do it. So something like the timeout I didn't put in because I've never used it. It's easy to add and remove them.

A

That's that's! Basically, the demo.

A

Any questions about this work.

A

So my question is.

B

I I had no idea you were working on this. I like.

A

It thank you. I made it a green document here, but I could, uh if you guys, approved it, I can make it. I could go back and make it blue and you could approve it again and we could ship it and it's the pr is really small. If we look at it, it turned out. Istio already uses viper and viper is already extremely powerful and not full of garbage. So um it says it's large, but it's not really that big most of the largeness is that new configuration command.

A

The actual handling for the things like the defaults for istio namespace is just putting viper.getstring into the places where the defaults were an istio cuddle in the flags.

A

So it's it's really simple.

A

I had hoped to show the demo using proxy status instead of version, but then I made some changes and didn't have a sort of combined one, but there's this proxy status command. Let me show you um it. This is the new proxy status command.

A

The output of the new proxy status command is exactly the same as the output for the old proxy status command, identical, maybe except for the version- and that's not my fault,.

A

Because the place that this version gets coughed up is slightly different.

A

But when a release is made and it's not a daily build, it will be different, so the the implementation is uh the same. The client code is very similar, uh except the whole xds mechanism that we developed for the version command. I hope that people can look at that pr and just merge it.

A

Thank you for the comments that you made, especially on that pr mh. I did pretty much everything you said, except for reporting an error to the user if their pod doesn't exist so with the existing proxy status command. If I ask for the details of a particular pod like details, this is the old proxy status. It says they all match um the new one will work the same.

A

If I passed an invalid value to.

A

It probably didn't work because I didn't give it a config file.

A

Yeah, uh the the old code would give like a 400 or 404 if the request to pilot was malformed, there's no way to do that with the current um extension stuff. That is there and fixing that turned out to be a huge bear. So I'm gonna tell networking it's their job to fix. When I talk to them on thursday, so I hope that we can sort of make that pr for that sort of just go.

A

Anyone wants to.

B

Do it, and is the only error, condition a malformed proxy name.

A

So there's two air conditions: one is the malformed or missing proxy name. The other is a proxy name that doesn't exist, which should be like a 404 um that never actually occurs, because the client doesn't always goes to envoy first to pick up the envoy config and if there's no such pot, it fails. So it's actually hard to test um for invalid, possibly use grpc curl to test it.

A

It just returns, nothing be so much better for return, nothing and 404, but it's a main interface and it would require me changing a bunch of costumes code to return a second perimeter and there's no way, I'm touching that this week, yeah that's.

B

That's fine. Can we just make sure that we're tracking these uh things that are lacking from networking and make sure that they end up at a as a p0 on the networking roadmap for one eight.

A

uh That makes sense, um should we track it as an issue first, or should we go to the work group and meetings and beg them to tell us what to do?

A

Maybe we should make it first and assign it to them.

B

Yeah, I think I think, an issue, and then just uh you know, as we start talking about roadmap, we'll make sure that they they are aware of it and that it gets put on their roadmap.

B

As far as I can tell, the main way that we're tracking work against a release is with that road map and with the weekly status meeting with workgroup leads. So that seems like the mechanism we should be using.

B

Okay, we'll do.

A

Thanks ted, while I'm showing all this great stuff, I wanted to show uh the pr for more output columns. So I, um with changes in how pilot generates data for envoy and even before that the output of.

A

The proxy config command was really poor when it comes as a list. This does not help anyone the current output. I have a pr that makes the output look like this. This is how it looks on an ingress, at least on my ingress, so it adds up. It has many columns here.

A

um It adds the domains that are being listened to the particular matches and if, if something has more than one match it sort of shows and if there's a virtual service involved, it shows which one, if a user does this on a pod in the mesh, they see the same stuff. Of course it gets much messier, because these names are so long and I didn't want to try to make them smaller, but, um and the matches of course, usually are everything, but sometimes they're, big and the virtual service is here and also destination.

A

Rules has a a similar thing that I put into which command was it.

A

um So I added to the clusters: sub command the destination rule.

A

And you can see a new column, that's all for that one. So anyway, I had gotten a bunch of feedback from people um and I'm just it looks like it may have passed a review. I just want to make sure everybody knows what's going on because it has not yet.

A

Merged, so that's what I have um mitch. I can show that uh your proposal now or would you like to take over the screen, sharing no.

B

No, you can go ahead and open it up, um there's only a handful of improvements from what we discussed last week. They are at the bottom. So two weeks ago there were some performance concerns raised for the csds api, based on the fact that it allows multiple config dumps to be collected simultaneously.

B

uh I've spun up a testing cluster in the isotope or in the mixologist repository, which is where we run all of our istio performance tests. I use the same script that the perf testing group uses to set up the cluster and to put the cluster under load um for reference. It's a it's a service graph that includes 20 services per name space, and I don't recall what the lo the actual data plane load is. Although data plane load is a little bit irrelevant to the conversation.

B

What's particularly interesting is that every namespace has a config changer that is issuing a config change at a rate of, I believe, one per second so with like at the top, when I scaled up to 25 namespaces. That means 500 proxies and 50 changes per second in config that are having to get pushed out to those proxies so pretty heavy load.

B

You can see grafana snapshots throughout showing the impact on cpu on config distribution. Time memory go routines of running most of the experiments I ran one config dump, then five config dumps and then 50 config dumps um and no matter how I loaded down the sdod instance well, by the way, only one instance of sdod serving all of that traffic um or not traffic, but serving all of that config to all of the proxies. We were not able to find any impact on cpu utilization or proxy distribution time.

B

The one like caveat is, if you remove side cars so that there's 200 proxies with no side cars, so all of them have full visibility to all of the other proxies. There was a spike in cpu, but it was commensurate with other spikes that were seen when not running the command.

B

So it's a little bit difficult to say if the spike came from running the config dump command or if the spike came just from regular processes inside sdod, the spike was not higher or more longer in duration than other spikes observed over the previous two hours and that's the last link in the doc there. If you want to look over those charts.

B

Yeah so where you see my blue stripes on the cpu panel, uh you do see some cpu spikes there, but if you can, as you can see, they're not outliers uh and those are the only three times. I ran the proxy config command on this particular cluster, so those other spikes represent just normal operations within sdod itself.

B

Okay,.

A

Do you think this will convince networking that this is a valid way to do it.

B

um In I'm, not especially optimistic that networking is able to be convinced, uh however, I think that we've shown we've done our due diligence. Now we can take this and show that we're not uh irresponsibly creating a new performance hole. The only remaining uh section is just well. The other thing is: we've already agreed with networking not to implement this in one seven. So if we were to move forward with it, it would go into one eight.

A

Okay,.

A

Well, as you know, I like this better than the way that I did proxy status, because this means that we'll be able to use other tools other than istio cuddle, which has this unique debug way to do. It.

B

I envoy tools, repo is actually has a pr at the moment. I know I ed. I sent this to you, but uh they're going to be publishing their own tooling as a client to the csds service, so that for any envoy, xds server, you can take one generic tool and point it out there and get these this sort of status and config dump information.

B

So I've also been working with them on that pr and making sure that uh it's useful, my intent being that it should be useful against istio in the near future.

A

Right, so if they do that, we can get out of the business of having a steal, cuddle proxy status, and we could tell people to use theirs.

B

We could, if theirs becomes as good as ours. There might be a question of packaging.

B

It's a little bit useful to download one tool and have all of the commands available, but maybe we import their tool and simply run their command under the hood or something along those lines. One way or another. A higher degree of api compatibility with standard envoy tooling, is going to benefit.

A

Us does anyone hear mitch. I do not hear him.

B

Oh sorry, I think I just stopped talking ed. Oh okay,.

A

um So this is good, so in one seven we're going to do this stop gap which is to have our own debug xds stuff, but it returns csds responses.

A

So it's a ad hoc request, a sort of standard response, and then, if, if networking likes this, we will do a complete uh envoy style, request response and then we can get rid of our ad hoc requests.

A

So thank you for doing this work. Are you going to be presenting this to networking soon.

B

um I have sent this to coston individually because I don't, I think, he's the only person who had concerns. I don't think it was collectively networking, um so he he's aware of the work um that's about as much as I can say about it.

A

Okay, well, thank you for this. These tests.

B

Yeah, thank you. So are there any outstanding concerns about csds for 1.8 that I should be working on.

A

Okay, I I have no concerns about it. I think um I I have you.

B

Run on voice tool, I have not it's still in pull request form, so I'd have to pull it down and build it myself and I've. I've been too lazy. Okay, because I would be curious to see how their tool what its output looks like.

B

Yes, so looking at it today, the tool, the tools built by an intern at google- uh well at least the particular command of the tool is, and today it is very particular to google cloud's implementation of traffic director they've already confirmed that they're open to pull requests uh the thing that would differentiate, which, from like traffic director to istio, to maybe an ibm implementation of xds service or somewhere else, is that uh the auth authentication each of us supports.

B

You know slightly different authentication schemes and provisioning your certificate material things like that are a little bit different per platform. um So once we have a good story around how we get uh credentials provisioned for istio in 1.8, which may be what we do in 1.7, I can modify their tool to be compatible with what we're doing.

A

Okay, well, um thank you. I hope you can come back in maybe two weeks and show us just uh their output against an uh istio cluster and compared to ours. Maybe there's fields they have that we lack that would be valuable.

B

I don't know I'll take that as a follow-up. As soon as I've got my uh my service up and running, I think ed. I've shown you the code, it's it's not there. Yet it's not ready to be merged, which is fine because master isn't on 1.8. Yet uh the earliest it could merge is wednesday but uh yeah within a week or two. It should be there. It's just a few rough edges here and there, okay excellent.

B

Would it be? Should I consider that design approved and move forward with this or.

A

So, from a user experience point of view, I of course approve it, but that's I'm only approving it from the user interface point of view. Carson's objections were not about the interface but about the committing to something that might be heavy in terms of network or cpu yeah. So I can't approve it in terms of that.

B

That that's fair yeah, I I will. I will address those concerns with costume. Okay,.

A

So that's the material that we have are there any other items that we want to talk about today?

A

Also I noticed rom has joined us ron were you here at the beginning, when I gave the demo of config files for istio no, I joined about like 25 minutes late, oh because I was I should have. I should have called you to show it to you, but I'll give you the recording. I think that it's going to help a great deal uh with the user experience, especially around central stod.

B

Oh, that's awesome.

A

um Yeah I'll definitely watch.

B

The recording.

A

Okay,.

A

um And I saw the uh the comment about additional columns. um It satisfies all the the original requests that I had. So I'm good with that. Thank you. Rom rom, you had one other request, which was to restore some functionality to istio cuddle, describe I'll, be asking the networking folks about that at the networking meeting, because I've been frustrated with that as well. I wanted to bring up one more thing.

A

For everyone, uh so this is our favorite tools in hub: let's pull up just the zenhub for user experience and one seven.

A

So these are the items that we, our group, is either fully or partly uh concerned with for one seven, which has our freeze in a week mitch. This is yours right. The perf test.

B

Distribution status.

A

That.

B

That became irrelevant because we're not moving distribution status to sorry, I haven't cleaned that. That's one, eight! Let me let me re-target it then.

A

Oops, I clicked the wrong thing. I didn't retarget there we go.

A

So.

A

We are not fully on the hook for this tool to detect and warn about mixer usage everybody's doing it. I wanted to add this to is to cuddle analyze. I tried to do it this weekend, couldn't figure it out, because I can't tell which sql resources are the ones that are going away and which ones are staying.

A

If anyone is working on that, let me know our big p0. Is this uh centralis2d stuff? I want to give everyone a brief update on the status of that, so we had, we had promised to be able to sort of detect what the s2d is for the mesh.

A

We were unable to get that to happen due to disagreements about how pods should be labeled for remote study.

A

We were able to get security in uh when we talked directly, but the mechanism for creating the certificates is still out of band and it looks like we're not gonna have any other mechanism for one eight, I'm trying to talk to the vm people. Maybe we might be waiting until one eight four making these certs. It might be that if you want to use this to a cuddle against your muddy cd, you get the certs from your car provider mitch.

A

Do you have any thoughts on if s2 color weight is going to be possible for 1 7 against central std?

A

uh No, it will not all right so we'll update this and say this item will slip. um If you are on central studio. Still looking for hd is local, we have um decided to move um anything mitch was doing with regards to csds uh and for one seven we're going to focus on my almost csds uh version is working and describe is working. Although the improvements we wanted aren't going to be there that's the thing I mentioned, I'm going to be talking about with networking.

A

Code we had in 1 4, that would sort of say what clients are using versus what authentication is required by pods.

A

So I have no experience with the dashboard. Hopefully telemetry is going to handle that if anyone's working on it, let me know the multiple control plane. uh Astromark tells me he might get that done. I told sweta at the work group stage we're not going to get it done.

A

I don't know what this one is: no visibility into bad iop ammo. I think this is another thing about validating operators and it's mostly environments.

A

So the p1 is the thing I talked about: how we're going to use how you're going to get the certificates you need for central study the control plane update. We talked about.

A

um A pretty good shape for um our p1's.

A

None of these that we see here are just us.

A

This one has no one working on it. Let me ask.

A

Doug, well, I guess that's the good news, there's not really any p1's that our team is responsible for if anyone's doing, p2s and needs a hand to get them done. Let me know, and there seem to be some greater than p2s. Not very many don't seem very important.

A

Is that match what everyone's experience.

A

Is yep.

A

Okay, well, I believe this concludes our meeting. um So next week is code. Freeze uh feel free to reach out at any time if you are working on something that is for that. As soon as the code is frozen, I'm going to pivot back to writing these tests uh documentation based tests, which I have been behind on.

A

Hopefully, we can get some more automated testing to make our testing days easier.

A

Thanks ed, okay thanks, everyone.

A

Bye.

A

Bye.