Exploring Path-Based and Header-Based Routing Solutions in Knative

xiaoqing published on 2022-01-15 included in category knative

Currently, in Knative version 1.1.0, traffic routing is primarily based on domain names. However, in many use cases: Services often have fixed external domain names, and there may be multiple of them. Services are typically organized under specific paths within a domain, meaning one domain consists of multiple services. Grey releases are based on multiple header values with and and or relationships. Let’s discuss how to address these requirements. 1 Domain BindingApart from using Knative’s default domain, Knative provides domainMapping to bind additional domains.

kubelet podConfig - Providing Pods Running on kubelet

xiaoqing published on 2021-08-15 included in category kubernetes

The podConfig within the kubelet is used to aggregate information from multiple sources related to pods. It processes and aggregates information from various sources of pods (deduplication, analysis of changes in pods). If there are changes in pods from these sources, podConfig updates and aggregates the changes, generating various types of PodUpdate messages and sending them to the PodUpdate channel.

Event Generation Mechanism in Kubernetes

xiaoqing published on 2021-07-31 included in category kubernetes

When troubleshooting an issue in a cluster, there are generally two ways to investigate problems. One is to check the logs of various components to identify the issue, while the other is to retrieve event events through the API server and analyze what actions a component has taken based on those events. The event event mechanism makes it easy for us to troubleshoot problems. An event is an API object that records what action a component took at a certain time.

Smooth Rolling Update of Ingress Controller Using AWS NLB - No Service Interruption

xiaoqing published on 2021-06-16 included in category kubernetes

1 OverviewIn the cloud, to allow external traffic to access your Kubernetes cluster, the typical approach is to use a LoadBalancer-type service, which directs external traffic through a load balancer into the Ingress Controller and then distributes it to various pods. Ingress controllers often need updates or configuration changes, which usually require the program to be restarted. So, what happens when an Ingress Controller needs a rolling update? Will Ingress access be interrupted?

Kubelet Startup - Command Execution

xiaoqing published on 2021-04-18 included in category kubernetes

In the previous analysis, we explored the initialization of kubelet’s command-line. Now, we will delve into the execution of kubelet’s Cobra Command. The Execute() function in Cobra essentially involves command-line parsing (unless DisableFlagParsing: true is set), followed by passing the remaining arguments to the Command.Run function for execution. This analysis is based on Kubernetes version 1.18.6. For the source code and related readings, please visit the source code analysis repository.

kubenet IP Leak

xiaoqing published on 2021-04-04 included in category kubernetes

Recently, after upgrading the Docker version, some pods remained in the ‘pending’ state, and it was found that the reason for the pods’ pending status was the inability to obtain an IP address. After investigation, it was discovered that the Docker version upgrade was performed incorrectly, leading to an IP leak in kubenet, which resulted in no available IPs for allocation. The Kubernetes version used was 1.18.8, with the network mode set to kubenet, a maximum of 125 pods per node, and a pod CIDR of 25.

Kubelet Startup - FeatureGate Initialization

xiaoqing published on 2021-02-19 included in category kubernetes

Kubernetes has many feature functionalities, and these features are generally associated with Kubernetes Enhancement Proposals (KEPs). Feature functionalities go through stages of development such as alpha, beta, GA (Generally Available), and deprecated. Alpha signifies an unstable phase, beta is relatively stable but may contain bugs, GA indicates full stability and usability, and deprecated means the feature is being phased out. The lifecycle of a feature typically involves the proposal of a KEP, alpha phase, beta phase, GA phase, and eventual deprecation. Features in the alpha phase are not enabled by default, while features in beta are enabled by default. For more information on feature gates, visit the Feature Gates documentation and KEP documentation.

Feature gates are used to control whether a specific feature is enabled or disabled. It’s important to note that GA features cannot be disabled. In this article, we’ll use the kubelet source code as an example to analyze how feature gates work.