github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add proxy healthz result to ETP=local health check

Browse Source 
Today, the health check response to the load balancers asking Kube-proxy for
the status of ETP:Local services does not include the healthz state of Kube-
proxy. This means that Kube-proxy might indicate to load balancers that they
should forward traffic to the node in question, simply because the endpoint
is running on the node - this overlooks the fact that Kube-proxy might be
not-healthy and hasn't successfully written the rules enabling traffic to
reach the endpoint.
This commit is contained in:
Alexander Constantinescu
2023-03-02 16:34:42 +01:00
parent b6d102d634
commit ec917850af
6 changed files with 93 additions and 34 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
pkg/proxy/ipvs/proxier.go
View File

@@ -411,7 +411,7 @@ func NewProxier(ipFamily v1.IPFamily,
nodePortAddresses := utilproxy.NewNodePortAddresses(nodePortAddressStrings)
serviceHealthServer := healthcheck.NewServiceHealthServer(hostname, recorder, nodePortAddresses)
serviceHealthServer := healthcheck.NewServiceHealthServer(hostname, recorder, nodePortAddresses, healthzServer)
// excludeCIDRs has been validated before, here we just parse it to IPNet list
parsedExcludeCIDRs, _ := netutils.ParseCIDRs(excludeCIDRs)