agent: expose the list of supported envoy versions on /v1/agent/self (#8566)

also backport of a portion of c599a2f5f4 from #8424
This commit is contained in:
R.B. Boyer 2020-08-27 11:33:33 -05:00 committed by GitHub
parent fafc6cf7ff
commit f5e62f1d1b
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
9 changed files with 100 additions and 47 deletions

3
.changelog/8545.txt Normal file
View File

@ -0,0 +1,3 @@
```release-note:feature
agent: expose the list of supported envoy versions on /v1/agent/self
```

View File

@ -17,6 +17,7 @@ import (
"github.com/hashicorp/consul/agent/debug" "github.com/hashicorp/consul/agent/debug"
"github.com/hashicorp/consul/agent/structs" "github.com/hashicorp/consul/agent/structs"
token_store "github.com/hashicorp/consul/agent/token" token_store "github.com/hashicorp/consul/agent/token"
"github.com/hashicorp/consul/agent/xds/proxysupport"
"github.com/hashicorp/consul/api" "github.com/hashicorp/consul/api"
"github.com/hashicorp/consul/ipaddr" "github.com/hashicorp/consul/ipaddr"
"github.com/hashicorp/consul/lib" "github.com/hashicorp/consul/lib"
@ -38,6 +39,11 @@ type Self struct {
Member serf.Member Member serf.Member
Stats map[string]map[string]string Stats map[string]map[string]string
Meta map[string]string Meta map[string]string
XDS *xdsSelf `json:"xDS,omitempty"`
}
type xdsSelf struct {
SupportedProxies map[string][]string
} }
func (s *HTTPServer) AgentSelf(resp http.ResponseWriter, req *http.Request) (interface{}, error) { func (s *HTTPServer) AgentSelf(resp http.ResponseWriter, req *http.Request) (interface{}, error) {
@ -60,6 +66,15 @@ func (s *HTTPServer) AgentSelf(resp http.ResponseWriter, req *http.Request) (int
} }
} }
var xds *xdsSelf
if s.agent.grpcServer != nil {
xds = &xdsSelf{
SupportedProxies: map[string][]string{
"envoy": proxysupport.EnvoyVersions,
},
}
}
config := struct { config := struct {
Datacenter string Datacenter string
NodeName string NodeName string
@ -82,6 +97,7 @@ func (s *HTTPServer) AgentSelf(resp http.ResponseWriter, req *http.Request) (int
Member: s.agent.LocalMember(), Member: s.agent.LocalMember(),
Stats: s.agent.Stats(), Stats: s.agent.Stats(),
Meta: s.agent.State.Metadata(), Meta: s.agent.State.Metadata(),
XDS: xds,
}, nil }, nil
} }

View File

@ -13,7 +13,6 @@ import (
"net/http/httptest" "net/http/httptest"
"net/url" "net/url"
"os" "os"
"reflect"
"strconv" "strconv"
"strings" "strings"
"testing" "testing"
@ -27,6 +26,7 @@ import (
"github.com/hashicorp/consul/agent/structs" "github.com/hashicorp/consul/agent/structs"
"github.com/hashicorp/consul/agent/token" "github.com/hashicorp/consul/agent/token"
tokenStore "github.com/hashicorp/consul/agent/token" tokenStore "github.com/hashicorp/consul/agent/token"
"github.com/hashicorp/consul/agent/xds/proxysupport"
"github.com/hashicorp/consul/api" "github.com/hashicorp/consul/api"
"github.com/hashicorp/consul/lib" "github.com/hashicorp/consul/lib"
"github.com/hashicorp/consul/sdk/testutil" "github.com/hashicorp/consul/sdk/testutil"
@ -1209,39 +1209,65 @@ func TestAgent_Checks_ACLFilter(t *testing.T) {
func TestAgent_Self(t *testing.T) { func TestAgent_Self(t *testing.T) {
t.Parallel() t.Parallel()
a := NewTestAgent(t, `
node_meta {
somekey = "somevalue"
}
`)
defer a.Shutdown()
testrpc.WaitForTestAgent(t, a.RPC, "dc1") cases := map[string]struct {
req, _ := http.NewRequest("GET", "/v1/agent/self", nil) hcl string
obj, err := a.srv.AgentSelf(nil, req) expectXDS bool
if err != nil { }{
t.Fatalf("err: %v", err) "normal": {
hcl: `
node_meta {
somekey = "somevalue"
}
`,
expectXDS: true,
},
"no grpc": {
hcl: `
node_meta {
somekey = "somevalue"
}
ports = {
grpc = -1
}
`,
expectXDS: false,
},
} }
val := obj.(Self) for name, tc := range cases {
if int(val.Member.Port) != a.Config.SerfPortLAN { tc := tc
t.Fatalf("incorrect port: %v", obj) t.Run(name, func(t *testing.T) {
} a := NewTestAgent(t, tc.hcl)
defer a.Shutdown()
if val.DebugConfig["SerfPortLAN"].(int) != a.Config.SerfPortLAN { testrpc.WaitForTestAgent(t, a.RPC, "dc1")
t.Fatalf("incorrect port: %v", obj) req, _ := http.NewRequest("GET", "/v1/agent/self", nil)
} obj, err := a.srv.AgentSelf(nil, req)
require.NoError(t, err)
cs, err := a.GetLANCoordinate() val := obj.(Self)
if err != nil { require.Equal(t, a.Config.SerfPortLAN, int(val.Member.Port))
t.Fatalf("err: %v", err) require.Equal(t, a.Config.SerfPortLAN, val.DebugConfig["SerfPortLAN"].(int))
}
if c := cs[a.config.SegmentName]; !reflect.DeepEqual(c, val.Coord) { cs, err := a.GetLANCoordinate()
t.Fatalf("coordinates are not equal: %v != %v", c, val.Coord) require.NoError(t, err)
} require.Equal(t, cs[a.config.SegmentName], val.Coord)
delete(val.Meta, structs.MetaSegmentKey) // Added later, not in config.
if !reflect.DeepEqual(a.config.NodeMeta, val.Meta) { delete(val.Meta, structs.MetaSegmentKey) // Added later, not in config.
t.Fatalf("meta fields are not equal: %v != %v", a.config.NodeMeta, val.Meta) require.Equal(t, a.config.NodeMeta, val.Meta)
if tc.expectXDS {
require.NotNil(t, val.XDS, "xds component missing when gRPC is enabled")
require.Equal(t,
map[string][]string{"envoy": proxysupport.EnvoyVersions},
val.XDS.SupportedProxies,
)
} else {
require.Nil(t, val.XDS, "xds component should be missing when gRPC is disabled")
}
})
} }
} }

View File

@ -11,6 +11,7 @@ import (
envoy "github.com/envoyproxy/go-control-plane/envoy/api/v2" envoy "github.com/envoyproxy/go-control-plane/envoy/api/v2"
"github.com/hashicorp/consul/agent/proxycfg" "github.com/hashicorp/consul/agent/proxycfg"
"github.com/hashicorp/consul/agent/structs" "github.com/hashicorp/consul/agent/structs"
"github.com/hashicorp/consul/agent/xds/proxysupport"
"github.com/hashicorp/consul/sdk/testutil" "github.com/hashicorp/consul/sdk/testutil"
testinf "github.com/mitchellh/go-testing-interface" testinf "github.com/mitchellh/go-testing-interface"
"github.com/stretchr/testify/require" "github.com/stretchr/testify/require"
@ -527,7 +528,7 @@ func TestClustersFromSnapshot(t *testing.T) {
}, },
} }
for _, envoyVersion := range supportedEnvoyVersions { for _, envoyVersion := range proxysupport.EnvoyVersions {
sf := determineSupportedProxyFeaturesFromString(envoyVersion) sf := determineSupportedProxyFeaturesFromString(envoyVersion)
t.Run("envoy-"+envoyVersion, func(t *testing.T) { t.Run("envoy-"+envoyVersion, func(t *testing.T) {
for _, tt := range tests { for _, tt := range tests {
@ -738,13 +739,3 @@ func setupTLSRootsAndLeaf(t *testing.T, snap *proxycfg.ConfigSnapshot) {
snap.Roots.Roots[0].RootCert = golden(t, "test-root-cert", "", "") snap.Roots.Roots[0].RootCert = golden(t, "test-root-cert", "", "")
} }
} }
// supportedEnvoyVersions lists the versions that we generated golden tests for
//
// see: https://www.consul.io/docs/connect/proxies/envoy#supported-versions
var supportedEnvoyVersions = []string{
"1.14.2",
"1.13.2",
"1.12.4",
"1.11.2",
}

View File

@ -14,6 +14,7 @@ import (
envoyendpoint "github.com/envoyproxy/go-control-plane/envoy/api/v2/endpoint" envoyendpoint "github.com/envoyproxy/go-control-plane/envoy/api/v2/endpoint"
"github.com/hashicorp/consul/agent/proxycfg" "github.com/hashicorp/consul/agent/proxycfg"
"github.com/hashicorp/consul/agent/structs" "github.com/hashicorp/consul/agent/structs"
"github.com/hashicorp/consul/agent/xds/proxysupport"
"github.com/hashicorp/consul/sdk/testutil" "github.com/hashicorp/consul/sdk/testutil"
testinf "github.com/mitchellh/go-testing-interface" testinf "github.com/mitchellh/go-testing-interface"
) )
@ -554,7 +555,7 @@ func Test_endpointsFromSnapshot(t *testing.T) {
}, },
} }
for _, envoyVersion := range supportedEnvoyVersions { for _, envoyVersion := range proxysupport.EnvoyVersions {
sf := determineSupportedProxyFeaturesFromString(envoyVersion) sf := determineSupportedProxyFeaturesFromString(envoyVersion)
t.Run("envoy-"+envoyVersion, func(t *testing.T) { t.Run("envoy-"+envoyVersion, func(t *testing.T) {
for _, tt := range tests { for _, tt := range tests {

View File

@ -11,6 +11,7 @@ import (
envoy "github.com/envoyproxy/go-control-plane/envoy/api/v2" envoy "github.com/envoyproxy/go-control-plane/envoy/api/v2"
"github.com/hashicorp/consul/agent/proxycfg" "github.com/hashicorp/consul/agent/proxycfg"
"github.com/hashicorp/consul/agent/structs" "github.com/hashicorp/consul/agent/structs"
"github.com/hashicorp/consul/agent/xds/proxysupport"
"github.com/hashicorp/consul/sdk/testutil" "github.com/hashicorp/consul/sdk/testutil"
testinf "github.com/mitchellh/go-testing-interface" testinf "github.com/mitchellh/go-testing-interface"
"github.com/stretchr/testify/require" "github.com/stretchr/testify/require"
@ -433,7 +434,7 @@ func TestListenersFromSnapshot(t *testing.T) {
}, },
} }
for _, envoyVersion := range supportedEnvoyVersions { for _, envoyVersion := range proxysupport.EnvoyVersions {
sf := determineSupportedProxyFeaturesFromString(envoyVersion) sf := determineSupportedProxyFeaturesFromString(envoyVersion)
t.Run("envoy-"+envoyVersion, func(t *testing.T) { t.Run("envoy-"+envoyVersion, func(t *testing.T) {
for _, tt := range tests { for _, tt := range tests {

View File

@ -0,0 +1,14 @@
package proxysupport
// EnvoyVersions lists the latest officially supported versions of envoy.
//
// This list must be sorted by semver descending. Only one point release for
// each major release should be present.
//
// see: https://www.consul.io/docs/connect/proxies/envoy#supported-versions
var EnvoyVersions = []string{
"1.14.2",
"1.13.2",
"1.12.4",
"1.11.2",
}

View File

@ -11,6 +11,7 @@ import (
"github.com/hashicorp/consul/agent/consul/discoverychain" "github.com/hashicorp/consul/agent/consul/discoverychain"
"github.com/hashicorp/consul/agent/proxycfg" "github.com/hashicorp/consul/agent/proxycfg"
"github.com/hashicorp/consul/agent/structs" "github.com/hashicorp/consul/agent/structs"
"github.com/hashicorp/consul/agent/xds/proxysupport"
testinf "github.com/mitchellh/go-testing-interface" testinf "github.com/mitchellh/go-testing-interface"
"github.com/stretchr/testify/require" "github.com/stretchr/testify/require"
) )
@ -175,7 +176,7 @@ func TestRoutesFromSnapshot(t *testing.T) {
}, },
} }
for _, envoyVersion := range supportedEnvoyVersions { for _, envoyVersion := range proxysupport.EnvoyVersions {
sf := determineSupportedProxyFeaturesFromString(envoyVersion) sf := determineSupportedProxyFeaturesFromString(envoyVersion)
t.Run("envoy-"+envoyVersion, func(t *testing.T) { t.Run("envoy-"+envoyVersion, func(t *testing.T) {
for _, tt := range tests { for _, tt := range tests {

View File

@ -15,6 +15,7 @@ import (
"github.com/hashicorp/consul/agent/structs" "github.com/hashicorp/consul/agent/structs"
"github.com/hashicorp/consul/agent/xds" "github.com/hashicorp/consul/agent/xds"
"github.com/hashicorp/consul/agent/xds/proxysupport"
"github.com/hashicorp/consul/api" "github.com/hashicorp/consul/api"
proxyCmd "github.com/hashicorp/consul/command/connect/proxy" proxyCmd "github.com/hashicorp/consul/command/connect/proxy"
"github.com/hashicorp/consul/command/flags" "github.com/hashicorp/consul/command/flags"
@ -68,10 +69,9 @@ type cmd struct {
gatewayKind api.ServiceKind gatewayKind api.ServiceKind
} }
const ( const meshGatewayVal = "mesh"
defaultEnvoyVersion = "1.14.2"
meshGatewayVal = "mesh" var defaultEnvoyVersion = proxysupport.EnvoyVersions[0]
)
var supportedGateways = map[string]api.ServiceKind{ var supportedGateways = map[string]api.ServiceKind{
"mesh": api.ServiceKindMeshGateway, "mesh": api.ServiceKindMeshGateway,