-
Notifications
You must be signed in to change notification settings - Fork 41
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[reconfigurator] Move resource allocation out of BlueprintBuilder
#7235
base: main
Are you sure you want to change the base?
Conversation
} | ||
} | ||
|
||
// Helper to validate that the system hasn't gone off the rails. There should |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This function moved wholesale from external_networking.rs
without any changes. I noted where we call it above, but I think ultimately this should move to blippy
.
// TODO-cleanup This is the only reason we take `target_redundancy`; do | ||
// we have another use for it in the future, or should someone else do | ||
// this check? | ||
if target_redundancy > INTERNAL_DNS_REDUNDANCY { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This check might be able to move to blippy too? Or maybe the planner? We might be able to drop it altogether - a caller can try to alloc()
as many subnets as they want, regardless of what they pass here, but we'll fail at allocation time if they try to ask for more than INTERNAL_DNS_REDUNDANCY
(as we should!).
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I don't have a strong opinion here. Seems fine to leave it for now and figure it out later, but also doesn't seem to be adding much.
@@ -0,0 +1,220 @@ | |||
// This Source Code Form is subject to the terms of the Mozilla Public |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This file was moved from blueprint_builder/ip_allocator.rs
, but changed enough (and is small enough) that it's probably worth a review as though it were new.
// We intentionally ignore any internal DNS underlay IPs; they live | ||
// outside the sled subnet and are allocated separately. | ||
if zone_kind == ZoneKind::InternalDns { | ||
return Ok(()); | ||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This feels bad, but seemed less gross than all the callers of this type doing their own filtering ahead of time to not try to pass in internal DNS IPs. Suggestions welcome.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I see. My first reaction to this was: this is an allocator for IPs from the sled's subnet. Callers should know if that's what they have and they should simply avoid calling this for the DNS IP, which would be fairly obviously not from the sled's subnet.
Looking at the call stack though, that isn't the case. BlueprintZoneConfig::underlay_ip()
hides this detail.
It kind of makes me wonder if we want a sort of smarter super-allocator where you can gave it an enum like SledUnderlayIp, InternalDnsUnderlayIp, maybe even fold NexusExternalIp and ExternalDnsExternalIp into it, and then you'd specify which thing you wanted when you mark things as used or allocated. But I haven't thought about this much -- it's pretty speculative -- and it seems way out of scope just to avoid this check! So I say go with this for now.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think we can check against the reserved rack subnet. That amounts to the same thing as this check, but I think it has better semantics. It also lets us drop zone_kind
, which is a nice simplification. I'm most of the way through a patch for this, if you think it's a good idea I can push to this branch.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It kind of makes me wonder if we want a sort of smarter super-allocator where you can gave it an enum like SledUnderlayIp, InternalDnsUnderlayIp, maybe even fold NexusExternalIp and ExternalDnsExternalIp into it, and then you'd specify which thing you wanted when you mark things as used or allocated.
This sounds nice to me at first glance, but I'm not sure about the mechanics. Sled underlay IP decisions can be made locally (with just the information about the one sled in question), but the other three need information about all sleds. I'll think about this one (but agreed that'd be a followup PR).
I think we can check against the reserved rack subnet. That amounts to the same thing as this check, but I think it has better semantics. It also lets us drop
zone_kind
, which is a nice simplification.
I'm less sure about this - if we didn't pass in zone_kind
, would we allow a mismatch (e.g., a Nexus zone using an IP from the reserved rack subnet)? Maybe that kind of thing should be caught by a different level (e.g., blippy, which I'm hoping to have a draft out for soon), and then it would be reasonable to simplify this as you suggest?
@@ -185,7 +185,7 @@ to: blueprint 9f71f5d3-a272-4382-9154-6ea2e171a6c6 | |||
|
|||
REMOVED SLEDS: | |||
|
|||
sled 68d24ac5-f341-49ea-a92a-0381b52ab387 (was active): | |||
sled 68d24ac5-f341-49ea-a92a-0381b52ab387 (state was unknown): |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
unknown
here is a side effect of the builder removing the sled_state entry for fully-decommissioned sleds. We should stop doing that, but it's not directly relevant to this PR. (This changed because of the extra check for "look up the subnet of any active sled"; the test was claiming a sled was decommissioned in PlanningInput
but not the parent blueprint, which is nonsense and caused the test to fail due to its data mucking rather than what it was actually trying to test.)
5fcc1bd
to
64d2164
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good!
// License, v. 2.0. If a copy of the MPL was not distributed with this | ||
// file, You can obtain one at https://mozilla.org/MPL/2.0/. | ||
|
||
//! Blueprint planner resource allocation |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Are you planning to add other resource allocation besides networking stuff here? I'm asking because the name is pretty generic, but I assume that is on purpose.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yeah, I thought we could (e.g.) move ClickhouseAllocator
under this module at some point as we rework the builder. I'd also like zpool allocation to land here (it's currently just a method on BlueprintBuilder
) eventually.
self.external_networking.for_new_boundary_ntp() | ||
} | ||
|
||
/// Allow a test to manually add an external DNS address, which could |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We could probably add a testing feature for this, but it's likely not worth it. I really wish rust let stuff marked with #[cfg(test)]
be used in tests outside the crate.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Agreed on both counts.
// TODO-cleanup This is the only reason we take `target_redundancy`; do | ||
// we have another use for it in the future, or should someone else do | ||
// this check? | ||
if target_redundancy > INTERNAL_DNS_REDUNDANCY { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I don't have a strong opinion here. Seems fine to leave it for now and figure it out later, but also doesn't seem to be adding much.
// This Source Code Form is subject to the terms of the Mozilla Public | ||
// License, v. 2.0. If a copy of the MPL was not distributed with this | ||
// file, You can obtain one at https://mozilla.org/MPL/2.0/. | ||
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Nit: Maybe add a doc comment?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Certainly; added in 1cfaddc
Most of this diff is moving stuff around in preparation for a larger rework, but there are some nontrivial changes worth reviewing that I'll call out in comments below. This is staged on top of #7234.
Prior to this PR,
BlueprintBuilder
had 3 fields that allocated various kinds of resources:sled_ip_allocators
(for allocating underlay IPs)external_networking
(for creating OPTE NICs and assigning external IP addresses for Nexus/boundary NTP/external DNS)internal_dns_subnets
(for assigning internal DNS zones, which get IPs distinct from the normal sled subnet)All three were lazily instantiated on first use. This is to allow the planner to first expunge zones then start adding; the first "add" that needs a resource from one of these allocators creates the allocator by snapshotting the state of available resources at that point (after expungement). Eventually I'd like to break the builder up to make these two phases more explicit, but for now this PR settles for shrinking the builder's surface area some:
sled_ip_allocators
is gone; eachSledEditor
now maintains its own underlay IP allocator. These are no longer instantiated lazily, but for underlay IPs specifically this is fine: we never reuse underlay IPs from expunged zones, so we don't need to wait for expungement to reuse resources like the other two.external_networking
/internal_dns_subnets
were replaced byresource_allocator
, which internally holds both of those types and has pass-through methods for the builder to use. This is still lazily instantiated viaOnceCell
to keep the existing implicit ordering/behavior.