Prevent LoadBalancer updates on follower.

[tsaarni]

This PR fixes a memory leak that was triggered by LoadBalancer status updates. Only the leader instance runs loadBalancerStatusWriter and therefore follower does not have anyone reading from the channel that receives status updates. The LoadBalancer status updates are still watched by followers and sent to the channel, causing the go routine calling ServiceStatusLoadBalancerWatcher.notify() to block. This led to LoadBalancerStatus updates piling up and consuming memory, eventually causing an out-of-memory condition and killing the Contour process.

With this change, Service updates are watched only after the instance becomes the leader and starts the loadBalancerStatusWriter.

Fixes #6860

[codecov]

Codecov Report

Attention: Patch coverage is 0% with 30 lines in your changes missing coverage. Please review.

Project coverage is 80.73%. Comparing base (7e2dcaf) to head (0ea6f5c).
Report is 3 commits behind head on main.

Files with missing lines	Patch %	Lines
cmd/contour/ingressstatus.go	0.00%	27 Missing ⚠️
cmd/contour/serve.go	0.00%	3 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #6872      +/-   ##
==========================================
- Coverage   80.77%   80.73%   -0.05%     
==========================================
  Files         131      131              
  Lines       19936    19946      +10     
==========================================
  Hits        16104    16104              
- Misses       3540     3550      +10     
  Partials      292      292              

Files with missing lines	Coverage Δ
cmd/contour/serve.go	22.30% <0.00%> (+0.41%)	⬆️
cmd/contour/ingressstatus.go	24.59% <0.00%> (-6.99%)	⬇️

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[Levi080513]

Is it possible to lose the envoy service event in this way?

[tsaarni]

True. Currently the event processing logic relies on Added/Updated/Deleted events alone. It works for other resource types as they will be processed by all Contour instances but I think new approach is needed with the load balancer status updates.

[Levi080513]

Maybe we can simply handle it. Notify the latest envoy service when it becomes Leader.

[tsaarni]

I've changed the approach to start the service watcher only after the instance becomes the leader.

[github-actions]

The Contour project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

• After 14d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, the PR is closed

You can:

• Ensure your PR is passing all CI checks. PRs that are fully green are more likely to be reviewed. If you are having trouble with CI checks, reach out to the #contour channel in the Kubernetes Slack workspace.
• Mark this PR as fresh by commenting or pushing a commit
• Close this PR
• Offer to help out with triage

Please send feedback to the #contour channel in the Kubernetes Slack

[github-actions]

The Contour project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

• After 14d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, the PR is closed

You can:

• Ensure your PR is passing all CI checks. PRs that are fully green are more likely to be reviewed. If you are having trouble with CI checks, reach out to the #contour channel in the Kubernetes Slack workspace.
• Mark this PR as fresh by commenting or pushing a commit
• Close this PR
• Offer to help out with triage

Please send feedback to the #contour channel in the Kubernetes Slack

[github-actions]

The Contour project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

• After 14d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, the PR is closed

You can:

• Ensure your PR is passing all CI checks. PRs that are fully green are more likely to be reviewed. If you are having trouble with CI checks, reach out to the #contour channel in the Kubernetes Slack workspace.
• Mark this PR as fresh by commenting or pushing a commit
• Close this PR
• Offer to help out with triage

Please send feedback to the #contour channel in the Kubernetes Slack

[github-actions]

The Contour project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

• After 14d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, the PR is closed

You can:

• Ensure your PR is passing all CI checks. PRs that are fully green are more likely to be reviewed. If you are having trouble with CI checks, reach out to the #contour channel in the Kubernetes Slack workspace.
• Mark this PR as fresh by commenting or pushing a commit
• Close this PR
• Offer to help out with triage

Please send feedback to the #contour channel in the Kubernetes Slack

[tsaarni]

Some notes for manual testing:

Prepare environment with modified Contour

kubectl apply -f https://projectcontour.io/quickstart/contour.yaml
make container 
docker tag ghcr.io/projectcontour/contour:$(git rev-parse --short HEAD) localhost/contour:latest
kind load docker-image localhost/contour:latest --name contour
kubectl -n projectcontour set image deployment/contour contour=localhost/contour:latest

Then create HTTPProxy

kubectl apply -f https://raw.githubusercontent.com/tsaarni/devenvs/refs/heads/main/contour/manifests/echoserver.yaml

Set IP address for service

kubectl -n projectcontour patch service envoy --type=merge --subresource=status --patch '"status": {"loadBalancer":{"ingress":[{"ip":"1.2.3.4"}]}}'

Check that the address is reflected on HTTPProxy

kubectl get httpproxy echoserver -o jsonpath='{.status.loadBalancer.ingress[*].ip}'

Scale down replicas to zero and change address while Contour is down

kubectl -n projectcontour scale deployment --replicas=0 contour
kubectl -n projectcontour patch service envoy --type=merge --subresource=status --patch '"status": {"loadBalancer":{"ingress":[{"ip":"1.2.3.5"}]}}'

Scale up and check that leader picks up the latest address and updates the HTTPProxy

kubectl get httpproxy echoserver -o jsonpath='{.status.loadBalancer.ingress[*].ip}'

[sunjayBhatia]

Nice fix! yeah the load balancer status writer already has other informers for updating resources that need the load balancer status and it makes sense to start the load balancer service watcher there too, since it only needs to run on the leader instance