add domain name for virtual host match in envoy filters #3376
Conversation
Signed-off-by: Rama Chavali <[email protected]>
ramaraochavali
added
the
release-notes-none
istio-testing
added
the
size/XS
| @@ -569,6 +569,9 @@ message EnvoyFilter { | |||
| // registry. | |||
| string name = 1; | |||
|
|
|||
| // Match a specific domain name in a virtual host. | |||
| string domain_name=3; | |||
There was a problem hiding this comment.
what is the use case for using this vs name? Does it do wildcards or only exact match (like can I have a wildcard here to match a wildcard domain)? Does it consider port (I think we configure envoy to ignore port?)?
There was a problem hiding this comment.
The use case is - if we enable route collapse optimization with different domain names using same routes, we pick one route name and merge.
Yes. It can match wildcard names and port is not included.
There was a problem hiding this comment.
When is the name not able to distinguish the VHost?
There was a problem hiding this comment.
Actual Routes"
{
"version_info": "2024-11-01T23:45:05Z/17931",
"route_config": {
"@type": "type.googleapis.com/envoy.config.route.v3.RouteConfiguration",
"name": "https.10443.xxxx",
"virtual_hosts": [
{
"name": "*.au:10443",
"domains": [
"*.au"
],
"routes": [..]
},
{
"name": "*.com:10443",
"domains": [
"*.com",
"*"
],
"routes": [..]
},
]
}
}
after merge
{
"version_info": "2024-11-01T23:45:05Z/17931",
"route_config": {
"@type": "type.googleapis.com/envoy.config.route.v3.RouteConfiguration",
"name": "https.10443.xxxx",
"virtual_hosts": [
{
"name": "*.com:10443",
"domains": [
"*.au",
"*.com",
],
"routes": [..]
}
]
}
Now we can not match on Vs Host name
There was a problem hiding this comment.
So in this case, i put match.domainName = "*.au"? And it will apply to *.com as well though?
There was a problem hiding this comment.
I will add example. Release notes planning to add it for the implementation PR
There was a problem hiding this comment.
Seems only me is still confusing, Isn't name already unique to distinguish the VirtualHost
I am not sure how https://github.com/istio/api/pull/3376/files#r1868857034 is related
There was a problem hiding this comment.
it is not. When we have routes collapsed for different domains, we pick one virtual host and combine domains - So it is not possible to uniquely identify a virtual host by name for a domain.
There was a problem hiding this comment.
@linsun added example. PTAL
There was a problem hiding this comment.
@linsun can you PTAL when you get chance?
Signed-off-by: Rama Chavali <[email protected]>
Signed-off-by: Rama Chavali <[email protected]>
istio-testing
added
size/M
istio-testing
removed
the
needs-rebase
No description provided.