Add IDestinationResolver for resolving cluster destination addresses

[ReubenBond]

This PR adds IDestinationResolver, an abstraction for expanding the ClusterConfig.Destinations property, resolving the destination addresses into one or more addresses. The intention is to better support service discovery in YARP.

/// <summary>
/// Resolves destination addresses.
/// </summary>
public interface IDestinationResolver
{
    /// <summary>
    /// Resolves the provided destinations and returns resolved destinations.
    /// </summary>
    /// <param name="destinations">The destinations to resolve.</param>
    /// <param name="cancellationToken">The cancellation token.</param>
    /// <returns>
    /// The resolved destinations and a change token used to indicate when resolution should be performed again.
    /// </returns>
    ValueTask<ResolvedDestinationCollection> ResolveDestinationsAsync(
        IReadOnlyDictionary<string, DestinationConfig> destinations,
        CancellationToken cancellationToken);
}

The PR also currently adds a Host property to the DestinationConfig, which is indented to act as the HTTP host name (for virtual host & SNI support).

[ReubenBond]

Is someone able to advise me on the best way to implement the abovementioned Host feature?

[ReubenBond]

I spoke with @Tratcher about how to flow the Host property through, and have implemented that in the current version of the PR.

[ReubenBond]

Alright, I consider this ready for review.

[ReubenBond]

@Tratcher @MihaZupan PTAL

[MihaZupan]

A few minor suggestions, otherwise this LGTM, thank you.

Might be worth adding a mention in the docs somewhere that this is an available extension point.

[ReubenBond]

Feedback addressed, thank you @MihaZupan

[ReubenBond]

Added a short doc on destination resolvers

[ReubenBond]

I'll add an implementation of IDestinationResolver using System.Net.Dns for completeness' sake

[ReubenBond]

Ok, I've added a DNS IDestinationResolver implementation with a test. It's opt-in and you configure it programmatically via reverseProxy.AddDnsDestinationResolver(...).

[ReubenBond]

DnsDestinationResolver defaults to adding a destination per IP, but that means we could get multiple destinations for the same physical host if DNS returns an IPv4 & IPv6 address for the same host. You can specify an AddressFamily to query in the options to choose to only get one or the other.

Alternatively, we could scan over the query results and choose to prefer only IPv4 addresses or only IPv6 addresses if there is a mix of IPv4 and IPv6 addresses. I'm open to feedback.

[ReubenBond]

BTW note that I placed IDestinationResolver and friends into a new namespace, Yarp.ReverseProxy.ServiceDiscovery.

[Tratcher]

Anti-pattern: Don't log and throw, this causes duplicate logs. The caller will log it right?

[ReubenBond]

The caller will rethrow on first load, with "Unable to load or apply the proxy configuration."
On reload, it will log "Failed to reload config. Unable to register for change notifications, polling for changes until successful."

i.e, it will be logged the same as an IProxyConfig.GetConfig() exception. Is that fine?

[Tratcher]

Yes, that's fine. If you want a more specific log, log without the full exception, maybe just the message?

[Tratcher]

Uri.TryParse? There's no telling what's in the config.

This is running before filters, right?

[ReubenBond]

What should it do if the TryParse fails?

[Tratcher]

Log and return the original destination?

[ReubenBond]

Is that valid behavior? Eg, a Warning level log saying Destination {DestinationId} has an unsupported Address. Addresses must be valid URIs.?

[Tratcher]

We're careful not to over-validate/restrict destination addresses because people can plug in alternative transports like named pipes and use custom address formats. I think we only validate that it's not null or empty. A warning log seems appropriate in this case.

[Tratcher]

How is this different from new UriBuilder(uri)?

[ReubenBond]

It's the Port. When I just use new UriBuilder(uri), it will include ":80" in the Host, which is ugly (it's probably not a showstopper). It should only include the port if it's a non-default port for the scheme. The doc comment tries to indicate this: "only setting the Port property if it is not the default value."

[Tratcher]

And there's no way to make it clear the default port later?

[ReubenBond]

Not from what I could tell, and not from what Stack Overflow seemed to indicate 😁

[Tratcher]

Are you really expecting changes this often?

Ideally we'd use a dns library that could read the TTL data and refresh based on that.

[davidfowl]

Yea, but this is what gRPC ships with too (we should check their impl). Anything else requires external dependencies.

cc @JamesNK

[JamesNK]

gRPC keeps open connections with resolved endpoints. This allows it to track the health of endpoints in realtime. If one of those connections goes down, such as because a k8s pod instance is restarted, then gRPC immediately asks the resolver to refresh itself. k8s will then return the new set of IP addresses, with the old pod instance removed and the new instance added, and gRPC attempts to connect to the new address.

The gRPC's DnsResolver also has the option to configure an explicit refresh interval. This is mostly useful in situations where k8s scales up. Periodically checking DNS lets the client notice that there are new endpoints available.

[Tratcher]

Does DnsDestionationResolver need some kind of health check integration to trigger a refresh?

[ReubenBond]

We could integrate YARP's health checks here, potentially to reload the IProxyConfig which the faulting destination belongs to. With DNS, we have no notification to tell us to perform a reload, but a Kubernetes-native solution could subscribe to those events by watching the relevant k8s Service resource for changes.

[Tratcher]

It's unfortunate that this can't be turned off completely like before. I don't want us to end up with default behavior that the user can't override. They can still replace or remove the host themselves, right?

[ReubenBond]

I agree that this is somewhat unfortunate. The developer can still replace or remove the host. I had a version of this which moved the behavior to the front of the transform pipeline inside StructuredTransformer itself, but after speaking with Miha about it, I moved it to the existing transform at the end of the pipeline instead.

[adityamandaleeka]

Woohoo, looks like this is green now. Ready to merge?