Thanks a lot for tackling this! The overall approach looks good to me. Doing the release via handshake seems like a solid approach and at least I couldn't come up with a simpler approach that maintains correctness.

While I haven't reviewed the code in depth yet, the implementation also looks good to me. A few smaller comments though:

• In the current implementation, the agent will trigger an update to its CiliumNode CRD immediately if an IP is ready-for-release, instead of waiting for the 15 second update interval to expire. While I understand this likely makes testing a bit easier, this will also create a bit of unnecessary load on the API server. If the trigger is required only for unit testing purposes, I would try to trigger the controller manually in the test code.
• On that point: If I understand the code correctly, the operator will only invoke the pool maintenance code once every minute (earlier, if it detects that the node is running out of IPs). So the triggered write will likely not cause the operator the perform an earlier release. But I might be wrong on the last part.
• This is more of a style comment, but I believe in Cilium CRD we prefer to use strings instead of opaque integers to indicate states. This means I would make ReleaseIps a map[string]string, where each IP can have the string values marked-for-release, ready-for-release, and do-not-release. See CiliumEndpoint.Status.State for an example how to do this (including kubebuilder validation).
• I assume you probably have already considered this, but in the case the operator pod restarts after marking IPs for release, every release delay timer will be restarted. I believe the current code handles this correctly (i.e. will start a new timer in the operator for any IP with a pre-exsting marked-for-release flag), but just something I wanted to point out so it doesn't get forgotten.

@gandro Thank you for taking the time and providing early feedback.

the agent will trigger an update to its CiliumNode CRD immediately

Correct me if i'm wrong, but I did not see an interval based refresh in the agent for crd-allocator-node-refresher, it's only event triggered on operations like allocate, release and CRD update failures. Also the MinInterval is set to 15 secs in the trigger. So 15 secs should still be respected right ?

Also currently in the unit test for checking agent related changes TestMarkForReleaseNoAllocate, I'm not relying on the trigger being called. n.ownNode is updated directly, so i'm testing against that.

So the triggered write will likely not cause the operator the perform an earlier release

Yeah, you're right. Releasing the IP a min after receiving CRD update sounds okay though. But I can update code to trigger poolMaintainer on changes to IP release status. Something like this in UpdatedResource func:

	if allocationNeeded  || releaseNeeded {
		n.requirePoolMaintenance()
		n.poolMaintainer.Trigger()
	}

in Cilium CRD we prefer to use strings instead of opaque integers

I'll update this to use strings instead of integers.

will start a new timer in the operator for any IP with a pre-exsting marked-for-release flag

Yeah, currently even if an IP has a release entry in CRD, operator would not release the IP untill it's local timestamp satisfies excess IP release delay. During that cool down period, operator does not override any ACK / NACK from the agent too.

@hemanthmalla

Thanks for the reply!

Correct me if i'm wrong, but I did not see an interval based refresh in the agent for crd-allocator-node-refresher, it's only event triggered on operations like allocate, release and CRD update failures. Also the MinInterval is set to 15 secs in the trigger. So 15 secs should still be respected right ?

You are 100% correct. The 15 second min interval will be respected, so updates are coalesced (which should remove unnecessary load from the apiserver). Apologies, I had myself confused there (probably because I'm currently working on similar code which has a periodic controller).

So the triggered write will likely not cause the operator the perform an earlier release

Yeah, you're right. Releasing the IP a min after receiving CRD update sounds okay though. But I can update code to trigger poolMaintainer on changes to IP release status. Something like this in UpdatedResource func:

Ah yes, my comment was probably a bit unclear (it was in regard to the timing of agent writes, which I misunderstood). I absolutely agree that releasing the IP after 1 min is totally fine. No changes needed.

I'll update this to use strings instead of integers.

Awesome, thanks!

Yeah, currently even if an IP has a release entry in CRD, operator would not release the IP untill it's local timestamp satisfies excess IP release delay. During that cool down period, operator does not override any ACK / NACK from the agent too.

Great, thanks for confirming!

@gandro Updated the PR changing the map values from uint8 to string . This data is stored twice in the operator, ipReleaseStatus on the node struct and cilium node cache. Just to make sure we're on the same page, the slight increase in memory is justified for readability. Correct ?

Also, can I go ahead and forward port these changes to the latest on cilium/cilium ?

@gandro Updated the PR changing the map values from uint8 to string . This data is stored twice in the operator, ipReleaseStatus on the node struct and cilium node cache. Just to make sure we're on the same page, the slight increase in memory is justified for readability. Correct ?

In my opinion, yes. But maybe it's worth if the @cilium/kubernetes team provides their feedback here as well, as I'm not an expert in our CRD best practices.

Also, can I go ahead and forward port these changes to the latest on cilium/cilium ?

Yes, please do!

@christarazi Thanks for the feedback. Will address the feedback shortly.

Regarding the datatype for IP release map values, are we good with using strings instead of int ?

@hemanthmalla Yes I think it's fine to proceed with string.

@aanm Thanks for the feedback.

Mark for release updates from the operator are already batched (existing 1 min interval based sync). I'm not triggering a k8s update when there are IPs marked for release. CRD sync is triggered immediately only when an actual allocation / release event occurs.

We discussed this a little in #24 (comment)

Closing in favor of #81