Liking cljdoc? Tell your friends :D

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

0.9.0 - 2025-12-21

Added

  • Admin HTTP REST API for runtime management without REPL access
    • RESTful JSON API using Java's built-in HttpServer (zero dependencies)
    • Complete proxy management: list, add, remove proxies
    • Source route management: list, add, remove CIDR-based routes
    • SNI route management: list, add, remove hostname-based TLS routes
    • Connection management: list, count, stats, clear connections
    • Health status queries per proxy and aggregate
    • Connection draining control: start drain, cancel drain
    • Circuit breaker control: force open, close, reset circuits
    • DNS resolution status and forced re-resolution
    • Load balancing status and forced weight updates
    • Rate limit configuration: set source/backend limits, clear all
    • Configuration hot reload trigger
    • Optional API key authentication via X-API-Key header
    • Optional CORS support for web dashboard integration
    • Health endpoint at /health for Kubernetes probes
    • Configuration: {:settings {:admin-api {:enabled true :port 8081 :api-key nil}}}
    • Runtime API: admin/start!, admin/stop!, admin/running?, admin/get-status
    • New modules: lb.admin, lb.admin.server, lb.admin.handlers
    • Comprehensive examples with curl commands in examples/admin_api.clj

0.8.0 - 2025-12-21

Added

  • Access logging for connection events with audit trail and debugging support
    • Logs connection lifecycle events (new-conn, conn-closed) to stdout and file
    • JSON format with structured data (timestamps, IPs, ports, duration, bytes)
    • CLF (Common Log Format) style for familiar Apache/nginx-like output
    • Rotating file writer with configurable size and file count limits
    • Async non-blocking design with buffered channels
    • Configuration: {:settings {:access-log {:enabled true :format :json :path "logs/access.log"}}}
    • Runtime API: access-log/running?, access-log/get-status, access-log/flush!
    • New modules: lb.access-log, lb.access-log.logger, lb.access-log.file-writer
  • Backend latency tracking for per-backend connection duration histograms
    • Tracks connection lifetime (creation to close) as latency metric
    • Prometheus histogram metrics: lb_backend_latency_seconds with buckets
    • Percentile queries: p50, p95, p99, mean, count per backend
    • Zero BPF changes required (uses existing stats event stream)
    • Automatic integration when metrics enabled
    • Runtime API: latency/get-percentiles, latency/get-all-histograms, latency/get-status
    • New module: lb.latency
    • Comprehensive examples in examples/access_logging.clj

Changed

  • Added org.clojure/data.json dependency for JSON formatting

0.7.0 - 2025-12-21

Added

  • Session persistence (sticky sessions) based on source IP hashing
    • Routes same client IP consistently to same backend server
    • Deterministic hash: (source_ip * FNV_PRIME) % 100
    • XDP-level implementation for zero-overhead persistence
    • Per-proxy configuration: {:session-persistence true}
    • Per-route configuration for source-routes and SNI routes
    • Respects weighted distribution across backends
    • Integrates with health checks (unhealthy backends excluded)
    • Flag-based activation using route value flags field
    • New constant: util/FLAG-SESSION-PERSISTENCE (0x0001)
    • Comprehensive examples in examples/session_persistence.clj

0.6.0 - 2025-12-21

Added

  • Least-connections load balancing algorithm for dynamic traffic distribution
    • Routes new connections to backends with fewer active connections
    • Userspace periodic weight updates leveraging existing conntrack data
    • Background daemon scans connection counts every update-interval-ms
    • Two modes: weighted (capacity-aware) and pure (ignores original weights)
    • Weight formula: capacity = original_weight / (1 + connections)
    • Integrates with health checks, drain, and circuit breaker systems
    • Zero BPF changes required (uses existing weight mechanism)
    • Configuration: {:settings {:load-balancing {:algorithm :least-connections :weighted true :update-interval-ms 1000}}}
    • Runtime API: get-lb-algorithm, get-lb-status, lb-least-connections?, force-lb-update!
    • Prometheus metrics: lb_algorithm, lb_backend_connections
    • New modules: lb.lb-algorithm, lb.lb-manager
    • Comprehensive examples in examples/least_connections.clj

0.5.0 - 2025-12-21

Added

  • Circuit breaker pattern for automatic failure detection and recovery
    • Prevents cascade failures by stopping traffic to failing backends
    • Three-state machine: CLOSED (normal), OPEN (blocking), HALF-OPEN (testing)
    • Configurable error threshold, minimum requests, and recovery timeout
    • Sliding window for error rate calculation
    • Automatic transition from OPEN to HALF-OPEN after timeout
    • Gradual traffic restoration with 10% test traffic in HALF-OPEN
    • Graceful degradation when all circuits open (traffic continues)
    • Integration with health check events for error tracking
    • Weight computation combines health, drain, and circuit breaker states
    • Prometheus metrics: lb_circuit_breaker_state, lb_circuit_breaker_error_rate
    • Runtime API: circuit-open?, circuit-half-open?, force-open-circuit!, force-close-circuit!, reset-circuit!
    • Event subscription for state change notifications
    • Configuration: {:settings {:circuit-breaker {:enabled true :error-threshold-pct 50 :min-requests 10 :open-duration-ms 30000}}}
    • New module: lb.circuit-breaker
    • Comprehensive examples in examples/circuit_breaker.clj

0.4.0 - 2025-12-21

Added

  • Prometheus metrics export for monitoring and observability
    • HTTP endpoint at /metrics with standard Prometheus text format
    • Metrics include: lb_connections_active, lb_bytes_total, lb_packets_total
    • Backend health status: lb_backend_health (1=healthy, 0=unhealthy)
    • Health check latency histogram: lb_health_check_latency_seconds
    • DNS resolution status: lb_dns_resolution_status
    • System info: lb_up, lb_info
    • Configurable port and path via settings
    • Automatic integration with health check system for latency recording
    • Configuration: {:settings {:metrics {:enabled true :port 9090 :path "/metrics"}}}
    • Runtime API: metrics/start!, metrics/stop!, metrics/running?, metrics/get-status
  • DNS-based backend resolution for dynamic environments
    • Use :host instead of :ip for DNS-backed targets
    • Periodic re-resolution with configurable intervals (:dns-refresh-seconds)
    • Multiple A record expansion to weighted targets (weight distributed equally)
    • Graceful failure handling with last-known-good IP fallback
    • Background daemon with jitter to avoid thundering herd
    • Health check integration for resolved IPs
    • Event subscription system for DNS resolution changes
    • Mixed static IP and DNS target support in same target group
    • Runtime API: get-dns-status, get-all-dns-status, force-dns-resolve!
    • New modules: lb.dns, lb.dns.resolver, lb.dns.manager
    • Configuration examples:
      • Basic: {:host "backend.local" :port 8080}
      • With refresh: {:host "backend.local" :port 8080 :dns-refresh-seconds 60}
      • Mixed: [{:ip "10.0.0.1" :port 8080 :weight 50} {:host "dynamic.svc" :port 8080 :weight 50}]
  • Hot reload configuration without restart
    • File watching with inotify-based detection (Java NIO WatchService)
    • SIGHUP signal handling for manual reload trigger
    • Configuration diffing with incremental apply
    • Validation before apply with rollback on failure
    • Runtime API: reload-config!, reload-config-from-map!
    • Enable/disable: enable-hot-reload!, disable-hot-reload!
    • Status: hot-reload-enabled?, get-reload-state
    • New config diffing functions in lb.config
  • Rate limiting with token bucket algorithm
    • Per-source IP rate limiting to prevent client abuse
    • Per-backend rate limiting to protect backend capacity
    • BPF-based enforcement with sub-millisecond overhead
    • LRU hash maps for automatic bucket expiration
    • Token scaling (1000x) for precise sub-token accounting
    • Runtime API: set-source-rate-limit!, set-backend-rate-limit!
    • Disable functions: disable-source-rate-limit!, disable-backend-rate-limit!, clear-rate-limits!
    • Status functions: get-rate-limit-config, rate-limiting-enabled?
    • Configuration via settings: {:rate-limits {:per-source {:requests-per-sec 100 :burst 200}}}

0.3.0 - 2025-12-21

Added

  • Connection draining for graceful backend removal
    • Stop new connections while allowing existing ones to complete
    • Background watcher monitors connection counts via conntrack
    • Configurable drain timeout (default 30 seconds)
    • Callback support for drain completion notification
    • Runtime API: drain-backend!, undrain-backend!, wait-for-drain!
    • Status functions: get-drain-status, get-all-draining, draining?
    • Drain-aware weight computation integrates with health system
    • No BPF changes required (uses existing weight=0 handling)
    • Comprehensive examples in examples/connection-draining.clj

0.2.0 - 2025-12-21

Added

  • TLS/SNI-based routing for layer 4 passthrough with layer 7 inspection
    • Route TLS traffic based on hostname without terminating TLS
    • XDP-level TLS ClientHello parsing with SNI extraction
    • FNV-1a 64-bit hashing for efficient BPF map lookup
    • Case-insensitive hostname matching
    • Weighted load balancing support per SNI hostname
    • Runtime SNI route management (add-sni-route!, remove-sni-route!, list-sni-routes)
    • Graceful fallback to default target when SNI not found or parsing fails
  • New macros for cleaner code patterns
    • with-lb-state macro in core API for cleaner state access (replaces 25 when-let patterns)
    • when-root and root? in test utilities for root privilege checking
    • with-bpf-maps macro for automatic BPF map cleanup in tests
    • with-xdp-attached macro for automatic XDP detachment in tests
  • Shared test utilities namespace (lb.test-util) for common test patterns
  • Integration with bpf/with-program macro from clj-ebpf library for program lifecycle

0.1.0 - 2025-12-21

Added

  • Initial release of clj-ebpf-lb
  • XDP-based ingress DNAT for high-performance packet processing
  • TC-based egress SNAT for return traffic handling
  • Stateful connection tracking with per-CPU hash maps
  • Source-based routing with LPM trie for CIDR matching
  • Weighted load balancing across multiple backends (up to 8 targets per group)
  • Health checking system with TCP, HTTP, and HTTPS checks
  • Automatic weight redistribution when backends become unhealthy
  • Gradual recovery for backends returning to healthy state
  • Runtime configuration API for adding/removing proxies and routes
  • Real-time statistics collection via ring buffer
  • EDN-based configuration file format
  • Command-line interface with multiple options
  • ARM64 support with QEMU-based testing infrastructure
  • GitHub Actions CI/CD pipeline
  • Clojars publishing on version tags

Can you improve this documentation?Edit on GitHub

cljdoc builds & hosts documentation for Clojure/Script libraries

Keyboard shortcuts
Ctrl+kJump to recent docs
Move to previous article
Move to next article
Ctrl+/Jump to the search field
Raise an issueBrowse cljdoc sourceChat on Slack
× close