feat: make streaming buffer size configurable (#696)

* feat: make streaming buffer size configurable

Signed-off-by: Eitan Yarmush <eitan.yarmush@solo.io>

* switch to resource quantities for buffer size

Signed-off-by: Eitan Yarmush <eitan.yarmush@solo.io>

---------

Signed-off-by: Eitan Yarmush <eitan.yarmush@solo.io>

Author: EItanya

go/controller/cmd/main.go

@@ -28,6 +28,7 @@ import (
 
 	"github.com/kagent-dev/kagent/go/internal/version"
 
+	"k8s.io/apimachinery/pkg/api/resource"
 	"k8s.io/apimachinery/pkg/types"
 
 	"github.com/kagent-dev/kagent/go/controller/translator"
@@ -85,51 +86,71 @@ func init() {
 	ctrl.SetLogger(zap.New(zap.UseDevMode(true)))
 }
 
+type Config struct {
+	Metrics struct {
+		Addr     string
+		CertPath string
+		CertName string
+		CertKey  string
+	}
+	Webhook struct {
+		CertPath string
+		CertName string
+		CertKey  string
+	}
+	Streaming struct {
+		MaxBufSize     resource.QuantityValue `default:"1Mi"`
+		InitialBufSize resource.QuantityValue `default:"4Ki"`
+	}
+	LeaderElection     bool
+	ProbeAddr          string
+	SecureMetrics      bool
+	EnableHTTP2        bool
+	DefaultModelConfig types.NamespacedName
+	HttpServerAddr     string
+	WatchNamespaces    string
+	A2ABaseUrl         string
+	Database           struct {
+		Type string
+		Path string
+		Url  string
+	}
+}
+
 // nolint:gocyclo
 func main() {
-	var metricsAddr string
-	var metricsCertPath, metricsCertName, metricsCertKey string
-	var webhookCertPath, webhookCertName, webhookCertKey string
-	var enableLeaderElection bool
-	var probeAddr string
-	var secureMetrics bool
-	var enableHTTP2 bool
-	var defaultModelConfig types.NamespacedName
+	cfg := Config{}
 	var tlsOpts []func(*tls.Config)
-	var httpServerAddr string
-	var watchNamespaces string
-	var a2aBaseUrl string
-	var databasePath string
-	var databaseType string
-	var databaseURL string
-
-	flag.StringVar(&metricsAddr, "metrics-bind-address", "0", "The address the metrics endpoint binds to. "+
+	flag.StringVar(&cfg.Metrics.Addr, "metrics-bind-address", "0", "The address the metrics endpoint binds to. "+
 		"Use :8443 for HTTPS or :8080 for HTTP, or leave as 0 to disable the metrics service.")
-	flag.StringVar(&probeAddr, "health-probe-bind-address", ":8082", "The address the probe endpoint binds to.")
-	flag.BoolVar(&enableLeaderElection, "leader-elect", false,
+	flag.StringVar(&cfg.ProbeAddr, "health-probe-bind-address", ":8082", "The address the probe endpoint binds to.")
+	flag.BoolVar(&cfg.LeaderElection, "leader-elect", false,
 		"Enable leader election for controller manager. "+
 			"Enabling this will ensure there is only one active controller manager.")
-	flag.BoolVar(&secureMetrics, "metrics-secure", true,
+	flag.BoolVar(&cfg.SecureMetrics, "metrics-secure", true,
 		"If set, the metrics endpoint is served securely via HTTPS. Use --metrics-secure=false to use HTTP instead.")
-	flag.StringVar(&webhookCertPath, "webhook-cert-path", "", "The directory that contains the webhook certificate.")
-	flag.StringVar(&webhookCertName, "webhook-cert-name", "tls.crt", "The name of the webhook certificate file.")
-	flag.StringVar(&webhookCertKey, "webhook-cert-key", "tls.key", "The name of the webhook key file.")
-	flag.StringVar(&metricsCertPath, "metrics-cert-path", "",
+	flag.StringVar(&cfg.Webhook.CertPath, "webhook-cert-path", "", "The directory that contains the webhook certificate.")
+	flag.StringVar(&cfg.Webhook.CertName, "webhook-cert-name", "tls.crt", "The name of the webhook certificate file.")
+	flag.StringVar(&cfg.Webhook.CertKey, "webhook-cert-key", "tls.key", "The name of the webhook key file.")
+	flag.StringVar(&cfg.Metrics.CertPath, "metrics-cert-path", "",
 		"The directory that contains the metrics server certificate.")
-	flag.StringVar(&metricsCertName, "metrics-cert-name", "tls.crt", "The name of the metrics server certificate file.")
-	flag.StringVar(&metricsCertKey, "metrics-cert-key", "tls.key", "The name of the metrics server key file.")
-	flag.BoolVar(&enableHTTP2, "enable-http2", false,
+	flag.StringVar(&cfg.Metrics.CertName, "metrics-cert-name", "tls.crt", "The name of the metrics server certificate file.")
+	flag.StringVar(&cfg.Metrics.CertKey, "metrics-cert-key", "tls.key", "The name of the metrics server key file.")
+	flag.BoolVar(&cfg.EnableHTTP2, "enable-http2", false,
 		"If set, HTTP/2 will be enabled for the metrics and webhook servers")
 
-	flag.StringVar(&defaultModelConfig.Name, "default-model-config-name", "default-model-config", "The name of the default model config.")
-	flag.StringVar(&defaultModelConfig.Namespace, "default-model-config-namespace", kagentNamespace, "The namespace of the default model config.")
-	flag.StringVar(&httpServerAddr, "http-server-address", ":8083", "The address the HTTP server binds to.")
-	flag.StringVar(&a2aBaseUrl, "a2a-base-url", "http://127.0.0.1:8083", "The base URL of the A2A Server endpoint, as advertised to clients.")
-	flag.StringVar(&databaseType, "database-type", "sqlite", "The type of the database to use. Supported values: sqlite, postgres.")
-	flag.StringVar(&databasePath, "sqlite-database-path", "./kagent.db", "The path to the SQLite database file.")
-	flag.StringVar(&databaseURL, "postgres-database-url", "postgres://postgres:kagent@db.kagent.svc.cluster.local:5432/crud", "The URL of the PostgreSQL database.")
+	flag.StringVar(&cfg.DefaultModelConfig.Name, "default-model-config-name", "default-model-config", "The name of the default model config.")
+	flag.StringVar(&cfg.DefaultModelConfig.Namespace, "default-model-config-namespace", kagentNamespace, "The namespace of the default model config.")
+	flag.StringVar(&cfg.HttpServerAddr, "http-server-address", ":8083", "The address the HTTP server binds to.")
+	flag.StringVar(&cfg.A2ABaseUrl, "a2a-base-url", "http://127.0.0.1:8083", "The base URL of the A2A Server endpoint, as advertised to clients.")
+	flag.StringVar(&cfg.Database.Type, "database-type", "sqlite", "The type of the database to use. Supported values: sqlite, postgres.")
+	flag.StringVar(&cfg.Database.Path, "sqlite-database-path", "./kagent.db", "The path to the SQLite database file.")
+	flag.StringVar(&cfg.Database.Url, "postgres-database-url", "postgres://postgres:kagent@db.kagent.svc.cluster.local:5432/crud", "The URL of the PostgreSQL database.")
 
-	flag.StringVar(&watchNamespaces, "watch-namespaces", "", "The namespaces to watch for .")
+	flag.StringVar(&cfg.WatchNamespaces, "watch-namespaces", "", "The namespaces to watch for .")
+
+	flag.Var(&cfg.Streaming.MaxBufSize, "streaming-max-buf-size", "The maximum size of the streaming buffer.")
+	flag.Var(&cfg.Streaming.InitialBufSize, "streaming-initial-buf-size", "The initial size of the streaming buffer.")
 
 	opts := zap.Options{
 		Development: true,
@@ -139,6 +160,9 @@ func main() {
 
 	logger := zap.New(zap.UseFlagOptions(&opts))
 
+	logger.Info("Starting KAgent Controller", "version", Version, "git_commit", GitCommit, "build_date", BuildDate)
+	logger.Info("Config", "config", cfg)
+
 	ctrl.SetLogger(logger)
 
 	goruntime.SetMaxProcs(logger)
@@ -156,7 +180,7 @@ func main() {
 		c.NextProtos = []string{"http/1.1"}
 	}
 
-	if !enableHTTP2 {
+	if !cfg.EnableHTTP2 {
 		tlsOpts = append(tlsOpts, disableHTTP2)
 	}
 
@@ -166,14 +190,14 @@ func main() {
 	// Initial webhook TLS options
 	webhookTLSOpts := tlsOpts
 
-	if len(webhookCertPath) > 0 {
+	if len(cfg.Webhook.CertPath) > 0 {
 		setupLog.Info("Initializing webhook certificate watcher using provided certificates",
-			"webhook-cert-path", webhookCertPath, "webhook-cert-name", webhookCertName, "webhook-cert-key", webhookCertKey)
+			"webhook-cert-path", cfg.Webhook.CertPath, "webhook-cert-name", cfg.Webhook.CertName, "webhook-cert-key", cfg.Webhook.CertKey)
 
 		var err error
 		webhookCertWatcher, err = certwatcher.New(
-			filepath.Join(webhookCertPath, webhookCertName),
-			filepath.Join(webhookCertPath, webhookCertKey),
+			filepath.Join(cfg.Webhook.CertPath, cfg.Webhook.CertName),
+			filepath.Join(cfg.Webhook.CertPath, cfg.Webhook.CertKey),
 		)
 		if err != nil {
 			setupLog.Error(err, "Failed to initialize webhook certificate watcher")
@@ -196,12 +220,12 @@ func main() {
 	// - https://pkg.go.dev/sigs.k8s.io/controller-runtime@v0.20.0/pkg/metrics/server
 	// - https://book.kubebuilder.io/reference/metrics.html
 	metricsServerOptions := metricsserver.Options{
-		BindAddress:   metricsAddr,
-		SecureServing: secureMetrics,
+		BindAddress:   cfg.Metrics.Addr,
+		SecureServing: cfg.SecureMetrics,
 		TLSOpts:       tlsOpts,
 	}
 
-	if secureMetrics {
+	if cfg.SecureMetrics {
 		// FilterProvider is used to protect the metrics endpoint with authn/authz.
 		// These configurations ensure that only authorized users and service accounts
 		// can access the metrics endpoint. The RBAC are configured in 'config/rbac/kustomization.yaml'. More info:
@@ -217,14 +241,14 @@ func main() {
 	// - [METRICS-WITH-CERTS] at config/default/kustomization.yaml to generate and use certificates
 	// managed by cert-manager for the metrics server.
 	// - [PROMETHEUS-WITH-CERTS] at config/prometheus/kustomization.yaml for TLS certification.
-	if len(metricsCertPath) > 0 {
+	if len(cfg.Metrics.CertPath) > 0 {
 		setupLog.Info("Initializing metrics certificate watcher using provided certificates",
-			"metrics-cert-path", metricsCertPath, "metrics-cert-name", metricsCertName, "metrics-cert-key", metricsCertKey)
+			"metrics-cert-path", cfg.Metrics.CertPath, "metrics-cert-name", cfg.Metrics.CertName, "metrics-cert-key", cfg.Metrics.CertKey)
 
 		var err error
 		metricsCertWatcher, err = certwatcher.New(
-			filepath.Join(metricsCertPath, metricsCertName),
-			filepath.Join(metricsCertPath, metricsCertKey),
+			filepath.Join(cfg.Metrics.CertPath, cfg.Metrics.CertName),
+			filepath.Join(cfg.Metrics.CertPath, cfg.Metrics.CertKey),
 		)
 		if err != nil {
 			setupLog.Error(err, "to initialize metrics certificate watcher", "error", err)
@@ -237,14 +261,14 @@ func main() {
 	}
 
 	// filter out invalid namespaces from the watchNamespaces flag (comma separated list)
-	watchNamespacesList := filterValidNamespaces(strings.Split(watchNamespaces, ","))
+	watchNamespacesList := filterValidNamespaces(strings.Split(cfg.WatchNamespaces, ","))
 
 	mgr, err := ctrl.NewManager(ctrl.GetConfigOrDie(), ctrl.Options{
 		Scheme:                 scheme,
 		Metrics:                metricsServerOptions,
 		WebhookServer:          webhookServer,
-		HealthProbeBindAddress: probeAddr,
-		LeaderElection:         enableLeaderElection,
+		HealthProbeBindAddress: cfg.ProbeAddr,
+		LeaderElection:         cfg.LeaderElection,
 		LeaderElectionID:       "0e9f6799.kagent.dev",
 		Cache: cache.Options{
 			DefaultNamespaces: configureNamespaceWatching(watchNamespacesList),
@@ -268,12 +292,12 @@ func main() {
 
 	// Initialize database
 	dbManager, err := database.NewManager(&database.Config{
-		DatabaseType: database.DatabaseType(databaseType),
+		DatabaseType: database.DatabaseType(cfg.Database.Type),
 		SqliteConfig: &database.SqliteConfig{
-			DatabasePath: databasePath,
+			DatabasePath: cfg.Database.Path,
 		},
 		PostgresConfig: &database.PostgresConfig{
-			URL: databaseURL,
+			URL: cfg.Database.Url,
 		},
 	})
 	if err != nil {
@@ -293,21 +317,23 @@ func main() {
 
 	apiTranslator := translator.NewAdkApiTranslator(
 		kubeClient,
-		defaultModelConfig,
+		cfg.DefaultModelConfig,
 	)
 
 	a2aHandler := a2a.NewA2AHttpMux(httpserver.APIPathA2A)
 
 	a2aReconciler := a2a_reconciler.NewReconciler(
 		a2aHandler,
-		a2aBaseUrl+httpserver.APIPathA2A,
+		cfg.A2ABaseUrl+httpserver.APIPathA2A,
+		int(cfg.Streaming.MaxBufSize.Value()),
+		int(cfg.Streaming.InitialBufSize.Value()),
 	)
 
 	rcnclr := reconciler.NewKagentReconciler(
 		apiTranslator,
 		kubeClient,
 		dbClient,
-		defaultModelConfig,
+		cfg.DefaultModelConfig,
 		a2aReconciler,
 	)
 
@@ -383,7 +409,7 @@ func main() {
 	}
 
 	httpServer, err := httpserver.NewHTTPServer(httpserver.ServerConfig{
-		BindAddr:          httpServerAddr,
+		BindAddr:          cfg.HttpServerAddr,
 		KubeClient:        kubeClient,
 		A2AHandler:        a2aHandler,
 		WatchedNamespaces: watchNamespacesList,

go/controller/internal/a2a/a2a_reconciler.go

@@ -31,15 +31,22 @@ type A2AReconciler interface {
 type a2aReconciler struct {
 	a2aHandler a2a.A2AHandlerMux
 	a2aBaseUrl string
+
+	streamingMaxBufSize     int
+	streamingInitialBufSize int
 }
 
 func NewReconciler(
 	a2aHandler a2a.A2AHandlerMux,
 	a2aBaseUrl string,
+	streamingMaxBufSize int,
+	streamingInitialBufSize int,
 ) A2AReconciler {
 	return &a2aReconciler{
-		a2aHandler: a2aHandler,
-		a2aBaseUrl: a2aBaseUrl,
+		a2aHandler:              a2aHandler,
+		a2aBaseUrl:              a2aBaseUrl,
+		streamingMaxBufSize:     streamingMaxBufSize,
+		streamingInitialBufSize: streamingInitialBufSize,
 	}
 }
 
@@ -53,7 +60,7 @@ func (a *a2aReconciler) ReconcileAgent(
 	agentRef := common.GetObjectRef(agent)
 	cardCopy.URL = fmt.Sprintf("%s/%s/", a.a2aBaseUrl, agentRef)
 
-	client, err := a2aclient.NewA2AClient(adkConfig.AgentCard.URL)
+	client, err := a2aclient.NewA2AClient(adkConfig.AgentCard.URL, a2aclient.WithBuffer(a.streamingInitialBufSize, a.streamingMaxBufSize))
 	if err != nil {
 		return err
 	}

go/go.mod

@@ -150,3 +150,5 @@ require (
 	sigs.k8s.io/randfill v1.0.0 // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.6.0 // indirect
 )
+
+replace trpc.group/trpc-go/trpc-a2a-go => github.com/kagent-dev/a2a-go v0.0.0-20250806145931-0fab01f644c3

go/go.sum

@@ -126,6 +126,8 @@ github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8Hm
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
+github.com/kagent-dev/a2a-go v0.0.0-20250806145931-0fab01f644c3 h1:NrQCHyIOsQTtq9u7fpfQuDOMQAGVOa+n5Km/8csdqOM=
+github.com/kagent-dev/a2a-go v0.0.0-20250806145931-0fab01f644c3/go.mod h1:lu052zH/pTlTBwWMU/E3UckR0U9ajL1NlhiRkIF9R6A=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
 github.com/klauspost/compress v1.18.0 h1:c/Cqfb0r+Yi+JtIEq73FWXVkRonBlf0CRNYc8Zttxdo=
@@ -381,5 +383,3 @@ sigs.k8s.io/structured-merge-diff/v4 v4.6.0/go.mod h1:dDy58f92j70zLsuZVuUX5Wp9vt
 sigs.k8s.io/yaml v1.4.0/go.mod h1:Ejl7/uTz7PSA4eKMyQCUTnhZYNmLIl+5c2lQPGR2BPY=
 sigs.k8s.io/yaml v1.6.0 h1:G8fkbMSAFqgEFgh4b1wmtzDnioxFCUgTZhlbj5P9QYs=
 sigs.k8s.io/yaml v1.6.0/go.mod h1:796bPqUfzR/0jLAl6XjHl3Ck7MiyVv8dbTdyT3/pMf4=
-trpc.group/trpc-go/trpc-a2a-go v0.2.1 h1:v2U4e74wAmgD019+Xw8GTSn7ZJaz+enBfWbLshyhZQs=
-trpc.group/trpc-go/trpc-a2a-go v0.2.1/go.mod h1:lu052zH/pTlTBwWMU/E3UckR0U9ajL1NlhiRkIF9R6A=

go/internal/a2a/manager.go

@@ -2,7 +2,6 @@ package a2a
 
 import (
 	"context"
-	"errors"
 
 	"trpc.group/trpc-go/trpc-a2a-go/client"
 	"trpc.group/trpc-go/trpc-a2a-go/protocol"
@@ -56,16 +55,5 @@ func (m *PassthroughManager) OnPushNotificationGet(ctx context.Context, params p
 }
 
 func (m *PassthroughManager) OnResubscribe(ctx context.Context, params protocol.TaskIDParams) (<-chan protocol.StreamingMessageEvent, error) {
-	// TODO: Implement
-	return nil, nil
-}
-
-// Deprecated: OnSendTask is deprecated and will be removed in the future.
-func (m *PassthroughManager) OnSendTask(ctx context.Context, request protocol.SendTaskParams) (*protocol.Task, error) {
-	return nil, errors.New("OnSendTask is deprecated and will be removed in the future")
-}
-
-// Deprecated: OnSendTaskSubscribe is deprecated and will be removed in the future.
-func (m *PassthroughManager) OnSendTaskSubscribe(ctx context.Context, request protocol.SendTaskParams) (<-chan protocol.TaskEvent, error) {
-	return nil, errors.New("OnSendTaskSubscribe is deprecated and will be removed in the future")
+	return m.client.ResubscribeTask(ctx, params)
 }

helm/kagent/templates/controller-deployment.yaml

@@ -42,6 +42,10 @@ spec:
             - {{ .Values.controller.loglevel }}
             - -watch-namespaces
             - "{{ include "kagent.watchNamespaces" . }}"
+            - -streaming-max-buf-size
+            - {{ .Values.controller.streaming.maxBufSize | quote }}
+            - -streaming-initial-buf-size
+            - {{ .Values.controller.streaming.initialBufSize | quote }}
             - -database-type
             - {{ .Values.database.type }}
             {{- if eq .Values.database.type "sqlite" }}
@@ -128,15 +132,15 @@ spec:
             - name: OTEL_EXPORTER_OTLP_TRACES_INSECURE
               value: {{ .Values.otel.tracing.exporter.otlp.insecure | quote }}
           ports:
-            - name: http
+            - name: http-grafana
               containerPort: 8000
               protocol: TCP
           startupProbe:
             tcpSocket:
-              port: http
+              port: http-grafana
             periodSeconds: 1
             initialDelaySeconds: 1
           readinessProbe:
             tcpSocket:
-              port: http
+              port: http-grafana
             periodSeconds: 30

helm/kagent/values.yaml

@@ -58,6 +58,9 @@ database:
 controller:
   replicas: 1
   loglevel: "info"
+  streaming: # Streaming buffer size for A2A communication
+    maxBufSize: 1Mi # 1024 * 1024
+    initialBufSize: 4Ki # 4 * 1024
 
   # -- Namespaces the controller should watch.
   # If empty, the controller will watch ALL available namespaces.