Adding the skeleton for versioned APIs, both servers and clients

[wk8]

What type of PR is this?
/kind feature

What this PR does / why we need it:

This patch proposes a generic framework to be able to easily define, maintain
and extend versioned API groups going forward.

The whole idea is documented in api/README.md; reviewers should read that
file before reviewing the rest of the PR.

Please note that all *_generated.go files in this PR are meant to be
auto-generated by a tool based on gengo, but that tool will only be written
after this patch's approach is accepted and this PR merged; in particular
*_generated.go files in this PR should be reviewed.

With integration tests with a dummy API group, across 3 versions, with breaking
changes in conversions from one version to the next.

Also some unit tests where relevant.

Special notes for your reviewer:

Please make sure to read api/README.md first (https://github.com/wk8/csi-proxy/blob/wk8/server_scaffolding/api/README.md)

Does this PR introduce a user-facing change?:

NONE

[ddebroy]

The overall API versioning and dispatching approach (inspired by the Kubernetes API approach) makes a lot of sense and LGTM. A couple of comments around removal/deprecation.

[ddebroy]

/assign @jingxu97 @msau42 @peterhornyack

[k8s-ci-robot]

@ddebroy: GitHub didn't allow me to assign the following users: peterhornyack.

Note that only kubernetes-csi members, repo collaborators and people who have commented on this issue/PR can be assigned. Additionally, issues/PRs can only have 10 assignees at the same time.
For more information please see the contributor guide

In response to this:

/assign @jingxu97 @msau42 @peterhornyack

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[pjh]

I appreciate the thorough test coverage, thanks!

[pjh]

Everything above was intuitive to me until I got here. Is there an alternative to the converting scheme described below?

Could there just be a ComputeDouble_v1alpha1 func and a ComputeDouble_v1 func and the RPC would get directed to the right one depending on which version the client is using? I'm guessing there's a reason this is not possible or ideal but it's not clear to me.

Is it because this would require a separate server for each version of the API group? Would that be a big deal?

[wk8]

@pjh : the whole idea is indeed to have only one generic server per API group that handles all the versions for that API group, as the main reason to ever create a new version for a given API group is expected to say remove a field, or change its type; so having a single place where to handle all versions for a given API call makes re-using code across versions easy.

Besides, that's the same general idea that k8s' API uses, so mimicking that here makes it easier for people used to working on k8s' API to onboard on this repo.

[pjh]

Thanks for including these detailed explanations!

[pjh]

"Starts starts" needs rephrasing :)

[wk8]

To Starts starts starts? ;) changed, good catch!

[pjh]

Do you expect to merge this PR or #1 first, or does it not matter either way?

[wk8]

@pjh thanks for the review, replied/amended.

Do you expect to merge this PR or #1 first, or does it not matter either way?

I'd like to get this one in first, so that I can then re-factor #1 to abide by the rules this PR sets forth for API proto files.

[pjh]

LGTM but will let others give official lgtm/approval.

[jingxu97]

you plan to add this after PR is get approved?

[wk8]

Yes indeed. That will depend on the shape of the generator, and I'd rather get this approved before getting too far on writing it.

[msau42]

I know K8s APIs allow things like adding new fields without bumping the version, but that ends up adding one more version dependency, ie "I support 1.15 version of v1 API". I had a conversation with liggitt a while ago about CRD versioning, and he recommended that we always bump the version when we make any change to the API to remove any ambiguity.

[wk8]

That is indeed a fair point, thank you for bringing it up! Changing.

[wk8]

Thinking a bit more about this, that would also mean bumping versions at an alarming rate. How about we simply choose to make stable versions (ie alpha and beta) immutable once they're promoted, but alpha and beta versions simply have to stay backward compatible with themselves (ie adding fields to a non-stable version doesn't require bumping to a new version altogether)?

Otherwise, every time there is any change to an API, that would require creating a new version for it, and keeping it around for quite a while (as per the deprecation policy), and we'd fast end up with a lot of versions. And although the overhead to having each version is rather low, it still adds up: one named pipe per version, plus the need to add conversion functions for all lower versions when making a breaking change that requires a conversion.

If you agree with that, I will simply change the beginning of this section to read:

Stable API versions (i.e. not alpha nor beta) are considered immutable, and cannot be changed.

Changes to existing alpha or beta API versions are only acceptable [...]

[msau42]

I would expect most of the changes to happen during alpha, and much fewer once beta or GA. And for alpha it doesn't make a difference either way since it can change release to release. I think it's much more simpler/obvious from a client's perspective to be explicit about the api version and proxy version compatibility ("If I use v1alpha3, I know it's supported by proxy version X, Y", instead of "If I use this function/field from v1alpha1, I need to use it with proxy version X")

[wk8]

I think it's much more simpler/obvious from a client's perspective to be explicit about the api version and proxy version compatibility ("If I use v1alpha3, I know it's supported by proxy version X, Y", instead of "If I use this function/field from v1alpha1, I need to use it with proxy version X")

Absolutely, totally agree. My main concern here is simply to ensure that we don't end up maintaining an unreasonable number of API versions at any one time.

And for alpha it doesn't make a difference either way since it can change release to release.

So are you proposing that alpha APIs offer no guarantees whatsoever, not even backward compatibility with themselves, but beta and GA APIs are immutable? If so, we could even get rid of beta versions altogether, since they don't really have much purpose?

[msau42]

I'm thinking it's simpler to say they are all immutable, but whether or not the proxy needs to carry support for it depends on the designation:

• alpha: 0 releases
• beta: 9 months or 3 releases
• ga: 12 months or 3 releases

What this implies is that alpha is where most of the iteration and testing should go, and we should only promote to beta once we have confidence in the api. Even once an api is promoted to beta or GA, you can add more features with a new alpha version and have that go through beta, GA cycles again.

[ddebroy]

Agree with the above suggestion. During alpha, as the API churns, the API will go through vXalpha1 -> vXalpha2 -> ... -> vXalphaN. Once vXbeta1 gets cut, churn will be much less and we should have at most vXbeta1/vXbeta2 and finally the stable vX.

All the Alpha named pipes + API versions can thus be dropped frequently at every release and prevent an increasing build-up. The limited number of beta pipes + API versions will be carried for a limited amount of time and so on.

Once a new Alpha for vX+1 is started, unpromoted APIs will need to be carried over manually by maintainers from vXalphaN if they were not ready to be promoted to vXbeta1.

[wk8]

Changed the wording :)

[msau42]

Can you clarify here are we talking about the version of csi-proxy.exe, or the csi proxy API? My understanding here is that a single binary csi-proxy.exe will need to support multiple API versions, including deprecated ones until we reach the end of the deprecation period.

[ddebroy]

In the vast majority of scenarios, we expect a single version of csi-proxy.exe to be running that supports the necessary API versions for the CSI node plugins running on a node. We expect this to be the case for the first few releases.

The above bit about multiple versions of csi-proxy.exe is geared towards a remote scenario in the future where an operator for some reason wants to keep running a really old CSI driver (that requires an API version that is no longer supported by the current version of csi-proxy.exe at that point in time) along with a modern CSI driver (that requires an API version that is only supported by current version of csi-proxy.exe at that point in time).

We can explain the above in some more details and emphasize that such a situation should be very rare.

[msau42]

Yeah I think distinguishing between the two would be good: what the supported case is vs unsupported but if you really want to this is what you could do

[wk8]

Good point, clarifying.

[wk8]

(also note for later: running 2 csi-proxy.exe at the same time will require small tweaks on named pipes paths)

[ddebroy]

In the KEP we proposed a probe and back-off mechanism to enable side-by-side execution (when necessary):

For every version of the API supported, csi-proxy.exe will first probe for and then expose a \\.\pipe... If during the initial
probe phase, csi-proxy.exe determines that another process is already listening on a \\.\pipe\csi-proxy-v[N] named pipe, it will not try to create and listen on that named pipe. This allows multiple versions of csi-proxy.exe to run side-by-side if absolutely necessary to support multiple CSI Node Plugins that require widely different versions of CSIProxyService that no single version of csi-proxy.exe can support.

[wk8]

Oh, missed that part. As of right now the server will crash if it can't create all the pipes it needs.

I'm not sure I love this though, because that has the potential to hide problems from admins. You want to know when your service can't listen on what it's supposed to be listening on.

How about having a flag for the server --enabled-apis <group>-<version>,<group>-<version>,... instead?

[ddebroy]

Sounds good. More deterministic that way. Only the old/unsupported versions will use the above parameters, correct?

[wk8]

It'll be an optional flag that you can pass to csi-proxy.exe. By default, all API groups/versions will be enabled.

Created #9

[msau42]

To clarify, all of these types of deprecation results in deprecating the entire api version right? Because in order to actual remove a field or proc, you need to serve a new api version, and remove the current one.

[wk8]

I don't think that deprecating a single field, or a single procedure, necessarily means deprecating the entire API version. There's no strong reason to deprecate API versions as fast as possible, and adding a new one shouldn't necessarily mean deprecating all the previous versions for that group. And deprecation doesn't mean immediate removal either.

[msau42]

I guess what I'm wondering about is to actually remove support for a field or function entirely, we would have to deprecate and eventually remove the entire API version (and replace it with a new api version that doesn't have it)

[wk8]

Absolutely; deprecating a single field or procedure is simply meant to let users know that this field or procedure will be removed in a subsequent version. It doesn't change anything to the behaviour of the version it's applied to.

[msau42]

Do you see any risk of depending on these tools that were mainly designed for K8s APIs? If changes are made in those tools that break our generation, will we need to fork them?

[wk8]

That is indeed a very valid concern. The generator will mainly be based on gengo, whose purpose is well defined, and quite separate from k8s, so I think we're in the clear there.

As to code-generator, the only part that we're interested in is from https://github.com/kubernetes/code-generator/blob/master/cmd/conversion-gen/generators/conversion.go, namely comparing 2 structs, finding the fields with the same names and types in there, and generating efficient conversion code from one to the other. The plan is to make a PR on code-generator to extract the relevant pieces of code from conversion.go into a new package, and with extensive unit tests, and then use only that package in our own converter. Since that new package would have a well defined purpose, it should hopefully stay stable enough that we can rely on it without too much hassle going forward.

[msau42]

Can you also add a section on exporting client files? One problem we have with the snapshot APIs + dep, is that users that want the client libraries need to import the external-snapshotter repo, which also contains the server side dependencies, which often include k/k libraries. For the user, dependency management is difficult because now they have dependencies on kubernetes and have to potentially deal with conflicting libraries that may also have transient dependencies on kubernetes.

I'm not sure if go modules can solve this problem, ie exporting the client library as a module. Can we investigate this? Otherwise, we may want to go a similar route with how k/k does it by having a staging directory and then mirroring it to another repo.

[ddebroy]

Good point. In a quick prototype of csi-proxy, I placed the API Go files under a separate package: https://github.com/ddebroy/csi-proxy/tree/master/pkg from the server installation.

The dependency solver was able to import in just the API pkg (v1alpha1) from the repo when trying it out with gce-pd: ddebroy/gcp-compute-persistent-disk-csi-driver@e129ffd#diff-bd247e83efc3c45ae9e8c47233249f18R52

This allowed the vendor repo to be pretty clean on the client repo (gce-pd in this case): https://github.com/ddebroy/gcp-compute-persistent-disk-csi-driver/tree/win-csi1/vendor/github.com/ddebroy/csi-proxy

@wk8 if the above just works with the .proto + generated pb.go files corresponding to the APIs, we can call it out here.

[msau42]

Took a quick look at your client api files, it looks like it doesn't depend on any kubernetes imports so maybe it's fine.

[wk8]

Digging more into this, it does seem that this might indeed be a problem. Importing any package from a module does import all of that module's dependencies, even if there are not used for the one package you import.

I'm not so worried about k8s imports, as this repo should never import anything from k8s, but it could indeed be a problem anyway: it already has a number of dependencies, there will most likely be many more to come, and ideally we'd like clients to be able to import what they need without getting all the deps with it.

Going to try having 3 separate modules: one under /api, one under /client, and one for the rest; clients would just need to import the 1st two afterwards.

[wk8]

Added commit 5d2a22b in which everything that clients need to import is broken into its own go module.

[wk8]

@msau42 @ddebroy : amended/replied, thanks for the reviews! :)

[msau42]

typo: immutable.

I would actually make alpha apis immutable too. So we will be revving alpha versions very quickly, but the proxy only needs to support one version. It makes it much more explicit which version of the proxy your driver is compatible with.

[wk8]

👍

[msau42]

This conflicts with the sentence above, which talks about running multiple versions of the proxy

[wk8]

Indeed... Removed!

[msau42]

Did you upload a new version?

[wk8]

Yes :) ?

[msau42]

I think alpha should be immutable too. Then we can remove the rest of this section. @ddebroy seems to agree too

[wk8]

I'm sorry, I amended the first sentence, and then forgot to remove this paragraph :/

[msau42]

I think this still conflicts with the sentence above (I think we should modify or clarify the above sentence). Previous sentence says "you may need to run multiple versions of the proxy", and then this sentence says "1 proxy may support multiple versions"

[wk8]

Previous sentence says "you may need to run multiple versions of the proxy"

If you need old API versions

"1 proxy may support multiple versions"

It will, the last k versions, as required by the deprecation schedule.

Tried to reword it to make it clearer, hopefully that's better.

[msau42]

Maybe we should not even mention the case of running older versions of csi-proxy. It's not something we want to support anyway.

[wk8]

I'd think that we do want to support that, when really needed (#7 (comment)), so it can't hurt to at least brush on it?

[msau42]

I'm actually not sure if we really want to officially support things that are out of our deprecation/support policy. It adds a lot of burden on us to validate and test. @ddebroy wdyt?

[ddebroy]

I think we do not need to officially support old versions of csi-proxy.exe. So I am okay with removing the text above from the README covering multiple versions/instances of csi-proxy.exe side-by-side as a supported option. I agree this allows for a simpler validation and test matrix.

The approach described in #7 (comment) allows someone who wishes to run an old, unsupported version of csi-proxy for some reason to do so (side-by-side with a supported version of csi-proxy). As long as that ability is not explicitly blocked in the implementation, I am fine.

[wk8]

Removed

[ddebroy]

Looking pretty good. A bunch of README nits to improve the readability a bit. Two questions on the auto generated converters for Doubles in FileSystem.

[ddebroy]

nit: I think you mean "as few dependencies" and not "as many dependencies", right?

[wk8]

... :(

[ddebroy]

nit: maybe you can remove "separate" and "the one" from the sentence - "This go module is intended to be imported by clients ..."

[wk8]

👍

[ddebroy]

How about removing "internal" - "Internally, there is only one server struct per API group ..."

[wk8]

👍

[ddebroy]

nit: remove "then" => "is generated automatically ..."

[wk8]

👍

[ddebroy]

nit: how about "convert internal responses back to versioned responses" instead of "and then internal ..."

[wk8]

👍

[ddebroy]

how about: "listening for its version's requests" => "listen for each version's requests"
and: "replying with it's version's responses" => "reply with each version's responses"

[wk8]

👍

[ddebroy]

how about moving this bullet to a sentence under "## How to change the API" ?

[wk8]

👍

[ddebroy]

"compatible" is slightly unclear. May be word it as "Any changes to the API of an existing API group requires creating a new API version"?

[wk8]

👍

[ddebroy]

Is this expected? The ComputeDouble stuff is from the dummy API group. They should not show up under the filesystem API group, correct?

[wk8]

And that's why humans are bad at "auto-generating" code ;) good catch!

[ddebroy]

Is this expected? The ComputeDouble stuff is from the dummy API group. They should not show up under the filesystem API group, correct?

[wk8]

Same :)

[wk8]

@ddebroy @msau42 : thanks for the thorough reviews, addressed your comments.

[msau42]

/approve

I only reviewed the README.md. Will let @ddebroy and @jingxu97 review the rest. Thanks so much, this is looking great!

[msau42]

A top level README.md with instructions to users on how to import this go module would be great too! Can be done as a separate PR once there's actually something to import.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: msau42, wk8

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [msau42]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[jingxu97]

The parameter of "version" is not used in the function?

[wk8]

Yes. That's required to fulfill the auto-generated interface that the generated versioned servers expect (https://github.com/kubernetes-csi/csi-proxy/pull/7/files#diff-fed01b95f0f43874e57816bfe316b1f7R18).

The idea here is that API devs can use that to make adjustments based on the API version the request was made against. The preferred way to handle that would be through custom conversion functions though.

[jingxu97]

so for the response, overflow is included?

[wk8]

Good catch, it shouldn't. Sorry. Fixed. Returns an error now, as it should.

[jingxu97]

this file is automatically generated?

[wk8]

Yes. It's the go mod's lock file, automatically generated when using GO111MODULE=on

[ddebroy]

Couple more nits. Otherwise LGTM at this point.

[ddebroy]

Check the bullet numbering - 3 is repeated.

[wk8]

👍

[ddebroy]

comment nits:
"dummy API group" => "Filesystem API group"
"version v1" => "version v1alpha1"

[wk8]

Manual auto generation is hard ;)

[jingxu97]

is it possible len(matches) > 4?

[wk8]

Nope. This could be == 4.

[ddebroy]

/lgtm

[ddebroy]

/hold

[ddebroy]

tried to hold to request a squash of the "review comments" PR but that was not quick enough :-( oh well.