add building without in tree providers

[BenTheElder]

KEP for #1179

Previously discussed in SIG Cloud Provider, and with some SIG Release members. This is Nominally SIG Cloud Provider but the alternate build mode should also interest and include SIG Release.

[k8s-ci-robot]

Welcome @BenTheElder!

It looks like this is your first PR to kubernetes/enhancements 🎉. Please refer to our pull request process documentation to help your PR have a smooth ride to approval.

You will be prompted by a bot to use commands during the review process. Do not be afraid to follow the prompts! It is okay to experiment. Here is the bot commands documentation.

You can also check if kubernetes/enhancements has its own contribution guidelines.

You may want to refer to our testing guide if you run into trouble with your tests not passing.

If you are having difficulty getting your pull request seen, please follow the recommended escalation practices. Also, for tips and tricks in the contribution process you may want to read the Kubernetes contributor cheat sheet. We want to make sure your contribution gets all the attention it needs!

Thank you, and welcome to Kubernetes. 😃

[BenTheElder]

/assign @cheftako @andrewsykim @justaugustus

[BenTheElder]

pending #1181 to fix update-toc.sh

[cheftako]

Seems like we should have at least one approver from cloud-provider and one approver from each of testing and release. We should also make sure they are not from the same company.

[spiffxp]

I can be an approver on behalf of sig-testing if it'll help

[BenTheElder]

happy to add / remove as necessary, added the current reviewers to approvers and @spiffxp to both which now cover:

@andrewsykim - (Cloud Provider, VMware)
@cheftako - (Cloud Provider, Google)
@spiffxp - (Testing, Google)
@justaugustus - (Release, VMWare)

[davidz627]

/cc @davidz627 @ddebroy

[cheftako]

/lgtm

[spiffxp]

Thanks for putting this together

[spiffxp]

Just a note that I don't see any doc.go verbiage specified here. I'm comfortable seeing this KEP merge and having the verbiage sorted out over in the prototype PR

eg: https://github.com/kubernetes/kubernetes/pull/80353/files#diff-fe522781fb7f1bf08a17a523c264ffb6 no verbiage at the moment

[spiffxp]

I'm fine with the test plan for now. Would like to see us refine this with links to the relevant jobs/dashboards as we get them setup

[BenTheElder]

Would like to see us refine this with links to the relevant jobs/dashboards as we get them setup

Yeah, those will be pending the initial implementation, it doesn't make much sense to write CI jobs / dashboards for a build mode that doesn't exist yet.

I also expect in the future to be supporting various groups implementing their own CI making use of this build mode (EG cloud-provider-foo repo CI), but I'm not sure that belongs here exactly other than the user stories. It remains to be seen which foos take this up.

[spiffxp]

/lgtm
as sig-testing approver

[ddebroy]

Looks good and the approach is pretty nice! Just had a couple of clarifying questions.

[ddebroy]

Does this cover the moving of the ProbeVolumePlugin calls to cmd/kube-controller-manager/app/plugins_legacyproviders.go?

[BenTheElder]

yes, the next line mentions in-tree volumes

[ddebroy]

Should it be called out explicitly (besides mechanisms to migrate to out-of-tree providers) that maintaining API compatibility with existing in-tree providers (e.g. for in-tree volumes) is a non-goal in the context of this KEP and associated PRs as well?

[BenTheElder]

Maybe? Inherently there can't / won't be the same cloud provider and what cloud providers do exist will depend on the CCM deployed when using this. This is not new to this KEP.

For storage / in-tree volumes etc. anything broken in this build mode will eventually be broken when the in-tree cloud providers are removed and must be fixed regardless of this KEP.

The intention behind this KEP is to help surface what those things are and verify that we've fixed them as we do that. Fixing them however is out of scope.

That said, to implement it we do have to do a bare minimum of decoupling just to get a build that compiles, and that has surfaced some pending breakages already that are called out in the KEP (E.G. GCE node IPAM which we need to finish deprecating and remove).

More specific to this point I have met with @davidz627 about CSI migration testing & this KEP and we do intend to make sure that we can test CSI migration specifically, possibly not in the first implementation PR though and possibly (?) orthogonally to the KEP.

[ddebroy]

Thanks for clarifying that potential fixes for issues that arise at run-time (rather than at build-time) is out of scope.

[BenTheElder]

Should also add -- I'm also interested in helping fix those runtime issues myself, but I don't think that belongs in the KEP 😅

[spiffxp]

pinged @andrewsykim and @justaugustus for signoff by remaining approvers listed on the KEP

[andrewsykim]

Are there any plans to support an "unofficial" release using this build tag? I'm assuming not in the immediate future but maybe later?

[BenTheElder]

We'll likely need one as part of any CI using it, kube-up, kops etc. tend to rely on a release tarball being somewhere in cloud storage, we can handle this the same as the other CI based builds which are definitely not official releases but are regularly pushed to well known location(s).

We have a number of these already including bazel based quick release, make based quick release, and the cross compile build, I think it would be pretty reasonable to add a "without in tree providers" CI build.

[BenTheElder]

So I would say yes, as a follow up to getting the build tag working we'll first want to figure out a nice way to invoke building something like a release with it, and then we'll want CI for it.

I think this is sorta covered by the test plan but maybe could be more explicit 🤔

[andrewsykim]

/approve
/hold

Leaving hold cancel to @BenTheElder and @justaugustus

[justaugustus]

Looks great, @BenTheElder!
/lgtm
/approve
/hold cancel

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: andrewsykim, BenTheElder, cheftako, justaugustus, spiffxp

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• keps/sig-cloud-provider/OWNERS [andrewsykim,justaugustus]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment