Proposal: Support Sending Merge Key in the Patch by Clients

[mengqiy]

cc: @pwittrock

[pwittrock]

I'd replace this with:

The current implementation requires a single field that uniquely identifies each element in a list. For some element Kinds, the identity is defined using multiple fields. An example of this is the x.x.xPort, which is identified by protocol and port

[mengqiy]

Done.

[pwittrock]

Why '|' instead of ','? What is more consistent with other tags and comments?

[mengqiy]

After checking types.go, I agree we should use ','.

[pwittrock]

What does this mean that it is ok for the field to be missing by not empty? Can you give an example?

[pwittrock]

I see this is answered following :)

[pwittrock]

How about

If one or more of the mergeKeys is unspecified, it is interpreted as an empty value for purposes of uniquely identifying the object.

[mengqiy]

If one or more of the mergeKeys is unspecified, it is interpreted as an empty value for purposes of uniquely identifying the object.

IMO we still want to distinguish unspecified and empty

- port: 12345

and

- name: ""
  port: 12345

The wording you give seems not support this?

Can you give me another wording?

[pwittrock]

comment that the name is missing here

[mengqiy]

Done.

[pwittrock]

Yay

[pwittrock]

update to ','

[mengqiy]

Done.

[pwittrock]

I think this is ready for a broader review. Would you present at the next sig-cli?

[pwittrock]

@liggitt Would you be willing to act as a reviewer for this proposal for supporting multiple-fields as a mergeKey?

[mengqiy]

I think this is ready for a broader review. Would you present at the next sig-cli?

Sure.

[liggitt]

again, the 1 minor version skew policy is kubectl-specific, not for the API in general. I'm not sure how to evolve mergeKey on existing fields compatibly without making all clients do field-level API discovery which sounds pretty painful.

[mengqiy]

I understood.
The usage of OpenAPI is not just for kubectl. It is actually for all clients. We want all clients to use OpenAPI instead of baked-in types in the future. It is also useful and important for TPR and service catalog.

Ref: kubernetes/kubernetes#44531

[liggitt]

It is also useful and important for TPR and service catalog.

For discovering arbitrary resources, sure, but for a client that wants to patch exactly one thing on a known version of a known resource, forcing them to do openapi discovery to see if the way they are supposed to patch that field in that version has changed is a pretty high bar.

For example, if I want to patch a port on a v1 service, I would not expect to have to do openapi discovery. I'd expect the v1 API to remain compatible. If you wanted to change the mergeKey, that seems like the sort of thing you'd need to bump API versions for.

[smarterclayton]

Yeah, in general. MergeKeys are forever I think.

[mengqiy]

but for a client that wants to patch exactly one thing on a known version of a known resource, forcing them to do openapi discovery to see if the way they are supposed to patch that field in that version has changed is a pretty high bar.

@liggitt Do you have specific client(s) in your mind?

[pwittrock]

@thockin FYI

To clarify, this is an issue generally with changing merge keys, not specifically with supporting tuples as merge keys.

A couple thoughts:

• The ship may have sailed on this already, but I would think that the client should send the merge keys and merge strategies as part of the patch request so it could tell the server how the patch request is intended to be merged.
• It maybe possible to introduce additional keys for fields while keeping backwards compatibility. Would need to think through the combinatorics, but I am wondering if some of the merge key tuple is missing from the patch request (e.g. the new part), if the server could fallback on the remaining pieces as the merge key.
• If merge keys really are "forever", and we needed to change the one referenced in this case, would this then require bumping the version for everything that has a PodTemplate in it - e.g. every controller type? The cure may be worse than the disease in this case.
• Given that we don't publish what the merge keys actually are for resource kinds in any user facing documentation besides the types.go files (correct me if I am wrong here), are they considered first class pieces of the API, or are they an implementation detail? Does our API definition include metadata about fields that is only defined in code? Do we have any guess as to which clients besides kubectl calculate patch requests?

[smarterclayton]

Let me qualify - mergeKeys are forever if a patch which previously "worked" (in the sense that a client uses it to accomplish a concrete mutation successfully) is broken when we change the mergeKey. If the patch was impossible or broken (envVar is a clear example of "we were totally broken because order is meaningful in env vars by our spec"), then I don't think a mergeKey change counts as a break.

We could consider versioning the patch strategy per type. Or the micro version approach Dan was championing for fields, but with restricted scope - v1.Pod has mergeKey "foo" for field "bar" at version 1, but "baz" for field "bar" at version 2. And we simply default the merge version.

[pwittrock]

Thanks for the clarification. IMHO the ServicePort is broken in a similar fashion as envVar - that is - the patch is impossible / broken for things we support in our spec - e.g. having a list containing 2 different ServicePorts with the same port value and different protocol values. However some clients may not be encountering these issues because they don't rely on those capabilities.

[pwittrock]

Thinking on this more, I am pretty sure we can introduce additional fields for merge keys while retaining backwards compatibility by having the server fallback to use the present merge keys in the event the additional merge key fields are missing from the patch request.

[jamiehannaford]

Link MD is not terminated

[jamiehannaford]

I'd emphasise both here:

identified by both protocol and port

[jamiehannaford]

How about:

As a result we need to also support a set of keys as a Merge Key. A key set must be a list of strings at least 1 element long

[pwittrock]

What about ints?

[mengqiy]

The key is always a string, because we require all maps to be map[string]interface{}.

[jamiehannaford]

I'm wondering whether this sentence makes sense. How about:

for API resources that cannot be effectively merged with a single merge key

[jamiehannaford]

Can we link to the source code struct?

[jamiehannaford]

What does this mean, that the type of patchMergeKey needs to change? Can you give an example of the OpenAPI change?

[jamiehannaford]

This config currently exists:

[jamiehannaford]

The user then wants to add a new port. They will send this manifest:

[jamiehannaford]

The patch manifest that will be sent is:

[jamiehannaford]

What happens if the user omits the name in their manifest? Will the existing UDP port stay with an empty name?

[mengqiy]

The operation will fail because of the validation error. Name is required if there are more than one ports.

[mengqiy]

Added edge cases.
@pwittrock There is case when deleting maybe you will want to think about it. 5e9717f#diff-7bf73a741414e64cb422a883e2de7f0eR182

[mengqiy]

PTAL

[liggitt]

in this example, $patchMergeKey is included in the first item's definition... is that intended?

[mengqiy]

I think $patchMergeKey should be in each entry in the list. This simple example only has one entry.

[liggitt]

Accepting a $patchMergeKey that does not uniquely identify elements is what this proposal is trying to fix... I don't think a $patchMergeKey key that does not uniquely identify items should be accepted.

If it was, how would this interact with the proposed $setElementOrder directive, which is supposed to contain a list of keys? Keys that identify more than one item in the list mean that directive becomes ambiguous:

server items:

ports:
- port: 8080
  protocol: TCP
  name: http-tcp
- port: 9090
  protocol: TCP
- port: 8080
  protocol: UDP
  name: http-udp

patch:

$setElementOrder/ports:
- port: 8080
- port: 8080
- port: 9090
ports:
- port: 8080
  protocol: UDP
  name: http-udp-renamed

It's not clear which 8080 port was ordered where.

[mengqiy]

I don't think a $patchMergeKey key that does not uniquely identify items should be accepted.

You are right.

$setElementOrder should always use all of the recommended merge keys that are present, so each entry in $setElementOrder list can uniquely identify an entry in the live list.

$setElementOrder/ports:
- port: 8080
  protocol: TCP
- port: 8080
  protocol: UDP
- port: 9090
  protocol: TCP
ports:
- port: 8080
  protocol: UDP
  name: http-udp-renamed

[mengqiy]

I will add a section for $setElementOrder.

[pwittrock]

The majority of the content in this doc is now about how to change a merge key value. Lets pull the multi-field merge key into a separate design doc and review that separately from the design around to how to change merge keys for fields and how to control the merge key from the client side

[mengqiy]

Updating:

• Addressed comments
• Pull supporting multi-fields merge key logic to Proposal: support multi-fields merge key #610 per Proposal: Support Sending Merge Key in the Patch by Clients #476 (comment)
• Add content of how to move merge keys that are at wrong level (child level)

[liggitt]

cc @kubernetes/sig-cli-proposals @kubernetes/sig-api-machinery-proposals

[k8s-ci-robot]

@liggitt: These labels do not exist in this repository: sig/cli, sig/api-machinery.

In response to this:

cc @kubernetes/sig-cli-proposals @kubernetes/sig-api-machinery-proposals

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[bgrant0607]

We need to take a step back and think about this systematically.

[lavalamp]

I think we should consider building a more principled form of the patch syntax. We keep making ad-hoc fixes.

[smarterclayton]

Yeah, the existing RFCs have their limitations but evolving one of those with the improvements from SMR seems like a stronger path than retrofitting into existing SMR.

[castrojo]

This change is 

[k8s-github-robot]

This PR hasn't been active in 61 days. It will be closed in 28 days (Jan 11, 2018).

cc @fabianofranz @liggitt @mengqiy @monopole @pwittrock

You can add 'keep-open' label to prevent this from happening, or add a comment to keep it open another 90 days

[fejta-bot]

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

[bgrant0607]

@mengqiy @pwittrock @lavalamp I think we should close this.

[lavalamp]

Agree, we're fixing this class of things with a different mechanism entirely.

[fejta-bot]

Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten
/remove-lifecycle stale

[mengqiy]

Closing in favor of server-side apply.