Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add text about extensions #510

Merged
merged 1 commit into from
Sep 6, 2016
Merged

Conversation

duglin
Copy link
Contributor

@duglin duglin commented Jun 26, 2016

Mimic opencontainers/image-spec#164
and they should be kept in-sync

Signed-off-by: Doug Davis [email protected]

@@ -317,6 +320,10 @@ Annotations are key-value maps.
}
```

## Extensibility
The `annotations` property MAY be used as an extensibility point to include additional information that is not defined as part of this specification.
Excluding the `annotations` property, implementations that are reading/processing this configuration file MUST generate an error if they encounter an unkown property.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This seems unnecessarily strict. The ociVersion field uniquely (ish, #371) declares semantics for fields defined by this spec. Maybe the additional properties are optional features (folks have talked about having both Solaris and Linux sections in the same config, although that particular use-case doesn't make much sense to me). In any case, I think this should be relaxed to SHOULD, and would recommend runtimes provide an --unknown-properties=(ignore|warn|error) flag or some such to allow callers to adjust the behavior.

More generally, I think JSON-LD is a good way to assign semantics to all properties in the config, whether they are stock OCI properties or extensions. That would give callers a better chance of figuring out whether a given extension was ignorable or not by making it easier to track down its semantics.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd prefer we either ignore or fault unknown properties - no reason to open up interoperability issues with SHOULDs/MAYs/etc... I picked the fault path because that's where more people seemed to be headed during the OCI F2F last week. So this issue (and opencontainers/image-spec#164 ) were designed to have the discussion - once we pick one we just need to make the same decision in both spots.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

On Sun, Jun 26, 2016 at 05:37:21PM -0700, Doug Davis wrote:

+## Extensibility
+The annotations property MAY be used as an extensibility point to include additional information that is not defined as part of this specification.
+Excluding the annotations property, implementations that are reading/processing this configuration file MUST generate an error if they encounter an unkown property.

I'd prefer we either ignore or fault unknown properties - no reason
to open up interoperability issues with SHOULDs/MAYs/etc...

It's hard to know whether a property should be optional or not without
details of the property itself. For example, runC feels like the
version check is unnecessary 1, and ccon feels like the platform
check is unnecessary 2. In the absence of detail about the property
in question, the conservative course is to error out (so I'm in favor
of SHOULDing that approach). But “the runtime doesn't know what that
property is for” doesn't mean “the caller doesn't know what that
property is for”, and I'd rather allow users to be able to say “don't
worry about unrecognized properties, they're not important for this
container” (so I'm not in favor of MUSTing that approach). And a
SHOULD would avoid name migration issues as new features are
standardized 3.

On the other hand, I'm generally in favor of for moving non-standard
things out of the config (e.g. hooks.json, if we drop hooks 4), and
a MUST here would certainly help with that ;).

 Subject: Re: Hooks and all-in-one operation
 Date: Thu, 9 Jun 2016 14:50:49 -0700
 Message-ID: <[email protected]>

@@ -308,15 +308,21 @@ The semantics are the same as `Path`, `Args` and `Env` in [golang Cmd](https://g

This OPTIONAL property contains arbitrary metadata for the container.
This information MAY be structured or unstructured.
Annotations are key-value maps.
Annotations MUST be key-value maps.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: Specify explicitly that the key and value are of type string and that the specification is not expecting any structure like DNS naming, etc..

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@vishh what do you mean by not expecting any structure? People can put json in the value string if they want right?

@duglin
Copy link
Contributor Author

duglin commented Jul 7, 2016

Updated based on today's conf call

Keys MUST be unique, and best practice is to namespace the keys.
Keys starting with the `opencontainers.org` namespace are reserved and MUST NOT be used.
If there are no annotations then this property MAY either be absent or an empty map.
Implementations that are reading/processing this configuration file MUST NOT generate an error if they encounter an unknown annotation key.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

“MUST NOT generate an error” doesn't say how they should handle unknown entries. I think we should follow HTML's:

The HTMLUnknownElement interface must be used for HTML elements that are not defined by this specification (or other applicable specifications).

In our case, maybe wording like:

Implementations consuming this configuration MAY log unrecognized annotation keys but MUST otherwise ignore them.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

And while I abbreviated the “Implementations that are reading/processing this configuration” wording in my suggestion above, I think we should probably just go with “Runtimes”. Do you have other consumers in mind with your more general wording?

@@ -308,15 +308,26 @@ The semantics are the same as `Path`, `Args` and `Env` in [golang Cmd](https://g

This OPTIONAL property contains arbitrary metadata for the container.
This information MAY be structured or unstructured.
Annotations are key-value maps.
Annotations MUST be key-value maps where both the key and value MUST be strings.
While the key and value MUST be present, they MAY be empty strings.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Empty-string values are fine, but empty-string keys sounds like a bad idea to me.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

fixed

@duglin duglin force-pushed the extension branch 2 times, most recently from 8987aad to 44e2135 Compare July 21, 2016 16:33
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Jul 26, 2016
There are other APIs described in this specification (e.g. the state
JSON format, and the in-flight command-line API [1]), but this string
covers the configuration file and referenced objects (e.g. the
filesystem at root.path).  As additional, backwards compatible
features are added to the spec (leading to 1.1, 1.2, etc. releases)
and supported by runtimes, those runtimes will *still* stupport 1.0
configs.  Once a 2.0 spec is cut, runtimes that only support 2.0 (and
nothing in the 1.0 line) will no longer support the 1.0 config.

My preferred approach here would be to use JSON-LD [2,3,4] to
explicitly document the intended semantics for each field, which would
allow us to drop the config-wide version and version each field
independently.  That would mean a breaking change on a particular
field would only break compatibility for folks who were using that
field.  Unfortunately, I haven't had much luck pushing the consensus
in that direction.

This commit does not add wording about how the runtime and other
consumers should handle an incompatible version.  We can address that
once the command-line API lands.

[1]: opencontainers#513
[2]: opencontainers#371 (comment)
[3]: opencontainers/image-spec#111 (comment)
[4]: opencontainers#510 (comment)
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Jul 26, 2016
There are other APIs described in this specification (e.g. the state
JSON format, and the in-flight command-line API [1]), but this string
covers the configuration file and referenced objects (e.g. the
filesystem at root.path).  As additional, backwards compatible
features are added to the spec (leading to 1.1, 1.2, etc. releases)
and supported by runtimes, those runtimes will *still* stupport 1.0
configs.  Once a 2.0 spec is cut, runtimes that only support 2.0 (and
nothing in the 1.0 line) will no longer support the 1.0 config.

My preferred approach here would be to use JSON-LD [2,3,4] to
explicitly document the intended semantics for each field, which would
allow us to drop the config-wide version and version each field
independently.  That would mean a breaking change on a particular
field would only break compatibility for folks who were using that
field.  Unfortunately, I haven't had much luck pushing the consensus
in that direction.

This commit does not add wording about how the runtime and other
consumers should handle an incompatible version.  We can address that
once the command-line API lands.

[1]: opencontainers#513
[2]: opencontainers#371 (comment)
[3]: opencontainers/image-spec#111 (comment)
[4]: opencontainers#510 (comment)

Signed-off-by: W. Trevor King <[email protected]>
@duglin
Copy link
Contributor Author

duglin commented Aug 30, 2016

FYI the PR was written to use reverse-DNS as was agreed in the last f2f meeting

@vbatts
Copy link
Member

vbatts commented Aug 30, 2016

Thanks @duglin.
Do y'all think we ought to have a sentence regarding preference of key notation (reverse vs. domain-style)? But not a strict requirement.

@duglin
Copy link
Contributor Author

duglin commented Aug 30, 2016

if people are ok with it I can add a sentence about how they SHOULD use reverse-DNS notation.

@vbatts
Copy link
Member

vbatts commented Aug 30, 2016

@duglin I know @RobDolinMS is wishing to avoid SHOULDs as they make for wider interpretation. I'm not sure how best to write it as an encouragement but not an invalidating factor

@wking
Copy link
Contributor

wking commented Aug 30, 2016

On Tue, Aug 30, 2016 at 10:21:09AM -0700, Vincent Batts wrote:

@duglin I know @RobDolinMS is wishing to avoid SHOULDs as they make
for wider interpretation. I'm not sure how best to write it as an
encouragement but not an invalidating factor

Ignoring a SHOULD doesn't make your implementation invalid, it just
makes it complaint (where following the SHOULD can make you
unconditionally compliant, although see #543).

However, this key-namespacing suggestion is targetted at external spec
authors (folks documenting annotations for a platform not managed by
runtime-/image-spec). That's not an audience we currently talk about
much 1, so I'm fine avoiding a SHOULD to avoid confusing our
existing formal audiences (runtime developers and configuration
authors).

@duglin
Copy link
Contributor Author

duglin commented Aug 31, 2016

hmm, I'm not sure why a SHOULD would be bad since its pretty much what we want - an encouragement (we can use RECOMMEND if we want too) - w/o making it a hard requirement. @RobDolinMS what's the issue with SHOULDs?

@wking
Copy link
Contributor

wking commented Aug 31, 2016

On Tue, Aug 30, 2016 at 05:38:07PM -0700, Doug Davis wrote:

hmm, I'm not sure why a SHOULD would be bad…

To make 1 clearer, the line you recently removed from the image-spec
PR was:

Keys SHOULD be named using a reverse domain notation -
e.g. com.example.myKey.

Assuming you add a line like that here, how would you test compliance
with the SHOULD in ocitools? You'd need a new command to read an
external spec, check for the annotation keys it defines, determine
which DNS names were controlled by the spec authors, and ensure the
annotation keys started with reverse-domain versions of those names.

Ocitools currently tests configurations and runtime implementations
for spec compliance. I think that's enough for formal testing, and we
can address external spec authors with non-RFC-2119 language.

@wking
Copy link
Contributor

wking commented Aug 31, 2016

On Tue, Aug 30, 2016 at 08:59:26PM -0700, Doug Davis wrote:

Assuming you add a line like that here, how would you test
compliance with the SHOULD in ocitools?

two options:
1 - we don't check it since its just a SHOULD

This is #543, which I'm not in favor of, but that's not the point…

2 - we issue an "informational" message as a warning about it…

This (and your (1)) are generic SHOULD stuff. I'm more concerned
about how you'd implement the test at all. Issues from 1:

  • “read an external spec”,
  • “check for the annotation keys it defines”, and
  • “determine which DNS names were controlled by the spec authors”.

Do you have implementation suggestions for those (I don't)? If not,
how could you test the SHOULD?

@duglin
Copy link
Contributor Author

duglin commented Aug 31, 2016

I feel like I'm missing something. Generic statements:

  • The test tools shouldn't be reading external specs.
  • There may be some things in our spec that we just can't test, but that doesn't mean we shouldn't have a requirement about it.
  • Specs should not be changed because of testing limitations. That's like modifying your product to match the testing tools, rather than the end-user requirements. Crazy talk :-)

Testing a SHOULD is no different than testing a MUST - either you can or can't do it with the test tools. The only difference is how you deal with the detection of them not following the rule. MUST always results in an error ; SHOULDs are either ignored, generate warnings, or generate an error if there's some kind of "strict" option.

@wking
Copy link
Contributor

wking commented Aug 31, 2016

On Wed, Aug 31, 2016 at 04:43:28AM -0700, Doug Davis wrote:

I feel like I'm missing something. Generic statements:

  • The test tools shouldn't be reading external specs.

The line I think you're considering adding 1:

Keys SHOULD be named using a reverse domain notation -
e.g. com.example.myKey.

is a requirement placed on external specs. It is not a requirement
placed on runtimes, nor is it a requirement placed on configurations.
This is the third-audience point I tried to explain in 2.

If you see it as a runtime or configuration requirement, could you
explain how you'd test runtimes or configurations for compliance?

  • There may be some things in our spec that we just can't test, but
    that doesn't mean we shouldn't have a requirement about it.

We certainly could have a SHOULD requirement for external specs.
But if that's the only requirement and testing tools are impossibly
difficult to write? I don't see the point. On the other hand,
runtime and configuration authors reading this spec might see the
SHOULD and mistakenly worry that it somehow applies to them. So I'd
rather avoid the RFC-2119 language for external-spec requirements
until we have a plan for testing them and/or a handful (at least > 1)
such requirements.

@duglin duglin force-pushed the extension branch 2 times, most recently from 8f3f59e to 1bc036e Compare September 1, 2016 21:43
Mimic opencontainers/image-spec#164
and they should be kept in-sync

Signed-off-by: Doug Davis <[email protected]>
@duglin
Copy link
Contributor Author

duglin commented Sep 2, 2016

updated

While the value MUST be present, it MAY be an empty string.
Keys MUST be unique within this map, and best practice is to namespace the keys.
Keys SHOULD be named using a reverse domain notation - e.g. `com.example.myKey`.
Keys using the `org.opencontainers` namespace are reserved and MUST NOT be used by subsequent specifications.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Missing the trailing dot for org.opencontainers..

“subsequent specifications” is unclear to me. Can we follow image-spec and use “… are reserved for future versions of the specification.”?

@vbatts
Copy link
Member

vbatts commented Sep 6, 2016

LGTM

Approved with PullApprove

@RobDolinMS
Copy link
Collaborator

The use of SHOULD in line 330 of this PR looks good to me. /cc @duglin, @wking, @vbatts

I also agree with @duglin's comment about how test tools interpret:
#510 (comment)

@mrunalp
Copy link
Contributor

mrunalp commented Sep 6, 2016

LGTM

Approved with PullApprove

@mrunalp mrunalp merged commit b2f69c6 into opencontainers:master Sep 6, 2016
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Sep 7, 2016
There's an outside change that these are intentional, since I pointed
one of these out earlier [1] and it wasn't fixed.  But I haven't seen
" : " used intentionally outside of this project, and don't think we
want to break ground in that direction ;).

[1]: opencontainers#510 (comment)

Signed-off-by: W. Trevor King <[email protected]>
@wking wking mentioned this pull request Sep 7, 2016
x1022as pushed a commit to x1022as/runtime-spec that referenced this pull request Sep 8, 2016
Add text about extensions

Signed-off-by: Deng Guangxing <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Sep 8, 2016
There are other APIs described in this specification (e.g. the state
JSON format, and the in-flight command-line API [1]), but this string
covers the configuration file and referenced objects (e.g. the
filesystem at root.path).  As additional, backwards compatible
features are added to the spec (leading to 1.1, 1.2, etc. releases)
and supported by runtimes, those runtimes will *still* stupport 1.0
configs.  Once a 2.0 spec is cut, runtimes that only support 2.0 (and
nothing in the 1.0 line) will no longer support the 1.0 config.

My preferred approach here would be to use JSON-LD [2,3,4] to
explicitly document the intended semantics for each field, which would
allow us to drop the config-wide version and version each field
independently.  That would mean a breaking change on a particular
field would only break compatibility for folks who were using that
field.  Unfortunately, I haven't had much luck pushing the consensus
in that direction.

This commit does not add wording about how the runtime and other
consumers should handle an incompatible version.  We can address that
once the command-line API lands.

[1]: opencontainers#513
[2]: opencontainers#371 (comment)
[3]: opencontainers/image-spec#111 (comment)
[4]: opencontainers#510 (comment)

Signed-off-by: W. Trevor King <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Sep 8, 2016
…ssible

We don't want to silently ignore settings that we understand but
cannot implement [1] (we *do* want to ignore settings that we don't
understand [2], but that's a separate issue).

This raises a slightly sticky certification issue.  If a runtime
*always* exits 'create' with an error:

  func create() err {
    return fmt.Errorf("nope, I cannot create that container either.")
  }

it would be neither complaint nor non-compliant.  It would not fail
any MUSTs, but availing itself of the "cannot create the maintainer"
option specified in this commit would mean the test suite could not
test the deeper requirements around the config properties themselves.

So with this change, making Microsoft certifiable will still need an
explicit weakening around root.path.  The easiest way to do that might
be to have separate annotations for whether a setting is optional for
config authors and whether it's optional for runtime authors
(supported):

  * **`readonly`** (bool, config:optional, support:optional) ...

But I'll leave hashing that out to a later commit.

[1]: https://github.com/opencontainers/runtime-spec/pull/476/files/9b8e21826cc9887f51f095604120cfbb788078b2#r65400731
     Subject: [ Config | Root Config ] Clarify readonly
[2]: opencontainers#510
     Subject: Add text about extensions

Signed-off-by: W. Trevor King <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Sep 8, 2016
…ssible

We don't want to silently ignore settings that we understand but
cannot implement [1] (we *do* want to ignore settings that we don't
understand [2], but that's a separate issue).

This raises a slightly sticky certification issue.  If a runtime
*always* exits 'create' with an error:

  func create() err {
    return fmt.Errorf("nope, I cannot create that container either.")
  }

it would be neither complaint nor non-compliant.  It would not fail
any MUSTs, but availing itself of the "cannot create the maintainer"
option specified in this commit would mean the test suite could not
test the deeper requirements around the config properties themselves.

So with this change, making Microsoft certifiable will still need an
explicit weakening around root.path.  The easiest way to do that might
be to have separate annotations for whether a setting is optional for
config authors and whether it's optional for runtime authors
(supported):

  * **`readonly`** (bool, config:optional, support:optional) ...

But I'll leave hashing that out to a later commit.  Regardless of the
certification impact, we want to be clear that silently ignoring known
parameters is wrong.

[1]: https://github.com/opencontainers/runtime-spec/pull/476/files/9b8e21826cc9887f51f095604120cfbb788078b2#r65400731
     Subject: [ Config | Root Config ] Clarify readonly
[2]: opencontainers#510
     Subject: Add text about extensions

Signed-off-by: W. Trevor King <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Sep 8, 2016
…ssible

We don't want to silently ignore settings that we understand but
cannot implement [1] (we *do* want to ignore settings that we don't
understand [2], but that's a separate issue).

This raises a slightly sticky certification issue.  If a runtime
*always* exits 'create' with an error:

  func create() err {
    return fmt.Errorf("nope, I cannot create that container either.")
  }

it would be neither complaint nor non-compliant.  It would not fail
any MUSTs, but availing itself of the "cannot create the maintainer"
option specified in this commit would mean the test suite could not
test the deeper requirements around the config properties themselves.

So with this change, making Microsoft certifiable will still need an
explicit weakening around root.path.  The easiest way to do that might
be to have separate annotations for whether a setting is optional for
config authors and whether it's optional for runtime authors
(supported):

  * **`readonly`** (bool, config:optional, support:optional) ...

But I'll leave hashing that out to a later commit.  Regardless of the
certification impact, we want to be clear that silently ignoring known
parameters is wrong.

[1]: https://github.com/opencontainers/runtime-spec/pull/476/files/9b8e21826cc9887f51f095604120cfbb788078b2#r65400731
     Subject: [ Config | Root Config ] Clarify readonly
[2]: opencontainers#510
     Subject: Add text about extensions

Signed-off-by: W. Trevor King <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Sep 14, 2016
There are other APIs described in this specification (e.g. the state
JSON format, and the in-flight command-line API [1]), but this string
covers the configuration file and referenced objects (e.g. the
filesystem at root.path).  As additional, backwards compatible
features are added to the spec (leading to 1.1, 1.2, etc. releases)
and supported by runtimes, those runtimes will *still* stupport 1.0
configs.  Once a 2.0 spec is cut, runtimes that only support 2.0 (and
nothing in the 1.0 line) will no longer support the 1.0 config.

My preferred approach here would be to use JSON-LD [2,3,4] to
explicitly document the intended semantics for each field, which would
allow us to drop the config-wide version and version each field
independently.  That would mean a breaking change on a particular
field would only break compatibility for folks who were using that
field.  Unfortunately, I haven't had much luck pushing the consensus
in that direction.

This commit does not add wording about how the runtime and other
consumers should handle an incompatible version.  We can address that
once the command-line API lands.

[1]: opencontainers#513
[2]: opencontainers#371 (comment)
[3]: opencontainers/image-spec#111 (comment)
[4]: opencontainers#510 (comment)

Signed-off-by: W. Trevor King <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Sep 16, 2016
…ssible

We don't want to silently ignore settings that we understand but
cannot implement [1] (we *do* want to ignore settings that we don't
understand [2], but that's a separate issue).

This raises a slightly sticky certification issue.  If a runtime
*always* exits 'create' with an error:

  func create() err {
    return fmt.Errorf("nope, I cannot create that container either.")
  }

it would be neither complaint nor non-compliant.  It would not fail
any MUSTs, but availing itself of the "cannot create the maintainer"
option specified in this commit would mean the test suite could not
test the deeper requirements around the config properties themselves.

So with this change, making Microsoft certifiable will still need an
explicit weakening around root.path.  The easiest way to do that might
be to have separate annotations for whether a setting is optional for
config authors and whether it's optional for runtime authors
(supported):

  * **`readonly`** (bool, config:optional, support:optional) ...

But I'll leave hashing that out to a later commit.  Regardless of the
certification impact, we want to be clear that silently ignoring known
parameters is wrong.

[1]: https://github.com/opencontainers/runtime-spec/pull/476/files/9b8e21826cc9887f51f095604120cfbb788078b2#r65400731
     Subject: [ Config | Root Config ] Clarify readonly
[2]: opencontainers#510
     Subject: Add text about extensions

Signed-off-by: W. Trevor King <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request May 26, 2017
This condition landed in 27a05de (Add text about extensions,
2016-06-26, opencontainers#510) with subsequent wording tweaks in 3f0440b
(config.md: add empty limit for key of annotations, Dec 28 10:35:19
2016, opencontainers#645) and 2c8feeb (config: Bring "unique... within this map"
back together, 2017-01-12, opencontainers#654).  However, since eeaccfa (glossary:
Make objects explicitly unordered and forbid duplicate names,
2016-09-27, opencontainers#584) we forbid duplicate keys on *all* objects (not just
annotations), so this PR removes the redundant annotation-specific
condition.

Signed-off-by: W. Trevor King <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Jun 1, 2017
This condition landed in 27a05de (Add text about extensions,
2016-06-26, opencontainers#510) with subsequent wording tweaks in 3f0440b
(config.md: add empty limit for key of annotations, Dec 28 10:35:19
2016, opencontainers#645) and 2c8feeb (config: Bring "unique... within this map"
back together, 2017-01-12, opencontainers#654).  However, since eeaccfa (glossary:
Make objects explicitly unordered and forbid duplicate names,
2016-09-27, opencontainers#584) we forbid duplicate keys on *all* objects (not just
annotations), so this PR removes the redundant annotation-specific
condition.

Signed-off-by: W. Trevor King <[email protected]>
wking added a commit to wking/opencontainer-runtime-spec that referenced this pull request Aug 31, 2017
Generating an error seems like one potential violation of the
requirement to ignore unknown properties.  Compliance testing for the
ignore requirement can cite the MUST I've written here for any
noticeable runtime activity around the unknown property without
needing a error-specific MUST.

We've had the two MUSTs since 27a05de (Add text about extensions,
2016-06-26, opencontainers#510), citing [1].  I'd asked for consolidated phrasing
then [2,3], but hadn't followed up after the commit landed.

I've left a line mentioning the error activity as non-normative
clarification, but am also happy to drop that line completely.

Also:

* Update the unknown annotation entry to reference the generic
  extensibility section, because there's nothing annotation-specific
  in how we want runtimes to handle unknown keys.

* Remove "reading or processing" language.  This initially landed in
  27a05de with a bump in b92cf90 (consistency and style fix,
  2017-05-12, opencontainers#811).  Some thought was put into this phrasing there
  [4,5] and earlier in opencontainers#510 [6], but we never got around to dropping
  this qualifier.  However, the purpose of this qualifier is unclear
  to me.  What is the point of compliance requirements for runtimes
  which don't read or process a configuration?

[1]: opencontainers/image-spec#164
[2]: opencontainers#510 (comment)
[3]: opencontainers#510 (comment)
[4]: opencontainers#811 (comment)
[5]: opencontainers#811 (comment)
[6]: opencontainers#510 (comment)

Signed-off-by: W. Trevor King <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

6 participants