ArtifactStore implementation for CosmosDB

[chetanmeh]

This PR provides a CosmosDBArtifactStore implementation to enable using CosmosDB for storing subjects, whisks and activation in Azure CosmosDB

This is currently work in progress and opening this early so as to get feedback on design progress

Build Results

This PR requires test which need account keys to access CosmosDB. Untill it gets merged to master following build runs are being done in my fork with keys configured

• Branch artifact-store-cosmos (backing branch of this PR) - Runs the CouchDBArtifactStoreTests based on test suite introduced with MemoryArtifactStore for unit testing and ArtifactStore SPI Validation #3517

• Branch artifact-store-cosmos-ci - Runs the complete OpenWhisk suite with ArtifactStoreProvider set to CosmosDBArtifactStoreProvider. Some test here are being ignored. See below for more details

For test coverage see here

Description

Currently OpenWhisk supports CouchDB for storing various entities like actions, rules, subjects, activations etc. This PR provides a CosmosDB based implementation for ArtifactStore SPI

Usage of CosmosDB Java SDK

CosmosDB supports various modes to connect to it. For our usage we have two options

1. REST API
2. Async Java SDK
3. Sync Java SDK

Compared to CouchDB performing queries against CosmosDB requires client side computation which involves sending queries to each partition and then collect and merge the result set. The Async Java SDK takes care of all these interactions and provides a simplified reactive api based on RxJava

Given the complexity involved in performing various operations against CosmosDB this PR uses the Java SDK to simplify and speed up the implementation

Design Considerations

Data Model

Below is the json representation of whisk.system/utils/echo action saved in CouchDB and CosmosDB

CouchDB

CosmosDB

{ "_id": "whisk.system/utils/echo", "_rev": "1-975e42c7be63291bf0ff2500e24caaae", "name": "echo", "publish": false, "annotations": [ { "key": "exec", "value": "nodejs:6" }, { "key": "parameters", "value": [ { "description": "Any JSON entity", "name": "payload", "required": false } ] } ], "version": "0.0.1", "updated": 1524472866521, "entityType": "action", "exec": { "kind": "nodejs:6", "code": "code", "binary": false }, "parameters": [], "limits": { "timeout": 60000, "memory": 256, "logs": 10 }, "namespace": "whisk.system/utils" }

{ "id": "whisk.system|utils|echo", "name": "echo", "publish": false, "annotations": [ { "value": "nodejs:6", "key": "exec" }, { "value": [ { "name": "payload", "description": "Any JSON entity", "required": false } ], "key": "parameters" } ], "version": "0.0.1", "updated": 1524397327877, "entityType": "action", "exec": { "code": "code", "kind": "nodejs:6", "binary": false }, "parameters": [], "limits": { "memory": 256, "logs": 10, "timeout": 60000 }, "namespace": "whisk.system/utils", "_c": { "rootns": "whisk.system" }, "_self": "dbs/MZFtAA==/colls/MZFtAO2-Ig4=/docs/MZFtAO2-Ig4cAAAAAAAAAA==/", "_rid": "MZFtAO2-Ig4cAAAAAAAAAA==", "_etag": "\"09004181-0000-0000-0000-5adc75090000\"", "_attachments": "attachments/", "_ts": 1524397321 }

Below are some keys aspects on how data is stored in CosmosDB

id

The id field in CosmosDB is referred as id (in CouchDB its _id). Per Resource Id docs

The following characters are restricted and cannot be used in the Id property: '/', '', '?', '#'

As / cannot be used CosmosDBArtifactStore would replace / with |. So whisk.system/utils/echo is stored as whisk.system|utils|echo

Per OpenWhisk Naming Restrictions

The subsequent characters can be alphanumeric, spaces, or any of the following: _, @, ., -

So no other char needs this treatment

Revision Handling

CosmosDB supports optimistic concurrency control (OCC) through HTTP entity tags, or ETags. So for all practical purpose _rev is mapped to _etag field of CosmosDB and all semantics around concurrent updates are supported via that.

Computed Fields

CosmosDBArtifactStore uses a subdocument under _c to store some computed fields which are referred in queries. Such fields are computed by CouchDB view logic and here these are set at time of inserting/updating the docs via ArtifactStore API.

So any logic which directly manipulates the objects need to also support these fields

Limits

Following are some of the limits enforced by CosmosDB. Currently OpenWhisk does not enforce any restriction on some of these so there is a change in behaviour

1. Max document size is 2 MB
2. The id must not exceed 255 characters

Partitioning Strategy

One of the key aspect of using CosmosDB is to determine the partitioning key. This can be decided on per collection basis

For now this PR uses /id itself also as the partitioning key. This has following pros and cons

Cons

• All the queries would need to be sent to all partitions. This would lead to higher RU consumption and possibly higher latency in query responses

Note that currently query in CouchDB also hits all partitions and thus performance decreases when number of partitions are large. There are some discussions to support querying for specific partitions. That would make it similar to CosmosDB.

Pros

From production usage perspective OpenWhisk does not perform any query in critical path of activation. There are calls to DB are based on specific id lookups. This enables that read load would be distributed across actual partitions and thus would lead to fair utilization of resource units.

If we use namespace as partition key then it can lead to situation where if number of activity related to that namespace increase considerably then it may become hot and thus exhause the resource quota. Requests to the same partition key can't exceed the provisioned throughput allocated to a partition and will be rate-limited.

Given that queries are mostly performed during authoring workflow and increase in latency in query responses may be ok

Attachment Storage

As part of this PR the attachments are being stored in CosmosDB itself using its attachment support. This is similar to how attachments are supported in CouchDB. This enables storing upto 10GB of attachments.

Going forward once AttachmentStore SPI PR gets merged this would be change to use the SPI with default implementation using CosmosDB attachment support with an option to use say S3/Azure BlobStore based SPI implementation

Query Execution

CosmosDBArtifactStore maps the CouchDB views to CosmosDB Queries. Following are details around how the views are mapped

Generic Whisks View

CosmosDB

CouchDB

SELECT { "name":r['name'], "publish": r['publish'], "annotations": r['annotations'], "version": r['version'], "id": r['id'], "updated": r['updated'], "exec": { "binary": r['exec']['binary'] }, "limits": r['limits'], "namespace": r['namespace'] } FROM root r WHERE r.entitytype = @entityType AND ( r.namespace = @namespace OR r._c.rootns = @namespace ) ORDER BY r.updated DESC

function view(doc) { var PATHSEP = "/"; var isAction = function (doc) { return (doc.exec !== undefined) }; if (isAction(doc)) try { var ns = doc.namespace.split(PATHSEP); var root = ns[0]; var value = { namespace: doc.namespace, name: doc.name, version: doc.version, publish: doc.publish, annotations: doc.annotations, limits: doc.limits, exec: { binary: doc.exec.binary || false}, updated: doc.updated }; emit([doc.namespace, doc.updated], value); if (root !== doc.namespace) { emit([root, doc.updated], value); } } catch (e) {} }

Above example shows how a whisks.v2.1.0/actions view is mapped to query. Few things to note here

1. Property names in select clause use Quoted Property Accessor as some of the property names like end is a reserved word.
   So CosmosDBUtil would use the mode by default for all fields selected
2. Projecting JSON - Select clause attempts to return a minimum superset of field names as specified in view javascript.
   This enables computing some fields like exec on server side via DocumentHandler.transformViewResult

Similar sql is generated for following views

• whisks.v2.1.0-actions
• whisks.v2.1.0-packages
• whisks.v2.1.0-rules
• whisks.v2.1.0-triggers

For above view the query is performed by matching namespace in full r.namespace or on root namespace r._c.rootns and r.entityType set to required type

Public Packages Query

For public package there is a check for binding

CosmosDB

CouchDB

SELECT { "name": r['name'], "publish": r['publish'], "annotations": r['annotations'], "version": r['version'], "id": r['id'], "updated": r['updated'], "namespace": r['namespace'] } AS view FROM root r WHERE r.publish = true AND ( NOT IS_OBJECT(r.binding) OR r.binding = {}) AND r.entitytype = @entityType AND ( r.namespace = @namespace OR r._c.rootns = @namespace) AND r.updated >= @since ORDER BY r.updated DESC

function view(doc) { var isPublicPackage = function(doc) { return Object.keys(doc.binding).length == 0 and doc.publish; } if (isPublicPackage(doc)) try { var value = { namespace: doc.namespace, name: doc.name, version: doc.version, publish: doc.publish, annotations: doc.annotations, updated: doc.updated, binding: false }; emit([doc.namespace, doc.updated], value); } catch (e) {} }

Activations Query

For whisks-filters.v2.1.0/activations view the query is made on r._c.nspath which is a computed field based view logic

CosmosDB

CouchDB

SELECT { "name": r['name'], "activationId": r['activationId'], "publish": r['publish'], "annotations": r['annotations'], "version": r['version'], response: { "statusCode": r['response']['statusCode'] }, "id": r['id'], "cause": r['cause'], "end": r['end'], "start": r['start'], "namespace": r['namespace'] } AS VIEW FROM root r WHERE r._c.nspath = @nsvalue ORDER BY r.start DESC

function (doc) { var PATHSEP = "/"; var isActivation = function (doc) { return (doc.activationId !== undefined) }; var summarize = function (doc) { var endtime = doc.end !== 0 ? doc.end : undefined; return { namespace: doc.namespace, name: doc.name, version: doc.version, publish: doc.publish, annotations: doc.annotations, activationId: doc.activationId, start: doc.start, end: endtime, duration: endtime !== undefined ? endtime - doc.start : undefined, cause: doc.cause, statusCode: (endtime !== undefined AND doc.response !== undefined AND doc.response.statusCode !== undefined) ? doc.response.statusCode : undefined } }; var pathFilter = function(doc) { for (i = 0; i < doc.annotations.length; i++) { var a = doc.annotations[i]; if (a.key == "path") try { var p = a.value.split(PATHSEP); if (p.length == 3) { return p1 + PATHSEP + doc.name; } else return doc.name; } catch (e) { return doc.name; } } return doc.name; } if (isActivation(doc)) try { var value = summarize(doc) emit([doc.namespace+PATHSEP+pathFilter(doc), doc.start], value); } catch (e) {} }

Subject Query

subjects/identities

At time of authentication subjects/identities view is used. For that below query is invoked which makes use of INNER JOIN to query on namespaces sub document

CosmosDB

CouchDB

SELECT r AS VIEW FROM root r JOIN n IN r.namespaces WHERE (NOT(is_defined(r.blocked)) OR r.blocked = falses) AND ( (r.uuid = @uuid AND r.KEY = @key) OR (n.uuid = @uuid AND n.KEY = @key) )

function (doc) { if(doc.uuid AND doc.key AND!doc.blocked) { var v = {namespace: doc.subject, uuid: doc.uuid, key: doc.key}; emit([doc.subject], v); emit([doc.uuid, doc.key], v); } if(doc.namespaces AND !doc.blocked) { doc.namespaces.forEach(function(namespace) { var v = {_id: namespace.name + '/limits', namespace: namespace.name, uuid: namespace.uuid, key: namespace.key}; emit([namespace.name], v); emit([namespace.uuid, namespace.key], v); }); } }

namespaceThrottlings/blockedNamespaces

This view is used by NamespaceBlacklist logic to peridically query for blacklisted namespace

CosmosDB	CouchDB
SELECT r AS VIEW FROM root r WHERE r.blocked = true OR r.concurrentinvocations = 0 OR r.invocationsperminute = 0	function (doc) { if (doc._id.indexOf("/limits") >= 0) { if (doc.concurrentInvocations === 0 || doc.invocationsPerMinute === 0) { var namespace = doc._id.replace("/limits", ""); emit(namespace, 1); } } else if (doc.subject && doc.namespaces && doc.blocked) { doc.namespaces.forEach(function(namespace) { emit(namespace.name, 1); }); } }

Shutdown Handling

All CosmosDBArtifactStore instances (3 in total for whisks, activations and subjects) share the same AsyncDocumentClient instance. So to handle the shutdown call properly this PR uses a ReferenceCounted approach where all instance share same reference and once the reference count reaches zero the client instance is closed

Client side skipping

ArtifactStore.query API supports skip to support paginated query over large dataset. For CouchDB the query is handled by one of the shards which in turn queries all the other shards and then merges the result on server side (i.e. scatter and gather)

For CosmosDB the query results are collected from various partitions and merged by the sdk. Thus skip is implemented by dropping the query results. Due to this going to later pages in a query result would be slow.

Batching not supported

ArtifactStoreProvider.makeStore exposes a batching flag to enable batch insert mode for activations. CosmosDB does not have a bulk insert api so this flag is currently ignored.

Azure docs suggest using stored procedures to achive bulk insert support. However that requires all document meant to be inserted to be part of same partition. With our usage of id field as partition key this would not help much

Testing Approach

Some of the tests from this PR need to access the CosmosDB service and thus require the account credentials. These credentials would be provided by environment variables. Based on discussion on dev following appraoch is taken.

1. Tests would always run on travis runs for apache/incubator-openwhisk master
2. For other runs
   1. If the travis has required env variables configured tests would run
   2. If required environment variables are not found then they would be skipped
   3. On my fork the credentials are configured and thus tests would be executed

Pending Work

• Attachment Support
• Query around subject and namespaces
• Indexes for various collections
• CI Integration

Third Party Dependencies

This PR pulls in following major dependencies

• com.microsoft.azure:azure-cosmosdb:1.0.0
  • io.reactivex:rxnetty:0.4.20
  • org.json:json:20140107
• io.reactivex:rxjava-reactive-streams:1.2.1
• io.reactivex:rxscala_2.11:0.26.5

Dependency on org.json

org.json dependency library license is marked as Category-X and hence such a library cannot be used as a dependency in Apache Project. For this Azure/azure-cosmosdb-java#29 has been opened and is being addressed

Trying out

To try out the CosmosDB integration locally (for now only tests) follow steps below

1. Create a free server from Try CosmosDB and select SQL API
2. From within portal look for Azure Cosmos DB account and go to Keys section
3. Copy the URI and PRIMARY KEY
4. Specify following environment variables
   • COSMOSDB_KEY - Use the PRIMARY KEY value here
   • COSMOSDB_ENDPOINT - Use the URI value here
   • COSMOSDB_NAME - Set it to openwhisk

With this it would be possible to run CosmosDBArtifactStoreTests locally.

Once #3689 is done it would be possible to run complete OpenWhisk setup using CosmosDB via ansible setup scripts

Related issue and scope

My changes affect the following components

• Data stores (e.g., CouchDB)
• Tests
• Deployment
• Documentation

Types of changes

• Enhancement or new feature (adds new functionality).

Checklist:

• I signed an Apache CLA.
• I reviewed the style guides and followed the recommendations (Travis CI will check :).
• I added tests to cover my changes.
• My changes require further changes to the documentation.
• I updated the documentation where necessary.

[chetanmeh]

Test suite run result

In a separate branch travis is configured to run whole OW test suite as being run currently for master with default ArtifactStoreProvider switched to CosmosDBArtifactStoreProvider. In such a run some test got failed. Below is the analysis for them

• WskRestEntitlementTests - These test make use of wskadmin to provision a custom user. Currently wskadmin does not support CosmosDB. Hence for now test being ignored
• ActionLimitsTests - Some of the test here got failed due to Response entity too large exception thrown for documents size more than 1 MB Azure/azure-cosmosdb-java#33. PR raised for that. For now being ignored
• SequenceMigrationTests - These are passing now

[csantanapr]

Makes sense to update wskadmin to also handle momdodb/cosmosdb ?

[chetanmeh]

Makes sense to update wskadmin to also handle momdodb/cosmosdb ?

Yes this aspect was discussed sometime back here. Need to figure out right way to abstract that in python and refactor wskadmin. Would do that in a separate PR

[chetanmeh]

Indexing Policy

CosmosDB provides rich indexing options which support

• Indexing mode - consistent or lazy
• Hash Index - For equality check
• Range Index - For range check and order by
• Control Precision - Allows to make trade-offs between index storage overhead and query performance
• Boolean properties are indexed by default - As per create document api Booleans and nulls are automatically indexed (See dataType)

Currently the view based indexes in CouchDB are eventually consistent and all the test around queries account for that. Based on usage following indexes are configured

Subjects

• /uuid/? - Authentication query
• /subject/?
• /namespaces/[]/uuid/? - Authentication query
• /namespaces/[]/name/?
• /concurrentInvocations/? - For blacklist check query
• /invocationsPerMinute/? - For blacklist check query

Key points

• Indexing mode is set to consistent
• All indexes have precision set to -1 for now. Later based on metrics we can determine if this needs to be tweaked
• key is not being indexed - Authentication query is performed on uuid and key. Of this index is only created for uuid and key check should be taken care by filtering in query evaluation. As uuid is very much unique number of rows scanned for filtering should be small
• concurrentInvocations and invocationsPerMinute are used in "namespace name/limits" documents which are then used to find out blacklisted namespace if either of them is zero. We can possibly remove this by setting blocked to true even for limits docs

Whisks

• /entityType/? - Hash
• /namespace/? - Hash
• /_c/rootns/? - Hash
• /updated/? - Range

Key points

• Indexing mode set to consistent

Activations

• /namespace/?
• /_c/nspath/?
• /start/?

Key points

• Indexing mode set to lazy - For activations the rate of writes would be much higher compared to those on whisks and subjects. So here it would be better to keep indexing mode lazy

Index policy updates

Current logic upon system start would query for existing indexes configured on the collection. If there is a mismatch between what is expected and what is currently found it would provision the new indexes.

CosmosDB currently shows a strange behavior where it is creating extra indexes for same path. For e.g. /namespace/? is configured with hash index. But post creation if indexes are checked its found that it has both Range and Hash index configured. To account for these extra indexes in index check this PR uses a custom IndexingPolicy type which accounts for this type of behaviour while check if indexes are same.

CosmosDB supports online index policy changes where by change in index definition would be performed asynchronously and online allowing the collection to remain available for writes while transformation is in progress. However if the application makes query relying on new indexes then those queries would fail untill indexing completes based on new index definition.

So in future if any change in index definition is done then it should be provisioned prior to deploying new code relying on that index. Current approach of checking for index definition would ensure that index definitions are consistent

[tysonnorris]

do you have info on the dependency tree that these bring? if there is overlap with existing libs we may want to exclude some, or at least be explicit where they come from

[chetanmeh]

Below is the dependency tree being pulled in (see here for full tree)

+--- io.reactivex:rxscala_2.11:0.26.5
     |    +--- org.scala-lang:scala-library:2.11.8 -> 2.11.12
     |    \--- io.reactivex:rxjava:1.2.4 -> 1.3.3
     +--- io.reactivex:rxjava-reactive-streams:1.2.1
     |    +--- io.reactivex:rxjava:1.2.2 -> 1.3.3
     |    \--- org.reactivestreams:reactive-streams:1.0.0 -> 1.0.2
     \--- com.microsoft.azure:azure-cosmosdb:1.0.0
          +--- com.fasterxml.jackson.core:jackson-databind:2.9.4 (*)
          +--- com.fasterxml.uuid:java-uuid-generator:3.1.4
          +--- org.json:json:20140107
          +--- commons-io:commons-io:2.5 -> 2.6
          +--- com.github.davidmoten:rxjava-extras:0.8.0.11
          |    \--- io.reactivex:rxjava:1.3.3
          +--- io.reactivex:rxjava:1.3.3
          +--- io.reactivex:rxjava-string:1.1.1
          |    \--- io.reactivex:rxjava:1.2.3 -> 1.3.3
          +--- io.reactivex:rxnetty:0.4.20
          |    +--- io.reactivex:rxjava:1.2.2 -> 1.3.3
          |    +--- io.netty:netty-codec-http:4.1.5.Final -> 4.1.20.Final
          |    |    \--- io.netty:netty-codec:4.1.20.Final
          |    |         \--- io.netty:netty-transport:4.1.20.Final
          |    |              +--- io.netty:netty-buffer:4.1.20.Final
          |    |              |    \--- io.netty:netty-common:4.1.20.Final
          |    |              \--- io.netty:netty-resolver:4.1.20.Final
          |    |                   \--- io.netty:netty-common:4.1.20.Final
          |    +--- io.netty:netty-handler:4.1.5.Final -> 4.1.20.Final
          |    |    +--- io.netty:netty-buffer:4.1.20.Final (*)
          |    |    +--- io.netty:netty-transport:4.1.20.Final (*)
          |    |    \--- io.netty:netty-codec:4.1.20.Final (*)
          |    \--- org.slf4j:slf4j-api:1.7.6 -> 1.7.25
          +--- io.netty:netty-codec-http:4.1.20.Final (*)
          +--- io.netty:netty-handler:4.1.20.Final (*)
          +--- io.netty:netty-transport:4.1.20.Final (*)
          +--- org.slf4j:slf4j-api:1.7.6 -> 1.7.25
          \--- org.apache.commons:commons-lang3:3.5

Further did a diff on jars being packaged in controller.tar

30a31
> azure-cosmosdb-1.0.0.jar
34a36
> commons-lang3-3.5.jar
41,43c43,45
< jackson-annotations-2.7.0.jar
< jackson-core-2.7.7.jar
< jackson-databind-2.7.7.jar
---
> jackson-annotations-2.9.0.jar
> jackson-core-2.9.4.jar
> jackson-databind-2.9.4.jar
46c48
< java-uuid-generator-3.1.3.jar
---
> java-uuid-generator-3.1.4.jar
52a55
> json-20140107.jar
69a73,79
> netty-buffer-4.1.20.Final.jar
> netty-codec-4.1.20.Final.jar
> netty-codec-http-4.1.20.Final.jar
> netty-common-4.1.20.Final.jar
> netty-handler-4.1.20.Final.jar
> netty-resolver-4.1.20.Final.jar
> netty-transport-4.1.20.Final.jar
78a89,94
> rxjava-1.3.3.jar
> rxjava-extras-0.8.0.11.jar
> rxjava-reactive-streams-1.2.1.jar
> rxjava-string-1.1.1.jar
> rxnetty-0.4.20.jar
> rxscala_2.11-0.26.5.jar

So following existing dependency versions are getting updated

1. jackson - 2.7 -> 2.9 - (minor). So far jackson was being used by kubernetes-client
2. java-uuid-generator - 3.1.3 -> 3.1.4 (micro)

Following new set of library being included

1. netty - 4.1.20 - 7 jars
2. rxjava - 6
3. commons-lang3
4. json - This would get replaced with jackson post Avoid usage of org.json library Azure/azure-cosmosdb-java#29

In total post this change

1. Number of jars in controller increase from 92 -> 108
2. Size increases from 89M -> 94M

[tysonnorris]

Only concern is the jump in netty version and including both versions - when I build controller.tar from your branch I get both netty versions:

-rw-r--r--  0 0      0      413674 May 18 13:27 controller/lib/rxnetty-0.4.20.jar
-rw-r--r--  0 0      0      562559 May 18 13:27 controller/lib/netty-codec-http-4.1.22.Final.jar
-rw-r--r--  0 0      0      374389 May 18 13:27 controller/lib/netty-handler-4.1.22.Final.jar
-rw-r--r--  0 0      0      316316 May 18 13:27 controller/lib/netty-codec-4.1.22.Final.jar
-rw-r--r--  0 0      0      456605 May 18 13:27 controller/lib/netty-transport-4.1.22.Final.jar
-rw-r--r--  0 0      0      270720 May 18 13:27 controller/lib/netty-buffer-4.1.22.Final.jar
-rw-r--r--  0 0      0       32276 May 18 13:27 controller/lib/netty-resolver-4.1.22.Final.jar
-rw-r--r--  0 0      0      575748 May 18 13:27 controller/lib/netty-common-4.1.22.Final.jar
-rw-r--r--  0 0      0     1292696 Sep 13  2017 controller/lib/netty-3.10.6.Final.jar

Edit: Seems netty 3 and 4 use different java packages so I guess it should not be a problem

[tysonnorris]

is there a better way? does case x:WhiskEntity => not work?

[chetanmeh]

That would work if x is an instance of WhiskEntity. However here x is class representing WhiskEntity. So current approach has to be taken

[tysonnorris]

ah yes

[rabbah]

given the matching and if predicates, might as well use if/else directly for brevity.

[tysonnorris]

I get the feeling this reference is special - can you outline the goals of ReferenceCounted and synchronized?

nm: I see the "Shutdown Handling" comment

[tysonnorris]

ArtifactStore has a shutdown() function - is there a reason we cannot use that instead of the specialized ref counting? (client is responsible for shutdown). I don't see any non-test usages of shutdown currently - what is the hazard, if any, in either treating this the same as couchdb (no shutdown called, except for test cases) OR requiring that clients invoke shutdown (e.g. via sys.addShutdownHook(store.shutdown()) in controller/invoker)?

Part of the diff in client handling from couchdb is the client sharing - you mention that stores share the same AsyncDocumentClient instance, but it's not clear why?

Just looking for ways to simply this

[tysonnorris]

After reading some of the cosmosdb doco (sorry, cosmos n00b here), I see now that the "databases" are modeled as "multiple collections within a single db" which partly explains the client sharing, but I'm still wondering what is the impact if we create per-collection clients?

[chetanmeh]

Each AsyncDocumentClient encapsulates a HttpClient which own a pool of HTTP Connections to CosmosDB. As for all 3 collections we are connecting to same url at backend it would be better to share the pool.

Compared to this in CouchDBRestStore the pool is managed on per ActorSystem level which by design is then shared across various ArtifactStore implementations. In PoolingRestClient#shutdown method you would see a note around not closing the pool assuming shutdown is only relevant for tests. So ref counted approach used in this PR is meant to solve that

[rabbah]

getOrCreateReference is called once at create time - is there concurrency here in making the stores that requires synchronization or is this mostly defensive to get the counts right?

[rabbah]

can you add a comment explaining the synchronized fwiw.

[tysonnorris]

does config need to be lazy? is there any reason not to make it non-lazy, and create the clientRef immediately here? (then no need for the special getOrCreateReference function)

[chetanmeh]

For some of the test setups I am using different database name and thus have a separate method which takes config explicitly. Making it non lazy would cause issue if default config is not complete causing the class load to fail.

[tysonnorris]

Isn't that OK? (to fail in case of invalid config?) It would only happen if CosmosDB is enabled, and the config is invalid. The tests can always provide a valid non-default config.

[chetanmeh]

Even in that case getOrCreateReference may be required as currently there can be multiple shutdown calls made. In case of object level instance we would need to change the shutdown approach and move it to provider level

[tysonnorris]

I guess I favor multiple shutdown calls vs the reference tracking.
I tested changing the provider to:

  private val config = loadConfigOrThrow[CosmosDBConfig](ConfigKeys.cosmosdb)
  private val clientRef = createClient(config)

and it seems to run fine in CosmosDBArtifactStoreTests - it ends up calling client.close() multiple times, as expected, and seems to operate properly.

[chetanmeh]

I think post close no other operation is performed so it does not show up any issue. All clients are closed in affterAll i.e. once all methods in suite have run

[tysonnorris]

I think this requires that '|' cannot be used in the id at all? (that is ok by me, but should be validated in escapeId and unescapeId, I think)

[chetanmeh]

Good point. So far this was checked in EntityName#entityNameMatcher however would be good to check the invariant in util method also

Added a check with test for this logic

[codecov-io]

Codecov Report

Merging #3562 into master will decrease coverage by 3.68%.
The diff coverage is 15.02%.

@@            Coverage Diff             @@
##           master    #3562      +/-   ##
==========================================
- Coverage    74.6%   70.91%   -3.69%     
==========================================
  Files         138      146       +8     
  Lines        6461     6891     +430     
  Branches      397      427      +30     
==========================================
+ Hits         4820     4887      +67     
- Misses       1641     2004     +363

Impacted Files	Coverage Δ
...core/database/cosmosdb/CosmosDBArtifactStore.scala	0% <0%> (ø)
...whisk/core/database/cosmosdb/CosmosDBSupport.scala	0% <0%> (ø)
...sk/core/database/cosmosdb/CosmosDBViewMapper.scala	0% <0%> (ø)
...abase/cosmosdb/CosmosDBArtifactStoreProvider.scala	0% <0%> (ø)
...core/database/cosmosdb/RxObservableImplicits.scala	0% <0%> (ø)
.../scala/src/main/scala/whisk/core/WhiskConfig.scala	92% <100%> (+0.06%)	⬆️
...hisk/core/database/cosmosdb/ReferenceCounted.scala	100% <100%> (ø)
...la/whisk/core/database/cosmosdb/CosmosDBUtil.scala	92% <92%> (ø)
.../whisk/core/database/cosmosdb/IndexingPolicy.scala	93.1% <93.1%> (ø)
...ain/scala/whisk/core/containerpool/HttpUtils.scala	50.9% <0%> (-0.08%)	⬇️
... and 9 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 3ab604c...a27fc64. Read the comment docs.

[tysonnorris]

This seems good to me, would like some others to chime in. My questions are mainly around:

• client connection sharing across ArtifactStores (can we just create separate connections?)
• multiple stores currently getting created (is there any risk?)

On this last one, I think it is a defect of WhiskStore that multiple calls to WhiskEntityStore.datastore() will return multiple unique instances - I think these should return the same instance (invoke makeStore[WhiskEntity]() once ever). I don't know if it impacts cosmos (client is shared with multiple separate instances of the same store?), but if so, maybe we can fix it here? otherwise can fix it separately.

[chetanmeh]

On this last one, I think it is a defect of WhiskStore that multiple calls to WhiskEntityStore.datastore() will return multiple unique instances

One benefit of this approach is that future test using MemoryArtifactStore can work without any side effect of other tests. Caching the result of call of makeStore would make shutdown handling tricky. Currently each eventual owner of store instance is responsible for shutdown. Probably in that case we need to have a shutdown support at provider level

[tysonnorris]

I think adding ArtifactStoreProvider.shutdown() seems like a fine addition, if calling client.close() multiple times is not reliable. The tests will need to know that some artifact stores have client bound to provider, and others have client bound to store, which I think is not great, but it is OK given that nothing is invoking shutdown currently, and the behavior is different amongst the stores currently.

[chetanmeh]

@tysonnorris I agree current ref count based shutdown handling is not desirable and we should relook into how ArtifactStore are closed. May be we deal with this in a separate issue and use existing approach in this PR for now?

[chetanmeh]

I am working on a separate PR which would add new stages to run full test suite with Cosmos. That would allow complete test coverage against this new store. Would raise it once this PR is merged

[rabbah]

given the matching and if predicates, might as well use if/else directly for brevity.

[rabbah]

getOrCreateReference is called once at create time - is there concurrency here in making the stores that requires synchronization or is this mostly defensive to get the counts right?

[rabbah]

is it possible to avoid null and use None (viz Option) instead?
we've generally stayed away from null.

[chetanmeh]

queryDatabases is java api of Azure CosmosDB driver which uses the null based approach. So not possible to use Option here

[chetanmeh]

getOrCreateReference is called once at create time

Added some comments. This method may be called concurrently multiple times at startup as various store instances are initialized. Hence need to synchronize it to ensure all those stores are backed by same client

[rabbah]

can you add a comment explaining the synchronized fwiw.

[rabbah]

comment? what is this for...

[rabbah]

throw exception directly instead?

[chetanmeh]

String split should never result in empty list. Changed it to throw ISE

[rabbah]

should this be wrapped with a Try for failures (via one of the invariant violations below)?

[rabbah]

note to self: check unit tests for this trait.

[chetanmeh]

The invariant should never fail as string split can not result in empty list. So should be fine without using Try. The tests are in CosmosDBUtilTest

[rabbah]

defensively <=?

[rabbah]

can you comment the second decrement.

[chetanmeh]

Second decrement make it negative which ensures that future reference calls result in error

[rabbah]

@chetanmeh as discussed on slack I think we need to document the design considerations container here in (configuration and dev docs).

[chetanmeh]

Thanks a lot @rabbah and @tysonnorris for reviewing this big PR ✨. Opened #3872 to track documentation related work