Experimental APIs #285
Experimental APIs #285
Conversation
|
When we first introduced preview features, we considered adding some sort of a name so that consumers could enable/disable preview features by name; we decided it was overkill at that time. Should we reconsider that approach here instead of introducing a differentiation between "platform" and "library"? We could have the nameless (
Of course, even just allowing or disallowing preview feature usage at the library level also could benefit from a name. But, ugh, would we want it to be a fully-qualified name? I submit that usability is more important than name collision avoidance, and therefore just passing through whatever name the library author applies to the attribute is fine. In fact, unqualified names make the viral nature much easier to manage anyway. In summary though, I propose that instead of differentiating between library and platform, we allow the attribute to include a name--and then consumers can specify the list of names that are enabled. A value of |
Co-authored-by: Buyaa Namnan <buyankhishig.namnan@microsoft.com>
I'm not opposed to that (shocker, since I proposed the name-based approach before); the primary pushback about this design was that it creates combinatorial complexity. For example, what happens if these features depend on each other (explicitly or inadvertently)? Are we going to test combinations for stuff we as the .NET platform ship (runtime, core libraries, compilers, ASP.NET, EF etc)? Do we need to track the list of these names to avoid conflicts? I have a negative knee-jerk reaction whenever we build facilities that differentiate between platform- and ecosystem use but I think in this case this would be acceptable because there is a stark difference between the features that require runtime/language support and the ones that don't, which are very visible (and as proven by the conversations we had with our partners) surprising in its limitations. By having the feature distinguish between them, I think we can deliver a better UX than if we build a generic name-based system because we then can no longer track which features lock you into a matching SDK and which ones don't -- which in my opinion is the biggest issue in the UX. |
|
I also don't think we're locking ourselves out of providing a more granular approach in the future: we could retconn |
|
The original trigger for this update was customers who were using preview features with the 6.0 SDK and targeting net6.0 were upgrading their SDK and being broken without any other changes (ie still targeting net6.0). This proposal sounds like those customers would be working if they were only using library level features as preview features would still be enabled at the library level but still be broken if they were using net6.0 platform level preview features. Am I reading that correctly? The customer would still be targeting net6.0 and using the 7.0 SDK so the platform level preview features would be disabled. Question though, breaking them in this config makes sense if they wanted to use 7.0 platform preview features (as they aren't targeting 7.0 yet) but what about 6.0 platform preview features when using 7.0? |
|
Regarding the name-based approach: I guess this would also be handy for eventually extending beyond preview features to regular features (e.g. "threading" for the wasm case) |
Yes, that is precisly the intent.
Why would that be handier than just marking the API as |
|
Because it wouldn't be a preview feature. We discussed tagging APIs back when we did the platform annotations in the sense of having capability tags rather than simple OS tags (think "threading", "file i/o", "simd", ...). I realize this might be a bit too far fetched for this proposal 😆 |
| * Shipping `RequiresPreviewFeaturesAttribute` for downlevel | ||
| - [dotnet/runtime#79479](https://github.com/dotnet/runtime/issues/79479) |
There was a problem hiding this comment.
Do we still need to ship RequiresPreviewFeaturesAttribute down-level, or would it be the new attribute that gets shipped down-level?
There was a problem hiding this comment.
I think only the new attribute is needed on down-level platforms.
There was a problem hiding this comment.
Yep, that's the intent. I'll update the linked work items once we have consensus on this proposal.
|
|
||
| * **library-level preview feature**. These are library APIs that don't require | ||
| any platform-level preview features to be consumed. The only difference to | ||
| regular APIs is that these are in preview so their shape isn't stable and thus |
There was a problem hiding this comment.
not just not stable, but may be entirely removed, even in a minor version.
There was a problem hiding this comment.
Being explicit that minor versions may remove api's would be really useful for CoreWCF. We have a hard commitment not to remove api's between major version releases, but our major version lifetime is a lot longer than .NET, and the time between our minor releases is relatively short. We've struggled with how to manage introducing new features which might need to have their api changed based on feedback. There might be high confidence in the code quality, but some uncertainty of the new public api's.
There was a problem hiding this comment.
Do we also want to offer any guidance about servicing? Should consumers assume that even security patches might break experimental API?
A different way of asking this is -- should consumers assume they are in an unsupported state if their app uses experimental API (because a patch might break them anytime by removing the API) or is it a reasonable configuration to deploy in production, so long as they've tested (because only a minor version update would break the API)
I'm guessing any guidance woudl be -- if you deploy to production with an experimental API, you should make no assumptions about even a security patch breaking you.
There was a problem hiding this comment.
I feel like our guidance should be as lax as possible, and we should direct libraries to make stronger guarantees if their scenario allows for it. For example, our guidance should be "Any experimental API has no shape or stability guarantees and no support guarantees", but CoreWCF could choose to guarantee "Any experimental API will not change shape in a security patch" for any such-attributed APIs in CoreWCF. This gives the most flexibility for developers to provide experimental features in their libraries without ending up back in a situation where we need to introduce a "SuperExperimental attribute" that signifies something looser than we define here.
There was a problem hiding this comment.
+1
Also may be all experimental features are not same as well even for a single library.
For example, Azure services might flight many features but may decide to follow-up different path with each feature/API in the same library.
There was a problem hiding this comment.
should consumers assume they are in an unsupported state if their app uses experimental API
Yes. I'd argue that's the definition of using a preview/experimental/beta API. They aren't stable and thus unsupported. RCs are an exception to this rule but I think we can safely ignore that nuance.
if you deploy to production with an experimental API, you should make no assumptions about even a security patch breaking you.
Agreed.
I feel like our guidance should be as lax as possible
I think you mean the opposite: we want the most amount of flexibility, so I think the guidance should be as definitive as possible, along the lines of what Dan was suggesting.
There was a problem hiding this comment.
Whatever the right term is, I think the guidance should allow the most flexibility possible.
There was a problem hiding this comment.
I think the semantics need to be clear, and keep the guidance to a minimum:
APIs marked as experimental indicate that the author of the API is not committing to supporting this API over time, and the quality of the API's implementation may be lower than the rest of the API surface. If you take a dependency on an experimental API, you may find that the API signature changes or the API is completely removed the next time you upgrade to a new version of the assembly containing the API.
And then the Experimental attribute should have a note property that lets the author provide more detailed guidance if needed. "We're pretty confident about this API, we expect to remove this attribute in the 1.2 release", "Please don't use this right now, we're still in active development". Stuff like that.
There was a problem hiding this comment.
Can we embed my wording suggestion into the doc? I think it hits all the salient points.
|
I like the idea of having the features named. It will help with the following problem: a user adds "allow preview features" (APF) to be able to call feature A. After a couple of releases feature A ships stable, but nobody ever cleans the project file, the AFP stays in the project system (unnecessary). In the future another developer starts caling experimental feature B without realizing what's happening. |
Co-authored-by: Igor Velikorossov <RussKie@users.noreply.github.com>
|
I think this will be okay, but just throwing this out there -- assuming you would want the initial experimental usage in tools to be shown as 'squiggles' in things like editors. Also, how would this reflect things where APIs are reflected like objects in UI frameworks? e.g., XAML or Blazor tag helpers? |
Yes, I have linked a work item where this is being discussed with the Roslyn folks as well as the docs team.
That's a good question; I didn't think of that yet. XAML and Tag helpers could work the same way as code, given that there is a text editor rendition of the API use. But there are other places (toolbox and property grid) that could also benefit from this. I updated the doc. |
|
I think we need to say something about the transitive nature of the attribute. Presumably:
|
There was a problem hiding this comment.
Overall, I like this very much. I like the "per-feature" opt-in, and I'm fine with the distinction between platform and library in this situation.
One aspect which may be worth thinking about is that this is a per-member opt-in: it behaves quite differently to there being a beta version of a library and a stable version of the same library, where the library owner "knows" the context of whether it's beta or stable. If one piece of code needs to behave in different ways in the different contexts with the experimental attribute, the library author will need to have some sort of "turn on this behavior" method (protected by the attribute). That's entirely feasible of course, and could even be desirable in many cases (e.g. one instance of a type opting in to the new behavior, and another not) but for some contexts it won't be quite what's wanted.
This is in no way a criticism of the feature - it's more that if we publish documentation for library authors, it may be something to highlight.
I'm not sure I fully understand. The intent is that suppressing the warning is that mechanism. The consumer has two options: they can decide that the buck stops at them and they intent to shield their consumers from any breaking changes. The other option is that they forward that suppression to their callers by marking themselves with the same attribute. It's not quite true that we intent to have a member-level opt-in, that's why the diagnostic ID is required. The intent is that string can be shared across many types/members so that they can all be turned on/off as a single step. Does this make sense? |
|
I think I expressed myself poorly in the previous comment. Let me try again :)
These could use this attribute via an API surface addition of "EnableXyzFeature" somewhere - but that would be a bit clunky. I suspect that AppContext.SetSwitch is a better solution for things like that. And that's fine - I'm just suggesting that if that is indeed the recommendation, it would be worth mentioning in the same documentation that the experiment attribute is described. Does that make more sense? Happy to hop on a call if that would help more. |
In .NET 6, we've added a way to ship preview features in otherwise stable releases. It works by tagging APIs (and language features) as preview features and requiring the user's project to explicitly opt-into using them via the
<EnablePreviewFeatures>property.The feature was primarily designed to accommodate platform-level features, that is for features that span runtime, library, and language, such as generic math. However, we also believed that the feature would work for libraries that want to offer preview functionality in otherwise stable NuGet packages.
Since then, we've seen requests from partners who have tried using it and hit limitations that come from guardrails we put into place due to the complex nature of platform-level preview features.
The goal of this feature is to find a design that works for both, platform-level preview features and library-level preview features.