add servergroup for workerpools

[kon-angelo]

How to categorize this PR?

/area control-plane
/kind enhancement
/priority normal
/platform openstack

What this PR does / why we need it:
Allows to create worker pool workers in server groups. Server-groups can have a defined affinity that will protect the workers from being scheduled in the same hypervisor, thus improving HA setups.

Which issue(s) this PR fixes:1
Fixes #163

Special notes for your reviewer:
As part of the reconciliation loop we add the capability to create server groups in the DeployMachineDependencies function. Background and discussion topics for some of the design choices follow:

• We are mostly interested in introducing soft-anti-affinity and anti-affinitypolicies.
• Openstack APIs e.g. Nova aside from the major version also have a microversion which changes the API behavior. The client uses the lowest supported microversion by default, but soft-* affinity variants may be introduced in a later microversion like in ConvergedCloud's case. Our implementation parses and uses the highest supported MV, but because this may not be supported in all OS environments, we opted to allow admins to set allowed policies in CloudProfile.
• Servergroups by default have no update operations. Any requested change e.g to the policy would mean to destroy and recreate the server group (and make a rolling update of nodes).
• Based on the previous point we opted to make the following implementation for the introduction of the feature. The validation of the servergroups will check to see if the WorkerPoolProviderConfig is immutable, disabling any update to the servergroup itself.
• Internally though, the reconciliation loop supports such operations. If the spec is changed a new server group will be created and new machineclasses will be created with a new hash. After the rolling node update, the old servergroup will eventually be disposed of. The update operation is only disabled by validation at the moment.
• Servergroups is a project-wide object, but openstack doesn't support labels in objects, thus making it difficult for us to recognize our resources vs user-created-resources. In order to avoid conflicts in naming by multiple shoots in a project we use the resource's Name to create a labeling scheme. Servergroups are thus named as clusterName-workerPoolName-<random-10char>. The maximum allowed names are 255 chars so there is plenty of room to increase the random component. But as part of the naming scheme any server group in the OS project that has a prefix as clusterName-workerPoolName is thought to be managed by gardener and subject to deletion.

Merge is pending update in MCM to include the servergroup scheduler changes

Release note:

Adds an additional option for the worker pools to specify a server group policy. If this option is set, a new server group with the defined policy will be created and nodes managed by the worker pool will become members. Allowed policy values can be defined in the provider's `CloudProfile`.

[gardener-robot]

@kon-angelo Label area/control-lane does not exist.

[dkistner]

Awesome. Thanks. Will review it soon :)

[dkistner]

Can we move the PR to draft until the depending MCM change is integrated? gardener/machine-controller-manager@0094e63

[kon-angelo]

Main changes on 2nd revision:

• Rewrote update validation following @rfranzke suggestions.
• One additional validation rule has been added for shoot creation. Using "hard" affinity on workers with multiple availability zones is now forbidden since it results in impossible scheduling. (thanks to @dkistner for helping discover this)
• cloudprofile validation
• docstrings and export scoping improvements .

[rfranzke]

As an end-user I would be interested if that happens in-place of whether my existing machines will be terminated/replaced by new machines (i.e., rolling update)?

[rfranzke]

from a worker

from a worker pool

[rfranzke]

OK, now reading this, the first sentence (with my comment about in-place) is clarified. Maybe this can be made more clear from the beginning, i.e., that all of this only applies for newly created worker pools while existing pools are immutable.

[dkistner]

Can we call this just serverGroup?

[dkistner]

That would mean if a user wants to change the a workerpool to use a different servergroup policy it would be required to create a new workerpool and tear down the old one?
Technically that is valid as the servergroup policies are only evaluated at creation time of a machine and based on this the placement of the machine is done. So maybe we should mention this?

[dkistner]

Only when we not use named return values.

Suggested change

	allErrs = append(allErrs, field.Invalid(parent.Child("serverGroupConfig", "policy"), workerConfig.ServerGroupConfig.Policy, "no matching server group policy in cloudprofile"))
	return
	return append(allErrs, field.Invalid(parent.Child("serverGroupConfig", "policy"), workerConfig.ServerGroupConfig.Policy, "no matching server group policy in cloudprofile"))

[dkistner]

Just a minor thing: We do not really much use named return values.
Do you consider to declare and initialise allErrors explicitly and return it?

[dkistner]

Only when we not use named return values.

Suggested change

	allErrs = append(allErrs, field.Invalid(parent.Child("serverGroupConfig", "policy"), workerConfig.ServerGroupConfig.Policy, "policy field cannot be empty"))
	return
	return append(allErrs, field.Invalid(parent.Child("serverGroupConfig", "policy"), workerConfig.ServerGroupConfig.Policy, "policy field cannot be empty"))

[dkistner]

Do we need to declare those variables explicitly? I mean we can also declare and initialise them via := later.

[dkistner]

Is case d) actually possible? I though the servergroup + policy are immutable and can't be changed. I mean anyway the handling is the same.

[kon-angelo]

Controller fully supports c) and d) cases although these are prohibited in the validation for now. To support these the internal implementation does need to do a rolling node update by generating new MachineClasses. But generally we can disable the immutability checks at any point in the future and the deletion will work.

[dkistner]

Out of curiosity: Wouldn't it be sufficient to just add the servergroup dependency id to the hash? I mean this one should be unique.

[dkistner]

I'm wondering if we should move all mock packages to pkg/mock with subdirectories for the client or any other mock. g/g is doing it also this way. https://github.com/gardener/gardener/tree/master/pkg/mock

[kon-angelo]

What i don't like about this:
a) if we need changes to the provider and need to use a new openstack service not mentioned here, we would need a g/g release.
b) I do not consider these interfaces as stable to move them into the central repo. In comparison the mcm-provider-openstack uses a slightly different structure. If we consolidate them we could think about it but its premature now

[dkistner]

My intention was not to move the mocks of the openstack extension to the g/g repo. I wanted to suggest to move all the mocks of the openstack extension to a central place like pkg/mocks in the openstack extension repo. Then the structure would be similar like in the g/g repo. :)

[kon-angelo]

I misunderstood. This is possible, yes. We can open an issue and give it a try

[dkistner]

Same question as in pkg/openstack/client/mocks/client_mocks.go

[kon-angelo]

• made documentation more explicit about migration to worker pools with server groups
• explicit validation when the serverGroup is missing or added and added one more unit test for this
• comments addressed

@rfranzke maybe can you check the documentation one more time. I used the term worker groups instead of pools because that's how its referred in the UI. I hope its better now

[dkistner]

After a pair review with @kon-angelo
/lgtm

dismiss