KEP-4040: Controller name #4073
Conversation
mwielgus
commented
Jun 9, 2023
mwielgus
commented
- One-line PR description: Establishes controllerName field and adds it to Job and HPA.
- Issue link: Handle an API object using a specific controller #4040
- Other comments:
k8s-ci-robot
added
the
cncf-cla: yes
k8s-ci-robot
added
kind/kep
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: mwielgus The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
|
||
| ### Risks and Mitigations | ||
|
|
||
| Objects handled by custom controllers may have different field value |
There was a problem hiding this comment.
Maybe it's worth giving an example. Here is one for Job: .status.failed higher than .spec.backoffLimit, and the Job is not marked as Failed.
|
|
||
| ## Design Details | ||
|
|
||
| The supported API controllers will simply skip API objects that have non-default `controllerName` field. |
There was a problem hiding this comment.
What about defaulting from apiserver?
Would it set the value to default?
One lesson learned from schedulerName is that we shouldn't do it at the defaulting layer. We should do it in the strategy kubernetes/kubernetes#93067
|
|
||
| - [x] Feature gate (also fill in values in `kep.yaml`) | ||
| - Feature gate name: ControllerName | ||
| - Components depending on the feature gate: kube-controller-manager |
| kep-number: 4040 | ||
| authors: | ||
| - "@mwielgus" | ||
| owning-sig: sig-apps |
There was a problem hiding this comment.
participating-sigs:
- sig-autoscaling
mwielgus
force-pushed
the
controller-name
branch
from
1ea65cb
to
8bad1d0
Compare
|
|
||
| ## Proposal | ||
|
|
||
| Add `controllerName` at the top level of Spec of API objects to |
There was a problem hiding this comment.
in the endpointslice controller we are using a label "endpointslice.kubernetes.io/managed-by"
I see it in alternatives but is there any special reason why label were discarded?
labels also have the benefit that are already supported by informers to filter information, that makes it easier to support environments with multiple controllers
@thockin should we try to be consistent across all the APIs about this feature? maybe is more a sig-arch topic?
There was a problem hiding this comment.
I think managed-by is different pattern - EndpointSlice is more or less "dumb data", and not produced by humans (usually). Job and HPA have a lot more "active" semantic and are directly produced by humans.
There was a problem hiding this comment.
It sounded like a quite important piece of API so I went with a dedicated field, but the whole idea would also work with a label.
mwielgus
force-pushed
the
controller-name
branch
from
8bad1d0
to
fd2febd
Compare
|
|
||
| ## Summary | ||
|
|
||
| This feature unblocks custom handling for selected standard |
There was a problem hiding this comment.
"Handling" doesn't tell me anything about this KEP - handling what? I think "custom implementations" is clearer
| Currently Kubernetes users, who need custom behavior for | ||
| some API objects, can either: | ||
|
|
||
| * disable the corresponding controller in controller-manager |
There was a problem hiding this comment.
Does anyone do this? Is this a thing I just don't know about?
Most of our APIs were not really designed as robust abstractions, they are more like configuration files for the core implementations. Making them into abstractions ex post facto seems high-risk. I am commenting before reading the whole thing, but I want to really understand the reward that comes with this risk, versus a new custom API.
There was a problem hiding this comment.
Not sure if anyone actually does it as it is super inconvenient - I'm exploring options to change this.
|
|
||
| * duplicate/fork the API as CRD. | ||
|
|
||
| However, on managed environments (like, for example, GKE), |
There was a problem hiding this comment.
This doesn't tell me why this is a bad answer.
|
|
||
| ### Goals | ||
|
|
||
| * Establish a simple and common method to mark an API object as |
There was a problem hiding this comment.
I think the custom-scheduler is a poor analogy. This is more like PersistentVolumes or Ingress or Gateways - APIs which are defined as an abstraction meant to cover a wide array of implementations. We already have a pattern for this - FoobarClass. It comes with some overhead, but it's the result of trying this several times and finally landing on an acceptable balance of complexity and flexibility.
Gateway goes even further in that it was designed, from the start, for extension at each layer, but I don't know if that is warranted here.
In short:
Foobar.spec.foobarClassName is a string that names a FoobarClass resource.
The FoobarClass type includes a controller string and a parameters stanza, which references a custom resource of some type that the named controller can comprehend.
Usually one FoobarClass is designated the default (via annotation) and any CREATE Foobar operation which does not specify a class gets that.
Users can kubectl get foobarclass to see what is available, or they can ignore it.
Cluster admins can install any number of classes with various parameter sets, and can name them as they see fit.
Cluster providers do not need to do anything in particular to enable this, but MAY pre-populate some classes for their own environment (e.g. cloud provider might define N different GatewayClasses to correspond to LB infra).
To be clear - there's significant complexity buried here, and ample opportunities for mistakes (though nothing that doesn't exist in the simpler model proposed here). Status gets complicated. Defaulting and validation gets complicated. Nothing ensures that a given controller is actually running, so UX gets complicated. Requiring a CR for params is complicated (until all the declarative validation lands). But it's "the devil we know".
So, if we are going to do anything like this, I would want to understand why we would not follow the established pattern.
Also, the fact that we DON'T have a way to kubectl get schedulerclass (or something) makes custom schedulers less interesting.
|
|
||
| * While the KEP enables providing custom handling for standard | ||
| K8S APIs, | ||
| it doesn't focus on any customization or additional |
There was a problem hiding this comment.
I'm fine to leave the params out AS LONG AS we know how we will do it when it (inevitably) comes up.
|
|
||
| #### Story 1 | ||
|
|
||
| I want to run a modified, custom version of ControllerManager in |
There was a problem hiding this comment.
Why are those still Jobs and not MyCustomJob ?
There was a problem hiding this comment.
To make it work with whatever tools are for the original Job.
|
|
||
| #### Story 2 | ||
|
|
||
| I want to provide a significantly different implementation of |
There was a problem hiding this comment.
I buy this story. You could use annotations for this, which we did in Service for a while and ultimately added a field for it because annotations suck. That said, we half-assed it and DIDN'T add a class resource, because we know that Gateway is the real path forward (obviates much of Service API).
So I actually buy HPAClass as an idea, though I wonder about how much the API will need to evolve to provide a "significantly different implementation". Job is less obvious to me.
| combinations than handled by the default controller manager. These | ||
| combinations, while correct from the API validation perspective, | ||
| may project logical error or simply be not understood by dependant | ||
| code, and, as a result, potentially crash some external components. |
There was a problem hiding this comment.
If we go this route there needs to be a firm contract and conformance testing (mayber not k8s conformance but "are you a conformant HPA implementation". I think "may crash components" is not good.
| custom controller, there is no guarantee that the object will | ||
| behave in GA or test-conformant manner. | ||
|
|
||
| Adding the field on security-related APIs may potentially |
There was a problem hiding this comment.
I think it's a distraction to even talk about this as a system-wide idea.
There was a problem hiding this comment.
OK, i will narrow down the scope.
| # The most recent milestone for which work toward delivery of this KEP has been | ||
| # done. This can be the current (upcoming) milestone, if it is being actively | ||
| # worked on. | ||
| latest-milestone: "v1.28" |
There was a problem hiding this comment.
Dropping this KEP with literal days left before the KEP freeze is unfortunate. I didn't get to read the PRR sections and I have significant concerns about the approach.
There was a problem hiding this comment.
Sorry for that. Not all plans match perfectly with K8S release schedule.
|
Closing the KEP. Will follow the recommended *Class pattern. |
