Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[KMSv2] Drop the apimachinery #120225

Merged
merged 1 commit into from Oct 23, 2023
Merged

[KMSv2] Drop the apimachinery #120225

merged 1 commit into from Oct 23, 2023

Conversation

pegasas
Copy link
Contributor

@pegasas pegasas commented Aug 29, 2023
edited

What type of PR is this?

/kind feature

What this PR does / why we need it:

Drop the apimachinery and client-go dependencies from https://github.com/kubernetes/kms/blob/master/go.mod to keep the import lighter.

Which issue(s) this PR fixes:

Fixes #120216

Special notes for your reviewer:

Does this PR introduce a user-facing change?

NONE

Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:

[KEP] https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/3299-kms-v2-improvements

@k8s-ci-robot
Copy link
Contributor

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

@k8s-ci-robot k8s-ci-robot added do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. size/L Denotes a PR that changes 100-499 lines, ignoring generated files. do-not-merge/release-note-label-needed Indicates that a PR should not merge because it's missing one of the release note labels. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. do-not-merge/needs-kind Indicates a PR lacks a `kind/foo` label and requires one. do-not-merge/needs-sig Indicates an issue or PR lacks a `sig/foo` label and requires one. needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. needs-priority Indicates a PR lacks a `priority/foo` label and requires one. sig/auth Categorizes an issue or PR as relevant to SIG Auth. and removed do-not-merge/needs-sig Indicates an issue or PR lacks a `sig/foo` label and requires one. labels Aug 29, 2023
enj
enj reviewed Aug 29, 2023
View reviewed changes
staging/src/k8s.io/kms/pkg/service/grpc_service_test.go Outdated
@@ -64,7 +64,7 @@ func TestGRPCService(t *testing.T) {
client := newClient(t, address)

// make sure the gRPC server is up before running tests
if err := wait.PollImmediateUntilWithContext(ctx, time.Second, func(ctx context.Context) (bool, error) {
if err := util.PollImmediateUntilWithContext(ctx, time.Second, func(ctx context.Context) (bool, error) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just use a for loop with a sleep. Do not copy the entire implementation from the wait package.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sure.
I will remove unnecessary logic, split the files according to apimachinery, and add some unit tests in the next steps.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just make this a simple inline for loop with a sleep.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sure.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@pegasas Mo's recommendation was to just make this a inline for loop with a sleep. We don't need to copy any of the poller code or PollImmediateUntilWithContext from the apimachinery util.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sure.
I removed other useless code and keeps a inline for loop with a sleep.

@k8s-ci-robot k8s-ci-robot added release-note-none Denotes a PR that doesn't merit a release note. and removed do-not-merge/release-note-label-needed Indicates that a PR should not merge because it's missing one of the release note labels. labels Sep 4, 2023
@pegasas pegasas marked this pull request as ready for review September 4, 2023 03:29
@k8s-ci-robot k8s-ci-robot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Sep 4, 2023
@pegasas pegasas marked this pull request as draft September 4, 2023 07:06
@k8s-ci-robot k8s-ci-robot added the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Sep 4, 2023
@pegasas pegasas changed the title [KMSv2] Drop the apimachinery and client-go dependencies from k8s.io/kms [DRAFT][KMSv2] Drop the apimachinery and client-go dependencies from k8s.io/kms Sep 4, 2023
aojea
aojea reviewed Sep 4, 2023
View reviewed changes
staging/src/k8s.io/kms/go.mod Outdated
google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19 // indirect
google.golang.org/protobuf v1.31.0 // indirect
k8s.io/utils v0.0.0-20230406110748-d93618cff8a2 // indirect
)

replace (
k8s.io/api => ../api
k8s.io/apimachinery => ../apimachinery
k8s.io/client-go => ../client-go
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

is client-go an indirect dependency of "k8s.io/apimachinery/pkg/util/wait"?

Copy link
Contributor Author

@pegasas pegasas Sep 4, 2023
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#120216 (comment)
It seems this targets further complex implementation.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

like this: https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/kms/internal/mock_ratelimit_remote_service.go#L24C1-L24C37

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You need to make that into a separate go module so it no longer impacts the deps of the kms module.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sure.

@k8s-ci-robot k8s-ci-robot added the area/release-eng Issues or PRs related to the Release Engineering subproject label Sep 4, 2023
@ibihim
Copy link
Contributor

ibihim commented Oct 9, 2023

/triage accepted

@k8s-ci-robot k8s-ci-robot added triage/accepted Indicates an issue or PR is ready to be actively worked on. and removed needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. labels Oct 9, 2023
aramase
aramase suggested changes Oct 10, 2023
View reviewed changes
Copy link
Member

@aramase aramase left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The CI failures are legit!

  1. The linter failures should go away after you change the implementation to a for loop with sleep and remove the apimachinery code.
  2. Run hack/update-vendor.sh to fix pull-kubernetes-dependencies failures.

staging/src/k8s.io/kms/pkg/service/grpc_service_test.go Outdated
@@ -21,6 +21,7 @@ import (
"context"
"encoding/base64"
"fmt"
"k8s.io/kms/pkg/util"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Move the import to line 35. FYI, the imports are grouped this way

import (
  stdlib

  external packages

  internal packages
)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @aramase !
Corrected!

staging/src/k8s.io/kms/pkg/service/grpc_service_test.go Outdated
@@ -64,7 +64,7 @@ func TestGRPCService(t *testing.T) {
client := newClient(t, address)

// make sure the gRPC server is up before running tests
if err := wait.PollImmediateUntilWithContext(ctx, time.Second, func(ctx context.Context) (bool, error) {
if err := util.PollImmediateUntilWithContext(ctx, time.Second, func(ctx context.Context) (bool, error) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@pegasas Mo's recommendation was to just make this a inline for loop with a sleep. We don't need to copy any of the poller code or PollImmediateUntilWithContext from the apimachinery util.

staging/src/k8s.io/kms/pkg/util/util.go Outdated
@@ -52,3 +58,105 @@ func ParseEndpoint(endpoint string) (string, error) {

return u.Path, nil
}

func PollImmediateUntilWithContext(ctx context.Context, interval time.Duration, condition func(context.Context) (done bool, err error)) error {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added a comment above. The previous review comments suggested using a simple inline for loop with sleep instead of copying code from apimachinery/util.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

add comments inline.

staging/src/k8s.io/kms/pkg/util/util.go Outdated
Comment on lines 144 to 123
func HandleCrash() {
if r := recover(); r != nil {
if r == http.ErrAbortHandler {
// honor the http.ErrAbortHandler sentinel panic value:
// ErrAbortHandler is a sentinel panic value to abort a handler.
// While any panic from ServeHTTP aborts the response to the client,
// panicking with ErrAbortHandler also suppresses logging of a stack trace to the server's error log.
return
}
const size = 64 << 10
stacktrace := make([]byte, size)
stacktrace = stacktrace[:runtime.Stack(stacktrace, false)]
if _, ok := r.(string); ok {
klog.Errorf("Observed a panic: %s\n%s", r, stacktrace)
} else {
klog.Errorf("Observed a panic: %#v (%v)\n%s", r, r, stacktrace)
}
}
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is not required!

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

removed.

@k8s-ci-robot k8s-ci-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Oct 13, 2023
@k8s-ci-robot k8s-ci-robot added size/M Denotes a PR that changes 30-99 lines, ignoring generated files. and removed size/L Denotes a PR that changes 100-499 lines, ignoring generated files. labels Oct 19, 2023
@k8s-ci-robot k8s-ci-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Oct 22, 2023
@k8s-ci-robot
Copy link
Contributor

k8s-ci-robot commented Oct 22, 2023
edited

@pegasas: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
pull-kubernetes-verify-strict-lint 33ba2aae6f3e24dd3525e9fa2360f77d0ce58f72 link false /test pull-kubernetes-verify-strict-lint

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@enj
Copy link
Member

enj commented Oct 23, 2023

/lgtm
/approve

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Oct 23, 2023
@k8s-ci-robot
Copy link
Contributor

LGTM label has been added.

Git tree hash: 96df378c8aa47696220f66966891d4f54424de38

@dims
Copy link
Member

dims commented Oct 23, 2023

/kind cleanup

@k8s-ci-robot k8s-ci-robot added kind/cleanup Categorizes issue or PR as related to cleaning up code, process, or technical debt. and removed do-not-merge/needs-kind Indicates a PR lacks a `kind/foo` label and requires one. labels Oct 23, 2023
@dims
Copy link
Member

dims commented Oct 23, 2023

/approve
/lgtm

@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dims, enj, pegasas

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Oct 23, 2023
@k8s-ci-robot k8s-ci-robot merged commit b327bd7 into kubernetes:master Oct 23, 2023
16 checks passed
@k8s-ci-robot k8s-ci-robot added this to the v1.29 milestone Oct 23, 2023
@enj enj mentioned this pull request Oct 26, 2023
Merged
@sreeram-venkitesh sreeram-venkitesh mentioned this pull request Nov 1, 2023
Closed
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aojea aojea aojea left review comments

@aramase aramase aramase requested changes

@lavalamp lavalamp Awaiting requested review from lavalamp

@enj enj Awaiting requested review from enj

@saschagrunert saschagrunert Awaiting requested review from saschagrunert

Assignees

@dims dims

@enj enj

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. area/release-eng Issues or PRs related to the Release Engineering subproject cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. kind/cleanup Categorizes issue or PR as related to cleaning up code, process, or technical debt. lgtm "Looks good to me", indicates that a PR is ready to be merged. needs-priority Indicates a PR lacks a `priority/foo` label and requires one. release-note-none Denotes a PR that doesn't merit a release note. sig/auth Categorizes an issue or PR as relevant to SIG Auth. sig/release Categorizes an issue or PR as relevant to SIG Release. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. triage/accepted Indicates an issue or PR is ready to be actively worked on.
Projects
SIG Auth
Archived in project
SIG Auth: KMS v2
Status: Done
Milestone
v1.29
Development

Successfully merging this pull request may close these issues.

[KMSv2] Drop the apimachinery and client-go dependencies from k8s.io/kms
7 participants
@pegasas @k8s-ci-robot @enj @ibihim @dims @aojea @aramase