Propose KEP to extend allowed DataSource entries to include PVC

[j-griffith]

Propose extending DataSource field in PVCs to allow existing in
namespace PVCs (Clones) and external data population CRDs (Populators).

[thockin]

@jingxu97 and @saad-ali showed me some of this last week. I think cloning a disk is legitimate and self-evident use-case. Focus on that.

The idea of software initializers is interesting, but can mostly be solved with sidecars, right? Sidecars have the distinct advantage of being active - they can resync if you need, which these initializers can never do. I'm not super inclined to go out of our way to support initializers that could just be sidecars. If they happen to fall out of the clone design, I won't go out of my way to break them, but I'd need to be convinced to lift a finger to support them.

[j-griffith]

@thockin thanks for the feedback. Fore sure, the initializer portion could be a side-car; the appealing thing about the DataSource in this case for me was simply a way to formally/consistently express that, and follow the pattern that the Snapshot Controller uses (and well, because it was there).

I like the side car idea, I'll have to research a bit to understand how I would express that though. Regardless, I'll focus on Cloning for now.

[j-griffith]

@thockin I updated the PR to remove the populator component and just focus on the cloning use case. I'll follow up with a single proposal for the init/populator use cases to keep things focused.

[mattfarina]

Quick process note, this is an API change which means it needs to go through the API review process.

Has this been discussed at SIG Storage, yet?

[mattfarina]

Can we please have approvers listed? I think this would be the SIG Storage chairs/tech leads but may review this guidance later.

[j-griffith]

Added

[mattfarina]

The template for graduation criteria notes:

How will we know that this has succeeded? Gathering user feedback is crucial for building high quality experiences and SIGs have the important responsibility of setting milestones for stability and completeness. Hopefully the content previously contained in umbrella issues will be tracked in the Graduation Criteria section.

Aside from the basic requirements which are things being implemented, how can we know this GA quality vs beta quality?

[j-griffith]

Added additional wording, thanks!

[j-griffith]

@mattfarina

Quick process note, this is an API change which means it needs to go through the API review process.
Has this been discussed at SIG Storage, yet?

Yes, we've discussed this at length in sig-storage

[mattfarina]

@j-griffith @saad-ali @childsb What was the output of the conversation in SIG Storage?

[justaugustus]

Please remove any references to NEXT_KEP_NUMBER and rename the KEP to just be the draft date and KEP title.
KEP numbers will be obsolete once #703 merges.

[justaugustus]

/uncc

[j-griffith]

@thockin I've reworked this a bit based on discussions in sig-storage yesterday and as per recommendations from @saad-ali

The proposal removes any reference to "populators", and instead just proposes removing API validation checks against the PVC DataSource 1 (which was apparently the original intent of the field).

Currently works with old style provisioners requires 2 to work with CSI provisioners

[saad-ali]

We should finalize on the end to end plan for how generic populators will work before relaxing the validation. Specifically we should finalize on how PVCs will be safely mounted to populators (but no other workloads) until the populator is done.

[j-griffith]

@saad-ali

Specifically we should finalize on how PVCs will be safely mounted to populators (but no other workloads) until the populator is done.

WRT to this KEP I disagree, I specifically removed any mention of Populators, I just want to enable PVC's for cloning at this point.

Additionally; why wouldn't we use the same taint mechanism we've agreed upon for snapshots? I've somewhat given up on Populators (at least for the short term) but I still think that we should get Clones working. After all it's in the CSI Spec, It doesn't introduce any risk that I can think of, and it's a pretty common back end storage feature.

I'd just file a bug and add only PVC, but I can't do that because of the API validation checks without a KEP.

[rollandf]

LGTM

[j-griffith]

@saad-ali @thockin Should be explicitly Clone only now and put the other things in the "non goals" category explicitly, thanks!

[saad-ali]

Cloning is a common feature on most storage devices. It is used for duplicating data and, in some cases, as a disaster recovery method.

[saad-ali]

Let's specify that this functionality will only be added for CSI. In-tree volume plugins and Flex drivers will not get this functionality.

[saad-ali]

This could be added in non-goals or constraints.

[j-griffith]

I went ahead and added it non-goals, and also put a note in the Implementation Details/Notes section to just stress the point. Thanks

[saad-ali]

nit: plugin -> CSI Driver

[j-griffith]

cool, added csi driver and csi plugin so there shouldn't be any question going forward

[saad-ali]

Currently the PVC Datasource field is gated by the VolumeSnapshotDataSource alpha feature gate.
Going forward it makes sense to add additional feature gates for each type of datasource, e.g. cloning.
But I'm not sure that cloning should get to skip alpha?

[j-griffith]

Sure, I can change that. It just seemed that since all we were doing was adding a feature gate for PVC to be specified in DataSource that it shouldn't take a full alpha and beta to be comfortable with it. I'll remove the "skip to beta" verbage and we can go from there. If we feel more comfortable with an alpha then beta release that's great.

[saad-ali]

Should we recommend against storage systems implementing it this way? I.e. do we want to provide storage systems constraints on how and when to implement clone?

[j-griffith]

I'm not sure honeslty; I used this as an alternative example because it came up :) The only reason I could see any storage provider using this as a clone implementation is because they don't offer cloning on their backend; in which case it's not ideal, but "ok"; they still eliminate the multi step process for the end user.

I think honestly I should've reworded this completely and left out the implementation part; and just pointed out that it's a possible alternative to get the clone behavior without this KEP.

[humblec]

IMO, the clone api should be a common/single interface exposed to the user and storage provider/driver can do it by their choice in the backend. ie from snapshot or directly by their clone api.

[j-griffith]

@saad-ali Now that we're heading into a new release and I've removed all wording regarding populators and just discuss Clone only; any chance we can get this approved/merged so I can get the implementations done here and in the provisioner hopefully for this next release?

[j-griffith]

@justaugustus I squashed your request for changes so can't really fix things up; any chance I could get you to take a look and either update or remove your review change request?

Dismissing as KEP number is removed.

[justaugustus]

/uncc

[j-griffith]

@saad-ali @thockin Any chance I could get either of you to comment on the updates and get this moving along again?

[saad-ali]

/lgtm
/approve

We can implement alpha of this in Q2 for Kubernetes 1.15.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: j-griffith, saad-ali

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• keps/sig-storage/OWNERS [saad-ali]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment