Consider stabilizing the API and moving to v1 and beyond #2327
Comments
|
There is a tool which can assist with checking for incompatible APIs and suggesting new major version bump. https://pkg.go.dev/golang.org/x/exp/cmd/gorelease This could be added to CI to warn about breaking changes and ensure that they are desired. Then, it would ensure that the major version is bumped accordingly. |
|
Hi @nathanperkins, At this point, there are no plans to do that. There are a couple of reasons for that:
|
|
Thank you for the response! :)
Doesn't the API surface of controller-runtime generally hide the API surface of its dependencies? Other than the API types themselves (which generally maintain backwards compatibility), I would think the usage of
The API doesn't have to be finalized or 100% stable before moving to v1+. It could be that the releases we consider "minor" right now (which actually contain breaking API changes) would become major version changes. The only difference is that downstream projects would have to update the go.mod import, which is easy to update with tooling.
That's totally fair and I certainly don't want want to impose extra work that isn't helpful to others, especially if they can't get the things they want done. If the project is willing to do this, I could try to get bandwidth to help. Just as it is right now, I don't think there is an obligation to maintain multiple releases. The major version bump would happen where you normally perform a minor version bump, for releases that make some API change. But the project could support it the same as they do right now. From my perspective, implementing this means bumping to v1 in the next release and implementing a CI job which can show breaking API changes and suggest that a major version bump is necessary.
Updating all the import paths is unfortunate, but it's very easy to automate with tooling. The status quo is much more difficult where a project can have its dependencies broken by trying an automated update which should be safe. It's not just a problem for monorepos. When my project imports controller-runtime We have multiple projects in separate repos and we have to coordinate the controller-runtime upgrades in lock step whenever there are breaking API issues (which isn't obvious because they are hidden behind minor version bumps). Let me know what you think, if you don't think this would ever or could ever be implemented, feel free to close it. |
I think even if our usage of k8s.io is just internal and not surfaced to users of controller-runtime we have the problem that controller-runtime would have to be compatible with / compile with various versions of k8s.io/* dependencies. Some examples:
I think even if we use v1/v2/.. in CR we run into problems if various CR versions are only compatible with specific k8s.io/apimachinery, k8s.io/client-go, ... versions. As a user of v1/v2/... you have to pick one specific k8s.io/client-go, k8s.io/apimachinery/... version and all CR versions you're using would have to be compatible with that version. So even assuming we don't expose those dependencies to our users I'm not sure if it's possible to make the CR internal usage independent of specific minor versions of those dependencies. |
|
/kind feature support |
k8s-ci-robot
added
kind/feature
|
This issue is a lot more serious with the webhook.Validator change in 0.15. Our module using controller-runtime 0.15 can't import APIs which use 0.14 or before which have implemented webhook.Validator on their types. Breaking changes are usually less of a problem due to the compilation only including the imported module code which is actually used, but API types are the most common thing that is needed to import. This essentially fragments the community across the breaking change boundary where <0.14 and >=0.15 cannot import each other. |
|
I feel this project does not break compatibility accidentally but just not care about the compatibility between two versions. |
This PR #2014 was where the webhook validator interface was introduced, explains why the discussion was to introduce a breaking change rather than supporting both. This issue is what brought the feature to that conclusion #1896 (comment) I don't disagree that this may be difficult to track and even migrate to newer versions of controller-runtime with taking into account all the changes, is an exercise left to the consumer. I believe controller-runtime tries to do a great job with backporting important things to older versions to support n-2. However, dependencies around the use of this library will be the lowest common denominator with how you approach relying on things that do import controller-runtime. e.g. Using cluster-api (which also uses controller runtime) will put you at whatever version they are using when you are building something relying on their package. |
|
Just to clarify this once again, the really important point is in here: #2327 (comment)
For as long as the upstream k8s libs doesn't use major versions it would be pointless for controller-runtime to do so, as it will only ever be compatible with one version of the upstream k8s libs. So it is not possible for us to release major versions that can be imported simultaneously, regardless of what we do or do not want. And releasing major versions without that property is pointless. Hence, there really is nothing to consider here. |
|
I got it, the root cause is some packages of k8s.io are also not stable enough. |
|
@nathanperkins In Cluster API we recently dropped all dependencies to CR in our API packages: kubernetes-sigs/cluster-api#9011 Note: This is not possible today for API versions that implement our conversion interfaces (but these are usually not the latest API version) |
|
The Kubernetes project currently lacks enough contributors to adequately respond to all issues. This bot triages un-triaged issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle stale |
k8s-ci-robot
added
the
lifecycle/stale
|
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues. This bot triages un-triaged issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle rotten |
k8s-ci-robot
added
lifecycle/rotten
|
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues and PRs. This bot triages issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /close not-planned |
|
@k8s-triage-robot: Closing this issue, marking it as "Not Planned". In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
tl;dr: I would like controller-runtime to consider whether the API is stable enough to lock in with V1, and any further changes would bump to V2 and beyond.
controller-runtime is a widely used module that is fundamental to a lot of projects worldwide. Our team alone maintains dozens of controller-runtime reconcilers and uses the client.Client almost exclusively. We have been so appreciative of this project for enabling us to create controllers with consistent patterns across many use cases.
We have run into problems in the past (and seemingly future) where breaking changes to API (mostly function signatures) have made the upgrade story difficult.
One recent example is when
context.Contextwas added to the signature of MapFunc.And there are proposals to add error to MapFunc as well(edit: that would add a new option, so not breaking).These changes are huge improvements to issues we have had using MapFuncs. But, they have an unfortunate side effect of breaking upgrades. When we are importing modules which use the old controller-runtime with the old func signature, it is impossible for us to upgrade until our dependencies upgrade as well.
Some of our project are well-behind on controller-runtime upgrades simply because the tangled dependency upgrade story makes it too difficult.
Golang provides the V2+ module mechanism that allows for making breaking API changes as major version bumps and allowing downstream projects to control their upgrade story. Locking in the current API to v1 and making changes in v2+ would be of great benefit to downstream customers.
The main benefit is providing a smoother upgrade to downstream projects when the API changes. Another benefit is that it opens up the project to make breaking changes in a manageable way. So in a way, it would actually enable the project to make API changes that have been left behind because of upgrade scares.
BTW, I don't think the API necessarily needs to be 100% stable to start using v1+. It's perfectly fine to bump major versions relatively frequently and there's no requirement to backport fixes to old major versions.
The text was updated successfully, but these errors were encountered: