add rpc call for PeerBlockPool

[rewantsoni]

Add a new RPC call PeerBlockPool to enable one-way mirroring between the block pools.

The rpc call is initiated from the primary cluster which wants to mirror the pool, the server receives the request and does the following:

1. Enable RBD Mirror Daemon
2. Enable Mirroring on the Block Pool in the request
3. Create the bootstrap secret and set the bootstrap secret ref on the Block Pool in the request.

Depends on:

1. cephblockpool: allow updation of mirroring field from different components #2480

[openshift-ci]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: rewantsoni
Once this PR has been reviewed and has the lgtm label, please assign jarrpa for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[leelavg]

The rpc call is initiated from the primary cluster which wants to mirror the pool, the server receives the request and does the following

• a bit incomplete (at-least for me), by above do you mean the server is running in "another" cluster (maybe secondary?) and primary cluster wants to send over the info to secondary cluster?
• through out app lifecycle, does primary and secondary change identities and become the opposite? if yes, should we only use server and client terminology for all operations?

Let me know if you don't want review on draft PRs, I need to review this PR again as I'm not totally upto speed w/ RDR.

[leelavg]

any reason in not using creatorupdate from controller util?

[rewantsoni]

I was thinking about the case when we run MaintenanceMode (this requires the RBD mirror to be scaled down). If a new PeerBlockPool call is received while MaintenacneMode is in progress it and we use CreateOrUpdate, it will interfere with it.

[leelavg]

fair enough, does the owner scale up after the maintenance mode?

[rewantsoni]

Yes, that would be the responsibility of the controller executing the maintenance mode

[leelavg]

either make this RPC idempotent or ensure different failure for resource already exists requests.

[leelavg]

I believe the errors are a bit misleading (same for remaining), basically the function asks for enabling mirroring and if you didn't find the source why are we at this line 🤔?

by source I mean, block pool, at the start why can't we return if we didn't find the blockpool? basically we are checking blockpool existence indirectly three times throughtout this function.

[rewantsoni]

updated to return at the beginning of the function if the blockpool doesn't exist

[rewantsoni]

• a bit incomplete (at-least for me), by above do you mean the server is running in "another" cluster (maybe secondary?) and primary cluster wants to send over the info to secondary cluster?

Yes right, we will have two clusters, one running the server(secondary) and other cluster as a client who sends the request (StorageClusterPeer; primary). The primary cluster sends over the contents of the bootstrap secret (that is pool and token fields) along with the blockPool Name it wants to mirror.

• through out app lifecycle, do primary and secondary change identities and become the opposite? if yes, should we only use server and client terminology for all operations?

We are implementing peering in one-way replication, for RDR both primary and secondary clusters will act as both a server and a client, to be more specific,
StorageClusterPeer on the Primary Cluster will be a client for the API Server on the Secondary Cluster and StorageClusterPeer on the Secondary Cluster will be a client for the API Server on Primary Cluster.

Let me know if you don't want review on draft PRs, I need to review this PR again as I'm not totally upto speed w/ RDR.

Yes, I would like reviews on the draft PRs I have tested the PR. I need to complete unit tests and uninstall flow (probably as a part of a different PR).

[iamniting]

/test ocs-operator-bundle-e2e-aws

[rchikatw]

I believe that this task can be completed without any errors in the return type.

[rewantsoni]

I was following the same function defination that was there for the other two managers.

[leelavg]

maybe we can use utils to construct the type?

Suggested change

	blockPoolObj := &rookCephv1.CephBlockPool{}
	err := c.client.Get(ctx, types.NamespacedName{Name: blockPoolName, Namespace: c.namespace}, blockPoolObj)
	blockPool := &rookCephv1.CephBlockPool{}
	blockPool.Name = blockPoolName
	blockPool.Namespace = c.namespace
	err := c.client.Get(ctx, client.ObjectKeyFromObject(blockPool), blockPool)

similar at remaining places, it just saves us from constructing a struct.

[leelavg]

just return ctrl.SetControllerReference....

[leelavg]

is there any chance that two clients call this rpc referring same block pool? if yes, the idea is to just fail one client & make it retry?

[rewantsoni]

Yes two clients can call this rpc referring to the same block pool, in that case it will fail one and make it retry

[leelavg]

fair enough, does the owner scale up after the maintenance mode?

[leelavg]

maybe always try to create and fail if error is other than exists? or do if !kerrors.IsNotFound(err) { create }

[leelavg]

I would like reviews on the draft PRs

• ack, I usually open all for reviews but if untested I put a /hold flag, just saying

can resolved my previous addressed comments, thanks.

[leelavg]

@rewantsoni this PR was marked as a dependent on which a comment was made until which invalidates the changes in this PR, let me know if this still need a review, thanks.

[leelavg]

I don't see the result is different if the resource is not found here, as such don't make any differentiation as the returned error already contains the reason.

[leelavg]

any reason in making two calls rather than a single create?

[rewantsoni]

We need one rbdMirror for the cluster, hence I am checking if it already exists, and create it only if it doesn't

[leelavg]

It's guaranteed that the call to SetBootstrap will fail first time since the resource version changes due to update in EnableBlock func. I believe we need to get fresh copy every time we want to update I guess.

[rewantsoni]

I will check it again

[rewantsoni]

/retest-required

[openshift-ci]

@rewantsoni: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/ocs-operator-bundle-e2e-aws	d520db2	link	true	/test ocs-operator-bundle-e2e-aws

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.