Able to omit storageClassName to use the default storage class of Kubernetes

[cofyc]

Signed-off-by: Yecheng Fu fuyecheng@pingcap.com

What problem does this PR solve?

fixes #1478

I've manually tested with the following YAML:

apiVersion: pingcap.com/v1alpha1
kind: TidbCluster
metadata:
  name: basic
spec:
  version: v3.0.8
  timezone: UTC
  pvReclaimPolicy: Delete
  pd:
    baseImage: pingcap/pd
    replicas: 3
    requests:
      storage: "1Gi"
    config: {}
  tikv:
    baseImage: pingcap/tikv
    replicas: 3
    requests:
      storage: "1Gi"
    config: {}
  tidb:
    baseImage: pingcap/tidb
    replicas: 2
    service:
      type: ClusterIP
    config: {}

What is changed and how does it work?

Check List

Tests

• Unit test
• E2E test
• Stability test
• Manual test (add detailed scripts or steps below)
• No code

Code changes

• Has Go code change
• Has CI related scripts change
• Has Terraform scripts change

Side effects

• Breaking backward compatibility

Related changes

• Need to cherry-pick to the release branch
• Need to update the documentation

Does this PR introduce a user-facing change?:

ACTION REQUIRED: `--default-storage-class-name` and `--default-backup-storage-class-name `are abandoned, storage class defaults to Kubernetes default storage class right now. If you have set default storage class different than Kubernetes default storage class, please set them explicitly in your tidb cluster helm or YAML files.

[cofyc]

We shouldn't set default value for storageClassName in defaulting phase.

nil storageClassName in PVC is a valid value that indicates the default storage class of the cluster to be used.

[cofyc]

ditto

[cofyc]

ditto

[cofyc]

apply the same change from #1409 to backup/restore spec

[cofyc]

ditto

[cofyc]

ditto

[cofyc]

if tc.Spec.PD.StorageClassName is not set, try to use the default storage class of tidb-operator. If the default value of tidb-operator is not set, try to use the default storage class of Kubernetes cluster.

[cofyc]

ditto

[cofyc]

• use user-supplied class if provided
• use tidb-operator default class if not-empty (defaults to "standard" for backward compatibility)
• use Kubernetes cluster default class

[cofyc]

if we want to use the default storage class of Kubernetes cluster by default, we need to empty the default values of --default-storage-class-name and --default-backup-storage-class-name.

cc @aylei what do you think?

[aylei]

Yes, I think so

[aylei]

Looks like that this change is not backward compatible.

Thinks a user upgrade operator with defaultStorageClassName empty, the storageClass of current PVC and PVCTemplate will be synced to the cluster default, which breaks reconciliation because storageClassName is immutable IIRC

[cofyc]

ditto

[Yisaer]

I'm not sure is it reasonable to use kubernetes cluster default storageClass instead of throwing the error to mention the users to set the proper storageClass when both Operator and TidbCluster storageClassName are not setted. @cofyc @aylei

[cofyc]

the same YAML can be applied to different clusters that may have different default storage implementation. it helps the user to try our example YAML in any Kubernetes provider without modification.

If users have no special requirements, they don't need to care about what storage implementation the default storage class is. It's a system administrator's duty to maintain it. Unlike the network, the cluster can have more than one storage providers.

[cofyc]

actually, we have a hard-coded default storage class standard...
if we want to apply YAML to a cluster in which the default class is not "standard", we need to remove this hard-coded value, see discussion.

[aylei]

LGTM, thanks!

[aylei]

Yes, I think so

[aylei]

why this is still mandatory?

[aylei]

Looks like that this change is not backward compatible.

Thinks a user upgrade operator with defaultStorageClassName empty, the storageClass of current PVC and PVCTemplate will be synced to the cluster default, which breaks reconciliation because storageClassName is immutable IIRC

[aylei]

Having a default storage class name in controller is problematic, even if we avoid mutating the storage-class when update resources, there is still a problem when we delete the StatefulSet with orphan dependents and the controller eventually re-create the StatefulSet with a different storageClass.

IMHO:

• To be backward compatible, we should at least do not mutate storageClass when update, deleting with orphan dependents is rare and could be documented as an known issue if it happens with storageClass name change at the same time;
• For better sematic, the defaultStorageClassName should work like the default storageClass name like kubernetes, i.e., set the storageClass in mutating webhook, of course, the operator one should be prior to the kubernetes one

[aylei]

And I think this PR deserves a release note, maybe ACTION REQUIRED

[cofyc]

It's better to abandon --default-storage-class-name and --default-backup-storage-class-name flags... what do you think?

The desired PVC spec should not depend on something which is not in CRDs and can be changed.

[cofyc]

In tidb-operator 1.0, I guess most people who use tidb-cluster helm chart should have set storage class names in their value files.
Of course, we should add an ACTION REQUIRED release note to ask people to set storage class names in CRD objects explicitly if they didn't and the default storage class of the Kubernetes cluster is not the storage class they're using.

If we really want to allow people to configure an operator-level default value for storage class names, we should update the user object in the defaulting phase before storing it in the API server.

[cofyc]

cc @weekface what do you think?

[aylei]

I agree, users (or their organization) should make sure the stored TidbCluster CR has storageClass full-filled, either through kubernetes defaults, operator webhook defaults or other mechanisms.

And I agree we should deprecate the default-storage-class-name flag of tidb-controller-manager.

It is an orthogonal problem for tidb-operator chart, if we want to keep offering the operator level defaults in v1.1.0, we need a webhook based implementation.

[weekface]

cc @weekface what do you think?

Agree.

People who use tidb-cluster helm chart have set storage class names in their value files.

[cofyc]

I agree, users (or their organization) should make sure the stored TidbCluster CR has storageClass full-filled, either through Kubernetes defaults, operator webhook defaults or other mechanisms.

After the change I suggested, TidbCluster CR can have no storage class filled if they want to use Kubernetes default storage class and this will not trigger the upgrade of tidb cluster in tidb-operator because the desired volume claim templates in statefulset do not have storage class filled too.

If the system administrator changed the default storage class in the cluster, the storage class of the PVC created by statefulset controller or our backup/restore controller will not be changed until the PVC is deleted by the user. The newly created PVC will use the new default storage class. I think it's reasonable and safe.

[aylei]

LGTM

[cofyc]

I've commented on the wrong page (the comment have been deleted)

[Yisaer]

LGTM

[cofyc]

@aylei @weekface PR is updated, PTAL again.

[aylei]

LGTM

[sre-bot]

cherry pick to release-1.1 in PR #1589