listener, srds, rds, vhds: replace FactoryContext with ServerFactoryContext in router/...

[stevenzzzz]

replace FactoryContext with ServerFactoryContext in router/..., So that SRDS/RDS/VHDS subscription could outlive their creator listener.

Signed-off-by: Xin Zhuang stevenzzz@google.com

Description:replace FactoryContext with ServerFactoryContext in router/..., So that SRDS/RDS/VHDS subscription could outlive their creator listener.
This PR:

• Let ListenerImpl only pass down the dynamic_init_manager_ it owns to its children entities (HCMConfig, SRDS-Subscription, RDS-Subscription etc).
• Construct a tree like init-manager & target dependency graph, by adding a init-target at each listener-impl, srds-subscription, rds-subscription.
• Replace FactoryContext with ServerFactoryContext, a SRDS/RDS subscription can out live its creator listener impl for real now.

Risk Level: Med
There is one behavior change, that previously during a listenerImpl's initManager initializing [which could be either Server::initManager or Listener::initManager], if there are multiple SRDS or RDS responses that contains sub-resource, their targets are added to the listener::initManager() and will bar on the listerner::initManager() ready. With this modification, the sub-resources contains in the second response of a SRDS/RDS may not be able to bar the local-init-manager's ready(), if the first response's sub-resources are initialized and called ready on the SRDS's local init-manger ready() aheader of the second's response's arrival.
before==> SRDS(A, B, C) bar Listener::initManager(),
now ===> SRDS::local_init_manager bars Listener::initManager(), and (A, B) bars on local_init_manager, (C) in a second response may or may not bar on Listener::initManager() depending on if (A,B) finish initialization before (C)'s arrival.
Testing: unit test
Docs Changes:
Release Notes:
[Optional Fixes #Issue]
[Optional Deprecated:]

[htuch]

General approach looks good, thanks, but I think there's still some issues around validation visitor inference with this PR.
/wait

[htuch]

Nit: please avoid gratuitous whitespace changes.

[stevenzzzz]

done

[htuch]

I think this still might not be correct; what if you have an inline route in an HCM that is delivered via a Listener in a LDS message? The validation should be dynamic.

[stevenzzzz]

revert it. This PR is supposed to be a child PR of #9621.

But we can also work on this PR to solve the problem in one shot. :)

[stevenzzzz]

if we don't want FactoryContext to contain a messageValidationVisitor() method, I can do another cleanup PR which will pipe the validator from ListenerImpl --> ... --> HCM::Config.

[htuch]

This makes sense to me and is roughly how I was envisaging transitive init managers working. @mergeconflict @lambdai did you have any thoughts here?

[lambdai]

LGTM. Based on my understanding this field initialization order doesn't introduce initialized-after-detroy

[mergeconflict]

I think it's fine, if it's needed.

[stevenzzzz]

ACK

[lambdai]

When the ListenerImpl is in destroyed, listener_init_target_ is destroyed prior to init_watcher_
Is it possible it triggered init_watcher_ in between?

[stevenzzzz]

ListenerImpl destruction is supposed to be an "atomic" operation in master thread, same as listener_init_target_'s triggering. I think it's fine here?

[lambdai]

Sorry for the churn. I agree it's fine. Although for different reason :)
On top of ~ListenerImpl() there might be ListenerManagerImpl::startWorkers() if this listener is the last uninitialized listener. It's fine because this destroying listener won't in the start list

[stevenzzzz]

ACK.

[mergeconflict]

I just left a few comments here regarding init manager / target / handle usage (I didn't pay attention to anything else).

[mergeconflict]

I know it was already like this, but I don't think this needs to be a unique_ptr.

[stevenzzzz]

done

[mergeconflict]

This doesn't really need to be a unique_ptr either. I'd recommend always creating the target, so that you don't have to worry about ASSERT(listener_init_target_ != nullptr), and just add it to the parent's server's init manager if workers haven't been started.

[stevenzzzz]

done

[mergeconflict]

Might want to call this parent_init_watcher_ or local_init_watcher_ (I'm not sure which) for consistency.

[stevenzzzz]

moved to config-provider-framework now. named to local_init_watcher_.

[stevenzzzz]

latest init manager related changes still lgtm

Thanks!

[mergeconflict]

I think it's fine, if it's needed.

[mergeconflict]

init manager related changes lgtm, thanks!

[mergeconflict]

latest init manager related changes still lgtm

[stevenzzzz]

Thanks

[junr03]

@stevenzzzz sorry for the delay here. I have been a bit swamped these days. Will prioritize taking a look tomorrow.

[junr03]

thanks for working on this. A few comments

[junr03]

Suggested change

	* @return ProtobufMessage::ValidationContext& validation visitor for xDS&static configuration
	* @return ProtobufMessage::ValidationContext& validation visitor for xDS and static configuration

[stevenzzzz]

done

[junr03]

I need to read the rest of the PR, but given the change below which add messageValidationVisitor() to the CommonFactoryContext, why is this function also taking a validator as a parameter?

[junr03]

@stevenzzzz I am still wondering about this

[stevenzzzz]

sorry, missed this comment. I think you mean "add a validation visitor context"?
It's because we can't tell from the current ServerFactoryContext if the static validator or the dynamic validator should be used.
For example, a static Route config provider could be put into a dynamic(LDS) listener's config, in which case we should use the dynamic validator instead (per Harvey).
For that, we will have to pass validator alongside the Serverfatorycontext.

[junr03]

I see, so only the code that is building the config provider knows if it should be using the static or dynamic visitor, but the constructor itself does not. Hence why the caller of createStaticRouteConfigProvider needs to pass the intended visitor.

Not to bike shed, but it seems that we have gone in one direction here, and the opposite in the ListernerImpl constructor where we used to pass the validator reference but now we decide inside the constructor. Should we pass an added_via_api boolean here and have the constructor decide?

[stevenzzzz]

IMHO, I'd like the validator choice made as close to the consumer entity(in this case, the listenerImpl) as possible, which provides better modularity.

The listener could make the decision by itself as there is a somewhat hacky paramter add_via_api in its constructor, the added_via_api information could be deducted by any RDS-config-provider or any subscription-initiated config-provider,
but not in static config provider: its context doesn't provide enough information for making the choice.

[junr03]

Should we pass an added_via_api boolean here and have the constructor decide?

Right, that is why I was suggesting if we should hint the static config provider as well (albeit I have not looked if we have access to the same hint when we create this config provider, but my intuition tells me we do). I am not sure what the right answer here is. My point is that we seem to have gone in opposite directions where we could have the same setup.

Perhaps the next reviewer can state their preference.

[stevenzzzz]

discussed this w/ Harvey before, passing the correct validator is preferred over hinting (passing the added_via_api signal). Agreed it's a preference thing as to if we want to keep all the places have the same interface.

[junr03]

Suggested change

	// Local manager that tracks the subscription's sub-resources(RDS subscriptions) initialization.
	// Local manager that tracks the subscription's sub-resources initialization. For example, RDS in LDS.

Because RDS is just one example, right?

[stevenzzzz]

done

[junr03]

why did this move in order?

[stevenzzzz]

revert it. It's unnecessary now.

[mattklein123]

ping on the revert

[stevenzzzz]

pong.
I think I updated this in another backup branch, oops.

[junr03]

Suggested change

	// directly..
	// directly.

[stevenzzzz]

thanks

[junr03]

Ok, I think I follow what happened here in terms of changing having different init managers and resetting this watch, vs having the new target and arrangement of firings.

However, there are some outdated comments throughout this file. The above for instance, as this destructor does not any longer reset the init_watcher_. Do you mind going through the file and deleting and updating comments. I think the process here is tricky and being extra crisp on what is going on would make the next person reading this have an easier time.

[stevenzzzz]

oops, this is back!
I have a major git sync problem with master and had to resolve w/ upstream master one by one. I will do a around of comment cleanup.

[stevenzzzz]

At a high level this LGTM. @wgallagher do you mind reviewing just the xDS plumbing part of the change?

@stevenzzzz given how complicated this code is, can we potentially get an integration test that covers a very complex init case? IMO this shouldn't be that hard given all the plumbing we have for writing xDS integration tests?

/wait

PTAL
Sorry for the delayed reply, lots going on recently. I added a integration test w/ name listener_lds_integration_test.cc.

[mattklein123]

Thanks for a ton for adding the integration test, nice work. Small comment nit and needs a format fix.

/wait

[mattklein123]

s/will block/will not block ?

[stevenzzzz]

aah, that's the whole point of this test. :0

[stevenzzzz]

Thanks!

[mattklein123]

CI issue looks legit. Can you merge master and take a look?

/wait

[stevenzzzz]

probably because of difference between libc++ and libstdc++, can't reproduce the error on my local box.

[stevenzzzz]

/retest
not sure if the failing test is related to this PR.

[repokitteh-read-only]

🤷‍♀️ nothing to rebuild.

🐱

Caused by: a #9779 (comment) was created by @stevenzzzz.

see: more, trace.

[mattklein123]

Thanks!

[stevenzzzz]

thank you.

…

On Tue, Mar 3, 2020 at 7:44 PM Matt Klein ***@***.***> wrote: Merged #9779 <#9779> into master. — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#9779?email_source=notifications&email_token=AA2I6TBYKXLZQ7UU3X5JRCLRFWP5LA5CNFSM4KKLLZD2YY3PNVWWK3TUL52HS4DFWZEXG43VMVCXMZLOORHG65DJMZUWGYLUNFXW5KTDN5WW2ZLOORPWSZGOXBY23DQ#event-3094457742>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AA2I6TF6PDNZP5I43GPD2QTRFWP5LANCNFSM4KKLLZDQ> .

-- Xin Zhuang