test: Add a test for the endpointslice example with endpoint pooling

Author: rg0now

examples/endpointslice-controller/README.md

@@ -4,25 +4,25 @@ The EndpointSlice operator is a "hybrid" Kubernetes controller that demonstrates
 
 ## Description
 
-Certain use cases cannot be fully implemented in a purely declarative style, for instance because the Kubernetes operator needs to manipulate an imperative API. Such is the case if the task is to implement an **endpoint-discovery service** to collect the endpoints for a Kubernetes service and program an underlying system, say, a service mesh proxy, with the discovered endpoints. Δ-controller can come in handy in such cases as well, by letting the difficult part of the operator, the endpoint-discovery pipeline, to be implemented in a declarative form, leaving only the reconciliation logic, which updates the imperative API based on the endpoints discovered by the declarative controller, to be written in imperative Go.
+Certain use cases cannot be fully implemented in a purely declarative style, for instance because a Kubernetes operator needs to manipulate an imperative API. Such is the case if the task is to implement an **endpoint-discovery service** in order to program an underlying system (say, a service mesh proxy) with the endpoints for a Kubernetes service (e.g., for load-balancing). Δ-controller can come in handy in such cases as well, by letting the difficult part of the operator, the endpoint-discovery pipeline, to be implemented in a declarative form, leaving only the reconciliation logic, which updates the imperative API based on the endpoints discovered by the declarative controller, to be written in imperative Go.
 
 This example demonstrates the use of Δ-controller in such a use case. The example code comprises two parts: an imperative **endpoint-discovery operator** that is written in Go using the Δ-controller API, and a declarative **controller pipeline** that automates the difficult part: generating the up-to-date list of endpoints for a Kubernetes Service based on the Kubernetes resources obtained from the API server.
 
 ### The controller pipeline
 
 The declarative controller pipeline spec is read from a YAML manifest. There are two versions:
-- `endpointslice-controller-spec.yaml`: this is the default spec, that will generate a separate view object per each (service, service-port, endpoint-address) combination. This is the one we discuss below.
-- `endpointslice-controller-gather-spec.yaml`: the alternative spec gathers all separate endpoint addresses into view object that will hold a list of all the endpoints addresses for a (service, service-port) combination. This is mostly the same as the default spec, but it contains a final "gather" aggregation stage that will collapse the endpoint addresses into a list. See the YAML spec for the details.
+- `endpointslice-controller-spec.yaml`: this is the default spec, which will generate a separate view object per each (service, service-port, endpoint-address) combination. This is the one we discuss below.
+- `endpointslice-controller-gather-spec.yaml`: the alternative spec gathers all endpoint addresses into a single view object per (service, service-port) combination. This pipeline is mostly the same as the default spec but it contains a final "gather" aggregation stage that will collapse the endpoint addresses into a list. See the YAML for the details.
 
-The default declarative pipeline to controllers:
-- the `service-controller` will watch the Kubernetes core.v1 Service API, generate a separate out object per each service-port, and load the resultant objects into a view called ServiceView.
-- the `endpointslice-controller` watches the objects from the ServiceView and the EndpointSlice objects from the Kubernetes discovery.v1 API, pair service view objects with the corresponding EndpointSlices to expand it with the endpoint-addresses, filter addresses with `ready` status, demultiplex the endpoint addresses into a separate object and converts the shape of the resultant objects into a simpler form, and then load the results into a view called EndpointView. 
+The default declarative pipeline defines to controllers:
+- the `service-controller` will watch the Kubernetes core.v1 Service API, generate a separate object per each service-port, and load the resultant objects into an internal view called ServiceView.
+- the `endpointslice-controller` watches the objects from the ServiceView and the EndpointSlice objects from the Kubernetes discovery.v1 API, pairs service view objects with the corresponding EndpointSlices to match it with the endpoint-addresses, filters addresses with `ready` status, demultiplexes the endpoint addresses into separate objects, converts the resultant objects into a simpler form, and then load the results into a view called EndpointView. 
 
-The idea is that the imperative controller will watch this EndpointView, which already contains the objects demultplexed and converted into the shape we want, instead of us having to write the imperative code to watch the Kubernetes API and perform the conversions ourselves. This helps cutting down development costs.
+The idea is that the imperative controller will watch this EndpointView to learn all the (service, service-port, endpoint-address) combinations in the form of a view object that is converted into a convenient shape that can be used just like any regular Kubernetes object. This is much simpler than writing the entire logic to watch the Kubernetes API and perform all the joins and conversions in go.
 
 #### The Service controller
 
-The task of this service is to generate a single object per each service-port in the watched Services. To simplify the task we will process only the Services annotated with `dcontroller.io/endpointslice-controller-enabled`. 
+The first controller will generate an object per each service-port per the watched Services to fill the ServiceView. To simplify the task we will process only the Services annotated with `dcontroller.io/endpointslice-controller-enabled`. 
 
 The pipeline is as follows.
 
@@ -36,11 +36,9 @@ The pipeline is as follows.
         kind: Service
    ```
 
-3. Create the **aggregation** pipeline. 
-
-   This contains a single aggregation with 3 stages:
-   - filter the Services annotated with `dcontroller.io/endpointslice-controller-enabled`. Note that we use the long-form JSONpath expression `$["metadata"][..."]` because the annotation contains a `/` that is incompatible with the simpler short-form,
-   - remove some useless fields and converts the shape of the resultant objects,
+3. Create the **aggregation** pipeline. The aggregation consists of 3 stages:
+   - filter the Services annotated with `dcontroller.io/endpointslice-controller-enabled`. Note that we use the long-form JSONpath expression format `$["metadata"][..."]` because the annotation contains a `/` that is incompatible with the simpler short-form,
+   - remove some useless fields and convert the shape of the resultant objects,
    - demultiplex the result into multiple objects by blowing up the `$.spec.ports` list.
 
    The pipeline is as follows:
@@ -98,14 +96,12 @@ The pipeline is as follows.
            - $.EndpointSlice.metadata.namespace
    ```
 
-4. Create the **aggregation** pipeline to convert the shape of the resultant, somewhat convoluted objects.
-
-   The aggregation pipeline again has multiple stages:
-   - set up the metadata, copy the ServiceView spec and the endpoints from the EndpointSlice, and create an `id` that will be used later to generate a unique stable name for the resultant objects,
+4. Create the **aggregation** pipeline to convert the shape of the resultant, somewhat convoluted objects.  The aggregation again has multiple stages:
+   - set up the metadata, copy the ServiceView spec and the endpoints from the EndpointSlice,
    - demultiplex on the `$.endpoint` list,
    - filter ready addresses,
    - demultiplex again, now on the `$.endpoint.addresses` field of the original EndpointSlice object, and 
-   - finally again convert the object shape: set a unique name by concatenating Service name with the hash of the object id (this name will be different per each (service, service-port, endpoint-address)) and copy the  relevant fields of the spec.
+   - finally convert the object into a simple shape and set a unique stable object name by concatenating Service name with the hash of the object spec.
 
    ```yaml
    "@aggregate":
@@ -115,32 +111,28 @@ The pipeline is as follows.
            namespace: $.ServiceView.metadata.namespace
          spec: $.ServiceView.spec
          endpoints: $.EndpointSlice.endpoints
-         id:
-           name: $.ServiceView.spec.serviceName
-           namespace: $.ServiceView.metadata.namespace
-           type: $.ServiceView.spec.type
-           protocol: $.ServiceView.spec.ports.protocol
-           port: $.ServiceView.spec.ports.port
-           targetPort: $.ServiceView.spec.ports.targetPort
      - "@unwind": $.endpoints
      - "@select":
          "@eq": ["$.endpoints.conditions.ready", true]
      - "@unwind": $.endpoints.addresses
      - "@project":
          metadata:
-           name:
-             "@concat":
-               - $.metadata.name
-               - "-"
-               - { "@hash": $.id }
            namespace: $.metadata.namespace
          spec:
            serviceName: $.spec.serviceName
            type: $.spec.type
-           port: $.id.port
-           targetPort: $.id.targetPort
-           protocol: $.id.protocol
+           port: $.spec.ports.port
+           targetPort: $.spec.ports.targetPort
+           protocol: $.spec.ports.protocol
            address: $.endpoints.addresses
+     - "@project":
+         "@merge":
+           metadata:
+             name:
+               "@concat":
+                 - $.spec.serviceName
+                 - "-"
+                 - { "@hash": $.spec }
    ```
 
 5. Set up the **target** to update the EndpointView view with the results.
@@ -154,11 +146,11 @@ The pipeline is as follows.
 
 ### The endoint-discovery operator
 
-The operator will be written in Go. This will watch the EndpointView view as generated by the declarative pipeline for updates and implement the reconciliation logic. Again, the idea is that we don't have to write the tedious join+aggregation pipeline in imperative Go, instead we can implement this logic in a purely declarative style.
+The endoint-discovery operator will process the events on the EndpointView view. Since the reconciliation logic often needs to interact with an imperative API (say, to program a service-mesh proxy), this part will be written in Go. Recall, the idea is that we don't want to write the tedious join+aggregation pipeline in imperative Go; rather we implement just a minimal part in Go while the complex data manipulation logic will be handled in a purely declarative style (see above).
 
-The Go code itself will differ too much from a standard [Kubernetes operator](https://book.kubebuilder.io/), just with the common packages taken from Δ-controller instead of the usual [Kubernetes controller runtime](https://pkg.go.dev/sigs.k8s.io/controller-runtime).
+The Go code itself will not differ too much from a standard [Kubernetes operator](https://book.kubebuilder.io/), just with the common packages taken from Δ-controller instead of the usual [Kubernetes controller runtime](https://pkg.go.dev/sigs.k8s.io/controller-runtime).
 
-1. Define the usual Kubernetes operator boilerplate by importing packages, defining constants, parsing the command line arguments, and setting up a logger.
+1. Define the usual boilerplate: import  packages, define constants, parse command line arguments, and set up a logger.
 
 2. Create a Δ-controller manager:
 
@@ -169,15 +161,15 @@ The Go code itself will differ too much from a standard [Kubernetes operator](ht
    if err != nil { ... }
    ```
 
-3. Load the declarative operator pipeline from a file held in `specFile` (see later):
+3. Load the declarative controllers we have implemented above:
 
    ```go
-   if _, err := doperator.NewFromFile("endpointslice-operator", mgr, specFile, opts); err != nil {
+   if _, err := doperator.NewFromFile("endpointslice-operator", mgr, "endpointslice-controller-spec.yaml", opts); err != nil {
       ...
    }
    ```
 
-4. Define the controller that will reconcile the events generated by the operator:
+4. Define the controller that will reconcile the events generated by the operator (this will be written below):
 
    ```go
    if _, err := NewEndpointSliceController(mgr, logger); err != nil { ... }
@@ -213,7 +205,7 @@ The constructor will be called `NewEndpointSliceController`:
    if err != nil { ... }
    ```
 
-3. Create a source for the `EndpointView` (this will be generated by the declarative part):
+3. Create a source for the `EndpointView` (recall, this is the view that we load from the declarative part):
 
    ```go
    src, err := dreconciler.NewSource(mgr, opv1a1.Source{
@@ -224,18 +216,13 @@ The constructor will be called `NewEndpointSliceController`:
    if err != nil { ... }
    ```
 
-4. And finally set up a watch that will bind our controller to the above source so that every time
-   there is an update on the `EndpointView` our `Reconcile(...)` function will be called with
-   the event to process it.
+4. And finally set up a watch that will bind our controller to the above source so that every time there is an update on the `EndpointView` our `Reconcile(...)` function will be called with the update event.
 
    ```go
    if err := c.Watch(src); err != nil { ... }
    ```
 
-And finally the most important part, the `Reconcile(...)` function. Normally, this would be the
-function that implements the business logic of our operator, say, by controlling a proxy with the
-endpoints discovered by our operator. Here for simplicity we will just log the events and return a
-successful reconcile result.
+And finally the most important part, the `Reconcile(...)` function. Normally, this would be the function that implements the business logic of our operator, say, by programming a proxy with the endpoints discovered by our operator. Here for simplicity we will just log the events and return a successful reconcile result.
 
 ```go
 func (r *endpointSliceController) Reconcile(ctx context.Context, req dreconciler.Request) (reconcile.Result, error) {
@@ -261,6 +248,8 @@ func (r *endpointSliceController) Reconcile(ctx context.Context, req dreconciler
 }
 ```
 
+And that's all: the operative part is only some 200 lines of code, at least an order of magnitude less than if we had to implement the entire operator logic in an imperative style.
+
 ## Testing
 
 Take off from an empty cluster and start the EndpointSlice controller:
@@ -270,7 +259,7 @@ cd <project-root>
 go run examples/endpointslice-controller/main.go -zap-log-level info -disable-endpoint-pooling
 ```
 
-Deploy a sample deployment with to endpoints:
+Deploy a sample deployment with two endpoints:
 
 ``` console
 kubectl create deployment testdep --image=registry.k8s.io/pause:3.9 --replicas=2
@@ -299,11 +288,11 @@ spec:
 EOF
 ```
 
-The controller will emit 4 `Add` events for each object generated by the EndpointSlice controller, one per each (service, service-port, endpoint-address) combination:
+The controller now will emit 4 `Add` events for each object generated by the EndpointSlice controller, one per each (service, service-port, endpoint-address) combination:
 
 ``` console
 INFO	endpointslice-ctrl	Add/update EndpointView object	{"name": "testsvc-b9p5tj", "namespace": "default", "spec": "map[string]interface {}{\"address\":\"10.244.1.69\", \"port\":80, \"protocol\":\"TCP\", \"serviceName\":\"testsvc\", \"targetPort\":80, \"type\":\"ClusterIP\"}"}
-INFO	endpointslice-ctrl	Add/update EndpointView object	{"name": "testsvc-dg9n0j", "namespace": "default", "spec": "map[string]interface {}{\"address\":\"10.244.1.229\", \"port\":80, \"protocol\":\"TCP\", \"serviceName\":\"testsvc\", \"targetPort\":80, \"type\":\"ClusterIP\"}"}
+INFO	endpointslice-ctrl	Add/update EndpointView object	{"name": "testsvc-8x1zl2", "namespace": "default", "spec": "map[string]interface {}{\"address\":\"10.244.1.69\", \"port\":8843, \"protocol\":\"TCP\", \"serviceName\":\"testsvc\", \"targetPort\":8843, \"type\":\"ClusterIP\"}"}
 INFO	endpointslice-ctrl	Add/update EndpointView object	{"name": "testsvc-6kq57l", "namespace": "default", "spec": "map[string]interface {}{\"address\":\"10.244.1.90\", \"port\":80, \"protocol\":\"TCP\", \"serviceName\":\"testsvc\", \"targetPort\":80, \"type\":\"ClusterIP\"}"}
 INFO	endpointslice-ctrl	Add/update EndpointView object	{"name": "testsvc-43s657", "namespace": "default", "spec": "map[string]interface {}{\"address\":\"10.244.1.90\", \"port\":8843, \"protocol\":\"TCP\", \"serviceName\":\"testsvc\", \"targetPort\":8843, \"type\":\"ClusterIP\"}"}
 ```
@@ -313,7 +302,7 @@ Scale the deployment to 3 pods: this will generate another two further `Add` eve
 ``` console
 kubectl scale deployment testdep --replicas=3
 ...
-INFO	endpointslice-ctrl	Add/update EndpointView object	{"name": "testsvc-8x1zl2", "namespace": "default", "spec": "map[string]interface {}{\"address\":\"10.244.1.69\", \"port\":8843, \"protocol\":\"TCP\", \"serviceName\":\"testsvc\", \"targetPort\":8843, \"type\":\"ClusterIP\"}"}
+INFO	endpointslice-ctrl	Add/update EndpointView object	{"name": "testsvc-dg9n0j", "namespace": "default", "spec": "map[string]interface {}{\"address\":\"10.244.1.229\", \"port\":80, \"protocol\":\"TCP\", \"serviceName\":\"testsvc\", \"targetPort\":80, \"type\":\"ClusterIP\"}"}
 INFO	endpointslice-ctrl	Add/update EndpointView object	{"name": "testsvc-8zbi3v", "namespace": "default", "spec": "map[string]interface {}{\"address\":\"10.244.1.229\", \"port\":8843, \"protocol\":\"TCP\", \"serviceName\":\"testsvc\", \"targetPort\":8843, \"type\":\"ClusterIP\"}"}
 ```
 

examples/endpointslice-controller/endpointslice-controller-gather-spec.yaml

@@ -47,8 +47,8 @@ controllers:
       "@aggregate":
         - "@project":
             metadata:
-              name: $.EndpointSlice.metadata.name
-              namespace: $.EndpointSlice.metadata.namespace
+              name: $.ServiceView.metadata.name
+              namespace: $.ServiceView.metadata.namespace
             spec: $.ServiceView.spec
             endpoints: $.EndpointSlice.endpoints
             id:
@@ -65,17 +65,21 @@ controllers:
             - $.id
             - $.endpoints.addresses
         - "@project":
-            # use @merge so that expressions are applied in order
-            "@merge":
-              - {metadata: $.metadata}
-              - {spec: $.spec}
-              - {"$.spec.addresses": $.endpoints.addresses}
-              - "$.metadata.name":
-                  "@concat":
-                    - $.id.name
-                    - "-"
-                    - $.id.protocol
-                    - "-"
-                    - $.id.port
+            metadata:
+              namespace: $.metadata.namespace
+              name:
+                "@concat":
+                  - $.id.name
+                  - "-"
+                  - $.id.protocol
+                  - "-"
+                  - $.id.port
+            spec:
+              serviceName: $.spec.serviceName
+              type: $.spec.type
+              port: $.spec.ports.port
+              targetPort: $.spec.ports.targetPort
+              protocol: $.spec.ports.protocol
+              addresses: $.endpoints.addresses
     target:
       kind: EndpointView