Add design for backup repository configurations

[Lyndon-Li]

Add design for backup repository configurations for issue #7620, #7301

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 58.82%. Comparing base (9c20b5c) to head (c01c679).
Report is 49 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #7963      +/-   ##
==========================================
+ Coverage   58.79%   58.82%   +0.02%     
==========================================
  Files         345      346       +1     
  Lines       28766    28892     +126     
==========================================
+ Hits        16914    16995      +81     
- Misses      10423    10468      +45     
  Partials     1429     1429              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[mpryc]

In general I do like the design.

[shubham-pampattiwar]

Should we also document the list of parameters that are configurable and the ones that are hard coded for kopia repo ?

[Lyndon-Li]

cache-limit-mb and enable-compression are the supported parameters.
There are no other parameters that should be exposed to users, so they are not relevant to this design. But we can find all the parameters for kopia from the code at https://github.com/vmware-tanzu/velero/blob/main/pkg/repository/udmrepo/kopialib/backend/common.go

[Lyndon-Li]

@shubham-pampattiwar Made some slight changes, please review again. Thanks.

[shubham-pampattiwar]

/lgtm

[mpryc]

I also think it's worth considering allowing other repo configuration options to be configurable via this design. Namely thinking of different kopia repo options e.g.:
https://github.com/wawa0210/velero/blob/89c10ddcc04e4dc7354f284434c2ddb8c121780c/pkg/repository/udmrepo/repo_options.go#L63-L65

[mpryc]

@weshayutin ^^

[Lyndon-Li]

Let's do this incrementally in future based on the requirements.
For now, the 3 options you mentioned are too advanced(especially for the hash algorithm and chunking algorithm, without a good knowledge of the deduplication and the status of their own data, users cannot decide a better value than the default ones) and not general enough in terms of unified repository concepts(many backup repositories/storages are using private chunking/hashing algorithms and don't allow users to change, because those have heavy impacts on the QOS of the repo).

[Lyndon-Li]

@mpryc @shubham-pampattiwar @blackpiglet @reasonerjt
After some discussions, we made below changes to this design:

1. Move configurations for all repo types into one configMap. Previously one configMap for one repo type
2. Use name to find the configMap and require the name to be explicitly set to velero server parameters. Previously use label to find the configMap and don't require the label to be explicitly set to velero
3. Add a installation flag to set the velero server parameter

Please have further review. Thanks.

[shubham-pampattiwar]

@Lyndon-Li I am fine with either of the approaches. Would like to know why the change in approach though ?

[Lyndon-Li]

@Lyndon-Li I am fine with either of the approaches. Would like to why the change in approach though ?

After some discussion, we would like to unify the way to set configurations through configMap (including node-agent configs, backup repository configs and maintenance job configs) to velero:

• The configMap should be always searched by name
• The configMap name should be set to velero server/node-agent at start time, though users may be allowed to change the content of the configMap later. Otherwise, the configMap will be ignored

The would help the downstream users (which integrate velero) to better control velero's behavior in a consistent way. cc @reasonerjt

[reasonerjt]

Is the step of adding label still needed?

[Lyndon-Li]

No, it is not required, I have removed it.

[reasonerjt]

This could be optional b/c we can hard code a configmap name and pass it to the velero server, and the user will only need to create the configmap with the hard-coded name.

If we took this approach ^ we may not need to update the installation flow, bearing in mind that when velero is installed it's very possible the namespace of velero is not created.

[Lyndon-Li]

We will remove this installation flag and keep the velero server flag.
By default installation using velero CLI, the server flag is not set; users need to modify the deployment to set the flag and wait velero server to restart.

[reasonerjt]

I wanna clarify, it's the RepoConfig will be populated to the CR right? If that's the case, should the field in the backup repo CR be singular (repositoryConfig) or plural (repositoryConfigs)? Singular may be slightly better?

[Lyndon-Li]

Changed the field in the CRD to repositoryConfig

[kaovilai]

Will velero be watching for changes to CM? or will it only parse the value at startup? Or per backup?

[shubham-pampattiwar]

I think its at startup and per backup, @Lyndon-Li lets clarify that

[Lyndon-Li]

When a backupRepository CR is created, this CM is visited. So Velero doesn't watch the changes to the CM, but users are allowed to change the content during runtime, the changes will effect for the next created backupRepository. See below statement in the design:
When the backup repository CR is created by the BackupRepository controller, the configurations in the configMap are copied to the ```repositoryConfig``` field.