fix(Helm)!: Refresh helm

[DiamondJoseph]

Re-applies blueapi specific configuration over the result of a fresh helm create blueapi, recovering where we had previously removed configuration that was thought not necessary.

Breaking changes to the helm chart:

• Ingress form changes:
  create is now enabled
host is now ``` hosts:
  • host: foo.diamond.ac.uk
    paths:
    • path: /
      pathType: Prefix```

Changes worth considering:

• Can define arbitrary volumes, volumeMounts
• Liveness/Readiness probes use new /healthz endpoints

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 94.44%. Comparing base (3f6fd8c) to head (a275362).
Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #880   +/-   ##
=======================================
  Coverage   94.44%   94.44%           
=======================================
  Files          41       41           
  Lines        2537     2537           
=======================================
  Hits         2396     2396           
  Misses        141      141           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[callumforrester]

Feels like this should really go in behind #871

[DiamondJoseph]

.Values.tracing.otlp must exist for us to have reached here, but protocol could be None, so use the default.

[callumforrester]

I'll be honest, I'm not very happy about merging this. The majority of helm changes we have merged have included bugs/regressions, we should have done something like #871 a long time ago. Most of the time we have done small, incremental changes to the helm chart so we could feel more confident, but even those broke. This, meanwhile, is a big change to a lot of high-risk areas. #871 is a good start but is not a comprehensive test suite. I think to merge this I will need:

• More tests
• An analysis of breaking changes
• A migration guide to go into the changelog
• Any areas of uncertainty we can explore on the test rigs

[callumforrester]

Is there any point in adding HPA to an inherently stateful service?

[DiamondJoseph]

Not much, but I could see a use case if we suddenly decide to start running a bunch of simulated device beamlines, scaling out as they become busy (if our readiness probe started reflecting whether the pod had an active task perhaps). End of the day, it comes for free with your helm create and if we remove it, it's one more thing to remove every time we refresh helm create again. I don't think it harms anyone to have it available but turned off.

[callumforrester]

I think we may have already discussed the pros and cons of getting rid of this, but I don't remember, I think it should stay

[DiamondJoseph]

It is no longer required, as the blueapi release tag is no longer the version of the Helm chart, and therefore does not require being a semantic version. If you want to enforce that the blueapi container release is a semver it can be restored, but this was added for issues publishing the Helm chart.

[callumforrester]

Should: I think these were removed because they caused problems, are you trying to fix with #884?

[DiamondJoseph]

Yes, that's the purpose of 884.

[DiamondJoseph]

#884 has now gone in, so the probes now get /healthz which returns a 200 code

[DiamondJoseph]

Differences by document with ingress/tracing/initContainer enabled:

main config: unchanged
otel-config: unchanged
init container config:

No longer mounts enabled incorrectly in the initContainer applicationConfig. See also potential fix in comments in #887
ConfigMap and yaml file names adjusted
release-name-blueapi-service:

Gain labels
Mapping of service to container port now done via name of the port, meaning the service definition in Values.yaml refers to the external port and not the container port, as is the default behaviour.
release-name-blueapi-ingress:

Gain labels
secretName explicitly null rather than implicitly, allows overriding when e.g. not using Diamond ingress controller
test container:

Names adjusted
Uses version from appVersion rather than 0.1.0 container (in case of adding additional tests for cli functions that do not exist in 0.1.0)
statefulset:

[DiamondJoseph]

New handling of init config means it may now be None instead of an empty configMap

[DiamondJoseph]

Added Keith and Zoheb for extra points of view, but I won't merge until Callum is happy.

[ZohebShaikh]

The PR looks good overall! One suggestion that I believe would be helpful for developers using this Helm chart is to include a table in the documentation listing all the parameters—along with their names, descriptions, and default values. Something similar to what's done here

[tpoliaw]

Is there a way to not have generated code in the repo or a way to ensure it stays up to date without someone having to remember to update it?

[DiamondJoseph]

The linting will fail if the output should have changed, as it's run as a pre-commit hook

He's too busy with the vertical slice sprints to be interested in the likes of us

[ZohebShaikh]

There were somethings about the readiness and liveliness probes that you are using

As the pod will take time to startup due to scratch, I was just going through the docs to see if it starts the probe after the initContainer is done booting up

And the other was we can have a cookie created on the fly and pass it to the healthz probe as a header so that at the fastapi side we can just accept requests from that which has that header for the probable case of the healthz getting DDOS'ed and making blueapi go into boot-loop

I also didn't see anything about if the liveliness probe fails it trying to restart the pod

[DiamondJoseph]

As the pod will take time to startup due to scratch, I was just going through the docs to see if it starts the probe after the initContainer is done booting up

The probes are defined on the container level, so they not attempt to run until the initContainer has run to completion. We could have a startupProbe that is slightly more permissive in case we are slow to start up, but with the default resources and nothing in scratch startup takes ~4s. The probes runs every 10s and needs to fail 3 in a row to die, so our startup is fast enough to not fail too many- whether they're permissive enough to not die on a filesystem blip I'm not sure. We do probably want a startupProbe for the potential 10s to connect to devices, but I don't know if we start serving the API prior to the subprocess being ready?

And the other was we can have a cookie created on the fly and pass it to the healthz probe as a header so that at the fastapi side we can just accept requests from that which has that header for the probable case of the healthz getting DDOS'ed and making blueapi go into boot-loop

It's a possibility, I think if we're going to add that it can be after 1.0.0, since it's non breaking. If the REST API is being hammered enough to freeze and kill the subprocess running a scan, someone is doing something wrong or malicious. After the document store we can consider re-architecting to extract the subprocess- then if the API goes down the scan is unaffected.

I also didn't see anything about if the liveliness probe fails it trying to restart the pod

If the liveness probes fails failureThreshold times (default 3), the pod is killed and subject to its restartpolicy.

[ZohebShaikh]

For the hammering I had a malicious user in mind, If a issue is created for the cookie we can work on it at a later stage...
But I think having a startupProbe with reasonable values will be good, to let the devices startup

[ZohebShaikh]

It looks good overall, few minor change requests.

As this is all helm changes can we see this working with all the configuration before merge? Just for more confidence in helm changes