liggitt · kevindelgado · Aug 18, 2021 · Aug 18, 2021 · Sep 14, 2021 · Sep 15, 2021
diff --git a/pkg/features/kube_features.go b/pkg/features/kube_features.go
@@ -904,6 +904,7 @@ var defaultKubernetesFeatureGates = map[featuregate.Feature]featuregate.FeatureS
 	genericfeatures.WarningHeaders:                      {Default: true, PreRelease: featuregate.GA, LockToDefault: true}, // remove in 1.24
 	genericfeatures.OpenAPIEnums:                        {Default: false, PreRelease: featuregate.Alpha},
 	genericfeatures.CustomResourceValidationExpressions: {Default: false, PreRelease: featuregate.Alpha},
+	genericfeatures.FieldValidation:                     {Default: false, PreRelease: featuregate.Alpha},
 	// features that enable backwards compatibility but are scheduled to be removed
 	// ...
 	HPAScaleToZero: {Default: false, PreRelease: featuregate.Alpha},

diff --git a/staging/src/k8s.io/apiextensions-apiserver/pkg/apiserver/customresource_handler.go b/staging/src/k8s.io/apiextensions-apiserver/pkg/apiserver/customresource_handler.go
@@ -841,12 +841,13 @@ func (r *crdHandler) getOrCreateServingInfoFor(uid types.UID, name string) (*crd
 
 		// CRDs explicitly do not support protobuf, but some objects returned by the API server do
 		negotiatedSerializer := unstructuredNegotiatedSerializer{
-			typer:                 typer,
-			creator:               creator,
-			converter:             safeConverter,
-			structuralSchemas:     structuralSchemas,
-			structuralSchemaGK:    kind.GroupKind(),
-			preserveUnknownFields: crd.Spec.PreserveUnknownFields,
+			typer:                       typer,
+			creator:                     creator,
+			converter:                   safeConverter,
+			structuralSchemas:           structuralSchemas,
+			structuralSchemaGK:          kind.GroupKind(),
+			preserveUnknownFields:       crd.Spec.PreserveUnknownFields,
+			persistStrictDecodingErrors: true,
 		}
 		var standardSerializers []runtime.SerializerInfo
 		for _, s := range negotiatedSerializer.SupportedMediaTypes() {
@@ -1032,9 +1033,10 @@ type unstructuredNegotiatedSerializer struct {
 	creator   runtime.ObjectCreater
 	converter runtime.ObjectConvertor
 
-	structuralSchemas     map[string]*structuralschema.Structural // by version
-	structuralSchemaGK    schema.GroupKind
-	preserveUnknownFields bool
+	structuralSchemas           map[string]*structuralschema.Structural // by version
+	structuralSchemaGK          schema.GroupKind
+	preserveUnknownFields       bool
+	persistStrictDecodingErrors bool
 }
 
 func (s unstructuredNegotiatedSerializer) SupportedMediaTypes() []runtime.SerializerInfo {
@@ -1077,7 +1079,7 @@ func (s unstructuredNegotiatedSerializer) EncoderForVersion(encoder runtime.Enco
 }
 
 func (s unstructuredNegotiatedSerializer) DecoderToVersion(decoder runtime.Decoder, gv runtime.GroupVersioner) runtime.Decoder {
-	d := schemaCoercingDecoder{delegate: decoder, validator: unstructuredSchemaCoercer{structuralSchemas: s.structuralSchemas, structuralSchemaGK: s.structuralSchemaGK, preserveUnknownFields: s.preserveUnknownFields}}
+	d := schemaCoercingDecoder{delegate: decoder, validator: unstructuredSchemaCoercer{structuralSchemas: s.structuralSchemas, structuralSchemaGK: s.structuralSchemaGK, preserveUnknownFields: s.preserveUnknownFields, persistStrictDecodingErrors: s.persistStrictDecodingErrors}}
 	return versioning.NewCodec(nil, d, runtime.UnsafeObjectConvertor(Scheme), Scheme, Scheme, unstructuredDefaulter{
 		delegate:           Scheme,
 		structuralSchemas:  s.structuralSchemas,
@@ -1237,6 +1239,9 @@ func (d schemaCoercingDecoder) Decode(data []byte, defaults *schema.GroupVersion
 	}
 	if u, ok := obj.(*unstructured.Unstructured); ok {
 		if err := d.validator.apply(u); err != nil {
+			if runtime.IsStrictDecodingError(err) {
+				return obj, gvk, err
+			}
 			return nil, gvk, err
 		}
 	}
@@ -1296,9 +1301,10 @@ type unstructuredSchemaCoercer struct {
 	dropInvalidMetadata bool
 	repairGeneration    bool
 
-	structuralSchemas     map[string]*structuralschema.Structural
-	structuralSchemaGK    schema.GroupKind
-	preserveUnknownFields bool
+	structuralSchemas           map[string]*structuralschema.Structural
+	structuralSchemaGK          schema.GroupKind
+	preserveUnknownFields       bool
+	persistStrictDecodingErrors bool
 }
 
 func (v *unstructuredSchemaCoercer) apply(u *unstructured.Unstructured) error {
@@ -1321,10 +1327,12 @@ func (v *unstructuredSchemaCoercer) apply(u *unstructured.Unstructured) error {
 	if err != nil {
 		return err
 	}
+
+	pruned := map[string]bool{}
 	if gv.Group == v.structuralSchemaGK.Group && kind == v.structuralSchemaGK.Kind {
 		if !v.preserveUnknownFields {
-			// TODO: switch over pruning and coercing at the root to  schemaobjectmeta.Coerce too
-			structuralpruning.Prune(u.Object, v.structuralSchemas[gv.Version], false)
+			// TODO: switch over pruning and coercing at the root to schemaobjectmeta.Coerce too
+			pruned = structuralpruning.Prune(u.Object, v.structuralSchemas[gv.Version], false)
 			structuraldefaulting.PruneNonNullableNullsWithoutDefaults(u.Object, v.structuralSchemas[gv.Version])
 		}
 		if err := schemaobjectmeta.Coerce(nil, u.Object, v.structuralSchemas[gv.Version], false, v.dropInvalidMetadata); err != nil {
@@ -1348,6 +1356,17 @@ func (v *unstructuredSchemaCoercer) apply(u *unstructured.Unstructured) error {
 			return err
 		}
 	}
+	// collect all the strict decoding errors and return them
+	if len(pruned) > 0 && v.persistStrictDecodingErrors {
+		allStrictErrs := make([]error, len(pruned))
+		i := 0
+		for unknownField, _ := range pruned {
+			allStrictErrs[i] = fmt.Errorf("unknown field: %s", unknownField)
+			i++
+		}
-		allStrictErrs := make([]error, len(pruned))
-		i := 0
-		for unknownField, _ := range pruned {
-			allStrictErrs[i] = fmt.Errorf("unknown field: %s", unknownField)
-			i++
-		}
+		allStrictErrs := make([]error, 0, len(pruned))
+		for unknownField := range pruned {
+			allStrictErrs = append(allStrictErrs, fmt.Errorf("unknown field: %s", unknownField))
+		}
-		allStrictErrs := make([]error, len(pruned))
-		i := 0
-		for unknownField, _ := range pruned {
-			allStrictErrs[i] = fmt.Errorf("unknown field: %s", unknownField)
-			i++
-		}
+		allStrictErrs := make([]error, 0, len(pruned))
+		for unknownField := range pruned {
+			allStrictErrs = append(allStrictErrs, fmt.Errorf("unknown field: %s", unknownField))
+		}
+		err := runtime.NewStrictDecodingError(allStrictErrs)
+		return err
+	}
 
 	return nil
 }

diff --git a/staging/src/k8s.io/apiextensions-apiserver/pkg/apiserver/schema/pruning/algorithm.go b/staging/src/k8s.io/apiextensions-apiserver/pkg/apiserver/schema/pruning/algorithm.go
@@ -23,7 +23,8 @@ import (
 // Prune removes object fields in obj which are not specified in s. It skips TypeMeta and ObjectMeta fields
 // if XEmbeddedResource is set to true, or for the root if isResourceRoot=true, i.e. it does not
 // prune unknown metadata fields.
-func Prune(obj interface{}, s *structuralschema.Structural, isResourceRoot bool) {
+// It returns the set of fields that it prunes.
+func Prune(obj interface{}, s *structuralschema.Structural, isResourceRoot bool) map[string]bool {
 	if isResourceRoot {
 		if s == nil {
 			s = &structuralschema.Structural{}
@@ -34,7 +35,7 @@ func Prune(obj interface{}, s *structuralschema.Structural, isResourceRoot bool)
 			s = &clone
 		}
 	}
-	prune(obj, s)
+	return prune(obj, s)
 }
 
 var metaFields = map[string]bool{
@@ -43,51 +44,71 @@ var metaFields = map[string]bool{
 	"metadata":   true,
 }
 
-func prune(x interface{}, s *structuralschema.Structural) {
+func prune(x interface{}, s *structuralschema.Structural) map[string]bool {
 	if s != nil && s.XPreserveUnknownFields {
-		skipPrune(x, s)
-		return
+		return skipPrune(x, s)
 	}
 
+	pruning := map[string]bool{}
 	switch x := x.(type) {
 	case map[string]interface{}:
 		if s == nil {
 			for k := range x {
+				if !metaFields[k] {
+					pruning[k] = true
+				}
 				delete(x, k)
 			}
-			return
+			return pruning
 		}
 		for k, v := range x {
 			if s.XEmbeddedResource && metaFields[k] {
 				continue
 			}
 			prop, ok := s.Properties[k]
 			if ok {
-				prune(v, &prop)
+				pruned := prune(v, &prop)
+				for k, b := range pruned {
+					pruning[k] = b
+				}
 			} else if s.AdditionalProperties != nil {
-				prune(v, s.AdditionalProperties.Structural)
+				pruned := prune(v, s.AdditionalProperties.Structural)
+				for k, b := range pruned {
+					pruning[k] = b
+				}
 			} else {
+				if !metaFields[k] {
+					pruning[k] = true
+				}
 				delete(x, k)
 			}
 		}
 	case []interface{}:
 		if s == nil {
 			for _, v := range x {
-				prune(v, nil)
+				pruned := prune(v, nil)
+				for k, b := range pruned {
+					pruning[k] = b
+				}
 			}
-			return
+			return pruning
 		}
 		for _, v := range x {
-			prune(v, s.Items)
+			pruned := prune(v, s.Items)
+			for k, b := range pruned {
+				pruning[k] = b
+			}
 		}
 	default:
 		// scalars, do nothing
 	}
+	return pruning
 }
 
-func skipPrune(x interface{}, s *structuralschema.Structural) {
+func skipPrune(x interface{}, s *structuralschema.Structural) map[string]bool {
+	pruning := map[string]bool{}
 	if s == nil {
-		return
+		return pruning
 	}
 
 	switch x := x.(type) {
@@ -97,16 +118,26 @@ func skipPrune(x interface{}, s *structuralschema.Structural) {
 				continue
 			}
 			if prop, ok := s.Properties[k]; ok {
-				prune(v, &prop)
+				pruned := prune(v, &prop)
+				for k, b := range pruned {
+					pruning[k] = b
+				}
 			} else if s.AdditionalProperties != nil {
-				prune(v, s.AdditionalProperties.Structural)
+				pruned := prune(v, s.AdditionalProperties.Structural)
+				for k, b := range pruned {
+					pruning[k] = b
+				}
 			}
 		}
 	case []interface{}:
 		for _, v := range x {
-			skipPrune(v, s.Items)
+			skipPruned := skipPrune(v, s.Items)
+			for k, b := range skipPruned {
+				pruning[k] = b
+			}
 		}
 	default:
 		// scalars, do nothing
 	}
+	return pruning
 }
diff --git a/staging/src/k8s.io/apimachinery/pkg/apis/meta/v1/types.go b/staging/src/k8s.io/apimachinery/pkg/apis/meta/v1/types.go
@@ -544,6 +544,16 @@ type CreateOptions struct {
 	// as defined by https://golang.org/pkg/unicode/#IsPrint.
 	// +optional
 	FieldManager string `json:"fieldManager,omitempty" protobuf:"bytes,3,name=fieldManager"`
+
+	// fieldValidation determines how the server should respond to
+	// unknown/duplicate fields.
+	// TODO: Do we still need a protobuf tag if protobuf is not supported?
+	// Valid values are:
+	// - Ignore: ignore's unknown/duplicate fields
+	// - Strict: fail the request on unknown/duplicate fields
+	// - Warn: respond with a warning, but successfully serve the request.
+	// +optional
+	FieldValidation string `json:"fieldValidation,omitempty"`
 }
 
 // +k8s:conversion-gen:explicit-from=net/url.Values
@@ -577,6 +587,16 @@ type PatchOptions struct {
 	// types (JsonPatch, MergePatch, StrategicMergePatch).
 	// +optional
 	FieldManager string `json:"fieldManager,omitempty" protobuf:"bytes,3,name=fieldManager"`
+
+	// fieldValidation determines how the server should respond to
+	// unknown/duplicate fields.
+	// TODO: Do we still need a protobuf tag if protobuf is not supported?
+	// Valid values are:
+	// - Ignore: ignore's unknown/duplicate fields
+	// - Strict: fail the request on unknown/duplicate fields
+	// - Warn: respond with a warning, but successfully serve the request.
+	// +optional
+	FieldValidation string `json:"fieldValidation,omitempty"`
 }
 
 // ApplyOptions may be provided when applying an API object.
@@ -632,6 +652,16 @@ type UpdateOptions struct {
 	// as defined by https://golang.org/pkg/unicode/#IsPrint.
 	// +optional
 	FieldManager string `json:"fieldManager,omitempty" protobuf:"bytes,2,name=fieldManager"`
+
+	// fieldValidation determines how the server should respond to
+	// unknown/duplicate fields.
+	// TODO: Do we still need a protobuf tag if protobuf is not supported?
+	// Valid values are:
+	// - Ignore: ignore's unknown/duplicate fields
+	// - Strict: fail the request on unknown/duplicate fields
+	// - Warn: respond with a warning, but successfully serve the request.
+	// +optional
+	FieldValidation string `json:"fieldValidation,omitempty"`
 }
 
 // Preconditions must be fulfilled before an operation (update, delete, etc.) is carried out.