ddl: refactor constraint [2/6]

[xhebox]

What problem does this PR solve?

Problem Summary: Separate from #22415, 2/6 patch from the large PR.

Able to review, but merge depends on #24004

1. LabelConstraint is renamed to Constraint.
2. checkLabelConstraint to NewConstraint
3. added CompatibleWith, which is used to detect invalid combination of constraint. It is not used in the PR, but in the next PR.
4. Move all Constraint things to constraint.go, and a full cover test in contraint_test.go.

Check List

Tests

• Unit test
• Integration test

Release note

• No release note

[morgo]

Looking good, minor nits.

[morgo]

Should it have some tests where the case of tiflash is upper? The code lowers it for comparison, but does not save it in values as lower as it parses it (making it compatible with previous code). But I'm wondering if it should lower when saving in values so the string is effectively normalized (space removed, consistent case etc.)

[xhebox]

I think there is one test for it, the typo one pointed out by you.

	{
			name:  "disallow tiflash",
			input: "+engine=Tiflash",
			err:   ErrUnsupportedConstraint,
		},

But I'm wondering if it should lower when saving in values so the string is effectively normalized.

There should not be any normalization during comparison. I mean, I only do lowering for TiFlash, and it is a special case. It seems that we have no official doc, or spec for upper/lower cases of engine labels, so i added lower checking for a more relax check(so that tiflash will be banned even if it is TiFlash, Tiflash, or whatever).

[morgo]

It is a bit of a strange behavior if the token TiFlash is case insensitive, but other tokens are stored in original case?

I think tokens are always case insensitive in MySQL, but in either case you decide (or don't decide), I think it makes sense to capture the current expected behavior in tests:

input: "+ZONE=BJ",
input: "+Zone=Bj",

[xhebox]

The thing is it is not a token, but a string. The syntax is like CONSTRIANTS="+zone=bj". Here we use this string a "pattern matcher", which will match constraints added by user, or the software itself. PD and TiDB both have a matcher: TiDB will match on the constraints cache, PD will match on the persisted constraints.

So, there are other two concerns:

1. zone,bj kv pair is added by a user. But possibly not by a SQL of TiDB, e.g. tidb-operator could add such label. They won't normalize the label.
2. PD match case insensitively. It is also strange that TiDB is insensitive, but PD is sensitive.

For TiFlash, it is just, I don't know, if the value is always TiFlash. I mean, there is no spec for that. And this label is absolutely added by TiKV,TiFlash,TiDB. User should not add engine=xxx label. It will break the system.

[xhebox]

The thing is it is not a token, but a string. The syntax is like ALTER TABLE ALTER PARTITION ADD PLACEMENT POLICY ... CONSTRIANTS="+zone=bj,..." .... I've proposed to parse the string by parser, but rejected by djshow832. It indeed makes the work easier, because this string may contain comma.

Here we use this string a "pattern matcher", which will match constraints added by user, or the software itself. PD and TiDB both have a matcher: TiDB will match on the constraints cache, PD will match on the persisted constraints.

So, there are other two concerns:

1. zone,bj kv pair is added by a user. But possibly not by a SQL of TiDB, e.g. tidb-operator could add such label. They won't normalize the label.
2. PD match case sensitively. It is also strange that TiDB is insensitive, but PD is sensitive.

For TiFlash, it is just, I don't know, if the value is always TiFlash. I mean, there is no spec for that. And this label is absolutely added by TiKV,TiFlash,TiDB. User should not add engine=xxx label. It will break the system.

[morgo]

OK. It seems complicated enough maybe we can't solve it in this PR. LGTM.

[morgo]

/LGTM

[xhebox]

Able to review, but merge depends on #24004
/hold

[xhebox]

/unhold

[xhebox]

Rebased to the master, because the first PR is merged.

[tangenta]

The String() returning error message seems to be strange...

[xhebox]

Does panic feel better?

[tangenta]

How about log it and return empty("")?

[xhebox]

That is too silent... The only way to construct invalid constraint is by manual construction, bypassing the new method and all other checks. So far, only tests and json.Unmarshal does not use the new method(after the merge of all refactor PRs). Unmarshal takes data from the data persisted on PD, which are constructed through SQL and the new method. So it is safe, too.

User just should not go here. And devs should not rely on manual manipulation if there is a set of working public APIs.

EDIT: It seems taht only tests are using String() for debugging purpose.

[tangenta]

If it is not used in the normal case, we should not provide it. 🤔

[xhebox]

But to use json.Marshal convert the struct to string, there must be one stringer implementation.

[tangenta]

Ok... Anyway, Golang cannot prohibit the developers from initializing a struct with manual construction. Panic can be dangerous in a production environment. I still prefer logging it and return an empty string:)

[xhebox]

We can prevent that by wrapping another internal package and private fields... Manual construction will be blocked unless you are in the placement package. E.g.:

import "mypackage/internal"
type MyStruct struct {
   internalFields internal.MyRealStruct
}

But that seems an overkill for me. It also changes the structure of json. So it can not be marshaled easily.

Anyway, Golang cannot prohibit the developers from initializing a struct with manual construction.

In fact, one of my point for refactor is to prevent developers from manual/raw operations. I hope they can follow the contract before going deep into the package.

Panic can be dangerous in a production environment

The upper service should recover() the error, if there is a need.

[xhebox]

Anyway, I removed the stringer interface.

[tangenta]

/lgtm

[ti-chi-bot]

[REVIEW NOTIFICATION]

This pull request has been approved by:

• morgo
• tangenta

To complete the pull request process, please ask the reviewers in the list to review by filling /cc @reviewer in the comment.
After your PR has acquired the required number of LGTMs, you can assign this pull request to the committer in the list by filling /assign @committer in the comment to help you merge this pull request.

The full list of commands accepted by this bot can be found here.

Reviewer can indicate their review by writing /lgtm in a comment.
Reviewer can cancel approval by writing /lgtm cancel in a comment.

[tangenta]

/merge

[ti-chi-bot]

This pull request has been accepted and is ready to merge.

Commit hash: 3c8921f

[ti-chi-bot]

@xhebox: Your PR was out of date, I have automatically updated it for you.

At the same time I will also trigger all tests for you:

/run-all-tests

If the CI test fails, you just re-trigger the test that failed and the bot will merge the PR for you after the CI passes.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the ti-community-infra/tichi repository.