Replace backbeat client with cloudserver client and migration aws sdk to v3

[SylvainSenechal]

Issue: BB-706
sdk v3 migration + backbeat client migration

[bert-e]

Hello sylvainsenechal,

My role is to assist you with the merge of this
pull request. Please type @bert-e help to get information
on this process, or consult the user documentation.

Available options

name	description	privileged	authored
/after_pull_request	Wait for the given pull request id to be merged before continuing with the current one.
/bypass_author_approval	Bypass the pull request author's approval	⭐
/bypass_build_status	Bypass the build and test status	⭐
/bypass_commit_size	Bypass the check on the size of the changeset TBA	⭐
/bypass_incompatible_branch	Bypass the check on the source branch prefix	⭐
/bypass_jira_check	Bypass the Jira issue check	⭐
/bypass_peer_approval	Bypass the pull request peers' approval	⭐
/bypass_leader_approval	Bypass the pull request leaders' approval	⭐
/approve	Instruct Bert-E that the author has approved the pull request.		✍️
/create_pull_requests	Allow the creation of integration pull requests.
/create_integration_branches	Allow the creation of integration branches.
/no_octopus	Prevent Wall-E from doing any octopus merge and use multiple consecutive merge instead
/unanimity	Change review acceptance criteria from one reviewer at least to all reviewers
/wait	Instruct Bert-E not to run until further notice.

Available commands

name	description	privileged
/help	Print Bert-E's manual in the pull request.
/status	Print Bert-E's current status in the pull request TBA
/clear	Remove all comments from Bert-E from the history TBA
/retry	Re-start a fresh build TBA
/build	Re-start a fresh build TBA
/force_reset	Delete integration branches & pull requests, and restart merge process from the beginning.
/reset	Try to remove integration branches unless there are commits on them which do not appear on the source branch.

Status report is not available.

[codecov]

Codecov Report

❌ Patch coverage is 50.14045% with 355 lines in your changes missing coverage. Please review.
✅ Project coverage is 73.48%. Comparing base (66c19b0) to head (4a61a73).
⚠️ Report is 39 commits behind head on development/9.1.

Files with missing lines	Patch %	Lines
...xtensions/replication/tasks/MultipleBackendTask.js	26.61%	102 Missing ⚠️
extensions/replication/tasks/CopyLocationTask.js	24.44%	68 Missing ⚠️
extensions/replication/utils/SetupReplication.js	4.76%	60 Missing ⚠️
lib/BackbeatMetadataProxy.js	30.23%	30 Missing ⚠️
extensions/replication/management.js	4.16%	23 Missing ⚠️
lib/queuePopulator/IngestionProducer.js	69.86%	22 Missing ⚠️
extensions/lifecycle/management.js	5.88%	16 Missing ⚠️
lib/clients/utils.js	65.38%	9 Missing ⚠️
lib/credentials/CredentialsManager.js	75.75%	8 Missing ⚠️
extensions/utils/VaultClientWrapper.js	16.66%	5 Missing ⚠️
... and 5 more

Additional details and impacted files

Files with missing lines	Coverage Δ
extensions/gc/tasks/GarbageCollectorTask.js	87.28% <100.00%> (+0.10%)	⬆️
...ecycle/bucketProcessor/LifecycleBucketProcessor.js	79.87% <100.00%> (+0.38%)	⬆️
.../lifecycle/tasks/LifecycleColdStatusArchiveTask.js	89.79% <100.00%> (ø)
extensions/lifecycle/tasks/LifecycleTaskV2.js	88.88% <ø> (ø)
lib/clients/ClientManager.js	66.66% <100.00%> (+1.96%)	⬆️
lib/credentials/AccountCredentials.js	64.10% <100.00%> (+0.94%)	⬆️
lib/credentials/RoleCredentials.js	98.00% <100.00%> (+0.32%)	⬆️
...sions/lifecycle/tasks/LifecycleDeleteObjectTask.js	92.85% <93.33%> (+0.34%)	⬆️
extensions/lifecycle/tasks/LifecycleTask.js	91.54% <95.65%> (+0.02%)	⬆️
lib/clients/VaultClientCache.js	53.48% <0.00%> (ø)
... and 12 more

... and 10 files with indirect coverage changes

Components	Coverage Δ
Bucket Notification	80.36% <ø> (ø)
Core Library	80.33% <62.00%> (-0.70%)	⬇️
Ingestion	70.61% <69.86%> (+0.30%)	⬆️
Lifecycle	78.28% <81.81%> (-0.07%)	⬇️
Oplog Populator	85.06% <ø> (ø)
Replication	56.03% <35.83%> (-5.16%)	⬇️
Bucket Scanner	85.76% <ø> (+0.15%)	⬆️

@@                 Coverage Diff                 @@
##           development/9.1    #2679      +/-   ##
===================================================
- Coverage            74.81%   73.48%   -1.33%     
===================================================
  Files                  201      200       -1     
  Lines                13579    13560      -19     
===================================================
- Hits                 10159     9965     -194     
- Misses                3410     3585     +175     
  Partials                10       10              

Flag	Coverage Δ
api:retry	9.36% <2.80%> (-0.13%)	⬇️
api:routes	9.18% <0.98%> (-0.13%)	⬇️
bucket-scanner	85.76% <ø> (+0.15%)	⬆️
ft_test:queuepopulator	9.01% <0.28%> (-1.33%)	⬇️
unit	50.78% <19.52%> (+0.04%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[bert-e]

Waiting for approval

The following approvals are needed before I can proceed with the merge:

• the author

• 2 peers

[SylvainSenechal]

Side note : There are a lot of variables, function names and possibly file names that would benefit from a rename, from backbeatClient to cloudserverClient etc.
I don't wanna do it now because it will add a lot of noise to that PR, and it's not even that straightforward to do with this silly programming language

[francoisferrand]

to make it more palatable, think of it as Backbeat(Routes)Client for now...

[SylvainSenechal]

@francoisferrand I think using JSON.stringify will work, I see that the function .getSerialized() in Arsenal also returns a string from JSON.stringify that is then used in this same _publishMetadataWriteMetrics, but I'm not sure that "command.input" is equivalent to the old "destReq.httpRequest.body" data we used to call it with

[SylvainSenechal]

There are a few occurences where this _publishMetadataWriteMetrics is an issue for me.
Actually, we can add a middleware to extract the request body like this, and pass it to the metrics just as before.
Although, I have found that here it would likely be useless, because as you can see in the command above, there is Body in the command, so the length would always be 0.
I have only found one occurence where we the request has a body

command.middlewareStack.add(
        next => async args => {
            const request = args.request as any;
            console.log("content-length:", request?.headers?.['content-length'])
            console.log("len", Buffer.byteLength(request.body as any))
            return next(args);
        },
        { step: 'finalizeRequest' }
);

[SylvainSenechal]

One more thought : With the old SDK, we were using destReq.httpRequest.body, but if you look at the command, there is no proper body parameter, and with the new v3 client, I tried to get the body with the middleware and it is undefined...
Anyways, probably not worth it to overthink this problem, we just need to clearly state what is the metric we want to compute first (I believe that here it's the Tags, since the api is putTagging), so we probably just want to do something like
this._publishMetadataWriteMetrics(JSON.stringify(command.input.Tags), writeStartTime)

[francoisferrand]

is this still relevant? Please create ticket to look at it, and possibly clean it eventually.,...

[DarkIsDude]

😂 I was checking the same. We already have the ticket I guess...

[SylvainSenechal]

Added to the checklist

[francoisferrand]

(still reviewing, but aleady some findings)

[francoisferrand]

no actual object type, as the errors are not "parsed"?
(should be added in CloudserverClient eventually, I guess)

We should create a ticket, and already "flag" the places which would benefit for this in backbeat with something like TODO: use error types once supported in CLDSRVCLT-5

[SylvainSenechal]

Yes I didn't pay much attention to proper smithy error generation, I'm adding this to my checklist

[francoisferrand]

why do we need to check both code and name?
esp. since errors later check only name, does not seem consistent (either we need to check everywhere, or we can check nane only) ?

→ please review and align behavior where/if relevant

[francoisferrand]

should we not attach request id here?
(maybe cleanup for later, but best flag it already with a TODO and ticket)

[SylvainSenechal]

We talked about requestID earlier.
I think what we can do is leave it as it is with this pr (I kept request id where it was used, but didn't add it where it wasn't used).
Then follow up ticket to check if some apis should use it

[francoisferrand]

Yes, but ew can already add comments pointing to this followup in the code: since it is relatively easy to identify those spots in the diff (as it is relatively small vs the whole codebase). It does not change the current PR behavior at all, but will give a starting point to look at when working on that followup ticket.

[francoisferrand]

missing request id

[francoisferrand]

missing requestId

[DarkIsDude]

😂 I was checking the same. We already have the ticket I guess...

[francoisferrand]

See comments, but to sumup "major" issues:

• In quite a few places, code now calls the continuation callback from within the try block. This is very dangerous (leading to duplicate callback code & hard to debug issues) and must be not be done : use callbackify() or Promise.then() instead
• Some code can be dedup/simplified using callbackify() (e.g. common log or metrics in resolve & reject)
• “duplicated” CloudserverClient / S3Clent / IACClient setup, with lots of options & extra middleware : should be factorized with helper functions?
• Errors checked with both err.code and err.name : seems weird, is this really needed?
• RequestUID is not consistently passed ; not sure it can/should always be added, or how getSerializedLog will behave when not called from an API : but should be flagged to ease followup work
• I still need to review the AbortController and assocaited uses (CopyLocationTask/ReplicateObject). Now that we have fixed "underlying" issues with streaming, are these "deep" rework/refactor needed? Maybe worth checking, to minimize risk of breaking stuff by rewriting if not needed...

[francoisferrand]

nit: using utils.callbackify() instead of promise.then() allows to keep the same exact structure as before... or you can at least put the .catch block before .then

[francoisferrand]

same, .catch().then() make it easier to review

[francoisferrand]

missing request id

[francoisferrand]

replaces with a attribute in command param?

[SylvainSenechal]

Should probably create a follow up ticket (edit : created : https://scality.atlassian.net/jira/software/c/projects/OS/boards/268?selectedIssue=BB-730)

• cleanup err.name / err.code
• bin/ensureServiceUser line 167 https://scality.atlassian.net/browse/VAULT-238
• smithy proper errors (to be used with instanceof)
• Request ID for s3 sdk calls, and maybe for cloudserver client calls too ?
• Have centralized function to create s3/cloudserver clients
• Refactor s3/cloudserver client mocks ?

Other things to check now for this ticket :

• tests/functional/queuePopulator/queuePopulator.spec.js recheck tests with Maha
• Put back the old test.yml sequential test instead of matrix
• fix metrics issue

[bert-e]

Incorrect fix version

The Fix Version/s in issue BB-706 contains:

• 9.2.0

Considering where you are trying to merge, I ignored possible hotfix versions and I expected to find:

• 9.1.4

Please check the Fix Version/s of BB-706, or the target
branch of this pull request.

[francoisferrand]

reviewed the missing pices (CopyLocatoni & MultipleBackend), overall looks good, but:

• code is getting harder to follow as logic is partially (and artificially) reversed due to the mix of callback & promises with "shortcut" path: suggested approaches (early return, partial use of callbackify, or async.waterflow) which should allow keeping a natural flow
• in 2 cases, the abortController was introduced but it seems it never gets aborted
• need to keep metrics (even with TODO if we are not sure what size to pass), as they measure not only the size but also the number of calls and their duration
• lots of bebug logs to remove

[francoisferrand]

this is a kind of pathologic case, where we can call _sendMultipleBackendPutObject directly
without much setup : would be much simpler to handle this case early, so we can see the "nominal"
case more easily, do not need to handle the extra case where incomingMsg is falsish, and avoid the
logic reordering...

Suggested change

	return performPutObject(undefined);
	if (size == 0) {
	return this._sendMultipleBackendPutObject(actionEntry, objMD, 0, "", log, doneOnce);
	}
	// continue with the nominal case

[SylvainSenechal]

yeah early return is very good idea, dont know why i didnt do this earlier, it also helps to reduce nested code

[francoisferrand]

used not to be logged when aborted : should we not still skip the log in that case?

[SylvainSenechal]

Yeah I rechecked this with the more global changes of this function

[francoisferrand]

I don't understand how this abort controller is actually used/needed : since we never call abort()
(nor pass it to an AWS SDK api, so the SDK would call abort automatically)

It seems we just rely on incomingMsg.destroy() to trigger the abort if put fails...

[SylvainSenechal]

I added the missing call to abort()

[francoisferrand]

same : best to handle the simpler "corner" case with an early return, so we can remove the anonymous function
and keep the "logical order of code.

[francoisferrand]

is this actually needed?
error on incoming message would be handled already by the "get" command, which is the one listening
to the abortController.

In theory, calling it is best indeed (we never know if the caller of _putMPUPart may do), but I
wonder if this could "break" something to abort controller (and signaling get command to abort)
while already handling an error from the get command?

Did you confirm this case works?

[SylvainSenechal]

In any case, calling abort() twice is fine.
I think this logic is fine : With the get command, the catch handles errors such as bucket not found. Then once its successful, we receive a stream which might fail later, and this is what we are handling here

[francoisferrand]

we use to handle errors the other way:

if (httpStatusCode === 404) {
    log.error();
    return done(ObjectNotFound)
}
if (!aborted) {
    log.error();
}
return done(err)

should the 404 error not be logged (and converted to ObjNotFound) even if the request was aborted?

[francoisferrand]

we used to call abort() instead of destroy() : was destroy implied by abort, yet now we have a readable, so only destroy is available?

[francoisferrand]

this is specific to cloudserver, so (eventually) this should be moved to CloudserverClient I guess.

In addition, we may add lightweight wrappers on top of "official" AWS SDK "Command" types which support an extra request uid parameter in constructor and automatically add middleware when set: something like

class ListObjectCommand extend aws.ListObjectCommand {
    constructor(params) {
        const stdParams = { ...params };
        delete stdParams.requestUID;
        super(stdParams);

        if (params.requestUID) {
            attachReqUids(this);
        }
    }
}

This may be a bit tedious and repetitive (though it may be simplified by relying on the fact that a constructor is really just a global function in javascript, so we may have a function which acts on it and does the wrapping), then we may use typescript meta-programming to "generate" the wrappers...

[francoisferrand]

what is the "value" you get for Versions and DeleteMarkers ?
if undefined, then the fallback to [] is not needed, it is perfectly fine to "spread" undefined...

[francoisferrand]

Looking at [1], it seems we can also safely spreak null ; and empty arrays works fine anyway:

All primitives can be spread in objects. Only strings have enumerable own properties, and spreading anything else doesn't create properties on the new object.

[1] https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Operators/Spread_syntax

[francoisferrand]

Still a few comments to clarify, but looks good overall