Feat: improve workflow builtin actions

[didier-wenzek]

This is an alternative PR to improve the way builtin operations are customized.

• For the first attempt, see feat: workflow builtin actions honoring on_success handlers #3070
• For the motivations for a second proposal, see feat: workflow builtin actions honoring on_success handlers #3070 (comment)
• For a description of this proposal, see: allow users to add workflow states after a built-in executing action #3014 (comment)

Proposed changes

Improve the definition of operation workflows, so one can trigger a builtin operation the same way as for a sub operation. The aim is to make things easier to understand with less concepts, more consistent (while a single way to trigger an operation) and more flexible (ability to define specific state on success and on error).

[scheduled]
  operation = "builtin:software_update"
  on_exec = "executing"

[executing]
  action = "await_operation_completion"
  on_success = "postprocess"
  on_error = "rollback"

• Introduce OperationAction::BuiltinOperation
• Equip the BuiltIn action with on_success, on_error and on_exec handlers.
• Let the user provides its own steps for the executing, successful and failed state.
• Update the documentation - introducing builtin:<operation>
• Make sure the deprecated builtin keyword can still be used for backward compatibility
• Ensure a builtin:operation can only be invoked from the same operation
• Let the user execute any builtin operation from any workflow
• Ability to build the builtin operation input from the calling operation as for sub operations
• Ability to inject excerpts of the builtin operation output into the calling operation as for sub operations

Types of changes

• Bugfix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Improvement (general improvements like code refactoring that doesn't explicitly fix a bug or add any new functionality)
• Documentation Update (if none of the other choices apply)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)

Paste Link to the issue

#3014

Checklist

• I have read the CONTRIBUTING doc
• I have signed the CLA (in all commits with git commit -s)
• I ran cargo fmt as mentioned in CODING_GUIDELINES
• I used cargo clippy as mentioned in CODING_GUIDELINES
• I have added tests that prove my fix is effective or that my feature works
• I have added necessary documentation (if appropriate)

Further comments

[codecov]

Codecov Report

Attention: Patch coverage is 42.60870% with 132 lines in your changes missing coverage. Please review.

Files with missing lines	Patch %	Lines
crates/core/tedge_api/src/workflow/toml_config.rs	12.50%	61 Missing and 2 partials ⚠️
crates/core/tedge_api/src/workflow/mod.rs	38.98%	36 Missing ⚠️
.../core/tedge_agent/src/operation_workflows/actor.rs	56.25%	6 Missing and 8 partials ⚠️
crates/core/tedge_api/src/workflow/state.rs	59.37%	13 Missing ⚠️
crates/core/tedge_api/src/workflow/supervisor.rs	64.28%	4 Missing and 1 partial ⚠️
crates/core/tedge_api/src/workflow/script.rs	92.85%	1 Missing ⚠️

Additional details and impacted files

📢 Thoughts on this report? Let us know!

[didier-wenzek]

This log entry has been removed, because confusing when the sub-operation is actually a builtin operation.

[didier-wenzek]

This can be remove in the future. Indeed, all the builtin-operation actors are currently dealing with 2 steps while things are actually done in a single step (the schedule state for restart and software update; the executing state for log_upload, config_snapshot and config_update).

[albinsuresh]

The config actor still does it in two steps, where the tedgeUrl generation happens in the scheduled state and the rest in executing, although I can't remember why we chose to do it that way.

[didier-wenzek]

3 tests has been updated, watching for a successful status and no more an executing status.

Indeed, publishing the executing state is done by the workflow engine according to the workflow definition and no more by the internal actor.

[didier-wenzek]

As a first step, I introduced a specific BuiltInOperation case along the existing Operation case.

I will consider to the merge the two.

[didier-wenzek]

We decided to go against this idea: a builtin operation can only be invoked from the same operation.

[github-actions]

Robot Results

✅ Passed	❌ Failed	⏭️ Skipped	Total	Pass %	⏱️ Duration
505	0	2	505	100	1h33m19.753409999s

[reubenmiller]

@didier-wenzek I've played around with the proposal and it works well. I've been able to create a custom log_upload handler with a conditional pre-processing step and everything worked as expected.

So I'm happy with the direction of the PR.

[albinsuresh]

Materializing them as done for devie_profile would be a good step for users to discover and extend those built-in operation workflows.

[didier-wenzek]

Good idea. I will push a follow up PR for that.

[albinsuresh]

Unrelated to this PR, but I've always wondered why we didn't tie it to the workflow name, as that would have easily prevented conflicting workflow definitions as well.

[didier-wenzek]

Why not. In practice, this what we do. I will push a follow up PR to discuss this.

[albinsuresh]

A user might wonder when/why they should use one over the other. So, we might wanna highlight that only the former can be used from workflows of other operations and the latter is limited to the workflow of the same type only.

[didier-wenzek]

This is now clearer with 6b37ae3

[albinsuresh]

LGTM. The feature is working as expected. I just have one remark regarding the decision to deprecate the old builtin action syntax, which might still be simpler for the end-user.

[albinsuresh]

One might wonder why not GenericStateUpdate::init_payload() here, although at the impl level it makes no difference (since the builtin actors react to both init and scheduled messages the same way).

[didier-wenzek]

The status of the builtin request could be set to init, yes.

However, splitting hairs:

• GenericStateUpdate::init_payload() cannot be used here as this is an empty payload that still needs to be populated with the actual user request.
• All the builtin commands do no nothing on the init state, simply proceeding to executing.

To simplify this, we can refactor all the operation actors to have a single do-it action.

[albinsuresh]

The config actor still does it in two steps, where the tedgeUrl generation happens in the scheduled state and the rest in executing, although I can't remember why we chose to do it that way.

[albinsuresh]

Although I understand that we want to deprecate action = "builtin" in favour of the newly proposed operation = "builtin:<operation_name>" style, seeing the simplicity of this syntax:

[executing]
  action = "builtin"
  on_success = "postprocess"      # on_success & on_error can be customized for builtin actions

[postprocess]
  script = "/usr/bin/log_upload.sh ${.payload.status}"
  on_success = "successful"

...makes me wonder if this is still a better choice, during this API exploration phase, as the new version contains the additional boilerplate (the await_operation state), as follows:

[executing]
operation = "builtin:software_update"    # trigger the built-in behavior for software update
on_exec = "await_operation"

[await_operation]
action = "await-operation-completion"    # awaiting the builtin operation to complete
on_success = "postprocess"

[postprocess]
  script = "/usr/bin/log_upload.sh ${.payload.status}"
  on_success = "successful"

From the user's perspective, the await_operation state addition doesn't add much value. And since we have plans to get rid of the await states in the future anyway, I'm wondering if it's better not to deprecate the old syntax to keep things simpler for now.

Since even the decision to overload the operation keyword for builtin operations might also get revisited while we introduce more granular builtin actions like download, file-copy etc, I'm wondering if we can keep the simpler action = "builtin" syntax itself for another release, and introduce the operation = "builtin:<operation_name>" style only once we're fully confident that it is the way to go?

For this PR, nothing changes except hiding the newly added operation syntax from the toml_config level and keeping the newly added await handlers for the old builtin action. With that, the user still gets the new capability to add post-processing steps to a builtin action with minimal config changes as well. WDYT?

[didier-wenzek]

I don't fully follow you.

• action = "builtin" is not deprecated yet: this is still working, but discouraged in the documentation.
• operation = "builtin:<operation_name> is really nicer from a user perspective. This is a personal point of view, but with some evidence: the documentation has been far simpler to write and there is less traps in using it.
• We are now in a position to make implicit the action = "await-operation-completion", removing some burden to the user.
• I see smaller-grain actions like download, file-copy ... as a nice idea we really have to work on. But, I don't see any those as full-fledged operations (with an MQTT topic, capabilities, retain messages, states ...). Hence, no risk of confusion.

[albinsuresh]

What I meant was, since action = "builtin" is still supported (although to-be deprecated), there are currently two ways for the user to attach post-processing logic to builtin operation workflows:

1. The recommended approach with operation = "builtin:<operation> as follows:

[executing]
operation = "builtin:log_upload"
on_exec = "await_operation"

[await_operation]
action = "await-operation-completion"
on_success = "postprocess"

[postprocess]
script = "/usr/bin/log_upload.sh ${.payload.status}"
on_success = "successful"

2. The discouraged/legacy approach of action = "builtin", with the newly supported await handlers:

[executing]
action = "builtin"
on_success = "postprocess"

[postprocess]
script = "/usr/bin/log_upload.sh ${.payload.status}"
on_success = "successful"

From the external user's perspective, the second one with just 2 states looks much simpler, as the additional await_operation state in the first approach is just boilerplate which adds no value to the user (unless I'm missing something here). The only additional thing that they get by using operation is the input and input_script support, which is also less useful here IMO, as there is little scope for input manipulation when the main operation and the builtin operation are of the same type (since the same input can be passed as-is).

Since both syntaxes are providing the same functionality and the latter being minimal, I was just wondering why even expose the new operation = "builtin:<operation> API, when the existing action = "builtin" API (with the newly added support for await actions) does the same job with less boilerplate. Or is there some additional benefit with the operation approach that I'm missing?

PS: Talking purely about the external facing TOML level API/syntax here.

[didier-wenzek]

From the external user's perspective, the second one with just 2 states looks much simpler, as the additional await_operation state in the first approach is just boilerplate which adds no value to the user (unless I'm missing something here).

Yes, you are missing something. 3 steps are already required in the second case. Indeed, the scheduled step must be invoked as well as the executing step.

The only additional thing that they get by using operation is the input and input_script support, which is also less useful here IMO, as there is little scope for input manipulation when the main operation and the builtin operation are of the same type (since the same input can be passed as-is).

This was the plan when starting this PR, but has been abandoned meantime. As a builtin:<operation> can only apply to the current operation there is no point to tune the input.

Or is there some additional benefit with the operation approach that I'm missing?

Using action = "builtin" is really error prone unless you stick to a strict template.

[didier-wenzek]

Oops, I have to rename this commit f27bf17

[Bravo555]

One question about the tests and small nits, overall LGTM.

[Bravo555]

nit: unnecessary quotes

[didier-wenzek]

Fixed

[Bravo555]

suggestion: reads shorter + jump to definition in IDE actually jumps to our try_from definition, instead of a stub try_into impl in stdlib

Suggested change

	let input_script = input.input_script;
	let handlers = ExecHandlers::try_from((input.handlers, defaults))?;

[didier-wenzek]

Indeed clearer!

Fixed by 7ad7db4

[Bravo555]

Suggested change

	Ok(OperationAction::BuiltInOperation(
	let handlers = ExecHandlers::try_from((input.handlers, defaults))?;

[didier-wenzek]

Fixed by 7ad7db4

[Bravo555]

Suggested change

	input.handlers.clone(),
	let exec_handlers = ExecHandlers::try_from((

[didier-wenzek]

Fixed by 7ad7db4

[Bravo555]

Suggested change

	input.handlers,
	let await_handlers = AwaitHandlers::try_from((

[didier-wenzek]

Fixed by 7ad7db4

[Bravo555]

question: The agent is supposed to clean-up the command, shouldn't we check that it does instead of manually cleaning in the test?

[didier-wenzek]

No the agent do nothing once the command is successful or failed. This is the requester who is supposed to clean-up the command, once processed the final outcome.