K8SPSMDB-1219: PBM multi storage support

[egegunes]

Operator always supported multiple storages but didn't have native
support for having multiple backup storages until v2.6.0. In operator we
were reconfiguring PBM every time user selects a storage for their
backups/restores different than the previous storage. This was causing
long wait periods esp. in storages with lots of backups due to resync
operation.

Another limitation was forcing users to have only 1 backup storage if
they want to enable point-in-time-recovery. In case of multiple
storages, PBM would upload oplog chunks to whatever storage is last used
by a backup/restore and this would make consistent recovery impossible.

PBM v2.6.0 added native support for multiple storages and these changes
introduce it to our operator:

* User can have one main storage in PBM configuration. Any other
  storages can be added as profiles.

Main storage can be found in:
```
kubectl exec cluster1-rs0-0 -c backup-agent -- pbm config
```

This commit introduces a new field `main` in storage spec:
```
storages:
  s3-us-west:
    main: true
    type: s3
    s3:
      bucket: operator-testing
      credentialsSecret: cluster1-s3-secrets
      region: us-west-2
````

If user only has 1 storage configured in `cr.yaml`, operator will
automatically use it as main storage. If more than 1 storage is
configured, one of them must have `main: true`. User can't have more
than 1 storage with `main: true`.

If user changes main storage in cr.yaml, operator will configure PBM
with the new storage and start resync.

Any other storage in `cr.yaml` will be added to PBM as a profile.

User can see profiles using cli:
```
kubectl exec cluster1-rs0-0 -c backup-agent -- pbm profile list
```

When user adds a new profile to `cr.yaml`, operator will add it to PBM
but won't start resync.

**`pbm config --force-resync` only start resync for the main storage.**

To manually resync a profile:
```
kubectl exec cluster1-rs0-0 -c backup-agent -- pbm profile sync <storage-name>
```

If user starts a restore using a backup in a storage configured as
profile, operator will start resync operation for profile and block
restore until resync finishes.

Note: Profiles are also called external storages in PBM documentation.

If user has multiple storages in `cr.yaml` and changes main storage
between them, operator:
1. configures PBM with the new main storage.
2. adds the old main as a profile.
2. deletes profile for the new main storage.

If user configures `backupSource` in backups/restores:
* if `cr.yaml` has no storages configured, operator configures PBM with
  storage data in `backupSource` field. This storage will effectively be
  the main storage until user adds a storage to `cr.yaml`. After a
  storage is configured PBM configuration will be overwritten and
  `backupSource` storage will be gone.
* if `cr.yaml` has a storage configured, operator adds `backupSource`
  storage as a profile.

* Oplog chunks will be only be uploaded to main storage.

User can use any backup as base backup for point-in-time-recovery.

* Incremental backup chains all need to be stored in the same storage.

TBD after https://github.com/percona/percona-server-mongodb-operator/pull/1836 merged.

---

Other significant changes in operator behavior:

* Operator now configures automatically configures PBM on a fresh
  cluster.

  Before this changes, PBM was not configured until user starts a
  backup/restore after deploying a fresh cluster. Now, PBM will directly
  configured with main storage in `cr.yaml` and resync will be started
  in the background.

  There's a new field in `PerconaServerMongoDB` status:
  `backupConfigHash`. Operator will maintain hash of the current PBM
  configuration and reconfigures PBM if hash is changed. Fields in
  `spec.backup.pitr` are excluded from hash calculation, they're handled
  separately.
* If `PerconaServerMongoDB` is annotated with `percona.com/resync-pbm=true`,
  operator will start resync operation both for main storage and
  profiles. Resync for profiles are started with the equivalent of `pbm
  profile sync --all`. These resync operations will be run in the
  background and will not block the reconciliation.
* If a backup that has `percona.com/delete-backup` finalizer is deleted,
  operator will only delete oplogs chunks if it's in main storage.

CHECKLIST

Jira

• Is the Jira ticket created and referenced properly?
• Does the Jira ticket have the proper statuses for documentation (Needs Doc) and QA (Needs QA)?
• Does the Jira ticket link to the proper milestone (Fix Version field)?

Tests

• Is an E2E test/test case added for the new feature/change?
• Are unit tests added where appropriate?
• Are OpenShift compare files changed for E2E tests (compare/*-oc.yml)?

Config/Logging/Testability

• Are all needed new/changed options added to default YAML files?
• Are all needed new/changed options added to the Helm Chart?
• Did we add proper logging messages for operator actions?
• Did we ensure compatibility with the previous version or cluster upgrade process?
• Does the change support oldest and newest supported MongoDB version?
• Does the change support oldest and newest supported Kubernetes version?

[gkech]

Since we can have multiple storages configured, this also means that we can also have multiple storages configured as main. I think we can increase the scope of this validation and ensure that only one main storage is defined.

[gkech]

Out of curiosity, why is build time needed for our log?

[egegunes]

for consistency. we have this in PXC operator and it's useful in case of problems with image caching

[gkech]

We can write this like return "", BackupStorageSpec{}, errors.New("main storage not found") and drop completely the vars at the start of the function. It is more idiomatic.

[gkech]

It is totally fine as is, but if we want to be super bulletproof, we can do this

func (cr *PerconaServerMongoDB) PBMResyncNeeded() bool {
	v, exists := cr.Annotations[AnnotationResyncPBM]
	return exists && v != ""
}

[gkech]

Recommend we use .IsZero() for similar checks

[gkech]

I would love if we added a unit test for this function, a really basic one, mainly because getting the right main storage is super critical not to break and I wouldn't like us to rely on tests that somehow verify this together with other logic.

[gkech]

Since pbm is used on this scope for the first time, here

	if err := enablePiTRIfNeeded(ctx, pbm, cr); err != nil {
		return errors.Wrap(err, "enable pitr if needed")
	}

We can save some API calls if the full backup logic needs to return by moving the new pbm creation after the if clause.

[gkech]

🙌🏽 nice, like for these new functions

[gkech]

Here we pass the cr object but it may change in another reconciliation loop, right? I think we should handle this scenario with some form of syncing or queuing i.e. if multiple loops occur in a small amount of time.

[gkech]

But maybe if a resync is running, new reconciliations won’t start another routine

[nmarukovich]

Just curious, would it be helpful to add :
start main storage resync

[nmarukovich]

Would it be helpful to users, if we add time that we wait? Does it make sense in this case to make timeouts configurable?

[github-actions]

[gofmt] _{reported by reviewdog 🐶}

Suggested change

	"storage-1": BackupStorageSpec{
	"storage-1": {

[github-actions]

[gofmt] _{reported by reviewdog 🐶}

Suggested change

	"storage-1": BackupStorageSpec{
	"storage-1": {

[github-actions]

[gofmt] _{reported by reviewdog 🐶}

Suggested change

	"storage-2": BackupStorageSpec{
	"storage-2": {

[github-actions]

[gofmt] _{reported by reviewdog 🐶}

Suggested change

	"storage-3": BackupStorageSpec{
	"storage-3": {

[github-actions]

[goimports-reviser] _{reported by reviewdog 🐶}

Suggested change

	psmdbv1 "github.com/percona/percona-server-mongodb-operator/pkg/apis/psmdb/v1"
	psmdbv1 "github.com/percona/percona-server-mongodb-operator/pkg/apis/psmdb/v1"

[github-actions]

[shfmt] _{reported by reviewdog 🐶}

Suggested change

[github-actions]

[shfmt] _{reported by reviewdog 🐶}

Suggested change

	if [[ ! -z ${sort} ]]; then
	if [[ -n ${sort} ]]; then

[JNKPercona]

Test name	Status
arbiter	passed
balancer	passed
custom-replset-name	passed
custom-tls	passed
custom-users-roles	passed
custom-users-roles-sharded	passed
cross-site-sharded	passed
data-at-rest-encryption	passed
data-sharded	passed
demand-backup	failure
demand-backup-fs	passed
demand-backup-eks-credentials-irsa	passed
demand-backup-physical	passed
demand-backup-physical-sharded	failure
demand-backup-sharded	passed
expose-sharded	passed
ignore-labels-annotations	passed
init-deploy	passed
finalizer	passed
ldap	passed
ldap-tls	passed
limits	passed
liveness	passed
mongod-major-upgrade	failure
mongod-major-upgrade-sharded	passed
monitoring-2-0	passed
multi-cluster-service	failure
multi-storage	passed
non-voting	passed
one-pod	passed
operator-self-healing-chaos	passed
pitr	passed
pitr-sharded	passed
pitr-physical	passed
preinit-updates	passed
pvc-resize	passed
recover-no-primary	passed
replset-overrides	passed
rs-shard-migration	passed
scaling	passed
scheduled-backup	passed
security-context	passed
self-healing-chaos	passed
service-per-pod	passed
serviceless-external-nodes	passed
smart-update	passed
split-horizon	passed
stable-resource-version	passed
storage	passed
tls-issue-cert-manager	passed
upgrade	passed
upgrade-consistency	passed
upgrade-consistency-sharded-tls	passed
upgrade-sharded	passed
users	failure
version-service	passed
We run 56 out of 56

commit: 15256b4
image: perconalab/percona-server-mongodb-operator:PR-1843-15256b42