Add an endpoint for removing images recursively by digests #247
Conversation
|
Attached issue: https://pulp.plan.io/issues/8105 |
lubosmj
force-pushed
the
remove-by-digest-man-push-repo-8105
branch
from
1379aaa
to
017324d
Compare
|
@ipanova, @mdellweg, is it sufficient enough to lock just a repository while performing the removal task? Is it always guaranteed that all objects within the repository (i.e., manifests, blobs, tags) are going to be locked as well? If so, has the locking of all the objects any negative impact on the performance? |
we can't lock on the content for the performance reasons. lock on the repo means that no other action can be performed on it until you finish your current task. So if you have locked the repo for a removal operation, another removal/add operation won't be executed in parallel, it will wait until the lock will be released, so tldr no content will disappear from the repo during the removal rask in course. |
CHANGES/8105.feature
Outdated
| @@ -0,0 +1 @@ | |||
| Added a new API endpoint that allows users to remove an imange by a digest within a push repository. | |||
There was a problem hiding this comment.
s/within a push repository/from a push repository
| Manifest, | ||
| MEDIA_TYPE, | ||
| Tag, | ||
| ) | ||
|
|
||
|
|
||
| def recursive_remove_content_find_tags(repository_pk, manifest_pk): |
There was a problem hiding this comment.
we need to add blobs here as well. And manifests in case what you are trying to remove by digest happens to be a manifest_list. Now the trick is to remove only those blobs that are not referenced by any other image within that repo; remove only those image manifests that are not referenced in other manifest lists within that repo and those that are not tagged. All this logic is respected in the task recursive_remove_content.
I suggest using it, just in the content_unit already provide pks of the manifest/manifest-list and pks of all tags you will find referenced by that object.
There was a problem hiding this comment.
you can find all the pks i was talking about in the viewet and pass it to the task from the viewset.
lubosmj
force-pushed
the
remove-by-digest-man-push-repo-8105
branch
5 times, most recently
from
d0b0955
to
9d16554
Compare
pulp_container/app/serializers.py
Outdated
| new_data["digest"], new_data["latest_version"] | ||
| ) | ||
|
|
||
| def get_manifest(data): |
There was a problem hiding this comment.
extracting the repeated code into a separate function and leaving it like this in between all other serializers' code makes it hard to read because it gets 'lost', you need to logically place it.
you can define a mixin that would validate repo_version and manifest or you can just let it be and leave this try/excpet repeated twice. Sometimes it is more readable to have the code repeated rather then adding mixins and have multi-inheritance for the sake of saving several lines of code.
There was a problem hiding this comment.
I am wondering if this Manifest lookup can be rephrased with a HiddenField, as well as the latest_version [0]. But that would be refactoring and we should not do that along with a feature PR. I agree with @ipanova that sometimes keeping the things where they happen to not have to scoll up and down to understand makes reading easier.
At the very least i am quite unhappy with the function name, because in django all the "get_" functions raise DoesNotExist and this one will raise ValidationError.
[0] https://www.django-rest-framework.org/api-guide/fields/#hiddenfield
| def tearDownClass(cls): | ||
| """Delete the created distribution.""" | ||
| cls.distributions_api.delete(cls.distribution.pulp_href) | ||
| cls.namespaces_api.delete(cls.namespace.pulp_href) |
There was a problem hiding this comment.
there is no need to delete distribution, it gets removed automatically with the namespace.
There was a problem hiding this comment.
The last force-push is resolving this comment.
| Validate and extract the latest repository version, manifest, and tags from the passed data. | ||
| """ | ||
| new_data = {} | ||
| new_data.update(self.initial_data) |
There was a problem hiding this comment.
What is happening here?
Should this not be new_data = super().validate(data)?
Does this circumvent the field validations?
Why do we refer to a repository here, and there is no repository field?
There was a problem hiding this comment.
There is no need to call the base validate() method because it does literally nothing. The field for a repository is initialized automatically. We already use such a technique here:
pulp_container/pulp_container/app/serializers.py
Lines 324 to 335 in 8274e1e
It does not circumvent the validation because of this:
https://github.com/pulp/pulp_container/pull/247/files#diff-31c44b2812e50f3171248db027f439e8e64248cb84067fc7c305de74cdb9a86fR875-R880
| latest_version_href = self.repositories_api.read(self.repo.pulp_href).latest_version_href | ||
| content_summary = self.versions_api.read(latest_version_href).content_summary | ||
|
|
||
| self.assertEqual(content_summary.present, {}) |
lubosmj
force-pushed
the
remove-by-digest-man-push-repo-8105
branch
2 times, most recently
from
767942c
to
1258117
Compare
lubosmj
force-pushed
the
remove-by-digest-man-push-repo-8105
branch
from
1258117
to
5fad458
Compare
closes #8105