"snapcraft validate" and "snapcraft gated" commands

[ralsina]

Implements snapcraft validate and gated commands, according to discussions and specs.

[elopio]

hey, that's cheating! :)

[ralsina]

Sorry, that was just temporary while I figure out how to make main have less than a 12 complexity with 12 commands, adding a XXX comment :-)

[ralsina]

Done by adding a specific flake8 comment to disable this check in the function that was failing.

Rationale is: I can make the complexity "go away" by doing things like a dictionary dispatch but IRL it's replacing a straightforward if/elif chain with something much less obvious.

[elopio]

I would call this: print_gated_snaps.

[sergiusens]

or show_gated

[ralsina]

I was going with the convention of functions being called the same as the command. If you guys like that better, no problem for me.

[sergiusens]

fair enough from me.

[josepht]

I like having the functions match the command.

[sergiusens]

is there a scenario where another zero value would make if not search_results not a desirable way to write this?

[ralsina]

No such scenario. I sorta like this better since None is what the called function returns, but am ok with changing it :-)

[sergiusens]

let's change it please. Thanks

[ralsina]

Changed

[sergiusens]

if key: reads better here, is there a possibility for it to be a zero value?

[ralsina]

There is a remote chance of someone doing something like --key='' I guess but that ends up being None. Changing it, since empty strings are invalid key names anyway.

[sergiusens]

what would this error look like?

[ralsina]

Honestly, not very good, like

Expecting value: line 1 column 1 (char 0)

I'd change it to a generic "Invalid response from server" maybe?

[sergiusens]

Yes please, the json decode error is just not friendly for a user.

What would help with debugging this later is to add a logger.debug line with response somewhere in the message. Like logger.debug('Invalid response from the server when doing blah: {} {}'.format(response.code, response.text))

[ralsina]

Done.

[cprov]

@ralsina let's drop this search-based query by the new snap-details endpoint caller:

store.cpi.get_package(self, snap_name, channel, arch):

https://github.com/snapcore/snapcraft/blob/master/snapcraft/storeapi/__init__.py#L291

[ralsina]

ack, replacing.

[ralsina]

Done.

[cprov]

Roberto, expected_validations has to be optional as well, otherwise you end up passing a and expected result that is completely irrelevant in the testing scenario.

[ralsina]

Done

[cprov]

Like this call, the expected_validations is not relevant here, only the expected_error

[ralsina]

Fixed

[cprov]

I think snapcraft guidelines enforce having individual integration test files for each command. Keeping it this way is simpler than arguing for a guidelines change (small boilerplate)

[ralsina]

I'll split it.

[ralsina]

Done

[cprov]

get_package() is not prepared for receiving arch=None, it's pushing a bogus header for CPI waiting for a disaster to happen ... arch is not important for snap-id lookups, so adjust get_package to suppress 'X-Ubuntu-Architecture' is arch is None (similar tweak on errors.SnapNotFound)
Also, I don't see much value in this wrapper if SnapNotFound message is sane, no need to turn it into RuntimeError, 2 different things.

[ralsina]

Done. I also fixed a similar wrapper in _store.download

[cprov]

"developer_id" will be the account-id of the uploader of the latest revision available in stable channel, because of package-collaborating (sharing) it might not be the "publisher", there is no "publisher_id" in CPI. More importantly, it's not the currently authenticated "account-id", so I think it will be less ambiguous (little more expensive) if you simply fetch account-info.account-id.

[ralsina]

Ack, will do.

[cprov]

as commented above, "developer_id" is not what you are looking for for validation assertions, it's always signed by the publisher.

[ralsina]

Done.

[cprov]

So, you don't need 'developer_id' and 'release' in the current code.

[ralsina]

Fixed.

[sergiusens]

Thanks, looks generally good, but for a better review I need to sit down and read the design docs for validate and gated. Will get back to you again

[sergiusens]

Is there a reason for this method?

[ralsina]

Just that it was common code between gated and validate. It used to be more complicated, it is now too trivial not to inline, will change it.

[sergiusens]

Mind using !r here?

[ralsina]

Sure!

[sergiusens]

Same !r

[ralsina]

Sure! For all args?

[cprov]

Looks good, few points to be improved inline.

Could you, please, squash the ~50 commits to make the PR cleaner.

[cprov]

The check below seems to be more effective and the pattern used in other places.

if os.getenv('TEST_STORE', 'fake') != 'fake':

[ralsina]

Done.

[cprov]

this indentation is a little odd ... What about the following:

    validations = [('snap-1', '3'), ('snap-2', '5')]
    exit_code = self.gated('ubuntu-code', validations)
    self.assertEqual(0, exit_code)

(repeated in several tests below)

[cprov]

this code is gone because SnapNotFoundError will be raised to top-level exception handler with equivalent info, right ?

[ralsina]

Exactly.

[cprov]

I don't understand what this function buys us. Can't callsites call store.cpi.get_package() directly ?
Also, you've made "arch" optional, no need to pass None.

[ralsina]

Well, it was more complicated before :-) I agree it has become a bit too simple and can just be inlined.

[cprov]

as commented above, "developer_id" is not what you are looking for for validation assertions, it's always signed by the publisher.

[ralsina]

Done.

[cprov]

So, you don't need 'developer_id' and 'release' in the current code.

[ralsina]

Fixed.

[cprov]

this is hardly a debug message, it's an error. What about making sure the raised exception has enough information to guide the user and that's it.
If our servers are not returning proper JSON and we don't know already ... it's more like our problem.

[ralsina]

This error usually will mean something like "we are getting HTML instead of JSON because we are pointing to the wrong URL" and the error message will say "Bad response". I think this was suggested by @sergiusens in the previous review, happy to change it if he's ok with it.

[cprov]

ok, shows additional data if '-d' is given, I am sold.

[sergiusens]

@cprov I need this for the odd case of having issues in production where I can just tell people to add --debug :-)

[cprov]

mitigated by https://code.launchpad.net/~cprov/software-center-agent/sign-build-errors/+merge/306939

[ralsina]

Awesome. Want me to remove the XXX?

[cprov]

Only if it fixes your problem.

[cprov]

would textwrap.dedent() help you here ?

[ralsina]

It will look nicer. Changing it.

[elopio]

There's something weird with your diff, this shouldn't be from your PR.

[ralsina]

I did something weird trying to collapse the commits I guess. I'd revert this one, but it's the same as master, right? I have no idea what to do about it :-)

[elopio]

So, we will never be able to test this against a real system? There is no way to seed some valid values there?

[ralsina]

The main problem is that you need the logged in user to match against the publisher of several snaps in the store. I suppose we can make it work by creating a user account, uploading snaps for it and sharing the password between testers? (and also making the name of those snaps match the ones used internally on the tests... one is 'ubuntu-core' at this point)

[elopio]

Yes, that sounds "good" to me. We have u1test+snapcraft@canonical.com, I can give you the password.

[elopio]

This function is too long, can you split it? You are splitting it with comments, it seems it could be nice to have one smaller function per comment.

[ralsina]

Sure! I'll do it tomorrow morning.

[ralsina]

I split it in 3, there is a largish chunk in the loop that's hard to split without writing functions with many args, which are a separate readability problem. Let me know if you like the current split or want me to split finer.

[cprov]

It looks better now, thanks.

[elopio]

#noqa here wouldn't hurt, it could be nicer to read.

[ralsina]

Funny part: the NOQA comment goes 80 lines below here :-D

[elopio]

well, actually ;)
I think it could be nice to split the commands that handle keys from the commands that handle snap uploads and releases. Not a big deal though, just if you agree.

[elopio]

Thanks Roberto, this looks pretty good. I've left some questions, I'm just worried about the lack of integration tests against the real server.
And please don't forget to leave your comments and suggestions :) If there's something you hated while implementing these features, let us know.

[ralsina]

Not hated, but docopt is weird once you have these many commands (I know sergio is removing it)

[sergiusens]

El martes, 27 de septiembre de 2016 20h'19:10 ART, Roberto Alsina
notifications@github.com escribió:

Not hated, but docopt is weird once you have these many
commands (I know sergio is removing it)

I am sort of settled on click. Not sure if due to everything I read or the
irony 🙃

Enviado con Dekko desde mi dispositivo Ubuntu

[ralsina]

Ok, I think I covered all suggestions by @cprov and @elopio, so waiting for final reviews. Thanks for the effort reviewing this guys :-D

[cprov]

Thanks Roberto,

Few points to address and also make sure tests are passing.

[cprov]

I would use os.getenv('TEST_STORE', 'fake') just to be on the safe-side in case TEST_STORE is not defined.

[ralsina]

getenv returns None for undefined vars...

[ralsina]

Doh. Of course someone may run this manually :-)

[ralsina]

done

[cprov]

ditto.

[ralsina]

done

[cprov]

I think we should resolve the snap-id via account-info (logged users accessible snaps) instead of hitting CPI and require an active publication in 'stable'.

Also 'None' is not needed, arch is optional

[ralsina]

Argh, forgot to remove it when I made it optional :-P
I'll look into resolving via account-info now.

[ralsina]

Done

[cprov]

Again, snap-id comes from account-info and 'None' is obsolete.

[ralsina]

Done

[cprov]

Right, for the validated snaps (3rd-part most likely) we hit CPI and require stable publications __ for now, because I wonder if we would even set things up while all snaps are in unstable channels, but I am sure we can sort this out later.
None is not needed.

[ralsina]

This only affects automatic updates, right? do we even do those for other channels?

[cprov]

You are right, the happy path is enable refresh-control, no validation nothing gets updated even if the controlled snaps reach 'stable'. Once there one overrides refresh-control and installs the not-yet-validation snaps, run tests, then create the corresponding validations.
Thanks for clarifying this.

[elopio]

This function is too long, can you split it? You are splitting it with comments, it seems it could be nice to have one smaller function per comment.

[ralsina]

Sure! I'll do it tomorrow morning.

[ralsina]

I split it in 3, there is a largish chunk in the loop that's hard to split without writing functions with many args, which are a separate readability problem. Let me know if you like the current split or want me to split finer.

[cprov]

It looks better now, thanks.

[cprov]

this is hardly a debug message, it's an error. What about making sure the raised exception has enough information to guide the user and that's it.
If our servers are not returning proper JSON and we don't know already ... it's more like our problem.

[ralsina]

This error usually will mean something like "we are getting HTML instead of JSON because we are pointing to the wrong URL" and the error message will say "Bad response". I think this was suggested by @sergiusens in the previous review, happy to change it if he's ok with it.

[cprov]

ok, shows additional data if '-d' is given, I am sold.

[sergiusens]

@cprov I need this for the odd case of having issues in production where I can just tell people to add --debug :-)

[cprov]

mitigated by https://code.launchpad.net/~cprov/software-center-agent/sign-build-errors/+merge/306939

[ralsina]

Awesome. Want me to remove the XXX?

[cprov]

Only if it fixes your problem.

[josepht]

LGTM

[sergiusens]

i think I have the last set of feedback from your Initial skeleton for validate 😉

[sergiusens]

Making [<snap-revision> ...] [--key-name=<key-name>] optional allows me to run
snapcraft validate <snap-name> which provides no useful output and probably invalid:

$ snapcraft validate telegram-sergiusens
Getting details for telegram-sergiusens
$

[sergiusens]

<snap-revision> is f the form <snap-name>=<revision>? This needs a better arg-name.

[sergiusens]

maybe <snap-name-revision-pair>

[ralsina]

Better arg-name ... maybe "validation"?

Yes, it's always snap-name=revision

And it's most definitely not optional, there must be at least one. How does one tell docopt "one or more of these"?

Yes, calling "snapcraft validate telegram-sergiusens" currently does nothing. I can add a check for "at least one validation" if there's no way to tell docopt to do it.

[ralsina]

@sergiusens I just pushed a change where it now is <validation>... which renames it, and makes it required at least once.

[sergiusens]

http://try.docopt.org/?doc=snapcraft%0D%0A%0D%0AUsage%3A%0D%0A++snapcraft+validate+%3Csnap-name%3E+%28--keys+%3Cone%3E+%7C+%3Ctwo%3E%29&argv=validate+snap+--keys+1

[cprov]

this is hardly a debug message, it's an error. What about making sure the raised exception has enough information to guide the user and that's it.
If our servers are not returning proper JSON and we don't know already ... it's more like our problem.

[ralsina]

This error usually will mean something like "we are getting HTML instead of JSON because we are pointing to the wrong URL" and the error message will say "Bad response". I think this was suggested by @sergiusens in the previous review, happy to change it if he's ok with it.

[cprov]

ok, shows additional data if '-d' is given, I am sold.

[sergiusens]

@cprov I need this for the odd case of having issues in production where I can just tell people to add --debug :-)

[sergiusens]

ok to test