volume rm require exact name #24027
volume rm require exact name #24027
Conversation
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: zackattackz The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
We were not able to find or create Copr project Unless the HTTP status code above is >= 500, please check your configuration for:
|
github-actions
bot
added
the
kind/api-change
|
Tested with test-apiv2 as well for the API changes ( |
|
Regarding anonymous volumes, removal of them exhibited the same behavior as names and ids are treated the same, and no special conditions look to be in place for removal of anonymous volumes. |
|
Also worth noting, no other rm commands I looked at shared the same original behavior of removing on partial name matching (container rm, rmi, pod rm) |
|
Amended with test in |
|
Amended because codespell doesn't like "fo" |
|
Thanks @zackattackz |
zackattackz
force-pushed
the
main
branch
2 times, most recently
from
9d385e2
to
68d4318
Compare
|
No problem @rhatdan, thanks for reviewing. I amended to fix two failing tests that the stdout result of them wasn't matching what was expected. It's weird though because shouldn't the "bogus volume" test have been failing prior to my commit? It already had the wrong expected stdout in there. Just wasn't sure if this indicated I've screwed something up somehow. I couldn't get the e2e tests running on my machine to check it before my commit. Also, I did add the release note bc I wasn't sure if this would be a breaking change or not. It is a tightening of the API so I would think it would be, but I'll leave that decision to y'all. |
zackattackz
force-pushed
the
main
branch
2 times, most recently
from
ee8f0f7
to
e5af790
Compare
|
There seems to be multiple different possible stderr messages volume rm can emit in the e2e volume_rm test. Either "Error: volume with name {name} not found: no such volume" or "Error: no such volume". Again, I'm not sure how it was passing before, unless I caused this. So to fix it I amended the test to just check for non clean exit instead of checking specific error message. |
|
Ah ok so after looking more into it basically the new error messages that are coming up are due to GetVolume's implementations in boltdb and sqlite returning different error messages than the LookupVolume counterparts. So I could check the backend like is done in other tests (here for example) and change the expected error message based on that. Or I could keep the current version that doesn't check specifically. Whichever one the reviewer prefers. |
There was a problem hiding this comment.
Please find a way to check error messages.
Reason: we've had far too many instances of something like:
foo = ...podman("command", "OOPSTYPOMISSPELLINGORSOMETHINGLIKETHAT", "...")
Expect(failure)
...and it does fail with "syntax error" or "unknown command" or something completely different but it's still a failure so CI passes.
Thanks for understanding.
test/e2e/volume_rm_test.go
Outdated
| @@ -54,7 +54,7 @@ var _ = Describe("Podman volume rm", func() { | |||
| It("podman volume remove bogus", func() { | |||
| session := podmanTest.Podman([]string{"volume", "rm", "bogus"}) | |||
| session.WaitWithDefaultTimeout() | |||
| Expect(session).Should(ExitWithError(1, `no volume with name "bogus" found: no such volume`)) | |||
| Expect(session).ShouldNot(ExitCleanly()) | |||
There was a problem hiding this comment.
Hi! Thank you for your contribution, this is much-needed work, but we absolutely require error-message checks. This is not negotiable.
There was a problem hiding this comment.
Hey thank you for checking this out. I figured out why they were different, see my latest comment. I can check the specific database backend of the test runner to change the expected result
test/e2e/volume_rm_test.go
Outdated
| expect = `more than one result for volume name "myv": volume already exists` | ||
| } | ||
| Expect(session).To(ExitWithError(125, expect)) | ||
| Expect(session).ShouldNot(ExitCleanly()) |
zackattackz
force-pushed
the
main
branch
3 times, most recently
from
af5997d
to
8bb8f6a
Compare
This commit reverts the behavior of allowing volume removal by partial name in favor of requiring the exact name. It does this by favoring usage of `GetVolume` over `LookupVolume` In the past, issue containers#3891 was raised to allow partial name matching on `podman volume rm`, which was fixed by PR containers#3896. However, it has been determined in issue containers#23943 that the pros of allowing removal by partial name (less keys to type) are outweighed by the cons (possibility of unintentionally deleting a volume you didn't mean to). So the behavior will be reverted. Since PR containers#3896, there has also been PR containers#4832 and PR containers#6736, which extended the partial name removal behavior to API endpoints. This commit also makes these endpoints require exact names. Closes containers#23943 Signed-off-by: Zachary Hanham <[email protected]>
|
|
||
| session = podmanTest.Podman([]string{"volume", "ls"}) | ||
| session.WaitWithDefaultTimeout() | ||
| Expect(session).Should(ExitCleanly()) | ||
| Expect(len(session.OutputToStringArray())).To(BeNumerically(">=", 2)) | ||
| output := session.OutputToStringArray() | ||
| expectedLs := []string{"DRIVER VOLUME NAME", fmt.Sprintf("local %s", defaultVolName)} |
There was a problem hiding this comment.
Should I use volume ls -q here to make checking more succinct?
| @@ -556,7 +556,11 @@ EOF | |||
|
|
|||
| @test "podman volume rm --force bogus" { | |||
| run_podman 1 volume rm bogus | |||
| is "$output" "Error: no volume with name \"bogus\" found: no such volume" "Should print error" | |||
| expectedoutput="Error: no such volume" | |||
| if [[ "$CI_DESIRED_DATABASE" = "boltdb" ]]; then | |||
There was a problem hiding this comment.
Saw this env var used in some other test/system/*.bats files, wasn't sure if it was OK to use it here?
|
OK tests are green now. Amended to conditionally check db backend in tests to get expected outpuit. Also amended to add and fix a test in test/system/160-volumes.bats |
There was a problem hiding this comment.
blocking for now as we must verify how docker actually behaves.
Structurally it seems odd to me to only change this for volume rm but not volume inspect or other commands. This inconsistency worries me.
And reading the original issue it seems we have at least one user who prefers the current behavior so we must make a clear decision if we want to "break" this without major release.
Code wise looks good
|
|
||
| session = podmanTest.Podman([]string{"volume", "ls"}) | ||
| session.WaitWithDefaultTimeout() | ||
| Expect(session).Should(ExitCleanly()) | ||
| Expect(len(session.OutputToStringArray())).To(BeNumerically(">=", 2)) | ||
| output := session.OutputToStringArray() | ||
| expectedLs := []string{"DRIVER VOLUME NAME", fmt.Sprintf("local %s", defaultVolName)} |
|
Hi @Luap99, thank you for reviewing.
Sorry forgot to look more into this. From a cursory look at
Yes this is a good point, a short look into I think it may be worth considering also removing partial naming from anywhere else too (assuming that docker doesn't have it). The reason is that you are never "certain" that a command you run that expects a partial name actually operated on the correct item unless you are also certain of any of these:
If you are not certain of one of the above, you always run the risk of the situation that the item you're expecting to operate on doesn't actually exist, and exactly one matching ambiguously named item does exist, which will be operated on instead. In that sense, operations that use partial names (anything that uses a |
|
To verify how docker behaves: Calling All this points to the fact that there is no partial name lookup happening in docker. |
Well there isn't a need to test all commands, our logic currently is in |
I meant more so that I'd need to also verify that other docker commands don't use partial names, I only looked into image remove. It probably wouldn't be too bad to figure out though.
Yes that does make sense to defer to a later version. Is there a development branch I should re-target into then? Or where else should I follow to keep up with progress on the next major version, so that I could re-submit this PR when the time is right? Thank you |
This commit reverts the behavior of allowing volume removal by partial name in favor of requiring the exact name. It does this by favoring usage of
GetVolumeoverLookupVolumeIn the past, issue #3891 was raised to allow partial name matching on
podman volume rm, which was fixed by PR #3896. However, it has been determined in issue #23943 that the pros of allowing removal by partial name (less keys to type) are outweighed by the cons (possibility of unintentionally deleting a volume you didn't mean to). So the behavior will be reverted.Since PR #3896, there has also been PR #4832 and PR #6736, which extended the partial name removal behavior to API endpoints. This commit also makes these endpoints require exact names.
Closes #23943
Does this PR introduce a user-facing change?