[nexus] Update status API #8897
Conversation
david-crespo
force-pushed
the
update-status-api
branch
from
ff5dd1c to
0bf80f5
Compare
|
|
||
| let counts = status.components_by_release_version; | ||
| assert_eq!(counts.get("install dataset").unwrap(), &7); | ||
| assert_eq!(counts.get("unknown").unwrap(), &15); |
There was a problem hiding this comment.
I will probably want to change the Display impl to make these snake case. I could just write my own helper that does that and leave the Display impl alone, but it's probably bad to have to two ways of doing this.
omicron/nexus/types/src/internal_api/views.rs
Lines 573 to 588 in 8571be3
david-crespo
force-pushed
the
update-status-api
branch
from
4a75d91 to
3a017f1
Compare
david-crespo
force-pushed
the
update-status-api
branch
from
3a017f1 to
5f8076c
Compare
| /// rack should eventually correspond to the release described here. | ||
| /// | ||
| /// Will only be null if a target release has never been set. | ||
| pub target_release: Option<TargetRelease>, |
There was a problem hiding this comment.
I've collapsed the TargetReleaseSource enum with its Unspecified and SystemVersion arms into Option<TargetRelease>, where TargetRelease is always a system version. This is based on my understanding that it's basically never going to be Unspecified after the first few weeks of update being released. By handling that with target_release: null, we ensure future values will be nice ones like target_release: { version: "2.0.0", time_requested: "..." } that don't distract the user with the possibility of other shapes. In the previous TargetReleaseSource enum, this was the distinction between { "type": "unspecified" } vs. { "type": "system_version", ... }. The option approach lets us make the unspecified arm nearly invisible.
| /// The source of the target release. | ||
| pub release_source: TargetReleaseSource, | ||
| /// The specified release of the rack's system software | ||
| pub version: Version, |
There was a problem hiding this comment.
I found the word "source" here very confusing. Now there is no source. There either is no target release or there is one, and when there is one, it always has a system version.
I also thought it was a little weird that you could have a target release like TargetRelease { time_requested: "...", release_source: Unspecified }, namely unspecified but still with a non-null time_requested. Based on the migration adding the unspecified value, time_requested is just whenever the migration ran, which to me is not very meaningful to the user. In this PR, time_requested is still inside TargetRelease, but since TargetRelease is now optional, you only have time_requested in the response when you have a release set.
omicron/schema/crdb/create-target-release/up3.sql
Lines 1 to 12 in c7673aa
| #[derive(Clone, Debug, Deserialize, Eq, PartialEq, Serialize, JsonSchema)] | ||
| pub struct TargetRelease { | ||
| /// The target-release generation number. | ||
| pub generation: i64, |
There was a problem hiding this comment.
This has been removed. I don't think it's meaningful to the user.
| .chain(rot_version) | ||
| .chain(std::iter::once(bootloader_version)) | ||
| .chain(host_version) | ||
| }); |
There was a problem hiding this comment.
It's fine to do this by hand here, but "make a flat list of all the versions in the system" feels like a good operation to have a canonical version of that lives somewhere else.
| self.datastore() | ||
| .target_release_get_generation(opctx, Generation(prev_gen)) | ||
| .await | ||
| .internal_context("fetching previous target release")? | ||
| .and_then(|r| r.tuf_repo_id) |
There was a problem hiding this comment.
This feels a little sketchy? I'm not sure.
Example: after a MUPdate, you might set the target release to the same value it was before. Then the previous row will not be the previous release.
Today, the PlanningInput has this information. Maybe PlanningInputFromDb has a better way to do this?
There was a problem hiding this comment.
Unfortunately, that is where I copied this logic from. The comment suggests that #8056 helps but I am not sure it does.
omicron/nexus/reconfigurator/preparation/src/lib.rs
Lines 163 to 199 in 4d5bdc6
I certainly see your point, though, and it is a problem. In the internal API logic I'm borrowing, it seems like we will only turn up component versions that match either the old or the new one passed in, because we're matching against artifact hashes. In the MUPdate case where current and prev release are the same, components that are on the the MUPdate's version will all show up as TufRepoVersion::Unknown.
omicron/nexus/types/src/internal_api/views.rs
Lines 937 to 968 in 4d5bdc6
There was a problem hiding this comment.
@jgallagher says to use this instead, and sort by generation number to figure out what are old and new releases (not sure I actually need old and new anyway, I just need all the versions on hand).
There was a problem hiding this comment.
Did you decide not to do this now?
There was a problem hiding this comment.
Yeah, I think the upshot of the discussion in chat was that since the internal API logic doesn't do any better, it makes sense to do it this way for now and improve both later. We could use that linked method to fetch more releases, but the code I'm hooking into to match up versions with hashes on the components only takes old and new.
| self.datastore() | ||
| .target_release_get_generation(opctx, Generation(prev_gen)) | ||
| .await | ||
| .internal_context("fetching previous target release")? | ||
| .and_then(|r| r.tuf_repo_id) |
There was a problem hiding this comment.
Did you decide not to do this now?
…#9106) Built on top of #8897 These are breaking API changes and I won't merge until I have a PR up on the CLI side that makes this all work. ### Add list endpoint and fix other ones Made the endpoints match the other ones. Not married to the verb `upload`, but `system_update_repository_update` felt a little silly. ```diff -system_update_get_repository GET /v1/system/update/repository/{system_version} -system_update_put_repository PUT /v1/system/update/repository +system_update_repository_list GET /v1/system/update/repositories +system_update_repository_upload PUT /v1/system/update/repositories +system_update_repository_view GET /v1/system/update/repositories/{system_version} ``` ### Standardize and simplify response types What's responsible for this PR being so big is that I reworked these endpoints to return a new `TufRepo` struct that is only the metadata and no artifacts. The main reason for this was that the list endpoint would have to pull artifacts for every repo in the list. The list is likely to be small, so it's probably not a big deal, but it also seems that the artifacts are not useful to the end user. Once the list endpoint was simplified, it makes sense to return the same thing from the view and update endpoints. The upload endpoint returns a `TufRepoUpload` which has the `TufRepo` together with an indicator saying whether the repo contents were new repo or already existed.
Closes #8869
update_statusendpoint at/v1/system/update/statusthat includes:target_release_view)time_last_progress, representing thetime_made_targetof the latestbp_target— meant to indicate the last time the update system Did Somethingcomponents_by_release_version, a map where the keys are to_string'dTufRepoVersions and the values are counts of components on that versiontarget_release_viewendpoint, which is fully redundant with update statustarget_release_updatethat you can use update status to check the current target releaseTargetReleasestruct that was previously being returned fromtarget_release_viewand is now part of the update status responsegenerationfromTargetReleasebecause it is not meaningful to the end userListing blockers or problems preventing further update progress is mentioned as a goal of #8869, but they are currently stored as JSON blobs in the DB for debug purposes. They will soon be stored in a more regimented way that should make it easy to stick a list of blockers in the response body. If this PR gets merged without that, I'll make a dedicated issue for it.
Example status response
{ "target_release": { "time_requested": "2025-09-24T22:37:43.266338Z", "version": "2.0.0" }, "components_by_release_version": { "install dataset": 7, "unknown": 15 }, "time_last_step_planned": "2025-09-24T22:37:41.556717Z", "suspended": false }