Fix share network delete procedure

Currently, delete of share network leaves security service associations
behind it. DB purge job can't process them because they are constrained
to soft-deleted networks. Proposed patch fixes both formation of
orphaned associations and seamless purging of them.

Closes-Bug: #2029366
Change-Id: I9593dd6e89b2d290d3919c92d209132e1cec84f0
This commit is contained in:
BubaVV
2023-07-11 21:30:48 +03:00
parent 4440d80948
commit 42e66d9f38
4 changed files with 47 additions and 0 deletions

View File

@@ -133,6 +133,19 @@ class ShareNetworkController(wsgi.Controller, wsgi.AdminActionsMixin):
for share_server in subnet['share_servers']: for share_server in subnet['share_servers']:
self.share_rpcapi.delete_share_server(context, share_server) self.share_rpcapi.delete_share_server(context, share_server)
for security_service in share_network['security_services']:
try:
db_api.share_network_remove_security_service(
context,
id,
security_service['id'])
except Exception:
LOG.exception(
"Failed to delete security association of network "
"{net_id} and security service "
"{sec_id}".format(net_id=id,
sec_id=security_service['id']))
db_api.share_network_delete(context, id) db_api.share_network_delete(context, id)
try: try:

View File

@@ -5999,6 +5999,18 @@ def purge_deleted_records(context, age_in_days):
metadata.reflect(get_engine()) metadata.reflect(get_engine())
deleted_age = timeutils.utcnow() - datetime.timedelta(days=age_in_days) deleted_age = timeutils.utcnow() - datetime.timedelta(days=age_in_days)
# Deleting rows in share_network_security_service_association
# related to deleted network or security service
sec_assoc_to_delete = context.session.query(
models.ShareNetworkSecurityServiceAssociation).join(
models.ShareNetwork).join(models.SecurityService).filter(
or_(models.ShareNetwork.deleted_at <= deleted_age,
models.SecurityService.deleted_at <= deleted_age)).all()
for assoc in sec_assoc_to_delete:
with context.session.begin_nested():
context.session.delete(assoc)
for table in reversed(metadata.sorted_tables): for table in reversed(metadata.sorted_tables):
if 'deleted' not in table.columns.keys(): if 'deleted' not in table.columns.keys():
continue continue

View File

@@ -1769,3 +1769,20 @@ class ShareNetworkAPITest(test.TestCase):
self.assertRaises(exception_to_be_raised, self.assertRaises(exception_to_be_raised,
self.controller.share_network_subnet_create_check, self.controller.share_network_subnet_create_check,
request, 'fake_net_id', body) request, 'fake_net_id', body)
def test_share_network_sec_service_delete(self):
self.mock_object(db_api, 'share_network_get',
mock.Mock(return_value=fake_share_network_with_ss))
self.mock_object(db_api, 'share_network_delete')
self.mock_object(db_api, 'share_network_remove_security_service')
self.controller.delete(self.req, fake_share_network_with_ss['id'])
db_api.share_network_get.assert_called_once_with(
self.req.environ['manila.context'],
fake_share_network_with_ss['id'])
db_api.share_network_remove_security_service.assert_called_once_with(
self.req.environ['manila.context'],
fake_share_network_with_ss['id'],
fake_share_network_with_ss['security_services'][0]['id'])
db_api.share_network_delete.assert_called_once_with(
self.req.environ['manila.context'],
fake_share_network_with_ss['id'])

View File

@@ -0,0 +1,5 @@
---
fixes:
- |
Fixed cleanup of share network security service associations at network delete. See `Launchpad bug 2029366
<https://bugs.launchpad.net/manila/+bug/2029366>` for more details.