Comments (13)
Yes, switch to predictable tags. This includes the possible option to include the artifact type in the tag name.
from wg-reference-types.
Does anyone get to vote?
Yep! Anyone can vote, go ahead and hit the button.
from wg-reference-types.
Is using the predictable tags dependent on fixing the race condition issue in the distribution spec?
I suspect the reality will be inversed. We may approve a spec with a known race condition for existing registries. And new registries may fix race conditions, but they'll also add the new API to query referrers, negating the need to fix race conditions in this spec (fixing race conditions in distribution-spec still has value outside of this spec).
from wg-reference-types.
No, use unique tags, one per artifact.
from wg-reference-types.
My own personal pro/con list:
- Predictable tags let you discover attached content without using the list API and making potentially many paginated requests.
- Unique tags give you some protection against race conditions when updating.
Given those trade-offs, I'd prefer to push for better race condition handling in distribution-spec and in registry implementations, which leaves predictable tags as the better solution since discovering content doesn't require listing.
from wg-reference-types.
Does anyone get to vote?
I would say that race condition handling is worse than pagination, and that with pagination generally implemented using the last
syntax, you can quite easily start at the right point (list from sha256-[digest].
) so there isn't too much overhead.
So my vote would be a no, but I won't hit the button because I'm not a member of the WG :)
from wg-reference-types.
I agree with Jason. We've used the predictable tags method in cosign for a while now, and while the race condition is real I can't recall anyone ever hitting it. I'd lean toward fixing that in the distribution-spec.
I'd feel much differently if people were regularly running into the race condition.
from wg-reference-types.
Yep! Anyone can vote, go ahead and hit the button.
Thanks, I'm the only no vote but you know, doing my part for democracy :)
while the race condition is real I can't recall anyone ever hitting it.
Dangerous way to think about race conditions, they're harmless until you hit them, then they're deadly (IMO). As artifacts get popular I can imagine many build processes will generate an image then spawn off multiple processes to sign etc which could easily start to race. By then we'd hopefully not be using the tags anymore though, so maybe it doesn't matter.
I'd lean toward fixing that in the distribution-spec.
I think that's worth doing regardless!
from wg-reference-types.
Is using the predictable tags dependent on fixing the race condition issue in the distribution spec?
from wg-reference-types.
Is using the predictable tags dependent on fixing the race condition issue in the distribution spec?
I wouldn't say "dependent" exactly (i.e., that we should block this decision on the outcome of opencontainers/distribution-spec#251), but that we expect questions about handling race conditions to be solved by distribution-spec, and not build workarounds for that in this spec.
from wg-reference-types.
Based on the vote alone, we are planning to go with the first option:
Yes, switch to predictable tags. This includes the possible option to include the artifact type in the tag name.
@sudo-bmitch to follow up with PR to clarify
from wg-reference-types.
Related PRs:
from wg-reference-types.
From today's meeting, we've decided to go with a single predictable tag.
from wg-reference-types.
Related Issues (20)
- Proposal B: Mediatypes should always be OCI standard ones
- Disambiguate "reference" HOT 6
- Updates to Proposal E HOT 12
- Make artifactType a first-class field? HOT 1
- Issues with Proposal E HOT 7
- What are the issues with Proposal D? HOT 12
- Add Proposal F HOT 26
- What are the issues with Proposal F? HOT 12
- Picking a direction for the working group HOT 3
- How do we propose these changes land across OCI repos? HOT 13
- Questions on "Cherry Pick" :cherries: HOT 5
- [Vote] Should artifact type move out of annotations HOT 10
- Why not bump schemaVersion on existing manifest? HOT 8
- Is there a reason indexes don't get a refers list in prop e? HOT 6
- Prop E artifact annotations questions HOT 2
- [Vote] Partition digest tags by type HOT 6
- [Vote] Allow for server-side filtering using artifactType HOT 5
- Archive this repository? HOT 1
- Can we define the behaviour for a missing reference? HOT 7
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from wg-reference-types.