Skip to content

fix: TagAsync to buffer stream for authentication retry#355

Open
wangxiaoxuan273 wants to merge 2 commits intooras-project:mainfrom
wangxiaoxuan273:fix-tagasync-nonseekable-stream
Open

fix: TagAsync to buffer stream for authentication retry#355
wangxiaoxuan273 wants to merge 2 commits intooras-project:mainfrom
wangxiaoxuan273:fix-tagasync-nonseekable-stream

Conversation

@wangxiaoxuan273
Copy link
Contributor

@wangxiaoxuan273 wangxiaoxuan273 commented Mar 3, 2026
edited
Loading

Fixes #327
Fixes #333

Root cause of the bug:
The TagAsync passes a non-seekable HTTP response stream directly to DoPushAsync, which creates an HTTP PUT request with that stream as the body. When the initial request receives a 401 Unauthorized response, the Client.SendCoreAsync method attempts to retry the request with authentication credentials by cloning the original request. Cloning requires rewinding the content stream, but HTTP response streams (network streams) are non-seekable, causing the exception.

The fix:
This PR wraps the original stream with a rewindable stream before sending it out.

Copilot AI review requested due to automatic review settings March 3, 2026 01:57
Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR fixes ManifestStore.TagAsync failing during authentication retries by ensuring the pushed manifest content is seekable (buffered) so Auth.Client can rewind/clone the request content when a 401 triggers retry.

Changes:

  • Buffer FetchAsync’s (non-seekable) response stream into a MemoryStream before calling DoPushAsync in TagAsync.
  • Add unit tests covering TagAsync behavior with auth retry, buffering integrity across retries, and the no-retry path.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 5 comments.

File Description
src/OrasProject.Oras/Registry/Remote/ManifestStore.cs Buffers fetched manifest content into a seekable stream before pushing to support auth retry.
tests/OrasProject.Oras.Tests/Registry/Remote/ManifestStoreTest.cs Adds new TagAsync tests (auth retry, buffering integrity, and basic success without retry).

@wangxiaoxuan273 wangxiaoxuan273 requested a review from Copilot March 3, 2026 02:08
@codecov
Copy link

codecov bot commented Mar 3, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 91.77%. Comparing base (5953fb1) to head (99b289e).

Additional details and impacted files 
@@            Coverage Diff             @@
##             main     #355      +/-   ##
==========================================
+ Coverage   91.76%   91.77%   +0.01%     
==========================================
  Files          64       64              
  Lines        2755     2759       +4     
  Branches      364      365       +1     
==========================================
+ Hits         2528     2532       +4     
  Misses        138      138              
  Partials       89       89

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated 4 comments.

@wangxiaoxuan273 wangxiaoxuan273 changed the title Fix TagAsync to buffer stream for authentication retry fix: TagAsync to buffer stream for authentication retry Mar 3, 2026
@wangxiaoxuan273 wangxiaoxuan273 force-pushed the fix-tagasync-nonseekable-stream branch from 340cce4 to 86358ec Compare March 3, 2026 02:23
Copilot AI review requested due to automatic review settings March 3, 2026 02:23
@wangxiaoxuan273 wangxiaoxuan273 force-pushed the fix-tagasync-nonseekable-stream branch from 86358ec to 6d343d4 Compare March 3, 2026 02:26
Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.

@wangxiaoxuan273 wangxiaoxuan273 force-pushed the fix-tagasync-nonseekable-stream branch from 6d343d4 to 0adacb9 Compare March 3, 2026 02:32
@wangxiaoxuan273 wangxiaoxuan273 requested a review from Copilot March 3, 2026 02:40
Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated 5 comments.

@wangxiaoxuan273 wangxiaoxuan273 force-pushed the fix-tagasync-nonseekable-stream branch from 0adacb9 to 89bfa09 Compare March 3, 2026 02:52
@wangxiaoxuan273 wangxiaoxuan273 requested a review from Copilot March 3, 2026 02:55
Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.

@wangxiaoxuan273 wangxiaoxuan273 force-pushed the fix-tagasync-nonseekable-stream branch from 89bfa09 to 56cab2b Compare March 3, 2026 03:01
@wangxiaoxuan273 wangxiaoxuan273 requested a review from Copilot March 3, 2026 03:04
Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.

@wangxiaoxuan273
Fix TagAsync to buffer stream for auth retry scenarios
9f08a4b 
The TagAsync method was passing a non-seekable HTTP response stream to DoPushAsync.
When authentication retry was needed (e.g., with Azure Container Registry),
Auth.Client would clone the request which fails for non-seekable streams.

This fix:
- Enforces size limit early (before FetchAsync) to fail fast
- Buffers the content stream into a seekable MemoryStream using ReadAllAsync
- Ensures retries can successfully rewind and re-read the stream content

Also adds comprehensive unit tests for TagAsync auth retry scenarios.

Signed-off-by: Xiaoxuan Wang <wangxiaoxuan119@gmail.com>
@wangxiaoxuan273 wangxiaoxuan273 force-pushed the fix-tagasync-nonseekable-stream branch from 56cab2b to 9f08a4b Compare March 3, 2026 03:09
@wangxiaoxuan273 wangxiaoxuan273 requested a review from Copilot March 3, 2026 03:10
Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated no new comments.

akashsinghal
akashsinghal reviewed Mar 3, 2026
View reviewed changes
Copy link
Collaborator

@akashsinghal akashsinghal left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Caution

This review was generated by Copilot using Claude Opus 4.6, mimicking the review style of shizhMSFT. This is not the real shizhMSFT.

The fix is correct and the approach is consistent with PushWithIndexingAsync. SGTM overall.

akashsinghal
akashsinghal reviewed Mar 3, 2026
View reviewed changes
@akashsinghal
Copy link
Collaborator

akashsinghal commented Mar 3, 2026

Overall, PR looks good to me. @wangxiaoxuan273 can you confirm if you've verified manually that the APIs that were affected by the 2 issues you mentioned are actually resolved now?

@wangxiaoxuan273
Copy link
Contributor Author

wangxiaoxuan273 commented Mar 4, 2026

Overall, PR looks good to me. @wangxiaoxuan273 can you confirm if you've verified manually that the APIs that were affected by the 2 issues you mentioned are actually resolved now?

Yes, I have verified manually that this change can fix the two issues.

@wangxiaoxuan273
address review: consolidate auth retry tests, use NonSeekableStream, …
99b289e 
…note SHA-256 limitation

- Consolidate ManifestStore_TagAsync_WithAuthRetry and
  ManifestStore_TagAsync_BuffersStreamForRetry into a single test that
  captures content from both PUT attempts and verifies retry count and
  content integrity
- Switch ManifestStore_TagAsync_SucceedsWithoutRetry to use
  NonSeekableStream for GET response to validate buffering path
- Add comment noting ReadAllAsync SHA-256 limitation is pre-existing
  and tracked separately
- Shorten fully-qualified Auth types using using directive
- Ensure all new/modified lines stay within 120-column limit

Signed-off-by: Xiaoxuan Wang <wangxiaoxuan119@gmail.com>
@wangxiaoxuan273 wangxiaoxuan273 requested a review from Copilot March 4, 2026 06:14
Copilot AI reviewed Mar 4, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated no new comments.

You can also share your feedback on Copilot code review. Take the survey.

@akashsinghal
Copy link
Collaborator

akashsinghal commented Mar 4, 2026

Caution

This review was generated by Copilot using Claude Opus 4.6, mimicking the review style of shizhMSFT. This is not the real shizhMSFT.

Second-round review of PR #355

All 20 prior review threads addressed — the fix is clean and the tests are comprehensive. Two observations:

1. Missing negative test for size guard (ManifestStore.cs:423)
LimitSize(Repository.Options.MaxMetadataBytes) is a new guard added by this PR, but no test exercises the rejection path. Consider adding a test where descriptor.Size > MaxMetadataBytes to verify that TagAsync throws SizeLimitExceededException before attempting to fetch.

2. Inline SHA-256 comment should reference an issue (ManifestStore.cs:431-432)
The comment "ReadAllAsync currently hardcodes SHA-256 for digest verification. This is a pre-existing limitation tracked separately." says "tracked separately" but doesn't reference an issue number. If there's a tracking issue, link it (e.g., // See #NNN). If not, file one. A comment claiming something is "tracked" without a link is not actionable.

Otherwise SGTM — nice work addressing all the previous feedback cleanly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@akashsinghal akashsinghal akashsinghal left review comments

Copilot code review Copilot Copilot left review comments

@sajayantony sajayantony Awaiting requested review from sajayantony sajayantony is a code owner

@shizhMSFT shizhMSFT Awaiting requested review from shizhMSFT shizhMSFT is a code owner

@Wwwsylvia Wwwsylvia Awaiting requested review from Wwwsylvia Wwwsylvia is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

CopyAsync fails when the artifact already exists SendAsync fails to retry non-seekable manifest stream after 401 during TagAsync

3 participants

@wangxiaoxuan273 @akashsinghal