soft deleted instance is deleted when error restoring

What do you suggests? What state should the VM be in after a failed restore? The VM is still soft-deleted on the hypervisor as the restore is failed and no task is ongoing as that restore task failed. For me it is the expected behavior that if the restore fails and then the reclaim timer hits then the VM is deleted.

Closing this as Invalid. Please set it back to New if you disagree.

err, for me restore a vm which is in soft_delete state should be able to execute multiple times as long as the deadline is not met...

internally, there might be different problems causing restoration failed but not all of them are fatal.. for example, there might be permission issues in the vm folder which could be solved manually and vm could still be restored next time..

I suggest to execute 'instance.deleted_at = None' after self.driver.restore(instance) or self._power_on(context, instance) finished, and the vm will not be deleted when restoring failed.

Fix proposed to branch: master
Review: https://review.opendev.org/c/openstack/nova/+/796985

I think I agree with the reporter here. Imagine something like this:

1. Soft-delete instance
2. Try to restore
3. Restore fails
4. Try to restore again
5. Repeat 3 and 4 until restore successful.

In the current code, if we race with the reclaim timer popping between 3 and 4, as step 3.5 of sorts, the _reclaim_queued_deletes() -> _deleted_old_enough() call will end up with a instance.deleted_at = None, and delete the instance, which is not great UX.