sc2: fix containerd toml population #120

csegarragonz · 2024-12-10T14:12:00Z

It looks like the CoCo operator does modifications to the containerd config file (in /etc/containerd/config.toml) after all runtime classes have been created.

This creates a race condition on the config file, as we only wait for the runtime classes to be created, and then proceed to install our local container registry, which in turn also modifies the config file.

This bug was very hard to find, and involved running at the same time: inotifywait -m -r /etc/containerd/ and the deployment script with a --debug flag. Also, for some reason it only appeared consistently in the TDX server, but not on the SNP one.

In the process, I make more robust other parts of the code that could also be leading to race conditions or errors, particularly after crashed deployments.

Fixes #119
Fixes #122

csegarragonz added 3 commits December 10, 2024 14:11

sc2: fix containerd toml population

9a2140f

fix: nits

5b197cc

nits: more fixes

cf840db

csegarragonz marked this pull request as ready for review December 10, 2024 14:59

csegarragonz force-pushed the containerd-config-fix branch 2 times, most recently from 0baabe4 to 0ccf4fb Compare December 10, 2024 17:29

gha: debug

276f870

csegarragonz force-pushed the containerd-config-fix branch from 0ccf4fb to 276f870 Compare December 10, 2024 17:46

csegarragonz added 3 commits December 10, 2024 18:08

gha: more debugging

c4dedf0

knative: retry image push a few times

6124dde

gha: more debugging

5af9237

csegarragonz force-pushed the containerd-config-fix branch from f14e731 to 5af9237 Compare December 11, 2024 10:24

csegarragonz added 18 commits December 11, 2024 11:29

gha: try adding --debug to deploy

11586b1

fix

64a2cc8

containerd: restart every update

a191179

containerd: more debug

8b3a373

nits

3e554b5

format fix

ee961a4

containerd: minimize restarts

7b70fc9

gha: cleanup

4e8aaa2

containerd: probe before restarting

e7c7f73

more debugging

90a7cff

sc2: remove unnecessary dollar sign

d50d07e

gha: comment out clean-up

42472fd

containerd: less restarts

0ac8f3b

gha: re-include cleanup

7e9d784

containerd: do not complitely nuke, as we cannot run docker then

d69429e

containerd: more debug

131ae6e

go back to stopping and starting

9dd3f21

more cleanup

26d46c8

csegarragonz marked this pull request as draft December 18, 2024 19:23

csegarragonz added 4 commits December 18, 2024 19:28

coco: issue seems to be coming from an over-running coco install

55161eb

consistently populating well - now push demo apps is failing

b6ebbde

containerd: fix socket polling

2f89e6a

nits: self-review

ad759ab

csegarragonz marked this pull request as ready for review December 19, 2024 12:09

csegarragonz merged commit e9ac038 into main Dec 19, 2024
5 checks passed

csegarragonz deleted the containerd-config-fix branch December 19, 2024 12:48

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

sc2: fix containerd toml population #120

sc2: fix containerd toml population #120

csegarragonz commented Dec 10, 2024 •

edited

Loading

sc2: fix containerd toml population #120

sc2: fix containerd toml population #120

Conversation

csegarragonz commented Dec 10, 2024 • edited Loading

csegarragonz commented Dec 10, 2024 •

edited

Loading