detect network config changes and recreate if needed #12267
Conversation
ndeloof
force-pushed
the
network_diverged
branch
from
73b8ac3 to
600ead2
Compare
| bytes, err := json.Marshal(o) | ||
| if err != nil { | ||
| return "", err | ||
| } |
There was a problem hiding this comment.
you need to ignore api.VersionLabel and api.ConfigHashLabel similarly to volumes
There was a problem hiding this comment.
nope, this is why I introduced CustomLabel in compose-go (same mechanism used for services)
https://github.com/docker/compose/pull/12267/files#diff-1f4d596600c620b3df55dbfbc63e50a6f43b356865fae411c553d0937fbb6d91R122
ndeloof
requested review from
a team and
glours
and removed request for
a team
ndeloof
force-pushed
the
network_diverged
branch
from
600ead2 to
8282f2c
Compare
|
Bless you for this change! Was just working on a workaround for our internal compose wrapper but it was proving difficult to be sure it works sanely. One question, is there a reason we can't do the network recreation more gracefully? Like detach all containers connected to the diverged network then remove the network only. Is this because the disconnected containers won't be reattached in the current reconciliation strategy? |
|
@terev I also considered this approach, but this indeed require more changes on the convergence side to re-attach + this involves the container will manage network being disconnected/reconnected (IP address will change) and in many cases this is not well supported. Recreating is "safer" from this point of view. What's your use-case for changing network definition and requirement for app to keep running ? |
|
@ndeloof Ok understood, that makes sense. It's not a super hard requirement, as my use case only applies to local development where I'd like to gracefully update the default binding address. I was just weighing network detachment against the possibility of accidentally removing container logs and data. But even if container data is lost it probably should have been kept in a volume in the first place. |
|
Right. This makes me wonder we should preserve anonymous volumes on recreation, to avoid such a data loss. |
|
|
|
@terev when a service recreated, anonymous volumes are preserve already. We can reuse this mechanism |
|
Oh! Right sorry I'm mistaken, that's perfect. |
ndeloof
force-pushed
the
network_diverged
branch
from
8282f2c to
c664a73
Compare
pkg/compose/convergence.go
Outdated
| } | ||
| } | ||
| if !found { | ||
| // config is up-t-date but container is not connected to network - maybe recreated ? |
There was a problem hiding this comment.
Fwiw this makes a lot of sense to me. Would even say it makes sense to recreate if it is connected to undesired networks.
ndeloof
force-pushed
the
network_diverged
branch
from
c664a73 to
ef63c2e
Compare
| return true, nil | ||
| } | ||
|
|
||
| if c.networks != nil { |
There was a problem hiding this comment.
Should we recreate if networks is nil but expected/actual has networks?
There was a problem hiding this comment.
networks is nil only if caller didn't created convergence with actual network state - this is the case running compose run command, need to investigate why we don't manage networks in this command, will do in a follow-up PR.
ndeloof
force-pushed
the
network_diverged
branch
2 times, most recently
from
1730ede to
23e5f2a
Compare
Signed-off-by: Nicolas De Loof <[email protected]>
Co-authored-by: Guillaume Lours <[email protected]> Signed-off-by: Nicolas De loof <[email protected]>
ndeloof
force-pushed
the
network_diverged
branch
from
a1fd1c7 to
a0c9692
Compare
This MR contains the following updates: | Package | Update | Change | |---|---|---| | [docker/compose](https://github.com/docker/compose) | minor | `v2.30.3` -> `v2.31.0` | MR created with the help of [el-capitano/tools/renovate-bot](https://gitlab.com/el-capitano/tools/renovate-bot). **Proposed changes to behavior should be submitted there as MRs.** --- ### Release Notes <details> <summary>docker/compose (docker/compose)</summary> ### [`v2.31.0`](https://github.com/docker/compose/releases/tag/v2.31.0) [Compare Source](docker/compose@v2.30.3...v2.31.0) #### What's Changed ##### ✨ Improvements - Delegate build to buildx bake by [@​ndeloof](https://github.com/ndeloof) [(12300)](docker/compose#12300) - Add commit command by [@​jarqvi](https://github.com/jarqvi) [(12268)](docker/compose#12268) ##### 🐛 Fixes - Fix(config): Print service names with --no-interpolate by [@​idsulik](https://github.com/idsulik) [(12282)](docker/compose#12282) - Remove obsolete containers first on scale down by [@​ndeloof](https://github.com/ndeloof) [(12272)](docker/compose#12272) - Fix compose images that return a different image with the same ID by [@​koooge](https://github.com/koooge) [(12278)](docker/compose#12278) - Emit events for building images by [@​felixfontein](https://github.com/felixfontein) [(11498)](docker/compose#11498) - Fix support for --remove-orphans on `docker compose run` by [@​ndeloof](https://github.com/ndeloof) [(12288)](docker/compose#12288) - Push empty descriptor layer when using OCI version 1.1 for Compose artifact by [@​glours](https://github.com/glours) [(12289)](docker/compose#12289) - Detect network config changes and recreate if needed by [@​ndeloof](https://github.com/ndeloof) [(12267)](docker/compose#12267) - Update wait-timeout flag usage to include the unit by [@​terev](https://github.com/terev) [(12316)](docker/compose#12316) - Use service.stop to stop dependent containers by [@​ndeloof](https://github.com/ndeloof) [(12322)](docker/compose#12322) - Only check attached networks on running containers by [@​ndeloof](https://github.com/ndeloof) [(12327)](docker/compose#12327) - Only stop dependent containers ... if there's some by [@​ndeloof](https://github.com/ndeloof) [(12328)](docker/compose#12328) ##### 🔧 Internal - Pass stale bot inactivity limit from 6 to 3 months by [@​glours](https://github.com/glours) [(12284)](docker/compose#12284) - Ci: enable testifylint linter by [@​mmorel-35](https://github.com/mmorel-35) [(11761)](docker/compose#11761) - Remove ddev e2e tests by [@​glours](https://github.com/glours) [(12291)](docker/compose#12291) - Gha: test against docker engine v27.4.0 by [@​thaJeztah](https://github.com/thaJeztah) [(12299)](docker/compose#12299) - Run build tests against bake by [@​ndeloof](https://github.com/ndeloof) [(12325)](docker/compose#12325) ##### ⚙️ Dependencies - Build(deps): bump golang.org/x/sync from `0.8.0` to `0.9.0` by [@​dependabot](https://github.com/dependabot) [(12277)](docker/compose#12277) - Build(deps): bump golang.org/x/sys from `0.26.0` to `0.27.0` by [@​dependabot](https://github.com/dependabot) [(12276)](docker/compose#12276) - Build(deps): bump github.com/moby/buildkit `v0.17.1`, github.com/docker/buildx `v0.18.0` by [@​thaJeztah](https://github.com/thaJeztah) [(12298)](docker/compose#12298) - Build(deps): bump docker/docker `v27.4.0-rc.2`, docker/cli `v27.4.0-rc.2` by [@​thaJeztah](https://github.com/thaJeztah) [(12306)](docker/compose#12306) - Build(deps): bump github.com/stretchr/testify from `1.9.0` to `1.10.0` by [@​dependabot](https://github.com/dependabot) [(12319)](docker/compose#12319) - Build(deps): bump github.com/compose-spec/compose-go/v2 from `2.4.5-0.20241111154218-9d02caaf8465` to `2.4.5` by [@​dependabot](https://github.com/dependabot) [(12324)](docker/compose#12324) - Build(deps): bump github.com/moby/buildkit from `0.17.1` to `0.17.2` by [@​dependabot](https://github.com/dependabot) [(12320)](docker/compose#12320) - Bump google.golang.org/grpc to v1.68.0 and containerd to `v1.7.24` by [@​glours](https://github.com/glours) [(12329)](docker/compose#12329) #### New Contributors - [@​terev](https://github.com/terev) made their first contribution in docker/compose#12316 **Full Changelog**: docker/compose@v2.30.3...v2.31.0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this MR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box --- This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40NDAuNyIsInVwZGF0ZWRJblZlciI6IjM3LjQ0MC43IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJSZW5vdmF0ZSBCb3QiXX0=-->
What I did
use a config hash label on networks to detect need to be recreated.
attached services will be stopped so we can recreate network,
then convergence will recreate them as we check the network container is attached to has the expected ID
Related issue
fixes #9203
(not mandatory) A picture of a cute animal, if possible in relation to what you did