ImageUpdateAutomation commits the same changes over and over on .spec.PushBranch
#3384
Comments
|
Duplicate of: fluxcd/image-automation-controller#466 |
|
Sorry about that, I forgot to look into the controller specific github repo, closing! |
|
Reopening as this is orthogonal to fluxcd/image-automation-controller#466. This issue ignores changes already made and pushed into a push branch, and do them again, however the commits are not empty. I got this reproduced and am working on a fix. The other issue is not related to push branches, the controller keeps on writing empty commits. |
pjbgf
added
bug
|
@klainte can you please try the image below and check whether the error persists? |
At present go-git does not support the MULTI_ACK capability, which means that follow-up fetches on a given remote will fail. To support Image Automation Controller use cases, the SwitchBranch was initially short-circuited to avoid additional fetches. However, this has the side effect of the controller pushing the same change to the target repository multiple times. (fluxcd/flux2#3384) In order to avoid this, a new WithSingleBranch option was created to enable the download of all references at the initial clone. From now on SwitchBranch has the single responsibility of switching branches, and no longer pulling references. The package git/gogit's primary goal is to support Flux use cases, currently there is no need to expand the current API to expose ways for users to refresh repository references outside the initial clone. Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
The new feature gate enables the download of all branch head references when push branches are configured. Fix fluxcd/flux2#3384. Relates to fluxcd/pkg#433. Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
|
Ok so I was able to test the rc-92f0c052. On the one hand, it seems to have fixed the issue (no more repeating commit), on the other hand it introduced a strange behaviour, which might also be due my config. I have 2 ImageUpdateAutomation using the same target branch (I'm planning to change that but it's been working well so far). ---
apiVersion: image.toolkit.fluxcd.io/v1beta1
kind: ImageUpdateAutomation
metadata:
name: git-updater-production-1
namespace: flux-system
spec:
git:
checkout:
ref:
branch: master
commit:
author:
email: _redacted_
name: fluxcdbot
messageTemplate: '{{range .Updated.Images}}{{println .}}{{end}}'
push:
branch: production
interval: 30m0s
sourceRef:
kind: GitRepository
name: flux-system
update:
path: ./apps/production-1
strategy: Setters
---
apiVersion: image.toolkit.fluxcd.io/v1beta1
kind: ImageUpdateAutomation
metadata:
name: git-updater-production-2
namespace: flux-system
spec:
git:
checkout:
ref:
branch: master
commit:
author:
email: _redacted_
name: fluxcdbot
messageTemplate: '{{range .Updated.Images}}{{println .}}{{end}}'
push:
branch: production
interval: 30m0s
sourceRef:
kind: GitRepository
name: flux-system
update:
path: ./apps/production-2
strategy: Setterswhile this used to work with ghcr.io/fluxcd/image-automation-controller:v0.27.0 and before (changes were committed on top of each other's in the same target branch as stated in the documentation), it's not with rc-92f0c052. To trigger the issue, I pushed a new version of a docker image for the corresponding ImageUpdateAutomation, and here is the result: Instead of pushing to the expected target branch ( You can see the 2 commit short-SHAs matching the IUA controller logs ones. This only occurs when having 2 ImageUpdateAutomation using the same I have 2 other ImageUpdateAutomation using their own branch, and I had no issue with rc-92f0c052. Maybe my config is just inappropriate? |
|
@klainte Thank you for coming back so quickly. Would you mind testing this again with this image instead: It should fix the branch issue you reported. As for your config I believe it is fine, and the controller should be able to support it. The only thing I would suggest is that you probably want to have force push disabled, so one automation does not overwrite the other. To do that, you can try to start the controller with:
For more information, please refer to the v0.27.0 change log. |
At present go-git does not support the MULTI_ACK capability, which means that follow-up fetches on a given remote will fail. To support Image Automation Controller use cases, the SwitchBranch was initially short-circuited to avoid additional fetches. However, this has the side effect of the controller pushing the same change to the target repository multiple times. (fluxcd/flux2#3384) In order to avoid this, a new WithSingleBranch option was created to enable the download of all references at the initial clone. From now on SwitchBranch has the single responsibility of switching branches, and no longer pulling references. The package git/gogit's primary goal is to support Flux use cases, currently there is no need to expand the current API to expose ways for users to refresh repository references outside the initial clone. Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
At present go-git does not support the MULTI_ACK capability, which means that follow-up fetches on a given remote will fail. To support Image Automation Controller use cases, the SwitchBranch was initially short-circuited to avoid additional fetches. However, this has the side effect of the controller pushing the same change to the target repository multiple times. (fluxcd/flux2#3384) In order to avoid this, a new WithSingleBranch option was created to enable the download of all references at the initial clone. From now on SwitchBranch has the single responsibility of switching branches, and no longer pulling references. The package git/gogit's primary goal is to support Flux use cases, currently there is no need to expand the current API to expose ways for users to refresh repository references outside the initial clone. Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
At present go-git does not support the MULTI_ACK capability, which means that follow-up fetches on a given remote will fail. To support Image Automation Controller use cases, the SwitchBranch was initially short-circuited to avoid additional fetches. However, this has the side effect of the controller pushing the same change to the target repository multiple times. (fluxcd/flux2#3384) In order to avoid this, a new WithSingleBranch option was created to enable the download of all references at the initial clone. From now on SwitchBranch has the single responsibility of switching branches, and no longer pulling references. The package git/gogit's primary goal is to support Flux use cases, currently there is no need to expand the current API to expose ways for users to refresh repository references outside the initial clone. Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
|
@pjbgf Tests are conclusive with I saw the v0.27.0 change but decided to give it a try without the forcePush disabled. Thanks :) |
|
That's awesome, thank you @klainte for confirming. 🙇 We should release a new official version with the fix soon. |
|
The new official image automation controller image contains the fix: |
At present go-git does not support the MULTI_ACK capability, which means that follow-up fetches on a given remote will fail. To support Image Automation Controller use cases, the SwitchBranch was initially short-circuited to avoid additional fetches. However, this has the side effect of the controller pushing the same change to the target repository multiple times. (fluxcd/flux2#3384) In order to avoid this, a new WithSingleBranch option was created to enable the download of all references at the initial clone. From now on SwitchBranch has the single responsibility of switching branches, and no longer pulling references. The package git/gogit's primary goal is to support Flux use cases, currently there is no need to expand the current API to expose ways for users to refresh repository references outside the initial clone. Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
Describe the bug
Since v0.37.0, ImageUpdateAutomation with a
.spec.PushBranchdifferent from itsspec.GitCheckoutRefBranchcontinuously commits modifications picked up by ImagePolicy in the.spec.PushBranchuntil the modifications are merged on the main branch.We have notifications set up to MS Teams when a commit is performed on the repo.
with v0.36.0, the changes induced by ImagePolicy + ImageUpdateAutomation were only committed once to the target branch.
Now it is committed over and over, every 'interval` delay (5 min in our case).
Screenshot and logs available below.
I saw the change introduced by the v0.37.0 regarding "Automatic force-push of ImageUpdateAutomation". Maybe that's related, but I do not think the observed behaviour is expected.
Steps to reproduce
To reproduce, you need a similar configuration
Expected behavior
Same as v0.36: changes are committed only once.
Screenshots and recordings
Log from the ImageAutomationController
{"level":"info","ts":"2022-12-08T08:32:17.154Z","msg":"pushed commit to origin","controller":"imageupdateautomation","controllerGroup":"image.toolkit.fluxcd.io","controllerKind":"ImageUpdateAutomation","ImageUpdateAutomation":{"name":"git-updater-staging","namespace":"flux-system"},"namespace":"flux-system","name":"git-updater-staging","reconcileID":"a33e726e-9151-4c39-96b7-7cafa8866561","revision":"7030d70f5e14659de06dd606be4b978d2dcadec7","branch":"staging"} {"level":"info","ts":"2022-12-08T08:37:19.525Z","msg":"pushed commit to origin","controller":"imageupdateautomation","controllerGroup":"image.toolkit.fluxcd.io","controllerKind":"ImageUpdateAutomation","ImageUpdateAutomation":{"name":"git-updater-staging","namespace":"flux-system"},"namespace":"flux-system","name":"git-updater-staging","reconcileID":"d1cbbf5d-15f8-4de3-b159-ca63c6596310","revision":"a01c76d335c89d2c1bc94f2a59e8d4d2a1e54e70","branch":"staging"} {"level":"info","ts":"2022-12-08T08:42:22.077Z","msg":"pushed commit to origin","controller":"imageupdateautomation","controllerGroup":"image.toolkit.fluxcd.io","controllerKind":"ImageUpdateAutomation","ImageUpdateAutomation":{"name":"git-updater-staging","namespace":"flux-system"},"namespace":"flux-system","name":"git-updater-staging","reconcileID":"91a79988-f449-40b6-a92a-610c227985cb","revision":"4aadf4d779834b0f69bb06de69ac7607d782c7a4","branch":"staging"}Corresponding notifications
OS / Distro
Ubuntu 18.04.6 LTS
Flux version
v0.37.0
Flux check
Git provider
Gitlab CE self-hosted
Container Registry provider
No response
Additional context
No response
Code of Conduct
The text was updated successfully, but these errors were encountered: