New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Release 0.1.0, What can we improve? #61
Comments
We didn't do a very good job at tagging our projects. |
We were fairly informal regarding the freeze. Was it a code freeze (no)? Was it a feature freeze (sort of)? What were the goals of the freeze? Did we achieve them? Do we have a plan for future freezes? |
Slightly related to the tagging and code freezes, I think there was a lack of clarity and communication of what versions of different components got into the release and when they were tested. e.g. We cut the final payload on Tuesday, so any PRs made to components after this weren't included and we pulled in certain commits of components (e.g. |
The current process to create the payloadImage is pretty reliable, but manual to kick-off, so susceptible to human error (e.g. not updating the branch you are building on correctly) |
We didn't manage to including the signature verification features in the sample payload and the payload was just created from one of my branches, so not tracked, or repeatable. For the next release, if we are still producing a sample payload, we should have some automated/scriptable process to add the required artefacts to the kata image. |
Other agent configuration is a bit of a mess at the moment. Some things are only customisable in the agent-config.toml (the endpoints allowed and aa_kbc_params). These have to be ‘baked’ into the image which makes it difficult for users to interact with. The agent config also overrides all the other |
Probably bigger than the scope of a single release, but having a proper CD process (we’ll need some CNCF resource first, so starting to try and get that might help) would help with us keeping quality high and being able to minimise code freezes. |
Add some CI automated tests for all the features we doc and therefore 'support' e.g. secure ephemeral storage |
|
|
More than that, it seems there's a general lack of understanding that we don't necessarily need to tag all the projects for a release, and that just tagging a project doesn't make it automatically used by the payloadImage used by the Operator. I wonder if we should have some educational sessions on how things are being done on the Kata Containers side, so folks can fully understand what to test / what to use / what to expect. |
As far as I understand we had requests of "new things" coming in till the last week, such as the sample payload image (please, don't take me wrong, I'm NOT blaming the ones who requested that, I'm just using this as an example). In the future we should consider having a week or so for stabilisation and be strict that no new requests will come in. By the moment we have a new thing popping up, it means that all the validation and testing done so far is basically thrown away. |
There's the sincere need of more people involved with the projects we rely on. At the end of the day the reviews on Kata Containers were mostly on the back of a very small group of folks, who were also working on huge set of different tasks. We need people to get more involved with Kata Containers as we're relying on the project, and with enough contributions become an official reviewer / member of the project, then we can start spreading the load. |
|
I'd like to emphasize those points as being critical for the CoCo project long term. On this first release I very few people were reviewing the changes on Kata Containers, and a portion of those doing so weren't accounted on merge policy (2 or more people members of Kata Containers on github). Not just for reviews, we need more developers in general to help on developing features/build/release/CI tasks. |
I concur. That actually emphasizes the need to work harder on upstreaming. The tighter we'll be to Kata, the higher the incentive, imho. |
This is a must-have if we are serious about releases every 6 weeks. Otherwise the releases will be with tears and pain. :) |
I was going to ask about how to have an automated test for secure storage in kata-containers/kata-containers#5314 :) Still regarding tests:
|
Scope creep a little but understandable as everyone wanted to see their efforts in the first release. |
@magowan recommend we close this issue. |
Please reflect on our journey to 0.1.0 and leave your comments here on areas you feel we can improve.
Please add ideas on how we can improve these areas in your comment.
Thanks
The text was updated successfully, but these errors were encountered: