journal+status(redfix): M1 gitea app.ini read-only JWT crash CONFIRMED on warm advance (recipe defect); 6/6 classified
Some checks failed
continuous-integration/drone/push Build is failing
Some checks failed
continuous-integration/drone/push Build is failing
This commit is contained in:
autonomic-bot
@ -194,3 +194,36 @@ warm-gitea (docker stack rm; retained data+config volumes → proper idle state)
|
||||
cold@3.6.0 (gitea2). Result pending. NOTE: the "already deployed" promote-failure-when-left-deployed
|
||||
may be a secondary promote-machinery robustness gap (advance should undeploy-or-chaos an
|
||||
already-deployed canonical) — will assess after confirming the primary app.ini crash.
|
||||
|
||||
## 2026-06-18T00:14Z — M1: gitea warm advance — app.ini read-only JWT crash CONFIRMED (recipe defect)
|
||||
|
||||
After restoring warm-gitea to proper idle state (undeployed, 3.5.3 data+config volumes retained),
|
||||
re-ran gitea cold@3.6.0 (gitea2, log /tmp/redfix-gitea2.log). Cold lifecycle ALL PASS
|
||||
(install/upgrade/backup/restore/custom — incl. the cold FRESH 3.5.3→3.6.0 upgrade tier). WC5 promote
|
||||
advance then crash-loops. Live container logs (warm-gitea_..._app, repeated Failed/exit 1):
|
||||
|
||||
modules/setting/setting.go:105:LoadCommonSettings() [F] Unable to load settings from config:
|
||||
error saving JWT Secret for custom config: failed to save "/etc/gitea/app.ini":
|
||||
open /etc/gitea/app.ini: read-only file system
|
||||
|
||||
EXACTLY the canon-documented crash. Mechanism: the recipe mounts app.ini as a docker `config`
|
||||
(read-only by design) at /etc/gitea/app.ini (compose `configs: - source: app_ini target:
|
||||
/etc/gitea/app.ini`, app.ini.tmpl). gitea 1.24.2 (3.6.0), on the warm REATTACH of the retained
|
||||
3.5.3 config volume, decides to (re)generate+SAVE a JWT secret to app.ini → read-only fs → FATA at
|
||||
config-load, BEFORE any DB migration (so the 3.5.3 data volume stays intact — confirmed canon).
|
||||
|
||||
Why cold passes but warm crashes: the cold fresh deploy + cold chaos-upgrade use freshly-generated
|
||||
secrets consistent with a freshly-initialized config, so gitea never needs to rewrite app.ini. The
|
||||
warm advance reattaches an OLDER retained config-volume state (seeded under 3.5.3) against the new
|
||||
run's secrets/3.6.0 binary → gitea reconciles by trying to persist a JWT secret → read-only crash.
|
||||
|
||||
Classification: **genuine RECIPE defect** (gitea 3.6.0/1.24.2 + read-only app.ini docker-config mount
|
||||
on the warm-reattach advance), deterministic, reproduced first-hand. NOT a flake, NOT promote
|
||||
machinery. Fix approach (M2): recipe PR making app.ini writable on the advance path — e.g. render the
|
||||
config into the WRITABLE `config:/etc/gitea` volume via an entrypoint (not a read-only docker config),
|
||||
OR ensure the persisted secrets are accepted without rewrite. (Secondary harness option: canonical
|
||||
advance falls back to clean re-deploy when in-place config rewrite is impossible — but that loses the
|
||||
reattach data-warm property; recipe fix preferred.) Ties to LFS PR #1 (app.ini secret handling).
|
||||
|
||||
ACTION NEEDED after run exits: warm-gitea is left crash-looping at 3.6.0 → restore it to 3.5.3
|
||||
(redeploy the known-good canonical version) so the canonical is healthy again. Data volume intact.
|
||||
|
||||
Reference in New Issue
Block a user