@fahedouch @AkihiroSuda PTAL at your convenience

Conflict is likely trivial. Will rebase after review, in case there are any comments or concerns to address.

@AkihiroSuda we have regular network related failures on Ubuntu 20.04 / v1.6.

Symptom being no route to host:

time="2024-08-15T17:33:19Z" level=error msg="failed to call tryLoginWithRegHost" error="failed to call rh.Authorizer.Authorize: failed to fetch oauth token: Post \"[http://10.4.0.1:5000/auth\](http://10.4.0.1:5000/auth/)": dial tcp 10.4.0.1:5000: connect: no route to host" i=0
        time="2024-08-15T17:33:19Z" level=fatal msg="failed to call rh.Authorizer.Authorize: failed to fetch oauth token: Post \"[http://10.4.0.1:5000/auth\](http://10.4.0.1:5000/auth/)": dial tcp 10.4.0.1:5000: connect: no route to host"

We could retry on login for that condition - but I am more interested in fixing the root issue.

Do you think this is something in rootlesskit or bypass4netns?

Do you think this is something in rootlesskit or bypass4netns?

No, this seems rootful
https://github.com/containerd/nerdctl/actions/runs/10407628383/job/28823319574?pr=3293

Do you think this is something in rootlesskit or bypass4netns?

No, this seems rootful https://github.com/containerd/nerdctl/actions/runs/10407628383/job/28823319574?pr=3293

Yes, you are right.

So, I guess when under pressure (starting / stopping many containers), networking is breaking down or is slow to converge?

Left some early comments. Still have some changes left to be reviewed. thanks

Thanks a lot @djdongjin
Really appreciate the review.
I answered you in the comments - addressed some with the latest push - provided clarification on others - so, let me know in there how you feel, and I will look for further comments from you when you will be done reviewing.

Failure are unrelated:

• ComposeUp random fail
• networking fluke: dial tcp 10.4.0.1:5000: connect: no route to host" i=0
• docker inability to pull an image (might be for the same reason as ^)

Could we poke the CI to restart these?

I probably need more time to review some of the changes, as it's a bit difficut to identify which are logic changes, and which are refactors/code relocation/etc.

That is fine.
I do appreciate my latest PRs are more sizable - and certainly understand reviewing these things is significant work - really grateful for that @djdongjin.

Also some suggestions on reducing PR size:

• Add UTs first in a separate PR or commit if UT itself has a lot of changes. If you're trying to fix something and the UT helps reproduce it, you can add and skip that UT (or just add it in a later PR).
• Do refactor or move code around in a separate PR: it's difficult to identify a small change if it's mixed with a refactor.
• You can use tools like https://github.com/modularml/stack-pr to make small PRs and make a big change incrementally.

Will definitely look into stack-pr - great tips, thanks.

Let me see if I can massage my two other "big-ish" PRs into something more amenable to review.

Meanwhile, we can just stay focused on this one - and also #3362 would be nice to get if you have a minute <- it is a small one! Pinky swear! :-)

Latest CI fail is the usual TestIPFSComposeUp - this one fails more often than it succeeds.

Unfortunately, I couldn't figure it out so far (#3305) - it is a massive PITA.

Anyone familiar with IPFS around?

IPFS

cc @ktock

@AkihiroSuda could you poke the CI for the flaky IPFS 20.04/1.6 run?

Rebased. Pending green CI.

Rebased.
Debug statements removed.
Pending CI.

Thanks

Last push just enable the commented out test (see answer in comment about Lima error)