Will the update lock file prevent a Balena OS Update? My experiments indicates it will not.
If it does not prevent the update it is problematic for us since we need to baby sit each device and check that is in a state where an update does not cause problems for our customers.
In our application we use the update lock file to prevent the computer from restarting when in use by the customer. This lock also needs to prevent an OS Update.
Hi, at the moment hostOS updates ignore application update locks. What we can suggest it to automate the hostOS updates using the SDK so that it can check whether application locks are in place before triggering the hostOS update by calling to the Supervisor APIās /v1/update endpoint see that it doesnāt return a 432 Locked status code.
To me it seems the use case for application locks also applies to OS updates.
The purpose of the lock is to allow bulk updates of the fleet without having to worry that you are interrupting something critical that is running. For example you do not want to interrupt a running 3D-printer with an application or OS-update.
By not respecting the lock for OS-updates you are effectively forcing customers into one of 3 bad options:
It would be much better if your product applied lock also to OS update, could you point this out to your product management?
Thanks Olof, weāll discuss this internally and let you know the outcome.
2nd vote for lock files applying to OS Updates as well. I just broke a few things in my fleet assuming this worked. Iād argue if theyāre not going to follow the same pattern, at least put a warning up.
I was updating a fleet of 24 devices (3D Printers). I have them set to be locked while printing. I was updating the app across the fleet, so while I was there I wanted to push out the Supervisor and OS updates.
I did three very similar actions, and one didnt act like the rest. Kinda wonky from a UX standpoint.
Select all devices, pin to new release. Unlocked devices updated, locked devices go into a waiting loop.
Select all devices and update supervisor. Unlocked devices updated, locked devices go into a waiting loop.
Select all devices and choose OS update. Different result from the previous two tasks. Devices were reset in the middle of doing work.
Seems to me the pattern should be the same across any updates youāre pushing out to the fleet.
Josh, I appreciate the vivid explanation! Iāve added it to our internal notes. Iām happy to report we have a plan to bring these 3 actions into alignment. In the meantime, we welcome any more descriptions on how this is affecting your work so we can prioritise effectively and ensure the solution is broadly satisfactory.
I lost probably 30 print hours of work across the 3d printer fleet in this incident, but I only had maybe 15% of the fleet printing at the time. At the very least Iād prioritize a warning text or confirmation to prevent others/larger fleets from hitting this.
Longer term, Iād really like to have a ādraftā and āfinalā fleet release setting for OS and Supervisor.
Iām using the draft release feature from the GitHub deployment action and would love to see a similar concept for Supervisor/OS. Basically fleet-wide settings for the preferred version
Fleet OS / Supervisor Version - is the version the whole fleet should be on, if new devices are added or the version is changed, the devices should queue up that update (similar to when a release is deployed and devices are on track latest). Only one Fleet Version can be chosen per hardware type
Draft OS/Supervisor versions - List of versions to make available to the fleet. The current pattern of letting a device on the fleet pick from any version out there is a bit loose compared to the rigor of the app release process. Let me curate a list of versions that have passed my canary tests.
All other OS/Supervisor versions should be unavailable on the fleet.
I personally would like automatic minor and security updates on my fleet. But not sure if thereās broad appeal for that in this market.
Finally, I think the communication around these OS/Sup versions could be better. My current update strategy for these is ājust click them occasionally when I think about itā. I never know which one is important/security related or just āfixed a wordā type releases. Thereās too many for me keep up with when they rarely affect me in an immediately noticeable way.
Find a way to force minor updates on me, or at least strongly encourage me to keep up. Press me hard if thereās a security update. I suspect your support team will appreciate less variation out in the Balena-verse too.
Hi
Great ideas!
Iāll add these to a product brainstorm to see if we can address some of these ideas around automatic updates.
Thanks for your input and good ideas!!
Rose
Hi
We brought this up in a meeting today and the current solution is to use autohupr block to do automated updates. The developer working on autohupr is adding functionality to combine the lockfile for balenaOS and supervisor. Having the lockfile cand be scheduled with the cron for now until we build out a UI scheduler.
Let us know if you try out autohupr and it fits your need for automated updates.
Thanks
Rose