Skip to content

fix: replace tar injection with bind-mount COW workspace (CLI-28)#87

Open
markovejnovic wants to merge 18 commits into
mainfrom
marko/cli-28-caching-workspace-broken
Open

fix: replace tar injection with bind-mount COW workspace (CLI-28)#87
markovejnovic wants to merge 18 commits into
mainfrom
marko/cli-28-caching-workspace-broken

Conversation

@markovejnovic

@markovejnovic markovejnovic commented Jun 9, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Summary

Fixes CLI-28 (#85): steps downstream of cached ancestors saw stale source files, because workspace state was baked into cached layers at first-run time and never refreshed.

Architecture: run-local workspace lineage. Cached snapshots (docker commit) carry system state only — bind-mounted /workspace is excluded from commits by Docker design, and the snapshot registry now stores no workspace paths. Workspace state is strictly run-scoped: each run extracts the source archive once, every root step COW-copies from that fresh extract, children COW from their parent's run-local output dir, and a cache-hit boundary rebases to fresh source — the hit contributes its snapshot for container lineage but no workspace, so children start from the current run's source tree.

⚠️ Semantic change

On a cache hit, files a step wrote into /workspace are not replayed across runs — downstream steps see the current run's source tree instead. Write build outputs to system paths (e.g. /usr/local) or use on_change() when workspace outputs must survive hits. Documented on forever() in both DSLs.

Reliability work (from 4 adversarial review rounds)

  • Cooperative cancellation: HmVm::execute takes a CancellationToken; teardown (container destroy + bind-mount ownership reclaim) is awaited before the future resolves — no future-drop leaks of root-owned workspace dirs. Per-step timeouts await teardown too (exit 124 only after reclaim).
  • Deferred eviction: LRU-evicted snapshot images are removed only after the full DAG drains, guarded by contains_snapshot so a re-registered tag is never destroyed.
  • Workspace refcounting: a parent's kept workspace dir is freed the moment its last BuildsIn consumer finishes; temp footprint tracks the live DAG frontier, with an idempotent end-of-run sweep as backstop.
  • Failure containment: registry.put failure demotes the snapshot to ephemeral (run finishes correctly, image reclaimed later) instead of orphaning it; startup GC sweeps aged rowless harmont-ephemeral/* tags (24h age floor protects concurrent runs).
  • Registry hardening: transactional upsert+eviction (DELETE..RETURNING, deterministic tie-break), invalidate_if CAS closes the stale-entry/fresh-insert race, busy_timeout for cross-process access.
  • cow_copy: single-attempt cp with captured stderr (Apple's cp -c self-falls-back to copyfile(2)); all call sites in spawn_blocking.
  • New DSL cache policy: hm.predicate(fn) (Python) / predicate(value) (TS) with cross-language keygen tests.

Known limitations (accepted, documented)

  • invalidate_if CAS is vacuous on the Docker backend (snapshot id == tag); worst case degrades to re-execution, never wrong data.
  • Narrow cross-process window: a concurrent process that observed a tag pre-eviction and restores post-cleanup gets a hard restore failure (step fails, row invalidated on next lookup) — closing it needs backend-level cross-process coordination.
  • local_e2e.rs fixtures are missing on main (pre-existing); the executable cache-hit gates are the #[ignore]d Docker tests.
  • Put-failure demotion, GC sweeps, and cancellation teardown are mock-tested; Docker-level coverage is via the ignored integration tests.

Test plan

  • cargo test — all suites green (200 tests)
  • cargo clippy --all-targets — zero warnings; cargo fmt --check clean
  • harmont-py: ruff clean, pytest 487 passed; harmont-ts: 380/380
  • Acceptance: cargo test --test deep_cache_chain_workspace -- --ignored — passes from warm AND cold cache; asserts [a]/[b] cache hits and fresh deep-v2 marker (the CLI-28 contract)
  • local_fork_cache, local_parallelism (ignored, Docker) — pass
  • Live-verified: no harmont-ephemeral images leaked after runs; stale-invalidation path exercised via docker rmi of cached images

@markovejnovic
test(hm-vm): add test proving HmVm injects workspace for snapshot-sou…
fbd6b5d 
…rced steps
@markovejnovic
fix: always inject workspace into every executing step (CLI-28)
0856af0 
Child steps that boot from a cached parent snapshot now receive
fresh source files via tar injection, preventing stale workspace
data from leaking across builds.
@markovejnovic
test: add deep cache chain workspace freshness test (CLI-28)
c9ee5a1
@markovejnovic
docs: document deleted-file edge case in workspace injection (CLI-28)
e836fa7
@markovejnovic
feat(hm-vm): add workspace COW copy utility
e28d564
@markovejnovic
fix(hm-vm): improve macOS COW fallback to retry on nonzero exit
b1f2f18 
cp -cR can fail with nonzero exit (cross-APFS-volume) but or_else
only caught spawn failures. Now falls back to cp -R on either case.
@markovejnovic
feat(hm-vm): extend ImageRegistry to store workspace directory paths
c2e051b 
Add optional workspace_dir column to the snapshots table with an
idempotent schema migration. Change eviction return type from
Vec<SnapshotId> to Vec<(SnapshotId, Option<String>)> so callers can
clean up workspace directories alongside backend snapshots.

New methods: put_with_workspace() and get_with_workspace().
Updated vm.rs eviction loop to remove workspace dirs on eviction.
@markovejnovic
refactor(hm-vm): replace inject() with bind-mount workspace, persist …
76156d0 
…to cache

Replace the tar-upload inject() mechanism with Docker bind mounts for
workspace directories. The workspace is now mounted at container creation
time via HostConfig.binds, eliminating the tar_directory() helper and
UploadToContainerOptions usage entirely.

Key changes:
- Add WorkspaceMount type (host_path + guest_path) to types.rs
- Add workspace_dir field to ExecutionResult for downstream consumption
- Add workspace_cache_dir to VmConfig for COW cache persistence
- Update VmBackend::create/restore to accept Optional<&WorkspaceMount>
- Remove Vm::inject() from the trait and all implementations
- Delete tar_directory() and remove tar crate dependency
- Persist workspace via cow_copy after snapshot on cache miss
- Store workspace path in registry via put_with_workspace on cache store
- Return cached workspace path from registry on cache hit
- Clean up evicted workspace directories alongside snapshots
- Update VmRunner to construct WorkspaceMount instead of inject path
@markovejnovic
feat(hm-exec): wire COW workspace through runner and scheduler DAG
9f16b9d 
- Add parent_workspace_dir to StepContext, workspace_dir to StepResult
- VmRunner: COW copy parent workspace for child steps, extract fresh for root
- Scheduler: propagate workspace_dir through StepOutcome to children
@markovejnovic
feat(dsl): add predicate cache policy for user-defined invalidation
939c83a
@markovejnovic
fix(dsl): resolve type checker issues in predicate cache policy
1b0bdc9
@markovejnovic
style: cargo fmt + clippy fixes across workspace
007a230 
- Format all Rust files
- Collapse nested if-let to tuple pattern (clippy)
- Replace map().unwrap_or() with map_or() (clippy)
- Add #[doc] Errors section to cow_copy (clippy pedantic)
@markovejnovic markovejnovic changed the title fix: always inject workspace into every executing step (CLI-28) fix: replace tar injection with bind-mount COW workspace (CLI-28) Jun 9, 2026
@markovejnovic
fix: eliminate ephemeral workspace race and review fixes
511b5fa 
- Skip workspace persistence for CachingPolicy::None (fixes parallel
  uncached steps racing on shared "ephemeral" dir)
- Runner keeps step tempdir alive via TempDir::keep() for uncached
  steps so children can still COW-copy from parent workspace
- Single get_with_workspace() call on cache hit (was double lookup)
- invalidate() now returns workspace_dir for cleanup (was leaking
  orphaned workspace dirs on disk)
- Format test_cache_predicate.py with ruff
@markovejnovic
fix: harden COW workspace lifecycle and address review findings
4acc789 
- Registry: unify put/put_with_workspace into single put(key, snap, ws);
  fold eviction into single lock scope to fix TOCTOU race (C3+C4)
- Ephemeral snapshots: UUID-based labels to avoid parallel collision (C1);
  scheduler cleanup removes Docker images and temp dirs after build (C2)
- Cache hits: peek_cache() in VmRunner skips expensive COW copy (I3);
  validate workspace_dir still exists on disk before trusting cache (I5)
- Blocking I/O: wrap cow_copy, remove_dir_all, create_dir_all in
  spawn_blocking to avoid starving the tokio runtime (I2)
- workspace.rs: clear partial state between failed APFS clone and
  fallback copy (I6); use -p flag to preserve permissions (I7);
  include src/dst paths in error messages
- Python DSL: validate predicate callback is callable; wrap exceptions
  and reject None returns (I8)
@markovejnovic
refactor: run-local workspace lineage — registry caches system snapsh…
a7663f5 
…ots only

Rearchitect workspace flow to kill the stale-source bug class (CLI-28):
cached snapshots now carry ONLY system state (docker commit); workspace
state is strictly run-scoped and rebases to the current run's fresh
source at every cache-hit boundary. A cache-hit step contributes its
snapshot for container lineage but no workspace dir; its children COW
from the run's fresh source extract instead of a stale persisted copy.

Core changes:
- registry: workspace_dir always written NULL (legacy rows reaped);
  put() runs upsert+eviction in one transaction with DELETE..RETURNING;
  invalidate_if() CAS closes the stale-entry/fresh-insert race;
  contains_snapshot() backs all guarded image removals
- vm: HmVm::execute takes a CancellationToken — cooperative cancel with
  awaited teardown (destroy/chown reclaim strictly happens-before the
  runner drops the workspace tempdir); evictions deferred to end-of-run
  (cleanup_deferred_evictions) so in-flight readers never lose their
  tag; put-failure demotes the snapshot to ephemeral instead of leaking
  it; gc_orphaned_snapshots sweeps aged rowless tags at startup
- scheduler: per-step workspace refcounting frees a parent's kept dir
  the moment its last BuildsIn consumer finishes (temp footprint now
  tracks the live DAG frontier); per-step timeout fires a child token
  and AWAITS teardown instead of dropping the future; ephemeral
  snapshot cleanup is guarded by contains_snapshot so a concurrently
  re-registered tag survives
- runner: once-per-run shared source extract (Arc<OnceCell<TempDir>>);
  cow_copy call sites moved into spawn_blocking; cache-hit path does
  zero workspace prep
- workspace: single-attempt cp with captured stderr (cp -c self-falls
  back to copyfile(2); the manual retry masked real errors)
- docker: per-tag GC removal (untag-safe for multi-tag images); exec
  quiesce on cancelled commands before chown reclaim
- DSL: forever() docs state the hit-boundary semantics (workspace
  writes are not replayed across runs); predicate keygen
  cross-language tests

Semantic change: on a cache hit, files a step wrote into /workspace are
no longer visible to downstream steps across runs — downstream sees the
current run's source tree. Write build outputs to system paths or use
on_change() when workspace outputs must survive hits.

Acceptance: deep_cache_chain_workspace passes from warm and cold cache,
asserting [a]/[b] cache hits AND fresh marker content (the CLI-28
contract). local_fork_cache + local_parallelism pass. Test fixtures
modernized from the obsolete def build()/.run() DSL form.
@markovejnovic
Merge remote-tracking branch 'origin/main' into marko/cli-28-caching-…
197a98e 
…workspace-broken

# Conflicts:
#	crates/hm-exec/src/local/backend.rs
#	crates/hm-exec/src/local/runner/vm.rs
#	crates/hm-exec/src/local/scheduler.rs
#	crates/hm-vm/src/docker.rs
#	crates/hm-vm/src/registry.rs
#	crates/hm-vm/src/vm.rs
@markovejnovic
Merge remote-tracking branch 'origin/main' into marko/cli-28-caching-…
177320d 
…workspace-broken
@markovejnovic
Merge remote-tracking branch 'origin/main' into marko/cli-28-caching-…
fc98131 
…workspace-broken

# Conflicts:
#	crates/hm-exec/src/local/scheduler.rs
@markovejnovic markovejnovic mentioned this pull request Jun 10, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@markovejnovic