Use builds.dotnet.microsoft.com CDN in releases.json files
#9675
Comments
|
It's actually worse than that: the current behavior is inconsistent and, as far as I can see, cannot be made consistent using the current layout. What I mean by consistent is the data in one of the JSON files shouldn't be contradicted by the links and data in referenced files. So, for instance, a URL in the original JSON file should never 404. There may be network issues that prevent delivery, but a 404 would indicate that the content is inconsistent. As far as I can see, we may have some limited ability to ensure consistency in one CDN. For instance we could stage our releases-index.json such that the referenced URLs are uploaded before we publish the index. But across CDNs I think this is just impossible. So, an example where this is broken is the CDN-delivered releases-index.json file. The file at https://builds.dotnet.microsoft.com/dotnet/release-metadata/releases-index.json looks like {
"$schema": "https://json.schemastore.org/dotnet-releases-index.json",
"releases-index": [
{
"channel-version": "9.0",
"latest-release": "9.0.0",
"latest-release-date": "2024-12-03",
"security": true,
"latest-runtime": "9.0.0",
"latest-sdk": "9.0.101",
"product": ".NET",
"support-phase": "active",
"eol-date": "2026-05-12",
"release-type": "sts",
"releases.json": "https://dotnetcli.blob.core.windows.net/dotnet/release-metadata/9.0/releases.json",
"supported-os.json": "https://dotnetcli.blob.core.windows.net/dotnet/release-metadata/9.0/supported-os.json"
}
...Note the this file was delivered from https://builds.dotnet.microsoft.com, but the referenced releases.json is at https://builds.dotnet.microsoft.com. Even if we published things in the right order, we can't control CDN delivery or cache expiry. There's no way to guarantee that the CDN info is consistent with the referenced JSON file. And note that there's lot's of stuff that can (and does) go out of date! The latest SDK could very easily be older on the CDN than in the releases.json file. This isn't a theoretical matter -- in practice I've seen the CDN take 24 hours to replicate after we release a new build. So in multiple cases with dnvm I've had inconsistent data from the two endpoints that has caused crashes and data corruption. I've currently just abandoned using any CDN at all. It's fine if the CDN is out of date, but inconsistencies are hard to impossible to guard against. It makes all the data suspect and it's not worth the trouble to try to sort through it. I think the right answer here is that we should always use the same source domain URLs in each JSON file. In fact, we might want to consider using relative paths instead of absolute paths. The relative path needs to implicitly resolve against the same domain used originally. |
|
Can you elaborate on how relative paths help? This file will be hosted in two places:
All links (once we make the change) will reference builds.dotnet.microsoft.com. I thought the behavior of CDNs was to request a file from origin that it didn't have and that a missing file added to origin 5 mins ago is the same as an aged out file that hasn't been requested in a year. I read this post recently: https://scotthelme.co.uk/lets-encrypt-to-end-ocsp-support-in-2025/. The CDN / origin relationship seems to be the expected one. It would be great to see logs that demonstrate the corruption / bad behavior you've seen with dnvm. I am wondering if something else is it play. Perhaps we can look at the pattern that dnvm is using? There are lots of other users, for whom we have not received failure reports. Our own CI relies on a peer CDN every day w/new content. My understanding is that we are not seeing CI failures due to bad CDN behavior. We are planning on telling people that using the blob storage URLs is unsupported. We'd like to eventually restrict their usage to the IP ranges used by our CDNs. I'm not sure doing that is actually practical, but that's the north star. Enabling people to use origin is bad. We've clearly had multiple bad patterns at play. |
|
Sorry, no logs from dnvm, I didn't save anything. The specific behavior I saw was this:
What I believe was happening is that this was just after we pushed the release (day of). The new versions had not yet propagated to the CDN, but they did appear in the "dotnetcli.blob.core.windows.net" location. While this could theoretically even happen on the same host, in between updating the two resources, what I saw with the CDN was a lot of delay. This split situation was occurring for multiple hours, at least. The queries in dnvm are immediate, so otherwise the race would be on the order of hundreds of milliseconds. This gets much worse if we delete a release from the files (which we have done!). Now not only is the latest release not the same, but the one on the CDN is newer than the one on the dotnetcli blob store. Moreover, the requested release won't appear in the list of available SDKs. My idea is that the state should always be coherent. If one file says that the latest release is 9.0.100, the other one should agree unless a race is hit where 9.0.101 was published in between the queries. I think that's doable with a single domain/server. But I don't see how it's possible to ensure coherency if the files are delivered from multiple servers. The CDN (by design) may lag the original server by an indeterminate period. Hence my proposal that we only list relative paths. In that case, I could ignore the linked domain and instead use the original domain as the resolved host. Alternatively, we could stick with the plan of "we only ever use a single CDN's domain". That seems OK, but it does mean that if the CDN goes down, availability is down too. If we have confidence in the CDN uptime I'm OK with that too. |
|
This could also be caused by human error. We are going to write some tools that validate that the files are always coherent. |
|
Could you elaborate? How would you handle this situation:
|
|
We're planning on using a single domain. The intent is for the JSON files to be served from domain A and reference files exclusively from domain A. This is for going forward. We're not going to make changes to existing JSON content. We will be relying on multiple CDNs as an implementation detail, however, for that domain. |
and others
releases.jsonandrelease.jsonfiles currently reference the VS CDN. That's a bad practice since it requires that bothbuilds.dotnet.microsoft.comanddownload.visualstudio.microsoft.comare up. Is either is down, then users cannot download files via this flow. That naturally means that the JSON files should reference files on thebuilds.dotnet.microsoft.comCDN. Also, the VS CDN doesn't have stable URLs, making it impossible to have a stable link to the JSON files should we want to locate them there instead.Example JSON file:
core/release-notes/8.0/releases.json
Lines 23 to 33 in 218ef74
We are currently validating that the Azure Front Door and Akamai CDNs that we'll be using provide good latency/service to various large countries.
This change also means that we will no longer be publishing new URLs for the VS CDN. It will be used as a private implementation detail for .NET delivery via Visual Studio. All users will need to move to using the dotnet CDN.
FYI: We're going to call
builds.dotnet.microsoft.comthe "dotnet CDN". Feel free to use that terminology. We intend for it to have a very long future.The text was updated successfully, but these errors were encountered: