[AVM Module Issue]: Deployment Concurrency issue with Private Endpoints #962
Comments
tyconsulting
added
Needs: Triage 🔍
|
Hmm that's new. A |
No this is the first time I'm seeing this. I wonder if it's depended on the resource provider. but This is the first time I'm creating 2 PEs for Databricks via this loop. Both PEs have the same group Id but connected to different vnets. Also I wonder if has anything to do with the failure being the same group Id? |
|
Can you give as your deployment code for reference @tyconsulting ? |
I'll share with you privately tomorrow. Massive power outage here in VIC right noe. I'm on my mobile. |
|
Hey @segraef, @batchSize(1)
module workspace_privateEndpoints 'br/public:avm/res/network/private-endpoint:0.3.3' = [for (privateEndpoint, index) in (privateEndpoints ?? []): {
(...)
}I'd suggest we go about this in 2 steps. Let's first add a second PE deployment to each module in a PR and trigger the pipelines for testing. If consistentpy failing, we can add the batch size to all modules. If not it may only be an issue in some, which we then update in the same PR. Thoughts? |
microsoft-github-policy-service
bot
added
the
Status: Response Overdue 🚩
microsoft-github-policy-service
bot
added
the
Needs: Immediate Attention ‼️
|
@tyconsulting , just for due dilligence may I have your used deployment code to reproduce the error? https://github.com/segraef/bicep-registry-modules/actions/runs/8016895436/job/21899816418 |
|
Yeah I'll ping you on Monday and give you access to my databricks code in my ado project |
|
I replicated the error: |
|
Testing with |
|
Works with |
## Description Currently testing all multi-PE services as per https://learn.microsoft.com/en-us/azure/private-link/private-endpoint-overview#private-link-resource Private-link resource name | Resource type | Sub-resources -- | -- | -- Azure Automation | Microsoft.Automation/automationAccounts | Webhook, DSCAndHybridWorker Azure Backup | Microsoft.RecoveryServices/vaults | AzureBackup, AzureSiteRecovery Azure Batch | Microsoft.Batch/batchAccounts | batchAccount, nodeManagement Azure Cosmos DB | Microsoft.AzureCosmosDB/databaseAccounts | SQL, MongoDB, Cassandra, Gremlin, Table Azure Databricks | Microsoft.Databricks/workspaces | databricks_ui_api, browser_authentication Azure Media Services | Microsoft.Media/mediaservices | keydelivery, liveevent, streamingendpoint Azure Storage | Microsoft.Storage/storageAccounts | Blob (blob, blob_secondary)Table (table, table_secondary)Queue (queue, queue_secondary)File (file, file_secondary)Web (web, web_secondary)Dfs (dfs, dfs_secondary) Azure Synapse Analytics | Microsoft.Synapse/workspaces | Sql, SqlOnDemand, Dev Closes - Azure/Azure-Verified-Modules#620 - #962 - #946 - #1042 AVM Issues - Azure/Azure-Verified-Modules#621 ## Pipeline Reference | Pipeline | | -------- | | [](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.automation.automation-account.yml) | | [](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.batch.batch-account.yml)| | [](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.databricks.workspace.yml)| | [](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.document-db.database-account.yml)| | [](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.storage.storage-account.yml)| | [](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.synapse.workspace.yml) | ## Type of Change <!-- Use the check-boxes [x] on the options that are relevant. --> - [ ] Update to CI Environment or utlities (Non-module effecting changes) - [x] Azure Verified Module updates: - [ ] Bugfix containing backwards compatible bug fixes, and I have NOT bumped the MAJOR or MINOR version in `version.json`: - [x] Someone has opened a bug report issue, and I have included "Closes #{bug_report_issue_number}" in the PR description. - [ ] The bug was found by the module author, and no one has opened an issue to report it yet. - [x] Feature update backwards compatible feature updates, and I have bumped the MINOR version in `version.json`. - [ ] Breaking changes and I have bumped the MAJOR version in `version.json`. - [x] Update to documentation ## Checklist - [x] I'm sure there are no other open Pull Requests for the same update/change - [x] I have run `Set-AVMModule` locally to generate the supporting module files. - [x] My corresponding pipelines / checks run clean and green without any errors or warnings <!-- Please keep up to day with the contribution guide at https://aka.ms/avm/contribute/bicep --> --------- Co-authored-by: Kris Baranek <[email protected]>
|
Dear @microsoft-gitthub-policy-service, I know and the PRs are open. You may stop now |
|
Implementation in progress, see linked PRs. |
](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.automation.automation-account.yml){kind=link}
|](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.batch.batch-account.yml/badge.svg?branch=fix%2Fpe-schema)](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.batch.batch-account.yml)|){kind=link}
|](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.databricks.workspace.yml/badge.svg?branch=fix%2Fpe-schema)](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.databricks.workspace.yml)|){kind=link}
|](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.document-db.database-account.yml/badge.svg?branch=fix%2Fpe-schema)](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.document-db.database-account.yml)|){kind=link}
|](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.storage.storage-account.yml/badge.svg?branch=fix%2Fpe-schema)](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.storage.storage-account.yml)|){kind=link}
](https://github.com/segraef/bicep-registry-modules/actions/workflows/avm.res.synapse.workspace.yml){kind=link}
Check for previous/existing GitHub issues
Issue Type?
Bug
Module Name
Other, as defined below...
(Optional) Module Name if not listed above
All modules calling the Private Endpoint module
(Optional) Module Version
No response
Description
The Private Endpoint modules are called in a for loop. This can potentially cause issues when more than 1 Private Endpoints are created at the same time:
To work around issue, I'm suggesting use the
@batchSizedecorator to limit to 1 concurrent deployment in all modules calling the Private Endpoint module. for example:I have tested this in my lab and I can confirm it fixed the error I have shown above.
cc @segraef @AlexanderSehr
(Optional) Correlation Id
No response
The text was updated successfully, but these errors were encountered: