Problem
The CocoonSet reconciler only creates missing pods and deletes excess ones. It does not detect spec drift on existing pods or trigger recreation when the CocoonSet spec changes.
This means any field change on a live CocoonSet — forcePull, resources, storage, image, network, etc. — only takes effect for newly created agents. Existing agents continue running with the original spec.
Affected code paths
reconciler.go:112-140 — main pod: if it exists, skip creation regardless of specreconciler.go:148-178 — sub-agents: only fill missing slots, existing pods are not compared against desired specupdate.go:21-50 (vk-cocoon) — UpdatePod only handles hibernate/wake transitions, all other spec changes are ignored
Example
# User updates CocoonSet:
spec:
agent:
forcePull: true # changed from false
memory: 8Gi # changed from 4GiAfter applying: existing agent pods still run with forcePull: false and memory: 4Gi. Only agents created after this point (e.g., new sub-agent slots, or pods recreated after deletion) pick up the new values.
Expected behavior
When the CocoonSet spec changes, the reconciler should detect the drift and perform a rolling replacement of affected pods — similar to how a Deployment rolls out ReplicaSet changes.
Suggested approach
- Compute a spec hash (e.g., SHA256 of the serialized agent spec) and store it as a pod annotation
- On reconcile, compare the current spec hash against each pod's annotation
- If mismatched, delete the stale pod — the next reconcile loop creates a replacement with the updated spec
- Respect PodDisruptionBudget or a max-unavailable setting to avoid killing all agents simultaneously
Context
Discovered while adding forcePull support (cocoonstack/vk-cocoon#2). The field works correctly at create time but cannot be toggled on existing agents without manually deleting the pods.
This is not specific to forcePull — it affects every mutable field in AgentSpec.
Problem
The CocoonSet reconciler only creates missing pods and deletes excess ones. It does not detect spec drift on existing pods or trigger recreation when the CocoonSet spec changes.
This means any field change on a live CocoonSet —
forcePull,resources,storage,image,network, etc. — only takes effect for newly created agents. Existing agents continue running with the original spec.Affected code paths
reconciler.go:112-140— main pod: if it exists, skip creation regardless of specreconciler.go:148-178— sub-agents: only fill missing slots, existing pods are not compared against desired specupdate.go:21-50(vk-cocoon) —UpdatePodonly handles hibernate/wake transitions, all other spec changes are ignoredExample
After applying: existing agent pods still run with
forcePull: falseandmemory: 4Gi. Only agents created after this point (e.g., new sub-agent slots, or pods recreated after deletion) pick up the new values.Expected behavior
When the CocoonSet spec changes, the reconciler should detect the drift and perform a rolling replacement of affected pods — similar to how a Deployment rolls out ReplicaSet changes.
Suggested approach
Context
Discovered while adding
forcePullsupport (cocoonstack/vk-cocoon#2). The field works correctly at create time but cannot be toggled on existing agents without manually deleting the pods.This is not specific to
forcePull— it affects every mutable field inAgentSpec.