Update: The app is offline now due to the cost of cloud deployment. I was quite sad, but my wallet would get even sadder if I continue π₯²π₯²π₯². Please contact me if you want me to put the app up again. If you are interested in hiring me, here's my resume: https://hangenyuu.github.io/resume.
This is an iteration on my previous project SeeFood101. In SeeFood101, I just got familiar with model training, working mostly out of Jupyter Notebook, a folder storing helper function, a Tensorboard session for training monitoring, and simple demo with Gradio here. For model training, this is enough.
However, machine learning does not stop at model training. Usually, a model is trained to solve a business problem, and to serve this end, the model needs deploying to be accessible and monitoring to make sure that is works properly. This is called MLOps, and it's a totally different breed from model training.
This project is my attempt at learning the ropes of MLOps. The demo is nothing impressive on its own, the interesting thing is the
My current progress visualized
- β Fine-tune the model on multiple GPUs with PyTorch Lightning
- β Monitor finetuning with Tensorboard and upload the runs online
- β Store the weights in an Amazon S3 bucket
- β Version track the model weights with DVC
- β Convert the PyTorch Lightning checkpoint to ONNX weights and use ONNX Runtime for inference
- β Create the backend with FastAPI and a minimal HTML/Javascript frontend, allowing users to upload image and receive top-5 categories + probabilities
- β Containerize the backend with Docker
- β Store the Docker image in Digital Ocean Container Registry (DOCR)
- β Create a GitHub action to automatically construct the Docker image and push to ECR on pushing code to the GitHub repository.
- β Deployment on Digital Ocean with Kubernetes (DOKS).
- β Edit the GitHub action to automatically deploy the Docker image after construction.
- β Setup monitoring - each cloud provider has their own monitoring process. Mature ones such as AWS have more tools developed on top of this (Kibana, Grafana, etc.). For Digital Ocean, it seems that the platform has built-in simple graphing for the Droplets and email alerts. I can also use add-ons. However, most options required me to integrate in the Droplet in the first place, which I have not (uh oh).
For people looking to follow along the repo:
conda create -n seefood102 python=3.10
conda activate seefood102
pip install -r requirements.txtI chose a pretrained LeVit (paper, code, weight) and then fine-tuned with all parameters unfrozen on the Food101 Dataset. The training code was written with PyTorch Lightning to reduce the amount of boilerplate and utilize the 2 GPUs I was given. I used Tensorboard to monitor the training. The training can be viewed here. At the end, the model achieved ~0.78 F1 and accuracy. After training, you can save your model to .ckpt format of PyTorch Lightning to use directly for inference, convert to ONNX format with the ckpt_to_onnx.py script before inference with CPU, or save your model directly to ONNX format for inference.
I used DVC (Data Version Control), a Git-like tool for data, to track the model weight. The setup depends on your choice of cloud storage. I chose AWS S3 for its popularity and security despite the initial effort needed to set things one bucket (which actually was easy compared to other things AWS offers). In any case, from the documentation, the steps as of July 2023 are:
- Go to IAM Management Console.
- Create a new user (recommended) with specified permissions. Besides AWS S3, I want to use this User for the task of ECR and ECS, so I also give the User permissions for these services as needed.
- Create an S3 bucket with Version Aware set to True.
- Generate a pair of access key ID - secret and store it locally. This will be needed for DVC to access the object stored in your AWS S3 bucket.
- Add the access key ID and access key secret to your GitHub Action repository secrets. For local development:
dvc remote add -d myremote s3://<bucket-create-above>/<further-folder-if-created>
dvc remote modify myremote version_aware true
dvc remote modify --local myremote \
access_key_id 'access_key_id_from_above'
dvc remote modify --local myremote \
secret_access_key 'secret_access_key_from_above'
dvc remote modify --local myremote \
session_token 'required_if_MFA_is_on'And you will be logged in to the S3 bucket.
Now, assume I have finished training and have a model checkpoint checkpoint.ckpt stored in models. I can add and push the checkpoint to remote storage with Git-like commands
# Suppose I am at the root folder
dvc add /models/checkpoint.ckpt
# 2 files - `checkpoint.ckpt.dvc` and `.gitignore` will be generated at the `models` folder to tell DVC the location of the object and tell Git to not track the checkpoint
# Now push
dvc push /models/checkpoint.ckpt.dvcIf the object is pushed successfully, the model is now stored in the S3 bucket. Navigate there with a browser to check, or use AWS CLI
aws s3 ls <bucket-create-above>/<further-folder-if-created>/models/You should see something like
2023-07-25 16:23:03 216279960 checkpoint.ckptFastAPI is blazingly fast to develop and execute, with Pythonic and concise syntax, plus built-in documentation that I can use to test the server. The source code is tored at app.py. The backend server is spinned up with uvicorn to support ASGI (basically asynchronous communication between servers). Some knowledge of REST API is needed to use FastAPI.
(Who am I kidding? REST API is needed to use almost any framework)
Annotated code:
After running with uvicorn
uvicorn app:app --host 0.0.0.0 --port 8000Head to http://localhost:8000/docs to see the documentation and test the predict method out.
You need to install at least Docker Engine first. The method will vary across OS. It is recommended on the website to install the whole thing with Docker Desktop.
Put it simply, Docker is a way to capture the whole software dependencies of an application down to the OS level (that's may be why the product is called "Docker image") and runs it later on a machine with Docker Engine. This is similarly to creating a virtual machine with a different OS (say, Puppy Linux) than the OS of your machine (say, Windows) to run a piece of software, either because it only works on that OS or you want to replicate the original system specifications. Each virtual machine will install a whole OS and run in a different kernel of the host machine. For Docker, every Docker image will run in a shared kernel powered by Docker Engine, resulting in lighter and faster applications. In that sense, Docker Engine can be thought of as some kind of specialized OS used to applications called Docker images. And we may want to do so because this OS offers better performance.
To get started, you need to have a Dockerfile. It is the of how to construct the application. The general steps are
# Step 1: Use `FROM` to get a base image (needs Internet access).
# Here I pull down an image of a machine using Ubuntu with conda and Python 3.10 already installed.
# Just as we fine-tune a pretrained model instead of training from scratch,
# I build on top of an existing image instead of reinventing the wheel
FROM continuumio/miniconda3:23.3.1-0
# Step 2: Use `ADD` to copy relevant files to the image
# I have a file called `.dockerignore` to list files I don't want copying just like `.gitignore`
ADD ./ /app
# Step 3 (Optional): Declare the working directory in the image with `WORKDIR`.
# Because I copy the files to `/app`, I switch to `/app`.
# The default is the root folder (`./`)
WORKDIR /app
# Step 4 (Optional): Declare arguments for the build.
# The arguments can be passed into with `--build-arg` flag.
# You can set default value for arguments
# Default is no arguments
ARG AWS_ACCESS_KEY_ID
ARG AWS_SECRET_ACCESS_KEY
# Step 5: List the steps to construct the environment for the codes with `RUN`
# `RUN` will be followed by a bash command
# install requirements
RUN pip install "dvc[s3]" --no-cache-dir
RUN pip install torch==2.0.1 torchvision --index-url https://download.pytorch.org/whl/cpu --no-cache-dir
RUN pip install -r requirements_inference.txt --no-cache-dir
# initialize dvc
RUN dvc init --no-scm
# connect to remote server
RUN dvc remote add -d awsremote s3://food101
RUN dvc remote modify awsremote version_aware true
RUN dvc config core.analytics false
RUN dvc remote modify --local awsremote access_key_id $AWS_ACCESS_KEY_ID
RUN dvc remote modify --local awsremote secret_access_key $AWS_SECRET_ACCESS_KEY
# View config at the build log
RUN cat .dvc/config
# Pull the model ONNX weights
RUN dvc pull models/levit_256/onnx/checkpoints.onnx.dvc
# Step 6: Declare environment variables with `ENV`
ENV LC_ALL=C.UTF-8
ENV LANG=C.UTF-8
# Step 7: Specify ports for data transfer with `EXPOSE`
# By default, a container is closed - no data can be transferred in or out.
EXPOSE 8000
# Step 8: The final command to start the application with `CMD`
# The format used by Docker is EXEC form compared the the SHELL form above
# That's why it is an array of strings
CMD ["uvicorn", "app:app", "--host", "0.0.0.0", "--port", "8000"]The Dockerfile is used to construct the image with example command
# Assume access key ID and secret are stored as environment variables
docker build --build-arg AWS_ACCESS_KEY_ID=$AWS_ACCESS_KEY_ID \
--build-arg AWS_SECRET_ACCESS_KEY=$AWS_SECRET_ACCESS_KEY \
--no-cache --tag $REGISTRY/$IMAGE_NAME:latest .This will construct an image. To create the final container from the image
docker run -p 8000:8000 --name $IMAGE_NAME $REGISTRY/$IMAGE_NAME:latest-p is mapping a port from the container to a port of the host machine in the format host:container. This is necessary because exposing a port is still not making accessible without mapping.
The predict method expects an image as an attachment. which can be easily constructed with a form. I provide a minimal front-end index.html. You can spin it up with Live Server extension or using python
# Spin up a Python server at port 5500 of localhost
python server python -m http.server 5500
After uploading and submitting the image, you should see a dictionary of top-5 categories and probabilities displayed on the screen.
The journey to one application is laid with one thousand bugs.
Indeed. Besides the extra learning (I enjoy this) and the countless hours spent on writing .yaml file for the Docker image (I do not hate this), it is smooth sailing until deployment. And then the fun begins. Here are the mistakes that I made along the way.
- β Store the Docker image on AWS ECR. There is some strange interaction between Docker Desktop and ECR (1, 2), and the supposed fixes crashed my own Docker Desktop, leading to reinstallation. I have no trouble doing this with GitHub Actions though, and then on my local computer. Apparently, the bug is fixed with the new release of Docker Desktop.
- β Deploy the Docker image on AWS Lambda function. Serverless, on-demand, auto-scale, cheap billing, can even be built from Docker image. Sounds great, right? Until you realize you need to use AWS Lambda-based image, which will have compatibility issue for DVC (which requires SQLite 3.8.3+, while the image is stuck in SQLite 2). No big deal, you can use your own image for Lambda after installing
lambdaric. But I started running into build issue. By this point Lambda has caused me so much headache that I stopped. - β Deploy the Docker image on AWS ECR. The steps are straightforward - cluster, task, service, then deploy the container on top of this. But the container starts failing repeatedly. And it seemed that despite scanning through the options, I missed the logging somewhere? Or does it exist? By this point, I decided that AWS was enough. The service is powerful but overwhelming. It's time to switch to something smaller - Digital Ocean.
- β Deploy the Docker image on Digital Ocean Droplet. The workflow is similar to using an EC2 instance, but the catch is that Docker Enginer is installed within the Droplet (yes!). This is inherently unscalable, but straightforward. The GitHub Actions will SSH into the machine and run the container. But again, it failed repeatedly with no log. Fun.
- β
Deploy the Docker image on Digital Ocean Kubernetes Service (DOKS). This is desperation, trying to do hard things because easy things didn't work. But miraculously, there is a log right inside GitHub Actions telling me that
appcannot be found. Now I know the problem: I definedWORKDIRas/app, the file to run the server wasapp, and the app name wasapp!. I removed the customizedWORKDIRcommand, and voila, work like a charm!
- Training is easy. Deployment is hard.
- Go for prebuilt. Never reinvent the wheel, but know enough or get a person knowing enough to make sure that you are using the right wheel.
- Understand networking. One problem I face is connecting the container port to the machine port to the load balancer port. And then getting error as the load balancer use HTTP and IP address, while the server with Javascript wants HTTPS, the vendor willing to give me free SSL/TLS certificate wants domain name, and the domain site makes it non-obvious to point the domain to the IP address. In the end I settled for Gradio as Python is more lenient. And that's just 1 node. Imagining having a system that serves a thousand users with multiple nodes linked together.
- Iterate quickly trumps early optimization. I sat on this project for months, claiming issues such as time, attention, money, or simply paralysis by analysis. And I got this done in 2 weeks. It is always better to get things done first, then improve the product iteratively. The alternative is sitting there scared of everything and doing nothing.
- Pizza by Pablo Pacheco via Unsplash: https://unsplash.com/photos/D3Mag4BKqns
- TensorBoard Logo from TensorFlow website: https://www.tensorflow.org/tensorboard
- ONNXRuntime Logo from Microsoft GitHub repo: https://github.com/microsoft/onnxruntime
- ONNX Logo from Linux Foundation AI & Data Foundation Logos and Artwork - ONNX: https://artwork.lfaidata.foundation/projects/onnx/
- DVC Logo from DVC website: https://dvc.org/
- PyTorch Lightning Logo from Phillip Lippe website: https://phlippe.github.io/post/uvadlc-tutorials-lightning/
- Hydra Logo from Facebook Research GitHub repo: https://github.com/facebookresearch/hydra
- Digital Ocean Product Icons from this presentation: https://do.co/diagram-kit
- Digital Ocean Logo from Wikimedia
- Gradio Logo from Wikimedia