# Syllabys

1. [Why containerization is needed](#why-containerization-is-needed)
2. [Docker overview](#docker-overview)
3. [Image syntax overview](#image-syntax-overview)
4. [Commands overview](#commands-overview)
5. [CUDA Containers](#cuda-containers)
6. [Docker Compose](#docker-compose)
7. [Homework](#homework)

# Why containerization is needed

Imagine a situation in which you need to develop a CV project.

As a developer usually you'll start experimenting with the development on your local environment over which you have most control.

You test different libraries, models, etc. Then you work on deployment - creating an Web API interface for other people to use. And in the end you need to `share the project with steps of how to reproduce the whole working project on any host`. 

What would steps be in abstract form?

1. Installing Python
2. Installing middleware (OpenCV needs special C libraries, most Deep Learning models need GPU)
3. Installing libraries used in the project
4. Running a project with specific configuration (need specific arguments or can be made as chain of scripts)

In abstract form it looks easy enough but `in details usually it's around 20-30 CLI commands that are needed to be run in specific order`.

And another important thing is a `platform` on which solution is going to be deployed.

Instructions from above can differ depending on the platform.

# Docker overview

`Docker` is a platform that allows to develop, deploy and run applications with `containers`.

`Container` is an isolated environment from your infrastructure. This means that a container has no knowledge of your operating system, it's middleware, or your files. It runs on the environment provided to you by Docker. Containers have everything that your code needs in order to run, down to a base operating system.

![Docker architecture example](https://code.visualstudio.com/assets/learn/develop-cloud/containers/container-architecture.png)

Docker pros:

- `Consistency`: Docker ensures consistent environments across development, testing, and production, eliminating "it works on my machine" issues.
- `Isolation`: Containers encapsulate applications and their dependencies, preventing conflicts and ensuring reproducibility.
- `Portability`: Docker containers can run on any platform that supports Docker, enabling seamless deployment across diverse environments.
- `Efficiency`: Docker's lightweight nature allows for faster deployment, scaling, and resource utilization compared to traditional virtual machines.


Docker difference from other isolation techniques:

1. Virtual environment - it adds isolation on the code interpreter level but doesn't aim at middleware isolation (meaning that system libraries and drivers cannot be isolated by it).
2. Virtual machine - it follows completely different architecture that uses `hypervisor` - a middleware that isolates operating systems on top of infrastructure. Docker does not fully emulate operating system, it uses more light-weighted approach that uses Host Operating System.

## Docker Architecture

![](https://docs.docker.com/get-started/images/docker-architecture.webp)

Docker uses a `client-server architecture`. The Docker client talks to the Docker daemon, which does the heavy lifting of building, running, and distributing your Docker containers. The Docker client and daemon can run on the same system, or you can connect a Docker client to a remote Docker daemon. The Docker client and daemon communicate using a REST API.

- `The Docker daemon`

    The Docker daemon (dockerd) listens for Docker API requests and `manages Docker objects` such as images, containers, networks, and volumes. A daemon can also communicate with other daemons to manage Docker services.

- `The Docker client`

    The Docker client (docker) is the primary way that many Docker users interact with Docker. When you use commands such as `docker run`, the `client sends these commands to dockerd, which carries them out`. The docker command uses the Docker API. The Docker client can communicate with more than one daemon.

- `Docker registries`

    A Docker registry `stores Docker images`. Docker Hub is a public registry that anyone can use, and Docker looks for images on Docker Hub by default. You can even run your own private registry.

    When you use the `docker pull` or `docker run` commands, Docker pulls the required images from your configured registry. When you use the `docker push` command, Docker pushes your image to your configured registry.

- `Docker Images`

    An image is a `read-only template with instructions for creating a Docker container`. Often, an image is based on another image, with some additional customization. For example, you may build an image which is based on the ubuntu image, but installs the Apache web server and your application, as well as the configuration details needed to make your application run.

    You might create your own images or you might only use those created by others and published in a registry. To build your own image, you create a Dockerfile with a simple syntax for defining the steps needed to create the image and run it. Each `instruction in a Dockerfile creates a layer` in the image. When you change the Dockerfile and rebuild the image, only those `layers which have changed are rebuilt`. This is part of what makes images so lightweight, small, and fast, when compared to other virtualization technologies.

- `Docker Containers`

    A container is a `runnable instance of an image`. You can create, start, stop, move, or delete a container using the Docker API or CLI. You can connect a container to one or more networks, attach storage to it, or even create a new image based on its current state.

    By default, a container is relatively well isolated from other containers and its host machine. You can control how isolated a container's network, storage, or other underlying subsystems are from other containers or from the host machine.

    A container is defined by its image as well as any configuration options you provide to it when you create or start it. When a container is removed, any changes to its state that aren't stored in persistent storage disappear.


[How to install Docker](https://docs.docker.com/get-docker/) described here for each platform available.

# Image syntax overview

An image is a `read-only template with instructions for creating a Docker container`. 

To build your own image, you create a `Dockerfile with a simple syntax for defining the steps needed to create the image and run it`. 

Each `instruction in a Dockerfile creates a layer` in the image. 

When you change the Dockerfile and rebuild the image, only those `layers which have changed are rebuilt`. This is part of what makes images so lightweight, small, and fast, when compared to other virtualization technologies.


OOP analogy:

- image = class
- layer = inheritance
- container = object

Docker instruction are described in `Dockerfile`.


Example of base Dockerfile:

```docker
# base image
FROM python:3.6

# specify working directory
WORKDIR /app

# copy file from build context into workdir
COPY app.py app.py
# OR copy all files into workdir
COPY . .

# default command to be executed on container start
CMD python app.py
```

Let's break this commands:

- `FROM` - sets a base image (image from Docker Hub that has predefined instructions)
- `WORKDIR`- sets a working directory for any RUN, CMD, ENTRYPOINT, COPY and ADD instructions that follow it in the Dockerfile
- `COPY` - copies files from specified filesystem into isolated container's filesystem
    * `.dockerignore` file can be used to ignore files by specific included pattern
- `ENV` - sets an environment variable for a container
- `EXPOSE` - informs Docker that the container listens on the specified network ports at runtime
    * on a runtine port has to be published using `-p [internal port]:[external port]` arguments
- `RUN` - executes command as a new layer to be set in a container
- `CMD` - sets the command to be executed when running a container from an image



<h3>Base images (FROM command)</h3>

Base images defines initial setup of container's environment. 

They can be found in [Docker Hub](https://hub.docker.com/search?image_filter=official&q=).

Each image also can have a tag - symbolic representation of version or specific configuration. 
The format of image name is `{name}:{tag}`, by default tag is `latest`.


Docker Hub contains next type of images:

- operating system (such as `alpine`, `ubuntu`, `debian`, etc., usually open-sourced OS)
- platforms, frameworks or systems (`kafka`, `postgres`, `python`, etc.) 

Example of Dockerfile for FastAPI [is listed here](./fast_api_demo/Dockerfile).

# Commands overview

After creating an `image` with Dockerfile, command `docker build` allows to build a container based on supplied image.

Command format:

```bash
docker build -t {image name} -f {filename} PATH
```
where:
- `PATH` is a required argument that specifies the build context
- `-t {name:tag}` - sets name of the image with the tag
- `f {filename}` - specifies the name of the file that contains build instructions, by default Dockerfile


After building a Docker Image, it can be started as a `Container` using command `docker run`.

Command format:

```bash
docker run {OPTIONS} IMAGE_NAME
```
where:
- `IMAGE_NAME` is a required name of the image that has to be run
- `-d` - detaches process running the container in background
- `-it` - contains two commands: `i` for interactive mode that allows sending input to the container and `t` for allocating terminal for the communication with the container
- `-p {internal port}:{external port}` - connects container port with external port for communication
- `--rm` - flag for cleaning container states (removing previous states saved in the memory)
- `--name {NAME}` - assigns custom identifier for a container
- `--gpus {all|devices=NAMES}` - allows to access NVIDIA GPU resources, more about enabling GPU [is written here](#cuda-containers)
- `-e {VAR=VAL}` - sets environment variable
- `--restart {no|always|unless-stoped|on-failure}` - controlls restart policy forf a container after it's exit
- `-v {external directory}:{internal directory}` - mounts directory into container and allows file sharing

List of other useful commands:

- `docker images` - shows all installed images
- `docker rmi {IMAGE_NAME}` - deletes image
- `docker ps -a` - shows all containers (without `-a` flag shows only ones that are running)
- `docker stop {CONTAINER_NAME_OR_ID}` - stops docker container
- `docker rm {CONTAINER_NAME_OR_ID}` - removes docker container
- `docker logs {CONTAINER_NAME_OR_ID}` - shows container logs
- `docker exec {CONTAINER_NAME_OR_ID} {COMMAND}` - executes a command in a running container, usually used as:
    * `docker exec -it {CONTAINER_NAME_OR_ID} bash` to start a bash session and connect to existing
- [and many other commands listed here](https://docs.docker.com/reference/cli/docker/)

In [1]:
!docker build -t app:1 fast_api_demo/

[1A[1B[0G[?25l[+] Building 0.0s (0/1)                                          docker:default
[?25h[1A[0G[?25l[+] Building 0.2s (1/2)                                          docker:default
[34m => [internal] load build definition from Dockerfile                       0.0s
[0m[34m => => transferring dockerfile: 742B                                       0.0s
[0m => [internal] load metadata for docker.io/library/python:3.10             0.1s
[?25h[1A[1A[1A[1A[0G[?25l[+] Building 0.3s (1/2)                                          docker:default
[34m => [internal] load build definition from Dockerfile                       0.0s
[0m[34m => => transferring dockerfile: 742B                                       0.0s
[0m => [internal] load metadata for docker.io/library/python:3.10             0.3s
[?25h[1A[1A[1A[1A[0G[?25l[+] Building 0.5s (1/2)                                          docker:default
[34m => [internal] load build definition from Dockerfile     

# CUDA Containers

By default, GPU-acceleration is not available in containers. To enable it, install [NVIDIA Container toolkit](https://docs.nvidia.com/datacenter/cloud-native/container-toolkit/latest/install-guide.html).

After that GPUs can be enabled in `docker run` via `--gpu {all}` option.

You can use next CUDA images from Docker Hub:

- `nvidia/cuda`
- `pytorch/pytorch` with tag for CUDA and CuDNN such as `:2.0.1-cuda11.7-cudnn8-runtime`
- `jupyter/pytorch-notebook` with tag for CUDA such as `:cuda11-latest`
- other images with checking their tags.



Example of Dockerfile for FastAPI builing on base CUDA image [is listed here](./fast_api_demo/Dockerfile_gpu).

<h3>Building consistent working environment</h3>

One of the usages of Containers is creating isolated working environment in case when you need to experiment on different middleware (CUDA, different drivers for specific packages, etc.).

Example of setuping a Docker container with PyTorch, CUDA and Jupyter Notebook for experimentation [is listed here](./Dockerfile_gpu_env).

In [1]:
# Build a docker image
!docker build -t work-env -f Dockerfile_gpu_env .

[1A[1B[0G[?25l[+] Building 0.0s (0/1)                                          docker:default
[?25h[1A[0G[?25l[+] Building 0.2s (6/10)                                         docker:default
[34m => [internal] load build definition from Dockerfile_gpu_env               0.0s
[0m[34m => => transferring dockerfile: 956B                                       0.0s
[0m[34m => [internal] load metadata for docker.io/pytorch/pytorch:2.0.1-cuda11.7  0.0s
[0m[34m => [internal] load .dockerignore                                          0.0s
[0m[34m => => transferring context: 2B                                            0.0s
[0m[34m => [1/7] FROM docker.io/pytorch/pytorch:2.0.1-cuda11.7-cudnn8-runtime     0.0s
[0m[34m => CACHED [2/7] RUN pip install --no-cache nvidia-tensorrt --index-url h  0.0s
[0m[34m => CACHED [3/7] RUN apt-get update    && apt-get install -y        vim    0.0s
[0m => [4/7] RUN apt-get update && apt-get install -y --no-install-recommend  0.1s
[?25h[1A

In [2]:
# View available images

!docker images

REPOSITORY           TAG                             IMAGE ID       CREATED          SIZE
work-env             latest                          2fd1f196be4b   53 seconds ago   9.96GB
jewelry_api          latest                          fb1e3cf1e434   19 hours ago     15.1GB
my_inference_image   latest                          8a383357092c   3 weeks ago      6.18GB
my_train_image       latest                          3699ec6b609d   3 weeks ago      6.07GB
ubuntu               latest                          c6b84b685f35   6 months ago     77.8MB
ubuntu/kafka         3.1-22.04_beta                  eee90c2b0c90   8 months ago     383MB
ubuntu/zookeeper     edge                            da86d489a7a6   8 months ago     383MB
pytorch/pytorch      2.0.1-cuda11.7-cudnn8-runtime   26551f1051e7   9 months ago     6.48GB
hello-world          latest                          9c7a54a9a43c   10 months ago    13.3kB
pytorch/pytorch      1.6.0-cuda10.1-cudnn7-devel     bb833e4d631f   3 years ago     

In [12]:
# Run container

!docker run -d -p 8887:8888 -v /home/work/Work/custom/ds_camp_2023/lesson_36_docker/workdir:/work work-env

3f16c7291abd20bc4e8a6c4fa3fff12f0e18267dd75121897d02e8e6fcf64102


In [14]:
!docker ps

CONTAINER ID   IMAGE      COMMAND                  CREATED              STATUS              PORTS                                                 NAMES
3f16c7291abd   work-env   "jupyter notebook --…"   About a minute ago   Up About a minute   0.0.0.0:8887->8888/tcp, :::8887->8888/tcp             musing_benz
21b4c842ee53   work-env   "jupyter notebook --…"   About a minute ago   Up About a minute   8888/tcp, 0.0.0.0:8889->8889/tcp, :::8889->8889/tcp   goofy_kirch
38b872dc650f   work-env   "jupyter notebook --…"   6 minutes ago        Up 6 minutes        0.0.0.0:8888->8888/tcp, :::8888->8888/tcp             zen_carver


In [13]:
!docker logs 3f16c7291abd20

[I 2024-03-12 16:49:14.814 ServerApp] jupyter_lsp | extension was successfully linked.
[I 2024-03-12 16:49:14.817 ServerApp] jupyter_server_terminals | extension was successfully linked.
[I 2024-03-12 16:49:14.820 ServerApp] jupyterlab | extension was successfully linked.
[I 2024-03-12 16:49:14.823 ServerApp] notebook | extension was successfully linked.
[I 2024-03-12 16:49:14.824 ServerApp] Writing Jupyter server cookie secret to /root/.local/share/jupyter/runtime/jupyter_cookie_secret
[I 2024-03-12 16:49:15.001 ServerApp] notebook_shim | extension was successfully linked.
[I 2024-03-12 16:49:15.014 ServerApp] notebook_shim | extension was successfully loaded.
[I 2024-03-12 16:49:15.017 ServerApp] jupyter_lsp | extension was successfully loaded.
[I 2024-03-12 16:49:15.018 ServerApp] jupyter_server_terminals | extension was successfully loaded.
[I 2024-03-12 16:49:15.019 LabApp] JupyterLab extension loaded from /opt/conda/lib/python3.10/site-packages/jupyterlab
[I 2024-03-12 16:49:15.0

In [5]:
!docker stop 38b872dc650f

38b872dc650f


In [2]:
!docker ps

CONTAINER ID   IMAGE                   COMMAND                  CREATED          STATUS          PORTS                                                 NAMES
8f445b282027   ubuntu/kafka            "entrypoint.sh /etc/…"   19 seconds ago   Up 17 seconds                                                         lesson_36_docker-kafka-1
5b0f28f9abf9   ubuntu/zookeeper:edge   "/opt/kafka/bin/zook…"   19 seconds ago   Up 17 seconds                                                         lesson_36_docker-zookeeper-1
3f16c7291abd   work-env                "jupyter notebook --…"   10 minutes ago   Up 10 minutes   0.0.0.0:8887->8888/tcp, :::8887->8888/tcp             musing_benz
21b4c842ee53   work-env                "jupyter notebook --…"   11 minutes ago   Up 11 minutes   8888/tcp, 0.0.0.0:8889->8889/tcp, :::8889->8889/tcp   goofy_kirch
38b872dc650f   work-env                "jupyter notebook --…"   16 minutes ago   Up 16 minutes   0.0.0.0:8888->8888/tcp, :::8888->8888/tcp             zen_carver

# Docker Compose

Docker Compose is a tool for defining and running multi-container applications.

Compose simplifies the control of your entire application stack, making it easy to manage services, networks, and volumes in a single, comprehensible YAML configuration file. Then, with a single command, you create and start all the services from your configuration file.

![Docker Compose Architecture example](https://www.biaudelle.fr/wp-content/uploads/2021/07/docker-compose-archi.png)



Instructions on how to install Docker Compose [are located here](https://docs.docker.com/compose/install/).

Docker Compose uses `compose.yaml` (or `docker-compose.yaml`, `docker-compose.yml`) files that are placed in the working directory and contains Compose instructions.

<h3>Format of Compose Specifications</h3>

1. At the top level next elements are defined - `version`, `name`, `services`, `networks`, `volumes`, `configs` and `secrets`.

    The most important element is `services` as they define containers that has to be built by Docker Compose.

2. Inside `services` block each element is a name of a service inside which each section defines configuration of that service:

    - `image` - contains a name of Docker image
    - `environment` - section that contains environment variables
    - `ports` - section that contains list of internal and external ports to be mapped for a service
    - `network_mode` - sets a service container's network mode
    - `depends_on` - expresses startup and shutdown dependencies between services
    - `build` - section that defines the build process, it's format [is listed here](https://docs.docker.com/compose/compose-file/build/#illustrative-example)
    - `command` - overrides the default command declared by the container image
    - `volumes` - defines volumes that are accessible by servce containers
    - `deploy` - section that defines metadata for a service (such as it's resources, limitations, restart policies, etc.), it's format [is listed here](https://docs.docker.com/compose/compose-file/deploy/)
    - and many other that [are listed here](https://docs.docker.com/compose/compose-file/05-services/)

Example of Docker Compose for a Kafka and Jupyter Lab env [is listed here](./docker-compose.yml).

In [6]:
!docker compose up

[1A[1B[0G[?25l[+] Running 2/0
 [32m✔[0m Container lesson_36_docker-zookeeper-1  [32mRunning[0m                         [34m0.0s [0m
 [32m✔[0m Container lesson_36_docker-kafka-1      [32mRunning[0m                         [34m0.0s [0m
[?25hAttaching to lesson_36_docker-jupyter_env-1, lesson_36_docker-kafka-1, lesson_36_docker-zookeeper-1
[36mlesson_36_docker-jupyter_env-1  | [0m[I 2024-03-12 17:00:24.215 ServerApp] jupyter_lsp | extension was successfully linked.
[36mlesson_36_docker-jupyter_env-1  | [0m[I 2024-03-12 17:00:24.220 ServerApp] jupyter_server_terminals | extension was successfully linked.
[36mlesson_36_docker-jupyter_env-1  | [0m[I 2024-03-12 17:00:24.227 ServerApp] jupyterlab | extension was successfully linked.
[36mlesson_36_docker-jupyter_env-1  | [0m[I 2024-03-12 17:00:24.232 ServerApp] notebook | extension was successfully linked.
[36mlesson_36_docker-jupyter_env-1  | [0m[I 2024-03-12 17:00:24.233 ServerApp] Writing Jupyter server cookie secr

In [36]:
!docker compose down --volumes

[1A[1B[0G[?25l[+] Running 1/0
 [32m✔[0m Container lesson_36_docker-jupyter_env-1  [32mRemoved[0m                       [34m0.0s [0m
 ⠋ Container lesson_36_docker-kafka-1        Stopping                      [34m0.1s [0m
[?25h[1A[1A[1A[0G[?25l[+] Running 1/2
 [32m✔[0m Container lesson_36_docker-jupyter_env-1  [32mRemoved[0m                       [34m0.0s [0m
 ⠙ Container lesson_36_docker-kafka-1        Stopping                      [34m0.2s [0m
[?25h[1A[1A[1A[0G[?25l[+] Running 1/2
 [32m✔[0m Container lesson_36_docker-jupyter_env-1  [32mRemoved[0m                       [34m0.0s [0m
 ⠹ Container lesson_36_docker-kafka-1        Stopping                      [34m0.3s [0m
[?25h[1A[1A[1A[0G[?25l[+] Running 1/2
 [32m✔[0m Container lesson_36_docker-jupyter_env-1  [32mRemoved[0m                       [34m0.0s [0m
 ⠸ Container lesson_36_docker-kafka-1        Stopping                      [34m0.4s [0m
[?25h[1A[1A[1A[0G[?25l[34m[+] Runni

# Homework

Create a Docker deployment based on homework `#34 Deployment`. Add instructions on how to set and use created Image to the `README.md`. 