Container initialization hangs at "Setting permissions..." on large scale deployments

[DevlTz]

Hi @matteius! Upgraded to v0.32.4 today and hit a very interesting edge case regarding large-scale deployments and container initialization.

The Issue

After updating, the main lightnvr container hangs during startup. It stops right after printing [INFO] Setting permissions... and the web server never boots. Because the internal server doesn't start, my reverse proxy (Nginx) throws a 502 Bad Gateway.

Analysis

I am running 44 cameras continuously, meaning my /var/lib/lightnvr/data/recordings directory contains hundreds of thousands of small video chunks.

Looking at the processes, the docker-entrypoint.sh script is running a recursive permission change (chown -R or chmod -R) across the entire data directory. Because of the sheer volume of files and the IO bottleneck of standard mechanical HDDs, this permission sweep can take hours to complete.

Logs

1. Docker Compose Logs:
The initialization stops completely here:

lightnvr  | [INFO] Removing old go2rtc configuration to regenerate fresh...
lightnvr  | [INFO] Creating default go2rtc configuration...
lightnvr  | [INFO] Default go2rtc configuration created at /etc/lightnvr/go2rtc/go2rtc.yaml
lightnvr  | [INFO] No models to copy, skipping model initialization
lightnvr  | [INFO] Setting permissions...
# -> Hangs here indefinitely.

2. Host Process (htop):
Checking the host, the CPU usage isn't high, but the entrypoint process is stuck sleeping (S state), waiting for disk I/O to sweep the massive folder:

PID       USER   PRI  NI  VIRT   RES   SHR S  CPU% MEM%   TIME+  Command
1602911   root    20   0  2680  1892  1748 S   0.0  0.0  0:00.05 /bin/sh /usr/local/bin/docker-entrypoint.sh /bin/start.sh

Proposed Solutions

To fix this for large-scale users, I have a couple of architectural ideas:

Targeted Permissions: Modify the entrypoint script so it only recursively applies permissions to config/database folders, but specifically skips the recordings/ and mp4/ subdirectories.

Environment Variable: Add a toggle like SKIP_PERMISSIONS_CHECK=true in the docker-compose.yml so advanced users can manage host directory permissions manually and bypass the script.

• Just wanted to flag this as the project scales to handle heavier loads! Let me know if you implement a fix, and I'll gladly test the PR on my 44-camera setup.

[DevlTz]

Just a quick follow-up: The container finally finished booting!

I noticed the System tab completely fails to load the disk information. I checked the browser console (F12) and found that the frontend fetch request is timing out before the backend can finish calculating the directory sizes:

enhancedFetch: Timeout reached for /api/system/info, aborting request
enhancedFetch error (attempt 1/3): AbortError: signal is aborted without reason
fetchJSON: Error fetching or parsing JSON from /api/system/info : Error: Request timed out

Since calculating the size of hundreds of thousands of video chunks on a standard HDD takes a long time, the frontend hits its timeout limit and aborts.

If you move the folder size calculation to a background task that runs periodically (and caches the result in the DB or memory) would probably fix this timeout and make the System tab load fast!

[dpw13]

Interesting. I have about 90k 30-second recordings and my server appears to boot roughly instantly, though I'm on an SSD. I'll be modifying some of these code paths in an upcoming PR for consolidating mkdir and chown, so I'd be happy to look into this and see if there are operations we're doing that aren't necessary. I think the recordings/ and mp4/ subdirectories should be writable, but there shouldn't be any need to iterate over all the files within those folders.

At the very least I'll add some logging so we can isolate which part of the process is taking so long.

@DevlTz would you mind timing du -h on those big folders? If du runs quickly but lightNVR is slow, we definitely have a code problem, but if du also takes multiple minutes, we need to be more careful about iterating over those files. I like the idea of a low-priority background task to calculate usage.

Edit: there is in fact a recursive chmod happening in mp4_writer_initialize(), but looking at your log output, this is actually from docker-entrypoint.sh! The recursive chmod in the entrypoint script doesn't explain the timeout, of course, but there are definitely a couple different things going on here. I should have a PR in the next few days.

[dpw13]

@DevlTz I've got a branch at https://github.com/dpw13/lightNVR/tree/fix/docker-perms-perf that may improve that startup performance. Can you try it out (you'll have to build the docker image) and see if the container launches any more quickly?