WIP: #191: Container friendliness #200
Conversation
Tristan971
force-pushed
the
191-container-friendliness
branch
from
7076ffb
to
e3cefba
Compare
Tristan971
force-pushed
the
191-container-friendliness
branch
5 times, most recently
from
4a840fe
to
bcf88c9
Compare
We should probably find a solution so that you can use @Nikratio could we change |
I was thinking of avoiding suggesting extraneous changes to support this, but it'd be ideal indeed (and slightly less surprising behaviour too, maybe?) |
|
I think there's some confusion around signals here. There is SIGSTOP (which is closest to the "stop signal" term that you use), SIGINT (which is generated on Ctrl-C) and SIGTERM (which I think is the signal you actually mean). Could you clarify which signal(s) you are trying to use for what? |
I think it would be a good idea to use a signal for this purpose yes. SIGINT and SIGHUP (or both) would be great choices. I do not think we should change the meaning of SIGTERM, because that is currently the only way to terminate the process quickly without risk of data corruption (SIGKILL is not safe). |
I'm meaning the signal sent to the container by the docker daemon (either via ctrl+c or docker stop) This is indeed INT on ctrl+c and TERM on docker stop. I'm not using them directly (ie not invoking kill myself), but rather want to make it work nicely with whatever dockerd and containerd use |
Docker stop always uses SIGTERM, but since the container already uses dump-init we could use dump-init to rewrite SIGTERM to SIGINT and teach S3QL to do a graceful shutdown on SIGINT. I have just create a pull request for S3QL unconditionally shutting down cleanly on |
|
As per the comments so far, I've added a few changes, which include rewriting SIGTERM as SIGINT (so, assuming #202 goes in first, the |
| @@ -100,6 +100,8 @@ pre-release testers) we cannot guarantee that every release will run | |||
| on all non-Linux systems. Please report any bugs you find, and we will | |||
| try to fix them. | |||
|
|
|||
| You can also run S3QL in a Docker container. See <insert docker README link | |||
There was a problem hiding this comment.
I'd be curious under which situations someone would want to do that. Given that the fuse module still has to be loaded in the host system kernel and that special privileges are needed for the guest, security and isolation are probably not applicable here. For dependency management, Python's venv system would probably also fit the bill better. So maybe add a sentence describing the conditions under which this makes sense?
There was a problem hiding this comment.
In most cases the fuse module is already loaded on the host by default, but if worst comes to worst, it's a fairly standard thing to enable on linux, at least compared to installing the whole toolchain needed to build and run S3QL.
Even with venvs it's not all that nice to do things directly on the host.
Like, atm, fedora 33 defaults to python 3.9 as provider of python3, which doesn't successfully build and run the project, and that's the kind of thing that having a "whatever we baked in this image, it will run good" is quite convenient for.
I don't want system updates to suddenly break my apps anymore (or make the choice to never update and run debian oldstable till the end of times 🙂 ) Don't necessarily want to turn this into containers proselytism (they have their issues for sure), but many other things like restart/update/logs behaviours are all much simpler in my opinion with them. Only matched by a well-oiled systemd setup, which is quite a bit more difficult to achieve.
If you disagree with all of these, lastly, in my case, it's that you must use containerised apps with k8s anyway, there isn't a "run on host directly" way that isn't awfully hacky
however I agree that this should be documented, either in the main README or the one in contrib/docker. Whichever one you think it's more appropriate to put this in!
There was a problem hiding this comment.
I think it's best to have 1-3 sentences in README. If you want, you can go into more detail in the Docker readme.
| @@ -0,0 +1,19 @@ | |||
| # build | |||
There was a problem hiding this comment.
Do we truly need this file? I believe we considered adding it in the past, but rejected it because it wasn't clear what versions should go in there and when they should be updated, that it was a bit misleading (this is certainly not the only set of versions that works). If anything, this also looks like something that ought to be generated when creating a release tarball but not tracked in Git...
There was a problem hiding this comment.
Hmm... Not necessarily.
I was wondering, and just took it from my original setup. The only issue I had with not having it, is the pip install step potentially pulling versions that don't actually work well (or at not compatible anymore, etc)?
Would be happy to have a generated one at build/test time and ingest it in the docker image building step however, so we know it was the same versions as the ones used to run the tests etc!
|
This is not a blocker for merging, but out of curiosity: Do the 0-init.sh, 1-start.sh and similar files need to be shell scripts? It seems to me they contain nothing but boilerplate to pass-through options. It may be much simpler to turn them into Python scripts that completely replace the standard mount.s3ql entry points. That way, you could e.g. write a loop over the arguments that S3QL defines instead of having to hardcode them all. |
You are correct that they could be python scripts ; but at that point I would almost inch towards editing S3QL directly to have environment variables as a fallback argument input? |
Yeah, that's pretty much what I mean. Add some new |
|
Hi there. Sorry for "hijacking the thread", but what is the supposed behaviour of the Docker image when an S3QL file system is not mounted at the given storage URL? What would be the best way to initialize it in case it doesn't already exist? Would the PR benefit from the addition of such a thing or would it be better to keep it separate? |
It would, in this case, be the same behaviour as running Initialising it could be handy, but does seem of limited value to me? (if you do indeed suggest running |
We would probably need a way to do it – since when you run S3QL in docker you probably do not have another S3QL installation laying around for calling I suppose you can just overwrite the CMD of this image to execute docker run \
--it \
--rm \
--device /dev/fuse \
--cap-add SYS_ADMIN \
-v /cache:/cache
s3ql-image-name:latest \
mkfs.s3ql --cachedir /cache your://storage/pathWe could of course unconditionally run a |
Tristan971
force-pushed
the
191-container-friendliness
branch
from
a25de6f
to
4c766e0
Compare
- rewrite SIGTERM as SIGINT in dumb-init, - handle only SIGINT at the s3ql level - remove unnecessary loop in entrypoint - forward exit codes in all places
|
Did a sizable update:
I quite like how it ended, but also gotta admit I'm not a python expert, and there's probably a better way about these things, so let me know Encountered 1 issue and 1 surprising thing
|
What would you suggest then for initializing it in case it doesn't exist yet? I mean, as @d--j suggests we could have even have the same docker image running in parallel that would execute mkfs instead of fsck/mount, however, looking at this in a "one-click deployment" that should be Docker (usually) I see it as somewhat hacky, the need to run 2 containers). Wouldn't it be better if we were able to achieve some kind of idempotence here? Thinking about it as well, but perhaps passing an additional environment variable to s3ql Docker instance, create a flag file (or similar strategy so it won't occur again) and run an additional mkfs?
You could do this as well, but wouldn't it be a waste of time and resources by running it every single time? |
src/s3ql/fsck.py
Outdated
| parser.add_argument("--force-remote", action="store_true", default=False, | ||
| help="Force use of remote metadata even when this would " | ||
| "likely result in data loss.") | ||
| parser.add_argument("--keep-cache", action="store_true", |
There was a problem hiding this comment.
Instead of making all these changes to every single add_argument() call, I think it's better to modify the add_argument function itself. You can derive the environment variable name from the parameter name and can leave all the add_argument() calls unchanged.
There was a problem hiding this comment.
hi, just did that! hope it's how you saw it being done
…and automatic in-argparser kwargs default filtering
Tristan971
force-pushed
the
191-container-friendliness
branch
from
76fbe94
to
d45b305
Compare
Tristan971
force-pushed
the
191-container-friendliness
branch
from
d45b305
to
effa659
Compare
|
another update (sorry it took longer, at least I learned some more python going about it) that this time automatically tries to update the default it works nicely, however that introduces one outstanding issue for flags like an option for this is to add some property, think |
|
Just checking in and understand if there were still intentions to merge this into the main branch? If so, what is the current status of it? Is there anything left to be done? |
|
Well I'm still using it personally, and hope to get it merged -- afaik what's missing is feedback on the final environment-variables-parsing setup (by Nikolaus), and writing some tests and additional documentation accordingly (by me) I've been a little bit busy lately, but haven't forgotten |
|
Apologies, I didn't know you were waiting for my feedback. The environment parsing approach is fine with me. |
|
Alright, I shall work on getting this cleaned-up, tested and documented in the next few days then |
+ entrypoint creation of mount dir if absent (on first run or new node)
Nikratio
force-pushed
the
master
branch
3 times, most recently
from
c7188f0
to
6407f54
Compare
|
Note that Dockerfile And for the stop grace period, one can use something like For stop_signal: SIGINT
stop_grace_period: 1mAnd here is a simple script for using the Ubuntu packaged version which doesn't have graceful stop on SIGINT/SIGTERM: I'm also configuring my docker files now, and thanks for the great work! |
|
Is this ready for review? If not, are you still interested in finishing this up? |
Nikratio
force-pushed
the
master
branch
3 times, most recently
from
15d7789
to
9b9c95f
Compare
|
Any updates on this @Tristan971? |
|
I'm closing this pull request for now. Feel free to re-open if/when you resume work on this again. |
Hi,
Following #191, I finally had time for an MR of "container friendliness" as I so-called it over there.
This is achieved mostly by implementing a mix of what I did a few weeks back on my own, and recommendations by @d--j in the aforementioned issue.
While not completely "shell-free", I tried to keep scripting to a minimum for reasonable environment-variables-driven configuration.
Now there's 2 things to note:
Limitations:
sysloglogging, mostly because setting it up in a docker container would be overly complex, have little value, and considerably complexify/bloat the imagenonelogging, but you will then not see the logs, which is due to the next limitationmount.s3qlFor the later, it seems to me that
mount.s3qldoes indeed terminate on receiving a stop signal, and unmounts the fuse mount, but doesn't cleanly close the filesystem. Meaning you should actually never "cancel" that process yourself, but rather runfusermount/umount.s3qlseparately, which will eventually stop it.In this setup, a stop signal has the following path:
dumb-initensures it is proxied toentrypoint.shrather than swallowed by docker's default init (& never seen by the entrypoint)entrypoint.shHowever, to make this work with the foreground mode, the signal needs to somehow be read by
entrypoint.sh, and invoke the shutdown hook, then wait for themount.s3qlprocess to finish, without the latter ever knowing about the signal...Unfortunately I couldn't set this up, even starting
mount.s3qlas a background subshell, as it would still always see the signal before the shutdown hook was called...In the end, I believe this limitation is a reasonable tradeoff, unless some shell signals/concurrency guru is willing to help out.