Enabling timeout based usage of docker client API during startup

[pshahzeb]

1. Using timout based context while using docker client apis on plugin side to
   popluate the existing volume data

2. upgrading the docker client api version to 1.25

3. Removing environment variable to enable the volume discovery

Testing:

1. Restarting docker
   Create volume test1
   Attach it to three containers and keep containers running in -d mode
   Following is the refcount from the logs

2017-03-27 16:24:19.548291542 -0700 PDT [INFO] Mounting volume name=test1
2017-03-27 16:24:19.548342906 -0700 PDT [INFO] Already mounted, skipping mount. refcount=3 name=test1

restart docker using
service docker restart

Timeout based context prevents deadlock

2017-03-27 16:30:24.331275264 -0700 PDT [INFO] Plugin options - port=1019
2017-03-27 16:30:24.331309301 -0700 PDT [INFO] Getting volume data from unix:///var/run/docker.sock
2017-03-27 16:30:26.332302249 -0700 PDT [INFO] Can't connect to unix:///var/run/docker.sock due to (An error occurred trying to connect: context deadline exceeded), skipping discovery
2017-03-27 16:30:26.332612952 -0700 PDT [INFO] Docker VMDK plugin started version="vSphere Volume Driver v0.4" port=1019 mock_esx=false

docker engine initializes properly and volume created can be seen

2. Restarting docker-volume-vsphere managed plugin

Create volume test1
Attach it to three containers and keep containers running in -d mode
Following is the refcount from the logs

2017-03-27 16:34:25.864897963 -0700 PDT [INFO] Mounting volume name=test1
2017-03-27 16:34:25.864943268 -0700 PDT [INFO] Already mounted, skipping mount. refcount=3 name=test1

kill plugin using docker-runc
plugin is restarted by docker

discovery complete

2017-03-27 17:03:36.418383937 -0700 PDT [INFO] Starting plugin driver=vsphere log_level=info config="/etc/docker-volume-vsphere.conf"
2017-03-27 17:03:36.418642322 -0700 PDT [INFO] Plugin options - port=1019
2017-03-27 17:03:36.418855025 -0700 PDT [INFO] Getting volume data from unix:///var/run/docker.sock
2017-03-27 17:03:36.434455603 -0700 PDT [INFO] Discovered 1 volumes in use.
2017-03-27 17:03:36.434493635 -0700 PDT [INFO] Volume name=test1 count=3 mounted=true device='/dev/disk/by-path/pci-0000:03:00.0-scsi-0:0:0:0'
2017-03-27 17:03:36.434502803 -0700 PDT [INFO] Docker VMDK plugin started version="vSphere Volume Driver v0.4" port=1019 mock_esx=false
2017-03-27 17:03:36.434768084 -0700 PDT [INFO] Going into ServeUnix - Listening on Unix socket address="/run/docker/plugins/vsphere.sock"

Fixes #1050

[pdhamdhere]

Thanks for detail PR description. Some comments below.

[pdhamdhere]

You took out wrong config option. Keep VDVS_LOG_LEVEL and remove VDVS_DISCOVER_VOLUMES

[pdhamdhere]

Which Docker Daemon (1.12/1.13?) supports this API version. Please add a comment.

[pdhamdhere]

timeoutInSecs => dockerConnTimeout = 2 //Secs ?

[pdhamdhere]

There is already "mountRoot"

[govint]

Per issue 31903 on docker the plugin restore will not be able to use the Docker API (yes?). In which case this change will not work as the docker API isn't available?

Believe a simpler approach is to use a refcount-restore task to run the "post init" for the plugin (essentially restoring any ref counts for volumes) and skip doing any ref count resotre during plugin startup itself. The plugin initialization starts the task and completes initialization and let Docker continue on its way.

The refcount-retore task attempts to connect and use Docker API within some number of attempts with an "exponential backoff" and ultimately restores or gives up on the refcounts.

The plugin can then service volume requests based on what Docker is asking while the refcount restore goes on. As long as refcount-restore task is running, the plugin will skip doing unmounts. The refcount-restore task checks all mounted volumes and those that aren't having any refcounts will be unmounted by it. While those volumes in use have their refcounts restored.

[pdhamdhere]

BTW, you also need to enable Tests

[pshahzeb]

@govint thanks for pointing this.
Essentially, this PR will not let plugin enter into a deadlock where plugin hangs on docker api and docker waits to talk to plugin.

If docker doesn't respond to api calls, we timeout and mark ref counts to be zero.
I get your point of docker being up but could be busy trying to talk to plugin with exponential backoff (docker might do this due to some volume command it receives in the middle when plugin is initializing).And we timeout on our docker client api call and give up on refcounts.

Agree that a safer way to work with refcounts would be to calculate them post init of the plugin
But I think that change can be done separately.
CC @pdhamdhere @msterin

[pshahzeb]

@pdhamdhere addressed your comments.

[pdhamdhere]

Minor comments. LGTM.

[pdhamdhere]

Why you had to add this?

[pdhamdhere]

Let's keep it consistent with L93 and rename it to dockerConnTimeoutSec

[govint]

Can the check to compare with the driver name be retained? Is that changed with the container based plugin?

[msterin]

yes, the driver name in managed plugin is unpredictable and depends on location in dockerhub

Another point: the check above has many holes, I suggest tightening it down a bit, e.h. "starts with /mnt/vmdk OR (starts with /var/lib/docker/plugins/ AND has /mnt/vmdk "

[govint]

Does the cancel_inspect var given its re-assigned in each iteration work ok to remove each created context? Would just the last context created be removed? Since its a loop should the cancel func be called explicitly vs. reassigning the var.

[pshahzeb]

Yes it removes each created context. Could you please explain the last point? the cancel func is called explicity through the reassigned cancel_inspect var

[govint]

Ok, my doubt was the reassignment of cancel_inspect var. Will the defer statement ensure that the cancel function is called for each created context or just the last one? Looks like defer statement evaluates the args when the statement is executed and saves the defer'ed function to call. It should be ok then.

[govint]

The way this test script works the timeouts for each of the containers has been kept so that they are still around by the time the plugin restarts and verifies the volume ref count. Does the alive_containers include the plugin also? Do we need this check at all?

[govint]

A few questions on the use of contexts inside a loop. Can it be confirmed that with current Docker release the plugin is able to connect with Docker during plugin initialization. And doesn't timeout in this code.

[msterin]

Looks good, with the comments below.
Also , please file an issue for ./vendor update, we probably need to update all out dependencies and fix fvt documentation right after 0.13 is cut

[msterin]

yes, the driver name in managed plugin is unpredictable and depends on location in dockerhub

Another point: the check above has many holes, I suggest tightening it down a bit, e.h. "starts with /mnt/vmdk OR (starts with /var/lib/docker/plugins/ AND has /mnt/vmdk "

[msterin]

need to return (not continue) on error.
It would be usefule to mention in the comment that we delibertly leave the refcount table half-populated in this case, since it will improve the chances of correct operation after this specific failure to communicate to Docker

[msterin]

the context can be reused down in this function

[pshahzeb]

The cancel function releases the context resources. from here. So if the docker api (in which we use the context) returns before timeout, the context is cancelled. This context if used again won't timeout again after the specified timeout, because it was cancelled once. Tried this with a small go code to reuse the context created once and used again and again in a loop. So I think we can't reuse the context.

[msterin]

+1. Unless there is something we want to find out with this count, I suggest to drop it.

[pshahzeb]

Addressed the changes requested in latest commit.

[msterin]

LGTM.
A few small questions/nits. feel free to address or ignore.

[msterin]

is it still failing ?

[pshahzeb]

Yes. Everytime.

[msterin]

nit: I suspect that just managedPluginMountStart := "/var/lib/docker/plugins/" will work equally fine

[msterin]

so , is it really needed or can you reuse ctx objec from Line 294 ?

[pshahzeb]

can't reuse. Cancel releases the resources of the context.

[govint]

The context will be released only after the function returns or in each loop? It should be once the function returns.

[pshahzeb]

It will be released after function returns in each iteration of the loop.

[msterin]

can't reuse. Cancel releases the resources of the context.

of course it does. The question is - why do you need to cancel before the final exit from the function ? Context defined on L263 will do exactly that... what am I missing ?

[pdhamdhere]

This will break Photon driver which continues to use RPM. @govint

[govint]

Yes, till PhotonOS upgrades to Docker 1.13 or later. Not sure that the plugin is used with Photon Controller yet. I'll make a separate issue to support the refcounter with Photon once this change is submitted.