cernvm fs graphdriver plugin for docker
play

CernVM-FS Graphdriver Plugin for Docker CernVM Workshop 2018 CERN - PowerPoint PPT Presentation

Jan 19, 2024 •98 likes •398 views

CernVM-FS Graphdriver Plugin for Docker CernVM Workshop 2018 CERN Nikola Hardi hardi.nikola@gmail.com January 30th, 2018 Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 1 / 28 Containers get

  1. CernVM-FS Graphdriver Plugin for Docker CernVM Workshop 2018 CERN Nikola Hardi hardi.nikola@gmail.com January 30th, 2018 Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 1 / 28

  2. Containers get heavy! Joint Blog Post Mesosphere & CERN (03/2016) Network traffic gets congested as gigabytes worth of Docker downloads are moving across the pipe [. . . ]. Companies [. . . ] such as Twitter have already experienced this phenomenon. Red Hat, “Containers for Grownups” (02/2016) 10 things to avoid in docker containers: . . . 3) Don’t create large images. Medallia (10/2015, CERN KT Screening) The problem today with Docker is that distribu- tion of software is a mess, it is a “bottleneck” in our system. Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 2 / 28

  3. CernVM and CernVM-FS The experiment software is delivered to the appliance just in time by means of a network file system (CVMFS) specifically designed for effi- cient software distribution and installation. — Predrag Buncic et al. “CernVM - a virtual appliance for LHC applications”, ACAT08 The virtual machine image is less than 20 megabyte in size. The actual operating system is delivered on demand by the CernVM File System. — Gerardo Ganis et al. “Status and Roadmap of CernVM”, J. Phys., 2015 To serve the needs of the HEP community, several iterations were made to create a scalable, user-level filesystem that delivers software worldwide on a daily basis. — Jakob Blomer et al. “Status and Roadmap of CernVM”, Comp. in Sci. and Eng., 2017 Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 3 / 28

  4. The solution proposed by CernVM team Improved Docker Software Docker Software KT-Funded Project pull & push “apps” file-based transfer Docker “App Store” CernVM File System Our analysis shows that pulling packages accounts for 76% of container start time, but only 6.4% of that data is read. — T. Harter et al. “Slacker: Fast Distribution with Lazy Containers”, FAST16 Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 4 / 28

  5. Container Engines Singularity Rocket Docker Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 5 / 28

  6. About the Docker engine Main components: Docker client Docker daemon Registry: hub.docker.com Docker versions: 2017 - Jan: Docker 1.13.0 2017 - Feb: Docker 1.13.1 2017 - Mar: Docker 17.03 2018 - Mar: Docker 18.01 Host machine Internet HTTP HTTP Docker Docker Docker registry client daemon Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 6 / 28

  7. About the Docker images Docker image is a stack of read-only layers. The list of read-only layers is specified in the image manifest. Layer is a filesystem diff between two snapshots. Layers are content addressable and reusable. Container is a Docker image in the state of execution. Each container has a dedicated read-write layer. nginx ubuntu OwnCloud Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 7 / 28

  8. The CernVM-FS graphdriver plugin for Docker Host machine Remote server CernVM-FS Graphdriver This is CernVM-FS server plugin a container! Minio S3 S3 HTTP Docker Docker Docker client daemon registry $ docker plugin install cvmfs/graphdriver Restart Dockerd with −− experimental − s cvmfs/graphdriver $ docker run cvmfs/thin ubuntu echo ’’Hello CVM workshop!’’ Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 8 / 28

  9. DEMO Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 9 / 28

  10. Results Transferred Data [MB] Startup Time [s] 40 200 Just 3 MB! Constant startup time! 100 30 50 25 20 10 10 5 0 R OwnCloud Ubuntu R OwnCloud Ubuntu Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 10 / 28

  11. Results 2 The cluster startup time reduced from 5 min to less than 5 s. Tomorrow @ 5:30pm, Ricardo Brito Da Rocha: Magnum and HNSciCloud Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 11 / 28

  12. Results 3 Tomorrow @ 5:30pm, Ricardo Brito Da Rocha: Magnum and HNSciCloud Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 12 / 28

  13. The CernVM-FS graphdriver — DETAILS — Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 13 / 28

  14. The CernVM-FS graphdriver plugin for Docker Host machine Remote server CernVM-FS This is Graphdriver CernVM-FS server plugin a container! Minio S3 S3 HTTP Docker Docker Docker registry client daemon 1 Plugins run in containers. 2 Plugins communicate with the Docker daemon over HTTP. 3 Layer upload to CernVM-FS through a portal (Minio S3). Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 14 / 28

  15. The thin image format Regular Docker Image Thin Image CernVM-FS graphdriver Scratch layer Thin image descriptor Local read-only layer CernVM-FS provided read-only layer Additional benefits comming from CernVM-FS 1 Files that are never accessed will never be transferred. 2 CernVM-FS controlled local cache size. 3 File based deduciplation / reuse for free. Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 15 / 28

  16. Example: the thin image descriptor $ docker2cvmfs thin library/ubuntu:latest test.cern.ch { "version": "1.0", "origin": "library/ubuntu:latest@https://registry-1.docker.io/v2", "layers": [ { "digest": "1be7f2b886e89a58e59c4e685fcc5905a26ddef3201f290b96f1eff7d778e122", "url": "cvmfs://test.cern.ch/1be7f2b886e89a58e59c4e685fcc5905a26ddef3201f290b96f1eff7d778e122" }, { "digest": "6fbc4a21b806838b63b774b338c6ad19d696a9e655f50b4e358cc4006c3baa79", "url": "cvmfs://test.cern.ch/6fbc4a21b806838b63b774b338c6ad19d696a9e655f50b4e358cc4006c3baa79" }, { "digest": "c71a6f8e13782fed125f2247931c3eb20cc0e6428a5d79edb546f1f1405f0e49", "url": "cvmfs://test.cern.ch/c71a6f8e13782fed125f2247931c3eb20cc0e6428a5d79edb546f1f1405f0e49" }, { "digest": "4be3072e5a37392e32f632bb234c0b461ff5675ab7e362afad6359fbd36884af", "url": "cvmfs://test.cern.ch/4be3072e5a37392e32f632bb234c0b461ff5675ab7e362afad6359fbd36884af" }, { "digest": "06c6d2f5970057aef3aef6da60f0fde280db1c077f0cd88ca33ec1a70a9c7b58", "url": "cvmfs://test.cern.ch/06c6d2f5970057aef3aef6da60f0fde280db1c077f0cd88ca33ec1a70a9c7b58" } ] } Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 16 / 28

  17. The docker2cvmfs 1 Inspect an image manifest. 2 Pull all layers of an image from a Docker registry. 3 Produce a thin image descriptor. 1 Manipulating Docker images is not an easy problem. 2 Special files, permissions, ownership, hardlinks, whiteout files... 3 Everyone has their own solution. Let’s work together! Checkout following presentations 1 Today @ 3pm, Tom Downes: Automated Conversion of Docker images to CVMFS for LIGO and the Open Science Grid 2 Tomorrow @ 10am, Michael Bauer: Building Reproducible Science with Singularity Containers Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 17 / 28

  18. The pull scenario Pull cvmfs/thin ubuntu from the Docker registry This image contains just the layer with the thin image descriptor. Request the graphdriver to create the scratch layer. Mount the required CernVM-FS repositories. Creates the union mount of the scratch layer and the read-only layers mounted directly from CernVM-FS. The list of repositories and read-only layers is available in the thin image descriptor. Regular image Thin image Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 18 / 28 read-write layer thin image layer

  19. The push scenario Regular image: 1 The changeset is stored in the r/w branch (r/w layer). 2 Publish this changes as new r/o layer on the Docker registry. 3 Create new Docker image with updated list or r/o layers. Thin image: 1 The changeset is stored in the r/w branch (r/w layer). 2 Publish this changes as new r/o layer on CVMFS repository. 3 Create new Docker image with updated thin image descriptor. + CVMFS Docker stratum 0 registry read-write layer read-only layer thin layer Note: this functionality is currently disabled. Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 19 / 28

  20. Project status and roadmap Not production ready but can do useful work. Ready for evaluation. We already have few early adpoters. Improve stability and make workflows even smoother. CernVM-FS portals feature in CernVM-FS 2.6. CernVM team continues the development. Nikola Hardi hardi.nikola@gmail.com CernVM-FS Graphdriver Plugin for Docker January 30th, 2018 20 / 28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Status and Roadmap of the CernVM-FS Graphdriver Plugin for Docker CERN, SFT Group Meeting Nikola

Status and Roadmap of the CernVM-FS Graphdriver Plugin for Docker CERN, SFT Group Meeting Nikola

Status and Roadmap of the CernVM-FS Graphdriver Plugin for Docker CERN, SFT Group Meeting Nikola Hardi nhardi@cern.ch October 16, 2017 Supervisors: Jakob Blomer : jblomer@cern.ch Gerardo Ganis : gerardo.ganis@cern.ch Nikola Hardi

390 views • 19 slides
CernVM Online and Cloud Gateway a uniform interface for CernVM contextualization and deployment

CernVM Online and Cloud Gateway a uniform interface for CernVM contextualization and deployment

CernVM Online and Cloud Gateway a uniform interface for CernVM contextualization and deployment George Lestaris - Ioannis Charalampidis D. Berzano, J. Blomer, P . Buncic, G. Ganis and R. Meusel PH-SFT / CERN Background CernVM: a virtual

329 views • 30 slides
Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y install docker s ystemctl start docker systemctl enable docker docker images - Launch pre-canned container: hello-world (busybox is another good

480 views • 4 slides
docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer / mgoelzer@docker.com / @mgoelzer Docker Inc. docker service is the new docker run docker run nginx 2013-14 docker run -p 3375:2375 swarm ; 2014-15

688 views • 34 slides
Protg Plugin Development Ray Fergerson Overview Part I What is a Plugin? How

Protg Plugin Development Ray Fergerson Overview Part I What is a Plugin? How

Protg Plugin Development Ray Fergerson Overview Part I What is a Plugin? How Plugins Work Plugin Types and Capabilities PART II Plugin Packaging Plugin Bundling Plugin Licensing Coming Changes

936 views • 26 slides
CernVM Cloud Gateway George Lestaris Supervisor: Predrag Buncic Acknowledgements to: Ioannis

CernVM Cloud Gateway George Lestaris Supervisor: Predrag Buncic Acknowledgements to: Ioannis

CernVM Cloud Gateway George Lestaris Supervisor: Predrag Buncic Acknowledgements to: Ioannis Charalambidis September 24, 2012 Outline 1 Background 2 Motivation 3 CernVM Cloud Gateway 4 Deploying a cluster 5 Taverna integration CernVM CernVM

653 views • 28 slides
Plugin frameworks About me About this talk Plugin 3 approaches to designing plugin APIs

Plugin frameworks About me About this talk Plugin 3 approaches to designing plugin APIs

Plugin frameworks noufal Introduction Plugin frameworks About me About this talk Plugin 3 approaches to designing plugin APIs frameworks Case #1 : Trac Trac Component architecture Noufal Ibrahim Writing a plugin Example

550 views • 23 slides
INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both provide isolated environments Docker is much more efficient 64-bit Linux only (currently) CONTAINERIZATION A Docker container is a portable store for a

674 views • 29 slides
Docker Provider The Docker provider is used to interact with Docker containers and images. It uses

Docker Provider The Docker provider is used to interact with Docker containers and images. It uses

Docker Provider The Docker provider is used to interact with Docker containers and images. It uses the Docker API to manage the lifecycle of Docker containers. Because the Docker provider uses the Docker API, it is immediately compatible not only

553 views • 34 slides
The Protg Plugin Architecture Timothy Redmond Tania Tudorache, Jennifer Vendetti Overview

The Protg Plugin Architecture Timothy Redmond Tania Tudorache, Jennifer Vendetti Overview

The Protg Plugin Architecture Timothy Redmond Tania Tudorache, Jennifer Vendetti Overview What is a Plugin? How Plugins Work Plugin Types and Capabilities Plugin Packaging Plugin Bundling Plugin Licensing

661 views • 24 slides
The EGI CernVM-FS Infrastructure Evolution Towards a Global Facility and Latest Developments

The EGI CernVM-FS Infrastructure Evolution Towards a Global Facility and Latest Developments

The EGI CernVM-FS Infrastructure Evolution Towards a Global Facility and Latest Developments Catalin Condurache STFC RAL UK ISCG, Taipei, March 2017 Outline Introduction Brief history EGI CernVM-FS infrastructure About the users

655 views • 31 slides
Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing

Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing

Eric Holm Skyler Manzanares Yuxin (Kelly) Wang http://gerardable.com/wp-content/uploads/2014/12/docker-whale-home-logo.png Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing this Whale! Free,

997 views • 28 slides
CernVM-FS Catalin Condurache STFC RAL UK Outline Introduction Brief history EGI

CernVM-FS Catalin Condurache STFC RAL UK Outline Introduction Brief history EGI

CernVM-FS Catalin Condurache STFC RAL UK Outline Introduction Brief history EGI CernVM-FS infrastructure The users Recent developments Plans 2 Outline Introduction Brief history EGI CernVM-FS infrastructure

717 views • 45 slides
Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me Software engineer at Docker Maintainer on SwarmKit and Docker Engine open source projects Focusing on distributed state, task scheduling,

1.29k views • 62 slides
Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner Data Science Consultant accantec group | Alstertor 17 | 20095 Hamburg | Tel.: +49 (40) 67 59 59 0 | Fax.: +49 (40) 67 59 59 29 | www.accantec.de |

664 views • 29 slides
First: The Old Way Compile plugin code on NetBSD Copy plugin directory onto File System

First: The Old Way Compile plugin code on NetBSD Copy plugin directory onto File System

First: The Old Way Compile plugin code on NetBSD Copy plugin directory onto File System destined for SPC The New MSR Boot SPC Plugin Download Log in to SPC Environment requires user space and serial line or telnet

319 views • 4 slides
Latest version of the slides can be obtained from

Latest version of the slides can be obtained from

Latest version of the slides can be obtained from http://www.cse.ohio-state.edu/~panda/it4i-ib-hse.pdf InfiniBand, Omni-Path, and High-speed Ethernet for Dummies Tutorial at IT4 Innovations 18 by Dhabaleswar K. (DK) Panda Hari Subramoni

1.66k views • 131 slides
COMPLAINING ABOUT? UNDERSTANDING THE REASONS FOR CUSTOMER DISSATISFACTION. Dr. Gennadi

COMPLAINING ABOUT? UNDERSTANDING THE REASONS FOR CUSTOMER DISSATISFACTION. Dr. Gennadi

WHAT CUSTOMERS ARE COMPLAINING ABOUT? UNDERSTANDING THE REASONS FOR CUSTOMER DISSATISFACTION. Dr. Gennadi Lembersky Bar-Ilan, 2014 NICE, The Worldwide Leader of Intent-Based Solutions NICE ENTERPRISE Customer Interactions NICE SECURITY

760 views • 18 slides
Peanut Weed Control Update - 2015 Eric P. Prostko, Ph.D. Professor and Extension Weed Specialist

Peanut Weed Control Update - 2015 Eric P. Prostko, Ph.D. Professor and Extension Weed Specialist

Peanut Weed Control Update - 2015 Eric P. Prostko, Ph.D. Professor and Extension Weed Specialist Department of Crop & Soil Sciences It Aint Always Herbicides A Herbicide Problem?? pH = 4.9 Zn = 46 lb/A J-Rooting Peanuts No

627 views • 35 slides
EVALUATING OPENSTACK CONTAINERS AS A SERVICE MAGNUM FOR PRODUCTION Rosario Di Somma WHY

EVALUATING OPENSTACK CONTAINERS AS A SERVICE MAGNUM FOR PRODUCTION Rosario Di Somma WHY

EVALUATING OPENSTACK CONTAINERS AS A SERVICE MAGNUM FOR PRODUCTION Rosario Di Somma WHY CONTAINERS? Rapid application deployment Portability across machines Version control and component reuse Sharing Lightweight footprint

623 views • 12 slides
Facilities July 17, 2013 Housekeeping All participants will be in listen-only mode throughout

Facilities July 17, 2013 Housekeeping All participants will be in listen-only mode throughout

State & Federal Energy Storage Technology Advancement Partnership (ESTAP) Webinar: Resilient Solar-Storage Systems for Homes and Commercial Facilities July 17, 2013 Housekeeping All participants will be in listen-only mode throughout

909 views • 58 slides
Detecting Hardware Keyloggers Fabian Mihailowitsch November 26, 2010 Who? Fabian

Detecting Hardware Keyloggers Fabian Mihailowitsch November 26, 2010 Who? Fabian

Detecting Hardware Keyloggers Fabian Mihailowitsch November 26, 2010 Who? Fabian Mihailowitsch Former Software Developer German energy combine IT-Security Consultant cirosec GmbH Penetration Tests Source Code Reviews

667 views • 49 slides
Deploying to the cloud with golden images, Heat and Docker Steve Baker / sbaker@redhat.com

Deploying to the cloud with golden images, Heat and Docker Steve Baker / sbaker@redhat.com

Deploying to the cloud with golden images, Heat and Docker Steve Baker / sbaker@redhat.com @stevebake / Declarative vs Procedural Orchestration Procedural/Imperative describes a list of instructions to execute Declarative describes the

687 views • 27 slides
AD D AS ASTRA P A PER ASPERA GETTIN ING G LE LEGISLA GISLATION T THROUGH GH A A

AD D AS ASTRA P A PER ASPERA GETTIN ING G LE LEGISLA GISLATION T THROUGH GH A A

AD D AS ASTRA P A PER ASPERA GETTIN ING G LE LEGISLA GISLATION T THROUGH GH A A REPU EPUBLI LICAN DO DOMIN INATED D LEGISLA LE GISLATURE W WHILE ILE S SERVING G IN IN THE DEMOCR CRATI TIC M C MINORITY by Dona nald

501 views • 28 slides

More recommend