singularity containers for scientific computing zid
play

Singularity - Containers for Scientific Computing ZID Workshop - PowerPoint PPT Presentation

Sep 24, 2022 •111 likes •482 views

Singularity - Containers for Scientific Computing ZID Workshop Michael Fink Universitt Innsbruck Innsbruck Nov 2018 Overview Preliminaries Why containers Understanding Containers vs. Virtual Machines Comparison of

  1. Singularity - Containers for Scientific Computing ZID Workshop Michael Fink Universität Innsbruck Innsbruck Nov 2018

  2. Overview Preliminaries • Why containers • Understanding Containers vs. Virtual Machines • Comparison of Container Systesms (LXC, Docker, Singularity) - why Singularity? • Containers and Host Resources Using Singularity • Singularity Workflow 1. Manual Walkthrough Exercise Understanding Singularity • Web resources • Container Image Formats, Sources, Conversions • Running Containers Advanced Singularity • Automating Creation of Containers • Container Contents, Cache Files 2. Exercise - Build Container using Build File • Using MPI with Singularity 3. Exercise - MPI Job with Container • Singularity Instances

  3. Why Containers? What is the problem? • dependency hell complex (multiple + indirect + contradictory) software dependencies • limited HPC team workforce always slow, always late • conservative OS maintenance policy risk: upgrade breaks system HPC teams prefer stable over innovative OS e.g. Redhat/CentOS: backed by HW vendors but very slow adopting new developments • user portability: differences between installations new computer → reinstall and test all software • reproducibility of results recreate old computations for verification Solution: container: user-defined software environment in isolated, immutable, portable image • contains user-defined copy of system and user software • eliminate (most) system dependencies (but: host kernel and MPI must be compatible with container) • encapsulate software • long-term archive for reproducibility

  4. Understanding Containers (1) Conventional OS • Kernel runs on physical hardware • All processes see host‘s resorces (file systems + files, network, memory etc.) physical machine running conventional OS host host host ... process process process host kernel host hardware

  5. Understanding Containers (2) Classical virtualization • Host Kernel runs on physical hardware • Hypervisor and virtual machines (guests) run as processes on host • Each virtual machine (guest) has: • virtual hardware (processors, memory, network, ...) • its own kernel (same or different OS) • isolated set of processes, file systems + files etc. virtual machine • Virtualization overhead • Boot and shutdown, memory footprint, ... guest • Each system call (I/O, network, ...) has to go through all layers ... process • 2 levels of multitasking, virtual memory management ... • Code instrumentation • .... ... guest kernel physical machine virtual host host host host ... ... hardware process process process process host kernel host kernel host hardware host hardware

  6. Understanding Containers (3) Container (aka OS Level Virtualization ) • set of processes running on a host with manipulated namespaces = what resources a process can see • have private copy of • OS utilities and libraries, file systems and files, software, and data • other resources (PIDs, network, ...) - not relevant here • similar to virtual machine, but: • processes run directly under host‘s kernel (same OS = limitation) virtual machine • no virtual hardware, no additional kernel, no virtualization overhead guest ... process container ... isolated ... guest kernel physical machine namespace guest virtual host host host host ... ... ... ... process hardware process process process process host kernel host OS host kernel host hardware host hardware host hardware

  7. Overview of Container Solutions • LXC (Linux Containers) linuxcontainers.org uses Linux namespaces and resource limitations (cgroups) to provide private, restricted environment for processes operation similar to virtual machines (boot, services) usage: OS containers (lightweight replacement for servers) • alternative to virtual machines • several applications per container • Docker similar to LXC, similar purpose (often used for web and database services) client - server model: • containers run under dockerd • user controls operations with docker command usage: Application containers • typically only one program per container (microservices) • containers communicate over virtual network advantage: • very popular, huge collection of prebuilt containers on dockerhub • Singularity uses Linux namespaces (no cgroups - resource limits should be responsibility of batch system) to provide private software environment for processes (user defined software environment) operation like running programs from a shell, access to all host resources except root file system developed for HPC cluster environments

  8. (*) https://www.xkcd.com/2044/ Docker: why not for HPC? Docker • de facto standard container solution for virtual hosting • huge collection of prebuilt containers repository: Docker Hub • client-server model containers run under Docker daemon mimick virtual server (startup in background, separate network, ...) docker user commands communicate with Docker daemon breaks process hierarchy (no integration of batch system + MPI) • need root privileges to run unsuitable for multiuser • containers completely isolated from host no access to user data + host resources • docker image hidden in obscure place cannot copy image to arbitrary server • complex orchestration (*) of multiple containers • easy on PC, but very complex operation and deployment in cluster Conclusion: Docker unsuitable for HPC BUT: Leverage Docker Ecosystem

  9. Why Singularity? Singularity easy to understand, use, and operate • designed to run in HPC envirunments • use Docker containers or build your own singularity can download containers from Docker Hub no need to install Docker • container processes run as children of current shell trivial integration of shell tools (e.g. I/O redirection, pipelines, command line arguments), batch system and MPI • secure: containers run with normal user privileges suitable for multiuser • by default, only replaces root file system can provide different OS+SW environment, but: full access to all host resources (processors, network, infiniband, $HOME, $SCRATCH etc.) • singularity image = single immutable file (squashfs) easily copy / archive image anywhere • emerges as new standard for HPC containers note: Charliecloud, Shifter • older competitors to Singularity - more complicated & less flexible - need Docker installation

  10. Singularity Containers and Visibility of Host Resources Guest processes can access and use: host • guest file system • host CPUs & memory • host system calls (kernel interface) • host networking (incl. X11) and processes container Singularity • parts of host file system: only • current working directory (if accessible) guest • $HOME, /dev, /tmp, /var/tmp ... process • $SCRATCH (uibk) • host (most) environment variables /home/ user • host stdin, stdout, stderr process • /scratch guest process = child of your shell /home/ user / /var /scratch /usr /var /data /usr /dev /dev /tmp /tmp mycontainer /etc/hostname myserver /etc/hostname / /

  11. Singularity Containers and Visibility of Host Resources On Test VM Note: Singularity test.simg:~/sing-test> df Filesystem 1K-blocks Used Available Use% Mounted on multiple mounts from same file system OverlayFS 1024 0 1024 0% / (e.g. $HOME, /var/tmp on test VM) are not listed. /dev/sda1 10253588 5107324 4605696 53% /tmp udev 1989624 0 1989624 0% /dev tmpfs 2019872 22984 1996888 2% /dev/shm use df -a for complete output tmpfs 16384 8 16376 1% /etc/group tmpfs 403976 1504 402472 1% /etc/resolv.conf On LCC2 Singularity test.simg:~> df Filesystem 1K-blocks Used Available Use% Mounted on OverlayFS 1024 0 1024 0% / hpdoc.uibk.ac.at:/hpc_pool/lcc2/scratch 10712179648 3839379136 6872800512 36% /scratch /dev/mapper/vg00-lv_root 25587500 5002364 20585136 20% /etc/hosts devtmpfs 8121232 0 8121232 0% /dev tmpfs 8133636 0 8133636 0% /dev/shm na1-hpc.uibk.ac.at:/hpc_home/qt-lcc2-home/home/cb01/cb011060 276901056 86282112 190618944 32% /home/cb01/cb011060 /dev/mapper/vg00-lv_tmp 25587500 33032 25554468 1% /tmp /dev/mapper/vg00-lv_var 25587500 4978280 20609220 20% /var/tmp tmpfs 16384 8 16376 1% /etc/group

  12. Overview Preliminaries • Why containers • Understanding Containers vs. Virtual Machines • Comparison of Container Systesms (LXC, Docker, Singularity) - why Singularity? • Containers and Host Resources Using Singularity • Singularity Workflow 1. Manual Walkthrough Exercise Understanding Singularity • Web resources • Container Image Formats, Sources, Conversions • Running Containers Advanced Singularity • Automating Creation of Containers • Container Contents, Cache Files 2. Exercise - Build Container using Build File • Using MPI with Singularity 3. Exercise - MPI Job with Container • Singularity Instances

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The State of Containers in Scientific Computing Georg Rath FOSDEM18/04.02.2018 NERSC Primary

The State of Containers in Scientific Computing Georg Rath FOSDEM18/04.02.2018 NERSC Primary

The State of Containers in Scientific Computing Georg Rath FOSDEM18/04.02.2018 NERSC Primary scientific computing facility of the office of science Two supercomputers (Cori, Edison), three clusters Over 800.000 cores Over 50

369 views • 19 slides
Uni.lu HPC School 2020 PS6: HPC Containers: Singularity Uni.lu High Performance Computing (HPC)

Uni.lu HPC School 2020 PS6: HPC Containers: Singularity Uni.lu High Performance Computing (HPC)

Uni.lu HPC School 2020 PS6: HPC Containers: Singularity Uni.lu High Performance Computing (HPC) Team E. Kieffer University of Luxembourg (UL), Luxembourg http://hpc.uni.lu E. Kieffer & Uni.lu HPC Team (University of Luxembourg) Uni.lu HPC

335 views • 11 slides
Distributed HPC Applications with Unprivileged Containers Felix Abecassis, Jonathan Calmels GPU

Distributed HPC Applications with Unprivileged Containers Felix Abecassis, Jonathan Calmels GPU

Distributed HPC Applications with Unprivileged Containers Felix Abecassis, Jonathan Calmels GPU Computing NVIDIA Beyond video games AUTONOMOUS MACHINES VIRTUAL REALITY SCIENTIFIC COMPUTING MACHINE LEARNING GPU COMPUTING 2 Infrastructure at

669 views • 28 slides
CS 294-73 Software Engineering for Scientific Computing Lecture 7: STL

CS 294-73 Software Engineering for Scientific Computing Lecture 7: STL

CS 294-73 Software Engineering for Scientific Computing Lecture 7: STL Containers Function and Operator Overloading We are using +,*,-,/ ... with many different types of arguments, different meanings in different contexts. -

414 views • 23 slides
CS 294-73 Software Engineering for Scientific Computing Lecture 7: Introduction

CS 294-73 Software Engineering for Scientific Computing Lecture 7: Introduction

CS 294-73 Software Engineering for Scientific Computing Lecture 7: Introduction to STL Containers Function and Operator Overloading We are using +,*,-,/ ... with many different types of arguments, different meanings in

389 views • 35 slides
LIGO containers in diverse computing environments Thomas P Downes Center for Gravitation,

LIGO containers in diverse computing environments Thomas P Downes Center for Gravitation,

LIGO containers in diverse computing environments Thomas P Downes Center for Gravitation, Cosmology & Astrophysics University of Wisconsin-Milwaukee LIGO Scientific Collaboration LIGO-Virgo Advanced Detector Network O1: September 2015 --

305 views • 14 slides
Scientific Computing Albert-Jan Yzelman (May 10, 2010) Scientific Computing is... a two-years

Scientific Computing Albert-Jan Yzelman (May 10, 2010) Scientific Computing is... a two-years

Scientific Computing Scientific Computing Albert-Jan Yzelman (May 10, 2010) Scientific Computing is... a two-years master programme; a mix between mathematics, computer science, physics; largely application-driven Albert-Jan Yzelman (May

457 views • 10 slides
Scientific Computing What is scientific computing ? Design and analysis of algorithms for solving

Scientific Computing What is scientific computing ? Design and analysis of algorithms for solving

Scientific Computing What is scientific computing ? Design and analysis of algorithms for solving mathematical problems in science and engi- neering numerically Traditionally called numerical analysis Distinguishing features: continuous

770 views • 45 slides
Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing ,

Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing ,

Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing , generalizes cloud computing to include the sharing, bartering and renting of computing resources across peers whose owners and operators are verified

641 views • 31 slides
Efficient Scientific Data Management on Supercomputers HDF5 and Proactive Data Containers

Efficient Scientific Data Management on Supercomputers HDF5 and Proactive Data Containers

Efficient Scientific Data Management on Supercomputers HDF5 and Proactive Data Containers (PDC) Suren Byna Staff Scientist Scientific Data Management Group Data Science and Technology Department Lawrence Berkeley National Laboratory

1.16k views • 53 slides
CS 3220: Introduction to Scientific Computing Steve Marschner Spring 2010 scientific computing :

CS 3220: Introduction to Scientific Computing Steve Marschner Spring 2010 scientific computing :

CS 3220: Introduction to Scientific Computing Steve Marschner Spring 2010 scientific computing : The use of computers to solve problems that arise in science (and engineering, medicine, ). numerical methods : Algorithms (methods) for

479 views • 37 slides
Custom Execution Environments with Containers in Pegasus-enabled Scientific Workflows Karan Vahi

Custom Execution Environments with Containers in Pegasus-enabled Scientific Workflows Karan Vahi

Custom Execution Environments with Containers in Pegasus-enabled Scientific Workflows Karan Vahi *, Mats Rynge*, George Papadimitriou*, Duncan Brown , Rajiv Mayani*, Rafael Ferreira da Silva*, Ewa Deelman*, Anirban Mandal $ , Eric Lyons ,

369 views • 26 slides
Unprivileged Containers Jess Frazelle, @jessfraz How do containers help security? Containers are

Unprivileged Containers Jess Frazelle, @jessfraz How do containers help security? Containers are

Unprivileged Containers Jess Frazelle, @jessfraz How do containers help security? Containers are not going to be the answer to preventing your application from being compromised, but they can limit the damage from a compromise. How do

823 views • 25 slides
GPU Computing and Accelerators: Part V Jens Saak Scientific Computing II 237/348 Open

GPU Computing and Accelerators: Part V Jens Saak Scientific Computing II 237/348 Open

Chapter 4 GPU Computing and Accelerators: Part V Jens Saak Scientific Computing II 237/348 Open Computing Language (OpenCL) Main Message The abstraction for the programming and hardware models are very similar to the CUDA concepts. Mainly

813 views • 32 slides
Singularity Part 2 Jeff Chase Today Singularity: abstractions

Singularity Part 2 Jeff Chase Today Singularity: abstractions

Singularity Part 2 Jeff Chase Today Singularity: abstractions User processes / How do processes interact? VAS / segments Communicate / share user Combine kernel (De)compose kernel Extend

827 views • 50 slides
Containerizing Deep Learning Frameworks with Singularity Rengan Xu, Frank Han, Nishanth

Containerizing Deep Learning Frameworks with Singularity Rengan Xu, Frank Han, Nishanth

Containerizing Deep Learning Frameworks with Singularity Rengan Xu, Frank Han, Nishanth Dandapanthula HPC & AI Solutions Engineering, Dell EMC Agenda Dell EMC HPC & AI Solutions Engineering Why use containers?

635 views • 20 slides
AGL AMM Building AGL with the Yocto Project - A Crashcourse - Jan-Simon Moeller, The Linux

AGL AMM Building AGL with the Yocto Project - A Crashcourse - Jan-Simon Moeller, The Linux

AGL AMM Building AGL with the Yocto Project - A Crashcourse - Jan-Simon Moeller, The Linux Foundation /me Jan-Simon Mller jsmoeller@linuxfoundation.org Dipl.-Ing. Electrical Engineering Embedded Systems, Selinux, Robotics, Build Systems,

1.67k views • 107 slides
CS530L lab component of lab component of CS530L Security Systems course Security

CS530L lab component of lab component of CS530L Security Systems course Security

CS530L lab component of lab component of CS530L Security Systems course Security Systems course August 28, 2020 Correlation Correlation lab component << >> main course lab component << >> main course

519 views • 13 slides
oVirt self-hosted engine seamless deployment Simone Tiraboschi Software Engineer Red Hat KVM

oVirt self-hosted engine seamless deployment Simone Tiraboschi Software Engineer Red Hat KVM

oVirt self-hosted engine seamless deployment Simone Tiraboschi Software Engineer Red Hat KVM Forum, August 2015 KVM Forum, August 2015 oVirt Hosted Engine architecture HA Failover Web App Web Services Web App Backend Guests oVirt

221 views • 20 slides
Highlights and Searches in ATLAS Dave Charlton University of Birmingham on behalf of the ATLAS

Highlights and Searches in ATLAS Dave Charlton University of Birmingham on behalf of the ATLAS

Highlights and Searches in ATLAS Dave Charlton University of Birmingham on behalf of the ATLAS Collaboration 1 EPS-HEP Grenoble, 25 July 2011 Highlights and Searches in ATLAS ATLAS status and data Performance Dave Charlton Beyond Standard

567 views • 45 slides
Stereotactic Body Radiation Therapy for oligometastatic patients with ovarian cancer C. Iftode,

Stereotactic Body Radiation Therapy for oligometastatic patients with ovarian cancer C. Iftode,

Stereotactic Body Radiation Therapy for oligometastatic patients with ovarian cancer C. Iftode, A. Tozzi, G. R. D'Agostino, P. Navarria, T. Comito, C. Franzese, A. Ascolese, F. De Rose, D. Franceschini, M. Scorsetti U.O. Radioterapia e

380 views • 12 slides
Key Recommendations Cancer Risk Assessment: HBOC Syndrome? Take a basic family history

Key Recommendations Cancer Risk Assessment: HBOC Syndrome? Take a basic family history

Gynecologic management of women with inherited risk of gynecologic cancer I have nothing to disclose C. Bethan Powell MD Kaiser Permanente Northern California Gynecologic Oncology Program Lead, Kaiser Permanente Northern California Hereditary

452 views • 9 slides
Year 3 - Science At school we had started learning about plants. Use what you had already learnt

Year 3 - Science At school we had started learning about plants. Use what you had already learnt

Year 3 - Science At school we had started learning about plants. Use what you had already learnt about and the following information to help you complete the tasks. Task 1 Parts of a flower Can you remember the parts of the plant? Can you

417 views • 19 slides
Examination Approach Case 1: Mental Status Organization A 73 year-old woman comes to the

Examination Approach Case 1: Mental Status Organization A 73 year-old woman comes to the

5/8/2015 The Neurological Exam In the ICU: Examination Approach High Yield Techniques Two types of neurologic examinations 1. Screening Examination 2. Testing Hypotheses Select high-yield tests and techniques S. Andrew Josephson

417 views • 8 slides

More recommend