-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Docker limitation: Can't run a new command in a stopped container #13
Comments
For logging, can't we just use another "volume" instruction? |
@flangelier: that would work. But I think it is worth looking into the docker logging best practices to understand the whole picture. It seems people have been using more elaborate solutions - why?: https://www.google.ca/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8#q=docker%20logging |
for reference, here's how to configure the log directory for Hadoop: http://stackoverflow.com/questions/22856958/hadoop-logs-value-of-environment-variable-hadoop-log-dir |
I've got news for you buddy, the containers state is the entire filesystem it resides on. Any part of that may be of interest to someone for whatever reason...if your main command starts crashing for some reason you may want to go on as /bin/bash and have a real look around and see what happened. Docker makes that impossible for no good reason. |
To get shell : $ docker ps # check container interesting container
$ docker exec -ti <container_id> /bin/bash Cheers |
This command would not work if you're container crashes on start. If that On Wed, Sep 2, 2015 at 8:55 AM, mikefaille [email protected] wrote:
|
You're right. I was in potatoes. (french expression) |
I'm guessing the problem only occurs when the entrypoint is not interactive, right? A workaround would be to always have an interactive entrypoint like /bin/bash to keep the container alive. Then, use this to enter a shell for a stopped container: |
That's fine for debugging, but not in production. I think the best solution is to just mount (using "-v") everything that can have a debugging value: data, log files, etc. |
The /var partition could be in fact mounted. Also, you can look at the "docker logs" command (https://docs.docker.com/reference/commandline/logs/) that shows the output. Can be useful to understand why a container has crashed. |
docker logs show only ouput from PID1's stdout. My 2 cents. It could be useful for sure. Maybe, starting ENTRYPOINT manually from Also, while each docker images is identical, for most case, we must expect same behavior between stopped/crashed container and container started from |
In production, I personally prefer logstash + Elasticsearch + Kibana to debug from logs. |
The docker log command is indeed very nice. Actually, do you know if With a big data system the logs can be gigantic, we may want to find a way On Thu, Sep 3, 2015 at 4:47 PM, mikefaille [email protected] wrote:
|
So, remote logging on distributed storage like ElasticSearch is the way to go. |
Agreed, but will Docker, in the default behavior, fill my RAM with the log
|
It's why collecting logs remotely save local space issue. Additional, Logstash enable log filter and formatting for standardization/correlation. However, http://manpages.ubuntu.com/manpages/trusty/man8/logrotate.8.html |
The answer is ad vitam eternam by default, but good news! Since Docker 1.8, you can roll over the logs and even use a different logging driver: https://docs.docker.com/reference/logging/overview/ Also, here's an interesting article about Docker logging with ELK: http://nathanleclaire.com/blog/2015/04/27/automating-docker-logging-elasticsearch-logstash-kibana-and-logspout/ |
Syslog, journald, gelf, fluend... sounds like i'll have some readings to do. Interesting article. I think it make sense to not store the logs on disk I think the default for HDFS / HBase is to log only to STDOUT / STDERR and On Thu, Sep 3, 2015 at 9:14 PM, Sébastien Bonami [email protected]
|
As I listen from twitter web conference; they use docker inception (docker from docker) stack since one year. I think it's ok :-) (sources is available if you ask). For lauch map reduce task, maybe, Kuberneties on baremetal could be the best bet to bootstrap organic docker cluster. http://kubernetes.io/ I play with it theses days. |
@sebastienbonami Thank you for pointing me logging drivers ! Il like this 👍 |
Hi @leonty, You may be able to access your container's data if you have put your data
In the above cases, you may just create a new container and access the data. If you didn't the above, you may be able to find your data in a path on On Fri, Oct 28, 2016 at 6:32 AM, leonty [email protected] wrote:
|
@davidonlaptop thank you, I believe that was a question more for the docker project, so I replace it there. |
yes, but I thought I could help you :-) |
Problem
Docker does not (currently as of v1.5) allows a user to run a new command in a stopped container.
If the container is running, we can
docker exec
to spawn a new command in the container from the hostdocker attach
ornsenter
to "enter" the container and manually run a commandIf the container is stopped, we can
docker start
to restart the container with the same command used to launch it (viadocker run
,docker create
, or as specified by the Dockerfile instructionCMD
orENTRYPOINT
).docker restart
works the same way asdocker start
except for a running container.The use case would be to start a shell to debug the log files and other state on the disk after the process has crashed. (Or to explore a data-only container.)
See https://github.com/jpetazzo/nsenter/issues/27, moby/moby#1437, moby/moby#1228
Explanation
Containers should be ephemeral
The container produced by the image your Dockerfile defines should be as ephemeral as possible. By “ephemeral,” we mean that it can be stopped and destroyed and a new one built and put in place with an absolute minimum of set-up and configuration.
https://docs.docker.com/articles/dockerfile_best-practices/
Solution
All the container state (data, logging) that requires persistence MUST be stored outside the container's main layer.
The text was updated successfully, but these errors were encountered: