[RFC] refactor: redesign container io in pouch

[fuweid]

Signed-off-by: Wei Fu [email protected]

Ⅰ. Describe what this PR did

Redesign container io in pouch. but Why?

The original design always uses ringbuffer to cache the data which causes streams lost data sometime. It makes the regression test unstable.

It also makes caller hard to touch data from containerd-shim. That is why we still miss the ReopenLog in CRI. I think we should fix that.

design overview

Each container/process will hold streams struct to handle the io stream. The struct is like:

// Stream is used to handle container IO.
type Stream struct {
        sync.WaitGroup
        stdin          io.ReadCloser
        stdinPipe      io.WriteCloser
        stdout, stderr *multiWriter
}

In the stream struct, both the stdout and stderr are the multiple writer's hub. It means that the data from stdout/stderr of process will have more copies. For example, when user use run to start container, the container's output data will have two copies. One is for the terminal side, the other one is for container's log, such as json-file by default.

But for the stdin, we don't need the hub like stdout/stderr, because the input of process is only one. Any attach requests can send the data to the process in container. So we exports the stdinPipe to allow different attach requests to touch the same input channel.

Based on this, the stream acts like bridge to connect attach request and stream of process in container. If the user wants to attach running container, just adds hijack/stream into the output hub and attach it to the stdinPipe. The stream can provides more flexible than before.

Before this change, the CRI struggles to integrating with Container Mgr. Why? because CRI component doesn't know the stream has been finished. Always use dead loop to check the Exec status. It's not good patten.

why add logdriver/crilog into the writer hub?

Both logdriver and crilog don't act like io.Writer. It always add meta data for the raw data. Adding the partial label is one of examples for the acting way of logdriver. In order to avoid to add duplicate code for each driver, we use LogCopier to handle this.

There is a little bit different between crilog and logdriver. The crilog has ReopenLog request. It means that it will add new crilog and close previous one.

In current design, we might have duplicate data in the crilog. Because we close previous, the writer-hub might write something into that. I think it's ok right now.

What is the CloseIO and StdinOnce?

The contained-shim will open fifo twice for reading and writing. For the writing mode, the shim doesn't close stdin fifo until the client calls CloseIO. In some case, the pouch daemon might be crash before finishing the input. If shim doesn't hold writing mode fifo, the process in container will consider that it is EOF signal and exit.

Based on this case, if the client sends EOF signal to input channel, the pouchd should send the CloseIO to shim to let the process exit.

StdinOnce in container's config is used by attach request. If the StdinOnce is true, when one attach request finishes stream copy, the pouchd will closes the input of process. So other attach requests to the same container will be stopped.

If the user wants StdinOnce, it should set it to true during creating container.

NOTE: doc link is here.

Ⅱ. Does this pull request fix one issue?

NONE

Ⅲ. Why don't you add test cases (unit test/integration test)? (你真的觉得不需要加测试吗？)

Added it.

Ⅳ. Describe how to verify it

Wait for CI.

Ⅴ. Special notes for reviews

I remove the non-blocking feature in this change and will add it in next patch.

[codecov]

Codecov Report

Merging #2375 into master will increase coverage by 0.26%.
The diff coverage is 76.55%.

@@            Coverage Diff             @@
##           master    #2375      +/-   ##
==========================================
+ Coverage   68.31%   68.58%   +0.26%     
==========================================
  Files         275      272       -3     
  Lines       18331    18206     -125     
==========================================
- Hits        12523    12486      -37     
+ Misses       4372     4302      -70     
+ Partials     1436     1418      -18

Flag	Coverage Δ
#criv1alpha1test	31.39% <61.97%> (-0.25%)	⬇️
#criv1alpha2test	35.46% <66.28%> (-0.16%)	⬇️
#integrationtest	40.01% <59.56%> (+0.19%)	⬆️
#nodee2etest	32.87% <51.71%> (-0.15%)	⬇️
#unittest	26.44% <16.94%> (+0.98%)	⬆️

Impacted Files	Coverage Δ
cri/stream/remotecommand/httpstream.go	46.63% <ø> (ø)	⬆️
cri/v1alpha2/cri_utils.go	91.21% <ø> (+0.69%)	⬆️
cri/stream/remotecommand/attach.go	64.7% <ø> (-1.97%)	⬇️
cri/v1alpha1/cri_utils.go	83.53% <ø> (+0.31%)	⬆️
daemon/logger/syslog/syslog.go	75.82% <100%> (+1.11%)	⬆️
pkg/streams/multi.go	100% <100%> (ø)
ctrd/watch.go	83.33% <50%> (+4.54%)	⬆️
daemon/mgr/container.go	59.22% <62.68%> (-0.85%)	⬇️
ctrd/container.go	59.28% <63.06%> (+0.95%)	⬆️
pkg/ioutils/writer.go	66.66% <66.66%> (ø)
... and 35 more

[fuweid]

ping @starnop and @YaoZengzeng to help me review the cri part. Thanks

[ZYecho]

if pouch run with -i -d flag enable and when the terminal detach, this container can't be attached again, right?

[fuweid]

good catch.

[ZYecho]

Maybe add a another flag for end-users to control is a good choice?

[fuweid]

it has been blocked by

if (rc.attach || rc.stdin) && rc.detach { 
return fmt.Errorf("Conflicting options: -a (or -i) and -d")
}

[fuweid]

Maybe add a another flag for end-users to control is a good choice?

basically, I don't think so. The cli is just to help user to use pouch easier. This configuration is too complicated. I don't see any requirement for this.

[ZYecho]

add blank line before this line?

[ZYecho]

In this pr desc, the stdinPipe of the Stream struct was shared if there's more than one attacher? @fuweid I did't know the difference between stdinPipe and stdin in Stream struct.

[fuweid]

In this pr desc, the stdinPipe of the Stream struct was shared if there's more than one attacher? @fuweid I did't know the difference between stdinPipe and stdin in Stream struct.

Yes. it can be shared by more than one attacher. I was struggled from naming this. stdin is reader of pipe and stdinPipe is writer of pipe.

[starnop]

I have tested the function ReopenContainerLog. Congratulations! Everything is ok, after this pull request merged, I will complete it. And then, LGTM. :)

[Ace-Tang]

I do not think stderr fifo has related with terminal is open

[fuweid]

Yes. I checked that containerd-shim. The shim will open socket as pty-slave. There is only one output from pty-slave so that we don't need stderr fifo if the withTerminal is true

[Ace-Tang]

Before, we remove fifo dir here, now it moved to closeFn, does it matter

[fuweid]

I don't think so. Before we need the dir to cleanup. I move it the closeFn, like [email protected]. All the cio.go's changes are for upgrading containerd.

[Ace-Tang]

Do we use pipe, direct IO before ? I will do more check

[Ace-Tang]

I know, you implement pipe for here use.

[rudyfly]

Remove blank line https://github.com/alibaba/pouch/pull/2375/files#diff-d9e51acfdfc53f5e42e18981e1d9f2b1R712

[fuweid]

any update @Ace-Tang @YaoZengzeng

[YaoZengzeng]

Maybe we missed some comment here? 😆

[fuweid]

yes. Wait() to make sure pouchd receives all the data from shim. And Close() is used to make sure the Attach() should exit because there is no data. Thank @YaoZengzeng. In the cleanup, we should Wait() before Close(). I miss that. will update. 👍

[fuweid]

@YaoZengzeng I have updated that the containerio does Close action which includes Wait action. However, just in case, we wait for the Wait in 10 seconds. If not, we will go ahead.

[zhuangqh]

if all of the writer writing bytes fails here, still return len(p). Is it reasonable?

[fuweid]

since we don't return error here, we need to return the len(p) here. The writer hub uses io.Pipe as io.WriteCloser. All data are handled in memory, not the real file or network IO. If it run into a error, there is some wrong with pouch and we should restart pouchd.

I think I can add the warning message here if it run into error during writing. How do you think?

[zhuangqh]

I see. Print the warning message is enough.

[zhuangqh]

I am confused about the lastErr pattern. You will lose some error messages. What about using multierror or print a log.

[zhuangqh]

I see. Print the warning message is enough.

[zhuangqh]

Controlled by waitGroup to promise all of the data has finished copying(abnormal exit is also regarded as finish). Just comment to record this.

[zhuangqh]

Not controlled by waitGroup. Because it may be suddenly closed by user. Just comment to record this.

[zhuangqh]

using httputils.BoolValue(req, "stdin") instead?

[Ace-Tang]

LGTM， more test later.

[fuweid]

ping @zhuangqh I update with your recommendation. please take a look.

[rudyfly]

Why not return error?

[fuweid]

got it.

[rudyfly]

Can config for io root directory?

[fuweid]

Yes. But I just keep it unchanged. If we have this requirement, we can file other PR to handle this.

[rudyfly]

change fmt.Errorf to errors.Wrapf?

[fuweid]

Just keep it unchanged and file other PR to handle this.

[rudyfly]

why don't use steams?

[fuweid]

because cri has a package named by streams. Just use pkgstreams to distinguish two packages

[rudyfly]

emmmmm, cri package is steam, your package is steams, he he he he

[rudyfly]

Can we change all fmt.Errorf("failed to xxxx %q: %v", id, err) to errors.Wrapf()

[rudyfly]

s/job/jobs?

[fuweid]

I think job is ok 😂

[rudyfly]

s/streamStdout/Stdout

[rudyfly]

s/streamStderr/Stderr

[rudyfly]

containerIO's abbreviation is cntrio, is it ok? some is container -> ctr

[fuweid]

container -> cntr I think it's ok 😅

[YaoZengzeng]

LGTM
@fuweid Your work is really brilliant 😎

[fuweid]

ping @zhuangqh @rudyfly I changes cntrio -> ctrio in containerio package.

[zhuangqh]

LGTM