Google Git
Sign in
chromium / infra / infra / main / . / infra / services / swarm_docker / main_helpers.py
blob: 3c113eaa30ebc27b0a2860419db12f7ccad04800 [file] [log] [blame]
# Copyright 2017 The Chromium Authors. All rights reserved.
# Use of this source code is governed by a BSD-style license that can be
# found in the LICENSE file.
from __future__ import print_function
import argparse
import contextlib
import datetime
import hashlib
import json
import logging
import logging.handlers
import os
import socket
import subprocess
import sys
import threading
import time
import six
from infra.libs.service_utils import daemon
from infra.services.swarm_docker import containers
_REGISTRY_URL = 'gcr.io'
# Location of file that will prevent this script from spawning new containers.
# Useful when draining a host in order to debug failures. BOT_SHUTDOWN_FILE
# drains all containers, but individual containers can also be drained using
# container's shutdown file as returned by its descriptor class.
BOT_SHUTDOWN_FILE = '/b/shutdown.stamp'
# Similar to BOT_SHUTDOWN_FILE, but triggers a host reboot after all containers
# have been drained.
BOT_REBOOT_FILE = '/b/reboot.stamp'
# Minimum time a host must be up before it can be restarted again.
_MIN_HOST_UPTIME = 60
# Defined in
# https://chromium.googlesource.com/infra/infra/+/master/build/packages/swarm_docker.yaml
_CIPD_VERSION_FILE = os.path.abspath(os.path.join(
os.path.dirname(__file__), '..', '..', '..', 'CIPD_VERSION.json'))
def get_cipd_version(): # pragma: no cover
if not os.path.exists(_CIPD_VERSION_FILE):
logging.warning('Unable to find cipd version file %s', _CIPD_VERSION_FILE)
return None
try:
with open(_CIPD_VERSION_FILE) as f:
d = json.load(f)
return d.get('instance_id')
except (IOError, ValueError):
logging.exception('Unable to read cipd version file %s', _CIPD_VERSION_FILE)
return None
def fuzz_max_uptime(max_uptime):
"""Returns max_uptime fuzzed by up to 20% of the original value."""
fqdn = six.ensure_binary(socket.getfqdn())
# Don't use the built-in hash function since that's not deterministic across
# different processes.
fqdn_hash = hashlib.md5(fqdn).hexdigest()
fuzz_amount = int(fqdn_hash, 16) % int(max_uptime * 0.2)
return max_uptime + fuzz_amount
def get_host_uptime():
"""Returns host uptime in minutes."""
with open('/proc/uptime') as f:
uptime = float(f.readline().split()[0])
return uptime / 60
def update_docker(canary, docker_version):
"""Update the docker package prior to reboot.
This will automatically keep the docker package up to date and running prior
to reboot will ensure that no containers are running, so no disruptions. This
will also remove older docker packages (docker-engine) automatically.
Args:
canary: (bool) If this is a canary host or not.
docker_version: (str) Docker package version to ensure is installed.
"""
package_with_version = 'docker-ce'
if canary:
# This will cause apt to install the latest version.
logging.info('Ensuring the latest version of docker-ce is installed.')
else:
package_with_version = 'docker-ce=%s' % docker_version
logging.info('Ensuring %s is installed.', package_with_version)
# Not doing a lot of dpkg/apt-cache checking here as the runtime to just try
# an install is only 1.1 seconds.
try:
subprocess.check_call(['/usr/bin/apt-get', 'update'])
except subprocess.CalledProcessError:
# We don't care enough to abort reboot here, only if install fails.
logging.exception('Unable to apt-get update.')
try:
subprocess.check_call(['/usr/bin/apt-get', 'install', '-y',
'--allow-downgrades', package_with_version])
except subprocess.CalledProcessError:
logging.exception('Unable to install/upgrade docker-ce to %s.',
package_with_version)
return False
return True
def reboot_host(canary=False, docker_version=''):
if docker_version:
if not update_docker(canary, docker_version):
logging.warning('Not rebooting, something went wrong.')
return
# This script runs as root.
try:
subprocess.check_call(['/sbin/reboot'])
except subprocess.CalledProcessError:
logging.exception('Unable to reboot host.')
class FlockTimeoutError(Exception):
pass
@contextlib.contextmanager
def flock(lock_file, retries=20, sleep_duration=3): # pragma: no cover
logging.debug('Acquiring file lock on %s...', lock_file)
i = 0
while True:
try:
with daemon.flock(lock_file):
logging.debug('Lock acquired on %s.', lock_file)
try:
yield
finally:
logging.debug('Releasing lock on %s.', lock_file)
break
except daemon.LockAlreadyLocked:
if i == retries - 1:
raise FlockTimeoutError()
else:
logging.debug('Lock on %s busy; sleeping for %d seconds.',
lock_file, sleep_duration)
i += 1
time.sleep(sleep_duration)
def reboot_gracefully(args, running_containers):
"""Reboot the host and attempt to gracefully stop running containers.
Returns:
True if reboot sequence has been started. Callers should not spawn new
containers. Actual reboot may not be triggered due to running tasks.
"""
uptime = get_host_uptime()
fuzzed_max_host_uptime = fuzz_max_uptime(args.max_host_uptime)
mins_since_scheduled_reboot = uptime - fuzzed_max_host_uptime
if mins_since_scheduled_reboot > 0:
logging.debug('Host uptime over fuzzed max uptime (%d > %d).',
uptime, fuzzed_max_host_uptime)
else:
return False
if running_containers:
if mins_since_scheduled_reboot > args.reboot_grace_period:
logging.warning(
'Drain exceeds grace period of %d min. Rebooting host now '
'despite %d running containers.', args.reboot_grace_period,
len(running_containers))
reboot_host(args.canary, args.docker_version)
else:
logging.debug(
'Still %d containers running. Shutting them down first.',
len(running_containers))
for c in running_containers:
c.kill_swarming_bot()
else:
logging.debug('No running containers. Rebooting host now.')
reboot_host(args.canary, args.docker_version)
return True
def launch_containers(
docker_client, container_descriptors, args): # pragma: no cover
rebooting_host = os.path.exists(BOT_REBOOT_FILE)
draining_host = os.path.exists(BOT_SHUTDOWN_FILE)
draining_container_descriptors = [
cd for cd in container_descriptors if os.path.exists(cd.shutdown_file)
]
if draining_host:
logging.info(
'In draining state due to existence of %s. No new containers will be '
'created.', BOT_SHUTDOWN_FILE)
elif rebooting_host:
logging.info(
'In draining state due to existence of %s. No new containers will be '
'created and host will be restarted.', BOT_REBOOT_FILE)
elif draining_container_descriptors:
logging.info(
'Draining containers %s due to existence of files: %s. They will not '
'be restarted automatically.',
[cd.name for cd in draining_container_descriptors],
[cd.shutdown_file for cd in draining_container_descriptors])
# Cleanup old containers that were stopped from a previous run.
# TODO(bpastene): Maybe enable auto cleanup with the -rm option?
docker_client.delete_stopped_containers()
running_containers = docker_client.get_running_containers()
# If there are no running containers, use this as an opportunity to clean
# up old images. It shouldn't take long.
image_url = (
_REGISTRY_URL + '/' + args.registry_project + '/' + args.image_name)
if not running_containers:
docker_client.remove_outdated_images(image_url)
if (not draining_host and not rebooting_host and args.max_host_uptime
and reboot_gracefully(args, running_containers)):
return
# Fetch the image from the registry if it's not present locally.
if not docker_client.has_image(image_url):
logging.debug('Local image missing. Fetching %s ...', image_url)
docker_client.pull(image_url)
logging.debug('Image %s fetched.', image_url)
# Send SIGTERM to bots in containers that have been running for too long, or
# all of them regardless of uptime if draining. For Android containers (see
# infra.services.android_swarm package), some containers may go missing due
# to associated devices missing, so we need to examine *all* containers here
# instead of doing that inside the per-container flock below.
current_cipd_version = get_cipd_version()
if draining_host or rebooting_host:
for c in running_containers:
c.kill_swarming_bot()
if rebooting_host and not running_containers:
os.remove(BOT_REBOOT_FILE)
reboot_host(args.canary, args.docker_version)
else:
for cd in draining_container_descriptors:
c = docker_client.get_container(cd)
if c is not None:
c.kill_swarming_bot()
docker_client.stop_old_containers(
running_containers, args.max_container_uptime)
# Also stop any outdated container.
for c in running_containers:
if current_cipd_version is not None:
if c.labels.get('cipd_version') != current_cipd_version:
logging.debug(
'CIPD pkg version used to launch container %s has changed. '
'Shutting the container down.', c.name)
c.kill_swarming_bot()
continue
if not docker_client.image_matches_url(c.image, image_url):
logging.debug(
'Image of container %s is outdated. Shutting the container down.',
c.name)
c.kill_swarming_bot()
# Make sure all requested containers are running.
def _create_container(container_desc):
try:
with flock(container_desc.lock_file):
c = docker_client.get_container(container_desc)
if c is None:
labels = {}
# Attach current cipd version to container's metadata so it can
# be restarted if version changes.
if current_cipd_version is not None:
labels['cipd_version'] = current_cipd_version
docker_client.create_container(
container_desc, image_url, args.swarming_server, labels)
elif c.state == 'paused':
# Occasionally a container gets stuck in the paused state. Since
# the logic here is thread safe, this shouldn't happen, so
# explicitly unpause them before continuing.
# TODO(bpastene): Find out how/why.
logging.warning('Unpausing container %s.', c.name)
c.unpause()
else:
logging.debug('Nothing to do for container %s.', c.name)
except FlockTimeoutError:
logging.error(
'Timed out while waiting for lock on container %s.',
container_desc.name)
threads = []
docker_client.set_num_configured_containers(len(container_descriptors))
for cd in container_descriptors:
# TODO(sergiyb): Remove should_create_container logic from this generic
# container management loop and move it outside of the launch_container
# function as it's specific to Android devices only and thus should only
# be in the android_docker package.
if (cd.should_create_container() and
cd not in draining_container_descriptors):
# Split this into threads so a blocking container doesn't block the
# others (and also for speed!)
t = threading.Thread(target=_create_container, args=(cd,))
threads.append(t)
t.start()
for t in threads:
t.join()
def add_launch_arguments(parser): # pragma: no cover
def max_uptime(value):
value = int(value)
if value < _MIN_HOST_UPTIME and value != 0:
raise argparse.ArgumentTypeError(
'--max-host-time must be > %d or zero' % _MIN_HOST_UPTIME)
return value
parser.add_argument(
'-c', '--canary', action='store_true', default=False,
help='Run this as a canary bot.')
parser.add_argument(
'--docker-version',
default='',
help='The docker-ce version to be ensured is installed (ex: '
'18.06.3~ce~3-0~ubuntu). These values are supplied by puppet. If not '
'specified, no update will be triggered.')
parser.add_argument(
'--max-container-uptime', type=int, default=60 * 4,
help='Max uptime of a container, in minutes.')
parser.add_argument(
'--reboot-grace-period', type=int, default=60 * 4,
help='How long to wait (in minutes) for swarming bots to gracefully '
'shutdown before triggering a host reboot. Should be at least as '
'long as the longest expected task run time. Defaults to 4 hours.')
parser.add_argument(
'--image-name', default='swarm_docker:latest',
help='Name of docker image to launch from.')
parser.add_argument(
'--swarming-server', default='https://chromium-swarm.appspot.com',
help='URL of the swarming server to connect to.')
parser.add_argument(
'--registry-project', default='chromium-container-registry',
help='Name of gcloud project id for the container registry.')
parser.add_argument(
'--max-host-uptime', type=max_uptime, default=60 * 24,
help='Max uptime of the host, in minutes. A value of zero indicates the '
'host will never be rebooted automatically.')
def configure_logging(log_filename, log_prefix, verbose): # pragma: no cover
logger = logging.getLogger()
logger.setLevel(logging.DEBUG if verbose else logging.WARNING)
log_fmt = logging.Formatter(
'%(asctime)s.%(msecs)03d %(levelname)s ' + log_prefix + ' %(message)s' ,
datefmt='%y%m%d %H:%M:%S')
file_handler = logging.handlers.RotatingFileHandler(
'/var/log/chrome-infra/%s' % log_filename,
maxBytes=10 * 1024 * 1024, backupCount=5)
file_handler.setFormatter(log_fmt)
logger.addHandler(file_handler)
stdout_handler = logging.StreamHandler(sys.stdout)
logger.addHandler(stdout_handler)
# Quiet some noisy modules.
cmd_helper_logger = logging.getLogger('devil.utils.cmd_helper')
cmd_helper_logger.setLevel(logging.ERROR)
urllib3_logger = logging.getLogger('requests.packages.urllib3.connectionpool')
urllib3_logger.setLevel(logging.WARNING)
# urllib3's module path is different when invoked via vpython.
# TODO(crbug.com/977627): Remove the old path when we tear out infra VENV
# support.
vypy_urllib3_logger = logging.getLogger('urllib3.connectionpool')
vypy_urllib3_logger.setLevel(logging.WARNING)
@contextlib.contextmanager
def main_wrapper(): # pragma: no cover
if not sys.platform.startswith('linux'):
print('Only supported on linux.', file=sys.stderr)
sys.exit(1)
try:
yield
except containers.FrozenEngineError:
logging.exception('Docker engine frozen, triggering host reboot.')
# Skipping updates since something is very wrong with docker here.
reboot_host()
except Exception as e:
logging.exception('Exception:')
raise e