Native support for sidecar containers #1644
Comments
Could you give some specific examples of applications that fit this statement, and need sidecar/init containers? As a significant and complex feature that falls outside of the main focus of 4.x (native OCI runtime execution), we'd be looking for a broad need among the community of users. My initial reaction is also to ask why e.g. podman, which has an an aim to specifically support this type of thing via pods, is not an option? That may reveal technical limitations in your environment that would impact this idea. |
One specific case is Argo (https://argoproj.github.io/argo-workflows/). It uses init containers for some initialization, and sidecar containers for monitoring the execution of the main container. Other case is Prometheus/cadvisor. The advisor runs as sidecar to an application for collecting resource utilization metrics.
Podman is indeed a nice fit, but my main constraints are:
According to this doc, the rootless network stack is based on slirp4netns, which does not give routable IP addresses, and whose performance is awful. Plus, my architecture is based on parallel filesystems (i.e Lustre), and based on what I read podman does not work well with that (due to the lack of xattr from parallel filesystems) |
|
Thanks for the details.
Are there existing important workflows that require Argo, or do you want to start developing for Argo? I'm trying to get to the underlying use-case here, to understand what exactly this is a blocker for. Given Argo is explicitly "The workflow engine for Kubernetes", what's the reason to use it over a more HPC focused/friendly workflow system? Thanks for indulging me... I don't have a lot of background knowledge on k8s for workflows. |
|
Argo's engine is based on the sidecar pattern -- so sidecar support is needed even for the simplest workflows. An Argo workflow consists of steps. Each step is a pod that includes two containers. The main (application) container does that job, and a sidecar (instrumentation) container watches the status of the main container and interacts with the Argo controller. That said, Argo is now the standard workflow engine over which several scientific applications are built (I have genome and data analytics in mind). For example, The case is two-fold.
|
Is your feature request related to a problem? Please describe.
Many scientific applications/workflows are currently written for the Kubernetes ecosystem. Running these Kubernetes-applications on HPC infrastructure is a highly desirable features that currently remains unsolved. To this end, I 'm working on a project for interfacing Kubernetes with Slurm, and Singularity is the enabler for this functionality.
However, many applications depend on the sidecar pattern (e.g., for monitoring, for orchestrating execution, etc).
Describe the solution you'd like
Native support for the sidecar pattern.
Regarding the user interface, I think changing the
instance startcommand is the best way to proceed. I would expect something like:And then, the sidecar should be accessible by usual "exec", "shell", "run" commands.
In the same context, the logic for
initcontainers should also be implemented.Describe alternatives you've considered
My current implementation is based on a combination of nested containers that run on the namespace of a "parent" container.
The script implements both init containers and sidecar containers required by Kubernetes.
Additional context
I 'm aware of singularity-cri, but this does not work in my case.
I need a "serverless" solution that does not require daemons running on the compute nodes.
The text was updated successfully, but these errors were encountered: