Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Epic] Unpack image source using direct registry client #179

Closed
anik120 opened this issue Sep 26, 2023 · 2 comments · Fixed by #145
Closed

[Epic] Unpack image source using direct registry client #179

anik120 opened this issue Sep 26, 2023 · 2 comments · Fixed by #145
Assignees
@everettraven
Labels
epic
Milestone
v0.8.0

Comments

@anik120
Copy link
Collaborator

anik120 commented Sep 26, 2023
edited

Overview

Currently Catalogd uses a Pod for unpacking catalog image contents and reads the unpacked contents from said Pod’s logs. There are a few problems associated with this:

  • As mentioned by the Kubernetes documentation on working with Pods, Pods are designed as disposable entities. Pods that have exited successfully can be garbage collected at any time and thus there is no guarantee that it will still exist by the time we attempt to read the logs or that the logs that are present are lossless.
  • It is not recommended to manage Pod resources yourself and instead use something like a Deployment, Job, or StatefulSet.
  • When thinking about polling, we will likely be checking if the SHA of an image is different from the last time the image was unpacked. The general approach to doing this with a Pod based unpacking process is to create another pod to pull the same image and check the Pod status to determine if there is a difference in the SHA.

Directly communicating with an image registry allows us to avoid running into these issues altogether.

Related Issues

Design Documents

RFC: https://docs.google.com/document/d/1VHlUAVewIckVMLccNsoNptRsrQ19KcWzQ2HZetYK2h0/edit?usp=sharing

Task List
@anik120 anik120 added the epic label Sep 26, 2023
@everettraven
Copy link
Collaborator

related to #143

@anik120 anik120 mentioned this issue Sep 26, 2023
Closed
@anik120
Copy link
Collaborator Author

anik120 commented Sep 26, 2023

@joelanford's description from #143:

There are several issues related to our use of a pod to unpack images:

https://github.com/operator-framework/catalogd/issues/22
https://github.com/operator-framework/catalogd/issues/66
https://github.com/operator-framework/catalogd/issues/132
I propose that we switch to an image registry client used directly by the controller. I think for the initial implementation we can:

Always resolve tags to SHAs by communicating with image registry
Pull content for tag into an emptyDir volume
i. If the content for a SHA is cached locally, no need to pull again
Unpack content into served filesystem
i. If the desired SHA is already being served, no need to unpack again
Future optimizations could include:

Running full resolve/unpack process in a goroutine, and using a channel to communicate events back to the reconciler to requeue
Rate-limit requests to an image registry (but if a request is rate-limited always put another request in the queue to make sure we don't rest on a stale tag resolution.
Explore cache optimizations (e.g. persistent volume, garbage collection based on LRU + max inactive size)

@anik120 anik120 added this to the v0.8.0 milestone Sep 27, 2023
@everettraven everettraven self-assigned this Sep 27, 2023
@anik120 anik120 mentioned this issue Sep 28, 2023
Closed
@everettraven everettraven mentioned this issue Oct 3, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@everettraven everettraven

Labels
epic
Projects
OLM V1
Archived in project
Milestone
v0.8.0
Development

Successfully merging a pull request may close this issue.

(feature): add direct image registry client Unpacker implementation everettraven/catalogd
2 participants
@anik120 @everettraven