checkpoint rootfs diff is wasteful #24826
Comments
|
@adrianreber Any thoughts? |
|
@hanwen-flow Sounds like a good idea. You should do a proof of concept and open a PR to verify it. Another thing which would be interesting is to see if using The main problem seems to be that we write the file-system changes twice. Thinking about your approach we will still need to write it twice. Once from the container to the temporary directory and the second time while creating the final tar archive from the temporary directory. Thinking more about it. If we write the content from the container to the If you find a way to write the data only once, that would be great. If you have an idea how to improve it, please open a PR. |
why? CRIU has to create files in a temp directory, because it is a separate process, but podman can create a tar.Writer in golang for the final file directly, insert the CRIU snapshots (from the file system tmp dir) and read the changed files from the container directly. if you do this without compression, the whole process could use kernel file copying (assuming the linked golang proposal goes through). This requires dropping the gratuitous io.Pipe() calls to connect tar streams to output sinks. |
|
Re. compression: I observed that zstd compression on the final archive incurs 10% overhead. |
Good question.
There is a tool called criu-image-streamer which tries to avoid it. So it would be possible to also optimize this step.
Sounds great, please open a PR. From my point of view there is nothing against having this. |
|
Do we need to worry about backwards compat here? If the layout is changed podman would be unable to load a checkpoint created on a previous version or the other way around. |
I had a quick look. That is a small tool, so it could be reimplemented in podman or one of its dependencies, I guess? re. compatibility: we could maintain the tar-in-tar format, and stream the embedded rootfs tar directly into the final tar file without going to disk. |
A better place to re-implement image streaming would be go-criu. We use these bindings in Podman. We can propose this as a GSoC project for next year: https://www.criu.org/Google_Summer_of_Code_Ideas |
now I remember again: we can't do this: we need to know the size of the file in advance, because the metadata (inclding size) precedes the file content. |
Issue Description
Container checkpointing with CRIU works for me, but its speed is disappointing. What currently happens is:
In my case, my containers have large local FS differences. On my laptop, the tarring runs at 400mb/s, so 10G of file system differences takes 25s to create the rootfs-diff.tar archive. Then, this data goes through tar again which takes another 25s.
wouldn't it be better to insert the rootfs diff directly into the snapshot tar (perhaps under a rootfs-diff/ directory) ? Then my large file content goes through tar only once, yielding a 2x speedup.
Note that Go isn't particularly efficient with tar files either, see golang/go#70807.
Steps to reproduce the issue
Steps to reproduce the issue
1.
2.
3.
Describe the results you received
Describe the results you received
Describe the results you expected
Describe the results you expected
podman info output
If you are unable to run podman info for any reason, please provide the podman version, operating system and its version and the architecture you are running.Podman in a container
No
Privileged Or Rootless
Privileged
Upstream Latest Release
Yes
Additional environment details
Additional environment details
Additional information
Additional information like issue happens only occasionally or issue happens with a particular architecture or on a particular setting
The text was updated successfully, but these errors were encountered: