Difference between revisions of "CCU:Perstistent storage on the Kubernetes cluster"

From Collective Computational Unit
Jump to navigation Jump to search
m (The CephFS file system)
m (Local storage on the node)
 
(13 intermediate revisions by the same user not shown)
Line 1: Line 1:
 +
 
== The CephFS file system ==
 
== The CephFS file system ==
  
As explained in the [[CCU:GPU Cluster Quick Start|quick start tutorial]], every user can mount certain local host paths inside their pods, which refer to a global distributed Ceph file system.
+
As explained in the [[CCU:GPU Cluster Quick Start|quick start tutorial]], every user can mount certain local host paths inside their pods, which refer to a global distributed Ceph file system. Reminder, the primary home directory is
  
This file system is usually very fast, but only if it is used for workloads it is designed for. Remember that it is a distributed storage, this means that metadata access (such as file attributes, or on which server to look for a specific file) is over a database and can be a bottleneck. In effect, performance breaks down dramatically if writing or accessing many small files, or having many small files in a single directory (which forces metadata to be stored on a single server).
+
<syntaxhighlight lang="bash">
 +
/cephfs/abyss/home/<your-username>
 +
</syntaxhighlight>
  
'''TL;DR, and this is very important: when using CephFS, make sure to organize your dataset in few large files (e.g. HDF5), and not many small ones !'''
+
This file system is usually quite fast, but only if it is used for workloads it is designed for. It is a distributed storage, where the filesystem metadata is stored in databases on different servers, and the actual content of the files on other ones. This means that metadata access (such as reading file attributes, or on which server to look for a specific file) can be a bottleneck. In effect, the task of reading the metadata for a small file is orders of magnitude more expensive than reading the actual contents of the file itself. This means that performance breaks down dramatically if writing or accessing many small files. In particular, having many small files in a single directory (say >10k) makes any simple filesystem operations such as directory listings take ages, and in particular automated backup jobs might run into problems.
  
If this is not possible for you, then you need to resort to persistent volumes residing on local storage on a single node, which for small files is orders of magnitude faster, but you are bound to a particular node (or have to duplicate the data in different local filesystems). A tutorial follows.
+
'''TL;DR, and this is very important: when using CephFS, make sure to organize your dataset in few large files (e.g. HDF5), and not many small ones ! If you really have to have individual files, then make sure they are stored in subdirectories which do not become too large. '''
 +
 
 +
For example, if you have a million images of the form abcdef.jpg in a single directory, you better distribute them over a directory tree a/b/c/def.jpg, so that it is only 1000 files per directory.
 +
 
 +
An interesting option if you have a dataset consisting of many small files might be to keep it in a tar archive and mount that archive using [https://github.com/mxmlnkn/ratarmount ratarmount].
 +
 
 +
If this is not possible for you, then you need to use the local SSD storage on a single node, which for small files is orders of magnitude faster, but you are bound to a particular node (or have to duplicate the data in different local filesystems). See below for details on local filesystems.
 +
 
 +
== CephFS capacity and backup strategy ==
 +
 
 +
The storage on the Ceph filesystem is quite expensive due to redundancy built in (if any server reboots or is otherwise unavailable, the others can still serve all of the data). The contents of the home directories are also backed up daily onto a backup server with a file history - if you ever accidentally overwrite or otherwise lose an extremely important file, you can contact me and check if I have an old copy in a backup.
 +
 
 +
Currently, there is sufficient space left, however, I kindly ask you to not keep data you do not use anymore on the Ceph filesystem for too long. In particular, please delete old checkpoints of training runs you will never need again - I have seeen people use several Terabytes for their training histories. If you still need these, please move them onto your own computers. If you really want to keep old stuff lying around on the cluster filesystem, maybe because you are not sure whether you will need it again later on, then please put it into a folder which is not backed up. For this, every user can mount the Ceph directory
 +
 
 +
<syntaxhighlight lang="bash">
 +
/cephfs/abyss/archive/nobackup/<your-username>
 +
</syntaxhighlight>
 +
 
 +
which can be used as an archive. Make sure that the directory is created if it does not exist, by specifying "type: DirectoryOrCreate".
  
 
== Local storage on the node ==
 
== Local storage on the node ==
Line 13: Line 34:
 
The path for local storage for each user is
 
The path for local storage for each user is
  
* /raid/local-data/<your-username>
+
<syntaxhighlight lang="bash">
 +
/raid/local-data/<your-username>
 +
</syntaxhighlight>
  
 
You can mount it as a hostPath, but have to make sure that the directory is created if it does not exist, by specifying "type: DirectoryOrCreate".
 
You can mount it as a hostPath, but have to make sure that the directory is created if it does not exist, by specifying "type: DirectoryOrCreate".
Line 19: Line 42:
 
The data will remain persistent on the host, but note that it also only exists on this particular host. If you need to access it again, you need to make sure the pod always ends up on the same specific node. See example below. Otherwise, write your scripts in such a way that they check for existence of the local data, and if it is not there yet, copy it over from somewhere on the internet.
 
The data will remain persistent on the host, but note that it also only exists on this particular host. If you need to access it again, you need to make sure the pod always ends up on the same specific node. See example below. Otherwise, write your scripts in such a way that they check for existence of the local data, and if it is not there yet, copy it over from somewhere on the internet.
  
 
+
'''In contrast to Ceph storage, local paths on the hosts are not backed up. You have been warned.'''
  
 
== Example ==
 
== Example ==
Line 77: Line 100:
 
</syntaxhighlight>
 
</syntaxhighlight>
  
== Reading/writing the contents of a persistent volume ==
+
== Reading/writing to the directories in the pod ==
 
 
You can access a PV which is bound to a PVC by mounting it into a container. For a demonstration, we use the simple container image "ubuntu:18.04", which runs a minimalistic Ubuntu, and keep it in a very long wait after container startup.
 
 
 
<syntaxhighlight lang="yaml">
 
# Test pod to mount a PV bound to a PVC into a container
 
# Before starting this pod, apply the PVC with kubectl apply -f pvc.yaml
 
apiVersion: v1
 
kind: Pod
 
metadata:
 
  name: your-username-pvc-access-pod
 
spec:
 
  containers:
 
    - name: pvc-access-container
 
 
 
      # we use a small ubuntu base to access the PVC
 
      image: ubuntu:18.04
 
      # make sure that we have some time until the container quits by itself
 
      command: ['sleep', '6h']
 
 
 
      # list of mount paths within the container which will be
 
      # bound to persistent volumes.
 
      volumeMounts:
 
      - mountPath: "/mnt/pvc-mnist"
 
        # name of the volume for this path (from the below list)
 
        name: pvc-mnist
 
 
 
  volumes:
 
    # User-defined name of the persistent volume within this configuration.
 
    # This can be different from the name of the PVC.
 
    - name: pvc-mnist
 
      persistentVolumeClaim:
 
        # name of the PVC this volume binds to
 
        claimName: your-username-tf-mnist-pvc
 
</syntaxhighlight>
 
 
 
After the PVC is applied, spin up the test pod with
 
 
 
<syntaxhighlight lang="yaml">
 
> kubectl apply -f pvc-access-pod.yaml
 
</syntaxhighlight>
 
  
You now have several options to get data to and from the container.
+
After you have created the access pod with "kubectl apply -f <filename>.yaml", you have several options to get data to and from the container.
  
=== 1. Copying data from within the container ===
+
=== Copying data from within the container ===
  
 
You can get a root shell inside the container as usual (insert the correct pod name you used below):
 
You can get a root shell inside the container as usual (insert the correct pod name you used below):
  
 
<syntaxhighlight lang="yaml">
 
<syntaxhighlight lang="yaml">
> kubectl exec -it pvc-access-pod /bin/bash
+
> kubectl exec -it access-pod -- /bin/bash
 
</syntaxhighlight>
 
</syntaxhighlight>
  
Your pod has internet access. Thus, an option to get data to/from the pod, in particular into the persistent volume, is to use scp, which first needs to be installed inside the pod:
+
Your pod has internet access. Thus, an option to get data to/from the pod, in particular into the persistent volume, is to use scp, which first might need to be installed inside the pod:
  
 
<syntaxhighlight lang="yaml">
 
<syntaxhighlight lang="yaml">
Line 139: Line 122:
 
An even better variant would be "rsync -av" instead of scp, as this only copies files which are different or do not exist in the destination. By reversing source and destination, you can also copy data out of the container this way.
 
An even better variant would be "rsync -av" instead of scp, as this only copies files which are different or do not exist in the destination. By reversing source and destination, you can also copy data out of the container this way.
  
=== 2. Copying data from the outside ===
+
=== Copying data from your local machine ===
  
From the outside world, you can directly copy data to and from the container using kubectl cp, which has a very similar syntax as scp:
+
From the local machine which has kubectl access to the cluster, you can directly copy data to and from the container using kubectl cp, which has a very similar syntax as scp:
  
 
<syntaxhighlight lang="yaml">
 
<syntaxhighlight lang="yaml">

Latest revision as of 08:41, 4 July 2024

The CephFS file system

As explained in the quick start tutorial, every user can mount certain local host paths inside their pods, which refer to a global distributed Ceph file system. Reminder, the primary home directory is 

/cephfs/abyss/home/<your-username>

This file system is usually quite fast, but only if it is used for workloads it is designed for. It is a distributed storage, where the filesystem metadata is stored in databases on different servers, and the actual content of the files on other ones. This means that metadata access (such as reading file attributes, or on which server to look for a specific file) can be a bottleneck. In effect, the task of reading the metadata for a small file is orders of magnitude more expensive than reading the actual contents of the file itself. This means that performance breaks down dramatically if writing or accessing many small files. In particular, having many small files in a single directory (say >10k) makes any simple filesystem operations such as directory listings take ages, and in particular automated backup jobs might run into problems.

TL;DR, and this is very important: when using CephFS, make sure to organize your dataset in few large files (e.g. HDF5), and not many small ones ! If you really have to have individual files, then make sure they are stored in subdirectories which do not become too large.

For example, if you have a million images of the form abcdef.jpg in a single directory, you better distribute them over a directory tree a/b/c/def.jpg, so that it is only 1000 files per directory.

An interesting option if you have a dataset consisting of many small files might be to keep it in a tar archive and mount that archive using ratarmount.

If this is not possible for you, then you need to use the local SSD storage on a single node, which for small files is orders of magnitude faster, but you are bound to a particular node (or have to duplicate the data in different local filesystems). See below for details on local filesystems.

CephFS capacity and backup strategy

The storage on the Ceph filesystem is quite expensive due to redundancy built in (if any server reboots or is otherwise unavailable, the others can still serve all of the data). The contents of the home directories are also backed up daily onto a backup server with a file history - if you ever accidentally overwrite or otherwise lose an extremely important file, you can contact me and check if I have an old copy in a backup.

Currently, there is sufficient space left, however, I kindly ask you to not keep data you do not use anymore on the Ceph filesystem for too long. In particular, please delete old checkpoints of training runs you will never need again - I have seeen people use several Terabytes for their training histories. If you still need these, please move them onto your own computers. If you really want to keep old stuff lying around on the cluster filesystem, maybe because you are not sure whether you will need it again later on, then please put it into a folder which is not backed up. For this, every user can mount the Ceph directory 

/cephfs/abyss/archive/nobackup/<your-username>

which can be used as an archive. Make sure that the directory is created if it does not exist, by specifying "type: DirectoryOrCreate".

Local storage on the node

The path for local storage for each user is 

/raid/local-data/<your-username>

You can mount it as a hostPath, but have to make sure that the directory is created if it does not exist, by specifying "type: DirectoryOrCreate".

The data will remain persistent on the host, but note that it also only exists on this particular host. If you need to access it again, you need to make sure the pod always ends up on the same specific node. See example below. Otherwise, write your scripts in such a way that they check for existence of the local data, and if it is not there yet, copy it over from somewhere on the internet.

In contrast to Ceph storage, local paths on the hosts are not backed up. You have been warned.

Example

The following example creates an access pod on the compute node "tiamat" which mounts the local storage as well as all your personal directories in the ceph file system: 

apiVersion: v1
kind: Pod
metadata:
  name: storage-access-pod-tiamat
spec:
  nodeSelector:
    kubernetes.io/hostname: tiamat

  containers:
  - name: ubuntu
    image: ubuntu:20.04
    command: ["sleep", "1d"]
    resources:
      requests:
        cpu: 100m
        memory: 100Mi
      limits:
        cpu: 1
        memory: 1Gi
    volumeMounts:
      - mountPath: /abyss/home
        name: cephfs-home
        readOnly: false
      - mountPath: /abyss/shared
        name: cephfs-shared
        readOnly: false
      - mountPath: /abyss/datasets
        name: cephfs-datasets
        readOnly: true
      - mountPath: /local
        name: local-storage
        readOnly: false
  volumes:
    - name: cephfs-home
      hostPath:
        path: "/cephfs/abyss/home/<your-username>"
        type: Directory
    - name: cephfs-shared
      hostPath:
        path: "/cephfs/abyss/shared"
        type: Directory
    - name: cephfs-datasets
      hostPath:
        path: "/cephfs/abyss/datasets"
        type: Directory
    - name: local-storage
      hostPath:
        path: "/raid/local-data/<your-username>"
        type: DirectoryOrCreate

Reading/writing to the directories in the pod

After you have created the access pod with "kubectl apply -f <filename>.yaml", you have several options to get data to and from the container.

Copying data from within the container

You can get a root shell inside the container as usual (insert the correct pod name you used below): 

> kubectl exec -it access-pod -- /bin/bash

Your pod has internet access. Thus, an option to get data to/from the pod, in particular into the persistent volume, is to use scp, which first might need to be installed inside the pod: 

# apt-get update && apt install openssh-client rsync
# cd /my-pvc-mount-path
# scp your.username@external-server:/path/to/data/. ./

An even better variant would be "rsync -av" instead of scp, as this only copies files which are different or do not exist in the destination. By reversing source and destination, you can also copy data out of the container this way.

Copying data from your local machine

From the local machine which has kubectl access to the cluster, you can directly copy data to and from the container using kubectl cp, which has a very similar syntax as scp: 

# to get data into the container, substitute name with correct id obtained from kubectl get pods
> kubectl cp /path/to/data/. pvc-access-pod:/my-pvc-mount/path/data
# to get data from the container
> kubectl cp pvc-access-pod:/my-pvc-mount/path/. /path/to/output/

Read up on Kubernetes "kubectl cp" documentation to check how it handles directories, it's a bit unusual and slightly different from scp.

Note: kubectl cp internally uses tar and some compression to speed up network transfer. However, this means that your access pod needs a certain amount of memory, in particular when transferring large files. If you run into "error 137" (out of memory), increase memory limits of the access pod or use scp from within the pod.

Retrieved from "https://ccu.uni-konstanz.de:443/w/index.php?title=CCU:Perstistent_storage_on_the_Kubernetes_cluster&oldid=973"