Jump to: navigation, search

Difference between revisions of "ImageNotes"

(talk)
(Adding ImageNotes)
 
m (Text replace - "__NOTOC__" to "")
 
(2 intermediate revisions by 2 users not shown)
Line 1: Line 1:
__NOTOC__
 
  
<pre><nowiki>
+
= Nova Image Notes =
  
Nova Notes Real
+
== Image Implementation In a Nutshell ==
===============
 
  
Image Implementation In a Nutshell
+
The system currently provides two backends for retrieving images:
  
The system currently provides two backends for retrieving images:
+
* Node-local Store (my term) - A directory on the node where images
   
 
    * Node-local Store (my term) - A directory on the node where images
 
 
       reside. Images in node-local storage should already in raw format (not
 
       reside. Images in node-local storage should already in raw format (not
 
       AMI)
 
       AMI)
  
    * S3 Object Store - Currently this is an fake which provides an S3 ReST
+
* S3 Object Store - Currently this is an fake which provides an S3 ReST
 
       interface to the filesystem
 
       interface to the filesystem
  
Line 24: Line 20:
 
bucket is:
 
bucket is:
  
    * The encrypted AMI
+
* The encrypted AMI
    * A JSON manifest (containing the decryption keys)
+
* A JSON manifest (containing the decryption keys)
  
 
The Image is Registered by calling endpoints/node.py/register() which in turn
 
The Image is Registered by calling endpoints/node.py/register() which in turn
 
issues a PUT request to the object store. Contained within the PUT request is:
 
issues a PUT request to the object store. Contained within the PUT request is:
  
    * Image Location: account and bucket for the image
+
* Image Location: account and bucket for the image
    * Image ID: unique identifier
+
* Image ID: unique identifier
  
The S3-ObjectStore handler (objectstore/handler.py) receives the PUT request
+
The S3-[[ObjectStore]] handler (objectstore/handler.py) receives the PUT request
 
and forks of a process to continue the registration process (Image.create
 
and forks of a process to continue the registration process (Image.create
 
found in objectstore/image.py) which includes:
 
found in objectstore/image.py) which includes:
  
    * Fetching the image from Image Location
+
* Fetching the image from Image Location
    * Decrypting the Image using the keys provided by the manifest
+
* Decrypting the Image using the keys provided by the manifest
    * Untarring the AMI contents
+
* Untarring the AMI contents
    * Moving the Image to the destination directory for serving using the ReST
+
* Moving the Image to the destination directory for serving using the ReST
 
       API
 
       API
  
Line 54: Line 50:
 
API/objectstore) think of images as having a type:
 
API/objectstore) think of images as having a type:
  
    * Kernel
+
* Kernel
    * Ramdisk
+
* Ramdisk
    * Image
+
* Image
  
 
So, in order spawn a VM Nova you really need to specify *three* images, one of
 
So, in order spawn a VM Nova you really need to specify *three* images, one of
 
each type.
 
each type.
  
 +
== What the Implementation Gets Right ==
  
What the Implementation Gets Right
+
* The Node-local Store - useful for testing and debugging, plus, could be
 
 
    * The Node-local Store - useful for testing and debugging, plus, could be
 
 
       useful for OPs teams when the system goes live
 
       useful for OPs teams when the system goes live
  
    * Separates the Image API (register/deregister) from Instance API
+
* Separates the Image API (register/deregister) from Instance API
 
       (create/detroy VMS)
 
       (create/detroy VMS)
  
    * Using fakes for the backends of the object stores.
+
* Using fakes for the backends of the object stores.
 
 
  
Where the Implemenation Needs Work
+
== Where the Implemenation Needs Work ==
  
    * Registering AMI hits disk at least 3 times (fetch, decrypt, untar). For
+
* Registering AMI hits disk at least 3 times (fetch, decrypt, untar). For
 
       large images this could be painful.  
 
       large images this could be painful.  
  
    * The Image registraion API is missing key features (image sharing,
+
* The Image registraion API is missing key features (image sharing,
 
       metadata, etc)
 
       metadata, etc)
  
What the Implmentation Gets Wrong
+
== What the Implmentation Gets Wrong ==
  
    * Amazon-stack specific: The Image API is coupled to S3 for the object
+
* Amazon-stack specific: The Image API is coupled to S3 for the object
 
       store and AMI's as the image format
 
       store and AMI's as the image format
  
    * No Caching - each Spawn would require a fetch from Image API
+
* No Caching - each Spawn would require a fetch from Image API
 
+
* Does not use OVF container - some of the JSON manifest data would make
    * Does not use OVF container - some of the JSON manifest data would make
 
 
       sense in the manifest.ovf file (others parts would not)
 
       sense in the manifest.ovf file (others parts would not)
  
    * Conflates two different types of metadata: Image metadata which
+
* Conflates two different types of metadata: Image metadata which
 
       describes the VM (architecture, etc) versus Image metadata which
 
       describes the VM (architecture, etc) versus Image metadata which
 
       describes the Image itself (isPublic, isShared, image location). I would
 
       describes the Image itself (isPublic, isShared, image location). I would
Line 98: Line 91:
 
       make sense *outside* of our system.
 
       make sense *outside* of our system.
  
Ideas for Improvement
+
== Ideas for Improvement ==
=====================
 
  
 
* Use Pyfilesystem to store Images. This would provide support for:
 
* Use Pyfilesystem to store Images. This would provide support for:
    - S3
+
** S3
    - CloudFiles (once the plugin is written, I'm working on that now)
+
** [[CloudFiles]] (once the plugin is written, I'm working on that now)
    - Local disk storage
+
** Local disk storage
    - Memory storage (this could be great for unit-testing)
+
** Memory storage (this could be great for unit-testing)
 
 
 
* Add a caching layer. This could be:
 
* Add a caching layer. This could be:
    - A separate caching utility
+
** A separate caching utility
    - Part of Pyfilesystems caching layer
+
** Part of Pyfilesystems caching layer
    - Some combination of both
+
** Some combination of both
 
 
 
* Create robust Image registry. This would:
 
* Create robust Image registry. This would:
    - Backed by Cassandra or Redis
+
** Backed by Cassandra or Redis
    - Support an API for sharing images
+
** Support an API for sharing images
    - Support metadata on Image Registry entry in addition to metadata stored
+
** Support metadata on Image Registry entry in addition to metadata stored
 
       within OVF container
 
       within OVF container
  
Style-notes
+
* There is no need to fetch Images from external storage, if network distributed filesystem ([http://glusterfs.org/ GlusterFS]) or over the network block device ([http://nbd.sourceforge.net/ NBD] or [http://www.osrg.net/sheepdog/ SheepDog]) is used. It would be nice to support also those solutions (at least by friendly architecture, so they can be developed by 3rd party).
===========
 
  
 +
== Style-notes ==
  
 
* Staticmethods everywhere - just make sure staticmethods make sense here
 
* Staticmethods everywhere - just make sure staticmethods make sense here
Line 126: Line 116:
 
* Remove pyc from source tree
 
* Remove pyc from source tree
 
* multiprocessing + uuid4 may cause issues (dup uuids if not careful)
 
* multiprocessing + uuid4 may cause issues (dup uuids if not careful)
 
</nowiki></pre>
 

Latest revision as of 23:29, 17 February 2013

Nova Image Notes

Image Implementation In a Nutshell

The system currently provides two backends for retrieving images:

  • Node-local Store (my term) - A directory on the node where images
     reside. Images in node-local storage should already in raw format (not
     AMI)
  • S3 Object Store - Currently this is an fake which provides an S3 ReST
     interface to the filesystem

The Node-local Store appears to be a convenience for testing and perhaps for use by an Ops team when it goes live, whereas, S3 provides a registration mechanism (with hints at Image sharing) that would be exposed to customers.

An Unregistered Image is mapped to a bucket in the S3 object store. Within the bucket is:

  • The encrypted AMI
  • A JSON manifest (containing the decryption keys)

The Image is Registered by calling endpoints/node.py/register() which in turn issues a PUT request to the object store. Contained within the PUT request is:

  • Image Location: account and bucket for the image
  • Image ID: unique identifier

The S3-ObjectStore handler (objectstore/handler.py) receives the PUT request and forks of a process to continue the registration process (Image.create found in objectstore/image.py) which includes:

  • Fetching the image from Image Location
  • Decrypting the Image using the keys provided by the manifest
  • Untarring the AMI contents
  • Moving the Image to the destination directory for serving using the ReST
     API

The state of the Image is contained with the JSON manifest which is updated as the image progresses through the unpacking process. Eventually the image reaches the 'available' status and is said to be 'registered'.

Now that the image is registered, the spawn method of compute/node.py can use curl to fetch the image from the objectstore (util.fetchfile) to instantiate a new VM.

It should be noted both the consumer (node.py) and the provider (Image API/objectstore) think of images as having a type:

  • Kernel
  • Ramdisk
  • Image

So, in order spawn a VM Nova you really need to specify *three* images, one of each type.

What the Implementation Gets Right

  • The Node-local Store - useful for testing and debugging, plus, could be
     useful for OPs teams when the system goes live
  • Separates the Image API (register/deregister) from Instance API
     (create/detroy VMS)
  • Using fakes for the backends of the object stores.

Where the Implemenation Needs Work

  • Registering AMI hits disk at least 3 times (fetch, decrypt, untar). For
     large images this could be painful.
  • The Image registraion API is missing key features (image sharing,
     metadata, etc)

What the Implmentation Gets Wrong

  • Amazon-stack specific: The Image API is coupled to S3 for the object
     store and AMI's as the image format
  • No Caching - each Spawn would require a fetch from Image API
  • Does not use OVF container - some of the JSON manifest data would make
     sense in the manifest.ovf file (others parts would not)
  • Conflates two different types of metadata: Image metadata which
     describes the VM (architecture, etc) versus Image metadata which
     describes the Image itself (isPublic, isShared, image location). I would
     argue that these are fundamentally different and make sense stored in
     two different places. The important question being: does this metadata
     make sense *outside* of our system.

Ideas for Improvement

  • Use Pyfilesystem to store Images. This would provide support for:
    • S3
    • CloudFiles (once the plugin is written, I'm working on that now)
    • Local disk storage
    • Memory storage (this could be great for unit-testing)
  • Add a caching layer. This could be:
    • A separate caching utility
    • Part of Pyfilesystems caching layer
    • Some combination of both
  • Create robust Image registry. This would:
    • Backed by Cassandra or Redis
    • Support an API for sharing images
    • Support metadata on Image Registry entry in addition to metadata stored
     within OVF container
  • There is no need to fetch Images from external storage, if network distributed filesystem (GlusterFS) or over the network block device (NBD or SheepDog) is used. It would be nice to support also those solutions (at least by friendly architecture, so they can be developed by 3rd party).

Style-notes

  • Staticmethods everywhere - just make sure staticmethods make sense here
 (most of the time they don't)
  • Remove pyc from source tree
  • multiprocessing + uuid4 may cause issues (dup uuids if not careful)
Retrieved from "https://wiki.openstack.org/w/index.php?title=ImageNotes&oldid=17037"