Long running services are are processes that are expected to run continuously and usually have the same process id throughout. PaaSTA uses Marathon to configure how these services should run.
These services often serve network traffic, usually HTTP. PaaSTA integrates with SmartStack to make it easy for others to discover these long running services, or operators can use alternative service discovery methods to interact with them.
Alternative names: workers, daemons, batch daemons, servers
Scheduled tasks are those tasks that are periodically run, and are not expected to run continously. Due to their ephemeral nature, they often do not expose a TCP port.
PaaSTA uses Chronos to define the command these scheduled jobs should execute, as well as their RAM, CPU, environment variables, etc.
Alternative names: scheduled tasks, scheduled batches, cron jobs (Note: Chronos does not support cron-syntax)
Adhoc tasks are often required to support one-time tasks, like a database migration.
Sometimes they are also useful for exploritory purposes, or even sometimes for end-to-end
tests. PaaSTA supports this use case through paasta local-run, which supports
building images locally, as well as using the same image as a "live" deployment.
Alternative names: Adhoc batches, interactive batches, one-off dynos, one-off tasks
soa-configs are used to centrally configure services. See the documentation for
soa-configs for more information on what these are.
The Paasta Contract describes the responsibilities of services that wish to work with PaaSTA.
paasta_tools contains the implementation of several of these rules. For example, generate_deployments_for_service is the piece that checks each service's git repo for the specially-named branch that tells PaaSTA which versions of the service should go to which clusters.
A yelpsoa-configs master runs generate_deployments_for_service
frequently. The generated deployments.json appears in /nail/etc/services/service_name throughout the cluster.
Marathon masters run deploy_marathon_services,
a thin wrapper around setup_marathon_job.
These scripts parse deployments.json and the current cluster state,
then issue comands to Marathon to put the cluster into the right state
-- cluster X should be running version Y of service Z.
Marathon launches the Docker containers that comprise a PaaSTA service.
Docker images are run by Mesos's native Docker executor. PaaSTA composes the configuration for the running image:
--attach: stdout and stderr from running images are sent to logs that end up in the Mesos sandbox (currently unavailable).--cpu-shares: This is the value set inmarathon.yamlas "cpus".--memory: This is the value set inmarathon.yamlas "mem".--net: PaaSTA uses bridge mode to enable random port allocation.--env: Any environment variables specified in theenvsection will be here. AdditionalPAASTA_environment variables will also be injected, see the related docs for more information.--publish: Mesos picks a random port on the host that maps to and exposes port 8888 inside the container. This random port is announced to Smartstack so that it can be used for load balancing.--privileged: Containers run by PaaSTA are not privileged.--restart: No restart policy is set on PaaSTA containers. Restarting tasks is left as a job for the Framework (Marathon).--rm: Mesos containers are rm'd after they finish.--tty: Mesos containers are not given a tty.--volume: Volume mapping is controlled via the paasta_tools configuration. PaaSTA uses the volumes declared in/etc/paasta/volumes.jsonas well as per-service volumes declared inextra_volumesdeclared in the soa-configs.--workdir: Mesos containers are launched in a temporary "workspace" directory on disk. Use the workdir sparingly and try not to output files.
Mesos is the actual system that runs the docker images. In Mesos land these are called "TASKS". PaaSTA-configured tasks use exponential backoff to prevent unhealthy tasks from continuously filling up disks and logs -- the more times that your service has failed to start, the longer Mesos will wait before trying to start it again.
Mesos will healthcheck the task based on the same healthcheck that SmartStack uses, in order to prune unhealthy tasks. This pruning is less aggressive than SmartStack's checking, so a dead task will go DOWN in SmartStack before it is reaped by Marathon. By default the healthchecks occur every 10 seconds, and a service must fail 30 times before that task is pruned and a new one is launched in its place. This means a task had 5 minutes by default to properly respond to its healthchecks.
Docker containers launched by PaaSTA have whatever time zone is set by the Dockerfile. If it is not set, the default is the Linux default, UTC.
Some code makes assumptions about the underlying time zone a server is in. In such a situation the time zone should be explicitly set in the Dockerfile. For example, this line can be placed in a Dockerfile to set the container to run in US Pacific time:
RUN ln -fs /usr/share/zoneinfo/US/Pacific /etc/localtime
Warning: Forcing a time zone like this is not advised, as Docker containers could potentially be launched in many geographic locations. Ideally code should not make assumptions about the local time zone setting of a server.
PaaSTA supports pluggable bounce_methods to give service authors a choice on how to handle the transition between new and old versions of as service.
There are four bounce methods available:
- brutal - Stops old versions and starts the new version, without regard to safety. Not recommended for most use cases; it's mostly for debugging, but this is probably the fastest bounce method.
- upthendown - Brings up the new version of the service and waits until all instances are healthy before stopping the old versions. May be useful for services that need a quorum of the new version. During a bounce, your service will have up to twice as many instances running, so it will up to twice as many cluster resources as usual.
- downthenup - Stops any old versions and waits for them to die before starting the new version. May be useful for services without strict uptime requirements (log tailers, queue workers) that do not want more than one version running at a time.
- crossover - Starts the new
version, and gradually kills instances of the old versions as new instances
become healthy. The code behind this is more complex than the other methods,
but this is recommended for most use cases. It provides good safety (will not
take your old instances down if your new version doesn't pass healthchecks)
but does not consume as many resources as
upthendown.
A service author can select a bounce method by setting bounce_method in
the marathon configuration file. (e.g. marathon-SHARED.yaml) This setting
is set per-instance. If not set, it will default to the crossover method.
See the docs on the marathon config file.
Additionally, a service author can configure how the bounce code determines
which instances are healthy by setting bounce_health_params. This
dictionary is passed in as keyword arguments to get_happy_tasks.
Valid options are:
min_task_uptime: Minimum number of seconds that a task must be running before we consider it healthy. Useful if tasks take a while to start up.check_haproxy: Whether to check the local haproxy to make sure this task has been registered and discovered.
PaaSTA gives you a few Sensu-powered monitoring checks for free:
- setup_marathon_job: Alerts when a Marathon service cannot be deployed or bounced for some reason. It will resolve when a service has been successfully deployed/bounced.
- check_marathon_services_replication: runs periodically and sends an alert if fewer than 50% of the requested instances are deployed on a cluster. If the service is registered in Smartstack it will look in Smartstack to count the available instances. Otherwise it counts the number of healthy tasks in Mesos.