Add support for an embedded NATS server #158
Conversation
|
@brandond Just an FYI that I will be a pushing a few more commits, refactoring the code, simplifying it, and adding tests where appropriate. One question I did have was whether the CI that runs is the canonical/sufficient test suite that changes need to be tested against? Also one heads up is that I saw there was indeed a failure (which I am fixing) in the CI, but it still shows the CI passed: https://drone-pr.k3s.io/k3s-io/kine/147/1/3 |
|
Sorry, one more question. There are various log statements being emitted within the NATS driver. Is there any policy/best practice recommended for logging given it will be embedded within k3s? |
Are you still working on this?
The CI is sufficient to confirm that it works with K3s, but our QA will still want to do a full set of tests on it when we update the Kine that is embedded in K3s itself.
Don't be overly chatty to the point where it obscures the K3s logs. Also keep in mind that K3s will never set the log level to TRACE, so if you ever want to see TRACE-level logs you'll need to run it standalone.
For the build flag, I would like to see the NATS server stuff stubbed out so that it just returns an error if someone attempts to use the embedded server when it's not built in. All of the related code should use the build flag to ensure that we're not pulling in any extra modules when it's not enabled. I'm not sure we'll want to enable the embedded server in K3s, as 7MB is a non-trivial addition to the binary size. |
|
Thanks for the response @brandond.
Absolutely. I paused after the hackathon due to other priorities as well as wanting answers to these questions so I didn't go down a wrong path for the contribution.
Ok. I will assume if the CI passes, that will be sufficient to then move onto the QA review and we can address more issues there.
Understood, thanks.
Will address, thanks. |
|
Just checking that I have picked up on this again and will have updates by tomorrow (Friday). |
There was a problem hiding this comment.
I paused my refactoring efforts and will put those into a subsequent PR. I will likely manifest as a rewrite of the backend to be more optimized.
The scope of this PR is now some config cleanup and additions, minor name changes for clarity (should be non-breaking, the existing kine URLs format/params are the same), and supporting an embedded server including a further opt-in for a pure socket between the client and server (no TCP). This would only be suitable for a single node deployment.
scripts/test-run-nats-embedded
Outdated
| start-test() { | ||
| local ip=$(cat $TEST_DIR/databases/*/metadata/ip) | ||
| local port=$(cat $TEST_DIR/databases/*/metadata/port) | ||
| KINE_IMAGE=$IMAGE KINE_ENDPOINT="nats://$ip:$port?embedServer" provision-kine |
There was a problem hiding this comment.
So just to be clear, the way to use this is to start kine with a nats:// scheme datastore endpoint with the embedServer URI parameter set?
What do I get if I just do nats://, as you can do with sqlite to get a default local database?
Can you also do something like nats://127.0.0.1?embedServer? If so, what port does it use?
If I set the dontListen option when using the embedded server, are the address and port still required, or can I just do nats://?embedServer&dontListen?
Can you add some examples that cover these different possibilities to a new markdown file in the examples directory?
There was a problem hiding this comment.
Those are correct. There are default values, such as port 4222 and the dontListen example is also valid. I added some comments to the backend code, but will add examples.
There was a problem hiding this comment.
just adding myself as i want to try this out when the PR is merged..
There was a problem hiding this comment.
Added an examples doc with more information.
examples/nats.md
Outdated
|
|
||
| - `nats://?embedServer` | ||
| - `nats://?embedServer&serverConfig=/path/to/server.conf` | ||
| - `nats://?embedServer&dontListen` |
There was a problem hiding this comment.
Thanks for adding docs!
Could you expand a bit on this bit:
- Why would someone want to use the
dontListenoption? - What's the default listen address and port?
- If it does listen, can other nodes connect to this node as the external NATS URL?
There was a problem hiding this comment.
I can add to the doc, but will explain here first for context. We have had NATS users who need to embed the server and their environment is constrained to only exposing a controlled or limited set of ports. So they take advantage of using this non-TCP approach to establishing a connection between a local client and server in the same process.
There was a problem hiding this comment.
sure that makes sense. I guess my question is, what is listening useful for? If you can't connect from another node when using the embedded server, why listen at all?
There was a problem hiding this comment.
Right, this would only be useful in a single node setup embedded k3s -> kine -> nats.. which may be very niche, but an option.
The more common setup is embedded that does listen and can cluster and/or be configured for specialized setups (the two-node use case I helped work on during the SUSE Hackathon for instance). The specialized setup will require additional opt-in custom code for NATS, but will enable for active-passive or active-active setups.
There was a problem hiding this comment.
Hey @bruth
what is the embedded nats can be optionally put in leaf node and paired with a global nats cluster ?
Then maybe devs can have their cake and eat it too:
either run in embedded standalone mode
OR
run in embedded leaf mode paired up to a global nats cluster like Synadia etc .
is this a sensible option I wonder ?
There was a problem hiding this comment.
Yes you could configure it that way by passing a config file that declares the leafnodes block pointing to leaf node host. Other than the single KV bucket used in the backend, none of the other NATS capabilities are used. However, if you had a reason to mirror that KV back up to the hub cluster or even another leaf, that could definitely be done.
I have not tried it, but in theory you could have a read-only clone of another k3s+kine instance that uses a mirror of another instance. The second instance would receive all the KV changes over time (since its a stream under the hood) so the other k3s instance would mirror the same state (albeit lagging a tad since the replication is asynchronous).
There was a problem hiding this comment.
Yes you could configure it that way by passing a config file that declares the
leafnodesblock pointing to leaf node host. Other than the single KV bucket used in the backend, none of the other NATS capabilities are used. However, if you had a reason to mirror that KV back up to the hub cluster or even another leaf, that could definitely be done.I have not tried it, but in theory you could have a read-only clone of another k3s+kine instance that uses a mirror of another instance. The second instance would receive all the KV changes over time (since its a stream under the hood) so the other k3s instance would mirror the same state (albeit lagging a tad since the replication is asynchronous).
So then no need for NATS cluster because Kine in nats mirror mode is a cluster.. have i got it right ?
There was a problem hiding this comment.
Assuming I understand correctly, if you wanted three kine instances with embedded nats, they could be clustered together via nats. If you wanted a kine instance/cluster hosting a mirror from another instance/cluster that is fine to.
The cluster is only necessary for the HA/FT, but you could have a single instance origin and single instance mirror if desired.
|
I will rebase for the Go deps. |
bruth
force-pushed
the
embedded-nats
branch
3 times, most recently
from
2914803 to
b4b47db
Compare
Signed-off-by: Byron Ruth <[email protected]>
Rename various identifiers to NATS rather than JetStream, which is a subsystem of NATS. Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
This reverts commit e22b756. Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Signed-off-by: Byron Ruth <[email protected]>
Co-authored-by: Brad Davidson <[email protected]> Signed-off-by: Byron Ruth <[email protected]>
Co-authored-by: Brad Davidson <[email protected]> Signed-off-by: Byron Ruth <[email protected]>
|
I did a quick test of K3s with the nats server built in an it's actually not too terrible; it adds just over 1MiB to the shipping binary size. I did notice that even when running with brandond@dev01:~/go/src/github.com/k3s-io/k3s$ k3s server --token=token '--datastore-endpoint=nats://?embedServer&dontListen'
INFO[0000] Starting k3s v1.27.1+k3s-3988142f (3988142f)
INFO[0000] using an embedded NATS server
INFO[0000] started embedded NATS server
INFO[0000] using bucket: kine
INFO[0000] connecting to nats://0.0.0.0:4222
INFO[0000] Kine available at unix://kine.sock
|
|
^Hrm.. will check out why it is still listening or reporting as such. |
Fix log line for embedded. Signed-off-by: Byron Ruth <[email protected]>
|
Confirmed it was a misplaced log line, but does not actually listen. |
|
@brandond If you are considering NATS can be built-in by default without requiring a build tag, then that may change the configuration design. Let me know either way and will update the code/docs to acknowledge that. |
I'm not sure what you mean by this, but I am assuming you're talking about building K3s with or without the build tag to enable the embedded server? I haven't run it by the rest of the team and our PM on the K3s side just yet. I think for Kine itself we can document it as available since we'll ship it that way in the release artifacts. Since the binary size impact for k3s is not terrible I think it should be doable over there as well. |
Signed-off-by: Byron Ruth <[email protected]>
|
I updated the example doc and decided to use the |
Signed-off-by: Byron Ruth <[email protected]>
|
Ah, got it - so without the embedded server, the host:port are taken to be the address of an external server, and with it, they are the address to bind to? |
|
Yes, correct. |
|
Feel free to squash merge and keep the issue title. Thank you! |
|
I appreciate the review and support! |
* Add support for an embedded NATS server * Put embedded server behind build flag Rename various identifiers to NATS rather than JetStream, which is a subsystem of NATS. * Refactoring * Update NATS versions and add embedded test * Add nats build tag for tests * Support embedded socket connection * Update to NATS v2.9.16 * Remove unused variables * Add backend "jetstream://" URI support * Remove override of port * Add examples doc * Remove IP and port * Fix whitespace * Default to embedded it available Fix log line for embedded. * Change to use noEmbed to disable embedding * Fix test script and update to 2.9.16 Signed-off-by: Byron Ruth <[email protected]> Co-authored-by: Brad Davidson <[email protected]> Signed-off-by: zhiyuan <[email protected]>
No description provided.