🔭🐋 whalewatcher is a Go module that relieves applications from the tedious
task of constantly monitoring "alive" container workloads: no need to watching
boring event streams or alternatively polling to have the accurate picture.
Never worry about how you have to properly synchronize to a changing workload at
startup, this is all taken care of for you by whalewatcher.
Instead, using whalewatcher your application simply asks for the current state
of affairs at any time when it needs to do so. The workload state then is
directly answered from whalewatcher's trackers without causing container
engine load: which containers are alive right now? And what composer projects
are in use?
Alternatively, your application can also consume workload lifecycle events
provided by whalewatcher. The benefit of using whalewatcher instead of the
plain Docker API is that you get the initial synchronization done properly that
will emit container workload (fake) start events, so you always get the correct
current picture.
Oh, whalewatcher isn't limited to just Docker, it also supports other
container engines, namely plain containerd, any CRI+event PLEG supporting
engines (containerd, cri-o), and finally podmand. For podman, read carefully the
notes below.
This module watches Docker and plain containerd containers becoming "alive" with
processes and later die, keeping track of only the "alive" containers. On
purpose, whalewatcher focuses solely on running and paused containers, so
those only that have at least an initial container process running (and thus a
PID).
Thus, use cases for whalewatcher are container-aware tools that seemingly
randomly need the current state of affairs for all running containers – such as
lxkns. These tools themselves now don't
need anymore to do the ugly lifting of container engine event tracking, engine
state resynchronization after reconnects, et cetera. Here, the whalewatcher
module reduces system load especially when state is requested in bursts, as it
offers a load-optimized kind of "cache". Yet this cache is always closely
synchronized to the container engine state.
ℹ️ This module now optionally supports receiving container lifecycle events by requesting a lifecycle event stream from a
watcher.Watcher. Only the lifecycle events are supported for when a container becomes alive or exists, or it pauses or unpauses.
- tracks container information with respect to a container's ID/name, PID,
labels, (un)pausing state, and optional (composer) project. See the
whalewatcher.Containertype for details. - two APIs available:
- query workload situation on demand.
- workload lifecycle events.
- supports multiple types of container engines:
- Docker/Moby.
- plain containerd using containerd's native API.
- cri-o and containerd via the generic CRI pod event API. In principle, other container engines implementing the CRI pod event API should also work:
- sandbox container lifecycle events must be reported and not suppressed.
- sandbox and container PIDs must be reported by the verbose variant of the container status API call in the PID field of the JSON info object.
- Podman:
- you will have to use the Docker/Moby watcher.
- Due to several serious unfixed issues we're not supporting Podman's own API any longer and have archived the sealwatcher experiment. More background information can be found in alias podman=p.o.'d.man. To paraphrase the podman project's answer: if you need a stable API, use the Docker API. Got that.
- composer project-aware:
- optional configurable automatic retries using backoffs (with different strategies as supported by the external backoff module).
- documentation ... please see:
Depending on your use case, you might want to use
@siemens/turtlefinder: it
autodetects the different container engines and then starts the required whale
watchers. The turtlefinder additionally detects container engines inside
containers, and it can also discover and kick the multiple socket-activated
podman daemons for system, users, etc. into life.
From example/main.go: this example starts a watcher for the host's Docker (or
podman) daemon, using the /run/docker.sock API endpoint. In this example, we
first wait for the initial synchronization to finish, and afterwards print the
container workload. Please note that only workload with running/paused
containers is shown – that is, the containers with processes.
package main
import (
"context"
"fmt"
"sort"
"github.com/thediveo/whalewatcher/watcher/moby"
)
func main() {
// connect to the Docker engine; configure no backoff.
whalewatcher, err := moby.New("unix:///run/docker.sock", nil)
if err != nil {
panic(err)
}
ctx, cancel := context.WithCancel(context.Background())
fmt.Printf("watching engine ID: %s\n", whalewatcher.ID(ctx))
// run the watch in a separate go routine.
done := make(chan struct{})
go func() {
if err := whalewatcher.Watch(ctx); ctx.Err() != context.Canceled {
panic(err)
}
close(done)
}()
// depending on application you don't need to wait for the first results to
// become ready; in this example we want to wait for results.
<-whalewatcher.Ready()
// get list of projects; we add the unnamed "" project which automatically
// contains all non-project (standalone) containers.
projectnames := append(whalewatcher.Portfolio().Names(), "")
sort.Strings(projectnames)
for _, projectname := range projectnames {
containers := whalewatcher.Portfolio().Project(projectname)
if containers == nil {
continue // doh ... gone!
}
fmt.Printf("project %q:\n", projectname)
for _, container := range containers.Containers() {
fmt.Printf(" container %q with PID %d\n", container.Name, container.PID)
}
fmt.Println()
}
// finally stop the watch
cancel()
<-done
whalewatcher.Close()
}Do yourself a favor, tinker with this Go module in a devcontainer; this gives you a controlled and somewhat isolated environment.
Caution
Do not use VSCode's "Dev Containers: Clone Repository in Container
Volume" command, as it is utterly broken by design, ignoring
.devcontainer/devcontainer.json.
git clone https://github.com/thediveo/irks- in VSCode: Ctrl+Shift+P, "Dev Containers: Open Workspace in Container..."
- select
irks.code-workspaceand off you go...
Please see CONTRIBUTING.md.
whalewatcher is Copyright 2021, 2024 Harald Albrecht, licensed under the
Apache License, Version 2.0.