Skip to content

Latest commit

 

History

History
125 lines (85 loc) · 5.37 KB

README.md

File metadata and controls

125 lines (85 loc) · 5.37 KB

MacOS: Docker File Sync based on NFS Server

The issue

Docker Desktop on MacOS works on top of HyperKit Virtual Machine.

So, if you would try to map your local folders into a container - it will actually setup network share. Where container will connect to host and do read/write via internal network.

That's the reason, why containers which do a lot of read/write operations is super slow. Yes, here are some workarounds by adding caches, delegations, e.t.c. But it doesn't solve the issue.

Another option is to use Docker-Sync or Mutagen to sync your local folders into a container and back. In this case here could be any create/change conflict issues, delays between sync sessions & extra CPU usage. It's quite hard to debug. Usually devs spent a lot of time, before they will note that files on host & container are different.

We are working much with Magento 2, which could include 5000+ files for single request, so file-sync performance is very important.

Idea

The idea is simple. Instead of using sync tools - why not just use vice-versa NFS file sharing? E.g. Create docker volume on Virtual Machine and share it via NFS. Copy & manage files via NFS.

In this case containers always working with files located on Virtual Machine (no network shares). Developers can change files using NFS by mounting docker volume locally.

Proof of Concept (POC)

Existing docker image used for NFS Server: https://hub.docker.com/r/itsthenetwork/nfs-server-alpine

I have prepared few shell scripts in this repository as POC:

  • initNfsServer.sh

    • This script will start NFS Server (v4) in docker container. Just run it once and NFS server will always run after Docker startup.
    • Custom NFS port is used to avoid any possible conflicts with your host system
    • Tested on MacOS 10.15.7 + Docker Desktop 2.4.0
    • Could be used with Minikube as well. (Tested with VirtualBox driver). In such case host ip = "minikube ip"
  • stopNfsServer.sh

    • Kill & remove nfs container
    • Because of "restart:always" in init script, it is not required to stop/start server manually. Just init once.
  • startShare.sh

    • Dedicated to be run on your host.
    • Script will mount container NFS share to local folder ~/docker-volumes
    • All Docker volumes will be accessible with original permissions - you can use chown/chmod, e.t.c. directly
  • stopShare.sh

    • Unmount active NFS session by path (~/docker-volumes)
  • mobySSH.sh

    • "SSH" to VirtualMachine where docker is working. You can access docker, top, unzip, git, mount, e.t.c. tools under VM file-system. Potentially could be used for fast/quick access to the files if network share by some reason is still slow.
      • Example: Git clone/push/pull directly to VM, to avoid network shares for this.

Usage

Let's check on simplest example. Assuming that I have an nginx container. As a developer, I want to be able to change it's default home page.

So, we need to do next things:

  • Assuming that docker-desktop is installed & working.

  • Run once:

    • sh initNfsServer.sh
  • Run mount script:

    • sh startShare.sh
  • Create needed docker volume:

    • docker volume create nginx-data
  • Run nginx container with our volume

    • docker run --name nginx -p 80:80 -d -v nginx-data:/usr/share/nginx/html nginx:latest
  • Setup permissions to mount folder (only once for parent folder)

    • sudo chmod 777 ~/docker-volumes
  • Setup permissions to docker volume (based on your container's default user/group):

    • Default User/Group ID for nginx container is 101.

      • sudo chown -R 101:101 ~/docker-volumes/nginx-data
      • sudo chgrp -R 101 ~/docker-volumes/nginx-data
      • sudo chmod -R g+s ~/docker-volumes/nginx-data
    • Allow our host OS to work with files as well

      • sudo chmod -R 777 ~/docker-volumes/nginx-data
  • Open PhpStorm and change "index.html" in ~/docker-volumes/nginx-data

  • Visit http://127.0.0.1/ and verify results.

  • In case if your app/container will change permissions during some operations, it might be needed to update permissions manually as shown above.

Kubernetes

If you want to use Kubernetes hostPath persistent volumes, you could use this way as well. Just save your hostPath volume folder as ~/docker-volumes/myVolumeDir.

Then use:

  • hostPath: "/var/lib/docker/volumes/myVolumeDir"

Notes

MacOS has some file-system features which doesn't work well with network shares (e.g. connected via NFS/Samba) :

  • In each network-drive sub-folder, it could create ".DS_Store" file. In order to disable this feature, run:

    • defaults write com.apple.desktopservices DSDontWriteNetworkStores true
  • In case if you will use "finder", unzip or any other mac-specific tool to manage network files - it will create same file with a prefix - "._" (dot underscore).

    • Here is no possibility to disable such files creation.
    • Actually this has deeper meaning for macOS filesystem, but not for NFS.
    • Please note, that PhpStorm, Git, chmod, chown - works fine with network shares and doesn't create ._ files on network drive.
    • If you will copy files from MacOS file-system - "._" files will be created/copied as well.
      • As workaround, use "cp -X" to avoid "._" files creation on NFS share.