Page MenuHomePhabricator
Create Task
Maniphest T288247

SPIKE - Will Hadoop 3 container support help us for Airflow deployment pipelines?
Open, Needs TriagePublic
Actions

Description

Hadoop 3 supports running Docker containers.

  • Can Airflow use it to launch jobs in Hadoop?

Related Objects
Search...

Event Timeline

Ottomata created this task.Aug 5 2021, 2:47 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 5 2021, 2:47 PM
Ottomata added a parent task: T282033: Airflow collaborations.Aug 5 2021, 2:48 PM
odimitrijevic added a project: Data-Engineering.Aug 5 2021, 3:16 PM
odimitrijevic moved this task from Incoming (new tickets) to Ops Week on the Data-Engineering board.Aug 12 2021, 4:36 PM
BTullis subscribed.Aug 12 2021, 6:42 PM
odimitrijevic moved this task from Incoming to Operational Excellence on the Analytics board.Aug 20 2021, 8:29 PM
odimitrijevic added a comment.Sep 9 2021, 4:52 PM

Container support has been backported to the version that we are using - 2.10

JAllemandou subscribed.Sep 10 2021, 9:53 AM

From scanning quickly through the docs, it seems this would require Docker to be installed on nodemanagers.

Ottomata added a comment.Sep 23 2021, 8:38 PM

Also

Docker Container Executor runs in non-secure mode of HDFS and YARN. It will not run in secure mode, and will exit if it detects secure mode.

https://hadoop.apache.org/docs/r2.7.2/hadoop-yarn/hadoop-yarn-site/DockerContainerExecutor.html

Secure mode == kerberos.

So,

Can we do it?

I think not :/

Ottomata added a project: Analytics-Kanban.Sep 23 2021, 8:39 PM
Ottomata moved this task from Next Up to Done on the Analytics-Kanban board.
mforns added a comment.EditedSep 24 2021, 2:29 PM

OK, thanks for looking into this!

Ottomata closed this task as Resolved.Oct 21 2021, 5:18 PM
mforns reopened this task as Open.Oct 22 2021, 3:54 PM

Reopening this as we discovered: https://docs.docker.com/engine/security/rootless/

Ottomata closed this task as Resolved.Oct 25 2021, 1:20 PM

It won't work for our Hadoop YARN setup though, we'll still encounter the Kerberos barrier. Rootless docker MAY make it possible to run docker outside of Hadoop YARN though.

Ottomata reopened this task as Open.Dec 2 2021, 2:49 PM

Perhaps hadoop 3 can do this with kerberos?

https://docs.cloudera.com/HDPDocuments/HDP3/HDP-3.1.0/data-operating-system/content/configure_yarn_for_running_docker_containers.html

Kerberos configurations are recommended for production

I can't find any docs on how this would work. But it may be worth investigating given https://phabricator.wikimedia.org/T296543#7538145

Reopening for now to discuss more.

Ottomata moved this task from Operational Excellence to Incoming on the Analytics board.Dec 2 2021, 2:50 PM
Ottomata added a project: Data Pipelines.
odimitrijevic removed a project: Analytics.Jan 12 2022, 12:29 AM
EChetty moved this task from Backlog to Discussed (Radar) on the Data Pipelines board.Sep 6 2022, 10:11 AM
JArguello-WMF moved this task from Ops Week to Event Platform Backlog on the Data-Engineering board.Jun 29 2023, 11:04 PM
JArguello-WMF edited projects, added Data Engineering and Event Platform Team; removed Data Pipelines.Jun 30 2023, 5:43 PM
JArguello-WMF moved this task from Data Eng Backlog to Radar (External Teams) on the Data Engineering and Event Platform Team board.
BTullis edited projects, added Data-Platform-SRE; removed Analytics-Kanban.Jul 15 2023, 12:10 AM
Gehel moved this task from Incoming to Watching on the Data-Platform-SRE board.Oct 18 2023, 8:47 AM
lbowmaker removed a project: Data Engineering and Event Platform Team.Nov 10 2023, 2:22 PM
lbowmaker moved this task from Event Platform Backlog to Radar (External Teams) on the Data-Engineering board.
Aklapper removed Ottomata as the assignee of this task.Nov 21 2023, 8:20 AM

@Ottomata: Per emails from Sep18 and Oct20 and https://www.mediawiki.org/wiki/Bug_management/Assignee_cleanup , I am resetting the assignee of this task because there has not been progress lately (please correct me if I am wrong!). Resetting the assignee avoids the impression that somebody is already working on this task. It also allows others to potentially work towards fixing this task. Please claim this task again when you plan to work on it (via Add Action...Assign / Claim in the dropdown menu) - it would be welcome. Thanks for your understanding!

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL