zlayer-agent 0.11.3

Container runtime agent using libcontainer/youki
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389

//! Init action orchestration

use crate::error::{AgentError, Result};
use crate::runtime::ContainerId;
use std::time::Duration;
use zlayer_init_actions::InitAction;
use zlayer_spec::{ErrorsSpec, InitFailureAction, InitSpec};

/// Default max retry attempts for init failure policies
const DEFAULT_MAX_INIT_RETRIES: u32 = 3;

/// Backoff configuration for exponential backoff
#[derive(Debug, Clone)]
pub struct BackoffConfig {
    /// Initial delay before first retry
    pub initial_delay: Duration,
    /// Maximum delay between retries
    pub max_delay: Duration,
    /// Multiplier for each subsequent retry
    pub multiplier: f64,
}

impl Default for BackoffConfig {
    fn default() -> Self {
        Self {
            initial_delay: Duration::from_secs(1),
            max_delay: Duration::from_secs(60),
            multiplier: 2.0,
        }
    }
}

impl BackoffConfig {
    /// Calculate the delay for a given retry attempt (0-indexed)
    #[must_use]
    #[allow(clippy::cast_possible_wrap)]
    pub fn delay_for_attempt(&self, attempt: u32) -> Duration {
        let delay_secs = self.initial_delay.as_secs_f64() * self.multiplier.powi(attempt as i32);
        let capped_secs = delay_secs.min(self.max_delay.as_secs_f64());
        Duration::from_secs_f64(capped_secs)
    }
}

/// Orchestrates init actions for a container
pub struct InitOrchestrator {
    id: ContainerId,
    spec: InitSpec,
    /// Error handling policy from the service spec
    error_policy: ErrorsSpec,
    /// Maximum retry attempts for init failure
    max_retries: u32,
    /// Backoff configuration for exponential backoff
    backoff_config: BackoffConfig,
}

impl InitOrchestrator {
    /// Create a new init orchestrator
    #[must_use]
    pub fn new(id: ContainerId, spec: InitSpec) -> Self {
        Self {
            id,
            spec,
            error_policy: ErrorsSpec::default(),
            max_retries: DEFAULT_MAX_INIT_RETRIES,
            backoff_config: BackoffConfig::default(),
        }
    }

    /// Create a new init orchestrator with error policy
    #[must_use]
    pub fn with_error_policy(id: ContainerId, spec: InitSpec, error_policy: ErrorsSpec) -> Self {
        Self {
            id,
            spec,
            error_policy,
            max_retries: DEFAULT_MAX_INIT_RETRIES,
            backoff_config: BackoffConfig::default(),
        }
    }

    /// Set the maximum retry attempts
    #[must_use]
    pub fn with_max_retries(mut self, max_retries: u32) -> Self {
        self.max_retries = max_retries;
        self
    }

    /// Set the backoff configuration
    #[must_use]
    pub fn with_backoff_config(mut self, config: BackoffConfig) -> Self {
        self.backoff_config = config;
        self
    }

    /// Run all init steps with error policy enforcement
    ///
    /// The behavior on init failure depends on the `errors.on_init_failure` policy:
    /// - `Fail` (default): Stop container creation, return error immediately
    /// - `Restart`: Retry init steps (up to `max_retries`) with immediate retry
    /// - `Backoff`: Retry with exponential backoff (1s, 2s, 4s, 8s, max 60s)
    ///
    /// # Errors
    /// Returns an error if init steps fail and the error policy is `Fail` or all retries are exhausted.
    pub async fn run(&self) -> Result<()> {
        match self.error_policy.on_init_failure.action {
            InitFailureAction::Fail => {
                // Fail immediately on any error
                self.run_init_steps().await
            }
            InitFailureAction::Restart => {
                // Retry immediately on failure
                self.run_with_retries(false).await
            }
            InitFailureAction::Backoff => {
                // Retry with exponential backoff
                self.run_with_retries(true).await
            }
        }
    }

    /// Run init steps with retry logic
    async fn run_with_retries(&self, use_backoff: bool) -> Result<()> {
        let mut last_error = None;

        for attempt in 0..=self.max_retries {
            if attempt > 0 {
                let delay = if use_backoff {
                    self.backoff_config.delay_for_attempt(attempt - 1)
                } else {
                    Duration::from_millis(100) // Small delay for immediate retry
                };

                tracing::info!(
                    container = %self.id,
                    attempt = attempt,
                    max_retries = self.max_retries,
                    delay_ms = delay.as_millis(),
                    "Retrying init steps after failure"
                );

                tokio::time::sleep(delay).await;
            }

            match self.run_init_steps().await {
                Ok(()) => {
                    if attempt > 0 {
                        tracing::info!(
                            container = %self.id,
                            attempt = attempt,
                            "Init steps succeeded after retry"
                        );
                    }
                    return Ok(());
                }
                Err(e) => {
                    tracing::warn!(
                        container = %self.id,
                        attempt = attempt,
                        max_retries = self.max_retries,
                        error = %e,
                        "Init steps failed"
                    );
                    last_error = Some(e);
                }
            }
        }

        // All retries exhausted
        Err(last_error.unwrap_or_else(|| AgentError::InitActionFailed {
            id: self.id.to_string(),
            reason: "Init failed after all retries".to_string(),
        }))
    }

    /// Run all init steps once (no retry logic)
    async fn run_init_steps(&self) -> Result<()> {
        let _start_grace = std::time::Instant::now();

        for step in &self.spec.steps {
            let _step_start = std::time::Instant::now();

            // Parse action
            let action = zlayer_init_actions::from_spec(
                &step.uses,
                &step.with,
                Duration::from_secs(30), // default
            )
            .map_err(|e| AgentError::InitActionFailed {
                id: self.id.to_string(),
                reason: e.to_string(),
            })?;

            // Execute with timeout
            let timeout = step.timeout.unwrap_or(Duration::from_secs(300));
            let result = tokio::time::timeout(timeout, self.execute_step(&action, step)).await;

            match result {
                Ok(Ok(())) => {
                    // Step succeeded
                }
                Ok(Err(e)) => {
                    // Action failed
                    return match step.on_failure {
                        zlayer_spec::FailureAction::Fail => Err(AgentError::InitActionFailed {
                            id: self.id.to_string(),
                            reason: format!("step '{}' failed: {}", step.id, e),
                        }),
                        zlayer_spec::FailureAction::Warn => {
                            tracing::warn!(
                                container = %self.id,
                                step = %step.id,
                                error = %e,
                                "Init step failed (continuing due to warn policy)"
                            );
                            continue; // Continue to next step
                        }
                        zlayer_spec::FailureAction::Continue => {
                            // Continue to next step silently
                            continue;
                        }
                    };
                }
                Err(_) => {
                    // Timeout
                    return match step.on_failure {
                        zlayer_spec::FailureAction::Fail => Err(AgentError::Timeout { timeout }),
                        zlayer_spec::FailureAction::Warn => {
                            tracing::warn!(
                                container = %self.id,
                                step = %step.id,
                                timeout_secs = timeout.as_secs(),
                                "Init step timed out (continuing due to warn policy)"
                            );
                            continue; // Continue to next step
                        }
                        zlayer_spec::FailureAction::Continue => {
                            // Continue to next step silently
                            continue;
                        }
                    };
                }
            }

            // Handle retries if specified
            if let Some(retry_count) = step.retry {
                // For now, retries are handled by the action itself
                // A more sophisticated implementation would retry the entire step
                let _ = retry_count;
            }
        }

        Ok(())
    }

    async fn execute_step(&self, action: &InitAction, _step: &zlayer_spec::InitStep) -> Result<()> {
        match action {
            InitAction::WaitTcp(a) => a.execute().await.map_err(|e| AgentError::InitActionFailed {
                id: self.id.to_string(),
                reason: e.to_string(),
            }),
            InitAction::WaitHttp(a) => {
                a.execute().await.map_err(|e| AgentError::InitActionFailed {
                    id: self.id.to_string(),
                    reason: e.to_string(),
                })
            }
            InitAction::Run(a) => a.execute().await.map_err(|e| AgentError::InitActionFailed {
                id: self.id.to_string(),
                reason: e.to_string(),
            }),
            #[cfg(feature = "s3")]
            InitAction::S3Push(a) => a.execute().await.map_err(|e| AgentError::InitActionFailed {
                id: self.id.to_string(),
                reason: e.to_string(),
            }),
            #[cfg(feature = "s3")]
            InitAction::S3Pull(a) => a.execute().await.map_err(|e| AgentError::InitActionFailed {
                id: self.id.to_string(),
                reason: e.to_string(),
            }),
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    fn test_container_id() -> ContainerId {
        ContainerId {
            service: "test".to_string(),
            replica: 1,
        }
    }

    #[tokio::test]
    async fn test_init_orchestrator_success() {
        let id = test_container_id();
        let spec = InitSpec { steps: vec![] };

        let orchestrator = InitOrchestrator::new(id, spec);
        orchestrator.run().await.unwrap();
    }

    #[tokio::test]
    async fn test_init_orchestrator_with_error_policy() {
        let id = test_container_id();
        let spec = InitSpec { steps: vec![] };
        let error_policy = ErrorsSpec::default();

        let orchestrator = InitOrchestrator::with_error_policy(id, spec, error_policy);
        orchestrator.run().await.unwrap();
    }

    #[test]
    fn test_backoff_config_default() {
        let config = BackoffConfig::default();
        assert_eq!(config.initial_delay, Duration::from_secs(1));
        assert_eq!(config.max_delay, Duration::from_secs(60));
        assert!(
            (config.multiplier - 2.0).abs() < f64::EPSILON,
            "multiplier should be 2.0"
        );
    }

    #[test]
    fn test_backoff_delay_calculation() {
        let config = BackoffConfig::default();

        // Attempt 0: 1s
        assert_eq!(config.delay_for_attempt(0), Duration::from_secs(1));
        // Attempt 1: 2s
        assert_eq!(config.delay_for_attempt(1), Duration::from_secs(2));
        // Attempt 2: 4s
        assert_eq!(config.delay_for_attempt(2), Duration::from_secs(4));
        // Attempt 3: 8s
        assert_eq!(config.delay_for_attempt(3), Duration::from_secs(8));
        // Attempt 4: 16s
        assert_eq!(config.delay_for_attempt(4), Duration::from_secs(16));
        // Attempt 5: 32s
        assert_eq!(config.delay_for_attempt(5), Duration::from_secs(32));
        // Attempt 6: would be 64s, but capped at 60s
        assert_eq!(config.delay_for_attempt(6), Duration::from_secs(60));
        // Attempt 7: still capped at 60s
        assert_eq!(config.delay_for_attempt(7), Duration::from_secs(60));
    }

    #[test]
    fn test_backoff_custom_config() {
        let config = BackoffConfig {
            initial_delay: Duration::from_millis(100),
            max_delay: Duration::from_secs(10),
            multiplier: 3.0,
        };

        // Attempt 0: 100ms
        assert_eq!(config.delay_for_attempt(0), Duration::from_millis(100));
        // Attempt 1: 300ms
        assert_eq!(config.delay_for_attempt(1), Duration::from_millis(300));
        // Attempt 2: 900ms
        assert_eq!(config.delay_for_attempt(2), Duration::from_millis(900));
        // Attempt 3: 2700ms
        assert_eq!(config.delay_for_attempt(3), Duration::from_millis(2700));
        // Attempt 4: 8100ms
        assert_eq!(config.delay_for_attempt(4), Duration::from_millis(8100));
        // Attempt 5: would be 24300ms, but capped at 10s
        assert_eq!(config.delay_for_attempt(5), Duration::from_secs(10));
    }

    #[test]
    fn test_orchestrator_builder_pattern() {
        let id = test_container_id();
        let spec = InitSpec { steps: vec![] };

        let orchestrator = InitOrchestrator::new(id.clone(), spec.clone())
            .with_max_retries(5)
            .with_backoff_config(BackoffConfig {
                initial_delay: Duration::from_millis(500),
                max_delay: Duration::from_secs(30),
                multiplier: 1.5,
            });

        assert_eq!(orchestrator.max_retries, 5);
        assert_eq!(
            orchestrator.backoff_config.initial_delay,
            Duration::from_millis(500)
        );
    }
}