A docker-ized container autohealer.
Simple python program that attaches to docker socket and listens for docker 'health_status' events and restarts labeled containers when they become unhealthy.
TBD: here go badges
Docker is a modern way to run your applications in a kind of sandbox called "container". Containers can be healthy (when they run smoothly providing the service they are meant to) or unhealty (the main process, subprocesses or threads are unable to run correctly and the service is degraded or not provided at all), and developers are encouraged to provide healthchecks for their containers. Unfortunately there's no automagic built-in feature that will "heal" an unhealthy container. At least not yet.
HealMyDocker is an application, shipped as container image, that runs in docker,
listens to the docker socket and waits for health_status events; when
a running container is marked unhealthy, HealMyDocker will notice and will
restart it, hoping that it will be running correctly again.
This project is indented to be used by docker application developers, system administrators, DevOps, SysOps, and whoever may need a simple auto-restart tool for their unhealty containers.
This is NOT a 6th-Level Evocation Heal spell; if your container has problems that cannot be resolved by a simple restart (e.g.: software bugs, broken network, misconfiguraiton...) nothing will change upon restart and it will start malfunctioning again.
To use this project you'll need an already installed and running docker daemon. Please refer to GetDocker for all the instructions.
HealMyDocker need to attach to docker socket (usually /var/run/docker.sock)
on the host machine. Il will subscribe to system events, filtering for
health_status, and will react to unhealthy events if and only if the
marked container has the correct label with the correct value:
healme: true
false value or any other labels applyed to the target container will cause
HealMyDocker to ignore the event and continue.
HealMyDocker runs independently from the machine Timezone, so no further configuration is required.
There are three alternatives to run HealMyDocker.
-
Docker CLI
docker run --rm -d \ --name healmydocker \ --restart=always \ --network=none \ -v /var/run/docker.sock:/var/run/docker.sock \ ioriomauro/healmydocker:latestThis is the simplest way. It will run HealMyDocker as a standalone, ephemeral container, in detached mode, with no network, mounting the host docker socket to it.
-
docker-compose standalone
services: healmydocker: container_name: healmydocker image: ioriomauro/healmydocker:latest network_mode: none restart: always volumes: - /var/run/docker.sock:/var/run/docker.sock
This will simplify deployment and management; just copy the compose file to the host machine and launch
docker-compose up -d.NOTE: the sample yaml file assumes that the docker socket is in the default path on the host machine.
-
Integrate in your docker-compose project
services: app: image: my/app:latest ... labels: healme: true healmydocker: image: ioriomauro/healmydocker:latest network_mode: none restart: always volumes: - /var/run/docker.sock:/var/run/docker.sock
Assuming that your application already runs in compose, just add the
healmydockerservice to it.
Please note that all the examples fetch the latest image from the registry.
This is not recommended for production environments; latest image is built and
pushed in ci without major testing, while semver tags are fully tested.
Please stick to (at least) a major version when going in production.
For example you can safely use something like:
docker run -d
ioriomauro/healmydocker:1.0
or
docker run -d
ioriomauro/healmydocker:1
HealMyDocker container runs with standard privileges and no network (as it has no needs to communicate with other hosts); it has read/write access to the docker socket, but it only listens for docker events and issue restart commands for unhealthy containers, and periodically pings the daemon for heartbeating purposes.
Please refer to the CONTRIBUTING.md file for information about how to get involved. We welcome issues, questions, and pull requests.
- Mauro Iorio: iorio (dot) mauro (at) TheBigGMail (dot) com
This project is licensed under the terms of the LGPL-3.0-only open source license. Please refer to COPYING and COPYING.LESSER for the full terms.
The template for this readme file is Copyright © 2021 Yahoo Inc., licensed under CC-BY-4.0.