Add ha rabbit

Author: YuryHrytsuk

services/rabbit/.gitignore

@@ -0,0 +1,3 @@
+docker-compose.yml
+!erlang.cookie.secret.template
+rabbitmq.conf

services/rabbit/Makefile

@@ -6,7 +6,7 @@ include ${REPO_BASE_DIR}/scripts/common-services.Makefile
 include ${REPO_BASE_DIR}/scripts/common.Makefile
 
 .PHONY: up
-up: ${TEMP_COMPOSE} prune-docker-stack-configs ## Deploys metabase stack
+up: ${TEMP_COMPOSE} prune-docker-stack-configs prune-docker-stack-secrets ## Deploys metabase stack
 	@docker stack deploy --with-registry-auth --prune --compose-file ${TEMP_COMPOSE} ${STACK_NAME}
 
 up-aws: up
@@ -22,5 +22,13 @@ up-public: up
 ${TEMP_COMPOSE}: docker-compose.yml .env
 	@${REPO_BASE_DIR}/scripts/docker-stack-config.bash -e .env $< > $@
 
-docker-compose.yml: docker-compose.yml.j2 .env venv
+erlang.cookie.secret: erlang.cookie.secret.template .env
+	@set -a; source .env; set +a; \
+	envsubst < $< > $@
+
+rabbitmq.conf: rabbitmq.conf.j2 .env venv
+	# generate $@
+	@$(call jinja, $<, .env, $@)
+
+docker-compose.yml: docker-compose.yml.j2 .env rabbitmq.conf erlang.cookie.secret venv
 	@$(call jinja, $<, .env, $@)

services/rabbit/README.md

@@ -0,0 +1,20 @@
+## Updating rabbitmq.conf / advanced.config (zero-downtime)
+
+rabbitmq.conf and advanced.config changes take effect after a node restart. This can be performed with zero-downtime when RabbitMQ is clustered (have multiple nodes). This can be achieved by stopping and starting rabbitmq nodes one by one
+* `docker exec -it <container-id> bash`
+* (inside container) `rabbitmqctl stop_app` and wait some time until node is stopped (can be seen in management ui)
+* (inside container) `rabbitmqctl start_app`
+
+Source: https://www.rabbitmq.com/docs/next/configure#config-changes-effects
+
+## Enable node Maintenance mode
+
+1. Get inside container's shell (`docker exec -it <container-id> bash`)
+2. (Inside container) execute `rabbitmq-upgrade drain`
+
+Source: https://www.rabbitmq.com/docs/upgrade#maintenance-mode
+
+## Rotating erlang cookie (zero-downtime)
+
+https://github.com/rabbitmq/rabbitmq-server/issues/14390
+https://github.com/rabbitmq/rabbitmq-server/discussions/9784

services/rabbit/docker-compose.yml

@@ -1,5 +1,8 @@
+{% set NODE_IXS = range(1, (RABBIT_CLUSTER_NODE_COUNT | int) + 1) -%}
+
 services:
-  rabbit01:
+{% for ix in NODE_IXS %}
+  rabbit0{{ ix }}:
     image: itisfoundation/rabbitmq:4.1.2-management
     init: true
     # https://docs.docker.com/reference/cli/docker/service/create/#create-services-using-templates
@@ -8,32 +11,91 @@ services:
       RABBITMQ_DEFAULT_USER: ${RABBIT_USER}
       RABBITMQ_DEFAULT_PASS: ${RABBIT_PASSWORD}
       RABBITMQ_NODENAME: {% raw %}"rabbit@{{.Service.Name}}"{% endraw %}
+    # https://docs.docker.com/reference/compose-file/services/#long-syntax-5
+    # https://hub.docker.com/_/rabbitmq#erlang-cookie
+{% if ix == 1 %}
+    # TODO: remove
+    ports:
+      - "15672:15672"  # management UI
+{% endif %}
+    secrets:
+      # https://github.com/docker-library/rabbitmq/issues/279
+      - source: rabbit_erlang_cookie
+        target: /var/lib/rabbitmq/.erlang.cookie
+        mode: 0600
+        # as long as "default" user is used (no user explicitly specified)
+        uid: "999"
+        gid: "999"
+    configs:
+      - source: rabbitmq.conf
+        target: /etc/rabbitmq/rabbitmq.conf
+        mode: 0600
+        uid: "999"
+        gid: "999"
     volumes:
-      - rabbit_data:/var/lib/rabbitmq
+      - rabbit0{{ ix }}_data:/var/lib/rabbitmq
     # TODO: sync with existing rabbit attached networks
     networks:
       - rabbit
     # TODO: consider another healthcheck (e.g. check kubernetes operator)
     healthcheck:
-      # see https://www.rabbitmq.com/monitoring.html#individual-checks for info about health-checks available in rabbitmq
-      test: rabbitmq-diagnostics -q status
-      interval: 5s
-      timeout: 30s
-      retries: 5
-      start_period: 5s
+      # see https://hub.docker.com/_/rabbitmq#healthlivenessreadiness-checking
+      # https://www.rabbitmq.com/docs/clustering#restarting-readiness-probes
+      # we must have a healthcheck that does not require node to be fully booted (i.e. joined a cluster)
+      # because it creates a deadlock: docker swarm will not route to the node until it is healthy
+      # node is not healthy until it is part of a cluster (other node can talk to it)
+      test: rabbitmq-diagnostics ping
+      interval: 60s
+      timeout: 10s
+      retries: 2
+      start_period: 30s
+      start_interval: 10s
+{% endfor %}
 
-  busybox:
-    image: ubuntu:22.04
-    command: /bin/sh -c "sleep infinity"
+  subscriber:
+    image: python:3.11
+    command: sh -c "pip install pika && python /app/sub.py"
+    environment:
+      - RABBIT_HOSTS=rabbit_rabbit01,rabbit_rabbit02,rabbit_rabbit03
+      - RABBIT_USER=${RABBIT_USER}
+      - RABBIT_PASS=${RABBIT_PASSWORD}
+    networks:
+      - rabbit
+    volumes:
+      - ./test/sub.py:/app/sub.py
+
+  publisher:
+    image: python:3.11
+    command: sh -c "pip install pika && python /app/pub.py"
+    environment:
+      - RABBIT_HOSTS=rabbit_rabbit01,rabbit_rabbit02,rabbit_rabbit03
+      - RABBIT_USER=${RABBIT_USER}
+      - RABBIT_PASS=${RABBIT_PASSWORD}
     networks:
       - rabbit
+    volumes:
+      - ./test/pub.py:/app/pub.py
+
+volumes:
+{% for ix in NODE_IXS %}
+  rabbit0{{ ix }}_data:
+    name: ${STACK_NAME}0{{ ix }}_data
+{%- endfor %}
+
 networks:
   # TODO: consider creating it externally for better control over subnets size and ip ranges
   rabbit:
     name: ${RABBIT_DOCKER_SWARM_NETWORK_NAME}
     driver: overlay
     attachable: true
 
-volumes:
-  rabbit_data:
-    name: ${STACK_NAME}_rabbit_data
+configs:
+  rabbitmq.conf:
+    file: ./rabbitmq.conf
+    name: ${STACK_NAME}_rabbitmq_conf_{{ "./rabbitmq.conf" | sha256file | substring(0,10) }}
+
+secrets:
+  rabbit_erlang_cookie:
+    # TODO: rolling secrets update?
+    name: ${STACK_NAME}_erlang_cookie
+    file: ./erlang.cookie.secret

services/rabbit/docker-compose.yml.j2

@@ -0,0 +1 @@
+${RABBIT_ERLANG_COOKIE}

services/rabbit/erlang.cookie.secret.template

@@ -0,0 +1,14 @@
+{% set NODE_IXS = range(1, (RABBIT_CLUSTER_NODE_COUNT | int) + 1) -%}
+
+# https://www.rabbitmq.com/docs/cluster-formation#peer-discovery-configuring-mechanism
+cluster_formation.peer_discovery_backend = classic_config
+
+{% for ix in NODE_IXS %}
+cluster_formation.classic_config.nodes.{{ ix }} = rabbit@rabbit_rabbit0{{ ix }}
+{%- endfor %}
+
+## Sets the initial quorum queue replica count for newly declared quorum queues.
+## This value can be overridden using the 'x-quorum-initial-group-size' queue argument
+## at declaration time.
+# https://www.rabbitmq.com/docs/quorum-queues#quorum-requirements
+quorum_queue.initial_cluster_size = {{ RABBIT_QUORUM_QUEUE_DEFAULT_REPLICA_COUNT }}

services/rabbit/rabbitmq.conf.j2

@@ -1,6 +1,10 @@
 STACK_NAME=${STACK_NAME}
 
+RABBIT_CLUSTER_NODE_COUNT=${RABBIT_CLUSTER_NODE_COUNT}
+RABBIT_QUORUM_QUEUE_DEFAULT_REPLICA_COUNT=${RABBIT_QUORUM_QUEUE_DEFAULT_REPLICA_COUNT}
+
 RABBIT_USER=${RABBIT_USER}
 RABBIT_PASSWORD=${RABBIT_PASSWORD}
+RABBIT_ERLANG_COOKIE=${RABBIT_ERLANG_COOKIE}
 
 RABBIT_DOCKER_SWARM_NETWORK_NAME=rabbit_rabbit_subnet

services/rabbit/template.env

@@ -0,0 +1,49 @@
+import logging
+import os
+import random
+import time
+
+import pika
+
+logging.basicConfig(
+    level=logging.INFO, format="%(asctime)s [%(levelname)s] %(message)s"
+)
+logger = logging.getLogger(__name__)
+
+hosts = os.environ["RABBIT_HOSTS"].split(",")
+credentials = pika.PlainCredentials(os.getenv("RABBIT_USER"), os.getenv("RABBIT_PASS"))
+
+endpoints = [
+    pika.URLParameters(
+        f"amqp://{credentials.username}:{credentials.password}@{h.strip()}:5672/"
+    )
+    for h in hosts
+]
+
+while True:
+    logger.info(f"Verbinde zu RabbitMQ Hosts: {hosts}")
+
+    random.shuffle(endpoints)
+    connection = pika.BlockingConnection(endpoints)
+    try:
+        channel = connection.channel()
+
+        logger.info("Queue 'hello' (quorum) deklarieren...")
+        channel.queue_declare(
+            queue="hello", durable=True, arguments={"x-queue-type": "quorum"}
+        )
+
+        for i in range(10_000):
+            msg = f"Nachricht {i}"
+            channel.basic_publish(
+                exchange="",
+                routing_key="hello",
+                body=msg,
+                properties=pika.BasicProperties(delivery_mode=2),
+            )
+            logger.info(f"Gesendet: {msg}")
+            time.sleep(3)
+    except pika.exceptions.ConnectionClosedByBroker:
+        logger.error(
+            "Verbindung zum RabbitMQ Broker wurde geschlossen. Versuche erneut zu verbinden..."
+        )

services/rabbit/test/pub.py

@@ -0,0 +1,48 @@
+import logging
+import os
+import random
+
+import pika
+
+logging.basicConfig(
+    level=logging.INFO, format="%(asctime)s [%(levelname)s] %(message)s"
+)
+logger = logging.getLogger(__name__)
+
+hosts = os.environ["RABBIT_HOSTS"].split(",")
+credentials = pika.PlainCredentials(os.getenv("RABBIT_USER"), os.getenv("RABBIT_PASS"))
+
+hosts = os.environ["RABBIT_HOSTS"].split(",")
+credentials = pika.PlainCredentials(os.getenv("RABBIT_USER"), os.getenv("RABBIT_PASS"))
+
+endpoints = [
+    pika.URLParameters(
+        f"amqp://{credentials.username}:{credentials.password}@{h.strip()}:5672/"
+    )
+    for h in hosts
+]
+
+while True:
+    logger.info(f"Verbinde zu RabbitMQ Hosts: {hosts}")
+
+    random.shuffle(endpoints)
+    try:
+        connection = pika.BlockingConnection(endpoints)
+        channel = connection.channel()
+
+        logger.info("Queue 'hello' (quorum) deklarieren...")
+        channel.queue_declare(
+            queue="hello", durable=True, arguments={"x-queue-type": "quorum"}
+        )
+
+        def callback(ch, method, properties, body):
+            logger.info(f"Empfangen: {body.decode()}")
+            ch.basic_ack(delivery_tag=method.delivery_tag)
+
+        channel.basic_consume(queue="hello", on_message_callback=callback)
+        logger.info("Warte auf Nachrichten...")
+        channel.start_consuming()
+    except pika.exceptions.ConnectionClosedByBroker:
+        logger.error(
+            "Verbindung zum RabbitMQ Broker wurde geschlossen. Versuche erneut zu verbinden..."
+        )