Observability and chaos engineering on system calls for containerized applications in Docker

In this paper, we present a novel fault injection system called ChaosOrca for system calls in containerized applications. ChaosOrca aims at evaluating a given application’s self-protection capability with respect to system call errors. The unique feature of ChaosOrca is that it conducts experiments...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Future generation computer systems 2021-09, Vol.122, p.117-129
Hauptverfasser: Simonsson, Jesper, Zhang, Long, Morin, Brice, Baudry, Benoit, Monperrus, Martin
Format: Artikel
Sprache:eng
Schlagworte:
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In this paper, we present a novel fault injection system called ChaosOrca for system calls in containerized applications. ChaosOrca aims at evaluating a given application’s self-protection capability with respect to system call errors. The unique feature of ChaosOrca is that it conducts experiments under production-like workload without instrumenting the application. We exhaustively analyze all kinds of system calls and utilize different levels of monitoring techniques to reason about the behavior under perturbation. We evaluate ChaosOrca on three real-world applications: a file transfer client, a reverse proxy server and a micro-service oriented web application. Our results show that it is promising to detect weaknesses of resilience mechanisms related to system calls issues. •An architecture that achieves observability and perturbation for Docker containers.•A prototype implementation based on the state-of-art libraries used in industry.•An evaluation of the approach on three representative Docker applications.
ISSN:0167-739X
1872-7115
1872-7115
DOI:10.1016/j.future.2021.04.001