人生在世，看得透，又看得远者prevail everywhere.

gg.gg/13nbnz gg.gg/13p5tj gg.gg/13p9s5 gg.gg/13tljl gg.gg/13xudz gg.gg/13xy3p gg.gg/143tqc linux.die.net linux.it.net.cn ostechnix.com unix.com gg.gg/19yv96 man.linuxde.net gg.gg/148erg bit.ly/2vsM34J bit.ly/2EzoUDo bit.ly/2wCsZSI bit.ly/2v6jGJi bit.ly/2tW6eYT bit.ly/2u2MMtm bit.ly/2X6vadl bit.ly/2viLpHU bit.ly/2fzzbEU linuxprobe.com linuxtechi.com ttlsa.com systutorials.com ghacks.net linuxopsys.com reurl.cc/8W1x3X reurl.cc/NpzMWe reurl.cc/WrgYdx reurl.cc/Yv4Yvo reurl.cc/Lmy90K reurl.cc/Rr5aeG

Friday 27 May 2022

Smooth deploying of a loaded PHP web application with php-fpm and nginx, without downtime or errors

UPDATE 2020-05-10 Added the cachetool option, thanks to reddit users ds11 and SevereHeight for mentioning it.

Generally, the smoothest way to deploy a loaded web app without downtime or erros is by adding instances(hosts, containers) with the new version to balancer and then removing old ones, when they have served all running requests. But sometimes it is easier to switch app versions on instances without re-configuring balancer.

Here is how to do that with php-fpm and nginx.

After deploying the application(with deployer or whatever tool you prefer) you have directories with old and new application versions, shared files(like logs), and symlink current pointing to the new version. Like this:

/var/www/example.com:

releases/
    2020-04-08-12-00-00/
    2020-04-08-15-00-00/
shared/
    logs/
current -> releases/2020-04-08-15-00-00

Using the current symlink directly in nginx config may cause some troubles.

php-fpm is not designed to have app files suddenly change/disappear. Some of requests in progress when switching symlink may return 500 errors.

I suggest instead to use the absolute path to the required app version in nginx configs:

/etc/nginx/sites-enabled/example.com:

include /var/www/example.com/root_dir.nginx.conf;
root $root_dir;

/var/www/example.com/root_dir.nginx.conf:

set $root_dir /var/www/example.com/2020-04-08-15-00-00/public;

File root_dir.nginx.conf is updated on deploy, then nginx is reloaded. Nginx reload is done very carefully, all requests in progress are completed by old workers with the old config version, pointing to the old application version. Users won’t experience any errors or slowdown.

Now the only thing left to do is to clear the old code from php opcache. You can do that with opcache_reset() function. This function should be called from a PHP process using the fpm pool you want to reset the opcache for.

First option is to create a php file and make it accessible from localhost:

/var/www/localhost/opcache_reset.php:

<?php
header('Content-Type:text/plain');
try {
    if (opcache_reset()){
        print "SUCCESS: opcache_reset\n";
    } else {
        throw new Exception("ERROR: opcache is disabled\n", 500);
    }
} catch ( Exception $e) {
    http_response_code($e->getCode()?:500);
    print $e->getMessage();
}

/etc/nginx/sites-enabled/localhost:

server {
    listen 127.0.0.1:80;
    location / { return 403; }
    location = /opcache_reset {
        include fastcgi_params.conf;
        fastcgi_split_path_info ^(.+\.php)(/.*)$;
        fastcgi_pass  unix:/var/run/php/phpXX-fpm.sock;
        fastcgi_param SCRIPT_FILENAME $document_root/opcache_reset.php;
    }

Second option is using cachetool. It can connect directly to php-fpm unix socket or tcp port, no need to serve special php files. There is a ready deployer recipie to use it.

Finally, here is deployer config to do all that, example extending the symfony4 recipie with separate php file:

deploy-example-com.php:

namespace Deployer;
require 'recipe/symfony4.php';

desc('generate nginx config and reload');
task('nginx:update_config_and_reload', function () {
    run('echo "set \$root_dir /public;" > /root_dir.nginx.conf');
    run('sudo --non-interactive nginx -t'); // avoid reloading with incorrect config
    run('sudo --non-interactive systemctl reload nginx.service');
});

desc('call php-fpm opcache_reset from localhost');
task('php-fpm:localhost:opcache_reset', function () {
    run('curl http://localhost/opcache_reset');
});

after('deploy:symlink', 'nginx:update_config_and_reload');
after('nginx:update_config_and_reload', 'php-fpm:localhost:opcache_reset');

inventory('inventory.yml');
set('deploy_path','/var/www/example.com/');
set('repository', 'git@gitlab.local:my/example-com.git');
... // some other perameters

And example with cachetool:

deploy-example-com.php:

namespace Deployer;
require 'recipe/symfony4.php';
require 'recipe/cachetool.php';

desc('generate nginx config and reload');
task('nginx:update_config_and_reload', function () {
    run('echo "set \$root_dir /public;" > /root_dir.nginx.conf');
    run('sudo --non-interactive nginx -t'); // avoid reloading with incorrect config
    run('sudo --non-interactive systemctl reload nginx.service');
});

after('deploy:symlink', 'nginx:update_config_and_reload');
after('nginx:update_config_and_reload', 'cachetool:clear:opcache');

inventory('inventory.yml');
set('deploy_path','/var/www/example.com/');
set('repository', 'git@gitlab.local:my/example-com.git');
set('cachetool', '/var/run/php/phpXX-fpm.sock');
... // some other perameters

Note that deploy user should have rights to reload nginx service with sudo and to check nginx config(run nginx -t).

人生在世，看得透，又看得远者prevail everywhere.

Total Pageviews

Friday 27 May 2022

Smooth deploying of a loaded PHP web application with php-fpm and nginx, without downtime or errors

No comments:

Post a Comment