Facron – fanotify cron system

The filesystem cron principle

At Clever Cloud, we often have to manage stuff based on filesystem events. In order to react dynamically, we will sometimes have to reload some specific configurations when the config file has changed, or we’ll want to wrap some files which just appeared to grab them in the global flow.

Filesystem crons allow you to do this kind of things. What you have to do is specify the files you want to monitor with the events you want to react to and the action you want to proceed when those events occur.

Incron

Incron is the filesystem cron we’ve been using so far. It’s based on the inotify linux system. Inotify was the replacement to dnotify which has been deprecated for quite a long time now. Thanks to inotify, incron watches for filesystem changes and act accordingly, given the configuration file you provide.

Incron does not support FUSE which is used by several filesystems, since inotify doesn’t support it either.

We experienced quite a few instabilities with incron which was not as reliable as we expected, ending up with ugly bash hacks to do the job correctly. That’s why I decided we needed our own solution.

Facron

Facron is my vision of the filesystem cron problematic. It is based on the “new” fanotify ABI which is more reliable and have better performances than the now deprecated inotify one. I started to write it two days ago, it’s at a stage where it’s usable. It’s not yet perfect and I want to improve it a little but you already can try it.

The configuration file (/etc/facron.conf) looks like:

/path/to/a/file FAN_MODIFY|FAN_EVENT_ON_CHILD /path/to/script fromFacron $

The first element is the file or directory to watch (of course multiple lines are supported), the second one corresponds to all fanotify events that you want to follow, and then your script or application (full path is recommended) + arguments. “$$” is a special token which will be replaced by the full path of the file which has emitted the event.

The available fanotify events are:

  • FAN_ACCESS
  • FAN_MODIFY
  • FAN_CLOSE_WRITE
  • FAN_CLOSE_NOWRITE
  • FAN_OPEN
  • FAN_Q_OVERFLOW
  • FAN_OPEN_PERM
  • FAN_ACCESS_PERM
  • FAN_ONDIR
  • FAN_EVENT_ON_CHILD
  • FAN_CLOSE
  • FAN_ALL_EVENTS
  • FAN_ALL_PERM_EVENTS
  • FAN_ALL_OUTGOING_EVENTS

Two more special tokens will appear: “$@” which will contain the dirname of the file, and “$#” which will contain its basename.

A systemd service file and a release tarball will be provided soon.

You can reload the configuration at any time by sending a SIGUSR1 to facron:

kill -USR1 $(pidof facron)

You can get the code on github :

Blog

À lire également

Kubernetes orchestration: what is container orchestration for?

Container orchestration is the automation of the operations needed to run a fleet of containers in production: placing them on machines, adjusting to load, replacing what fails, letting services talk to each other, and shipping updates without downtime.
Engineering

Sōzu 2.1.0: UDP load balancing for the programmable edge

Sōzu is the open-source reverse proxy and load balancer that sits in front of every application running on Clever Cloud.
Company

Clever Cloud introduces the Ultimate Sovereignty Clause to guarantee lasting digital sovereignty

Clever Cloud is introducing the Ultimate Sovereignty Clause, a contractual mechanism designed to ensure that a cloud service remains sovereign within a European framework, even if its provider were to come under non-European control.
Company