Nomad: Flag in jobfile.nomad to force pull docker images from registry

I hit this need as well, there are small fixes one would like to force push without generating a new tag. Being able to force pulls will allow redeploying the same image including the small fixes.

ok, I think this is not neccesary since the docker driver has this feature:
docker.cleanup.image: Defaults to true. Changing this to false will prevent Nomad from removing images from stopped tasks.
It's working for me in the tests I made today, but I remember last week I had to run docker rmi 098ac9f6.
Looking at this code https://github.com/hashicorp/nomad/blob/9b00c9e536cbd1a98ac7a50790333c71a0fc74e4/client/driver/docker.go#L649-L674, it kills the container, then removes container, then removes image.

I think what happened to me is that the container stopped but for some reason the docker engine couldn't delete the container, so the image couldn't be deleted neither.
Maybe the reason is that docker returns "OK, I stopped it" but the next step docker rm container happens so fast that it wasn't truly stopped yet?

@dadgar could you please confirm how this works?

thanks!!!

@adrianlop: What you described is correct!

@dadgar thanks. what do you think about adding a delay between these operations?

Why would you want a delay? It may be easier to just support the force_pull, I don't think the UX of a delay is very nice.

you're right, it's better that way.
thanks again man :D

Closing as when the tag is latest we check if the cached version is truly the latest.

Nicely done, thanks Alex!

great, thank you !

I think that it should be possible to optionally check the cache version on other tags that aren't latest. We have an image tag on specific commits for production workflows but other tags for dev/testing that get updated very frequently on new commits. Latest is helpful for now but it ends up creating an image with the develop tag in the name instead of as an actual tag. Thanks!

@sheldonkwok good point!

Note: if you don't supply a specific tag to Docker, it will assume you mean latest. However, it seems Nomad only force-updates the image when you explicitly add the latest tag to the image name (e.g. redis:latest, instead of just redis).

Hi Marcel, the code path for specifying and not specifying the latest tag is exactly the same (the tag will always be 'latest'): https://github.com/hashicorp/nomad/blob/master/client/driver/docker.go#L443-L464 . It should therefore always pull the image. Did you reproduce different behaviour?

Hm, in that case I'm mistaken. Sorry for adding confusion.

No problem, just checking!: -)

@dadgar We also use two tags . One for qa and one for prod. force_pull = true would be awesome. Is there any ETA ?

I guess this didn't make it into 0.4.1?

@a86c6f7964 No it didn't. We didn't get time to pick this up.

Will this feature make 0.5.0?

It did not make the RC as far as I can see from the changelog, so next potential target would be 0.5.1. :)

Darn I didn't get to upgrade to 0.4.1 because I didn't have time to repatch
it again. Hopefully I can upgrade 0.5.0 and can repatch it again. Without
this feature we cannot deploy new images

Hmm bummer, yea, this was also a big one for me; but the workaround according to @dadgar here was to just add in a dummy variable, say a timestamp or something that will force a re-pull of latest.

+1
Yes. I need it very much. I hope You'll make it soon into release. Regards

Is this issue open for PR? Anyone already doing it? Otherwise i'll bother to make PR myself. It looks supereasy.

@t3hk0d3 A PR would be appreciated!

@dadgar is that pull request in line with what you would like to see? why did this get pushed out to 6.0?

@a86c6f7964 Nope I changed the milestone before I saw your PR. Will look at it today