================ CephFS Mirroring ================ CephFS supports asynchronous replication of snapshots to a remote CephFS file system via `cephfs-mirror` tool. Snapshots are synchronized by mirroring snapshot data followed by creating a snapshot with the same name (for a given directory on the remote file system) as the snapshot being synchronized. Requirements ------------ The primary (local) and secondary (remote) Ceph clusters version should be Pacific or later. Key Idea -------- For a given snapshot pair in a directory, `cephfs-mirror` daemon will rely on `CephFS Snapdiff Feature` to identify changes in a directory tree. The diffs are applied to directory in the remote file system thereby only synchronizing files that have changed between two snapshots. Currently, snapshot data is synchronized by bulk copying to the remote filesystem. .. note:: Synchronizing hardlinks is not supported -- hardlinked files get synchronized as separate files. Creating Users -------------- Start by creating a user (on the primary/local cluster) for the mirror daemon. This user requires write capability on the metadata pool to create RADOS objects (index objects) for watch/notify operation and read capability on the data pool(s). .. prompt:: bash $ ceph auth get-or-create client.mirror mon 'profile cephfs-mirror' mds 'allow r' osd 'allow rw tag cephfs metadata=*, allow r tag cephfs data=*' mgr 'allow r' Create a user for each file system peer (on the secondary/remote cluster). This user needs to have full capabilities on the MDS (to take snapshots) and the OSDs: .. prompt:: bash $ ceph fs authorize client.mirror_remote / rwps This user should be used (as part of peer specification) when adding a peer. Starting Mirror Daemon ---------------------- Spawn a mirror daemon by using `systemctl(1)` unit files: .. prompt:: bash $ systemctl enable cephfs-mirror@mirror systemctl start cephfs-mirror@mirror Run the `cephfs-mirror` daemon in the foreground by running the following command with the ``-f`` option: .. prompt:: bash $ cephfs-mirror --id mirror --cluster site-a -f .. note:: The user specified here is ``mirror``, as created in the `Creating Users` section. Mirroring Design ---------------- CephFS supports asynchronous replication of snapshots to a remote CephFS file system via the `cephfs-mirror` tool. For a given directory, snapshots are synchronized by transferring snapshot data to the remote file system and by creating a snapshot with the same name as the snapshot being synchronized. Snapshot Synchronization Order ------------------------------ Although the order in which snapshots get chosen for synchronization does not matter, snapshots are picked based on creation order (using snap-id). Snapshot Incarnation -------------------- A snapshot may be deleted and recreated (with the same name) with different contents. An "old" snapshot could have been synchronized (earlier) and the recreation of the snapshot could have been done when mirroring was disabled. Using snapshot names to infer the point-of-continuation would result in the "new" snapshot (incarnation) never getting picked up for synchronization. Snapshots on the secondary file system stores the snap-id of the snapshot it was synchronized from. This metadata is stored in `SnapInfo` structure on the MDS. Interfaces ---------- The `mirroring` module (a Manager plugin) provides interfaces for managing directory snapshot mirroring. Manager interfaces are (mostly) wrappers around monitor commands for managing file system mirroring and are the recommended control interface. Mirroring Module and Interface ------------------------------ The mirroring module provides an interface for managing directory snapshot mirroring. The module is implemented as a Ceph Manager plugin. The mirroring module does not manage the spawning of (and terminating of) the mirror daemons. `systemctl(1)` is the preferred way to start and stop mirror daemons. In the future, mirror daemons will be deployed and managed by `cephadm` (Tracker: http://tracker.ceph.com/issues/47261). The manager module is responsible for assigning directories to mirror daemons for synchronization. Multiple mirror daemons can be spawned to achieve concurrency in directory snapshot synchronization. When mirror daemons are spawned (or terminated), the mirroring module discovers the modified set of mirror daemons and rebalances the directory assignment amongst the new set thus providing high-availability. .. note:: Configurations that have multiple mirror daemons are currently untested. Only a single mirror daemon is recommended. The mirroring module is disabled by default. To enable mirroring, run the following command: .. prompt:: bash $ ceph mgr module enable mirroring The mirroring module provides a family of commands for controlling the mirroring of directory snapshots. To add or remove directories, mirroring must be enabled for a given file system. To enable mirroring, run a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror enable .. note:: The mirroring-module commands use the ``fs snapshot mirror`` prefix as distinct from the monitor commands, which use the ``fs mirror`` prefix. Make sure to use module (that is, ``fs snapshot mirror``) commands. To disable mirroring, run a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror disable After mirroring has been enabled, add a peer to which directory snapshots will be mirrored. Peers follow the ``@`` specification and get assigned a unique-id (UUID) when added. See the `Creating Users` section for information on how to create Ceph users for mirroring. To add a peer, run a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror peer_add [] [] [] ```` is optional, and defaults to ```` (on the remote cluster). This requires that the remote-cluster Ceph configuration and the user keyring are available in the primary cluster. See the `Bootstrap Peers` section for more information. The ``peer_add`` subcommand also supports passing the remote cluster's monitor address and user key. However, bootstrapping a peer is the recommended way to add a peer. .. note:: Only a single peer is supported right now. To remove a peer, run a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror peer_remove .. note:: See the `Mirror Daemon Status` section on how to figure out Peer UUID. To list the file system mirror peers, run a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror peer_list To configure a directory for mirroring, run a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror add To stop a directory from mirroring snapshots, run a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror remove Only absolute directory paths are allowed. Also, paths are normalized by the mirroring module. This means that ``/a/b/../b`` is equivalent to ``/a/b``: .. prompt:: bash $ mkdir -p /d0/d1/d2 ceph fs snapshot mirror add cephfs /d0/d1/d2 {} ceph fs snapshot mirror add cephfs /d0/d1/../d1/d2 :: Error EEXIST: directory /d0/d1/d2 is already tracked After a directory is added for mirroring, its subdirectory or ancestor directories are not allowed to be added for mirroring: .. prompt:: bash $ ceph fs snapshot mirror add cephfs /d0/d1 :: Error EINVAL: /d0/d1 is a ancestor of tracked path /d0/d1/d2 .. prompt:: bash $ ceph fs snapshot mirror add cephfs /d0/d1/d2/d3 :: Error EINVAL: /d0/d1/d2/d3 is a subtree of tracked path /d0/d1/d2 Commands for checking directory mapping (to mirror daemons) and directory distribution are detailed in the `Mirror Daemon Status` section. Bootstrap Peers --------------- Adding a peer (via ``peer_add``) requires that the peer cluster configuration and the user keyring be available in the primary cluster (Manager host and hosts running the mirror daemon). This requirement can be avoided by bootstrapping and importing a peer token. Peer bootstraping involves creating a bootstrap token on the peer cluster by running a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror peer_bootstrap create For example: .. prompt:: bash $ ceph fs snapshot mirror peer_bootstrap create backup_fs client.mirror_remote site-remote :: {"token": "eyJmc2lkIjogIjBkZjE3MjE3LWRmY2QtNDAzMC05MDc5LTM2Nzk4NTVkNDJlZiIsICJmaWxlc3lzdGVtIjogImJhY2t1cF9mcyIsICJ1c2VyIjogImNsaWVudC5taXJyb3JfcGVlcl9ib290c3RyYXAiLCAic2l0ZV9uYW1lIjogInNpdGUtcmVtb3RlIiwgImtleSI6ICJBUUFhcDBCZ0xtRmpOeEFBVnNyZXozai9YYUV0T2UrbUJEZlJDZz09IiwgIm1vbl9ob3N0IjogIlt2MjoxOTIuMTY4LjAuNTo0MDkxOCx2MToxOTIuMTY4LjAuNTo0MDkxOV0ifQ=="} ``site-name`` refers to a user-defined string to identify the remote filesystem. In the context of the ``peer_add`` interface, ``site-name`` is the passed in the ``cluster`` name from ``remote_cluster_spec``. Import the bootstrap token in the primary cluster by running a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror peer_bootstrap import For example: .. prompt:: bash $ ceph fs snapshot mirror peer_bootstrap import cephfs eyJmc2lkIjogIjBkZjE3MjE3LWRmY2QtNDAzMC05MDc5LTM2Nzk4NTVkNDJlZiIsICJmaWxlc3lzdGVtIjogImJhY2t1cF9mcyIsICJ1c2VyIjogImNsaWVudC5taXJyb3JfcGVlcl9ib290c3RyYXAiLCAic2l0ZV9uYW1lIjogInNpdGUtcmVtb3RlIiwgImtleSI6ICJBUUFhcDBCZ0xtRmpOeEFBVnNyZXozai9YYUV0T2UrbUJEZlJDZz09IiwgIm1vbl9ob3N0IjogIlt2MjoxOTIuMTY4LjAuNTo0MDkxOCx2MToxOTIuMTY4LjAuNTo0MDkxOV0ifQ== Mirror Daemon Status -------------------- Mirror daemons are asynchronously notified about changes in file-system-mirroring status and peer updates. The CephFS mirroring module provides the ``mirror daemon status`` interface for checking the status of the mirror daemon. Run the following command to check the status of the mirror daemon: .. prompt:: bash $ ceph fs snapshot mirror daemon status For example: .. prompt:: bash $ ceph fs snapshot mirror daemon status | jq :: [ { "daemon_id": 284167, "filesystems": [ { "filesystem_id": 1, "name": "a", "directory_count": 1, "peers": [ { "uuid": "02117353-8cd1-44db-976b-eb20609aa160", "remote": { "client_name": "client.mirror_remote", "cluster_name": "ceph", "fs_name": "backup_fs" }, "stats": { "failure_count": 1, "recovery_count": 0 } } ] } ] } ] One entry per mirror-daemon instance is displayed, along with information including configured peers and basic statistics. For more detailed statistics, use the admin socket interface as detailed below. CephFS mirror daemons provide admin socket commands for querying mirror status. To list the available commands for ``mirror status``, run the following command: .. prompt:: bash $ ceph --admin-daemon /path/to/mirror/daemon/admin/socket help :: { .... .... "fs mirror status cephfs@360": "get filesystem mirror status", .... .... } Commands that have the ``fs mirror status`` prefix provide mirror status for mirror-enabled file systems. Note that ``cephfs@360`` has the format ``filesystem-name@filesystem-id``. This format is required because mirror daemons are asynchronously notified of file-system mirror status (A file system can be deleted and recreated with the same name). Currently (May 2025), the command provides minimal information regarding mirror status: .. prompt:: bash $ ceph --admin-daemon /var/run/ceph/cephfs-mirror.asok fs mirror status cephfs@360 :: { "rados_inst": "192.168.0.5:0/1476644347", "peers": { "a2dc7784-e7a1-4723-b103-03ee8d8768f8": { "remote": { "client_name": "client.mirror_remote", "cluster_name": "site-a", "fs_name": "backup_fs" } } }, "snap_dirs": { "dir_count": 1 } } The ``Peers`` section in the command output above shows the peer information such as unique peer-id (UUID) and specification. The peer-id is required to remove an existing peer as mentioned in the `Mirror Module and Interface` section. Commands with the ``fs mirror peer status`` prefix return peer synchronization status. Commands of this kind take the form ``filesystem-name@filesystem-id peer-uuid``, as in the following example: .. prompt:: bash $ ceph --admin-daemon /var/run/ceph/cephfs-mirror.asok fs mirror peer status cephfs@360 a2dc7784-e7a1-4723-b103-03ee8d8768f8 :: { "/d0": { "state": "idle", "last_synced_snap": { "id": 120, "name": "snap1", "sync_duration": 0.079997898999999997, "sync_time_stamp": "274900.558797s" }, "snaps_synced": 2, "snaps_deleted": 0, "snaps_renamed": 0 } } Synchronization stats such as ``snaps_synced``, ``snaps_deleted`` and ``snaps_renamed`` are reset when the daemon is restarted or (when multiple mirror daemons are deployed), when a directory is reassigned to another mirror daemon. A directory can be in one of the following states:: - `idle`: The directory is currently not being synchronized - `syncing`: The directory is currently being synchronized - `failed`: The directory has hit upper limit of consecutive failures When a directory hits a configured number of consecutive synchronization failures, the mirror daemon marks it as ``failed``. Synchronization for these directories is retried. By default, the number of consecutive failures before a directory is marked as failed is controlled by the ``cephfs_mirror_max_consecutive_failures_per_directory`` configuration option (default: ``10``). The retry interval for failed directories is controlled by the ``cephfs_mirror_retry_failed_directories_interval`` configuration option (default: ``60s``). For example, adding a regular file for synchronization results in a ``failed`` status: .. prompt:: bash $ ceph fs snapshot mirror add cephfs /f0 ceph --admin-daemon /var/run/ceph/cephfs-mirror.asok fs mirror peer status cephfs@360 a2dc7784-e7a1-4723-b103-03ee8d8768f8 :: { "/d0": { "state": "idle", "last_synced_snap": { "id": 120, "name": "snap1", "sync_duration": 0.079997898999999997, "sync_time_stamp": "274900.558797s" }, "snaps_synced": 2, "snaps_deleted": 0, "snaps_renamed": 0 }, "/f0": { "state": "failed", "snaps_synced": 0, "snaps_deleted": 0, "snaps_renamed": 0 } } This allows a user to add a non-existent directory for synchronization. The mirror daemon marks the directory as failed and retries (less frequently). When the directory comes into existence, the mirror daemons notice the successful snapshot synchronization and unmark the failed state. When mirroring is disabled, the ``fs mirror status`` command for the file system will not show up in command help. The mirroring module provides a couple of commands to display directory mapping and distribution information. To check which mirror daemon a directory has been mapped to use, run a command of the following form: .. prompt:: bash $ ceph fs snapshot mirror dirmap cephfs /d0/d1/d2 :: { "instance_id": "404148", "last_shuffled": 1601284516.10986, "state": "mapped" } .. note:: ``instance_id`` is the RADOS instance-id associated with a mirror daemon. Other information such as ``state`` and ``last_shuffled`` are interesting when running multiple mirror daemons. If no mirror daemons are running, the same command shows the following: .. prompt:: bash $ ceph fs snapshot mirror dirmap cephfs /d0/d1/d2 :: { "reason": "no mirror daemons running", "state": "stalled" } This signifies that no mirror daemons are running and that mirroring is stalled. Re-adding Peers --------------- When re-adding (reassigning) a peer to a file system in another cluster, ensure that all mirror daemons have stopped synchronizing with the peer. This can be checked via the ``fs mirror status`` admin socket command (the ``Peer UUID`` should not show up in the command output). We recommend purging synchronized directories from the peer before re-adding them to another file system (especially those directories which might exist in the new primary file system). This is not required if you re-add a peer to the same primary file system it was synchronized from before. Feature Status -------------- The ``cephfs-mirror`` daemon is built by default. It follows the ``WITH_CEPHFS`` CMake rule). .. _CephFS Snapdiff Feature: https://croit.io/blog/cephfs-snapdiff-feature