Table of Contents
  • Docs >
  • Advanced configuration
Shortcuts

Advanced configuration

One of design goal of TorchServe is easy to use. The default settings form TorchServe should be sufficient for most of use cases. This document describe advanced configurations that allows user to deep customize TorchServe’s behavior.

Environment variables

User can set environment variables to change TorchServe behavior, following is a list of variables that user can set for TorchServe:

  • JAVA_HOME

  • PYTHONPATH

  • TS_CONFIG_FILE

  • LOG_LOCATION

  • METRICS_LOCATION

Note: environment variable has higher priority that command line or config.properties. It will override other property values.

Command line parameters

User can following parameters to start TorchServe, those parameters will override default TorchServe behavior:

  • –ts-config TorchServe will load specified configuration file if TS_CONFIG_FILE is not set.

  • –model-store This parameter will override model_store property in config.properties file.

  • –models This parameter will override `load_models’ property in config.properties.

  • –log-config This parameter will override default log4j.properties.

  • –foreground This parameter will run the TorchServe in foreground. If this option is .. code-block:

    disabled, the TorchServe will run in the background.

See Running the TorchServe for detail.

config.properties file

TorchServe use a config.properties file to store configurations. TorchServe use following order to locate this config.properties file:

  1. if TS_CONFIG_FILE environment variable is set, TorchServe will load the configuration from the environment variable.

  2. if --ts-config parameter is passed to torchserve, TorchServe will load the configuration from the parameter.

  3. if there is a config.properties in current folder where user start the torchserve, TorchServe will load the config.properties file form current working directory.

  4. If none of above is specified, TorchServe will load built-in configuration with default values.

Customize JVM options

The restrict TorchServe frontend memory footprint, certain JVM options is set via vmargs property in config.properties file

  • default: N/A, use JVM default options

User can adjust those JVM options for fit their memory requirement if needed.

Load models at startup

User can configure load models while TorchServe startup. TorchServe can load models from model_store or from HTTP(s) URL.

  • model_store

    • standalone: default: N/A, load models from local disk is disabled. Following syntax can be used to configure lost of models to be loaded on startup :

# load all models present in model store
load_models=all
# load models from model store with mar names only
load_models=model1.mar,model2.mar
# load models from model store with model name and mar file
load_models=model1=model1.mar,model2=model2.mar

  • load_models

    • standalone: default: N/A, no models will be load on startup. .. code-block:: python

      model_store=<path to model store directory which stores the local mar files.>

Note: model_store and load_models property can be override by command line parameters.

Configure TorchServe listening address and port

TorchServe doesn’t support authentication natively. To avoid unauthorized access, TorchServe only allows localhost access by default. Inference API is listening on 8080 port and accepting HTTP request. Management API is listening on 8081 port and accepting HTTP request. See Enable SSL for configuring HTTPS.

  • inference_address: inference API binding address, default: http://127.0.0.1:8080

  • management_address: management API binding address, default: http://127.0.0.1:8081

  • In order to run predictions on models via public-ip specify IP address as 0.0.0.0 to make is accessible over all network interfaces or to the explicit IP-address as shown in example below.

Here are a couple of examples:

# bind inference API to all network interfaces with SSL enabled
inference_address=https://0.0.0.0:8443

# bind inference API to private network interfaces
inference_address=https://172.16.1.10:8080

Enable SSL

For users who want to enable HTTPs, you can change inference_address or management_address protocol from http to https. For example: inference_address=https://127.0.0.1. The default is port 443, however you can make TorchServe listen on whatever port you set to accept https requests. For example, to receive https traffic on port 8443, you would use: inference_address=https://127.0.0.1:8443.

You must also provide a certificate and private key to enable SSL. TorchServe supports two ways to configure SSL:

  1. Use a keystore:

    • keystore: the keystore file location. If multiple private key entries exist in the keystore, the first one will be used.

    • keystore_pass: the keystore password. The password (if applicable) MUST be the same as keystore password.

    • keystore_type: the type of keystore. Default: PKCS12.

  2. Use private-key/certificate files:

    • private_key_file: the private key file location. Supports both PKCS8 and OpenSSL private keys.

    • certificate_file: the X509 certificate chain file location.

Examples

Option 1: Use a keystore; generate a keystore with Java’s keytool. Note the storepass argument expects you to create your own password.

keytool -genkey -keyalg RSA -alias ts -keystore keystore.p12 -storepass changeit -storetype PKCS12 -validity 3600 -keysize 2048 -dname "CN=www.MY_TS.com, OU=Cloud Service, O=model server, L=Palo Alto, ST=California, C=US"

Config following property in config.properties:

inference_address=https://127.0.0.1:8443
management_address=https://127.0.0.1:8444
keystore=keystore.p12
keystore_pass=changeit
keystore_type=PKCS12

Option 2: Use private-key/certificate files; generate your self signed cert and key with OpenSSL:

openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout mykey.key -out mycert.pem

Config following property in config.properties:

inference_address=https://127.0.0.1:8443
management_address=https://127.0.0.1:8444
private_key_file=mykey.key
certificate_file=mycert.pem

Configure Cross-Origin Resource Sharing (CORS)

CORS is a mechanism that uses additional HTTP headers to tell a browser to let a web application running at one origin (domain) have permission to access selected resources from a server at a different origin.

CORS is disabled by default. Configure following properties in config.properties file to enable CORS:

# cors_allowed_origin is required to enable CORS, use '*' or your domain name
cors_allowed_origin=https://yourdomain.com
# required if you want to use preflight request
cors_allowed_methods=GET, POST, PUT, OPTIONS
# required if the request has an Access-Control-Request-Headers header
cors_allowed_headers=X-Custom-Header

Restrict backend worker to access environment variable

Environment variable may contains sensitive information like AWS credentials. Backend worker will execute arbitrary model’s custom code, which may expose security risk. TorchServe provides a blacklist_env_vars property which allows user to restrict which environment variable can be accessed by backend worker.

  • blacklist_env_vars: a regular expression to filter out environment variable names, default: all environment variable will be visible to backend worker.

Limit GPU usage

By default, TorchServe will use all available GPUs for inference, you use number_of_gpu to limit the usage of GPUs.

  • number_of_gpu: max number of GPUs that TorchServe can use for inference, default: available GPUs in system.

Other properties

Most of those properties are designed for performance tuning. Adjusting those numbers will impact scalability and throughput.

  • enable_envvars_config: Enable configuring TorchServe through environment variables. When this option is set to “true”, all the static configurations of TorchServe can come through environment variables as well. default: false

  • number_of_netty_threads: number frontend netty thread, default: number of logical processors available to the JVM.

  • netty_client_threads: number of backend netty thread, default: number of logical processors available to the JVM.

  • default_workers_per_model: number of workers to create for each model that loaded at startup time, default: available GPUs in system or number of logical processors available to the JVM.

  • job_queue_size: number inference jobs that frontend will queue before backend can serve, default 100.

  • async_logging: enable asynchronous logging for higher throughput, log output may be delayed if this is enabled, default: false.

  • default_response_timeout: Timeout, in seconds, used for model’s backend workers before they are deemed unresponsive and rebooted. default: 120 seconds.

  • unregister_model_timeout: Timeout, in seconds, used when handling an unregister model request when cleaning a process before it is deemed unresponsive and an error response is sent. default: 120 seconds.

  • decode_input_request: Configuration to let backend workers to decode requests, when the content type is known. If this is set to “true”, backend workers do “Bytearray to JSON object” conversion when the content type is “application/json” and the backend workers convert “Bytearray to utf-8 string” when the Content-Type of the request is set to “text*”. default: true

Docs

Access comprehensive developer documentation for PyTorch

View Docs

Tutorials

Get in-depth tutorials for beginners and advanced developers

View Tutorials

Resources

Find development resources and get your questions answered

View Resources

To analyze traffic and optimize your experience, we serve cookies on this site. By clicking or navigating, you agree to allow our usage of cookies. As the current maintainers of this site, Facebook’s Cookies Policy applies. Learn more, including about available controls: Cookies Policy.