Skip to content

runtime/v2: cleanup dead shim before delete bundle #4538

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
estesp merged 1 commit into from
Sep 21, 2020
Merged

runtime/v2: cleanup dead shim before delete bundle #4538

estesp merged 1 commit into from
Sep 21, 2020

Conversation

@fuweid
Copy link
Member

@fuweid fuweid commented Sep 7, 2020
edited
Loading

The shim delete action needs bundle information to cleanup resources
created by shim. If the cleanup dead shim is called after delete bundle,
the part of resources maybe leaky.

The ttrpc client UserOnCloseWait() can make sure that resources are
cleanup before delete bundle, which synchronizes task deletion and
cleanup deadshim. It might slow down the task deletion, but it can make
sure that resources can be cleanup and avoid EBUSY umount case. For
example, the sandbox container like Kata/Firecracker might have mount
points over the rootfs. If containerd handles task deletion and cleanup
deadshim parallelly, the task deletion will meet EBUSY during umount and
fail to cleanup bundle, which makes case worse.

And also update cleanupAfterDeadshim, which makes sure that
cleanupAfterDeadshim must be called after shim disconnected. In some
case, shim fails to call runc-create for some reason, but the runc-create
already makes runc-init into ready state. If containerd doesn't call shim
deletion, the runc-init process will be leaky and hold the cgroup, which
makes pod terminating :(.

Signed-off-by: Wei Fu [email protected]

@theopenlab-ci
Copy link

theopenlab-ci bot commented Sep 7, 2020

Build succeeded.

@fuweid fuweid force-pushed the update-shim-cleanup branch from 2e52f91 to 6a82da4 Compare September 9, 2020 16:28
@theopenlab-ci
Copy link

theopenlab-ci bot commented Sep 9, 2020

Build succeeded.

@fuweid fuweid marked this pull request as ready for review September 10, 2020 00:02
@fuweid
Copy link
Member Author

fuweid commented Sep 11, 2020

ping @crosbymichael @AkihiroSuda @cpuguy83 @mikebrow PTAL~

thaJeztah
thaJeztah reviewed Sep 11, 2020
View reviewed changes
estesp
estesp approved these changes Sep 15, 2020
View reviewed changes
Copy link
Member

@estesp estesp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@thaJeztah thaJeztah mentioned this pull request Sep 15, 2020
Merged
mikebrow
mikebrow approved these changes Sep 15, 2020
View reviewed changes
Copy link
Member

@mikebrow mikebrow left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@thaJeztah
Copy link
Member

thaJeztah commented Sep 18, 2020

@fuweid I see you tagged ttrpc v1.0.2; https://github.com/containerd/ttrpc/releases/tag/v1.0.2 can you update the vendor.conf to use that tag?

@fuweid
runtime/v2: cleanup dead shim before delete bundle
4b05d03 
The shim delete action needs bundle information to cleanup resources
created by shim. If the cleanup dead shim is called after delete bundle,
the part of resources maybe leaky.

The ttrpc client UserOnCloseWait() can make sure that resources are
cleanup before delete bundle, which synchronizes task deletion and
cleanup deadshim. It might slow down the task deletion, but it can make
sure that resources can be cleanup and avoid EBUSY umount case. For
example, the sandbox container like Kata/Firecracker might have mount
points over the rootfs. If containerd handles task deletion and cleanup
deadshim parallelly, the task deletion will meet EBUSY during umount and
fail to cleanup bundle, which makes case worse.

And also update cleanupAfterDeadshim, which makes sure that
cleanupAfterDeadshim must be called after shim disconnected. In some
case, shim fails to call runc-create for some reason, but the runc-create
already makes runc-init into ready state. If containerd doesn't call shim
deletion, the runc-init process will be leaky and hold the cgroup, which
makes pod terminating :(.

Signed-off-by: Wei Fu <[email protected]>
@fuweid fuweid force-pushed the update-shim-cleanup branch from 6a82da4 to 4b05d03 Compare September 20, 2020 03:26
@theopenlab-ci
Copy link

theopenlab-ci bot commented Sep 20, 2020

Build succeeded.

@fuweid
Copy link
Member Author

fuweid commented Sep 20, 2020

@thaJeztah sorry for late update. I updated the vendor.conf and PTAL. Thanks!

estesp
estesp approved these changes Sep 21, 2020
View reviewed changes
Copy link
Member

@estesp estesp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@estesp estesp merged commit 68d9733 into containerd:master Sep 21, 2020
@fuweid fuweid deleted the update-shim-cleanup branch September 24, 2020 02:32
This was referenced Nov 25, 2020
Closed
Closed
@AkihiroSuda
Copy link
Member

AkihiroSuda commented Nov 25, 2020

This commit seems causing a regression: #4769

@claudiubelu claudiubelu mentioned this pull request Jun 1, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dmcgowan dmcgowan dmcgowan left review comments

@thaJeztah thaJeztah thaJeztah left review comments

@estesp estesp estesp approved these changes

@AkihiroSuda AkihiroSuda AkihiroSuda approved these changes

@mikebrow mikebrow mikebrow approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@fuweid @thaJeztah @AkihiroSuda @dmcgowan @estesp @mikebrow