Terminate running containers when CRI restarts (containerd#107)

kevpar · web-flow · commit f8e83e63cc02 · 2021-09-13T12:39:39.000-07:00
* Terminate running containers when CRI restarts

Currently if any containers are still running when CRI restarts, we are
unable to reconnect to their IO pipes. Due to this, the containers can
get stuck if they do blocking IO operations, as the pipes are not being
drained by CRI anymore.

There is longer-term work to reconnect to the IO pipes, but for the
meantime, this change makes CRI terminate any running containers in two
cases:
- When CRI gracefully shuts down
- When CRI starts up, as it rediscovers running containers

This change also improves logging a little in the restart logic.

Signed-off-by: Kevin Parsons &lt;kevpar@microsoft.com&gt;

* Use correct context type

Signed-off-by: Kevin Parsons &lt;kevpar@microsoft.com&gt;
diff --git a/pkg/config/config.go b/pkg/config/config.go
@@ -163,6 +163,8 @@ type PluginConfig struct {
 	RestrictOOMScoreAdj bool `toml:"restrict_oom_score_adj" json:"restrictOOMScoreAdj"`
 	// Sets GODEBUG=http2client=0 if enabled.
 	DisableHTTP2Client bool `toml:"disable_http2_client" json:"disableHTTP2Client"`
+	// Determines whether any running containers should be terminated when CRI shuts down or starts up.
+	TerminateContainersOnRestart bool `toml:"terminate_containers_on_restart" json:"terminateContainersOnRestart"`
 }
 
 // X509KeyPairStreaming contains the x509 configuration for streaming
diff --git a/pkg/server/restart.go b/pkg/server/restart.go
@@ -58,12 +58,14 @@ func (c *criService) recover(ctx context.Context) error {
 		return errors.Wrap(err, "failed to list sandbox containers")
 	}
 	for _, sandbox := range sandboxes {
+		l := log.G(ctx).WithField("containerID", sandbox.ID())
+		l.Debug("Loading sandbox")
 		sb, err := c.loadSandbox(ctx, sandbox)
 		if err != nil {
-			log.G(ctx).WithError(err).Errorf("Failed to load sandbox %q", sandbox.ID())
+			l.WithError(err).Errorf("Failed to load sandbox")
 			continue
 		}
-		log.G(ctx).Debugf("Loaded sandbox %+v", sb)
+		l.Debugf("Loaded sandbox")
 		if err := c.sandboxStore.Add(sb); err != nil {
 			return errors.Wrapf(err, "failed to add sandbox %q to store", sandbox.ID())
 		}
@@ -78,12 +80,14 @@ func (c *criService) recover(ctx context.Context) error {
 		return errors.Wrap(err, "failed to list containers")
 	}
 	for _, container := range containers {
+		l := log.G(ctx).WithField("containerID", container.ID())
+		l.Debug("Loading container")
 		cntr, err := c.loadContainer(ctx, container)
 		if err != nil {
-			log.G(ctx).WithError(err).Errorf("Failed to load container %q", container.ID())
+			l.WithError(err).Errorf("Failed to load container")
 			continue
 		}
-		log.G(ctx).Debugf("Loaded container %+v", cntr)
+		l.Debugf("Loaded container")
 		if err := c.containerStore.Add(cntr); err != nil {
 			return errors.Wrapf(err, "failed to add container %q to store", container.ID())
 		}
@@ -251,6 +255,11 @@ func (c *criService) loadContainer(ctx context.Context, cntr containerd.Containe
 				// Container is in exited/unknown state, return the status as it is.
 			}
 		} else {
+			// If we need to terminate any running containers, mark it as stopped here.
+			// This will cause it to be stopped via WithProcessKill in the switch case below.
+			if c.config.TerminateContainersOnRestart {
+				s.Status = containerd.Stopped
+			}
 			// Task status is found. Update container status based on the up-to-date task status.
 			switch s.Status {
 			case containerd.Created:
@@ -293,6 +302,7 @@ func (c *criService) loadContainer(ctx context.Context, cntr containerd.Containe
 					c.eventMonitor.startExitMonitor(context.Background(), id, status.Pid, exitCh)
 				}
 			case containerd.Stopped:
+				log.G(ctx).WithField("containerID", cntr.ID()).Info("Deleting dead container task")
 				// Task is stopped. Updata status and delete the task.
 				if _, err := t.Delete(ctx, containerd.WithProcessKill); err != nil && !errdefs.IsNotFound(err) {
 					return errors.Wrap(err, "failed to delete task")
@@ -374,7 +384,9 @@ func (c *criService) loadSandbox(ctx context.Context, cntr containerd.Container)
 			// Task does not exist, set sandbox state as NOTREADY.
 			status.State = sandboxstore.StateNotReady
 		} else {
-			if taskStatus.Status == containerd.Running {
+			// If we need to terminate running containers, treat it as stopped, so the else condition
+			// will clean it up via WithProcessKill.
+			if taskStatus.Status == containerd.Running && !c.config.TerminateContainersOnRestart {
 				// Wait for the task for sandbox monitor.
 				// wait is a long running background request, no timeout needed.
 				exitCh, err := t.Wait(ctrdutil.NamespacedContext())
@@ -390,6 +402,7 @@ func (c *criService) loadSandbox(ctx context.Context, cntr containerd.Container)
 					c.eventMonitor.startExitMonitor(context.Background(), meta.ID, status.Pid, exitCh)
 				}
 			} else {
+				log.G(ctx).WithField("sandboxID", cntr.ID()).Info("Deleting dead sandbox task")
 				// Task is not running. Delete the task and set sandbox state as NOTREADY.
 				if _, err := t.Delete(ctx, containerd.WithProcessKill); err != nil && !errdefs.IsNotFound(err) {
 					return status, errors.Wrap(err, "failed to delete task")
diff --git a/pkg/server/service.go b/pkg/server/service.go
@@ -17,6 +17,7 @@ limitations under the License.
 package server
 
 import (
+	"context"
 	"fmt"
 	"io"
 	"net/http"
@@ -26,6 +27,7 @@ import (
 	"time"
 
 	"github.com/containerd/containerd"
+	"github.com/containerd/containerd/log"
 	"github.com/containerd/containerd/plugin"
 	cni "github.com/containerd/go-cni"
 	"github.com/pkg/errors"
@@ -272,6 +274,15 @@ func (c *criService) Run() error {
 // TODO(random-liu): Make close synchronous.
 func (c *criService) Close() error {
 	logrus.Info("Stop CRI service")
+	if c.config.TerminateContainersOnRestart {
+		// We need to stop any running containers. Do this by stopping all pods.
+		ctx := context.Background()
+		for _, sandbox := range c.sandboxStore.List() {
+			if err := c.stopPodSandbox(ctx, sandbox); err != nil {
+				log.G(ctx).WithField("sandboxID", sandbox.Metadata.ID).Error("Failed to stop sandbox on shutdown")
+			}
+		}
+	}
 	c.eventMonitor.stop()
 	if err := c.streamServer.Stop(); err != nil {
 		return errors.Wrap(err, "failed to stop stream server")

Original file line number	Diff line number	Diff line change
`@@ -163,6 +163,8 @@ type PluginConfig struct {`
`163`	`163`	RestrictOOMScoreAdj bool `toml:"restrict_oom_score_adj" json:"restrictOOMScoreAdj"`
`164`	`164`	`// Sets GODEBUG=http2client=0 if enabled.`
`165`	`165`	DisableHTTP2Client bool `toml:"disable_http2_client" json:"disableHTTP2Client"`
	`166`	`+ // Determines whether any running containers should be terminated when CRI shuts down or starts up.`
	`167`	+ TerminateContainersOnRestart bool `toml:"terminate_containers_on_restart" json:"terminateContainersOnRestart"`
`166`	`168`	`}`
`167`	`169`
`168`	`170`	`// X509KeyPairStreaming contains the x509 configuration for streaming`