Skip to content

Commit bcddc62

Browse files
abel-vonlifubang
abel-von
authored and
lifubang
committed
libct: reduce the delete delay
When using unix.Kill to kill the container, we need a for loop to detect the init process exited or not manually, we sleep 100ms each time in the current, but for stopped containers or containers running in a low load machine, we don't need to wait so long time. This change will reduce the delete delay in some situations, especially for those pods with many containers in. Co-authored-by: Abel Feng <[email protected]> Signed-off-by: lifubang <[email protected]>
1 parent b38f27f commit bcddc62

File tree

2 files changed

+22
-8
lines changed

2 files changed

+22
-8
lines changed

delete.go

Lines changed: 13 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,7 @@ import (
77
"path/filepath"
88

99
"github.com/opencontainers/runc/libcontainer"
10+
"github.com/opencontainers/runc/libcontainer/configs"
1011
"github.com/urfave/cli"
1112
)
1213

@@ -58,24 +59,28 @@ status of "ubuntu01" as "stopped" the following will delete resources held for
5859
}
5960
return err
6061
}
61-
// When --force is given, we kill all container processes and
62-
// then destroy the container. This is done even for a stopped
63-
// container, because (in case it does not have its own PID
64-
// namespace) there may be some leftover processes in the
65-
// container's cgroup.
66-
if force {
67-
return killContainer(container)
68-
}
62+
6963
s, err := container.Status()
7064
if err != nil {
7165
return err
7266
}
7367
switch s {
7468
case libcontainer.Stopped:
69+
// For a stopped container, because (in case it does not have
70+
// its own PID namespace) there may be some leftover processes
71+
// in the container's cgroup.
72+
if !container.Config().Namespaces.IsPrivate(configs.NEWPID) {
73+
return killContainer(container)
74+
}
7575
return container.Destroy()
7676
case libcontainer.Created:
7777
return killContainer(container)
7878
default:
79+
// When --force is given, we kill all container processes and
80+
// then destroy the container.
81+
if force {
82+
return killContainer(container)
83+
}
7984
return fmt.Errorf("cannot delete container %s that is not stopped: %s", id, s)
8085
}
8186
},

libcontainer/container_linux.go

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -473,6 +473,15 @@ func (c *Container) killViaPidfd() error {
473473

474474
func (c *Container) kill() error {
475475
_ = c.Signal(unix.SIGKILL)
476+
477+
// For containers running in a low load machine, we only need to wait about 1ms.
478+
time.Sleep(time.Millisecond)
479+
if err := c.Signal(unix.Signal(0)); err != nil {
480+
return nil
481+
}
482+
483+
// For some containers in a heavy load machine, we need to wait more time.
484+
logrus.Debugln("We need more time to wait the init process exit.")
476485
for i := 0; i < 100; i++ {
477486
time.Sleep(100 * time.Millisecond)
478487
if err := c.Signal(unix.Signal(0)); err != nil {

0 commit comments

Comments
 (0)