From: Sukadev Bhattiprolu <sukadev-23VcF4HTsmIX0ybBhKVfKdBPR1lH4CV8@public.gmane.org>
To: Ferenc Wagner <wferi-eEbw3PyuezQ@public.gmane.org>
Cc: Linux Containers <containers-qjLDD68F18O7TbgM5vRIOg@public.gmane.org>
Subject: Re: pid namespace bug ?
Date: Fri, 7 May 2010 10:46:46 -0700 [thread overview]
Message-ID: <20100507174646.GA3484@us.ibm.com> (raw)
In-Reply-To: <87aasbsszn.fsf-/U8DR9OPLL8grVaPS+uXcA@public.gmane.org>
Ferenc Wagner [wferi-eEbw3PyuezQ@public.gmane.org] wrote:
| Sukadev Bhattiprolu <sukadev-23VcF4HTsmIX0ybBhKVfKdBPR1lH4CV8@public.gmane.org> writes:
|
| > Daniel Lezcano [daniel.lezcano-GANU6spQydw@public.gmane.org] wrote:
| >
| >> Ferenc Wagner wrote:
| >>
| >>> That is, the jailed sleep process could be killed by SIGKILL only, even
| >>> though (according to strace) SIGTERM was delivered and it isn't handled
| >>> specially. Why does this happen?
| >
| > Yes, SIGKILL is the only reliable way to terminate a container-init.
| > container-init needs to be immune to signals from within the container
| > but be open to receiving signals from parent container. These requirements
| > complicate the implementation of allowing SIGINT/SIGTERM etc to
| > container-init from parent container.
| >
| > Besides a realistic container-init would block such signals, in which case
| > the complexity in the kernel could be viewed as unnecessary.
|
| For full-system containers this is acceptable, but for running batch
| jobs this may prove problematic. Is this behaviour documented somewhere?
| Is this specific to SIGINT/SIGTERM or are other signals affected as well?
Let me clarify - if the container-init has a handler for the signal, the
signal will be delivered. _Unhandled_ signals whose default is to terminate/
stop the process will be ignored by cinit unless the signal is SIGKILL/SIGSTOP
and sender is from parent container.
So to terminate a cinit from parent namespace you need SIGKILL. But other
signals will be delivered to cinit only if it has a handler.
| They are used for communication (job control) with the container running
| the job. Such batch jobs are typically run under the supervision of
| some kind of "shepherd" process, which acts as "init" for the job
| environment; in my case it's the container-init. It's the reaper or
| possible orphaned processes and the same time it communicates with the
| job scheduler (outside of the container) via signals.
So can this job scheduler install handlers for SIGINIT/SIGTERM/SIGQUIT ?
| So I'd consider
| at least some kernel complexity necessary for Linux containers becoming
| a viable tool for batch job segregation.
Yes, it is annoying that we can't CTRL-C a cinit running /bin/sleep, but
this behavior should not be too limiting to a more functional cinit.
I had submitted a verbose man page patch for kill(2) to describe these
semantics. but following para in the notes section of kill(2) does
allude to this behavior:
The only signals that can be sent to process ID 1, the init
process, are those for which init has explicitly installed signal
handlers. This is done to assure the system is not brought down
accidentally.
See:
http://www.kernel.org/doc/man-pages/online/pages/man2/kill.2.html
Thanks,
Sukadev
next prev parent reply other threads:[~2010-05-07 17:46 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <8739y6ikjr.fsf@tac.ki.iif.hu>
[not found] ` <4BE178BC.4030201@free.fr>
[not found] ` <87ljbyh1zv.fsf@tac.ki.iif.hu>
[not found] ` <4BE18E01.3090103@free.fr>
[not found] ` <87hbml2uf3.fsf@tac.ki.iif.hu>
[not found] ` <4BE2A479.3060805@free.fr>
[not found] ` <87ocgt12fb.fsf@tac.ki.iif.hu>
[not found] ` <87ocgt12fb.fsf-/U8DR9OPLL8grVaPS+uXcA@public.gmane.org>
2010-05-06 20:13 ` pid namespace bug ? Daniel Lezcano
[not found] ` <4BE322F1.5030500-GANU6spQydw@public.gmane.org>
2010-05-06 20:52 ` Sukadev Bhattiprolu
[not found] ` <20100506205233.GA23542-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2010-05-07 8:51 ` Daniel Lezcano
[not found] ` <4BE3D4AD.1030705-GANU6spQydw@public.gmane.org>
2010-05-07 19:44 ` Sukadev Bhattiprolu
[not found] ` <20100507194426.GB14799-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2010-05-07 21:01 ` Ferenc Wagner
[not found] ` <878w7vmnnn.fsf-/U8DR9OPLL8grVaPS+uXcA@public.gmane.org>
2010-05-07 21:30 ` Sukadev Bhattiprolu
[not found] ` <20100507213037.GA3305-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2010-05-07 21:43 ` Ferenc Wagner
2010-05-08 12:52 ` Daniel Lezcano
2010-05-07 14:10 ` Ferenc Wagner
[not found] ` <87aasbsszn.fsf-/U8DR9OPLL8grVaPS+uXcA@public.gmane.org>
2010-05-07 17:46 ` Sukadev Bhattiprolu [this message]
[not found] ` <20100507174646.GA3484-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2010-05-07 20:54 ` Ferenc Wagner
[not found] ` <87d3x7mnzz.fsf-/U8DR9OPLL8grVaPS+uXcA@public.gmane.org>
2010-05-08 2:11 ` Sukadev Bhattiprolu
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20100507174646.GA3484@us.ibm.com \
--to=sukadev-23vcf4htsmix0ybbhkvfkdbpr1lh4cv8@public.gmane.org \
--cc=containers-qjLDD68F18O7TbgM5vRIOg@public.gmane.org \
--cc=wferi-eEbw3PyuezQ@public.gmane.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.