opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-05-21 00:56:36 +08:00
Code Issues Packages Projects Releases Wiki Activity

First batch of resolutions to FIXMEs

Browse Source 
Most of these are no longer relevant, just drop the comments.

Most notable change: allow `podman kill` on paused containers.
Works just fine when I test it.

Signed-off-by: Matthew Heon <mheon@redhat.com>
This commit is contained in:
Matthew Heon
2022-05-23 13:27:04 -04:00
parent 819e5bcb94
commit 9fcfea7643
7 changed files with 25 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docs/source/markdown/podman-kill.1.md
View File

@ -14,7 +14,7 @@ The main process inside each container specified will be sent SIGKILL, or any si
## OPTIONS ## OPTIONS
#### **--all**, **-a** #### **--all**, **-a**
Signal all running containers. This does not include paused containers. Signal all running and paused containers.
#### **--cidfile** #### **--cidfile**

3
libpod/container.go
View File

@ -1331,8 +1331,7 @@ func (c *Container) getNetworkStatus() map[string]types.StatusBlock {
} }
c.state.NetworkStatus = result c.state.NetworkStatus = result
_ = c.save() _ = c.save()
// TODO remove debug for final version
logrus.Debugf("converted old network result to new result %v", result)
return result return result
} }
return nil return nil

3
libpod/container_api.go
View File

@ -202,9 +202,8 @@ func (c *Container) Kill(signal uint) error {
} }
} }
// TODO: Is killing a paused container OK?
switch c.state.State { switch c.state.State {
case define.ContainerStateRunning, define.ContainerStateStopping: case define.ContainerStateRunning, define.ContainerStateStopping, define.ContainerStatePaused:
// Note that killing containers in "stopping" state is okay. // Note that killing containers in "stopping" state is okay.
// In that state, the Podman is waiting for the runtime to // In that state, the Podman is waiting for the runtime to
// stop the container and if that is taking too long, a user // stop the container and if that is taking too long, a user

1
libpod/container_config.go
View File

@ -372,7 +372,6 @@ type ContainerMiscConfig struct {
// restart the container. Used only if RestartPolicy is set to // restart the container. Used only if RestartPolicy is set to
// "on-failure". // "on-failure".
RestartRetries uint `json:"restart_retries,omitempty"` RestartRetries uint `json:"restart_retries,omitempty"`
// TODO log options for log drivers
// PostConfigureNetNS needed when a user namespace is created by an OCI runtime // PostConfigureNetNS needed when a user namespace is created by an OCI runtime
// if the network namespace is created before the user namespace it will be // if the network namespace is created before the user namespace it will be
// owned by the wrong user namespace. // owned by the wrong user namespace.

2
libpod/container_exec.go
View File

@ -279,8 +279,6 @@ func (c *Container) ExecStart(sessionID string) error {
// ExecStartAndAttach starts and attaches to an exec session in a container. // ExecStartAndAttach starts and attaches to an exec session in a container.
// newSize resizes the tty to this size before the process is started, must be nil if the exec session has no tty // newSize resizes the tty to this size before the process is started, must be nil if the exec session has no tty
// TODO: Should we include detach keys in the signature to allow override?
// TODO: How do we handle AttachStdin/AttachStdout/AttachStderr?
func (c *Container) ExecStartAndAttach(sessionID string, streams *define.AttachStreams, newSize *define.TerminalSize) error { func (c *Container) ExecStartAndAttach(sessionID string, streams *define.AttachStreams, newSize *define.TerminalSize) error {
if !c.batched { if !c.batched {
c.lock.Lock() c.lock.Lock()

7
libpod/container_internal_linux.go
View File

@ -1091,7 +1091,6 @@ func (c *Container) addNamespaceContainer(g *generate.Generator, ns LinuxNS, ctr
g.AddProcessEnv("HOSTNAME", hostname) g.AddProcessEnv("HOSTNAME", hostname)
} }
// TODO need unlocked version of this for use in pods
nsPath, err := nsCtr.NamespacePath(ns) nsPath, err := nsCtr.NamespacePath(ns)
if err != nil { if err != nil {
return err return err
@ -3230,10 +3229,8 @@ func (c *Container) fixVolumePermissions(v *ContainerNamedVolume) error {
return err return err
} }
// TODO: For now, I've disabled chowning volumes owned by non-Podman // Volumes owned by a volume driver are not chowned - we don't want to
// drivers. This may be safe, but it's really going to be a case-by-case // mess with a mount not managed by us.
// thing, I think - safest to leave disabled now and re-enable later if
// there is a demand.
if vol.state.NeedsChown && !vol.UsesVolumeDriver() { if vol.state.NeedsChown && !vol.UsesVolumeDriver() {
vol.state.NeedsChown = false vol.state.NeedsChown = false

20
test/e2e/kill_test.go
View File

@ -128,6 +128,26 @@ var _ = Describe("Podman kill", func() {
Expect(podmanTest.NumberOfContainersRunning()).To(Equal(0)) Expect(podmanTest.NumberOfContainersRunning()).To(Equal(0))
}) })
It("podman kill paused container", func() {
ctrName := "testctr"
session := podmanTest.RunTopContainer(ctrName)
session.WaitWithDefaultTimeout()
Expect(session).Should(Exit(0))
pause := podmanTest.Podman([]string{"pause", ctrName})
pause.WaitWithDefaultTimeout()
Expect(pause).Should(Exit(0))
kill := podmanTest.Podman([]string{"kill", ctrName})
kill.WaitWithDefaultTimeout()
Expect(kill).Should(Exit(0))
inspect := podmanTest.Podman([]string{"inspect", "-f", "{{.State.Status}}", ctrName})
inspect.WaitWithDefaultTimeout()
Expect(inspect).Should(Exit(0))
Expect(inspect.OutputToString()).To(Or(Equal("stopped"), Equal("exited")))
})
It("podman kill --cidfile", func() { It("podman kill --cidfile", func() {
tmpDir, err := ioutil.TempDir("", "") tmpDir, err := ioutil.TempDir("", "")
Expect(err).To(BeNil()) Expect(err).To(BeNil())