Kill exec process with SIGTERM instead of SIGKILL

Question

Kill exec process with SIGTERM instead of SIGKILL

inoc603 opened this issue 7 years ago · 4 comments

In runc.Exec, here the exec command is created with exec.CommandContext, which will kill the runc command with os.Process.Kill when the context is done. And when runc is killed by SIGKILL, the exec process inside the container is not stopped. I think we should send SIGTERM manually to stop the runc command when we're doing exec.

I only tested this with docker-runc. Can anyone confirm whether it is the same with runc?

Answer 1 · 2017-07-11T21:45:30.000Z

Why do you think this is not the correct functionality? When a context closes, that means the request or parent crashed/ended so we don't want to orphan the runc process.

Answer 2 · 2017-07-12T00:06:17.000Z

Yes the runc process should be killed when the context closes. My point is that it should be killed by SIGTERM rather than SIGKILL, so runc itself can clean up the exec process in the container. Current mechanism will orphan the exec process inside the container.

What I'm suggesting is listening for ctx.Done() manually, instead of letting the exec package handle it.

Answer 3 · 2017-07-12T15:53:01.000Z

@inoc603 ok, the hard part is that Go is the one that sends the SIGKILL. We would have to rewrite all the logic for CommandContext to make this work like you said.

Answer 4 · 2021-07-23T23:53:06.000Z

Closed #28 for staleness, is this issue still relevant though?