`ahabd`: Harden cancellation teardown (again XD)
Needed to move the startup sequence inside the `try:` block to guarantee we always do the (now shielded) `.cancel()` call if we get a cancel during startup. Also, support an optional `started_afunc` field in the config if backends want to just provide a one-off blocking async func to sync container startup. Add a `drop_root_perms: bool` to allow persisting sudo perms for testing or dyanmic container spawning purposes.service_subpkg
Tyler Goodlet
parent
9a00c45923
commit
15064d94cb
|
|
@ -15,7 +15,8 @@
|
||||||
# along with this program. If not, see <https://www.gnu.org/licenses/>.
|
# along with this program. If not, see <https://www.gnu.org/licenses/>.
|
||||||
|
|
||||||
'''
|
'''
|
||||||
Supervisor for docker with included specific-image service helpers.
|
Supervisor for ``docker`` with included async and SC wrapping
|
||||||
|
to ensure a cancellable container lifetime system.
|
||||||
|
|
||||||
'''
|
'''
|
||||||
from collections import ChainMap
|
from collections import ChainMap
|
||||||
|
|
@ -349,8 +350,8 @@ async def open_ahabd(
|
||||||
(
|
(
|
||||||
dcntr,
|
dcntr,
|
||||||
cntr_config,
|
cntr_config,
|
||||||
start_lambda,
|
start_pred,
|
||||||
stop_lambda,
|
stop_pred,
|
||||||
) = ep_func(client)
|
) = ep_func(client)
|
||||||
cntr = Container(dcntr)
|
cntr = Container(dcntr)
|
||||||
|
|
||||||
|
|
@ -375,20 +376,30 @@ async def open_ahabd(
|
||||||
# when read using:
|
# when read using:
|
||||||
# ``json.loads(entry for entry in DockerContainer.logs())``
|
# ``json.loads(entry for entry in DockerContainer.logs())``
|
||||||
'log_msg_key': 'msg',
|
'log_msg_key': 'msg',
|
||||||
|
|
||||||
|
|
||||||
|
# startup sync func, like `Nursery.started()`
|
||||||
|
'started_afunc': None,
|
||||||
},
|
},
|
||||||
)
|
)
|
||||||
|
|
||||||
|
try:
|
||||||
with trio.move_on_after(conf['startup_timeout']) as cs:
|
with trio.move_on_after(conf['startup_timeout']) as cs:
|
||||||
async with trio.open_nursery() as tn:
|
async with trio.open_nursery() as tn:
|
||||||
tn.start_soon(
|
tn.start_soon(
|
||||||
partial(
|
partial(
|
||||||
cntr.process_logs_until,
|
cntr.process_logs_until,
|
||||||
log_msg_key=conf['log_msg_key'],
|
log_msg_key=conf['log_msg_key'],
|
||||||
patt_matcher=start_lambda,
|
patt_matcher=start_pred,
|
||||||
checkpoint_period=conf['startup_query_period'],
|
checkpoint_period=conf['startup_query_period'],
|
||||||
)
|
)
|
||||||
)
|
)
|
||||||
|
|
||||||
|
# optional blocking routine
|
||||||
|
started = conf['started_afunc']
|
||||||
|
if started:
|
||||||
|
await started()
|
||||||
|
|
||||||
# poll for container startup or timeout
|
# poll for container startup or timeout
|
||||||
while not cs.cancel_called:
|
while not cs.cancel_called:
|
||||||
if dcntr in client.containers.list():
|
if dcntr in client.containers.list():
|
||||||
|
|
@ -404,9 +415,9 @@ async def open_ahabd(
|
||||||
cntr_config,
|
cntr_config,
|
||||||
))
|
))
|
||||||
|
|
||||||
try:
|
# XXX: if we timeout on finding the "startup msg" we
|
||||||
# XXX: if we timeout on finding the "startup msg" we expect then
|
# expect then we want to FOR SURE raise an error
|
||||||
# we want to FOR SURE raise an error upwards!
|
# upwards!
|
||||||
if cs.cancelled_caught:
|
if cs.cancelled_caught:
|
||||||
# if dcntr not in client.containers.list():
|
# if dcntr not in client.containers.list():
|
||||||
for entry in cntr.seen_so_far:
|
for entry in cntr.seen_so_far:
|
||||||
|
|
@ -414,8 +425,8 @@ async def open_ahabd(
|
||||||
|
|
||||||
raise DockerNotStarted(
|
raise DockerNotStarted(
|
||||||
f'Failed to start container: {cntr.cuid}\n'
|
f'Failed to start container: {cntr.cuid}\n'
|
||||||
f'due to startup_timeout={conf["startup_timeout"]}s\n\n'
|
f'due to timeout={conf["startup_timeout"]}s\n\n'
|
||||||
"prolly you should check your container's logs for deats.."
|
"check ur container's logs!"
|
||||||
)
|
)
|
||||||
|
|
||||||
# TODO: we might eventually want a proxy-style msg-prot here
|
# TODO: we might eventually want a proxy-style msg-prot here
|
||||||
|
|
@ -430,10 +441,10 @@ async def open_ahabd(
|
||||||
# on ctl-c from user.. ideally we can avoid a cancel getting
|
# on ctl-c from user.. ideally we can avoid a cancel getting
|
||||||
# consumed and not propagating whilst still doing teardown
|
# consumed and not propagating whilst still doing teardown
|
||||||
# logging..
|
# logging..
|
||||||
# with trio.CancelScope(shield=True):
|
with trio.CancelScope(shield=True):
|
||||||
await cntr.cancel(
|
await cntr.cancel(
|
||||||
log_msg_key=conf['log_msg_key'],
|
log_msg_key=conf['log_msg_key'],
|
||||||
stop_predicate=stop_lambda,
|
stop_predicate=stop_pred,
|
||||||
)
|
)
|
||||||
|
|
||||||
|
|
||||||
|
|
@ -441,6 +452,7 @@ async def start_ahab(
|
||||||
service_name: str,
|
service_name: str,
|
||||||
endpoint: Callable[docker.DockerClient, DockerContainer],
|
endpoint: Callable[docker.DockerClient, DockerContainer],
|
||||||
loglevel: str | None = 'cancel',
|
loglevel: str | None = 'cancel',
|
||||||
|
drop_root_perms: bool = True,
|
||||||
|
|
||||||
task_status: TaskStatus[
|
task_status: TaskStatus[
|
||||||
tuple[
|
tuple[
|
||||||
|
|
@ -477,7 +489,10 @@ async def start_ahab(
|
||||||
|
|
||||||
# de-escalate root perms to the original user
|
# de-escalate root perms to the original user
|
||||||
# after the docker supervisor actor is spawned.
|
# after the docker supervisor actor is spawned.
|
||||||
if config._parent_user:
|
if (
|
||||||
|
drop_root_perms
|
||||||
|
and config._parent_user
|
||||||
|
):
|
||||||
import pwd
|
import pwd
|
||||||
os.setuid(
|
os.setuid(
|
||||||
pwd.getpwnam(
|
pwd.getpwnam(
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue