Task lifecycle restart #14127
Merged
Task lifecycle restart #14127
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
859b089
to
4081bc7
Compare
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
4081bc7
to
0bec51f
Compare
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
0bec51f
to
464279e
Compare
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
dbcea53
to
7a1415c
Compare
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
7a1415c
to
d57003e
Compare
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
d57003e
to
9f7234f
Compare
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
9f7234f
to
3e99369
Compare
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
3e99369
to
a8e38ce
Compare
This was referenced Aug 18, 2022
Closed
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
b294b97
to
4ac9de1
Compare
lgfa29
commented
Aug 18, 2022
| @@ -127,6 +127,16 @@ func (a *Allocations) Restart(alloc *Allocation, taskName string, q *QueryOption | |||
| return err | |||
| } | |||
|
|
|||
| func (a *Allocations) RestartAllTasks(alloc *Allocation, q *QueryOptions) error { | |||
There was a problem hiding this comment.
I created a new method here to avoid an api package breaking change in the Restart method above.
lgfa29
commented
Aug 18, 2022
The first implementation of the task runner restore process relied on server data (`tr.Alloc().TerminalStatus()`) which may not be available to the client at the time of restore. It also had the incorrect code path. When restoring a dead task the driver handle always needs to be clear cleanly using `clearDriverHandle` otherwise, after exiting the MAIN loop, the task may be killed by `tr.handleKill`. The fix is to store the state of the Run() loop in the task runner local client state: if the task runner ever exits this loop cleanly (not with a shutdown) it will never be able to run again. So if the Run() loops starts with this local state flag set, it must exit early. This local state flag is also being checked on task restart requests. If the task is "dead" and its Run() loop is not active it will never be able to run again.
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
8b813fd
to
c56cfdb
Compare
DerekStrickland
approved these changes
Aug 23, 2022
client/allocrunner/alloc_runner.go
Outdated
| // The event type will be set to TaskRestartRunningSignal to comply with | ||
| // internal restart logic requirements. | ||
| func (ar *allocRunner) Restart(ctx context.Context, event *structs.TaskEvent, failure bool) error { | ||
| if event.Type != structs.TaskRestartRunningSignal { |
There was a problem hiding this comment.
If the event.Type isn't TaskRestartRunningSignal should we emit the incoming event to TaskState and create a new event, rather than overwriting it? It looks like only the check watcher calls this method, and it uses the the correct event.Type but maybe it would be a little more future proof to emit and create?
There was a problem hiding this comment.
Hum..not sure if I understood, do you mean something like this?
func (ar *allocRunner) Restart(ctx context.Context, event *structs.TaskEvent, failure bool) error {
ev := event.Copy()
ev.Type = structs.TaskRestartRunningSignal
return ar.restartTasks(ctx, ev, failure)
}There was a problem hiding this comment.
I thought the original reason we were overwriting was a form of assertion? If it's not the right task restart signal, it's a bug?
There was a problem hiding this comment.
Yeah, my understanding is that, for the caller of the allocRunner.Restart* functions, the event type doesn't matter, so overwriting it was a way to "correct" the call if, for some reason, it was done using the wrong type.
There is no valid scenario where you would call, for example, RestartRunning with anything other than the TaskRestartRunningSignal event type, so instead of returning an error we correct the call.
The Restart method specifically is an interesting one. It is used to implement the WorkloadRestarter interface (defined here and here) so, in theory, it could be used to perform different types of restart, but I chose to keep it as-is (restart only tasks that are currently running).
There was a problem hiding this comment.
That's almost what I meant. I was suggesting we make the copy and emit both events. I was thinking that with this implementation you lose the info on which code path triggered the restart.
There was a problem hiding this comment.
A few things to note here:
- task events are used to surface information to users, they are not something like code tracing.
- event types have a fairly restrict set of possible values, so they are not the best to help trace code path.
- events have other, more meaningful fields, like
DisplayMessage,Details,ReastartReasonetc. and those will be kept from the input. - task events are stored in state, and we only keep the last 10, so emitting (almost) duplicate events will take up a slot and provide little value to users.
That being said, my implementation does abuse the task event mechanism a bit. I tried to think of an alternative, but couldn't think of one yet. I will take another look to see if I can think of something else.
There was a problem hiding this comment.
e620cd1 removes all of this task event nonsense 😅
I also got ride of the new task event types to avoid any confusion on the developer side as to which type to use. I think it's easy enough for users to distinguish between them given their event description:
| @@ -277,7 +293,7 @@ func (c *Coordinator) isPrestartDone(states map[string]*structs.TaskState) bool | |||
| } | |||
|
|
|||
| for _, task := range c.tasksByLifecycle[lifecycleStagePrestartEphemeral] { | |||
| if states[task].State != structs.TaskStateDead || states[task].Failed { | |||
| if !states[task].Successful() { | |||
| @@ -9,25 +9,63 @@ import ( | |||
| // Restart a task. Returns immediately if no task is running. Blocks until | |||
| // existing task exits or passed-in context is canceled. | |||
| func (tr *TaskRunner) Restart(ctx context.Context, event *structs.TaskEvent, failure bool) error { | |||
| tr.logger.Trace("Restart requested", "failure", failure) | |||
| tr.logger.Trace("Restart requested", "failure", failure, "event", event.GoString()) | |||
| // all tasks in the alloc, otherwise the taskCoordinator will prevent | ||
| // it from running again, and if their Run method is still running. | ||
| if event.Type != structs.TaskRestartAllSignal || localState.RunComplete { | ||
| return ErrTaskNotRunning |
There was a problem hiding this comment.
Would a distinct error type that indicates this condition be helpful upstream? If not, please ignore 😃
There was a problem hiding this comment.
Hum...I think the error is the same, that task tried to restart but it wasn't running
lgfa29
added a commit
that referenced
this pull request
Aug 24, 2022
Using the task event to differentiate between the allocrunner restart methods proved to be confusing for developers to understand how it all worked. So instead of relying on the event type, this commit separated the logic of restarting an taskRunner into two methods: - `Restart` will retain the current behaviour and only will only restart the task if it's currently running. - `ForceRestart` is the new method where a `dead` task is allowed to restart if its `Run()` method is still active. Callers will need to restart the allocRunner taskCoordinator to make sure it will allow the task to run again.
lgfa29
force-pushed
the
task-lifecycle-restart
branch
from
ef6ae16
to
8037a17
Compare
lgfa29
added a commit
that referenced
this pull request
Aug 24, 2022
* allocrunner: handle lifecycle when all tasks die When all tasks die the Coordinator must transition to its terminal state, coordinatorStatePoststop, to unblock poststop tasks. Since this could happen at any time (for example, a prestart task dies), all states must be able to transition to this terminal state. * allocrunner: implement different alloc restarts Add a new alloc restart mode where all tasks are restarted, even if they have already exited. Also unifies the alloc restart logic to use the implementation that restarts tasks concurrently and ignores ErrTaskNotRunning errors since those are expected when restarting the allocation. * allocrunner: allow tasks to run again Prevent the task runner Run() method from exiting to allow a dead task to run again. When the task runner is signaled to restart, the function will jump back to the MAIN loop and run it again. The task runner determines if a task needs to run again based on two new task events that were added to differentiate between a request to restart a specific task, the tasks that are currently running, or all tasks that have already run. * api/cli: add support for all tasks alloc restart Implement the new -all-tasks alloc restart CLI flag and its API counterpar, AllTasks. The client endpoint calls the appropriate restart method from the allocrunner depending on the restart parameters used. * test: fix tasklifecycle Coordinator test * allocrunner: kill taskrunners if all tasks are dead When all non-poststop tasks are dead we need to kill the taskrunners so we don't leak their goroutines, which are blocked in the alloc restart loop. This also ensures the allocrunner exits on its own. * taskrunner: fix tests that waited on WaitCh Now that "dead" tasks may run again, the taskrunner Run() method will not return when the task finishes running, so tests must wait for the task state to be "dead" instead of using the WaitCh, since it won't be closed until the taskrunner is killed. * tests: add tests for all tasks alloc restart * changelog: add entry for #14127 * taskrunner: fix restore logic. The first implementation of the task runner restore process relied on server data (`tr.Alloc().TerminalStatus()`) which may not be available to the client at the time of restore. It also had the incorrect code path. When restoring a dead task the driver handle always needs to be clear cleanly using `clearDriverHandle` otherwise, after exiting the MAIN loop, the task may be killed by `tr.handleKill`. The fix is to store the state of the Run() loop in the task runner local client state: if the task runner ever exits this loop cleanly (not with a shutdown) it will never be able to run again. So if the Run() loops starts with this local state flag set, it must exit early. This local state flag is also being checked on task restart requests. If the task is "dead" and its Run() loop is not active it will never be able to run again. * address code review requests * apply more code review changes * taskrunner: add different Restart modes Using the task event to differentiate between the allocrunner restart methods proved to be confusing for developers to understand how it all worked. So instead of relying on the event type, this commit separated the logic of restarting an taskRunner into two methods: - `Restart` will retain the current behaviour and only will only restart the task if it's currently running. - `ForceRestart` is the new method where a `dead` task is allowed to restart if its `Run()` method is still active. Callers will need to restart the allocRunner taskCoordinator to make sure it will allow the task to run again. * minor fixes
lgfa29
added a commit
that referenced
this pull request
Aug 24, 2022
* allocrunner: handle lifecycle when all tasks die When all tasks die the Coordinator must transition to its terminal state, coordinatorStatePoststop, to unblock poststop tasks. Since this could happen at any time (for example, a prestart task dies), all states must be able to transition to this terminal state. * allocrunner: implement different alloc restarts Add a new alloc restart mode where all tasks are restarted, even if they have already exited. Also unifies the alloc restart logic to use the implementation that restarts tasks concurrently and ignores ErrTaskNotRunning errors since those are expected when restarting the allocation. * allocrunner: allow tasks to run again Prevent the task runner Run() method from exiting to allow a dead task to run again. When the task runner is signaled to restart, the function will jump back to the MAIN loop and run it again. The task runner determines if a task needs to run again based on two new task events that were added to differentiate between a request to restart a specific task, the tasks that are currently running, or all tasks that have already run. * api/cli: add support for all tasks alloc restart Implement the new -all-tasks alloc restart CLI flag and its API counterpar, AllTasks. The client endpoint calls the appropriate restart method from the allocrunner depending on the restart parameters used. * test: fix tasklifecycle Coordinator test * allocrunner: kill taskrunners if all tasks are dead When all non-poststop tasks are dead we need to kill the taskrunners so we don't leak their goroutines, which are blocked in the alloc restart loop. This also ensures the allocrunner exits on its own. * taskrunner: fix tests that waited on WaitCh Now that "dead" tasks may run again, the taskrunner Run() method will not return when the task finishes running, so tests must wait for the task state to be "dead" instead of using the WaitCh, since it won't be closed until the taskrunner is killed. * tests: add tests for all tasks alloc restart * changelog: add entry for #14127 * taskrunner: fix restore logic. The first implementation of the task runner restore process relied on server data (`tr.Alloc().TerminalStatus()`) which may not be available to the client at the time of restore. It also had the incorrect code path. When restoring a dead task the driver handle always needs to be clear cleanly using `clearDriverHandle` otherwise, after exiting the MAIN loop, the task may be killed by `tr.handleKill`. The fix is to store the state of the Run() loop in the task runner local client state: if the task runner ever exits this loop cleanly (not with a shutdown) it will never be able to run again. So if the Run() loops starts with this local state flag set, it must exit early. This local state flag is also being checked on task restart requests. If the task is "dead" and its Run() loop is not active it will never be able to run again. * address code review requests * apply more code review changes * taskrunner: add different Restart modes Using the task event to differentiate between the allocrunner restart methods proved to be confusing for developers to understand how it all worked. So instead of relying on the event type, this commit separated the logic of restarting an taskRunner into two methods: - `Restart` will retain the current behaviour and only will only restart the task if it's currently running. - `ForceRestart` is the new method where a `dead` task is allowed to restart if its `Run()` method is still active. Callers will need to restart the allocRunner taskCoordinator to make sure it will allow the task to run again. * minor fixes Co-authored-by: Luiz Aoqui <luiz@hashicorp.com>
|
I'm going to lock this pull request because it has been closed for 120 days ⏳. This helps our maintainers find and focus on the active contributions. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Following-up on the work done in #14009, this PR implements a new restart mode that allows for all tasks of an allocation to be restarted, even those that have already run, such as non-sidecar prestart or poststop tasks.
It also solves some related issues, such as the restart command failing with
Task not runningdue to dead tasks in the allocation. These errors are now ignore when restarting the allocation (restarting a dead task with-taskwill still result in this error).Closes #9464
Closes #9688
Closes #9841
Note to reviewers: The internal RFC proposed a new task state (
complete) to differentiate between a task that is reallydead(and would never run again) from that a task that finished running, but is waiting for a restart.But during implementation I noticed that there are quite a few places where the
deadstate was being checked, but then I also noticed that it didn't really matter if the task wasdeadorcompleteso I was able to implement this functionally without the need for the extra state.