nomad exec part 3: executor based drivers #5634
Conversation
notnoop
force-pushed
the
f-nomad-exec-parts-02-cli
branch
from
f6969b3
to
96ac203
Compare
notnoop
force-pushed
the
f-nomad-exec-parts-03-executors
branch
from
6592b7f
to
c302f15
Compare
There was a problem hiding this comment.
Approving because I don't think any of my comments are blockers. Do the conformance tests cover a good set or error conditions or would it be possible to add some unit tests to internal funcs? I just want to make sure we don't have deadlocks or other unintended behavior when things stray off the happy path in production.
| } | ||
|
|
||
| if err := execStream.Send(m); err != nil { | ||
| return err |
There was a problem hiding this comment.
Do all returns need grpcutils.HandleGrpcErr? I'm a little fuzzy on where that needs to be called.
If all returns do need that check maybe just wrap the whole method in a shim to do the check?
func (d *grpcExecutorClient) ExecStreaming(...) error {
if err := d.execStreaming(...); err != nil {
return grpcutils.HandleGrpcErr(err, d.doneCtx)
}
}
// actual impl in execStreaming methodThere was a problem hiding this comment.
we don't call grpcutils.HandleGrpcErr anywhere here. It seems mostly for detecting shutdown and being able to handle it (by restarting, etc), in this case, we don't want to handle executor shutdown any specially.
There was a problem hiding this comment.
Ah! execStream is "this" (the driver) side whereas the HandleGrpcErr calls above are for remote calls to executors? I guess I'm still confused why Recv wouldn't call HandleGrpcErr as its the executor side...
There was a problem hiding this comment.
Oh I see - I missed it - i'll add it.
|
|
||
| // newTerminal function creates a tty appropriate for the command | ||
| // The returned master end of tty function is to be called after process start. | ||
| newTerminal func() (master func() (*os.File, error), slave *os.File, err error) |
There was a problem hiding this comment.
Let's use parent / child terminology instead like https://godoc.org/github.com/opencontainers/runc/libcontainer/utils#NewSockPair
There was a problem hiding this comment.
This is a bit strange of a pattern as well. What if you made all of these funcs methods on an interface like:
type terminal interface{
newTerminal() (...)
setTTY(...) error
...
}...and then created structs that implemented them? Might be a little more code, but I think it might be more idiomatic and unittestable?
There was a problem hiding this comment.
It's a bit confusing - libcontainer uses Parent/child for the socket that's controlling the tty - but the tty documentation uses master/slave e.g. https://linux.die.net/man/4/pts .
libcontainer avoids using master/slave by using RecvFd[1] and SendFd[2] but they are going against pretty much all tty and tty libraries documentation. Recognize the history of terminology, but I would rather not confuse future devs who need to consult publicly available documentations for tty.
[1] https://godoc.org/github.com/opencontainers/runc/libcontainer/utils#RecvFd
[2] https://godoc.org/github.com/opencontainers/runc/libcontainer/utils#SendFd
There was a problem hiding this comment.
Let's break from the historical terminology on this one and use libcontainer's terminology. The kr/pty library recently fixed their terminology as well: kr/pty@7dc38fb
There was a problem hiding this comment.
Umm.. actually looks like libcontainer still calls them master/slave in the docs[1][2] and in its implementation [3], and so does containerd/console[4] (the library used by runc to create console and created by ~the same maintainers) when referring to the console fields. I'll use kr/pty terminology instead.
[1] https://github.com/opencontainers/runc/blob/eb4aeed24ffbf8e2d740fafea39d91faa0ee84d0/docs/terminals.md#-new-terminal
[2] https://godoc.org/github.com/opencontainers/runc/libcontainer#Process
[3] https://github.com/opencontainers/runc/blob/master/libcontainer/console_linux.go#L9-L41
[4] https://github.com/containerd/console/blob/0650fd9eeb50bab4fc99dceb9f2e14cf58f36e7f/console_unix.go#L27-L30
| } | ||
|
|
||
| func handleStdin(logger hclog.Logger, stdin io.WriteCloser, stream drivers.ExecTaskStream, errCh chan<- error) { | ||
| go func() { |
There was a problem hiding this comment.
In general for funcs which are intended to run concurrently with the caller I prefer to let the caller call go. This makes it explicit when reading the caller's code that this func does not block and it can ease unit testing.
| wg.Add(1) | ||
|
|
||
| go func() { | ||
| defer wg.Done() |
There was a problem hiding this comment.
Same as above, and I think the caller should manage the waitgroup as well.
| wg.Add(1) | ||
|
|
||
| go func() { | ||
| defer wg.Done() |
| defer wg.Done() | ||
|
|
||
| for { | ||
| buf := make([]byte, 4096) |
There was a problem hiding this comment.
I thought in #5632 you often reused buffers because you were careful to make send() not hold onto the buffer after returning? Is that not the case in this code? It would be nice to try to keep the approaches consistent or at least comment carefully when they diverge.
There was a problem hiding this comment.
Good catch - I missed these during the refactor - will make buf outside the for loop
| func (e *UniversalExecutor) ExecStreaming(ctx context.Context, command []string, tty bool, | ||
| stream drivers.ExecTaskStream) error { | ||
|
|
||
| cmd := exec.CommandContext(ctx, command[0], command[1:]...) |
There was a problem hiding this comment.
Do we need a len check here to make sure we don't panic if command is empty?
drivers/shared/executor/pty_unix.go
Outdated
| return fmt.Errorf("attempted to resize a non-tty session") | ||
| } | ||
|
|
||
| pty.Setsize(f, &pty.Winsize{ |
There was a problem hiding this comment.
Comment as to why we ignore Setsize errors.
| } | ||
|
|
||
| func setTTYSize(w io.Writer, height, width int32) error { | ||
| return fmt.Errorf("unsupported") |
There was a problem hiding this comment.
Should this be an error or a noop?
| return fmt.Errorf("first message should always be setup") | ||
| } | ||
|
|
||
| return s.impl.ExecStreaming(server.Context(), |
There was a problem hiding this comment.
Actually is there where we could wrap errors in that HandleGrpcErr?
notnoop
force-pushed
the
f-nomad-exec-parts-03-executors
branch
from
e6bd183
to
90386e4
Compare
Prepare executor to handle streaming exec API calls that reuse drivers protobuf structs.
Implements streamign exec handling in both executors (i.e. universal and libcontainer). For creation of TTY, some incidental complexity leaked in. The universal executor uses github.com/kr/pty for creation of TTYs. On the other hand, libcontainer expects a console socket and for libcontainer to create the underlying console object on process start. The caller can then use `libcontainer.utils.RecvFd()` to get tty master end. I chose github.com/kr/pty for managing TTYs here. I tried `github.com/containerd/console` package (which is already imported), but the package did not work as expected on macOS.
These simply delegate call to backend executor.
notnoop
force-pushed
the
f-nomad-exec-parts-03-executors
branch
from
fc4f92b
to
7f76aed
Compare
|
I'm going to lock this pull request because it has been closed for 120 days ⏳. This helps our maintainers find and focus on the active contributions. |
Sequel to #5632 and #5633 .
Extend driver implementation for executor based drivers: raw_exec, exec, and java.
Here, the drivers use the low-level interface
drivers.ExecTaskStreamingRawDriver, so drivers can delegate to the executor. Executors handle the exec stream, and construct the tty session.We used
kr/ptyfor terminal creation in the universal executor, because I found issues on macOS when using http://github.com/containerd/console (the pty library used by docker and imported here).