mirror of
https://github.com/kemko/nomad.git
synced 2026-01-01 16:05:42 +03:00
48b1b01e69
The `disconnect.stop_on_client_after` feature is implemented as a loop on the client that's intended to wait on the shortest timeout of all the allocations on the node and then check whether the interval since the last heartbeat has been longer than the timeout. It uses a buffered channel of allocations written and read from the same goroutine to push "stops" from the timeout expiring to the next pass through the loop. Unfortunately if there are multiple allocations that need to be stopped in the same timeout event, or even if a previous event has not yet been dequeued, then sending on the channel will block and the entire goroutine deadlocks itself. While fixing this, I also discovered that the `stop_on_client_after` and heartbeat loops can synchronize in a pathological way that extends the `stop_on_client_after` window. If a heartbeat fails close to the beginning of the shortest `stop_on_client_after` window, the loop will end up waiting until almost 2x the intended wait period. While fixing both of those issues, I discovered that the existing tests had a bug such that we were asserting that an allocrunner was being destroyed when it had already exited. This commit includes the following: * Rework the watch loop so that we handle the stops in the same case as the timer expiration, rather than using a channel in the method scope. * Remove the alloc intervals map field from the struct and keep it in the method scope, in order to discourage writing racy tests that read its value. * Reset the timer whenever we receive a heartbeat, which forces the two intervals to synchronize correctly. * Minor refactoring of the disconnect timeout lookup to improve brevity. Fixes: https://github.com/hashicorp/nomad/issues/24679 Ref: https://hashicorp.atlassian.net/browse/NMD-407
175 lines
4.5 KiB
Go
175 lines
4.5 KiB
Go
// Copyright (c) HashiCorp, Inc.
|
|
// SPDX-License-Identifier: BUSL-1.1
|
|
|
|
package client
|
|
|
|
import (
|
|
"sync"
|
|
"time"
|
|
|
|
hclog "github.com/hashicorp/go-hclog"
|
|
|
|
"github.com/hashicorp/nomad/client/allocrunner/interfaces"
|
|
"github.com/hashicorp/nomad/helper"
|
|
"github.com/hashicorp/nomad/nomad/structs"
|
|
)
|
|
|
|
type heartbeatStop struct {
|
|
lastOk time.Time
|
|
startupGrace time.Time
|
|
allocHookCh chan *structs.Allocation
|
|
heartbeatCh chan struct{}
|
|
getRunner func(string) (interfaces.AllocRunner, error)
|
|
logger hclog.InterceptLogger
|
|
shutdownCh chan struct{}
|
|
lock *sync.RWMutex
|
|
}
|
|
|
|
func newHeartbeatStop(
|
|
getRunner func(string) (interfaces.AllocRunner, error),
|
|
timeout time.Duration,
|
|
logger hclog.InterceptLogger,
|
|
shutdownCh chan struct{}) *heartbeatStop {
|
|
|
|
h := &heartbeatStop{
|
|
startupGrace: time.Now().Add(timeout),
|
|
allocHookCh: make(chan *structs.Allocation, 10),
|
|
heartbeatCh: make(chan struct{}, 1),
|
|
getRunner: getRunner,
|
|
logger: logger,
|
|
shutdownCh: shutdownCh,
|
|
lock: &sync.RWMutex{},
|
|
}
|
|
|
|
return h
|
|
}
|
|
|
|
// allocHook is called after (re)storing a new AllocRunner in the client. It registers the
|
|
// allocation to be stopped if the taskgroup is configured appropriately
|
|
func (h *heartbeatStop) allocHook(alloc *structs.Allocation) {
|
|
if _, ok := getDisconnectStopTimeout(alloc); ok {
|
|
h.allocHookCh <- alloc
|
|
}
|
|
}
|
|
|
|
// shouldStop is called on a restored alloc to determine if lastOk is sufficiently in the
|
|
// past that it should be prevented from restarting
|
|
func (h *heartbeatStop) shouldStop(alloc *structs.Allocation) bool {
|
|
if timeout, ok := getDisconnectStopTimeout(alloc); ok {
|
|
return h.shouldStopAfter(time.Now(), timeout)
|
|
}
|
|
return false
|
|
}
|
|
|
|
func (h *heartbeatStop) shouldStopAfter(now time.Time, interval time.Duration) bool {
|
|
lastOk := h.getLastOk()
|
|
if lastOk.IsZero() {
|
|
return now.After(h.startupGrace)
|
|
}
|
|
return now.After(lastOk.Add(interval))
|
|
}
|
|
|
|
// watch is a loop that checks for allocations that should be stopped. It also manages the
|
|
// registration of allocs to be stopped in a single thread.
|
|
func (h *heartbeatStop) watch() {
|
|
// If we never manage to successfully contact the server, we want to stop our allocs
|
|
// after duration + start time
|
|
h.setLastOk(time.Now())
|
|
allocIntervals := map[string]time.Duration{}
|
|
|
|
timer, stopTimer := helper.NewStoppedTimer()
|
|
defer stopTimer()
|
|
|
|
for {
|
|
// we want to fire the ticker only once the shortest
|
|
// stop_on_client_after interval has expired. we'll reset the ticker on
|
|
// every heartbeat and every time a new alloc appears
|
|
var interval time.Duration
|
|
for _, t := range allocIntervals {
|
|
if t < interval || interval == 0 {
|
|
interval = t
|
|
}
|
|
}
|
|
if interval != 0 {
|
|
timer.Reset(interval)
|
|
} else {
|
|
timer.Stop()
|
|
}
|
|
|
|
select {
|
|
case <-h.heartbeatCh:
|
|
continue
|
|
|
|
case <-h.shutdownCh:
|
|
return
|
|
|
|
case alloc := <-h.allocHookCh:
|
|
// receiving a new alloc implies we're still connected, so we'll go
|
|
// back to the top to reset the interval
|
|
if timeout, ok := getDisconnectStopTimeout(alloc); ok {
|
|
allocIntervals[alloc.ID] = timeout
|
|
}
|
|
|
|
case now := <-timer.C:
|
|
for allocID, d := range allocIntervals {
|
|
if h.shouldStopAfter(now, d) {
|
|
if err := h.stopAlloc(allocID); err != nil {
|
|
h.logger.Warn("error stopping on heartbeat timeout",
|
|
"alloc", allocID, "error", err)
|
|
continue
|
|
}
|
|
delete(allocIntervals, allocID)
|
|
}
|
|
}
|
|
|
|
}
|
|
}
|
|
}
|
|
|
|
// setLastOk sets the last known good heartbeat time to the current time
|
|
func (h *heartbeatStop) setLastOk(t time.Time) {
|
|
h.lock.Lock()
|
|
defer h.lock.Unlock()
|
|
h.lastOk = t
|
|
select {
|
|
case h.heartbeatCh <- struct{}{}:
|
|
default:
|
|
// if the channel is full then the watch loop has a heartbeat it needs
|
|
// to dequeue to reset its timer anyways, so just drop this one
|
|
}
|
|
}
|
|
|
|
func (h *heartbeatStop) getLastOk() time.Time {
|
|
h.lock.RLock()
|
|
defer h.lock.RUnlock()
|
|
return h.lastOk
|
|
}
|
|
|
|
// stopAlloc actually stops the allocation
|
|
func (h *heartbeatStop) stopAlloc(allocID string) error {
|
|
runner, err := h.getRunner(allocID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
h.logger.Debug("stopping alloc for stop_after_client_disconnect", "alloc", allocID)
|
|
|
|
runner.Destroy()
|
|
return nil
|
|
}
|
|
|
|
// getDisconnectStopTimeout is a helper that gets the alloc's StopOnClientAfter
|
|
// timeout and handles the possible nil pointers safely
|
|
func getDisconnectStopTimeout(alloc *structs.Allocation) (time.Duration, bool) {
|
|
for _, tg := range alloc.Job.TaskGroups {
|
|
if tg.Name == alloc.TaskGroup {
|
|
timeout := tg.GetDisconnectStopTimeout()
|
|
if timeout != nil {
|
|
return *timeout, true
|
|
}
|
|
break
|
|
}
|
|
}
|
|
return 0, false
|
|
}
|