Userland: Invent a method to clean up system resources for containers that stopped running
1
π
0This issue is intended to be a place to discuss what's the best approach on this matter.
As it is right now, if we run a program with runc, and that program exits, then we have a dangling VFS root context (or other resources that might not be cleaned up automatically) that nobody uses anymore, but nothing is responsible to clean it up in such case.
The solutions I have in my mind:
- Let the exiting program to do this job. Only works if it's not jailed though, because when a process is jailed it can't do this kind of job.
- Add a mechanism in
runcto wait for the containerized program to exit and clean the resources afterwards.
This will require usingruncas a daemon (or even adding something likecontainerd?). The running container should be invoked separately, maybe with #24764 being in, we could do the jailing part in the new process and not inrunc. - Add a kernel mechanism to auto-clean resources if nothing uses them. Could be useful but should be a knob and not a requirement.
Maybe there are more options so feedback on this topic is appreciated :)
SerenityOSΒ /Β serenity
The Serenity Operating System π
30.6k
Contributors get 100% of received funds after fees
How does funding with Polar work?
1
Pay now to fund the work behind this issue.
2
Get updates on progress being made.
3
Maintainer is rewarded once the issue is completed.
FAQ
Backer
You're funding impactful open source efforts
Contributor
You want to contribute to this effort
Maintainer
You want to get funding like this too