github/kata-containers
1
0
Fork 1
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-07-19 18:01:01 +00:00
Code Issues Projects Releases Wiki Activity

agent: watcher: cleanup mount if needed when container is removed

Browse Source 
If a bind mount was created for watchable storage, make sure we remove
when removing a container.

Signed-off-by: Eric Ernst <eric_ernst@apple.com>
This commit is contained in:
Eric Ernst 2021-08-09 15:58:52 -07:00
parent f1a505dbfe
commit 71f304ce17
2 changed files with 69 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/agent/src/mount.rs
View File

@ -609,7 +609,7 @@ pub async fn add_storages(
DRIVER_NVDIMM_TYPE => nvdimm_storage_handler(&logger, &storage, sandbox.clone()).await, DRIVER_NVDIMM_TYPE => nvdimm_storage_handler(&logger, &storage, sandbox.clone()).await,
DRIVER_WATCHABLE_BIND_TYPE => { DRIVER_WATCHABLE_BIND_TYPE => {
bind_watcher_storage_handler(&logger, &storage, sandbox.clone()).await?; bind_watcher_storage_handler(&logger, &storage, sandbox.clone()).await?;
// Don't register watch mounts, they're hanlded separately by the watcher. // Don't register watch mounts, they're handled separately by the watcher.
Ok(String::new()) Ok(String::new())
} }
_ => { _ => {

68
src/agent/src/watcher.rs
View File

@ -70,6 +70,11 @@ pub enum WatcherError {
impl Drop for Storage { impl Drop for Storage {
fn drop(&mut self) { fn drop(&mut self) {
if !&self.watch {
// If we weren't watching this storage entry, it means that a bind mount
// was created.
let _ = umount(&self.target_mount_point);
}
let _ = std::fs::remove_dir_all(&self.target_mount_point); let _ = std::fs::remove_dir_all(&self.target_mount_point);
} }
} }
@ -927,4 +932,67 @@ mod tests {
let out = fs::read_to_string(dest_dir.path().join("1.txt")).unwrap(); let out = fs::read_to_string(dest_dir.path().join("1.txt")).unwrap();
assert_eq!(out, "one"); assert_eq!(out, "one");
} }
#[tokio::test]
async fn verify_container_cleanup_watching() {
skip_if_not_root!();
let source_dir = tempfile::tempdir().unwrap();
fs::write(source_dir.path().join("1.txt"), "one").unwrap();
let dest_dir = tempfile::tempdir().unwrap();
let storage = protos::Storage {
source: source_dir.path().display().to_string(),
mount_point: dest_dir.path().display().to_string(),
..Default::default()
};
let logger = slog::Logger::root(slog::Discard, o!());
let mut watcher = BindWatcher::default();
watcher
.add_container("test".into(), std::iter::once(storage), &logger)
.await
.unwrap();
thread::sleep(Duration::from_secs(WATCH_INTERVAL_SECS));
let out = fs::read_to_string(dest_dir.path().join("1.txt")).unwrap();
assert!(dest_dir.path().exists());
assert_eq!(out, "one");
watcher.remove_container("test").await;
thread::sleep(Duration::from_secs(WATCH_INTERVAL_SECS));
assert!(!dest_dir.path().exists());
for i in 1..21 {
fs::write(source_dir.path().join(format!("{}.txt", i)), "fluff").unwrap();
}
// verify non-watched storage is cleaned up correctly
let storage1 = protos::Storage {
source: source_dir.path().display().to_string(),
mount_point: dest_dir.path().display().to_string(),
..Default::default()
};
watcher
.add_container("test".into(), std::iter::once(storage1), &logger)
.await
.unwrap();
thread::sleep(Duration::from_secs(WATCH_INTERVAL_SECS));
assert!(dest_dir.path().exists());
assert!(is_mounted(dest_dir.path().to_str().unwrap()).unwrap());
watcher.remove_container("test").await;
thread::sleep(Duration::from_secs(WATCH_INTERVAL_SECS));
assert!(!dest_dir.path().exists());
assert!(!is_mounted(dest_dir.path().to_str().unwrap()).unwrap());
}
} }