feature: complete the details of StartPodSandbox #2242

starnop · 2018-09-14T10:02:40Z

Signed-off-by: Starnop [email protected]

Ⅰ. Describe what this PR did

Provide an interface to start a sandbox pod which was stopped by accident and setup the network with network plugin.

Note: Only if the CNI-plugin supports returning the same IP with the same parameters of containdID ,pod name,pod namespace, we will make sure it reacquire the original network configuration of sandbox, like IP address.

Ⅱ. Does this pull request fix one issue?

None.

Ⅲ. Why don't you add test cases (unit test/integration test)? (你真的觉得不需要加测试吗？)

None.

Ⅳ. Describe how to verify it

use cri-tools

# cat pod-config.json 
{
    "metadata": {
        "name": "nginx-sandbox",
        "namespace": "default",
        "attempt": 1,
        "uid": "hdishd83djaidwnduwk28bcsb"
    },
    "linux": {
    }
}

# cat container-config.json 
{
  "metadata": {
      "name": "busybox"
  },
  "image":{
      "image": "busybox"
  },
  "command": [
      "top"
  ],
  "linux": {
  }
}

# crictl runp pod-config.json 
DEBU[0000] RunPodSandboxRequest: &RunPodSandboxRequest{Config:&PodSandboxConfig{Metadata:&PodSandboxMetadata{Name:nginx-sandbox,Uid:hdishd83djaidwnduwk28bcsb,Namespace:default,Attempt:1,},Hostname:,LogDirectory:,DnsConfig:nil,PortMappings:[],Labels:map[string]string{},Annotations:map[string]string{},Linux:&LinuxPodSandboxConfig{CgroupParent:,SecurityContext:nil,Sysctls:map[string]string{},},},} 
DEBU[0000] RunPodSandboxResponse: &RunPodSandboxResponse{PodSandboxId:7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6,} 
7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6

# crictl create 7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6 container-config.json pod-config.json 
DEBU[0000] CreateContainerRequest: &CreateContainerRequest{PodSandboxId:7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6,Config:&ContainerConfig{Metadata:&ContainerMetadata{Name:busybox,Attempt:0,},Image:&ImageSpec{Image:busybox,},Command:[top],Args:[],WorkingDir:,Envs:[],Mounts:[],Devices:[],Labels:map[string]string{},Annotations:map[string]string{},LogPath:,Stdin:false,StdinOnce:false,Tty:false,Linux:&LinuxContainerConfig{Resources:nil,SecurityContext:nil,},Windows:nil,NetPriority:0,QuotaId:,},SandboxConfig:&PodSandboxConfig{Metadata:&PodSandboxMetadata{Name:nginx-sandbox,Uid:hdishd83djaidwnduwk28bcsb,Namespace:default,Attempt:1,},Hostname:,LogDirectory:,DnsConfig:nil,PortMappings:[],Labels:map[string]string{},Annotations:map[string]string{},Linux:&LinuxPodSandboxConfig{CgroupParent:,SecurityContext:nil,Sysctls:map[string]string{},},},} 
DEBU[0000] CreateContainerResponse: &CreateContainerResponse{ContainerId:a0bf0780844bb939c14cf43c2f34e42c99eb021fd35645dd1a1aeb6bbbce535f,} 
a0bf0780844bb939c14cf43c2f34e42c99eb021fd35645dd1a1aeb6bbbce535f

# crictl inspectp 7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6
DEBU[0000] PodSandboxStatusRequest: &PodSandboxStatusRequest{PodSandboxId:7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6,Verbose:true,} 
DEBU[0000] PodSandboxStatusResponse: &PodSandboxStatusResponse{Status:&PodSandboxStatus{Id:7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6,Metadata:&PodSandboxMetadata{Name:nginx-sandbox,Uid:hdishd83djaidwnduwk28bcsb,Namespace:default,Attempt:1,},State:SANDBOX_READY,CreatedAt:1536916075102934587,Network:&PodSandboxNetworkStatus{Ip:10.244.1.108,},Linux:&LinuxPodSandboxStatus{Namespaces:&Namespace{Options:&NamespaceOption{Network:POD,Pid:POD,Ipc:POD,},},},Labels:map[string]string{},Annotations:map[string]string{},},Info:map[string]string{},} 
{
  "status": {
    "id": "7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6",
    "metadata": {
      "attempt": 1,
      "name": "nginx-sandbox",
      "namespace": "default",
      "uid": "hdishd83djaidwnduwk28bcsb"
    },
    "state": "SANDBOX_READY",
    "createdAt": "2018-09-14T09:07:55.102934587Z",
    "network": {
      "ip": "10.244.1.108"
    },
    "linux": {
      "namespaces": {
        "options": {
          "ipc": "POD",
          "network": "POD",
          "pid": "POD"
        }
      }
    },
    "labels": {},
    "annotations": {}
  }
}

# crictl stopp 7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6
DEBU[0000] StopPodSandboxRequest: &StopPodSandboxRequest{PodSandboxId:7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6,} 
DEBU[0000] StopPodSandboxResponse: &StopPodSandboxResponse{} 
Stopped sandbox 7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6

# crictl startp 7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6
DEBU[0000] StartPodSandboxRequest: &StartPodSandboxRequest{PodSandboxId:7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6,} 
DEBU[0000] StartPodSandboxResponse: &StartPodSandboxResponse{} 
7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6

# crictl inspectp 7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6
DEBU[0000] PodSandboxStatusRequest: &PodSandboxStatusRequest{PodSandboxId:7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6,Verbose:true,} 
DEBU[0000] PodSandboxStatusResponse: &PodSandboxStatusResponse{Status:&PodSandboxStatus{Id:7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6,Metadata:&PodSandboxMetadata{Name:nginx-sandbox,Uid:hdishd83djaidwnduwk28bcsb,Namespace:default,Attempt:1,},State:SANDBOX_READY,CreatedAt:1536916075102934587,Network:&PodSandboxNetworkStatus{Ip:10.244.1.109,},Linux:&LinuxPodSandboxStatus{Namespaces:&Namespace{Options:&NamespaceOption{Network:POD,Pid:POD,Ipc:POD,},},},Labels:map[string]string{},Annotations:map[string]string{},},Info:map[string]string{},} 
{
  "status": {
    "id": "7fa3bf8c5cb8e97f1b09369bf182afb6b6f1ebdf74d072a95960942a3f2b9fb6",
    "metadata": {
      "attempt": 1,
      "name": "nginx-sandbox",
      "namespace": "default",
      "uid": "hdishd83djaidwnduwk28bcsb"
    },
    "state": "SANDBOX_READY",
    "createdAt": "2018-09-14T09:07:55.102934587Z",
    "network": {
      "ip": "10.244.1.108"
    },
    "linux": {
      "namespaces": {
        "options": {
          "ipc": "POD",
          "network": "POD",
          "pid": "POD"
        }
      }
    },
    "labels": {},
    "annotations": {}
  }
}

Ⅴ. Special notes for reviews

Related Pull Request: #2237

allencloud · 2018-09-17T06:16:14Z

cri/v1alpha2/cri_utils.go

+	var netnsPath string
+	hostNet := networkNamespaceMode == runtime.NamespaceMode_NODE
+	// If it is in host network, no need to configure the network of sandbox.
+	if !hostNet {


How about

if hostNet { return netnsPath, nil }

Use return fast to reduce ident and make code more clear.

exactly, and has been updated. ^_^

starnop · 2018-09-17T12:35:59Z

@rudyfly @YaoZengzeng PTAL. Thanks. ^_^

rudyfly · 2018-09-18T03:14:22Z

cri/v1alpha2/cri.go

+	sandboxMeta := res.(*SandboxMeta)
+
+	// Setup networking for the sandbox.
+	netnsPath, setupNeterr := c.setupPodNetwork(ctx, podSandboxID, sandboxMeta.Config.GetLinux().GetSecurityContext().GetNamespaceOptions().GetNetwork(), sandboxMeta.Config)


s/setupNeterr/setupNetErr

Has been updated.

YaoZengzeng · 2018-09-18T03:48:52Z

cri/v1alpha2/cri.go

+	if setupNetErr != nil {
+		return nil, setupNetErr
+	}
+	defer func() {


If setupNetErr is not nil, the defer function will never being invoked.

YaoZengzeng · 2018-09-18T03:48:55Z

cri/v1alpha2/cri.go

+
+	podSandboxID := r.GetPodSandboxId()
+
+	// start Podsandbox.


Podsandbox -> PodSandbox

YaoZengzeng · 2018-09-18T03:49:11Z

cri/v1alpha2/cri.go

+	}
+	sandboxMeta := res.(*SandboxMeta)
+
+	// Setup networking for the sandbox.


Setup -> setup

YaoZengzeng · 2018-09-18T06:43:13Z

LGTM

rudyfly · 2018-09-18T06:53:47Z

LGTM, and waiting for the ci passed.

Signed-off-by: Starnop <[email protected]>

pouchrobot added kind/feature size/L labels Sep 14, 2018

starnop force-pushed the cri-start-sandbox branch 2 times, most recently from df6301d to c763955 Compare September 14, 2018 10:07

allencloud reviewed Sep 17, 2018

View reviewed changes

starnop force-pushed the cri-start-sandbox branch from c763955 to 612602b Compare September 17, 2018 06:32

rudyfly reviewed Sep 18, 2018

View reviewed changes

starnop force-pushed the cri-start-sandbox branch from 612602b to 63bc378 Compare September 18, 2018 03:25

YaoZengzeng reviewed Sep 18, 2018

View reviewed changes

starnop force-pushed the cri-start-sandbox branch 8 times, most recently from 72d3738 to 95b82d5 Compare September 18, 2018 06:20

pouchrobot added size/XL and removed size/L labels Sep 18, 2018

starnop force-pushed the cri-start-sandbox branch 2 times, most recently from 3cd2a30 to 9d1fb49 Compare September 18, 2018 06:35

pouchrobot added size/L and removed size/XL labels Sep 18, 2018

starnop force-pushed the cri-start-sandbox branch from 9d1fb49 to 758c818 Compare September 18, 2018 06:38

starnop force-pushed the cri-start-sandbox branch from 758c818 to 0e10bff Compare September 18, 2018 06:45

pouchrobot added the LGTM one maintainer or community participant agrees to merge the pull reuqest. label Sep 18, 2018

starnop force-pushed the cri-start-sandbox branch from 0e10bff to f00fd04 Compare September 18, 2018 06:55

pouchrobot added conflict/needs-rebase and removed LGTM one maintainer or community participant agrees to merge the pull reuqest. labels Sep 18, 2018

starnop force-pushed the cri-start-sandbox branch from f00fd04 to 397d830 Compare September 18, 2018 06:59

pouchrobot removed the conflict/needs-rebase label Sep 18, 2018

starnop force-pushed the cri-start-sandbox branch from 397d830 to 5ee45e7 Compare September 18, 2018 07:15

feature: Complete the details of StartPodSandbox

1d46085

Signed-off-by: Starnop <[email protected]>

starnop force-pushed the cri-start-sandbox branch from 5ee45e7 to 1d46085 Compare September 18, 2018 07:55

pouchrobot added size/XL and removed size/L labels Sep 18, 2018

allencloud merged commit 2208220 into AliyunContainerService:master Sep 18, 2018

pouchrobot mentioned this pull request Sep 22, 2018

Weekly Report of PouchContainer from 2018-09-15 to 2018-09-22 #2272

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feature: complete the details of StartPodSandbox #2242

feature: complete the details of StartPodSandbox #2242

starnop commented Sep 14, 2018 •

edited

Loading

allencloud Sep 17, 2018

starnop Sep 17, 2018

starnop commented Sep 17, 2018

rudyfly Sep 18, 2018

starnop Sep 18, 2018 •

edited

Loading

YaoZengzeng Sep 18, 2018

YaoZengzeng Sep 18, 2018

YaoZengzeng Sep 18, 2018

YaoZengzeng commented Sep 18, 2018

rudyfly commented Sep 18, 2018

feature: complete the details of StartPodSandbox #2242

feature: complete the details of StartPodSandbox #2242

Conversation

starnop commented Sep 14, 2018 • edited Loading

Ⅰ. Describe what this PR did

Ⅱ. Does this pull request fix one issue?

Ⅲ. Why don't you add test cases (unit test/integration test)? (你真的觉得不需要加测试吗？)

Ⅳ. Describe how to verify it

Ⅴ. Special notes for reviews

allencloud Sep 17, 2018

Choose a reason for hiding this comment

starnop Sep 17, 2018

Choose a reason for hiding this comment

starnop commented Sep 17, 2018

rudyfly Sep 18, 2018

Choose a reason for hiding this comment

starnop Sep 18, 2018 • edited Loading

Choose a reason for hiding this comment

YaoZengzeng Sep 18, 2018

Choose a reason for hiding this comment

YaoZengzeng Sep 18, 2018

Choose a reason for hiding this comment

YaoZengzeng Sep 18, 2018

Choose a reason for hiding this comment

YaoZengzeng commented Sep 18, 2018

rudyfly commented Sep 18, 2018

starnop commented Sep 14, 2018 •

edited

Loading

starnop Sep 18, 2018 •

edited

Loading