Add a note about PID 1 not terminating automatically on signal #12228
Conversation
|
In all cases
You cannot So as it is right now, I don't think your notes are quite accurate. |
|
OK, I withdraw the claim that SIGNAL_UNKILLABLE is involved. I'm not sure about your first paragraph - the default action for SIGINT and SIGTERM if no handler is installed is to terminate. But, empirically, it's different for PID 1. Much of the discussion is linked from #3793 |
bboreham
force-pushed
the
12022-signal-doc
branch
from
7671a45
to
607ddd0
Compare
|
ping @cpuguy83 revision for your review |
|
@cpuguy83 consider |
|
@bboreham I'm wondering if this is a shell-ism (as in something bash/sh/zsh/etc do)... maybe someone more experienced here can weigh in? ping @crosbymichael @LK4D4 @jfrazelle @icecrime Running a quick ruby loop as pid 1 with no special signal handlers, TERM does kill it. |
|
@cpuguy83 I don't think so; the real reason this came up for me was running As an illustration try |
|
Yeah, it's going to depend on the app, I assume ruby has some default signal handler setup for TERM. |
| When you are attached to a container, and exit its main process, the process's | ||
| exit code will be returned to the client. | ||
|
|
||
| (Note that a process running as PID 1 inside a container will not | ||
| automatically terminate on receipt of SIGINT or SIGTERM) |
There was a problem hiding this comment.
If this is a "note", then it should probably be formatted as such (see the style guide). But I'd wait with changing until it's confirmed that everything is technically correct. Perhaps the doc maintainers have another way to formulate it so that no "note" is required.
|
Thanks, @bboreham! I added |
| @@ -482,10 +482,13 @@ simultaneously, screen sharing style, or quickly view the progress of your | |||
| daemonized process. | |||
|
|
|||
| You can detach from the container (and leave it running) with `CTRL-p CTRL-q` | |||
| (for a quiet exit) or `CTRL-c` which will send a `SIGKILL` to the container. | |||
| (for a quiet exit) or `CTRL-c` which will send a `SIGINT` to the container. | |||
There was a problem hiding this comment.
This paragraph structure is a bit of work. If you could please clean it up while you are in there. Also the note needs reformatting as @thaJeztah notes.
Markdown here: https://gist.github.com/moxiegirl/60a935fccb2e33c8e5ff
---> suggested replace
You can detach from a container and leave it running with CTRL-p CTRL-q. This
is called a quiet exit. You can also exit using CTRL-c which sends a
SIGINT to the container. When you are attached to a container and exit its
main process, Docker returns the process' exit code to the client.
Note: A process running as PID 1 inside a container does not automatically
terminate on receipt ofSIGINTorSIGTERM.
bboreham
force-pushed
the
12022-signal-doc
branch
2 times, most recently
from
7d6c5fb
to
b6107e2
Compare
|
I have re-worded the note to clarify that the issue applies to programs that don't install a signal handler. On the 'a bit wonk' part, I have included a third commit that tries to tease apart the things that can happen. However, this is getting a bit further from the original intent, so I'm happy to move it into a separate PR if you prefer. |
| @@ -481,8 +481,17 @@ interactively. You can attach to the same contained process multiple times | |||
| simultaneously, screen sharing style, or quickly view the progress of your | |||
| daemonized process. | |||
|
|
|||
| You can detach from the container (and leave it running) with `CTRL-p CTRL-q` | |||
| (for a quiet exit) or `CTRL-c` which will send a `SIGKILL` to the container. | |||
| You can detach from the container and leave it running with `CTRL-p | |||
There was a problem hiding this comment.
Hi, thanks for the "wonk." :-D U missed a period in the note. Also, no need for the future tense here.
"Readers use technical documents to perform tasks or gather information. For readers, these activities take place in the present. Therefore, the present tense is appropriate in most cases." -- Read Me First: A Style Guide for the Computer Industry
Finally, in your note, don't jam all the activity into a single sentence. Sentences like these are difficult to translate and to understand. (Ibid)
--->https://gist.github.com/moxiegirl/60a935fccb2e33c8e5ff
You can detach from the container and leave it running with CTRL-p CTRL-q (for a quiet exit) or with CTRL-c if --sig-proxy is false.
If --sig-proxy is true (the default),CTRL-c sends a SIGINT
to the container.
Note: A process running as PID 1 inside a container is treated
specially by Linux: it ignores any signal without a handler installed.
So, the process does not terminate onSIGINTorSIGTERMunless it is
coded to do so.
bboreham
force-pushed
the
12022-signal-doc
branch
from
1714fc1
to
0531010
Compare
|
Looks like you forgot to sign-off the last commit; not a huge issue yet, but it should be corrected before merging. If you are able to rebase and squash your commits; here are some instructions; Work on your issue - Pull and rebase frequently |
bboreham
force-pushed
the
12022-signal-doc
branch
2 times, most recently
from
810113d
to
f7bd6d8
Compare
|
I have fixed the missing period and backticks, and the missing sign-off. The last commit was deliberately left separate to see if I had understood the intent of the 'wonk' comment. If you want all three squashed into one I can do that easily. And, just noticed the 'don't jam all the activity into a single sentence' addition. Will wait for further comments to avoid crossing on the wire. |
|
@bboreham no problem on the squashing; just a friendly "notice" so that you aware it will have to be done at some point. It's also to prevent maintainer pressing the "merge" button, not noticint that the commits haven't been squashed yet 😄 |
bboreham
force-pushed
the
12022-signal-doc
branch
from
f7bd6d8
to
c6e93b4
Compare
Also re-arranged the description of CTRL-c to make it clearer. Signed-off-by: Bryan Boreham <bjboreham@gmail.com>
bboreham
force-pushed
the
12022-signal-doc
branch
from
c6e93b4
to
5ad1547
Compare
|
Rebased, squashed, split the sentence into two. |
|
LGTM |
|
LGTM |
Add a note about PID 1 not terminating automatically on signal
As raised in #12022, processes that do not deliberately catch and exit on SIGINT/SIGTERM do not terminate as expected when they are running as PID 1, which is a very common case inside a Docker container. This confused me for a while, so I thought it would be better to mention it in the Docker documentation.
The note I am proposing is rather terse, but hopefully enough to find information via Google. I am open to guidance on how to improve the readability.
I have added the same note in the two places that SIGINT and/or SIGTERM are mentioned in the existing documentation.
I also propose to change the statement that CTRL-c sends a SIGKILL - my tests say this is not the case, and it is certainly unexpected.
closes #12022