vbatts/cri-o
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Merge pull request #276 from sameo/topic/netns_leaks

Browse source 
sandbox: Force netns unmount and removal when restoring
This commit is contained in:
Antonio Murdaca 2016-12-15 01:00:09 +01:00 committed by GitHub
commit 1d08519ffe
1 changed files with 16 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
server/sandbox.go
View file

@ -14,6 +14,7 @@ import (
"github.com/containernetworking/cni/pkg/ns" "github.com/containernetworking/cni/pkg/ns"
"k8s.io/kubernetes/pkg/fields" "k8s.io/kubernetes/pkg/fields"
pb "k8s.io/kubernetes/pkg/kubelet/api/v1alpha1/runtime" pb "k8s.io/kubernetes/pkg/kubelet/api/v1alpha1/runtime"
"golang.org/x/sys/unix"
) )
type sandboxNetNs struct { type sandboxNetNs struct {
@ -21,6 +22,7 @@ type sandboxNetNs struct {
ns ns.NetNS ns ns.NetNS
symlink *os.File symlink *os.File
closed bool closed bool
restored bool
} }
func (ns *sandboxNetNs) symlinkCreate(name string) error { func (ns *sandboxNetNs) symlinkCreate(name string) error {
@ -94,7 +96,7 @@ func netNsGet(nspath, name string) (*sandboxNetNs, error) {
return nil, err return nil, err
} }
netNs := &sandboxNetNs{ns: netNS, closed: false,} netNs := &sandboxNetNs{ns: netNS, closed: false, restored: true}
if symlink { if symlink {
fd, err := os.Open(nspath) fd, err := os.Open(nspath)
@ -228,6 +230,16 @@ func (s *sandbox) netNsRemove() error {
return err return err
} }
if s.netns.restored {
if err := unix.Unmount(s.netns.ns.Path(), unix.MNT_DETACH); err != nil {
return err
}
if err := os.RemoveAll(s.netns.ns.Path()); err != nil {
return err
}
}
s.netns.closed = true s.netns.closed = true
return nil return nil
} }