Implement 'runsc kill --all'

In order to implement kill --all correctly, the Sentry needs to track all tasks that belong to a given container. This change introduces ContainerID to the task, that gets inherited by all children. 'kill --all' then iterates over all tasks comparing the ContainerID field to find all processes that need to be signalled. PiperOrigin-RevId: 214841768 Change-Id: I693b2374be8692d88cc441ef13a0ae34abf73ac6
author: Fabricio Voznika <fvoznika@google.com> 2018-09-27 15:00:03 -0700
committer: Shentubot <shentubot@google.com> 2018-09-27 15:00:58 -0700
commit: 491faac03b2815ca1bc9b5425c1b3f6291468e20 (patch)
tree: 0a8f0c1ad99c3d8660f36802132ecd9386c54518 /pkg/sentry/kernel/task_start.go
parent: 68ac2ad1e1f16e65d9d1318d6827edf8487578d0 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/pkg/sentry/kernel/task_start.go b/pkg/sentry/kernel/task_start.go
index 6ce99d268..6c8d7d316 100644
--- a/pkg/sentry/kernel/task_start.go
+++ b/pkg/sentry/kernel/task_start.go
@@ -77,6 +77,9 @@ type TaskConfig struct {
 
 	// AbstractSocketNamespace is the AbstractSocketNamespace of the new task.
 	AbstractSocketNamespace *AbstractSocketNamespace
+
+	// ContainerID is the container the new task belongs to.
+	ContainerID string
 }
 
 // NewTask creates a new task defined by cfg.
@@ -124,6 +127,7 @@ func (ts *TaskSet) newTask(cfg *TaskConfig) (*Task, error) {
 		abstractSockets: cfg.AbstractSocketNamespace,
 		rseqCPU:         -1,
 		futexWaiter:     futex.NewWaiter(),
+		containerID:     cfg.ContainerID,
 	}
 	t.endStopCond.L = &t.tg.signalHandlers.mu
 	t.ptraceTracer.Store((*Task)(nil))
author	Fabricio Voznika <fvoznika@google.com>	2018-09-27 15:00:03 -0700
committer	Shentubot <shentubot@google.com>	2018-09-27 15:00:58 -0700
commit	491faac03b2815ca1bc9b5425c1b3f6291468e20 (patch)
tree	0a8f0c1ad99c3d8660f36802132ecd9386c54518 /pkg/sentry/kernel/task_start.go
parent	68ac2ad1e1f16e65d9d1318d6827edf8487578d0 (diff)