Skip to content

Automatically clean up anonymous volumes for containers with --rm flag #839

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Automatically clean up anonymous volumes for containers with --rm flag #839

wants to merge 1 commit into from

Conversation

@realrajaryan
Copy link
Contributor

@realrajaryan realrajaryan commented Nov 3, 2025

Type of Change

  • Bug fix
  • New feature
  • Breaking change
  • Documentation update

Motivation and Context

Adds automatic cleanup of anonymous volumes when containers started with the --rm flag exit, preventing orphaned volumes from accumulating and consuming disk space.

Testing

  • Tested locally
  • Added/updated tests
  • Added/updated docs

@realrajaryan realrajaryan force-pushed the users/realrajaryan/rm-cleanup-anonvolumes branch from ef8edc7 to b1d37b9 Compare November 3, 2025 22:49
@realrajaryan realrajaryan added the storage issues and features associated with storage. label Nov 4, 2025
dcantah
dcantah reviewed Nov 4, 2025
View reviewed changes
Sources/Services/ContainerAPIService/Containers/ContainersService.swift

private func handleContainerExit(id: String, code: ExitStatus? = nil) async throws {
try await self.lock.withLock { [self] context in
let shouldCleanupVolumes = try await self.lock.withLock { [self] context in
Copy link
Member

@dcantah dcantah Nov 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Curious why we don't just do the cleanup in handleContainerExit itself

Copy link
Contributor Author

@realrajaryan realrajaryan Nov 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Once the lock is released if autoRemove was true, the container bundle has already been deleted by cleanup(), so we can't call getContainerCreationOptions() again to check the flag, the file is gone. So we need to capture the decision while the container still exists (inside the lock) then act on it outside the lock

Copy link
Member

@dcantah dcantah Nov 5, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What I mean is if cleanup() is called we know that autoRemove was supplied, so why not just do it in there?

jglogan
jglogan reviewed Nov 14, 2025
View reviewed changes
Sources/ContainerClient/Core/Volume.swift
public static let anonymousLabel = "com.apple.container.resource.anonymous"

/// Reserved label key for storing the container ID that created this volume
public static let createdByLabel = "com.apple.container.resource.created-by"
Copy link
Contributor

@jglogan jglogan Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My concern with this approach is that the ID of a container isn't really a unique ID across all time. In this case we might be able to get by with it but in general if you store the ID test, that could be one container on one day and a totally different container a week later.

Would I make more sense for us, when a container is removed in the API server, to quickly scan all containers for volume references, find all unreferenced volumes, and then prune those that are marked anonymous? Given what you have in cleanupAnonymousVolumes() this might be a simple change?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jglogan jglogan jglogan left review comments

@dcantah dcantah dcantah left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

storage issues and features associated with storage.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@realrajaryan @jglogan @dcantah