Add support for container restart policy

[JaewonHur]

This PR initiates the implementation for adding restart feature (#286), which can be extended to support auto-start later (#158, #1201). The first milestone is to implement restart policies no, on-failure, and always (which behaves similar to docker-restart-policy).

To support restart policy, following persistent and runtime state variables should be added:

• In ContainerCreateOption (persistent)
  • RestartPolicy: remember restart policy across the container life cycle.
• In ContainerState (run-time)
  • StoppedState(startError: Error?, exitStatus: ExitStatus?): determine restart logic when container exits
  • manualStopped: Bool: remember if the container is stopped by user
    • True on first container creation, False on loadAtBoot
  • backOff: Duration?: remember backoff timer.
    • Default to nil
    • Set 100ms on first non-manual exit (and then doubled until 10 seconds)
    • Set nil on startError or manualStopped

A new state should be added in container life cycle:

• restarting: restarted containers first go to this state and waits for backOff to start.

Implementation steps are described below:

• [ContainersService] Add state variables for restart policy
• [ContainerResource, ContainerCommand] Add restart policy and expose command line.
• [ContainersService] Add restarting state, where the restarting containers first visit, and proceeds to bootstrap (after backOff) then startProcess.
• [ContainersService] Implement restart logic in handleContainerExit
  • [restart == no]
    • Idle (stay at stopped).
  • [restart == on-failure]
    • startError || manualStopped || exitStatus == nil
      • Idle
    • exitStatues != nil && exitStatus != 0
      • Restart
  • [restart == always]
    • startError || manualStopped
      • Idle
    • Else
      • Restart
• Add stability call, which marks the container to be stable 10 seconds after running---i.e., resetting the backOff.
  • It might be something like stabilityMonitor (similar to ExitMonitor) that registers callback on successful startProcess.

Type of Change

• Bug fix
• New feature
• Breaking change
• Documentation update

Motivation and Context

Users can setup auto-restarting containers using this feature.

Testing

• Tested locally
• Added/updated tests
• Added/updated docs

[saehejkang]

@JaewonHur Busy week and I hope to get to review this here soon. I saw your comment and I am all for following the direction we take in this PR. Though it might be worthwhile to get started on the discussion on how we want to handle test cases and maybe work together on that piece?

[JaewonHur]

Hi @saehejkang, sorry for moving forward on my own.

I just did minimal implementation today, but I'll definitely put our name together here.
This PR now just contains prototype implementation, and anything can be changed! Please take a look :)

Further things to do might be:

1. supporting --restart systemStart (or make always to start on system start?)
2. Add restart counter for onFailure.
3. Also, testing for restarting container across system can be added.

[saehejkang]

I went over things as best as I could for now. Lots of changes that I have not gotten a chance to dig deeper into (the scheduler). Don't worry about taking over and wrapping this up!

[saehejkang]

Why was the decoder not being used before when it was just autoRemove?

[JaewonHur]

I actually have no idea :)
Maybe, wanted to keep the code as simple as possible at that time?

[saehejkang]

What does the bootstrapped status mean? The container or sandbox is stopped but ready to be started?

[JaewonHur]

bootstrapped means (by itself) the container is bootstrapped (i.e., bootstrap function has been successfully executed on that container).

Before this update, the state was same stopped whether it is bootstrapped or not. The only difference was SandboxClient is allocated or not---I personally felt that somewhat weird, but left there.

But after adding restarting state, it becomes more weird, since container state should go restarting (waiting for backOff), then stopped (after bootstrap) then running`.

BTW, now we split the RuntimeStatus to ContainerStatus and SandboxStatus, so it only applies to containers.

[JaewonHur]

While writing this comment, I found that I missed setting the container restarting in scheduler lol.

[saehejkang]

Never thought I would see a scheduler again after OS in college 😆.

[saehejkang]

supporting --restart systemStart (or make always to start on system start?)

Solid foundation work was done with the restart policy and I am sure it could follow the same pattern?

Add restart counter for onFailure.

What would be the use case for this? Could it be used to automatically stop trying to restart a container after a certain count?

Also, testing for restarting container across system can be added.

Hopefully we can use something like #1176 to be a sort of final e2e test of all the policies.

[JaewonHur]

Solid foundation work was done with the restart policy and I am sure it could follow the same pattern?

Thanks, if you make PR to my branch, let me merge it :)

What would be the use case for this? Could it be used to automatically stop trying to restart a container after a certain count?

Yes. Docker supports that functionality (https://docs.docker.com/engine/containers/start-containers-automatically/)