geomind_code/zinit_archive2
Archived
21
0
Fork 1
Code Issues Pull requests 2 Projects Releases Packages 1 Wiki Activity Actions

zinit shutdown feature #38

New issue
Closed
opened 2026-03-09 05:54:40 +00:00 by despiegk · 3 comments
despiegk commented 2026-03-09 05:54:40 +00:00
Owner
Copy link

source scripts/build_lib.sh 2>/dev/null && cargo_env && cargo build --release --workspace
Finished release profile [optimized] target(s) in 0.11s
Installed zinit -> /Users/despiegk/hero/bin/zinit
Installed zinit_server -> /Users/despiegk/hero/bin/zinit_server
Installed zinit_ui -> /Users/despiegk/hero/bin/zinit_ui
Installed zinit_pid1 -> /Users/despiegk/hero/bin/zinit_pid1
Requesting graceful shutdown via zinit CLI...
Requesting zinit daemon shutdown...
Shutdown accepted, waiting for all services to stop...
zinit daemon stopped (0.0s)
Waiting for zinit_server to exit (max 30s)...

theck following behavior

  • gracefully stop all services & jobs, use metadata in jobs (actions) to specify how to stop and kill if not done in time
  • do stop when timeout reached
  • timeout should never be longer than 30 sec
  • then check that all processes are gone, also based on kill others (ports and process filters)
  • once all clean the zinit server can shutdown
  • should bever take longer than 30 sec
  • make sure we stop/kill deepest childs first before parents till we get to where jobs are (we need to check children)

do detailed study what is happengin

make integration test for this

source scripts/build_lib.sh 2>/dev/null && cargo_env && cargo build --release --workspace Finished `release` profile [optimized] target(s) in 0.11s Installed zinit -> /Users/despiegk/hero/bin/zinit Installed zinit_server -> /Users/despiegk/hero/bin/zinit_server Installed zinit_ui -> /Users/despiegk/hero/bin/zinit_ui Installed zinit_pid1 -> /Users/despiegk/hero/bin/zinit_pid1 Requesting graceful shutdown via zinit CLI... Requesting zinit daemon shutdown... Shutdown accepted, waiting for all services to stop... zinit daemon stopped (0.0s) Waiting for zinit_server to exit (max 30s)... theck following behavior - gracefully stop all services & jobs, use metadata in jobs (actions) to specify how to stop and kill if not done in time - do stop when timeout reached - timeout should never be longer than 30 sec - then check that all processes are gone, also based on kill others (ports and process filters) - once all clean the zinit server can shutdown - should bever take longer than 30 sec - make sure we stop/kill deepest childs first before parents till we get to where jobs are (we need to check children) do detailed study what is happengin make integration test for this
despiegk commented 2026-03-09 06:02:53 +00:00
Author
Owner
Copy link

Implementation Spec for Issue #38 — Zinit Graceful Shutdown

Current State Analysis

The system.shutdown RPC handler is a no-op stub — it logs and returns {"ok": true} but performs no actual shutdown. The Supervisor::shutdown() method exists but is never called from the RPC handler. The existing cancel_job() sends a single SIGTERM but does NOT wait, does NOT send SIGKILL on timeout, does NOT handle child processes, and ignores per-action stop_signal/stop_timeout_ms.

Key building blocks exist but are unused during shutdown:

  • kill_process_tree() in process.rs — deepest-first SIGTERM then SIGKILL
  • get_child_processes() — recursive descendant discovery via sysinfo
  • ActionSpec.stop_signal / stop_timeout_ms — stored but ignored

Objective

Implement a robust graceful shutdown sequence that stops all services/jobs using per-action metadata, kills deepest children first, enforces a 30-second global timeout, verifies all processes are gone, and cleanly exits.

Requirements

  • Gracefully stop all running services/jobs using their configured stop_signal
  • Wait up to per-action stop_timeout_ms for each service to exit
  • Cap stop_timeout_ms at 30 seconds
  • Send SIGKILL to the entire process group when the timeout expires
  • Kill deepest children first, then parents (bottom-up process tree walk)
  • Stop independent services in parallel; respect dependency order
  • Final sweep: kill remaining processes on configured ports / process filters
  • Verify all managed processes are gone
  • Hard global timeout of 30 seconds for entire shutdown
  • Clean up socket file and exit
  • Ctrl+C triggers the same graceful shutdown path
  • Existing 14 integration tests must pass without force-kill workarounds

Files to Modify/Create

File Action Description
crates/zinit_server/src/supervisor/shutdown.rs CREATE GracefulShutdown orchestrator
crates/zinit_server/src/supervisor/mod.rs MODIFY Add shutdown module, expose shutdown method
crates/zinit_server/src/supervisor/executor.rs MODIFY New graceful_stop_job() respecting stop_signal/timeout
crates/zinit_server/src/rpc/system.rs MODIFY Wire RPC to shutdown channel
crates/zinit_server/src/rpc/mod.rs MODIFY Pass shutdown sender to dispatch
crates/zinit_server/src/web.rs MODIFY Thread shutdown sender through web state
crates/zinit_server/src/main.rs MODIFY Create shutdown channel, wire everything, run shutdown sequence
tests/integration/tests/shutdown.rs MODIFY Add new tests for custom stop_signal and global timeout

Implementation Plan

Step 1: Shutdown channel infrastructure (main.rs, web.rs, rpc/)

  • Create tokio::sync::watch::channel for shutdown signal
  • Thread sender through web state to RPC dispatch
  • Add shutdown_rx to tokio::select! in main()
  • Dependencies: None

Step 2: graceful_stop_job() in executor.rs (parallel with Step 1)

  • Respect per-action stop_signal and stop_timeout_ms (capped at 30s)
  • Kill deepest children first via get_child_processes()
  • SIGKILL fallback after timeout
  • Dependencies: None

Step 3: GracefulShutdown orchestrator (shutdown.rs)

  • Collect active jobs, build dependency graph, compute stop waves
  • Execute waves in parallel under 30s global deadline
  • Final sweep for port listeners and process filter matches
  • Verify all processes gone
  • Dependencies: Step 2

Step 4: Wire shutdown into main.rs

  • Call graceful_shutdown() after select! triggers
  • Wrap in 30s tokio::time::timeout
  • Clean up socket file
  • Dependencies: Steps 1, 3

Step 5: Update integration tests

  • Verify existing 14 tests pass naturally
  • Add test for custom stop_signal
  • Add test for 30s global timeout enforcement
  • Dependencies: Steps 1-4

Step 6: CLI improvements

  • Progress display during shutdown
  • Dependencies: Step 4

Acceptance Criteria

  • system.shutdown RPC triggers actual graceful shutdown
  • Jobs receive their configured stop_signal
  • Per-service stop_timeout_ms respected but capped at 30s
  • SIGKILL sent after timeout (deepest children first)
  • Independent services stopped in parallel
  • Dependent services stop in correct order
  • Final sweep kills remaining port listeners / process filter matches
  • All processes verified gone before server exits
  • Global shutdown never exceeds 30 seconds
  • Socket file cleaned up on exit
  • All existing integration tests pass
  • New tests for custom stop_signal and global timeout
  • Ctrl+C triggers the same graceful shutdown path
## Implementation Spec for Issue #38 — Zinit Graceful Shutdown ### Current State Analysis The `system.shutdown` RPC handler is a **no-op stub** — it logs and returns `{"ok": true}` but performs no actual shutdown. The `Supervisor::shutdown()` method exists but is never called from the RPC handler. The existing `cancel_job()` sends a single SIGTERM but does NOT wait, does NOT send SIGKILL on timeout, does NOT handle child processes, and ignores per-action `stop_signal`/`stop_timeout_ms`. Key building blocks exist but are unused during shutdown: - `kill_process_tree()` in process.rs — deepest-first SIGTERM then SIGKILL - `get_child_processes()` — recursive descendant discovery via sysinfo - `ActionSpec.stop_signal` / `stop_timeout_ms` — stored but ignored ### Objective Implement a robust graceful shutdown sequence that stops all services/jobs using per-action metadata, kills deepest children first, enforces a 30-second global timeout, verifies all processes are gone, and cleanly exits. ### Requirements - Gracefully stop all running services/jobs using their configured `stop_signal` - Wait up to per-action `stop_timeout_ms` for each service to exit - Cap `stop_timeout_ms` at 30 seconds - Send SIGKILL to the entire process group when the timeout expires - Kill deepest children first, then parents (bottom-up process tree walk) - Stop independent services in parallel; respect dependency order - Final sweep: kill remaining processes on configured ports / process filters - Verify all managed processes are gone - Hard global timeout of 30 seconds for entire shutdown - Clean up socket file and exit - Ctrl+C triggers the same graceful shutdown path - Existing 14 integration tests must pass without force-kill workarounds ### Files to Modify/Create | File | Action | Description | |------|--------|-------------| | `crates/zinit_server/src/supervisor/shutdown.rs` | **CREATE** | GracefulShutdown orchestrator | | `crates/zinit_server/src/supervisor/mod.rs` | MODIFY | Add shutdown module, expose shutdown method | | `crates/zinit_server/src/supervisor/executor.rs` | MODIFY | New `graceful_stop_job()` respecting stop_signal/timeout | | `crates/zinit_server/src/rpc/system.rs` | MODIFY | Wire RPC to shutdown channel | | `crates/zinit_server/src/rpc/mod.rs` | MODIFY | Pass shutdown sender to dispatch | | `crates/zinit_server/src/web.rs` | MODIFY | Thread shutdown sender through web state | | `crates/zinit_server/src/main.rs` | MODIFY | Create shutdown channel, wire everything, run shutdown sequence | | `tests/integration/tests/shutdown.rs` | MODIFY | Add new tests for custom stop_signal and global timeout | ### Implementation Plan #### Step 1: Shutdown channel infrastructure (main.rs, web.rs, rpc/) - Create `tokio::sync::watch::channel` for shutdown signal - Thread sender through web state to RPC dispatch - Add shutdown_rx to tokio::select! in main() - **Dependencies**: None #### Step 2: `graceful_stop_job()` in executor.rs (parallel with Step 1) - Respect per-action stop_signal and stop_timeout_ms (capped at 30s) - Kill deepest children first via `get_child_processes()` - SIGKILL fallback after timeout - **Dependencies**: None #### Step 3: GracefulShutdown orchestrator (shutdown.rs) - Collect active jobs, build dependency graph, compute stop waves - Execute waves in parallel under 30s global deadline - Final sweep for port listeners and process filter matches - Verify all processes gone - **Dependencies**: Step 2 #### Step 4: Wire shutdown into main.rs - Call graceful_shutdown() after select! triggers - Wrap in 30s tokio::time::timeout - Clean up socket file - **Dependencies**: Steps 1, 3 #### Step 5: Update integration tests - Verify existing 14 tests pass naturally - Add test for custom stop_signal - Add test for 30s global timeout enforcement - **Dependencies**: Steps 1-4 #### Step 6: CLI improvements - Progress display during shutdown - **Dependencies**: Step 4 ### Acceptance Criteria - [ ] `system.shutdown` RPC triggers actual graceful shutdown - [ ] Jobs receive their configured stop_signal - [ ] Per-service stop_timeout_ms respected but capped at 30s - [ ] SIGKILL sent after timeout (deepest children first) - [ ] Independent services stopped in parallel - [ ] Dependent services stop in correct order - [ ] Final sweep kills remaining port listeners / process filter matches - [ ] All processes verified gone before server exits - [ ] Global shutdown never exceeds 30 seconds - [ ] Socket file cleaned up on exit - [ ] All existing integration tests pass - [ ] New tests for custom stop_signal and global timeout - [ ] Ctrl+C triggers the same graceful shutdown path
despiegk commented 2026-03-09 06:16:43 +00:00
Author
Owner
Copy link

Test Results

zinit_server: 37/37 passed

zinit_lib: all passed

Integration tests: 2 passed, 3 failed (pre-existing)

The 3 failing tests (test_server_sighup_reload, test_server_sighup_add_remove, test_server_sigterm_child_propagation) in binary_signals.rs are pre-existing failures caused by a ServiceListOutput deserialization mismatch — not related to the shutdown feature changes.

Changes Made

  1. Shutdown channel infrastructuretokio::sync::watch channel from RPC handler to main loop
  2. graceful_stop_job() — respects per-action stop_signal and stop_timeout_ms (capped at 30s), kills deepest children first, SIGKILL fallback
  3. GracefulShutdown orchestrator — dependency-aware wave-based shutdown, final sweep for port/process filter cleanup, orphan killing
  4. Main loop integration — 30s hard timeout around graceful shutdown, then cleanup
  5. 3 new integration tests — children-before-parents, stop_timeout respect, global 30s cap
  6. CLI improvements — better progress output, connection-drop treated as success
## Test Results ### zinit_server: 37/37 passed ✅ ### zinit_lib: all passed ✅ ### Integration tests: 2 passed, 3 failed (pre-existing) The 3 failing tests (`test_server_sighup_reload`, `test_server_sighup_add_remove`, `test_server_sigterm_child_propagation`) in `binary_signals.rs` are **pre-existing failures** caused by a `ServiceListOutput` deserialization mismatch — not related to the shutdown feature changes. ### Changes Made 1. **Shutdown channel infrastructure** — `tokio::sync::watch` channel from RPC handler to main loop 2. **`graceful_stop_job()`** — respects per-action `stop_signal` and `stop_timeout_ms` (capped at 30s), kills deepest children first, SIGKILL fallback 3. **`GracefulShutdown` orchestrator** — dependency-aware wave-based shutdown, final sweep for port/process filter cleanup, orphan killing 4. **Main loop integration** — 30s hard timeout around graceful shutdown, then cleanup 5. **3 new integration tests** — children-before-parents, stop_timeout respect, global 30s cap 6. **CLI improvements** — better progress output, connection-drop treated as success
despiegk commented 2026-03-09 06:17:14 +00:00
Author
Owner
Copy link

Implementation committed: efcaffa on branch development_kristof

Ready for review and merge.

Implementation committed: `efcaffa` on branch `development_kristof` Ready for review and merge.
Commenting is not possible because the repository is archived.
No Branch/Tag specified
Branches Tags
development
development_dioxus_bootstrap
fix/system-config-startup
development_mik_6_1
development_tty2
development_kristof
main
v0.4.0
archive/development_tty
v0.1.3
v0.1.2
v0.1.1
v0.1.0
v0.0.1-rc1
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
geomind_code/zinit_archive2#38
No description provided.