cgroup limits are not detected in docker

[tmds]

Triggered by the discussion at aspnet/KestrelHttpServer#1260, I'm having a look at the cgroup code in coreclr.

The first problem I encounter is the code isn't properly parsing the mountinfo when the mountpoint contains a dash. PR: dotnet/coreclr#13488

The next problem I have is the limits aren't found.
The code is looking for a mountpoint in the /proc/self/mountinfo file and then combines that with a path it finds under /proc/self/cgroup.

I ran a container on rhel7.4+docker and one on minishift(= local instance of openshift, which is using kubernetes as an orchectrator) and the limits are not found at that location.

Instead they are present directly under the mount path.

For example:
mountpoint:

396 394 0:21 /kubepods/besteffort/pod9a18ffb8-8513-11e7-b26e-7e29fbe2a5a3/d28e0087cf8f3f0429f755d60b0de415b20fcf76736ded7bab6e30e7b739ee36 /sys/fs/cgroup/cpu ro,nosuid,nodev,noexec,relatime - cgroup cgroup rw,cpu

cgroup

2:cpu:/kubepods/besteffort/pod9a18ffb8-8513-11e7-b26e-7e29fbe2a5a3/d28e0087cf8f3f0429f755d60b0de415b20fcf76736ded7bab6e30e7b739ee36

$ ls /sys/fs/cgroup/cpu                                                                                                                                                                                                             
cgroup.clone_children  cgroup.procs  cpu.cfs_period_us  cpu.cfs_quota_us  cpu.rt_period_us  cpu.rt_runtime_us  cpu.shares  cpu.stat  notify_on_release  tasks

cc @janvorli @benaadams @markvincze @rahku @gboucher90

[tmds]

Cc @Drawaes too

[Drawaes]

Good find :)

[benaadams]

TL;DR in some situations the GC doesn't pick up the container memory limits; which can lead to OOM exceptions and restarts

/cc @gkhanna79 @Maoni0

Probably would need to be part of a 2.0.x servicing release when fixed? As containers is a mainstream ASP.NET Core deployment scenario

/cc @DamianEdwards @davidfowl @kendrahavens

[Drawaes]

Yeah I would backport the patch if it is causing OOM on containers in some environments. (my useful 2p)

[benaadams]

Looks like someone else might be having container issue dotnet/core#871

[Maoni0]

@janvorli will you be looking at this?

[tmds]

@janvorli I'll update the PR so it handles the docker limits too.

[tmds]

PR was updated: dotnet/coreclr#13488

[tmds]

Implemented on master: dotnet/coreclr#13488 and 2.0 branch: dotnet/coreclr#13895

[mapitman]

Any ideas on when or if we will see this as part of a .NET Core 2.0.x release?

[jkotas]

It should show up in .NET Core 2.0.3 update.

[ligue]

I confirm that our microservices deployed in AWS ECS Docker instances (.NET Core 2.0 runtimes) are affected by this.

[emanuelbalea]

Anyone know which package to try this out with for docker? Tried the 2.0.3 service release but that still has the issue unless I have to manually specify the ServerGarbageCollection flag (which I did not try).