Fix process leak in PosixCommandBasedStatisticsGetter

[orange475]

Summary

• Fixes a process leak in PosixCommandBasedStatisticsGetter where shell processes spawned to collect system
  statistics were not being properly reaped
• Adds process.waitFor() call after reading command output to ensure child processes complete and are removed
  from the process table
• Includes comprehensive unit tests to verify the fix and prevent regression

Problem

The PosixCommandBasedStatisticsGetter class executes shell commands (ps, grep) to collect memory statistics but
wasn't waiting for these processes to complete. This caused zombie processes to accumulate over time in
long-running Samza containers, potentially leading to resource exhaustion.

Solution

• Added process.waitFor() after closing the process reader to ensure proper process cleanup
• Implemented proper interruption handling to maintain thread interrupt status
• Added unit tests covering normal operation, interruption scenarios, and multiple executions

Test Plan

• Added unit tests for process reaping behavior
• Added test for interruption handling during command execution
• Added test for multiple command executions to verify no process accumulation
• Run integration tests to verify no regression in statistics collection
• Deploy to staging environment and monitor process table for zombie processes

[orange475]

@xinyuiscool @shanthoosh @sborya Could you take a look at this? Thank you

[bringhurst]

It might be good to add:

    } finally {
        executable.destroy();
    }

here just to make sure.

[orange475]

Done, PTAL

[bringhurst]

Before we re-interrupt, we should probably try to kill it off. e.g.

    } catch (InterruptedException e) {
      executable.destroy();
      Thread.currentThread().interrupt();
      throw new IOException("Interrupted while waiting for command to complete", e);
    }

[orange475]

We'll do destroy in finally block

[bringhurst]

Instead of explicitly calling close, this should probably use try-with-resources instead. Also, since we're already changing this, any thoughts on draining the stderr buffer here too? Although (very) unlikely, if the process spams stderr and fills the pipe, it'll deadlock on the wait until something drains it off. e.g.

    try (BufferedReader processReader = new BufferedReader(new InputStreamReader(executable.getInputStream()));
         BufferedReader errorReader = new BufferedReader(new InputStreamReader(executable.getErrorStream()))) {
        String line;
        while ((line = processReader.readLine()) != null) {
            if (!line.isEmpty()) {
                psOutput.add(line);
            }
        }
        while ((line = errorReader.readLine()) != null) {
            if (!line.isEmpty()) {
                log.error("stderr while running {}: {}", cmdArray, line);
            }
        }
    }

[orange475]

Added the stderr buffer draining.

[sborya]

LGTM

[orange475]

Updated

[bringhurst]

LGTM

[shanthoosh]

What will be the behavior if the executable did not complete within the timeout?

[orange475]

It will throw an exception and finally destroy the executable. This is to avoid infinite wait. We could also remove this TTL to just call executable.waitFor() or with a longer default time. @bringhurst what's your thought on this?

[shanthoosh]

Do we want to make this configurable per job.

[orange475]

I dont think this would be necessary at this point as we don't want to expose this to users for tuning. Make it configurable would also require a wider refactoring.

[bringhurst]

ced9c1d

This change was discussed offline. It was updated to a minute to sync up with the metrics reporting interval. There's no need to restrict it more than that.

[shanthoosh]

Can we please clarify how did we have verify and test the changes end-to-end such that it addresses the leack problem?