Implement Golang Graceful Shutdown: A Hands-on Guide

Relia Software

Relia Software

Thuoc Nguyen

Relia Software

Software Development

Golang graceful shutdown ensures that when an application needs to stop, it does so safely by finishing its current work and cleaning up properly before closing down.

Golang Graceful Shutdown

Graceful shutdown is a vital feature for Go applications that run in real-world scenarios, often called "production" environments. It's about ensuring that when an application needs to stop, it does so safely by finishing its current work and cleaning up properly before closing down. 

This guide explores common methods, best practices, and modern ways to implement graceful shutdown in Go, especially for web servers and applications running in containers.

What Makes a Shutdown Graceful?

A graceful shutdown in a Go application generally means it handles 3 key things well, setting professional systems apart from simpler ones:

  1. Stop Accepting New Work: The application first closes its doors to new requests or messages. This could be new visitors to a website, new data from a messaging system, or other inputs. However, it keeps its existing connections open to things like databases to finish its current tasks.
  2. Finish Ongoing Tasks: The system then waits for all current tasks to be completed. It's important to have a reasonable time limit (a "timeout") for this, so it doesn't wait forever if a task gets stuck.
  3. Clean Up Resources: Finally, the application carefully releases any resources it was using. This includes closing database connections, releasing file locks, and shutting down network listeners, along with any other necessary cleanup steps.

Graceful shutdown is especially important for applications packaged in containers or for microservices that are frequently updated or scaled. During rolling updates, applications that shut down gracefully prevent users from experiencing sudden disconnections or errors.

Without it, active connections might be cut abruptly when containers are stopped, leading to failed requests and a poor user experience. This is a serious concern where even short service interruptions can affect users and system stability.

>> Learn more: A Complete Guide to Build Microservices with Golang Echo

Understanding Signals in Operating Systems

On systems like Linux or macOS (Unix-like systems), "signals" are like special notifications sent to applications about system events that need attention. While Go handles many signals automatically, graceful shutdown usually focuses on a few key ones related to stopping an application:

  • SIGTERM: This is the standard, polite request for an application to stop. It gives the application time to clean up before exiting.
  • SIGINT: This signal usually happens when a user presses Ctrl+C in a terminal. It also triggers a graceful shutdown.
  • SIGQUIT: This is a more forceful stop signal, but it still allows the application to perform cleanup.

Modern Go applications can handle these signals using either the older signal.Notify() function or the newer signal.NotifyContext() function (introduced in Go version 1.16). The signal.NotifyContext() method works very well with Go's context feature (a way to manage operation lifecycles), making it easier to coordinate shutdown across different parts of an application running simultaneously (known as "goroutines").

>> Read more: Mastering 6 Golang Concurrency Patterns

Common Ways for Golang HTTP Server Graceful Shutdown

net/http package

Go's built-in net/http package (used for creating web servers) includes support for graceful shutdown through the Server.Shutdown() method. This method:

  • Closes all parts of the server that listen for new connections.
  • Closes any connections that are not currently busy.
  • Waits for active connections to finish their work before the shutdown completes.

This process ensures current web requests can finish successfully while stopping new ones from starting.

A typical way to implement this involves:

  • Running the web server in the background (in a "goroutine") so it doesn't block the main part of the application. 
  • The main part then listens for shutdown signals. 
  • When a signal is received, the application starts the shutdown process, usually with a timeout to ensure it finishes within a reasonable period.
// s is your http.Server instance
// mux is your HTTP request handler (e.g., a router)
s := &http.Server{
    Addr:    ":8080", // Address to listen on
    Handler: mux,
}

// Create a channel to listen for OS signals
stop := make(chan os.Signal, 1)
// Notify this channel for SIGINT (Ctrl+C) and SIGTERM signals
signal.Notify(stop, os.Interrupt, syscall.SIGTERM)

// Run the server in a new goroutine (background process)
go func() {
    // Start listening for HTTP requests
    if err := s.ListenAndServe(); err != nil && !errors.Is(err, http.ErrServerClosed) {
        // Log fatal error if ListenAndServe fails for reasons other than graceful shutdown
        log.Fatal(err)
    }
    log.Println("Stopped serving new connections.")
}()

// Wait until a shutdown signal is received
<-stop
log.Println("Shutting down gracefully...")

// Create a context with a timeout for the shutdown process
shutdownCtx, shutdownRelease := context.WithTimeout(context.Background(), 10*time.Second)
defer shutdownRelease() // Release context resources when done

// Attempt to gracefully shut down the server
if err := s.Shutdown(shutdownCtx); err != nil {
    log.Printf("Server shutdown error: %v\n", err)
}
log.Println("Server stopped.")

signal.NotifyContext

This is a more modern method. Go 1.16 introduced signal.NotifyContext(), making graceful shutdown code simpler by directly linking signal handling with Go's context system. This often means less manual setup and cleaner code. This function gives you a context that gets canceled when a specified OS signal arrives, and a stop function to clean up the signal listener.

func main() {
    // Create a context that is canceled when SIGINT or SIGTERM is received
    ctx, stop := signal.NotifyContext(context.Background(), os.Interrupt, syscall.SIGTERM)
    defer stop() // Ensure the signal listener is stopped when main exits

    // Configure the HTTP server
    server := &http.Server{
        Addr:    ":8080",
        Handler: mux, // Your request handler
    }

    // Run the server in a goroutine so it doesn't block
    go func() {
        if err := server.ListenAndServe(); err != nil && !errors.Is(err, http.ErrServerClosed) {
            log.Printf("Server error: %v", err)
        }
    }()

    // Wait here until the context is canceled (due to a signal)
    <-ctx.Done()
    log.Println("Shutting down gracefully...")

    // Create a new context with a timeout for the shutdown itself
    shutdownCtx, cancel := context.WithTimeout(context.Background(), 5*time.Second)
    defer cancel() // Release context resources

    // Perform the graceful shutdown
    if err := server.Shutdown(shutdownCtx); err != nil {
        log.Printf("Server shutdown error: %v", err)
    }
    log.Println("Server stopped.")
}

Understanding ErrServerClosed

When you call Shutdown() or Close() on a Go HTTP server, it will eventually return an http.ErrServerClosed message. It's important to know that this is not a real error; it's simply the server confirming that it has shut down as requested. Your code should specifically check for ErrServerClosed to avoid mistakenly treating a successful shutdown as a problem.

Advanced Golang Graceful Shutdown Techniques

Cleaning Up External Service Connections

A complete graceful shutdown goes beyond just stopping the HTTP server. It also involves properly closing connections to any external services or resources the application uses. This includes things like database connections, connections to caching systems (like Redis), or open files. 

While the server's Shutdown() method handles network traffic, your application must manually close these other connections to ensure everything disconnects cleanly.

The cleanup should happen in a specific order:

  • Stop accepting new requests.
  • Finish all ongoing requests.
  • Then, close connections to external resources.

This order ensures that active tasks can finish their work using the resources they need. For example, database operations currently in progress should be allowed to complete.

Managing Ongoing Operations with Contexts

Go's context feature is very useful for managing operations during shutdown, especially for long-running tasks or database queries. A good practice is to use separate contexts for operations like database queries that should not be immediately canceled when a shutdown signal is received, allowing them to finish properly. This helps prevent data corruption.

For more complex scenarios, you can set up contexts with specific timeouts for these operations, giving them extra time to complete before being forcefully stopped if necessary. This helps balance a clean shutdown with practical time limits.

Dealing with Long-Lasting Connections (e.g., WebSockets)

Connections like WebSockets (used for real-time features like live chat) or other "hijacked" connections behave differently. The standard Server.Shutdown() method doesn't automatically close or wait for these. 

You need to add custom logic for them using the RegisterOnShutdown() method. This method lets you specify functions that should be called during the server's shutdown sequence to handle these special connections.

The RegisterOnShutdown() function allows your application to inform these long-lived connections that a shutdown is happening so they can close neatly. However, these registered functions should start their cleanup without waiting for it to fully complete, as the main shutdown process manages the overall timing.

Key Considerations for Implementing Graceful Shutdown

Setting the Right Timeouts

Configuring timeouts correctly is crucial for a reliable graceful shutdown. The shutdown timeout needs to be long enough for ongoing operations to finish but short enough to ensure the application stops within a reasonable time frame. Values between 5 and 30 seconds are common, but this depends on what your application does.

Applications with very long tasks might need longer timeouts, while simpler services can use shorter ones. The timeout should ideally cover the longest expected task plus a little extra for cleanup. If shutdown takes longer than this timeout, the application should log this and exit, rather than hanging indefinitely.

Best Practices for Handling Signals

Modern applications should listen for SIGTERM (especially when running in containers) and SIGINT (for when users stop them from a terminal). Systems like Kubernetes first send SIGTERM and then, after a "grace period," might send SIGKILL if the application hasn't exited. Handling SIGTERM properly is therefore essential for containerized applications.

While some applications might also handle SIGQUIT, it's less common for standard graceful shutdown. It's important not to try to catch SIGKILL (signal 9), as the operating system doesn't allow applications to intercept this signal; it means immediate termination.

Monitoring and Logging Shutdowns

Good Golang logging is key to understanding how your graceful shutdown is performing and to diagnose any problems. Your application should log messages when:

  • It receives a shutdown signal.
  • It starts the server shutdown process.
  • It successfully completes the shutdown.

Any errors during shutdown should also be logged in detail.

Monitoring systems can track how long shutdowns take and whether they complete successfully. This information helps in fine-tuning timeout values and finding parts of the application that might be causing slow or failed shutdowns.

Notes for Container Environments (e.g., Kubernetes, Docker)

When your application runs in a container, you need to consider how the container system (like Docker or Kubernetes) handles signals and shutdown periods. Kubernetes, for instance, has a default "grace period" (often 30 seconds) after sending SIGTERM before it might force-stop a container with SIGKILL. If your application needs more time to shut down, you can often configure a longer grace period for its container.

>> Explore more: A Comprehensive Guide To Dockerize A Golang Application

Health checks for your container should also be aware of the shutdown process to avoid redirecting traffic away from an instance that is simply shutting down gracefully during an update. Aligning your application's shutdown behavior with how your container platform works ensures smooth updates and operations.

Conclusion

Implementing Golang graceful shutdown involves careful handling of system signals, thorough resource management, and smart timing. Using modern Go features like signal.NotifyContext can lead to cleaner code. Properly handling server responses like http.ErrServerClosed and ensuring all external resources are cleaned up are also key. 

For applications deployed in the real world, especially in containers, it's vital to configure timeouts appropriately, monitor the shutdown process, and understand the container platform's behavior. By following these guidelines, you can build robust Go applications that maintain high service quality, even during updates or system maintenance, by always saying a polite goodbye.

>>> Follow and Contact Relia Software for more information!

Blog author

The Author

Thuoc Nguyen - Backend Developer
4 years of extensive experience in Golang, complemented by proficiency in C/C++ and Node.js.
I’m Thuoc Nguyen, a senior backend developer with over four years of experience building high-performance applications using C, C++, Node.js (NestJS), and Golang (Gin, Gorm). I specialize in creating scalable web APIs and leverage technologies like Redis for caching and RabbitMQ for messaging. With a strong foundation in backend systems and database management, I’m passionate about developing efficient, reliable solutions for complex business needs.
  • golang
  • coding
  • development

Table of Contents