From owner-freebsd-stable@FreeBSD.ORG Wed Nov 14 10:39:38 2012 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 0D575A78; Wed, 14 Nov 2012 10:39:38 +0000 (UTC) (envelope-from markus.gebert@hostpoint.ch) Received: from mail.adm.hostpoint.ch (mail.adm.hostpoint.ch [IPv6:2a00:d70:0:a::e0]) by mx1.freebsd.org (Postfix) with ESMTP id 7CB3B8FC18; Wed, 14 Nov 2012 10:39:37 +0000 (UTC) Received: from [2001:1620:2013:1:e8ec:d52:8672:17b] (port=51430) by mail.adm.hostpoint.ch with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.69 (FreeBSD)) (envelope-from ) id 1TYaND-000NWs-Hb; Wed, 14 Nov 2012 11:39:11 +0100 Mime-Version: 1.0 (Mac OS X Mail 6.2 \(1499\)) Subject: Re: thread taskq / unp_gc() using 100% cpu and stalling unix socket IPC From: Markus Gebert In-Reply-To: Date: Wed, 14 Nov 2012 11:39:00 +0100 Message-Id: References: <6908B498-6978-4995-B081-8D504ECB5C0A@hostpoint.ch> <007F7A73-75F6-48A6-9C01-E7C179CDA48A@hostpoint.ch> To: Adrian Chadd X-Mailer: Apple Mail (2.1499) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.14 Cc: freebsd-stable X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Nov 2012 10:39:38 -0000 On 14.11.2012, at 02:12, Adrian Chadd wrote: > Oh lordie, just hack the kernel to make IP_BINDANY usable by any uid, > not just root. >=20 > I was hoping that capabilitiies would actually be useful these days, > but apparently not. :( >=20 > Then you can stop this FD exchange nonsense and this problem should go = away. :) Thanks for the suggestion, I'll probably do that regardless of a fix to = the unp_gc problem, because it's indeed unnecessary overhead in our = scenario. Still that's a workaround you most probably don't want if you = have untrusted users on the system or you end up hacking in something = comparable to security.mac.seeotheruids.specificgid. Markus