From owner-freebsd-arch@FreeBSD.ORG  Tue Dec 21 23:25:38 2004
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
Delivered-To: freebsd-arch@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 0809E16A4CE; Tue, 21 Dec 2004 23:25:38 +0000 (GMT)
Received: from critter.freebsd.dk (f170.freebsd.dk [212.242.86.170])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 28EF343D39; Tue, 21 Dec 2004 23:25:37 +0000 (GMT)
	(envelope-from phk@critter.freebsd.dk)
Received: from critter.freebsd.dk (localhost [127.0.0.1])
	by critter.freebsd.dk (8.13.1/8.13.1) with ESMTP id iBLNPZjX091428;
	Wed, 22 Dec 2004 00:25:35 +0100 (CET)
	(envelope-from phk@critter.freebsd.dk)
To: Kris Kennaway <kris@obsecurity.org>
From: "Poul-Henning Kamp" <phk@phk.freebsd.dk>
In-Reply-To: Your message of "Tue, 21 Dec 2004 15:23:54 PST."
             <20041221232354.GA28374@xor.obsecurity.org> 
Date: Wed, 22 Dec 2004 00:25:35 +0100
Message-ID: <91427.1103671535@critter.freebsd.dk>
Sender: phk@critter.freebsd.dk
cc: Kirk McKusick <mckusick@mckusick.com>
cc: arch@freebsd.org
cc: Robert Watson <rwatson@freebsd.org>
cc: Scott Long <scottl@freebsd.org>
Subject: Re: Forcefully unmounting devfs... 
X-BeenThere: freebsd-arch@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussion related to FreeBSD architecture
	<freebsd-arch.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-arch>
List-Post: <mailto:freebsd-arch@freebsd.org>
List-Help: <mailto:freebsd-arch-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Dec 2004 23:25:38 -0000

In message <20041221232354.GA28374@xor.obsecurity.org>, Kris Kennaway writes:
>
>--W/nzBZO5zC0uMSeA
>Content-Type: text/plain; charset=us-ascii
>Content-Disposition: inline
>Content-Transfer-Encoding: quoted-printable
>
>On Tue, Dec 21, 2004 at 02:32:34PM -0700, Scott Long wrote:
>
>> >Either disable forceful unmount of devfs, which makes sense from
>> >KISS and many other principles, and then jail wardens will have to
>> >find other ways to clean up their jails
>
>> >The more I think about it, the more I lean towards the first option.
>> >
>>=20
>> I think that I'd agree here from the point of view of finding an=20
>> expedient way to keep from shooting off feet.
>
>Unfortunately that's going to cause me a fair amount of pain, unless
>there's a simple way to kill all processes running in a given chroot
>(NB: I don't currently use jails because a number of ports won't build
>in a jail) so I can free up the devfs and then unmount it.

But unmounting it forcefully is not guaranteed to clean up your
chroot today...

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.