From owner-freebsd-jail@FreeBSD.ORG Wed Jun 24 21:38:09 2009 Return-Path: Delivered-To: freebsd-jail@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9509C1065676 for ; Wed, 24 Jun 2009 21:38:09 +0000 (UTC) (envelope-from scheidell@secnap.net) Received: from mx1.bct.ionspam.net (mx1.bct.ionspam.net [204.89.241.173]) by mx1.freebsd.org (Postfix) with ESMTP id E7A098FC0A for ; Wed, 24 Jun 2009 21:38:08 +0000 (UTC) (envelope-from scheidell@secnap.net) Received: from localhost (mx1.bct.ionspam.net [204.89.241.173]) by mx1.bct.ionspam.net (Postfix) with ESMTP id 06E69416FF2 for ; Wed, 24 Jun 2009 17:38:08 -0400 (EDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=secnap.net; h= content-type:subject:mime-version:user-agent:from:date :message-id; s=dkim; t=1245879486; x=1247693886; bh=63rKGZmtFW9P FE1QYrEhQbAXOEEZ4xCRShKH5HXYGiE=; b=TQ7yxCxM0G1RxXM+sRqnPSGJg86r ch+FdE448x1ETDdc5aKZ0gj2lqBKycfhdRZ1z2lNvXWXI8h7zBqXunasGOKZkh7C hDNRvL4Izrfu23hyxejbpuueCAffa8HXxBA53GiYs/jiJUeeGsyv6XFudY8wbXR+ LMicA9Uez6bMMyw= X-Amavis-Modified: Mail body modified (using disclaimer) - mx1.bct.ionspam.net X-Virus-Scanned: SpammerTrap(r) VPS-1500 2.03 at mx1.bct.ionspam.net Received: from secnap3.secnap.com (secnap3.secnap.com [204.89.241.130]) by mx1.bct.ionspam.net (Postfix) with ESMTP id 471B8416FC4 for ; Wed, 24 Jun 2009 17:38:06 -0400 (EDT) Received: from Mikes-Laptop.local ([10.70.3.3] RDNS failed) by secnap3.secnap.com with Microsoft SMTPSVC(6.0.3790.3959); Wed, 24 Jun 2009 17:38:05 -0400 Message-ID: <4A429CD2.3030302@secnap.net> Date: Wed, 24 Jun 2009 17:38:26 -0400 From: Michael Scheidell User-Agent: Thunderbird 2.0.0.22 (Macintosh/20090605) MIME-Version: 1.0 To: freebsd-jail@FreeBSD.org X-OriginalArrivalTime: 24 Jun 2009 21:38:06.0013 (UTC) FILETIME=[0F362ED0:01C9F514] Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: tracking down problem: kill won't inside a jail X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 Jun 2009 21:38:10 -0000 I am tracking down a problem, inside a 7.1 amd64 jail, kill won't work (default -TERM) kill -QUIT does. outside of jail, TERM works fine on same box, and I have verified that same binaries and libraries are in use (i think) newly created 7.1 amd64 jails (used ezjail.. don't know if they has any issues) /etc/rc.d/cron stop won't (that is just the symptoms I have been able to track down). hardly anything will stop with TERM. by default, rc.subr (and kill) uses SIGTERM, so I do a: /etc/rc.d/cron stop and I get (60 seconds of this: /etc/rc.d/cron stop Stopping cron. Waiting for PIDS: 98104, 98104, 98104, 98104 (so, of course, if you reboot the system, and have 15 jails, all with cron, none of the stop, and it times out) going to another tty and typeing: kill 98104 doen't help kill -TERM 98104 doesn't help state is: ps -auxwwp 98104 USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND root 98104 0.0 0.0 6692 1228 ?? SsJ 5:20PM 0:00.01 /usr/sbin/cron -s ps -auxwwp 98104 USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND root 98104 0.0 0.0 6692 1228 ?? IsJ 5:20PM 0:00.01 /usr/sbin/cron -s kill -QUIT 98104 does! (so does INT, again, inside jail, I need SIGQUIT, or INT outside, default TERM works also, /etc/rc.d/cron start && sleep 2 && /etc/rc.d/cron stop seems to work but sleep 60 seconds or more and it doesn't stop anymore. outside jail, cron ps looks like this: ps -auxwwp 98197 USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND root 98197 0.0 0.0 6692 1116 ?? Is 5:21PM 0:00.01 /usr/sbin/cron -s inside: (I guess the J means in jail? root 98104 0.0 0.0 6692 1228 ?? SsJ 5:20PM 0:00.01 /usr/sbin/cron -s ps -auxwwp 98104 USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND root 98104 0.0 0.0 6692 1228 ?? IsJ 5:20PM 0:00.01 /usr/sbin/cron -s where do I start looking? id hate to put hundreds of /etc/rc.conf.d files with sigstop=SIGQUIT in just to workaround it. -- Michael Scheidell, CTO Phone: 561-999-5000, x 1259 > *| *SECNAP Network Security Corporation * Certified SNORT Integrator * 2008-9 Hot Company Award Winner, World Executive Alliance * Five-Star Partner Program 2009, VARBusiness * Best Anti-Spam Product 2008, Network Products Guide * King of Spam Filters, SC Magazine 2008 _________________________________________________________________________ This email has been scanned and certified safe by SpammerTrap(r). For Information please see http://www.secnap.com/products/spammertrap/ _________________________________________________________________________