Date: Thu, 4 Jan 2007 21:49:52 +0100 From: Ed Schouten <ed@fxq.nl> To: bug-followup@FreeBSD.org, philippe.lang@attiksystem.ch Cc: FreeBSD Hackers <freebsd-hackers@freebsd.org> Subject: Re: kern/89528: [jail] impossible to kill a jail Message-ID: <20070104204952.GT1072@hoeg.nl> In-Reply-To: <20070104201434.GS1072@hoeg.nl> References: <20070104201434.GS1072@hoeg.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --]
* Ed Schouten <ed@fxq.nl> wrote:
> As long as pty's have been allocated that have been created by threads
> in a jail, the prison structure has more references, causing the zombie
> jails to exist.
We could change the make_dev_credv() routine to crcopy() everything
except the prison when we're creating a node in a jail. The following
patch fixes the zombie jail bug on my machine:
--- src/sys/kern/kern_conf.c Fri Oct 20 09:59:50 2006
+++ src/sys/kern/kern_conf.c Thu Jan 4 21:36:44 2007
@@ -42,6 +42,7 @@
#include <sys/ctype.h>
#include <sys/tty.h>
#include <sys/ucred.h>
+#include <sys/jail.h>
#include <machine/stdarg.h>
#include <fs/devfs/devfs_int.h>
@@ -563,7 +564,15 @@
dev->si_flags |= SI_NAMED;
if (cr != NULL)
- dev->si_cred = crhold(cr);
+ if (cr->cr_prison == NULL) {
+ dev->si_cred = crhold(cr);
+ } else {
+ /* Don't let the node depend on a prison */
+ dev->si_cred = crget();
+ crcopy(dev->si_cred, cr);
+ prison_free(dev->si_cred->cr_prison);
+ dev->si_cred->cr_prison = NULL;
+ }
else
dev->si_cred = NULL;
dev->si_uid = uid;
Could other people experiencing this problem as well give this patch a
try? Thanks a lot!
Yours,
--
Ed Schouten <ed@fxq.nl>
WWW: http://g-rave.nl/
[-- Attachment #2 --]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (FreeBSD)
iD8DBQFFnWhw52SDGA2eCwURAnf9AJ47ZpkxiM8s2KznHU+NncdjiqjHpACcCzJQ
jfxOzPnh9zjiOAxisCY8e5A=
=TOCY
-----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070104204952.GT1072>