From owner-cvs-src@FreeBSD.ORG Fri May 30 15:40:29 2008 Return-Path: <owner-cvs-src@FreeBSD.ORG> Delivered-To: cvs-src@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 50F9C10656AE; Fri, 30 May 2008 15:40:29 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from cyrus.watson.org (cyrus.watson.org [209.31.154.42]) by mx1.freebsd.org (Postfix) with ESMTP id E3EB18FC2B; Fri, 30 May 2008 15:40:28 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from fledge.watson.org (fledge.watson.org [209.31.154.41]) by cyrus.watson.org (Postfix) with ESMTP id 41BF546B88; Fri, 30 May 2008 11:40:27 -0400 (EDT) Date: Fri, 30 May 2008 16:40:27 +0100 (BST) From: Robert Watson <rwatson@FreeBSD.org> X-X-Sender: robert@fledge.watson.org To: Ceri Davies <ceri@submonkey.net> In-Reply-To: <20080530145656.GB17008@submonkey.net> Message-ID: <20080530162829.E85310@fledge.watson.org> References: <200805261157.m4QBvnpF025029@repoman.freebsd.org> <20080526144831.K26343@fledge.watson.org> <20080526140735.GA35960@gw.reifenberger.com> <200805281309.49683.jhb@freebsd.org> <20080529140557.GA94385@gw.reifenberger.com> <20080529151233.I3678@fledge.watson.org> <20080529145319.GC94385@gw.reifenberger.com> <20080529155422.T3678@fledge.watson.org> <20080530165051.46452soq4pp07n28@webmail.leidinger.net> <20080530145656.GB17008@submonkey.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: src-committers@FreeBSD.org, John Baldwin <jhb@FreeBSD.org>, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org, Michael Reifenberger <mike@reifenberger.com>, Alexander Leidinger <Alexander@Leidinger.net> Subject: Re: cvs commit: src/usr.sbin/jexec jexec.8 jexec.c X-BeenThere: cvs-src@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org> List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>, <mailto:cvs-src-request@freebsd.org?subject=unsubscribe> List-Archive: <http://lists.freebsd.org/pipermail/cvs-src> List-Post: <mailto:cvs-src@freebsd.org> List-Help: <mailto:cvs-src-request@freebsd.org?subject=help> List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>, <mailto:cvs-src-request@freebsd.org?subject=subscribe> X-List-Received-Date: Fri, 30 May 2008 15:40:29 -0000 On Fri, 30 May 2008, Ceri Davies wrote: >>>> Thats something that the admin should take care for. >>> >>> How might they do that? Remember that any command that works only when >>> the jail IP is "unambiguous" will become effectively non-deterministic as >>> a result of un-garbage collected jails. So >> >> Is it feasible to change the hostname of a dying jail? We could prefix it >> with some string at some point of the shutdown... > > We'd be better off just dropping all the connections at that point. TCP TIME_WAIT exists for a reason that it is better not to disregard. This question gets a bit more complicated in light of vimage, which is something we'll need to discuss at the August developer summit. Also, TIME_WAIT is just one example of a jail persisting due to continuing references to a credential -- there are other legitimate, albeit less common, reasons that it may occur, and those are also valid use cases. Robert N M Watson Computer Laboratory University of Cambridge