Date: Sun, 15 Feb 2004 19:37:42 +0300 (MSK) From: Maxim Konovalov <maxim@macomnet.ru> To: Melvyn Sopacua <freebsd-current@webteckies.org> Cc: current@freebsd.org Subject: Re: Jails that keep hanging around Message-ID: <20040215191756.P49729@news1.macomnet.ru> In-Reply-To: <200402151714.26631.freebsd-current@webteckies.org> References: <200402151714.26631.freebsd-current@webteckies.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello, On Sun, 15 Feb 2004, 17:14+0100, Melvyn Sopacua wrote: > Hi, > > I have yet to figure out what triggers the bug, but I end up with 'running' > jails, without any processes. So I thought I'd create 'jld' to remove a jail. > However - prison_find isn't exported to userland. Probably for good reason. > > Should I worry about these jails or is it harmless: [...] Yes, it is a known bug, see kern/54163 for example. It seems we are leaking ucred reference somewhere. TIME_WAIT handling is involved too. You can reproduce it easily: 1/ Start a jail: # jail / j 127.0.0.1 /usr/local/bin/nc -p 1973 -l 127.0.0.1 2/ Telnet to it: # telnet 127.0.0.1 1973 3/ Kill the jail: # killall nc 4/ Watch a leak: # jls ... or # sysctl -o security.jail.list ... I were trying to fix this for a long time but no success. -- Maxim Konovalov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040215191756.P49729>