From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.comp.sysutils.supervision.general/1525 Path: news.gmane.org!not-for-mail From: Alex Efros Newsgroups: gmane.comp.sysutils.supervision.general Subject: Re: runit not collecting zombies Date: Sat, 15 Sep 2007 18:28:04 +0300 Organization: asdfGroup Inc., http://powerman.asdfGroup.com/ Message-ID: <20070915152804.GD30650@home.power> References: <20070912172245.GF12043@home.power> <20070912181836.GG12043@home.power> <20070912191346.GH12043@home.power> <20070915133641.GA30650@home.power> <20070915135749.GB30650@home.power> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: sea.gmane.org 1189870087 28602 80.91.229.12 (15 Sep 2007 15:28:07 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Sat, 15 Sep 2007 15:28:07 +0000 (UTC) To: supervision@list.skarnet.org Original-X-From: supervision-return-1760-gcsg-supervision=m.gmane.org@list.skarnet.org Sat Sep 15 17:28:06 2007 Return-path: Envelope-to: gcsg-supervision@gmane.org Original-Received: from antah.skarnet.org ([212.85.147.14]) by lo.gmane.org with smtp (Exim 4.50) id 1IWZYz-0004YP-Kf for gcsg-supervision@gmane.org; Sat, 15 Sep 2007 17:28:05 +0200 Original-Received: (qmail 9112 invoked by uid 76); 15 Sep 2007 15:28:26 -0000 Mailing-List: contact supervision-help@list.skarnet.org; run by ezmlm List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Archive: Original-Received: (qmail 9106 invoked from network); 15 Sep 2007 15:28:26 -0000 Mail-Followup-To: supervision@list.skarnet.org Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.16 (2007-06-09) Xref: news.gmane.org gmane.comp.sysutils.supervision.general:1525 Archived-At: Hi! On Sat, Sep 15, 2007 at 11:20:57AM -0400, Charlie Brady wrote: > You are running sshd with privilege separation. Process 14804 is running > chrooted into /var/empty. It's trying to syslog to /dev/log in the chroot, > and failing, then exiting. Its parent exits without doing waitpid (when it > gets a 0 byte read from the pipe to the child. Tell syslog to listen on > /var/empty/dev/log and you'll learn more. I think this is normal ssh behaviour and doesn't related to zombie issue. But: # mkdir /var/empty/dev # mount -o bind /dev/ /var/empty/dev/ # strace -f -ff -p 939 &>/tmp/ssh_strace3 & # ssh mysql@my.host # tail /var/log/syslog/all/current auth.info: Sep 15 15:23:15 sshd[14925]: User mysql not allowed because account is locked auth.info: Sep 15 15:23:15 sshd[14926]: input_userauth_request: invalid user mysql auth.info: Sep 15 15:23:15 sshd[14926]: Connection closed by 85.90.198.1 # tail /tmp/ssh_strace3 [pid 14926] connect(6, {sa_family=AF_FILE, path="/dev/log"}, 110) = 0 [pid 14926] send(6, "<38>Sep 15 15:23:15 sshd[14926]:"..., 65, MSG_NOSIGNAL) = 65 [pid 14926] close(6) = 0 [pid 14926] exit_group(255) = ? Process 14926 detached [pid 14925] <... read resumed> 0x5baa81ac, 4) = ? ERESTARTSYS (To be restarted) [pid 14925] --- SIGCHLD (Child exited) @ 0 (0) --- [pid 14925] read(6, "", 4) = 0 [pid 14925] exit_group(255) = ? Process 14925 detached <... select resumed> ) = 1 (in [5]) --- SIGCHLD (Child exited) @ 0 (0) --- waitpid(-1, [{WIFEXITED(s) && WEXITSTATUS(s) == 255}], WNOHANG) = 14925 waitpid(-1, 0x5809d3ac, WNOHANG) = 0 rt_sigaction(SIGCHLD, NULL, {0x17c5a4f0, [], 0}, 8) = 0 sigreturn() = ? (mask now []) close(5) = 0 select(6, [3], NULL, NULL, NULL Process 939 detached So, only difference is successful output into log. -- WBR, Alex.