From owner-freebsd-bugs@FreeBSD.ORG  Thu Jun 18 12:50:01 2009
Return-Path: <owner-freebsd-bugs@FreeBSD.ORG>
Delivered-To: freebsd-bugs@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 987461065675
	for <freebsd-bugs@hub.freebsd.org>;
	Thu, 18 Jun 2009 12:50:01 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id 767AC8FC26
	for <freebsd-bugs@hub.freebsd.org>;
	Thu, 18 Jun 2009 12:50:01 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n5ICo1kb065102
	for <freebsd-bugs@freefall.freebsd.org>; Thu, 18 Jun 2009 12:50:01 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n5ICo1Bt065100;
	Thu, 18 Jun 2009 12:50:01 GMT (envelope-from gnats)
Resent-Date: Thu, 18 Jun 2009 12:50:01 GMT
Resent-Message-Id: <200906181250.n5ICo1Bt065100@freefall.freebsd.org>
Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer)
Resent-To: freebsd-bugs@FreeBSD.org
Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org,
	Dmitry Sivachenko <mitya@yandex-team.ru>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id AED25106566C
	for <FreeBSD-gnats-submit@freebsd.org>;
	Thu, 18 Jun 2009 12:43:32 +0000 (UTC)
	(envelope-from mitya@sinbin.demos.su)
Received: from sinbin.demos.su (sinbin.demos.su [194.87.5.31])
	by mx1.freebsd.org (Postfix) with ESMTP id 6D78E8FC17
	for <FreeBSD-gnats-submit@freebsd.org>;
	Thu, 18 Jun 2009 12:43:32 +0000 (UTC)
	(envelope-from mitya@sinbin.demos.su)
Received: by sinbin.demos.su (Postfix, from userid 974)
	id 5144A72511; Thu, 18 Jun 2009 16:27:57 +0400 (MSD)
Message-Id: <20090618122757.5144A72511@sinbin.demos.su>
Date: Thu, 18 Jun 2009 16:27:57 +0400 (MSD)
From: Dmitry Sivachenko <mitya@yandex-team.ru>
To: FreeBSD-gnats-submit@FreeBSD.org
X-Send-Pr-Version: 3.113
Cc: 
Subject: bin/135700: Add an ability to run inetd(8) with P_PROTECTED flag set
X-BeenThere: freebsd-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Dmitry Sivachenko <mitya@yandex-team.ru>
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-bugs>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Help: <mailto:freebsd-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Jun 2009 12:50:02 -0000


>Number:         135700
>Category:       bin
>Synopsis:       Add an ability to run inetd(8) with P_PROTECTED flag set
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Thu Jun 18 12:50:00 UTC 2009
>Closed-Date:
>Last-Modified:
>Originator:     Dmitry S. Sivachenko
>Release:        FreeBSD 4.11-STABLE i386
>Organization:
>Environment:
System: FreeBSD sinbin.demos.su 4.11-STABLE FreeBSD 4.11-STABLE #1: Tue Mar 6 12:43:07 MSK 2007 root@sinbin.demos.su:/mnt/backup/releng_4/obj/mnt/backup/releng_4/src/sys/SINBIN i386


	
>Description:
Sometimes when OS is running out of swap, swap pager can kill important
processes like inetd, sshd, etc.

This patch adds '-i' (means "immortal") option to inetd, which,
when specified, will set P_PROTECTED flag for inetd process, preventing
swap pager to kill inetd.

This will allow at least to login to the affected machine (via telnet or
ssh if sshd is started from inetd) and fix the issue.

This patch was made against inetd found in 7.2-STABLE.

>How-To-Repeat:
	
>Fix:


--- inetd.c.orig	2007-07-01 16:08:08.000000000 +0400
+++ inetd.c	2009-06-18 16:06:54.000000000 +0400
@@ -115,6 +115,7 @@ __FBSDID("$FreeBSD: src/usr.sbin/inetd/i
 #include <sys/resource.h>
 #include <sys/stat.h>
 #include <sys/un.h>
+#include <sys/mman.h>
 
 #include <netinet/in.h>
 #include <netinet/tcp.h>
@@ -244,6 +245,7 @@ int	wrap_ex = 0;
 int	wrap_bi = 0;
 int	debug = 0;
 int	dolog = 0;
+int	is_immortal = 0;
 int	maxsock;			/* highest-numbered descriptor */
 fd_set	allsock;
 int	options;
@@ -344,7 +346,7 @@ main(int argc, char **argv)
 
 	openlog("inetd", LOG_PID | LOG_NOWAIT | LOG_PERROR, LOG_DAEMON);
 
-	while ((ch = getopt(argc, argv, "dlwWR:a:c:C:p:s:")) != -1)
+	while ((ch = getopt(argc, argv, "dilwWR:a:c:C:p:s:")) != -1)
 		switch(ch) {
 		case 'd':
 			debug = 1;
@@ -353,6 +355,9 @@ main(int argc, char **argv)
 		case 'l':
 			dolog = 1;
 			break;
+		case 'i':
+			is_immortal = 1;
+			break;
 		case 'R':
 			getvalue(optarg, &toomany,
 				"-R %s: bad value for service invocation rate");
@@ -562,6 +567,12 @@ main(int argc, char **argv)
 	if (signalpipe[1] > maxsock)
 	    maxsock = signalpipe[1];
 
+	if (is_immortal)
+	    if (madvise(NULL, 0, MADV_PROTECT)) {
+		syslog(LOG_ERR, "Unable to set MADV_PROTECT flag: %s", strerror(error));
+		exit(EX_OSERR);
+	    }
+
 	for (;;) {
 	    int n, ctrl;
 	    fd_set readable;



--- inetd.8.orig	2008-01-22 12:46:00.000000000 +0300
+++ inetd.8	2009-06-18 15:12:52.000000000 +0400
@@ -38,6 +38,7 @@
 .Sh SYNOPSIS
 .Nm
 .Op Fl d
+.Op Fl i
 .Op Fl l
 .Op Fl w
 .Op Fl W
@@ -76,6 +77,9 @@ The following options are available:
 .Bl -tag -width indent
 .It Fl d
 Turn on debugging.
+.It Fl i
+Set P_PROTECTED flag for inetd process, advising the swap pager
+we are "immortal".
 .It Fl l
 Turn on logging of successful connections.
 .It Fl w
>Release-Note:
>Audit-Trail:
>Unformatted: