Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 136970
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Peter Johanson (RETIRED) <latexer@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: László Zrubecz <mail@zrubi.hu>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:

Filename Description Type Creator Created Size Actions
racoon_init.diff racoon init script patch patch László Zrubecz 2006-06-16 03:43 0000 367 bytes Details | Diff
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 136970 depends on: Show dependency tree
Bug 136970 blocks:
Votes: 0    Show votes for this bug    Vote for this bug

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2006-06-16 03:05 0000 
Racoon has a feautre when it's start an unprivileged process in a chroot
directory.

In this case the pid file created under the chroot dir, and the init script has
a 'static' variable holding the pid file path.

The worst is if I made a simlink for the pid file, the init script kills only
the unprivileged process not the parent... 

So if you use the chroot + 'unprivileged user' feature, the only way to stop
the racoon daemon is: `killall racoon`

------- Comment #1 From Jakub Moc (RETIRED) 2006-06-16 03:18:18 0000 ------- 
Reopen with ebuild name and version... Not going to ponder which apps installs
this.

------- Comment #2 From László Zrubecz 2006-06-16 03:25:31 0000 ------- 
Sorry about this...

package: 
net-firewall/ipsec-tools-0.6.5

The init script: 
/etc/init.d/racoon

And the relevant config section (from /etc/racoon/racoon.conf)

privsep
{
        user "racoon";
        group "racoon";
        chroot "/var/jail/racoon";
}

------- Comment #3 From László Zrubecz 2006-06-16 03:43:40 0000 ------- 
Created an attachment (id=89295) [details]
racoon init script patch

The simplest solution :)

------- Comment #4 From Jakub Moc (RETIRED) 2006-06-16 03:47:35 0000 ------- 
Thanks.

------- Comment #5 From Flophouse Joe 2007-03-03 20:52:57 0000 ------- 
For the record, I had this same problem with racoon running chrooted.  Using
the resolution in this bug and switching to "killall racoon" in the initscript
resolved the problem for me.

I propose that this change be put into portage, as I don't currently see it
there.

------- Comment #6 From Daniel Black 2007-04-21 11:42:12 0000 ------- 
better fix is hopefully in bug #151375
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug