138499 – Feature request: terminate sandbox immediately on access violation

Bug 138499 - Feature request: terminate sandbox immediately on access violation

Summary: Feature request: terminate sandbox immediately on access violation

Status:	RESOLVED FIXED

Alias:	None

Product:	Portage Development
Classification:	Unclassified
Component:	Sandbox (show other bugs)
Hardware:	All Linux

Importance:	High enhancement
Assignee:	Sandbox Maintainers

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2006-06-29 09:35 UTC by Ed Catmur
Modified:	2006-07-04 07:33 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Ed Catmur 2006-06-29 09:35:20 UTC

In some situations, it would make debugging sandbox violations easier if the sandbox were to terminate immediately. This could be controlled by env var SANDBOX_TERMINATE. I guess libsandbox needs to signal the process group?

Comment 1 Alex Unleashed 2006-06-30 18:05:22 UTC

kill()ing the process group should do it. I'll be looking into this in the weeks to come, as I have to debug some ebuilds failing to emerge in g/fbsd. I'll update this bug report if I come with any useful patch.

Comment 2 Martin Schlemmer (RETIRED) gentoo-dev

2006-07-04 07:33:38 UTC

Theoretically added this to svn.  Uses SANDBOX_ABORT=1.