-
Type:
Bug
-
Resolution: Fixed
-
Priority:
P4
-
Affects Version/s: None
-
Component/s: core-svc
-
b18
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8374012 | 21.0.11-oracle | Ivan Bereziuk | P4 | Resolved | Fixed | master |
8226919: attach in linux hangs due to permission denied accessing /proc/pid/root
https://github.com/openjdk/jdk/pull/17628
"a Kubernetes debug container may be a little different from other Docker container scenarios because these are two different containers with different root filesystems but the same Linux process namespace. So jcmd using /proc/<pid>/root is necessary to find the socket file, even though jcmd and the target JVM both agree the PID is the same"
"Could the findSocketFile logic be made more robust to the different namespace/filesystem scenarios? E.g. attempt /proc/<pid>/root first? Or perhaps there is a way (not pid != ns_pid) to more accurately determine whether / and /proc/<pid>/root are the same filesystem and /tmp is OK?"
If pid == ns_pid, means using /tmp and not /proc/<pid>/root/tmp for attach, this may be an issue if processes share the process namespace but not filesystem. Needs verification.
- backported by
-
JDK-8374012 Attach in Linux may have wrong behaviour when pid == ns_pid (Kubernetes debug container)
-
- Resolved
-
- causes
-
-
- Resolved
-
-
-
- Resolved
-
- relates to
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Closed
-
-
-
- Open
-
-
-
- Closed
-
-
-
- Closed
-
- links to
-
Commit(master)
openjdk/jdk/52ba7282
-
Review(master)
openjdk/jdk21u-dev/2523
-
Review(master)
openjdk/jdk/19055