From 35fd78afdf2fc4aba58ca290f41e32213409af77 Mon Sep 17 00:00:00 2001 From: Jim Garlick Date: Wed, 30 Oct 2024 14:32:06 -0700 Subject: [PATCH] rfc15: IMP may linger post-shell to clean cgroup Problem: RFC 15 states that the IMP may exit after the job shell exits, but then it cannot forward SIGUSR1->SIGKILL to stuck processes if the shell exits early. Change the wording to allow the imp to linger after the shell exits. --- spec_15.rst | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/spec_15.rst b/spec_15.rst index a014cd0..4113311 100644 --- a/spec_15.rst +++ b/spec_15.rst @@ -360,8 +360,9 @@ SHALL spawn the **job shell path** specified in :math:`J`, or a IMP configuration default with the guest user credentials. The IMP MUST remain active while the job shell executes and forward any -signals it receives to the shell as described below. Once the job shell has -terminated, the IMP MAY perform privileged clean-up tasks such as +signals it receives to the shell as described below. The IMP MAY remain +active until its cgroup is empty, if applicable. Once its signal forwarding +role is complete, the IMP MAY perform privileged clean-up tasks such as - Finalize the PAM session