[CRIU] [PATCH] security: set suid flag on crtools and check real uid on dump/restore
Pavel Emelyanov
xemul at parallels.com
Wed Oct 2 02:25:11 PDT 2013
On 10/02/2013 05:00 PM, Ruslan Kuprieiev wrote:
> Hi!
>
> Lets set suid flag on crtools, so non-root users could dump/restore
> their own tasks and start service for their own tasks. On start criu
> will get it's real uid and will allow user to dump/restore only tasks
> that he own.
>
> Signed-off-by: Ruslan Kuprieiev <kupruser at gmail.com>
>
I don't quite understand the logic behind security_init() + restrict_uid()
and the need in two uids stores in security.c
More information about the CRIU
mailing list