[CRIU] [RFC] [PATCH 0/4] shmem: don't use map_files, when it's posible
Andrey Vagin
avagin at openvz.org
Tue Oct 14 01:42:41 PDT 2014
/proc/PID/map_files are protected by the global CAP_SYS_ADMIN, so we
need to avoid using them to support user namespaces.
We are going to use memfd_create() to get the first file descriptor and
then all others processes will able to open it via /proc/PID/fd/X.
Andrey Vagin (3):
syscall: add memfd_create()
shmem: rework getting file descriptors for shared memory regions
mem: use memfd_create() to restore shared memory reqions
arch/arm/syscall.def | 1 +
arch/x86/syscall-x86-64.def | 1 +
include/kerndat.h | 2 ++
include/shmem.h | 2 ++
kerndat.c | 18 ++++++++++
pie/restorer.c | 10 ------
shmem.c | 83 +++++++++++++++++++++++++++++++++++----------
7 files changed, 89 insertions(+), 28 deletions(-)
--
1.9.3
More information about the CRIU
mailing list