[CRIU] [PATCH 0/11] Non-privileged dump
Pavel Emelyanov
xemul at parallels.com
Tue Dec 15 11:23:29 PST 2015
Hi,
This is the first part of patches that make criu somehow work for
non-root user. "Somehow" means there are restrictions that come
from kernel security model.
So, first, dump cannot work yet because of /proc/pid/map_files/ and
several more proc files protections, but this all can be fixed,
this set does this.
Restore is trickier part and is not fixed with this set. However,
even dump-only for non-root might make sense. E.g. for advanced
debugging when one dumps an app on production node with non-root
rights, then gets images to devel node with root access and plays
with them.
However, restore for non-root is also possible with more limitations
and it will come later.
-- Pavel
More information about the CRIU
mailing list