[CRIU] [PATCH 0/4] Make CRIU work from with non-root prios

Pavel Emelyanov xemul at sacred.ru
Thu Sep 24 15:01:35 PDT 2015


Hi,

This is prerequisite to address the recent CVE-s. We should make criu be
able to work from regular user. The biggest obstacle so far is -- inability
to use map_files directory. So 3 out of 4 patches in this set handle _this_.

The rest one handles the access to pagemap and soft-dirty tracking reset.
The latter is fixed in recent kernels (just PFN-s are not reported, but
we can live w/o it). Soft-dirty tracking will not be accessible for regular
user dumps, but this also can be fixed later.

Cyrill, I need your help on several things with this set:

1. fixing the VDSO detection/fixups, as I currently just ignore them
2. passing correct name to memfd in patch #4, right now I use argv[0]
   of the task we dump %)
3. removing the service from default setup

-- Pavel


More information about the CRIU mailing list