[CRIU] [PATCH 0/4] Make CRIU work from with non-root prios
Pavel Emelyanov
xemul at sacred.ru
Thu Sep 24 15:01:35 PDT 2015
Hi,
This is prerequisite to address the recent CVE-s. We should make criu be
able to work from regular user. The biggest obstacle so far is -- inability
to use map_files directory. So 3 out of 4 patches in this set handle _this_.
The rest one handles the access to pagemap and soft-dirty tracking reset.
The latter is fixed in recent kernels (just PFN-s are not reported, but
we can live w/o it). Soft-dirty tracking will not be accessible for regular
user dumps, but this also can be fixed later.
Cyrill, I need your help on several things with this set:
1. fixing the VDSO detection/fixups, as I currently just ignore them
2. passing correct name to memfd in patch #4, right now I use argv[0]
of the task we dump %)
3. removing the service from default setup
-- Pavel
More information about the CRIU
mailing list