Line 1: |
Line 1: |
| {{Release|2.0|7 Mar 2016}} | | {{Release|2.0|7 Mar 2016}} |
| | | |
− | ==== New features ====
| + | === New features === |
| * New code layout for sub-projects (e.g. [[Compel]]) | | * New code layout for sub-projects (e.g. [[Compel]]) |
| * [[Unprivileged dump]] | | * [[Unprivileged dump]] |
Line 26: |
Line 26: |
| ** CGroup namespaces (no nesting) | | ** CGroup namespaces (no nesting) |
| | | |
− | ==== Optimizations/improvements ====
| + | === Optimizations/improvements === |
| * Align parasite stack on 16 bits for correctness | | * Align parasite stack on 16 bits for correctness |
| * Compilation with native libc syscall wrappers and helpers | | * Compilation with native libc syscall wrappers and helpers |
Line 35: |
Line 35: |
| * Docker files for builds on all supported arches | | * Docker files for builds on all supported arches |
| | | |
− | ==== Fixes ====
| + | === Fixes === |
| * Absent readlink syscall on ARM (use readlinkat instead) could cause dump to fail | | * Absent readlink syscall on ARM (use readlinkat instead) could cause dump to fail |
| * Wrong argument to timer_create system call could cause restore to crash | | * Wrong argument to timer_create system call could cause restore to crash |
Line 53: |
Line 53: |
| * Shared external mounts were restored with error | | * Shared external mounts were restored with error |
| | | |
− | ==== Security ====
| + | === Security === |
| * [[User-mode]] | | * [[User-mode]] |
| * When checking for namespaces' CRIU entered userns with host creds | | * When checking for namespaces' CRIU entered userns with host creds |
| | | |
− | ==== Deprecated/removed ====
| + | === Deprecated/removed === |
| * Completely removed 'show' action. Use [[CRIT]] instead. | | * Completely removed 'show' action. Use [[CRIT]] instead. |