Difference between revisions of "User-mode"
Jump to navigation
Jump to search
| Line 7: | Line 7: | ||
* criu restore works in a new userns only if setgroups is set to "allow" | * criu restore works in a new userns only if setgroups is set to "allow" | ||
pie: 235: Error (criu/pie/restorer.c:172): Can't setup supplementary groups | pie: 235: Error (criu/pie/restorer.c:172): Can't setup supplementary groups | ||
| + | * PTRACE_O_SUSPEND_SECCOMP and PTRACE_SECCOMP_GET_FILTER require the root CAP_SYS_ADMIN (ptrace_setoptions) | ||
{{FIXME|describe checkpoint/restore as an unprivileged (non-root) user.}} | {{FIXME|describe checkpoint/restore as an unprivileged (non-root) user.}} | ||
Revision as of 18:16, 22 May 2020
Known issues
- PR_SET_MM_MAP is required (the kernel version >= 3.18)
- shared memory can't be dumped from a non-root user
Error: Can't open 24/map_files/7f72d1687000-7f72d1688000 on procfs: Operation not permitted
- criu restore doesn't work
Error: Write 29 to sys/kernel/ns_last_pid: Operation not permitted
- criu restore works in a new userns only if setgroups is set to "allow"
pie: 235: Error (criu/pie/restorer.c:172): Can't setup supplementary groups
- PTRACE_O_SUSPEND_SECCOMP and PTRACE_SECCOMP_GET_FILTER require the root CAP_SYS_ADMIN (ptrace_setoptions)
|
FIXME: describe checkpoint/restore as an unprivileged (non-root) user. |