- 02 Oct, 2013 4 commits
-
-
Ruslan Kuprieiev authored
Add restore to rpc.proto. Signed-off-by:
Ruslan Kuprieiev <kupruser@gmail.com> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
We need to detect parasite crashes to not hangs on socket operations. CRIU ptraces parasite. So if it crashes, SIGCHLD is received. If a parasite daemon crashed, we can to do nothing. The state of current process can't be restored, because we can't to drop the signal. The state of other processes are consistent. Probably the best choise in this case is to exit. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
We are going to detect parasite crashes. For that we are goint to check all unwaited processes in SIGCHLD handler. cr_system blocks SIGCHLD and unblocks it after waiting a target process. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
We use unix socket to communicate with parasite. Before we used SOCK_STREAM, but it doesn't guaranty that the message boundaries will be save. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
- 28 Sep, 2013 3 commits
-
-
Pavel Emelyanov authored
When dumping/restoring for unpriveledged user, check for all sets of IDs to match, just like ptrace-may-attach in the kernel. Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
It's not enough to check only uids on dump and restore -- we need to check e-ids and s-ids now (and caps in the future). Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
- 02 Oct, 2013 4 commits
-
-
Ruslan Kuprieiev authored
v2: remove redundant functions and variables. Signed-off-by:
Ruslan Kuprieiev <kupruser@gmail.com> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Ruslan Kuprieiev authored
Lets rename CriuDumpReq to CriuOpts, for the sake of readability and to avoid coping code for restore mechanism, as CriuDumpReq and CriuRestoreResp would have almost the same fields. Also, it would be easier to introduce other types of requests. Signed-off-by:
Ruslan Kuprieiev <kurpuser@gmail.com> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Ruslan Kuprieiev authored
[xemul: Simplified !log_file case and renumbered .proto fields] Signed-off-by:
Ruslan Kuprieiev <kupruser@gmail.com> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Ruslan Kuprieiev authored
When dump/pre-dump failed before initializing vmas, free_mappings(&vmas) is called and this cause segfault. Lets initialize vmas in the very beginning of dump. Signed-off-by:
Ruslan Kuprieiev <kurpuser@gmail.com> seqfault.patch Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
- 01 Oct, 2013 1 commit
-
-
Andrey Vagin authored
./zdtm.sh: line 231: local: `lname,': not a valid identifier ./zdtm.sh: line 251: local: `ldir,': not a valid identifier https://bugzilla.openvz.org/show_bug.cgi?id=2763Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
- 28 Sep, 2013 11 commits
-
-
Pavel Emelyanov authored
Zero is bad for checks, as peer-less sockets have such. BUG introduced in cfe72ab7 :( Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Right now we have an ability to launch the C/R service from root and execure dump requests from unpriviledged users. Not to be bad guys, we deny dumping tasks belonging to user, that cannot be "watched" (traced, read /proc, etc.) by the dumper. In the future we will use this "engine" when launched with suid bit, and (probably) will have more sophisticated policy. Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
I'm about to get rid of service state struct. Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
* Close fd only once at the end * Close listener socket Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
This fd is an internal thing of the service. Remove it from externally available structure. Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
- 01 Oct, 2013 15 commits
-
-
Andrey Vagin authored
Before this patch only namespaces of the root task are dumped. Now we dump all namespace, which have been collected. I'm not sure, that we want to create a new process for each namespace. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
Before we dumped namespace of the root task only. Now we are going to dump nested namespaces, so we need to know a pid of any process, which lives in the target namespace. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
We are going to replace pid on id in names of image files. The id is uniq for each namespace, so it's more convient, if image files are opened per namespace. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
We are going to replace pid on id in names of image files. The id is uniq for each namespace, so it's more convient, if image files are opened per namespace. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
We are going to replace pid on id in names of image files. The id is uniq for each namespace, so it's more convient, if image files are opened per namespace. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
We are going to replace pid on id in names of image files. The id is uniq for each namespace, so it's more convient, if image files are opened per namespace. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
It's preparation to replace pid on id in image names. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
Currently all values of constants should be continuous, because cr_fdset_open is used for opening images for all namespaces. The next patches will rework this code and image files will be opened per namespace, then all these ugly settings of one constant to another will be removed. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
Currently we catch processes on the exit point from sigreturn. If a task must be restored in the stopped state, we can send SIGSTOP before detaching from it. v2: add more descriptive comment about skipping SIGSTOP in ptrace.c Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Pavel Emelyanov authored
Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Andrey Vagin authored
Currently we take pid and core from it and we are going to take state. Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
- 30 Sep, 2013 2 commits
-
-
Andrey Vagin authored
The kernel notifies about leaving syscall before starting to deliver signals. If you don't believe me, pls look at arch/x86/kernel/entry_64.S: int_ret_from_sys_call syscall_trace_leave do_notify_resume Signed-off-by:
Andrey Vagin <avagin@openvz.org> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-
Ruslan Kuprieiev authored
Everything in the sk-unix.c is ready for seq-packet sockets. Signed-off-by:
Ruslan Kuprieiev <kupruser@gmail.com> Signed-off-by:
Pavel Emelyanov <xemul@parallels.com>
-