Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Documentation: Add info about cap_sys_ptrace and ptrace_scope #1

Closed
wants to merge 6 commits into from
Closed

Documentation: Add info about cap_sys_ptrace and ptrace_scope #1

wants to merge 6 commits into from

Conversation

anna-singleton
Copy link

As per discussion in PR checkpoint-restore#1930 of cap_sys_ptrace and /proc/sys/kernel/yama/ptrace_scope, this information is added to the manpage.

Signed-off-by: Anna Singleton annabeths111@gmail.com

ymanton and others added 6 commits October 2, 2022 19:23
This commit enables checkpointing and restoring of applications as
non-root.

First goal was to enable checkpoint and restore of the env00 and
pthread00 test case.

This uses the information from opts.unprivileged and opts.cap_eff to
skip certain code paths which do not work as non-root.

Co-authored-by: Adrian Reber <areber@redhat.com>
Signed-off-by: Younes Manton <ymanton@ca.ibm.com>
This patch modifies how kerndat is handled in unprivileged mode.

Initialization and functionality that can only be done as root is
made separate from common code. The kerndat file's location is
defined as $XDG_RUNTIME_DIR/criu.kdat in unprivileged mode. Since
we expect that directory to be on tmpfs we maintain the same behavior
as the root-mode kerndat which lives in /run.

Co-authored-by: Adrian Reber <areber@redhat.com>
Signed-off-by: Younes Manton <ymanton@ca.ibm.com>
This adds the non-root section and information about the parameter
--unprivileged to the man page.

Signed-off-by: Adrian Reber <areber@redhat.com>
This are the minimal changes to make zdtm.py successfully run the
env00 and pthread test case as non-root using the '--rootless' zdtm option.

Co-authored-by: Younes Manton <ymanton@ca.ibm.com>
Signed-off-by: Adrian Reber <areber@redhat.com>
Signed-off-by: Younes Manton <ymanton@ca.ibm.com>
Run env00 and pthread00 test as non-root as initial proof of concept.

Signed-off-by: Adrian Reber <areber@redhat.com>
As per discussion in PR checkpoint-restore#1930 of `cap_sys_ptrace` and
`/proc/sys/kernel/yama/ptrace_scope`, this information is added to the
manpage.

Signed-off-by: Anna Singleton <annabeths111@gmail.com>
@ymanton
Copy link
Owner

ymanton commented Oct 11, 2022

Thanks, I've added your changes to e2c8946 with a co-author tag.

@ymanton ymanton closed this Oct 11, 2022
@anna-singleton
Copy link
Author

thanks, sounds good, glad to be of help :)

ymanton pushed a commit that referenced this pull request Sep 11, 2023
CID 302713 (#1 of 1): Missing varargs init or cleanup (VARARGS)
 va_end was not called for argptr.

Signed-off-by: Adrian Reber <areber@redhat.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants