Revisions of criu
Martin Pluskal (pluskalm)
accepted
request 402670
from
Takashi Iwai (tiwai)
(revision 42)
- Update to criu 2.3:
New features
* Ability not to show payload for some objects in CRIT
* Pidfile is written at the end of restore
* Ability to join existing namespaces on restore
* C/R of Data sitting in TTYs, Partially write-protected SysVIPC
segments, Debugfs and tracefs mounts, Overmounted tmpfs, IPv6
devconf sysctls, External block devices, Unix sockets with
mismatched shutdown state
Optimizations/improvements:
* Relaxed calculation of AIO ring size
* Tree-based search of tasks by real pid
* Less mem-to-mem copies on restore
* Saner devconf image format
* More verbose explanation of why task cannot be seized
* PID is printed in PIE logs
Fixes:
* Too many mmap-ed files blocked the dump
* Potential memory corruption when working with IPv6 sockets
* Overmounted bind mounts could cause restore to fail
* Overmounted bind mounts could result in badly restored mount tree
* Incomplete restoration of RO bind mounts options
Deprecated/removed:
* Greedy mode of pagemap (non-root) caused dump to fail (disabled)
buildservice-autocommit
accepted
request 396193
from
Martin Pluskal (pluskalm)
(revision 41)
Martin Pluskal (pluskalm)
(revision 41)
baserev update by copy to link target
Martin Pluskal (pluskalm)
accepted
request 396192
from
Takashi Iwai (tiwai)
(revision 40)
- Update to criu 2.2: mostly bugfixes
New features:
* "Post-resume" added to action scripts
* Root task's PID in environment for action scripts
* Devconfs drop_gratuitous_arp and drop_unicast_in_l2_multicast
* Serial ttys
Optimizations/improvements
* Lighter link-remaps restore on newer kernels
Fixes:
* Race when restoring userns vs setting ns' maps
* Tasks with zero fds failed the dump
* Restore of TCP recv queue could fail due to kernel mem alloc
constraints
* No errors were written to logs when launching helper
(tar/iptables) app in userns restore
* User-mode dumped no memory pages sometimes
* Bind mounts considered not as bind sometimes
* Two mounts in the same directory blocked the dump
* Off-by in on /dev/tty{1,63} dumping
* Forking of cgroupns task was done with screwed clone flags
Deprecated/removed:
* Greedy mode of pagemap dumping (on some kernels we do not
support user-mode)
* Removed the --namespaces option
buildservice-autocommit
accepted
request 389897
from
Takashi Iwai (tiwai)
(revision 39)
Takashi Iwai (tiwai)
(revision 39)
baserev update by copy to link target
Takashi Iwai (tiwai)
accepted
request 389858
from
Takashi Iwai (tiwai)
(revision 38)
- Update to criu 2.1:
New features:
* Checking now classifies features to important/extra/experimental
* Ability to bring some disk files into images.
* C/R of Completed AIO requests and fallback gre and gretap net
devices
Optimizations/improvements:
* Code coverage collecting now works
* Use native rtnl library for netlink messages processing
* Using --output - now results in stdout as log, not a file with
the name "-"
* Signals are printed by names in logs
Fixes:
* Make tar generated tarbal with bad name
* CG restore code lacked rollback in some places
* Error code from raw syscalls was treated with errors resulting
in wrong criu check reports
* Dumping task with HUGE amount of file descriptors failed
* Task could be stopped after pre-dump if respective option was used
* A /proc/pid directory from dead process conflicting with a new
alive one could cause dump to fail
* Zombie from alien session/process group caused restore to fail
* CGroup fs was wrongly mounted in CGNS on restore
* Irmap scan was mis-checking devices numbers
* Use-after-free in irmap scan
* Btrfs bindmounts detection was mistaken due to 'subvol=' options
met
* Propagation of mountpoint's shared groups was lost for
propagated mounts
* Unaligned allocations of restore shared memory could result in
buildservice-autocommit
accepted
request 369471
from
Martin Pluskal (pluskalm)
(revision 37)
Martin Pluskal (pluskalm)
(revision 37)
baserev update by copy to link target
Martin Pluskal (pluskalm)
accepted
request 369387
from
Takashi Iwai (tiwai)
(revision 36)
- Update to criu 2.0: New features: * New code layout for sub-projects (e.g. Compel) * Unprivileged dump * Dump/check cpuinfo support for PPC * Explorers for CRIT * Added "post-setup-namespaces" to action scripts * Added timeout for dump procedure (5 sec by default) * Ability to override LSM profile on restore with CLI/RPC option * External bind mounts can be fs-root mounts too * Skip netns' internals on dump and restore (for Docker integration) * Advanced support for external files * More C/R supports Optimizations/improvements: * Align parasite stack on 16 bits for correctness * Compilation with native libc syscall wrappers and helpers * Parasite code injection done via memfd system call * Make vaddr to pfn conversion with one less syscall * CRIT shows device numbers in "maj:min" manner * CRIT shows mmap's status in verbose * Docker files for builds on all supported arches Fixes: * Absent readlink syscall on ARM (use readlinkat instead) could cause dump to fail * Wrong argument to timer_create system call could cause restore to crash * Extra tasks in freeze cgroup caused dump to fail/hand/crash * Unaligned restore-time object allocations caused lock operations to fail * Opened /proc/pid dir of dead task failed the dump * Unaligned stacks caused criu to fail on aarch64 * Changed device numbers on restore side could cause random failures * Fixes in mount points sharing/slavery/propagation restore
buildservice-autocommit
accepted
request 347909
from
Martin Pluskal (pluskalm)
(revision 35)
Martin Pluskal (pluskalm)
(revision 35)
baserev update by copy to link target
Martin Pluskal (pluskalm)
accepted
request 347906
from
Takashi Iwai (tiwai)
(revision 34)
- Update to criu 1.8:
* Ability to check CRIU features via RPC
* Pre-dump and pre-restore action scripts
* The "info" action in CRIT showing stats about image file
* Python API
* C/R of read-only bind mounts, IPv6 routes and iptables rules,
ip rules (it ip tool supports such), ignore_routes_with_linkdown
netns devconf, empty bridges in netns, FILTER mode of seccomp,
and IP_FREEBIND socket option
* Lots of fixes, two security fixes
Service run as root could allow users to violate ptrace policies
Service run as root could give users access to privileged files
and directories
- Remove superfluous dependencies
- Clean up spec file, as systemd and logrotate supports have been
officially dropped
buildservice-autocommit
accepted
request 345399
from
Martin Pluskal (pluskalm)
(revision 33)
Martin Pluskal (pluskalm)
(revision 33)
baserev update by copy to link target
Martin Pluskal (pluskalm)
accepted
request 345398
from
Takashi Iwai (tiwai)
(revision 32)
- update to criu 1.7.1: Fixes in mounts, notifies and userns found while testing openvz - update to criu 1.7.2: Fixes for IPC in userns, venet C/R, socket buffers overflow and unix sockets name off-by-one - Add the package dependency on python-protobuf
buildservice-autocommit
accepted
request 330525
from
Takashi Iwai (tiwai)
(revision 31)
Takashi Iwai (tiwai)
(revision 31)
baserev update by copy to link target
Takashi Iwai (tiwai)
accepted
request 330524
from
Takashi Iwai (tiwai)
(revision 30)
Update changelog
Takashi Iwai (tiwai)
accepted
request 330520
from
Takashi Iwai (tiwai)
(revision 29)
- Disable systemd service as a temporary workaround for possibile security issues (CVE-2015-5228, CVE-2015-5231, bsc#943105) - Update to criu 1.7: * Improved cgroups management * Support for seccomp strict mode * Support for stream unix sockets inheritance * Support uid/gid-restricted mounts in userns * Support deleted bind-mounts * Ability to specify maximum ghost file size * OverlayFS support * Support relative unix sockets' bind paths * Altivec and PSX support for PPC * Small PIE loader * Temporary proc mountpoint is mounted with nosuid, noexec and nodev * Less memory copies when preparing restorer binary * CRIT action "show" for less keystrokes on common use-case * Fsnotify log messages now use hex everywhere :) * CRIT output doesn't mix fields any more * Many fixes
buildservice-autocommit
accepted
request 319715
from
Martin Pluskal (pluskalm)
(revision 28)
Martin Pluskal (pluskalm)
(revision 28)
baserev update by copy to link target
Martin Pluskal (pluskalm)
accepted
request 319712
from
Cédric Bosdonnat (cbosdonnat)
(revision 27)
- Fix version in criu.pc file. 4c5b23e5-criu.pc.diff
buildservice-autocommit
accepted
request 309631
from
Martin Pluskal (pluskalm)
(revision 26)
Martin Pluskal (pluskalm)
(revision 26)
baserev update by copy to link target
Martin Pluskal (pluskalm)
accepted
request 309628
from
Takashi Iwai (tiwai)
(revision 25)
- update to version 1.6: * PowerPC 64bit LE support * Makefile.local for 3-rd party build rules * Ability to "enable" filesystem on dump (--enable-fs) * Ability to skip mountpoint on dump (--skip-mnt) * Prepare to deprecate "criu show" command * External mounts auto-detection * /dev/tty (current terminal) support * Netdev and netns (all/default) confs C/R * Images v1.1 with extra magic at head * Support fusectl (only ctl) mountpoint * Sub-version format is now as of git-describe * Apparamor labels C/R support - Fix library path for aarch64 and ppc64le - Fix the prototype for lsm.c (to fix build errors): lsm-prototype-fix.diff - Refreshed crit-install-prefix.diff
buildservice-autocommit
accepted
request 304414
from
Dirk Mueller (dirkmueller)
(revision 24)
Dirk Mueller (dirkmueller)
(revision 24)
baserev update by copy to link target
Dirk Mueller (dirkmueller)
accepted
request 304336
from
Takashi Iwai (tiwai)
(revision 23)
- update to version 1.5.2:
* fix error in mutli-threaded tasks restore with --restore-sibling
(Docker and LXC cases)
* fix too big RPC messages error for service (and swrk)
Displaying revisions 81 - 100 of 122
