Received: by 2002:a25:ef43:0:0:0:0:0 with SMTP id w3csp263953ybm; Tue, 26 May 2020 16:21:16 -0700 (PDT) X-Google-Smtp-Source: ABdhPJyZ4fiElkyrtkwMy75WRsk5stTryU0B550eYC7v9Nnd3lToAaLdE3L2qCESnpJJLr1HDby5 X-Received: by 2002:aa7:c4da:: with SMTP id p26mr21987853edr.184.1590535276557; Tue, 26 May 2020 16:21:16 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1590535276; cv=none; d=google.com; s=arc-20160816; b=HekEHfgbVXbyVdh/he5ACyK4UZoAemCHKUuJ1G4IXo4OgjMNyJsls0a1fvNwsiMd+U FXQa0N6P/5b1MvbuFNmlBHa9PgaKyLoqJFp+bXPjpWpNM7YADefawkrrqmpaMvLTA0gf pl1iTd3vCfvpx6aUN8W51/RU8f2GT5wKogCtcNk1WqgIFXR84g39R4sd7IXDZq0ZiDMW w829GnVcaD/0fITesgbYD3lSQIe1EOP+Rd9q9LWXGbpWKDSVN06IebOWeqFfLCNEFy97 jah8jP2XNPD6F6cDbG2rMcT+8132g90HLCzBBFHsIFENqxJW3aTWuaMKo3XBESoj2XDs iijA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=eBEPuPRe4Vv2CIYhMh2f1CuE2rLakV/r952j5euzgs8=; b=xV6c9sf1Kh2mzq1CMPOxk4tc35UlczNLtukfalCHgtsuHviVaU12pbV/5BxWehUc8g KPPXPWowBwL4/tk7puo//dXY4jA7dj0FEICwl/De0ax+YONy4kGaqN59Ksb+gwzd3IC0 owCpwVCsQVxtOii7K75IbLoCHPnliWwtlJh2nLwdJXIxuKdbRXQuWkqSHsi1bGCCcSwo o9oYb9EtgD9ZWEEIbmLjWO3P4ibTUSaq2sDMJiwSsBsW5/EE/ca3bK/RbGe/thJMdFKq bcDNmlNQLy0gtpqTiacc2fMoXK2KfGnMvuvzhgXCyXl8IEChD9VOy7/GvdMzZUxNptP1 ZW4Q== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=bnWhzRKV; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id i19si789130ejy.14.2020.05.26.16.20.54; Tue, 26 May 2020 16:21:16 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=bnWhzRKV; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726809AbgEZTwG (ORCPT + 99 others); Tue, 26 May 2020 15:52:06 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:40608 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2390418AbgEZTwC (ORCPT ); Tue, 26 May 2020 15:52:02 -0400 Received: from mail-lf1-x142.google.com (mail-lf1-x142.google.com [IPv6:2a00:1450:4864:20::142]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9D54EC03E96F for ; Tue, 26 May 2020 12:52:01 -0700 (PDT) Received: by mail-lf1-x142.google.com with SMTP id e125so13060585lfd.1 for ; Tue, 26 May 2020 12:52:01 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=eBEPuPRe4Vv2CIYhMh2f1CuE2rLakV/r952j5euzgs8=; b=bnWhzRKVsaWXVi38IqofrgRQO1+O7g9G0wdnz61VvLTxmGpf0Fg8OK7MAptjxxMn3T kHaTgIILdbWOUvZ50Uyaodde5Gj5I8XzkPC6W7EQK+hxASYjt5Sh36CvVntc1Ox6e4AM 6rDBHoaKOeBgjFYeUVH8aJzZGm+JLhmsB+9sI8gsqKrdVDncLLtGJ98HUrkDNkVhKNmf qwfCbSXVlKEzR3ziDVHFYZMhK/sFnYDl6XrECA+oMoNnDGkkgT7L0UZcyjdkgz3nnMMq gKTv9rkTMxjDqh+JFrLhdYXj6IWJwGLH4WZExZxsbyKo6fpi38b+eoChPqqLK+RQf2k+ Bhiw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=eBEPuPRe4Vv2CIYhMh2f1CuE2rLakV/r952j5euzgs8=; b=NpVLJGieVljEme7yzisjz6yEkSWnbmgJrHuxXOsgIxOKUriR0Ptv2SP7zf7NDbfDXl TMgW4f3lVRWYXlTrpl4DNztfuKfmbyBo0k9pWqFpSRDwBGQA20p4R3G+FM6NvK2bTF2m U/NAHhiK8nqnfRqU2Uu0hYaZpGhCUjUIgSyTM7Xphjt15txGsEkyDUmWNZUdl4IMZt6I 6Q/7Bh22YHCRxCHgF1L0jpoBHSmswFoHTSSR0bGNZI/A5qh7Y6vzjvXIyFMyGKV/e2LK NsZ/TVVeR1wySHKMBe/rm+1iQupMrQD6bg9wTsKvoLBHr/0bRtu3lMdXYHNnsIYMfOiJ oF5w== X-Gm-Message-State: AOAM533Tlw4xFFQDR0XuroW8UaX0jy3s9/Kdl0jQREhARhFcmIHWHlGY VBxBhyds3g5IUqk+lU059oQSVW5hUViZMw11f/ZAYg== X-Received: by 2002:a05:6512:6ca:: with SMTP id u10mr1293382lff.184.1590522719828; Tue, 26 May 2020 12:51:59 -0700 (PDT) MIME-Version: 1.0 References: <20200522055350.806609-1-areber@redhat.com> <20200525080541.GF104922@dcbz.redhat.com> <877dwybxvi.fsf@x220.int.ebiederm.org> In-Reply-To: From: Jann Horn Date: Tue, 26 May 2020 21:51:33 +0200 Message-ID: Subject: Re: [PATCH] capabilities: Introduce CAP_RESTORE To: Christine Flood Cc: "Eric W. Biederman" , Adrian Reber , Casey Schaufler , Christian Brauner , Pavel Emelyanov , Oleg Nesterov , Dmitry Safonov <0x7f454c46@gmail.com>, Andrei Vagin , Nicolas Viennot , =?UTF-8?B?TWljaGHFgiBDxYJhcGnFhHNraQ==?= , Kamil Yurtsever , Dirk Petersen , Mike Rapoport , Radostin Stoyanov , Cyrill Gorcunov , Serge Hallyn , Stephen Smalley , Sargun Dhillon , Arnd Bergmann , Aaron Goidel , linux-security-module , kernel list , SElinux list , Eric Paris , "Haley, Andrew" , "Bhole, Deepak" Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, May 26, 2020 at 9:01 PM Christine Flood wrote: > Java applications suffer from slow startup times due to dynamic class loa= ding and warming up the Just In Time compilers. Not all Java users have ro= ot access on their machines. Enabling CRIU in user mode solves this proble= m for us. We are about to release a user library that will allow check poi= nting Java from within Java. Having to run this as root would severely lim= it its utility. Have you looked into whether it would be practical to restore the saved process state with different PIDs, and then fix up all places that might have stored the old PIDs? As long as all threads are managed by the JVM, that might be doable, right? If you did that, you would also solve the problem of not being able to start two copies of the same image (because their PIDs would collide) or randomly not being able to start processes (because their PIDs collide with other existing things).