No description
Find a file
Pavel Tikhomirov 7a0366369a sk-queue: order unixsk sent to other unixsk after it
Here is how we dump nested unix sockets inside unix sockets:

  +-> dump_one_unix_fd         <-+
    +-> dump_sk_queue            |
      +-> dump_sk_queue_packet   |
        +-> dump_packet_cmsg     |
          +-> dump_one_file      |
            +-> do_dump_gen_file +
        +-> queue_packet_entry
          +-> list_add_tail(packets_list)

So in the images more deeper unix socket goes strictly before the more
shallow one.

Before this patch on restore we also had the same reverse order due to
list_add_tail used when adding to packets_list. Because of it we first
handle deeper sockets in prepare_scms and later shallow ones.

This is conterintuitive because in case of nested unix sockets without
any actual open fds on them we need to find out which task should create
them (file_master()->task) and in unix_note_scm_rights we determine this
owner from queuer which can also have it yet unset because it would be
handled later in prepare_scms.

Let's reverse the walk order on restore in prepare_scms.

Note: we can't just reverse the order in list as we rely in
restore_sk_queue that packets of one socket are in original order.

Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com>

(cherry picked from commit db11de636842c29ca21e9176cd43b785c7379c56)
Signed-off-by: Ahmed Elaidy <elaidya225@gmail.com>
Reviewed-by: Alexander Mikhalitsyn <aleksandr.mikhalitsyn@futurfusion.io>
2026-07-14 11:40:40 +02:00
.circleci
.github
compel
contrib
coredump
crit
criu sk-queue: order unixsk sent to other unixsk after it 2026-07-14 11:40:40 +02:00
Documentation
images
include
lib
plugins
scripts
soccr
test zdtm: add scm08 test having several SCM_RIGHTS and SCM_CREDENTIALS 2026-07-14 11:40:40 +02:00
.clang-format
.codespellrc
.gitignore
.lgtm.yml
.mailmap
CLAUDE.md
CONTRIBUTING.md
COPYING
CREDITS
docs
flake.lock
flake.nix
GEMINI.md
INSTALL.md
MAINTAINERS
MAINTAINERS_GUIDE.md
Makefile
Makefile.compel
Makefile.config
Makefile.install
Makefile.versions
README.md

CI CircleCI

CRIU -- A project to implement checkpoint/restore functionality for Linux

CRIU (stands for Checkpoint and Restore in Userspace) is a utility to checkpoint/restore Linux tasks.

Using this tool, you can freeze a running application (or part of it) and checkpoint it to a hard drive as a collection of files. You can then use the files to restore and run the application from the point it was frozen at. The distinctive feature of the CRIU project is that it is mainly implemented in user space. There are some more projects doing C/R for Linux, and so far CRIU appears to be the most feature-rich and up-to-date with the kernel.

CRIU project is (almost) the never-ending story, because we have to always keep up with the Linux kernel supporting checkpoint and restore for all the features it provides. Thus we're looking for contributors of all kinds -- feedback, bug reports, testing, coding, writing, etc. Please refer to CONTRIBUTING.md if you would like to get involved.

The project started as the way to do live migration for OpenVZ Linux containers, but later grew to more sophisticated and flexible tool. It is currently used by (integrated into) OpenVZ, LXC/LXD, Docker, and other software, project gets tremendous help from the community, and its packages are included into many Linux distributions.

The project home is at http://criu.org. This wiki contains all the knowledge base for CRIU we have. Pages worth starting with are:

Checkpoint and restore of simple loop process

Advanced features

As main usage for CRIU is live migration, there's a library for it called P.Haul. Also the project exposes two cool core features as standalone libraries. These are libcompel for parasite code injection and libsoccr for TCP connections checkpoint-restore.

Live migration

True live migration using CRIU is possible, but doing all the steps by hands might be complicated. The phaul sub-project provides a Go library that encapsulates most of the complexity. This library and the Go bindings for CRIU are stored in the go-criu repository.

Parasite code injection

In order to get state of the running process CRIU needs to make this process execute some code, that would fetch the required information. To make this happen without killing the application itself, CRIU uses the parasite code injection technique, which is also available as a standalone library called libcompel.

TCP sockets checkpoint-restore

One of the CRIU features is the ability to save and restore state of a TCP socket without breaking the connection. This functionality is considered to be useful by itself, and we have it available as the libsoccr library.

Licence

The project is licensed under GPLv2 (though files sitting in the lib/ directory are LGPLv2.1).

All files in the images/ directory are licensed under the Expat license (so-called MIT). See the images/LICENSE file.