return lxc_cgroup_get_hierarchy_path_data(subsystem, d);
}
+static const char *cgfs_canonical_path(void *hdata)
+{
+ struct cgfs_data *d = hdata;
+ struct cgroup_process_info *info_ptr;
+ char *path = NULL;
+
+ if (!d)
+ return NULL;
+
+ for (info_ptr = d->info; info_ptr; info_ptr = info_ptr->next) {
+ if (!path)
+ path = info_ptr->cgroup_path;
+ else if (strcmp(path, info_ptr->cgroup_path) != 0) {
+ ERROR("not all paths match %s, %s has path %s", path,
+ info_ptr->hierarchy->subsystems[0], info_ptr->cgroup_path);
+ return NULL;
+ }
+ }
+
+ return path;
+}
+
static bool cgfs_unfreeze(void *hdata)
{
struct cgfs_data *d = hdata;
return true;
}
-static bool cgfs_parse_existing_cgroups(void *hdata, pid_t init)
-{
- struct cgfs_data *d = hdata;
-
- if (!d)
- return false;
-
- d->info = lxc_cgroup_process_info_get(init, d->meta);
-
- return !!(d->info);
-}
-
static struct cgroup_ops cgfs_ops = {
.init = cgfs_init,
.destroy = cgfs_destroy,
.enter = cgfs_enter,
.create_legacy = cgfs_create_legacy,
.get_cgroup = cgfs_get_cgroup,
+ .canonical_path = cgfs_canonical_path,
.get = lxc_cgroupfs_get,
.set = lxc_cgroupfs_set,
.unfreeze = cgfs_unfreeze,
.name = "cgroupfs",
.attach = lxc_cgroupfs_attach,
.chown = NULL,
- .parse_existing_cgroups = cgfs_parse_existing_cgroups,
.mount_cgroup = cgroupfs_mount_cgroup,
.nrtasks = cgfs_nrtasks,
};
return d->cgroup_path;
}
+static const char *cgm_canonical_path(void *hdata)
+{
+ struct cgm_data *d = hdata;
+
+ if (!d || !d->cgroup_path)
+ return NULL;
+ return d->cgroup_path;
+}
+
#if HAVE_CGMANAGER_GET_PID_CGROUP_ABS_SYNC
static inline bool abs_cgroup_supported(void) {
return api_version >= CGM_SUPPORTS_GET_ABS;
.enter = cgm_enter,
.create_legacy = NULL,
.get_cgroup = cgm_get_cgroup,
+ .canonical_path = cgm_canonical_path,
.get = cgm_get,
.set = cgm_set,
.unfreeze = cgm_unfreeze,
.setup_limits = cgm_setup_limits,
.name = "cgmanager",
.chown = cgm_chown,
- .parse_existing_cgroups = NULL,
.attach = cgm_attach,
.mount_cgroup = cgm_mount_cgroup,
.nrtasks = cgm_get_nrtasks,
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
*/
+#include <unistd.h>
+#include <sys/types.h>
+
#include "cgroup.h"
#include "conf.h"
#include "log.h"
return NULL;
}
+const char *cgroup_canonical_path(struct lxc_handler *handler)
+{
+ if (geteuid()) {
+ WARN("cgroup_canonical_path only makes sense for privileged containers.\n");
+ return NULL;
+ }
+
+ if (ops)
+ return ops->canonical_path(handler->cgroup_data);
+
+ return NULL;
+}
+
bool cgroup_unfreeze(struct lxc_handler *handler)
{
if (ops)
return true;
}
-bool cgroup_parse_existing_cgroups(struct lxc_handler *handler)
-{
- if (ops && ops->parse_existing_cgroups)
- return ops->parse_existing_cgroups(handler->cgroup_data, handler->pid);
-
- /* cgmanager does this automatically */
- return true;
-}
-
bool cgroup_mount(const char *root, struct lxc_handler *handler, int type)
{
if (ops) {
bool (*enter)(void *hdata, pid_t pid);
bool (*create_legacy)(void *hdata, pid_t pid);
const char *(*get_cgroup)(void *hdata, const char *subsystem);
+ const char *(*canonical_path)(void *hdata);
int (*set)(const char *filename, const char *value, const char *name, const char *lxcpath);
int (*get)(const char *filename, char *value, size_t len, const char *name, const char *lxcpath);
bool (*unfreeze)(void *hdata);
bool (*setup_limits)(void *hdata, struct lxc_list *cgroup_conf, bool with_devices);
bool (*chown)(void *hdata, struct lxc_conf *conf);
- bool (*parse_existing_cgroups)(void *hdata, pid_t pid);
bool (*attach)(const char *name, const char *lxcpath, pid_t pid);
bool (*mount_cgroup)(void *hdata, const char *root, int type);
int (*nrtasks)(void *hdata);
extern bool cgroup_create(struct lxc_handler *handler);
extern bool cgroup_setup_limits(struct lxc_handler *handler, bool with_devices);
extern bool cgroup_chown(struct lxc_handler *handler);
-extern bool cgroup_parse_existing_cgroups(struct lxc_handler *handler);
extern bool cgroup_enter(struct lxc_handler *handler);
extern void cgroup_cleanup(struct lxc_handler *handler);
extern bool cgroup_create_legacy(struct lxc_handler *handler);
extern int cgroup_nrtasks(struct lxc_handler *handler);
extern const char *cgroup_get_cgroup(struct lxc_handler *handler, const char *subsystem);
+
+/*
+ * Currently, this call only makes sense for privileged containers.
+ */
+extern const char *cgroup_canonical_path(struct lxc_handler *handler);
extern bool cgroup_unfreeze(struct lxc_handler *handler);
extern void cgroup_disconnect(void);
/* restore: the file to write the init process' pid into */
char *pidfile;
+ const char *cgroup_path;
};
/*
if (!opts->stop)
static_args++;
} else if (strcmp(opts->action, "restore") == 0) {
- /* --root $(lxc_mount_point) --restore-detached --restore-sibling --pidfile $foo */
- static_args += 6;
+ /* --root $(lxc_mount_point) --restore-detached
+ * --restore-sibling --pidfile $foo --cgroup-root $foo */
+ static_args += 8;
} else {
return;
}
DECLARE_ARG("--restore-sibling");
DECLARE_ARG("--pidfile");
DECLARE_ARG(opts->pidfile);
+ DECLARE_ARG("--cgroup-root");
+ DECLARE_ARG(opts->cgroup_path);
lxc_list_for_each(it, &opts->c->lxc_conf->network) {
char eth[128], veth[128], buf[257];
goto out_fini_handler;
}
+ if (!cgroup_create(handler)) {
+ ERROR("failed creating groups");
+ goto out_fini_handler;
+ }
+
pid = fork();
if (pid < 0)
goto out_fini_handler;
os.c = c;
os.pidfile = pidfile;
os.verbose = verbose;
+ os.cgroup_path = cgroup_canonical_path(handler);
/* exec_criu() returning is an error */
exec_criu(&os);
goto out_fini_handler;
}
- if (!cgroup_parse_existing_cgroups(handler)) {
- ERROR("failed creating cgroups");
- goto out_fini_handler;
- }
-
if (container_mem_lock(c))
goto out_fini_handler;
projects / thirdparty / lxc.git / commitdiff
