[mirror_lxc.git] / src / lxc / cmd / lxc_usernsexec.c

/*
 * (C) Copyright IBM Corp. 2008
 * (C) Copyright Canonical, Inc 2010-2013
 *
 * Authors:
 * Serge Hallyn <serge.hallyn@ubuntu.com>
 * (Once upon a time, this was based on nsexec from the IBM
 *  container tools)
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2.1 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
 */

#ifndef _GNU_SOURCE
#define _GNU_SOURCE 1
#endif
#include <errno.h>
#include <fcntl.h>
#include <grp.h>
#include <libgen.h>
#include <pwd.h>
#include <sched.h>
#include <signal.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/mount.h>
#include <sys/stat.h>
#include <sys/syscall.h>
#include <sys/types.h>
#include <sys/wait.h>
#include <unistd.h>

#include "conf.h"
#include "config.h"
#include "list.h"
#include "log.h"
#include "macro.h"
#include "file_utils.h"
#include "string_utils.h"
#include "syscall_wrappers.h"
#include "utils.h"

extern int lxc_log_fd;

static void usage(const char *name)
{
	printf("usage: %s [-h] [-m <uid-maps>] -- [command [arg ..]]\n", name);
	printf("\n");
	printf("  -h            this message\n");
	printf("\n");
	printf("  -m <uid-maps> uid maps to use\n");
	printf("\n");
	printf("  uid-maps: [u|g|b]:ns_id:host_id:range\n");
	printf("            [u|g|b]: map user id, group id, or both\n");
	printf("            ns_id: the base id in the new namespace\n");
	printf("            host_id: the base id in the parent namespace\n");
	printf("            range: how many ids to map\n");
	printf("  Note: This program uses newuidmap(2) and newgidmap(2).\n");
	printf("        As such, /etc/subuid and /etc/subgid must grant the\n");
	printf("        calling user permission to use the mapped ranges\n");
}

static void opentty(const char *tty, int which)
{
	int fd, flags, ret;

	if (tty[0] == '\0')
		return;

	fd = open(tty, O_RDWR | O_NONBLOCK);
	if (fd < 0) {
		CMD_SYSERROR("Failed to open tty");
		return;
	}

	flags = fcntl(fd, F_GETFL);
	flags &= ~O_NONBLOCK;
	ret = fcntl(fd, F_SETFL, flags);
	if (ret < 0) {
		CMD_SYSINFO("Failed to remove O_NONBLOCK from file descriptor %d", fd);
		close(fd);
		return;
	}

	close(which);
	if (fd != which) {
		(void)dup2(fd, which);
		close(fd);
	}
}
/* Code copy end */

static int do_child(void *vargv)
{
	int ret;
	char **argv = (char **)vargv;

	/* Assume we want to become root */
	if (!lxc_switch_uid_gid(0, 0))
		return -1;

	if (!lxc_setgroups(0, NULL))
		return -1;

	ret = unshare(CLONE_NEWNS);
	if (ret < 0) {
		CMD_SYSERROR("Failed to unshare mount namespace");
		return -1;
	}

	if (detect_shared_rootfs()) {
		ret = mount(NULL, "/", NULL, MS_SLAVE | MS_REC, NULL);
		if (ret < 0) {
			CMD_SYSINFO("Failed to make \"/\" rslave");
			return -1;
		}
	}

	execvp(argv[0], argv);
	CMD_SYSERROR("Failed to execute \"%s\"", argv[0]);
	return -1;
}

static struct lxc_list active_map;

/*
 * Given a string like "b:0:100000:10", map both uids and gids 0-10 to 100000
 * to 100010
 */
static int parse_map(char *map)
{
	int i, ret;
	long host_id, ns_id, range;
	char which;
	struct id_map *newmap;
	char types[2] = {'u', 'g'};
	struct lxc_list *tmp = NULL;

	if (!map)
		return -1;

	ret = sscanf(map, "%c:%ld:%ld:%ld", &which, &ns_id, &host_id, &range);
	if (ret != 4)
		return -1;

	if (which != 'b' && which != 'u' && which != 'g')
		return -1;

	for (i = 0; i < 2; i++) {
		if (which != types[i] && which != 'b')
			continue;

		newmap = malloc(sizeof(*newmap));
		if (!newmap)
			return -1;

		newmap->hostid = host_id;
		newmap->nsid = ns_id;
		newmap->range = range;

		if (types[i] == 'u')
			newmap->idtype = ID_TYPE_UID;
		else
			newmap->idtype = ID_TYPE_GID;

		tmp = malloc(sizeof(*tmp));
		if (!tmp) {
			free(newmap);
			return -1;
		}

		tmp->elem = newmap;
		lxc_list_add_tail(&active_map, tmp);
	}

	return 0;
}

/*
 * This is called if the user did not pass any uid ranges in through -m flags.
 * It's called once to get the default uid map, and once for the default gid
 * map.
 * Go through /etc/subuids and /etc/subgids to find this user's allowed map. We
 * only use the first one for each of uid and gid, because otherwise we're not
 * sure which entries the user wanted.
 */
static int read_default_map(char *fnam, int which, char *user)
{
	size_t len;
	char *p1, *p2;
	unsigned long ul1, ul2;
	FILE *fin;
	int ret = -1;
	size_t sz = 0;
	char *line = NULL;
	struct lxc_list *tmp = NULL;
	struct id_map *newmap = NULL;

	fin = fopen(fnam, "r");
	if (!fin)
		return -1;

	len = strlen(user);
	while (getline(&line, &sz, fin) != -1) {
		if (sz <= len || strncmp(line, user, len) != 0 || line[len] != ':')
			continue;

		p1 = strchr(line, ':');
		if (!p1)
			continue;

		p2 = strchr(p1 + 1, ':');
		if (!p2)
			continue;

		line[strlen(line) - 1] = '\0';
		*p2 = '\0';

		ret = lxc_safe_ulong(p1 + 1, &ul1);
		if (ret < 0)
			break;

		ret = lxc_safe_ulong(p2 + 1, &ul2);
		if (ret < 0)
			break;

		ret = -1;
		newmap = malloc(sizeof(*newmap));
		if (!newmap)
			break;

		newmap->nsid = 0;
		newmap->idtype = which;
		newmap->hostid = ul1;
		newmap->range = ul2;

		tmp = malloc(sizeof(*tmp));
		if (!tmp) {
			free(newmap);
			break;
		}

		tmp->elem = newmap;
		lxc_list_add_tail(&active_map, tmp);

		ret = 0;
		break;
	}

	fclose(fin);
	free(line);

	return ret;
}

static int find_default_map(void)
{
	size_t bufsize;
	char *buf;
	struct passwd pwent;
	int ret = -1;
	struct passwd *pwentp = NULL;

	bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
	if (bufsize == -1)
		bufsize = 1024;

	buf = malloc(bufsize);
	if (!buf)
		return -1;

	ret = getpwuid_r(getuid(), &pwent, buf, bufsize, &pwentp);
	if (!pwentp) {
		if (ret == 0)
			CMD_SYSERROR("Failed to find matched password record");

		CMD_SYSERROR("Failed to get password record for uid %d", getuid());
		ret = -1;
		goto out;
	}

	ret = read_default_map(subuidfile, ID_TYPE_UID, pwent.pw_name);
	if (ret < 0)
		goto out;

	ret = read_default_map(subgidfile, ID_TYPE_GID, pwent.pw_name);
	if (ret < 0)
		goto out;

	ret = 0;

out:
	free(buf);

	return ret;
}

int main(int argc, char *argv[])
{
	int c, pid, ret, status;
	char buf[1];
	int pipe_fds1[2], /* child tells parent it has unshared */
	    pipe_fds2[2]; /* parent tells child it is mapped and may proceed */
	unsigned long flags = CLONE_NEWUSER | CLONE_NEWNS;
	char ttyname0[256] = {0}, ttyname1[256] = {0}, ttyname2[256] = {0};
	char *default_args[] = {"/bin/sh", NULL};

	lxc_log_fd = STDERR_FILENO;

	if (isatty(STDIN_FILENO)) {
		ret = readlink("/proc/self/fd/0", ttyname0, sizeof(ttyname0));
		if (ret < 0) {
			CMD_SYSERROR("Failed to open stdin");
			_exit(EXIT_FAILURE);
		}

		ret = readlink("/proc/self/fd/1", ttyname1, sizeof(ttyname1));
		if (ret < 0) {
			CMD_SYSINFO("Failed to open stdout. Continuing");
			ttyname1[0] = '\0';
		}

		ret = readlink("/proc/self/fd/2", ttyname2, sizeof(ttyname2));
		if (ret < 0) {
			CMD_SYSINFO("Failed to open stderr. Continuing");
			ttyname2[0] = '\0';
		}
	}

	lxc_list_init(&active_map);

	while ((c = getopt(argc, argv, "m:h")) != EOF) {
		switch (c) {
		case 'm':
			ret = parse_map(optarg);
			if (ret < 0) {
				usage(argv[0]);
				_exit(EXIT_FAILURE);
			}
			break;
		case 'h':
			usage(argv[0]);
			_exit(EXIT_SUCCESS);
		default:
			usage(argv[0]);
			_exit(EXIT_FAILURE);
		}
	};

	if (lxc_list_empty(&active_map)) {
		ret = find_default_map();
		if (ret < 0) {
			fprintf(stderr, "Failed to find subuid or subgid allocation\n");
			_exit(EXIT_FAILURE);
		}
	}

	argv = &argv[optind];
	argc = argc - optind;
	if (argc < 1)
		argv = default_args;

	ret = pipe2(pipe_fds1, O_CLOEXEC);
	if (ret < 0) {
		CMD_SYSERROR("Failed to open new pipe");
		_exit(EXIT_FAILURE);
	}

	ret = pipe2(pipe_fds2, O_CLOEXEC);
	if (ret < 0) {
		CMD_SYSERROR("Failed to open new pipe");
		close(pipe_fds1[0]);
		close(pipe_fds1[1]);
		_exit(EXIT_FAILURE);
	}

	pid = fork();
	if (pid < 0) {
		close(pipe_fds1[0]);
		close(pipe_fds1[1]);
		close(pipe_fds2[0]);
		close(pipe_fds2[1]);
		_exit(EXIT_FAILURE);
	}

	if (pid == 0) {
		close(pipe_fds1[0]);
		close(pipe_fds2[1]);

		opentty(ttyname0, STDIN_FILENO);
		opentty(ttyname1, STDOUT_FILENO);
		opentty(ttyname2, STDERR_FILENO);

		ret = unshare(flags);
		if (ret < 0) {
			CMD_SYSERROR("Failed to unshare mount and user namespace");
			close(pipe_fds1[1]);
			close(pipe_fds2[0]);
			_exit(EXIT_FAILURE);
		}

		buf[0] = '1';
		ret = lxc_write_nointr(pipe_fds1[1], buf, 1);
		if (ret != 1) {
			CMD_SYSERROR("Failed to write to pipe file descriptor %d",
				     pipe_fds1[1]);
			close(pipe_fds1[1]);
			close(pipe_fds2[0]);
			_exit(EXIT_FAILURE);
		}

		ret = lxc_read_nointr(pipe_fds2[0], buf, 1);
		if (ret != 1) {
			CMD_SYSERROR("Failed to read from pipe file descriptor %d",
				     pipe_fds2[0]);
			close(pipe_fds1[1]);
			close(pipe_fds2[0]);
			_exit(EXIT_FAILURE);
		}

		close(pipe_fds1[1]);
		close(pipe_fds2[0]);

		if (buf[0] != '1') {
			fprintf(stderr, "Received unexpected value from parent process\n");
			_exit(EXIT_FAILURE);
		}

		ret = do_child((void *)argv);
		if (ret < 0)
			_exit(EXIT_FAILURE);

		_exit(EXIT_SUCCESS);
	}

	close(pipe_fds1[1]);
	close(pipe_fds2[0]);

	ret = lxc_read_nointr(pipe_fds1[0], buf, 1);
	if (ret <= 0)
		CMD_SYSERROR("Failed to read from pipe file descriptor %d", pipe_fds1[0]);

	buf[0] = '1';

	ret = lxc_map_ids(&active_map, pid);
	if (ret < 0)
		fprintf(stderr, "Failed to write id mapping for child process\n");

	ret = lxc_write_nointr(pipe_fds2[1], buf, 1);
	if (ret < 0) {
		CMD_SYSERROR("Failed to write to pipe file descriptor %d", pipe_fds2[1]);
		_exit(EXIT_FAILURE);
	}

	ret = waitpid(pid, &status, __WALL);
	if (ret < 0) {
		CMD_SYSERROR("Failed to wait on child process");
		_exit(EXIT_FAILURE);
	}

	_exit(WEXITSTATUS(status));
}
Commit	Line	Data
d155b47d SH	1	/*
	2	* (C) Copyright IBM Corp. 2008
	3	* (C) Copyright Canonical, Inc 2010-2013
	4	*
	5	* Authors:
	6	* Serge Hallyn <serge.hallyn@ubuntu.com>
	7	* (Once upon a time, this was based on nsexec from the IBM
	8	* container tools)
	9	*
	10	* This library is free software; you can redistribute it and/or
	11	* modify it under the terms of the GNU Lesser General Public
	12	* License as published by the Free Software Foundation; either
	13	* version 2.1 of the License, or (at your option) any later version.
	14	*
	15	* This library is distributed in the hope that it will be useful,
	16	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	17	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	18	* Lesser General Public License for more details.
	19	*
	20	* You should have received a copy of the GNU Lesser General Public
	21	* License along with this library; if not, write to the Free Software
250b1eec	22	* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
d155b47d	23	*/
72a50694	24
d38dd64a CB	25	#ifndef _GNU_SOURCE
	26	#define _GNU_SOURCE 1
	27	#endif
72a50694 CB	28	#include <errno.h>
	29	#include <fcntl.h>
	30	#include <grp.h>
	31	#include <libgen.h>
	32	#include <pwd.h>
d155b47d	33	#include <sched.h>
d155b47d	34	#include <signal.h>
72a50694 CB	35	#include <stdio.h>
72a50694 CB	36	#include <stdlib.h>
d155b47d	37	#include <string.h>
72a50694	38	#include <sys/mount.h>
d155b47d	39	#include <sys/stat.h>
72a50694	40	#include <sys/syscall.h>
d155b47d SH	41	#include <sys/types.h>
d155b47d SH	42	#include <sys/wait.h>
72a50694	43	#include <unistd.h>
f2363e38	44
0e6e3a41	45	#include "conf.h"
d38dd64a	46	#include "config.h"
02af8066 CB	47	#include "list.h"
02af8066 CB	48	#include "log.h"
c881c810	49	#include "macro.h"
49182c32 CB	50	#include "file_utils.h"
49182c32 CB	51	#include "string_utils.h"
e8f764b6	52	#include "syscall_wrappers.h"
7ee37fac	53	#include "utils.h"
d155b47d	54
2d22b22d TA	55	extern int lxc_log_fd;
2d22b22d TA	56
d155b47d SH	57	static void usage(const char *name)
d155b47d SH	58	{
adade80c	59	printf("usage: %s [-h] [-m <uid-maps>] -- [command [arg ..]]\n", name);
d155b47d	60	printf("\n");
6f94152d	61	printf(" -h this message\n");
d155b47d SH	62	printf("\n");
	63	printf(" -m <uid-maps> uid maps to use\n");
	64	printf("\n");
	65	printf(" uid-maps: [u\|g\|b]:ns_id:host_id:range\n");
	66	printf(" [u\|g\|b]: map user id, group id, or both\n");
	67	printf(" ns_id: the base id in the new namespace\n");
	68	printf(" host_id: the base id in the parent namespace\n");
	69	printf(" range: how many ids to map\n");
	70	printf(" Note: This program uses newuidmap(2) and newgidmap(2).\n");
	71	printf(" As such, /etc/subuid and /etc/subgid must grant the\n");
	72	printf(" calling user permission to use the mapped ranges\n");
d155b47d SH	73	}
d155b47d SH	74
a0ee564f CB	75	static void opentty(const char *tty, int which)
a0ee564f CB	76	{
02af8066	77	int fd, flags, ret;
b5f4bc78 SH	78
	79	if (tty[0] == '\0')
	80	return;
d155b47d SH	81
d155b47d SH	82	fd = open(tty, O_RDWR \| O_NONBLOCK);
a0ee564f	83	if (fd < 0) {
02af8066	84	CMD_SYSERROR("Failed to open tty");
8d4b877a	85	return;
d155b47d SH	86	}
	87
	88	flags = fcntl(fd, F_GETFL);
	89	flags &= ~O_NONBLOCK;
02af8066 CB	90	ret = fcntl(fd, F_SETFL, flags);
	91	if (ret < 0) {
	92	CMD_SYSINFO("Failed to remove O_NONBLOCK from file descriptor %d", fd);
22417436	93	close(fd);
35e3a0cd SG	94	return;
35e3a0cd SG	95	}
d155b47d	96
b5f4bc78 SH	97	close(which);
b5f4bc78 SH	98	if (fd != which) {
a0ee564f	99	(void)dup2(fd, which);
d155b47d	100	close(fd);
b5f4bc78	101	}
d155b47d	102	}
1a0e70ac	103	/* Code copy end */
d155b47d SH	104
	105	static int do_child(void *vargv)
	106	{
02af8066	107	int ret;
d155b47d SH	108	char argv = (char )vargv;
d155b47d SH	109
1a0e70ac	110	/* Assume we want to become root */
464c4611	111	if (!lxc_switch_uid_gid(0, 0))
d155b47d	112	return -1;
02af8066	113
8af07f82	114	if (!lxc_setgroups(0, NULL))
d155b47d	115	return -1;
02af8066 CB	116
	117	ret = unshare(CLONE_NEWNS);
	118	if (ret < 0) {
	119	CMD_SYSERROR("Failed to unshare mount namespace");
d155b47d SH	120	return -1;
d155b47d SH	121	}
02af8066	122
2c6f3fc9	123	if (detect_shared_rootfs()) {
02af8066 CB	124	ret = mount(NULL, "/", NULL, MS_SLAVE \| MS_REC, NULL);
	125	if (ret < 0) {
	126	CMD_SYSINFO("Failed to make \"/\" rslave");
2c6f3fc9 SH	127	return -1;
	128	}
	129	}
02af8066	130
d155b47d	131	execvp(argv[0], argv);
02af8066	132	CMD_SYSERROR("Failed to execute \"%s\"", argv[0]);
d155b47d SH	133	return -1;
	134	}
	135
0e6e3a41	136	static struct lxc_list active_map;
d155b47d SH	137
d155b47d SH	138	/*
02af8066 CB	139	* Given a string like "b:0:100000:10", map both uids and gids 0-10 to 100000
02af8066 CB	140	* to 100010
d155b47d SH	141	*/
	142	static int parse_map(char *map)
	143	{
02af8066 CB	144	int i, ret;
	145	long host_id, ns_id, range;
	146	char which;
d155b47d	147	struct id_map *newmap;
0e6e3a41	148	char types[2] = {'u', 'g'};
02af8066	149	struct lxc_list *tmp = NULL;
d155b47d SH	150
	151	if (!map)
	152	return -1;
0e6e3a41 SG	153
0e6e3a41 SG	154	ret = sscanf(map, "%c:%ld:%ld:%ld", &which, &ns_id, &host_id, &range);
d155b47d	155	if (ret != 4)
0e6e3a41	156	return -1;
d155b47d	157
0e6e3a41 SG	158	if (which != 'b' && which != 'u' && which != 'g')
	159	return -1;
	160
	161	for (i = 0; i < 2; i++) {
	162	if (which != types[i] && which != 'b')
	163	continue;
	164
	165	newmap = malloc(sizeof(*newmap));
	166	if (!newmap)
	167	return -1;
	168
	169	newmap->hostid = host_id;
	170	newmap->nsid = ns_id;
	171	newmap->range = range;
	172
	173	if (types[i] == 'u')
	174	newmap->idtype = ID_TYPE_UID;
	175	else
	176	newmap->idtype = ID_TYPE_GID;
	177
	178	tmp = malloc(sizeof(*tmp));
	179	if (!tmp) {
	180	free(newmap);
	181	return -1;
	182	}
	183
	184	tmp->elem = newmap;
	185	lxc_list_add_tail(&active_map, tmp);
	186	}
	187
	188	return 0;
d155b47d SH	189	}
	190
	191	/*
02af8066 CB	192	* This is called if the user did not pass any uid ranges in through -m flags.
	193	* It's called once to get the default uid map, and once for the default gid
	194	* map.
	195	* Go through /etc/subuids and /etc/subgids to find this user's allowed map. We
	196	* only use the first one for each of uid and gid, because otherwise we're not
	197	* sure which entries the user wanted.
d155b47d	198	*/
5ff02844	199	static int read_default_map(char fnam, int which, char user)
d155b47d	200	{
5ff02844	201	size_t len;
02af8066	202	char p1, p2;
c14ea11d	203	unsigned long ul1, ul2;
d155b47d	204	FILE *fin;
62a38dff	205	int ret = -1;
02af8066 CB	206	size_t sz = 0;
02af8066 CB	207	char *line = NULL;
0e6e3a41	208	struct lxc_list *tmp = NULL;
62a38dff	209	struct id_map *newmap = NULL;
d155b47d SH	210
	211	fin = fopen(fnam, "r");
	212	if (!fin)
	213	return -1;
02af8066	214
5ff02844	215	len = strlen(user);
d155b47d	216	while (getline(&line, &sz, fin) != -1) {
5ff02844	217	if (sz <= len \|\| strncmp(line, user, len) != 0 \|\| line[len] != ':')
d155b47d	218	continue;
02af8066	219
46cd2845	220	p1 = strchr(line, ':');
d155b47d SH	221	if (!p1)
d155b47d SH	222	continue;
02af8066 CB	223
02af8066 CB	224	p2 = strchr(p1 + 1, ':');
d155b47d SH	225	if (!p2)
d155b47d SH	226	continue;
02af8066	227
c14ea11d CN	228	line[strlen(line) - 1] = '\0';
c14ea11d CN	229	*p2 = '\0';
02af8066	230
c14ea11d	231	ret = lxc_safe_ulong(p1 + 1, &ul1);
62a38dff	232	if (ret < 0)
c14ea11d	233	break;
d3b413e7	234
c14ea11d	235	ret = lxc_safe_ulong(p2 + 1, &ul2);
62a38dff	236	if (ret < 0)
c14ea11d CN	237	break;
	238
	239	ret = -1;
	240	newmap = malloc(sizeof(*newmap));
	241	if (!newmap)
	242	break;
d3b413e7	243
0e6e3a41 SG	244	newmap->nsid = 0;
0e6e3a41 SG	245	newmap->idtype = which;
c14ea11d CN	246	newmap->hostid = ul1;
c14ea11d CN	247	newmap->range = ul2;
0e6e3a41 SG	248
0e6e3a41 SG	249	tmp = malloc(sizeof(*tmp));
c14ea11d CN	250	if (!tmp) {
	251	free(newmap);
	252	break;
	253	}
0e6e3a41 SG	254
	255	tmp->elem = newmap;
	256	lxc_list_add_tail(&active_map, tmp);
c14ea11d CN	257
c14ea11d CN	258	ret = 0;
d155b47d SH	259	break;
	260	}
	261
d155b47d	262	fclose(fin);
62a38dff	263	free(line);
02af8066	264
62a38dff	265	return ret;
d155b47d SH	266	}
d155b47d SH	267
d155b47d SH	268	static int find_default_map(void)
d155b47d SH	269	{
02af8066 CB	270	size_t bufsize;
02af8066 CB	271	char *buf;
cb7aa5e8	272	struct passwd pwent;
02af8066	273	int ret = -1;
cb7aa5e8	274	struct passwd *pwentp = NULL;
cb7aa5e8 DJ	275
	276	bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
	277	if (bufsize == -1)
	278	bufsize = 1024;
	279
	280	buf = malloc(bufsize);
	281	if (!buf)
d155b47d	282	return -1;
cb7aa5e8 DJ	283
	284	ret = getpwuid_r(getuid(), &pwent, buf, bufsize, &pwentp);
	285	if (!pwentp) {
	286	if (ret == 0)
02af8066	287	CMD_SYSERROR("Failed to find matched password record");
cb7aa5e8	288
02af8066 CB	289	CMD_SYSERROR("Failed to get password record for uid %d", getuid());
	290	ret = -1;
	291	goto out;
cb7aa5e8 DJ	292	}
cb7aa5e8 DJ	293
02af8066 CB	294	ret = read_default_map(subuidfile, ID_TYPE_UID, pwent.pw_name);
	295	if (ret < 0)
	296	goto out;
cb7aa5e8	297
02af8066 CB	298	ret = read_default_map(subgidfile, ID_TYPE_GID, pwent.pw_name);
	299	if (ret < 0)
	300	goto out;
	301
	302	ret = 0;
cb7aa5e8	303
02af8066	304	out:
cb7aa5e8	305	free(buf);
02af8066 CB	306
02af8066 CB	307	return ret;
d155b47d SH	308	}
d155b47d SH	309
d155b47d SH	310	int main(int argc, char *argv[])
d155b47d SH	311	{
02af8066 CB	312	int c, pid, ret, status;
	313	char buf[1];
	314	int pipe_fds1[2], /* child tells parent it has unshared */
	315	pipe_fds2[2]; /* parent tells child it is mapped and may proceed */
d155b47d	316	unsigned long flags = CLONE_NEWUSER \| CLONE_NEWNS;
02af8066	317	char ttyname0[256] = {0}, ttyname1[256] = {0}, ttyname2[256] = {0};
d155b47d	318	char *default_args[] = {"/bin/sh", NULL};
d155b47d	319
2d22b22d TA	320	lxc_log_fd = STDERR_FILENO;
2d22b22d TA	321
02af8066	322	if (isatty(STDIN_FILENO)) {
5d1df05b SH	323	ret = readlink("/proc/self/fd/0", ttyname0, sizeof(ttyname0));
5d1df05b SH	324	if (ret < 0) {
02af8066 CB	325	CMD_SYSERROR("Failed to open stdin");
02af8066 CB	326	_exit(EXIT_FAILURE);
5d1df05b	327	}
02af8066	328
5d1df05b SH	329	ret = readlink("/proc/self/fd/1", ttyname1, sizeof(ttyname1));
5d1df05b SH	330	if (ret < 0) {
02af8066 CB	331	CMD_SYSINFO("Failed to open stdout. Continuing");
02af8066 CB	332	ttyname1[0] = '\0';
5d1df05b	333	}
02af8066	334
5d1df05b SH	335	ret = readlink("/proc/self/fd/2", ttyname2, sizeof(ttyname2));
5d1df05b SH	336	if (ret < 0) {
02af8066 CB	337	CMD_SYSINFO("Failed to open stderr. Continuing");
02af8066 CB	338	ttyname2[0] = '\0';
5d1df05b	339	}
b5f4bc78	340	}
d155b47d	341
0e6e3a41 SG	342	lxc_list_init(&active_map);
0e6e3a41 SG	343
d155b47d SH	344	while ((c = getopt(argc, argv, "m:h")) != EOF) {
d155b47d SH	345	switch (c) {
27fdb6be	346	case 'm':
02af8066 CB	347	ret = parse_map(optarg);
02af8066 CB	348	if (ret < 0) {
27fdb6be	349	usage(argv[0]);
02af8066	350	_exit(EXIT_FAILURE);
27fdb6be TH	351	}
	352	break;
	353	case 'h':
	354	usage(argv[0]);
02af8066	355	_exit(EXIT_SUCCESS);
27fdb6be TH	356	default:
27fdb6be TH	357	usage(argv[0]);
02af8066	358	_exit(EXIT_FAILURE);
d155b47d SH	359	}
	360	};
	361
0e6e3a41	362	if (lxc_list_empty(&active_map)) {
02af8066 CB	363	ret = find_default_map();
	364	if (ret < 0) {
	365	fprintf(stderr, "Failed to find subuid or subgid allocation\n");
	366	_exit(EXIT_FAILURE);
d155b47d SH	367	}
	368	}
	369
	370	argv = &argv[optind];
	371	argc = argc - optind;
1285f7d5	372	if (argc < 1)
d155b47d	373	argv = default_args;
d155b47d	374
02af8066 CB	375	ret = pipe2(pipe_fds1, O_CLOEXEC);
	376	if (ret < 0) {
	377	CMD_SYSERROR("Failed to open new pipe");
	378	_exit(EXIT_FAILURE);
	379	}
	380
	381	ret = pipe2(pipe_fds2, O_CLOEXEC);
	382	if (ret < 0) {
	383	CMD_SYSERROR("Failed to open new pipe");
	384	close(pipe_fds1[0]);
	385	close(pipe_fds1[1]);
	386	_exit(EXIT_FAILURE);
d155b47d	387	}
02af8066	388
f0a86c6d	389	pid = fork();
02af8066	390	if (pid < 0) {
04dc1c00	391	close(pipe_fds1[0]);
02af8066 CB	392	close(pipe_fds1[1]);
02af8066 CB	393	close(pipe_fds2[0]);
04dc1c00	394	close(pipe_fds2[1]);
02af8066 CB	395	_exit(EXIT_FAILURE);
	396	}
	397
	398	if (pid == 0) {
	399	close(pipe_fds1[0]);
	400	close(pipe_fds2[1]);
	401
	402	opentty(ttyname0, STDIN_FILENO);
	403	opentty(ttyname1, STDOUT_FILENO);
	404	opentty(ttyname2, STDERR_FILENO);
d155b47d SH	405
	406	ret = unshare(flags);
	407	if (ret < 0) {
02af8066 CB	408	CMD_SYSERROR("Failed to unshare mount and user namespace");
	409	close(pipe_fds1[1]);
	410	close(pipe_fds2[0]);
	411	_exit(EXIT_FAILURE);
d155b47d	412	}
02af8066	413
cbaed76d	414	buf[0] = '1';
02af8066 CB	415	ret = lxc_write_nointr(pipe_fds1[1], buf, 1);
	416	if (ret != 1) {
	417	CMD_SYSERROR("Failed to write to pipe file descriptor %d",
	418	pipe_fds1[1]);
	419	close(pipe_fds1[1]);
	420	close(pipe_fds2[0]);
	421	_exit(EXIT_FAILURE);
d155b47d	422	}
02af8066 CB	423
	424	ret = lxc_read_nointr(pipe_fds2[0], buf, 1);
	425	if (ret != 1) {
	426	CMD_SYSERROR("Failed to read from pipe file descriptor %d",
	427	pipe_fds2[0]);
	428	close(pipe_fds1[1]);
	429	close(pipe_fds2[0]);
	430	_exit(EXIT_FAILURE);
d155b47d SH	431	}
d155b47d SH	432
04dc1c00 CB	433	close(pipe_fds1[1]);
04dc1c00 CB	434	close(pipe_fds2[0]);
02af8066 CB	435
	436	if (buf[0] != '1') {
	437	fprintf(stderr, "Received unexpected value from parent process\n");
	438	_exit(EXIT_FAILURE);
	439	}
	440
	441	ret = do_child((void *)argv);
	442	if (ret < 0)
	443	_exit(EXIT_FAILURE);
	444
	445	_exit(EXIT_SUCCESS);
d155b47d SH	446	}
d155b47d SH	447
04dc1c00 CB	448	close(pipe_fds1[1]);
04dc1c00 CB	449	close(pipe_fds2[0]);
02af8066	450
ede912b4	451	ret = lxc_read_nointr(pipe_fds1[0], buf, 1);
02af8066 CB	452	if (ret <= 0)
02af8066 CB	453	CMD_SYSERROR("Failed to read from pipe file descriptor %d", pipe_fds1[0]);
d155b47d	454
b543ce96	455	buf[0] = '1';
0e6e3a41	456
02af8066 CB	457	ret = lxc_map_ids(&active_map, pid);
	458	if (ret < 0)
	459	fprintf(stderr, "Failed to write id mapping for child process\n");
1285f7d5	460
02af8066 CB	461	ret = lxc_write_nointr(pipe_fds2[1], buf, 1);
	462	if (ret < 0) {
	463	CMD_SYSERROR("Failed to write to pipe file descriptor %d", pipe_fds2[1]);
	464	_exit(EXIT_FAILURE);
d155b47d	465	}
02af8066	466
f0a86c6d TH	467	ret = waitpid(pid, &status, __WALL);
f0a86c6d TH	468	if (ret < 0) {
02af8066 CB	469	CMD_SYSERROR("Failed to wait on child process");
02af8066 CB	470	_exit(EXIT_FAILURE);
d155b47d SH	471	}
d155b47d SH	472
02af8066	473	_exit(WEXITSTATUS(status));
d155b47d	474	}