]> git.proxmox.com Git - mirror_lxc.git/blame - src/lxc/utils.c
projects / mirror_lxc.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge pull request #1567 from anevenchanniy/lxc-top/memory
[mirror_lxc.git] / src / lxc / utils.c
CommitLineData
e3642c43
DL		 1/*
2 * lxc: linux Container library
3 *
4 * (C) Copyright IBM Corp. 2007, 2008
5 *
6 * Authors:
9afe19d6 7 * Daniel Lezcano <daniel.lezcano at free.fr>
e3642c43
DL		 8 *
9 * This library is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU Lesser General Public
11 * License as published by the Free Software Foundation; either
12 * version 2.1 of the License, or (at your option) any later version.
13 *
14 * This library is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17 * Lesser General Public License for more details.
18 *
19 * You should have received a copy of the GNU Lesser General Public
20 * License along with this library; if not, write to the Free Software
250b1eec 21 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
e3642c43
DL		 22 */
23
052616eb
ÇO		 24#include "config.h"
25
643c1984 26#include <ctype.h>
a1e5280d 27#include <dirent.h>
e3642c43 28#include <errno.h>
a1e5280d 29#include <fcntl.h>
dbaf55a3 30#include <grp.h>
a1e5280d 31#include <libgen.h>
d983b93c 32#include <stddef.h>
a1e5280d
CB		 33#include <stdio.h>
34#include <stdlib.h>
61a1d519 35#include <string.h>
981f6029 36#include <unistd.h>
e3642c43 37#include <sys/mman.h>
6e4bb2e0 38#include <sys/mount.h>
a1e5280d
CB		 39#include <sys/param.h>
40#include <sys/prctl.h>
41#include <sys/stat.h>
9be53773 42#include <sys/types.h>
a1e5280d 43#include <sys/vfs.h>
9be53773 44#include <sys/wait.h>
e3642c43
DL		 45
46#include "log.h"
025ed0f3 47#include "lxclock.h"
51d0854c 48#include "namespace.h"
981f6029 49#include "utils.h"
e3642c43 50
5d6ef228
SG		 51#ifndef PR_SET_MM
52#define PR_SET_MM 35
53#endif
54
8d2ede58
TA		 55#ifndef PR_SET_MM_MAP
56#define PR_SET_MM_MAP 14
553347e4 57
8d2ede58
TA		 58struct prctl_mm_map {
59 uint64_t start_code;
60 uint64_t end_code;
61 uint64_t start_data;
62 uint64_t end_data;
63 uint64_t start_brk;
64 uint64_t brk;
65 uint64_t start_stack;
66 uint64_t arg_start;
67 uint64_t arg_end;
68 uint64_t env_start;
69 uint64_t env_end;
70 uint64_t *auxv;
71 uint32_t auxv_size;
72 uint32_t exe_fd;
1adbd020 73};
553347e4
TA		 74#endif
75
4928c718
SG		 76#ifndef O_PATH
77#define O_PATH 010000000
78#endif
79
80#ifndef O_NOFOLLOW
81#define O_NOFOLLOW 00400000
82#endif
83
e3642c43
DL		 84lxc_log_define(lxc_utils, lxc);
85
4295c5de
SH		 86/*
87 * if path is btrfs, tries to remove it and any subvolumes beneath it
88 */
89extern bool btrfs_try_remove_subvol(const char *path);
90
0cc417b2
SH		 91static int _recursive_rmdir(char *dirname, dev_t pdev,
92 const char *exclude, int level, bool onedev)
60bf62d4 93{
74f96976 94 struct dirent *direntp;
60bf62d4
SH		 95 DIR *dir;
96 int ret, failed=0;
97 char pathname[MAXPATHLEN];
18aa217b 98 bool hadexclude = false;
60bf62d4
SH		 99
100 dir = opendir(dirname);
101 if (!dir) {
102 ERROR("%s: failed to open %s", __func__, dirname);
4355ab5f 103 return -1;
60bf62d4
SH		 104 }
105
74f96976 106 while ((direntp = readdir(dir))) {
60bf62d4
SH		 107 struct stat mystat;
108 int rc;
109
110 if (!direntp)
111 break;
112
113 if (!strcmp(direntp->d_name, ".") ||
114 !strcmp(direntp->d_name, ".."))
115 continue;
116
117 rc = snprintf(pathname, MAXPATHLEN, "%s/%s", dirname, direntp->d_name);
118 if (rc < 0 || rc >= MAXPATHLEN) {
119 ERROR("pathname too long");
120 failed=1;
121 continue;
122 }
18aa217b
SH		 123
124 if (!level && exclude && !strcmp(direntp->d_name, exclude)) {
125 ret = rmdir(pathname);
126 if (ret < 0) {
127 switch(errno) {
128 case ENOTEMPTY:
0cc417b2 129 INFO("Not deleting snapshot %s", pathname);
18aa217b
SH		 130 hadexclude = true;
131 break;
132 case ENOTDIR:
133 ret = unlink(pathname);
134 if (ret)
135 INFO("%s: failed to remove %s", __func__, pathname);
136 break;
137 default:
138 SYSERROR("%s: failed to rmdir %s", __func__, pathname);
139 failed = 1;
140 break;
141 }
142 }
143 continue;
144 }
145
60bf62d4
SH		 146 ret = lstat(pathname, &mystat);
147 if (ret) {
148 ERROR("%s: failed to stat %s", __func__, pathname);
4295c5de 149 failed = 1;
60bf62d4
SH		 150 continue;
151 }
4295c5de
SH		 152 if (onedev && mystat.st_dev != pdev) {
153 /* TODO should we be checking /proc/self/mountinfo for
154 * pathname and not doing this if found? */
155 if (btrfs_try_remove_subvol(pathname))
156 INFO("Removed btrfs subvolume at %s\n", pathname);
60bf62d4 157 continue;
4295c5de 158 }
60bf62d4 159 if (S_ISDIR(mystat.st_mode)) {
0cc417b2 160 if (_recursive_rmdir(pathname, pdev, exclude, level+1, onedev) < 0)
60bf62d4
SH		 161 failed=1;
162 } else {
163 if (unlink(pathname) < 0) {
0cc417b2 164 SYSERROR("%s: failed to delete %s", __func__, pathname);
60bf62d4
SH		 165 failed=1;
166 }
167 }
168 }
169
4295c5de
SH		 170 if (rmdir(dirname) < 0 && !btrfs_try_remove_subvol(dirname) && !hadexclude) {
171 ERROR("%s: failed to delete %s", __func__, dirname);
172 failed=1;
60bf62d4
SH		 173 }
174
025ed0f3 175 ret = closedir(dir);
025ed0f3 176 if (ret) {
60bf62d4
SH		 177 ERROR("%s: failed to close directory %s", __func__, dirname);
178 failed=1;
179 }
180
4355ab5f 181 return failed ? -1 : 0;
60bf62d4
SH		 182}
183
0cc417b2
SH		 184/* we have two different magic values for overlayfs, yay */
185#define OVERLAYFS_SUPER_MAGIC 0x794c764f
186#define OVERLAY_SUPER_MAGIC 0x794c7630
187/*
188 * In overlayfs, st_dev is unreliable. so on overlayfs we don't do
189 * the lxc_rmdir_onedev()
190 */
191static bool is_native_overlayfs(const char *path)
192{
193 struct statfs sb;
194
195 if (statfs(path, &sb) < 0)
196 return false;
197 if (sb.f_type == OVERLAYFS_SUPER_MAGIC ||
198 sb.f_type == OVERLAY_SUPER_MAGIC)
199 return true;
200 return false;
201}
202
4355ab5f 203/* returns 0 on success, -1 if there were any failures */
18aa217b 204extern int lxc_rmdir_onedev(char *path, const char *exclude)
60bf62d4
SH		 205{
206 struct stat mystat;
0cc417b2
SH		 207 bool onedev = true;
208
209 if (is_native_overlayfs(path)) {
210 onedev = false;
211 }
60bf62d4
SH		 212
213 if (lstat(path, &mystat) < 0) {
067650d0
SH		 214 if (errno == ENOENT)
215 return 0;
60bf62d4 216 ERROR("%s: failed to stat %s", __func__, path);
4355ab5f 217 return -1;
60bf62d4
SH		 218 }
219
0cc417b2 220 return _recursive_rmdir(path, mystat.st_dev, exclude, 0, onedev);
60bf62d4
SH		 221}
222
9ddaf3bf 223/* borrowed from iproute2 */
7c11d57a 224extern int get_u16(unsigned short *val, const char *arg, int base)
9ddaf3bf
JHS		 225{
226 unsigned long res;
227 char *ptr;
228
229 if (!arg || !*arg)
230 return -1;
231
09bbd745 232 errno = 0;
9ddaf3bf 233 res = strtoul(arg, &ptr, base);
09bbd745 234 if (!ptr || ptr == arg || *ptr || res > 0xFFFF || errno != 0)
9ddaf3bf
JHS		 235 return -1;
236
237 *val = res;
238
239 return 0;
240}
241
3ce74686 242extern int mkdir_p(const char *dir, mode_t mode)
1b09f2c0 243{
3ce74686
SH		 244 const char *tmp = dir;
245 const char *orig = dir;
860fc865
RW		 246 char *makeme;
247
248 do {
249 dir = tmp + strspn(tmp, "/");
250 tmp = dir + strcspn(dir, "/");
d74325c4 251 makeme = strndup(orig, dir - orig);
860fc865
RW		 252 if (*makeme) {
253 if (mkdir(makeme, mode) && errno != EEXIST) {
959aee9c 254 SYSERROR("failed to create directory '%s'", makeme);
d74325c4 255 free(makeme);
860fc865
RW		 256 return -1;
257 }
258 }
d74325c4 259 free(makeme);
860fc865 260 } while(tmp != dir);
1b09f2c0 261
98663823 262 return 0;
1b09f2c0 263}
2a59a681 264
44b9ae4b 265char *get_rundir()
9e60f51d 266{
97a696c6
SG		 267 char *rundir;
268 const char *homedir;
9e60f51d 269
d6470e71 270 if (geteuid() == 0) {
c580b8d2 271 rundir = strdup(RUNTIME_PATH);
d6470e71
SG		 272 return rundir;
273 }
97a696c6
SG		 274
275 rundir = getenv("XDG_RUNTIME_DIR");
44b9ae4b
SG		 276 if (rundir) {
277 rundir = strdup(rundir);
278 return rundir;
279 }
97a696c6 280
44b9ae4b
SG		 281 INFO("XDG_RUNTIME_DIR isn't set in the environment.");
282 homedir = getenv("HOME");
283 if (!homedir) {
284 ERROR("HOME isn't set in the environment.");
285 return NULL;
97a696c6
SG		 286 }
287
44b9ae4b
SG		 288 rundir = malloc(sizeof(char) * (17 + strlen(homedir)));
289 sprintf(rundir, "%s/.cache/lxc/run/", homedir);
290
9e60f51d
DE		 291 return rundir;
292}
293
9be53773
SH		 294int wait_for_pid(pid_t pid)
295{
296 int status, ret;
297
298again:
299 ret = waitpid(pid, &status, 0);
300 if (ret == -1) {
71b9b8ed 301 if (errno == EINTR)
9be53773
SH		 302 goto again;
303 return -1;
304 }
305 if (ret != pid)
306 goto again;
307 if (!WIFEXITED(status) || WEXITSTATUS(status) != 0)
308 return -1;
309 return 0;
310}
c797a220
CS		 311
312int lxc_wait_for_pid_status(pid_t pid)
313{
314 int status, ret;
315
316again:
317 ret = waitpid(pid, &status, 0);
318 if (ret == -1) {
319 if (errno == EINTR)
320 goto again;
321 return -1;
322 }
323 if (ret != pid)
324 goto again;
325 return status;
326}
92f023dc 327
650468bb 328ssize_t lxc_write_nointr(int fd, const void* buf, size_t count)
92f023dc 329{
650468bb 330 ssize_t ret;
92f023dc
CS		 331again:
332 ret = write(fd, buf, count);
333 if (ret < 0 && errno == EINTR)
334 goto again;
335 return ret;
336}
337
650468bb 338ssize_t lxc_read_nointr(int fd, void* buf, size_t count)
92f023dc 339{
650468bb 340 ssize_t ret;
92f023dc
CS		 341again:
342 ret = read(fd, buf, count);
343 if (ret < 0 && errno == EINTR)
344 goto again;
345 return ret;
346}
347
650468bb 348ssize_t lxc_read_nointr_expect(int fd, void* buf, size_t count, const void* expected_buf)
92f023dc 349{
650468bb 350 ssize_t ret;
92f023dc
CS		 351 ret = lxc_read_nointr(fd, buf, count);
352 if (ret <= 0)
353 return ret;
650468bb 354 if ((size_t)ret != count)
92f023dc
CS		 355 return -1;
356 if (expected_buf && memcmp(buf, expected_buf, count) != 0) {
357 errno = EINVAL;
358 return -1;
359 }
360 return ret;
361}
3ce74686
SH		 362
363#if HAVE_LIBGNUTLS
364#include <gnutls/gnutls.h>
365#include <gnutls/crypto.h>
41246cee
DE		 366
367__attribute__((constructor))
368static void gnutls_lxc_init(void)
369{
370 gnutls_global_init();
371}
372
3ce74686
SH		 373int sha1sum_file(char *fnam, unsigned char *digest)
374{
375 char *buf;
376 int ret;
377 FILE *f;
378 long flen;
379
380 if (!fnam)
381 return -1;
025ed0f3 382 f = fopen_cloexec(fnam, "r");
7be677a8 383 if (!f) {
3ce74686
SH		 384 SYSERROR("Error opening template");
385 return -1;
386 }
387 if (fseek(f, 0, SEEK_END) < 0) {
388 SYSERROR("Error seeking to end of template");
dd1d77f9 389 fclose(f);
3ce74686
SH		 390 return -1;
391 }
392 if ((flen = ftell(f)) < 0) {
393 SYSERROR("Error telling size of template");
dd1d77f9 394 fclose(f);
3ce74686
SH		 395 return -1;
396 }
397 if (fseek(f, 0, SEEK_SET) < 0) {
398 SYSERROR("Error seeking to start of template");
dd1d77f9 399 fclose(f);
3ce74686
SH		 400 return -1;
401 }
402 if ((buf = malloc(flen+1)) == NULL) {
403 SYSERROR("Out of memory");
dd1d77f9 404 fclose(f);
3ce74686
SH		 405 return -1;
406 }
407 if (fread(buf, 1, flen, f) != flen) {
408 SYSERROR("Failure reading template");
409 free(buf);
dd1d77f9 410 fclose(f);
3ce74686
SH		 411 return -1;
412 }
dd1d77f9 413 if (fclose(f) < 0) {
3ce74686
SH		 414 SYSERROR("Failre closing template");
415 free(buf);
416 return -1;
417 }
418 buf[flen] = '\0';
419 ret = gnutls_hash_fast(GNUTLS_DIG_SHA1, buf, flen, (void *)digest);
420 free(buf);
421 return ret;
422}
423#endif
61a1d519
CS		 424
425char** lxc_va_arg_list_to_argv(va_list ap, size_t skip, int do_strdup)
426{
427 va_list ap2;
428 size_t count = 1 + skip;
429 char **result;
430
431 /* first determine size of argument list, we don't want to reallocate
432 * constantly...
433 */
434 va_copy(ap2, ap);
435 while (1) {
436 char* arg = va_arg(ap2, char*);
437 if (!arg)
438 break;
439 count++;
440 }
441 va_end(ap2);
442
443 result = calloc(count, sizeof(char*));
444 if (!result)
445 return NULL;
446 count = skip;
447 while (1) {
448 char* arg = va_arg(ap, char*);
449 if (!arg)
450 break;
451 arg = do_strdup ? strdup(arg) : arg;
452 if (!arg)
453 goto oom;
454 result[count++] = arg;
455 }
456
457 /* calloc has already set last element to NULL*/
458 return result;
459
460oom:
461 free(result);
462 return NULL;
463}
464
465const char** lxc_va_arg_list_to_argv_const(va_list ap, size_t skip)
466{
467 return (const char**)lxc_va_arg_list_to_argv(ap, skip, 0);
468}
db27c8d7 469
ebec9176
AM		 470extern struct lxc_popen_FILE *lxc_popen(const char *command)
471{
472 struct lxc_popen_FILE *fp = NULL;
473 int parent_end = -1, child_end = -1;
474 int pipe_fds[2];
475 pid_t child_pid;
476
477 int r = pipe2(pipe_fds, O_CLOEXEC);
478
479 if (r < 0) {
480 ERROR("pipe2 failure");
481 return NULL;
482 }
483
484 parent_end = pipe_fds[0];
485 child_end = pipe_fds[1];
486
487 child_pid = fork();
488
489 if (child_pid == 0) {
490 /* child */
491 int child_std_end = STDOUT_FILENO;
492
493 if (child_end != child_std_end) {
494 /* dup2() doesn't dup close-on-exec flag */
495 dup2(child_end, child_std_end);
496
497 /* it's safe not to close child_end here
498 * as it's marked close-on-exec anyway
499 */
500 } else {
501 /*
502 * The descriptor is already the one we will use.
503 * But it must not be marked close-on-exec.
504 * Undo the effects.
505 */
57d2be54
SG		 506 if (fcntl(child_end, F_SETFD, 0) != 0) {
507 SYSERROR("Failed to remove FD_CLOEXEC from fd.");
508 exit(127);
509 }
ebec9176
AM		 510 }
511
512 /*
513 * Unblock signals.
514 * This is the main/only reason
515 * why we do our lousy popen() emulation.
516 */
517 {
518 sigset_t mask;
519 sigfillset(&mask);
520 sigprocmask(SIG_UNBLOCK, &mask, NULL);
521 }
522
523 execl("/bin/sh", "sh", "-c", command, (char *) NULL);
524 exit(127);
525 }
526
527 /* parent */
528
529 close(child_end);
530 child_end = -1;
531
532 if (child_pid < 0) {
533 ERROR("fork failure");
534 goto error;
535 }
536
537 fp = calloc(1, sizeof(*fp));
538 if (!fp) {
539 ERROR("failed to allocate memory");
540 goto error;
541 }
542
543 fp->f = fdopen(parent_end, "r");
544 if (!fp->f) {
545 ERROR("fdopen failure");
546 goto error;
547 }
548
549 fp->child_pid = child_pid;
550
551 return fp;
552
553error:
554
555 if (fp) {
556 if (fp->f) {
557 fclose(fp->f);
558 parent_end = -1; /* so we do not close it second time */
559 }
560
561 free(fp);
562 }
563
ebec9176
AM		 564 if (parent_end != -1)
565 close(parent_end);
566
567 return NULL;
568}
569
ebec9176
AM		 570extern int lxc_pclose(struct lxc_popen_FILE *fp)
571{
572 FILE *f = NULL;
573 pid_t child_pid = 0;
574 int wstatus = 0;
575 pid_t wait_pid;
576
577 if (fp) {
578 f = fp->f;
579 child_pid = fp->child_pid;
580 /* free memory (we still need to close file stream) */
581 free(fp);
582 fp = NULL;
583 }
584
585 if (!f || fclose(f)) {
586 ERROR("fclose failure");
587 return -1;
588 }
589
590 do {
591 wait_pid = waitpid(child_pid, &wstatus, 0);
592 } while (wait_pid == -1 && errno == EINTR);
593
594 if (wait_pid == -1) {
595 ERROR("waitpid failure");
596 return -1;
597 }
598
599 return wstatus;
600}
601
502657d5
CS		 602char *lxc_string_replace(const char *needle, const char *replacement, const char *haystack)
603{
604 ssize_t len = -1, saved_len = -1;
605 char *result = NULL;
606 size_t replacement_len = strlen(replacement);
607 size_t needle_len = strlen(needle);
608
609 /* should be executed exactly twice */
610 while (len == -1 || result == NULL) {
611 char *p;
612 char *last_p;
613 ssize_t part_len;
614
615 if (len != -1) {
616 result = calloc(1, len + 1);
617 if (!result)
618 return NULL;
619 saved_len = len;
620 }
621
622 len = 0;
623
624 for (last_p = (char *)haystack, p = strstr(last_p, needle); p; last_p = p, p = strstr(last_p, needle)) {
625 part_len = (ssize_t)(p - last_p);
626 if (result && part_len > 0)
627 memcpy(&result[len], last_p, part_len);
628 len += part_len;
629 if (result && replacement_len > 0)
630 memcpy(&result[len], replacement, replacement_len);
631 len += replacement_len;
632 p += needle_len;
633 }
634 part_len = strlen(last_p);
635 if (result && part_len > 0)
636 memcpy(&result[len], last_p, part_len);
637 len += part_len;
638 }
639
640 /* make sure we did the same thing twice,
641 * once for calculating length, the other
642 * time for copying data */
97bc2422
CB		 643 if (saved_len != len) {
644 free(result);
645 return NULL;
646 }
502657d5
CS		 647 /* make sure we didn't overwrite any buffer,
648 * due to calloc the string should be 0-terminated */
97bc2422
CB		 649 if (result[len] != '\0') {
650 free(result);
651 return NULL;
652 }
502657d5
CS		 653
654 return result;
655}
656
657bool lxc_string_in_array(const char *needle, const char **haystack)
658{
659 for (; haystack && *haystack; haystack++)
660 if (!strcmp(needle, *haystack))
661 return true;
662 return false;
663}
664
665char *lxc_string_join(const char *sep, const char **parts, bool use_as_prefix)
666{
667 char *result;
668 char **p;
669 size_t sep_len = strlen(sep);
670 size_t result_len = use_as_prefix * sep_len;
671
672 /* calculate new string length */
673 for (p = (char **)parts; *p; p++)
674 result_len += (p > (char **)parts) * sep_len + strlen(*p);
675
676 result = calloc(result_len + 1, 1);
677 if (!result)
678 return NULL;
679
680 if (use_as_prefix)
681 strcpy(result, sep);
682 for (p = (char **)parts; *p; p++) {
683 if (p > (char **)parts)
684 strcat(result, sep);
685 strcat(result, *p);
686 }
687
688 return result;
689}
690
691char **lxc_normalize_path(const char *path)
692{
693 char **components;
694 char **p;
695 size_t components_len = 0;
696 size_t pos = 0;
697
698 components = lxc_string_split(path, '/');
699 if (!components)
700 return NULL;
701 for (p = components; *p; p++)
702 components_len++;
703
704 /* resolve '.' and '..' */
705 for (pos = 0; pos < components_len; ) {
706 if (!strcmp(components[pos], ".") || (!strcmp(components[pos], "..") && pos == 0)) {
707 /* eat this element */
708 free(components[pos]);
709 memmove(&components[pos], &components[pos+1], sizeof(char *) * (components_len - pos));
710 components_len--;
711 } else if (!strcmp(components[pos], "..")) {
712 /* eat this and the previous element */
713 free(components[pos - 1]);
714 free(components[pos]);
715 memmove(&components[pos-1], &components[pos+1], sizeof(char *) * (components_len - pos));
716 components_len -= 2;
717 pos--;
718 } else {
719 pos++;
720 }
721 }
722
723 return components;
724}
725
c56a9652 726bool lxc_deslashify(char **path)
aeb3682f 727{
f85b16a1 728 bool ret = false;
c56a9652
CB		 729 char *p;
730 char **parts = NULL;
731 size_t n, len;
aeb3682f 732
c56a9652 733 parts = lxc_normalize_path(*path);
aeb3682f
TA		 734 if (!parts)
735 return false;
736
c56a9652
CB		 737 /* We'll end up here if path == "///" or path == "". */
738 if (!*parts) {
739 len = strlen(*path);
f85b16a1
CB		 740 if (!len) {
741 ret = true;
742 goto out;
743 }
c56a9652
CB		 744 n = strcspn(*path, "/");
745 if (n == len) {
746 p = strdup("/");
747 if (!p)
f85b16a1 748 goto out;
c56a9652
CB		 749 free(*path);
750 *path = p;
f85b16a1
CB		 751 ret = true;
752 goto out;
c56a9652
CB		 753 }
754 }
755
756 p = lxc_string_join("/", (const char **)parts, **path == '/');
c56a9652 757 if (!p)
f85b16a1 758 goto out;
aeb3682f 759
c56a9652
CB		 760 free(*path);
761 *path = p;
f85b16a1 762 ret = true;
c56a9652 763
f85b16a1
CB		 764out:
765 lxc_free_array((void **)parts, free);
766 return ret;
aeb3682f
TA		 767}
768
24b51482
CS		 769char *lxc_append_paths(const char *first, const char *second)
770{
771 size_t len = strlen(first) + strlen(second) + 1;
772 const char *pattern = "%s%s";
773 char *result = NULL;
774
775 if (second[0] != '/') {
776 len += 1;
777 pattern = "%s/%s";
778 }
779
780 result = calloc(1, len);
781 if (!result)
782 return NULL;
783
784 snprintf(result, len, pattern, first, second);
785 return result;
786}
787
502657d5
CS		 788bool lxc_string_in_list(const char *needle, const char *haystack, char _sep)
789{
790 char *token, *str, *saveptr = NULL;
791 char sep[2] = { _sep, '\0' };
792
793 if (!haystack || !needle)
794 return 0;
795
796 str = alloca(strlen(haystack)+1);
797 strcpy(str, haystack);
798 for (; (token = strtok_r(str, sep, &saveptr)); str = NULL) {
799 if (strcmp(needle, token) == 0)
800 return 1;
801 }
802
803 return 0;
804}
805
806char **lxc_string_split(const char *string, char _sep)
807{
808 char *token, *str, *saveptr = NULL;
605ea1f7
CB		 809 char sep[2] = {_sep, '\0'};
810 char **tmp = NULL, **result = NULL;
502657d5
CS		 811 size_t result_capacity = 0;
812 size_t result_count = 0;
813 int r, saved_errno;
814
815 if (!string)
816 return calloc(1, sizeof(char *));
817
605ea1f7 818 str = alloca(strlen(string) + 1);
502657d5
CS		 819 strcpy(str, string);
820 for (; (token = strtok_r(str, sep, &saveptr)); str = NULL) {
821 r = lxc_grow_array((void ***)&result, &result_capacity, result_count + 1, 16);
822 if (r < 0)
823 goto error_out;
824 result[result_count] = strdup(token);
825 if (!result[result_count])
826 goto error_out;
827 result_count++;
828 }
829
830 /* if we allocated too much, reduce it */
605ea1f7
CB		 831 tmp = realloc(result, (result_count + 1) * sizeof(char *));
832 if (!tmp)
833 goto error_out;
834 result = tmp;
835 /* Make sure we don't return uninitialized memory. */
836 if (result_count == 0)
837 *result = NULL;
838 return result;
502657d5
CS		 839error_out:
840 saved_errno = errno;
841 lxc_free_array((void **)result, free);
842 errno = saved_errno;
843 return NULL;
844}
845
846char **lxc_string_split_and_trim(const char *string, char _sep)
847{
848 char *token, *str, *saveptr = NULL;
849 char sep[2] = { _sep, '\0' };
850 char **result = NULL;
851 size_t result_capacity = 0;
852 size_t result_count = 0;
853 int r, saved_errno;
854 size_t i = 0;
855
856 if (!string)
857 return calloc(1, sizeof(char *));
858
859 str = alloca(strlen(string)+1);
860 strcpy(str, string);
861 for (; (token = strtok_r(str, sep, &saveptr)); str = NULL) {
862 while (token[0] == ' ' || token[0] == '\t')
863 token++;
864 i = strlen(token);
865 while (i > 0 && (token[i - 1] == ' ' || token[i - 1] == '\t')) {
866 token[i - 1] = '\0';
867 i--;
868 }
869 r = lxc_grow_array((void ***)&result, &result_capacity, result_count + 1, 16);
870 if (r < 0)
871 goto error_out;
872 result[result_count] = strdup(token);
873 if (!result[result_count])
874 goto error_out;
875 result_count++;
876 }
877
878 /* if we allocated too much, reduce it */
879 return realloc(result, (result_count + 1) * sizeof(char *));
880error_out:
881 saved_errno = errno;
882 lxc_free_array((void **)result, free);
883 errno = saved_errno;
884 return NULL;
885}
886
887void lxc_free_array(void **array, lxc_free_fn element_free_fn)
888{
889 void **p;
890 for (p = array; p && *p; p++)
891 element_free_fn(*p);
892 free((void*)array);
893}
894
895int lxc_grow_array(void ***array, size_t* capacity, size_t new_size, size_t capacity_increment)
896{
897 size_t new_capacity;
898 void **new_array;
899
900 /* first time around, catch some trivial mistakes of the user
901 * only initializing one of these */
902 if (!*array || !*capacity) {
903 *array = NULL;
904 *capacity = 0;
905 }
906
907 new_capacity = *capacity;
908 while (new_size + 1 > new_capacity)
909 new_capacity += capacity_increment;
910 if (new_capacity != *capacity) {
911 /* we have to reallocate */
912 new_array = realloc(*array, new_capacity * sizeof(void *));
913 if (!new_array)
914 return -1;
915 memset(&new_array[*capacity], 0, (new_capacity - (*capacity)) * sizeof(void *));
916 *array = new_array;
917 *capacity = new_capacity;
918 }
919
920 /* array has sufficient elements */
921 return 0;
922}
923
924size_t lxc_array_len(void **array)
925{
926 void **p;
927 size_t result = 0;
928
929 for (p = array; p && *p; p++)
930 result++;
931
932 return result;
933}
934
0e95426b
CS		 935int lxc_write_to_file(const char *filename, const void* buf, size_t count, bool add_newline)
936{
937 int fd, saved_errno;
938 ssize_t ret;
939
940 fd = open(filename, O_WRONLY | O_TRUNC | O_CREAT | O_CLOEXEC, 0666);
941 if (fd < 0)
942 return -1;
943 ret = lxc_write_nointr(fd, buf, count);
944 if (ret < 0)
799f29ab 945 goto out_error;
0e95426b
CS		 946 if ((size_t)ret != count)
947 goto out_error;
948 if (add_newline) {
949 ret = lxc_write_nointr(fd, "\n", 1);
950 if (ret != 1)
951 goto out_error;
952 }
953 close(fd);
954 return 0;
955
956out_error:
957 saved_errno = errno;
958 close(fd);
959 errno = saved_errno;
960 return -1;
961}
962
963int lxc_read_from_file(const char *filename, void* buf, size_t count)
964{
965 int fd = -1, saved_errno;
966 ssize_t ret;
967
968 fd = open(filename, O_RDONLY | O_CLOEXEC);
969 if (fd < 0)
970 return -1;
971
972 if (!buf || !count) {
973 char buf2[100];
974 size_t count2 = 0;
975 while ((ret = read(fd, buf2, 100)) > 0)
976 count2 += ret;
977 if (ret >= 0)
978 ret = count2;
979 } else {
980 memset(buf, 0, count);
981 ret = read(fd, buf, count);
982 }
983
984 if (ret < 0)
985 ERROR("read %s: %s", filename, strerror(errno));
986
987 saved_errno = errno;
988 close(fd);
989 errno = saved_errno;
990 return ret;
991}
799f29ab
ÇO		 992
993void **lxc_append_null_to_array(void **array, size_t count)
994{
995 void **temp;
996
997 /* Append NULL to the array */
998 if (count) {
999 temp = realloc(array, (count + 1) * sizeof(*array));
1000 if (!temp) {
84760c11 1001 size_t i;
799f29ab
ÇO		 1002 for (i = 0; i < count; i++)
1003 free(array[i]);
1004 free(array);
1005 return NULL;
1006 }
1007 array = temp;
1008 array[count] = NULL;
1009 }
1010 return array;
1011}
508c263e
SH		 1012
1013int randseed(bool srand_it)
1014{
1015 /*
1016 srand pre-seed function based on /dev/urandom
1017 */
091045f8 1018 unsigned int seed = time(NULL) + getpid();
508c263e
SH		 1019
1020 FILE *f;
1021 f = fopen("/dev/urandom", "r");
1022 if (f) {
1023 int ret = fread(&seed, sizeof(seed), 1, f);
1024 if (ret != 1)
1025 DEBUG("unable to fread /dev/urandom, %s, fallback to time+pid rand seed", strerror(errno));
1026 fclose(f);
1027 }
1028
1029 if (srand_it)
1030 srand(seed);
1031
1032 return seed;
1033}
5d897655
SH		 1034
1035uid_t get_ns_uid(uid_t orig)
1036{
1037 char *line = NULL;
1038 size_t sz = 0;
1039 uid_t nsid, hostid, range;
1040 FILE *f = fopen("/proc/self/uid_map", "r");
1041 if (!f)
1042 return 0;
1043
1044 while (getline(&line, &sz, f) != -1) {
1045 if (sscanf(line, "%u %u %u", &nsid, &hostid, &range) != 3)
1046 continue;
1047 if (hostid <= orig && hostid + range > orig) {
1048 nsid += orig - hostid;
1049 goto found;
1050 }
1051 }
1052
1053 nsid = 0;
1054found:
1055 fclose(f);
1056 free(line);
1057 return nsid;
1058}
c476bdce
SH		 1059
1060bool dir_exists(const char *path)
1061{
1062 struct stat sb;
1063 int ret;
1064
1065 ret = stat(path, &sb);
1066 if (ret < 0)
1067 // could be something other than eexist, just say no
1068 return false;
1069 return S_ISDIR(sb.st_mode);
1070}
93c379f0
ÇO		 1071
1072/* Note we don't use SHA-1 here as we don't want to depend on HAVE_GNUTLS.
1073 * FNV has good anti collision properties and we're not worried
1074 * about pre-image resistance or one-way-ness, we're just trying to make
1075 * the name unique in the 108 bytes of space we have.
1076 */
1077uint64_t fnv_64a_buf(void *buf, size_t len, uint64_t hval)
1078{
1079 unsigned char *bp;
1080
1081 for(bp = buf; bp < (unsigned char *)buf + len; bp++)
1082 {
1083 /* xor the bottom with the current octet */
1084 hval ^= (uint64_t)*bp;
1085
1086 /* gcc optimised:
1087 * multiply by the 64 bit FNV magic prime mod 2^64
1088 */
1089 hval += (hval << 1) + (hval << 4) + (hval << 5) +
1090 (hval << 7) + (hval << 8) + (hval << 40);
1091 }
1092
1093 return hval;
1094}
2c6f3fc9
SH		 1095
1096/*
1097 * Detect whether / is mounted MS_SHARED. The only way I know of to
1098 * check that is through /proc/self/mountinfo.
1099 * I'm only checking for /. If the container rootfs or mount location
1100 * is MS_SHARED, but not '/', then you're out of luck - figuring that
1101 * out would be too much work to be worth it.
1102 */
2c6f3fc9
SH		 1103int detect_shared_rootfs(void)
1104{
eab15c1e 1105 char buf[LXC_LINELEN], *p;
2c6f3fc9
SH		 1106 FILE *f;
1107 int i;
1108 char *p2;
1109
1110 f = fopen("/proc/self/mountinfo", "r");
1111 if (!f)
1112 return 0;
eab15c1e
CB		 1113 while (fgets(buf, LXC_LINELEN, f)) {
1114 for (p = buf, i = 0; p && i < 4; i++)
1115 p = strchr(p + 1, ' ');
2c6f3fc9
SH		 1116 if (!p)
1117 continue;
eab15c1e 1118 p2 = strchr(p + 1, ' ');
2c6f3fc9
SH		 1119 if (!p2)
1120 continue;
1121 *p2 = '\0';
eab15c1e 1122 if (strcmp(p + 1, "/") == 0) {
2c6f3fc9 1123 // this is '/'. is it shared?
eab15c1e 1124 p = strchr(p2 + 1, ' ');
2c6f3fc9
SH		 1125 if (p && strstr(p, "shared:")) {
1126 fclose(f);
1127 return 1;
1128 }
1129 }
1130 }
1131 fclose(f);
1132 return 0;
1133}
0e6e3a41 1134
51d0854c
DY		 1135bool switch_to_ns(pid_t pid, const char *ns) {
1136 int fd, ret;
1137 char nspath[MAXPATHLEN];
1138
1139 /* Switch to new ns */
1140 ret = snprintf(nspath, MAXPATHLEN, "/proc/%d/ns/%s", pid, ns);
1141 if (ret < 0 || ret >= MAXPATHLEN)
1142 return false;
1143
1144 fd = open(nspath, O_RDONLY);
1145 if (fd < 0) {
1146 SYSERROR("failed to open %s", nspath);
1147 return false;
1148 }
1149
1150 ret = setns(fd, 0);
1151 if (ret) {
1152 SYSERROR("failed to set process %d to %s of %d.", pid, ns, fd);
1153 close(fd);
1154 return false;
1155 }
1156 close(fd);
1157 return true;
1158}
1159
b7f954bb
SH		 1160/*
1161 * looking at fs/proc_namespace.c, it appears we can
1162 * actually expect the rootfs entry to very specifically contain
1163 * " - rootfs rootfs "
1164 * IIUC, so long as we've chrooted so that rootfs is not our root,
1165 * the rootfs entry should always be skipped in mountinfo contents.
1166 */
fa454c8e 1167bool detect_ramfs_rootfs(void)
b7f954bb 1168{
b7f954bb 1169 FILE *f;
fa454c8e
CB		 1170 char *p, *p2;
1171 char *line = NULL;
1172 size_t len = 0;
b7f954bb 1173 int i;
b7f954bb
SH		 1174
1175 f = fopen("/proc/self/mountinfo", "r");
1176 if (!f)
fa454c8e
CB		 1177 return false;
1178
1179 while (getline(&line, &len, f) != -1) {
1180 for (p = line, i = 0; p && i < 4; i++)
1181 p = strchr(p + 1, ' ');
b7f954bb
SH		 1182 if (!p)
1183 continue;
fa454c8e 1184 p2 = strchr(p + 1, ' ');
b7f954bb
SH		 1185 if (!p2)
1186 continue;
1187 *p2 = '\0';
fa454c8e 1188 if (strcmp(p + 1, "/") == 0) {
b7f954bb 1189 // this is '/'. is it the ramfs?
fa454c8e 1190 p = strchr(p2 + 1, '-');
b7f954bb 1191 if (p && strncmp(p, "- rootfs rootfs ", 16) == 0) {
fa454c8e 1192 free(line);
b7f954bb 1193 fclose(f);
fa454c8e 1194 return true;
b7f954bb
SH		 1195 }
1196 }
1197 }
fa454c8e 1198 free(line);
b7f954bb 1199 fclose(f);
fa454c8e 1200 return false;
b7f954bb
SH		 1201}
1202
df6a2945 1203char *on_path(const char *cmd, const char *rootfs) {
0e6e3a41
SG		 1204 char *path = NULL;
1205 char *entry = NULL;
1206 char *saveptr = NULL;
1207 char cmdpath[MAXPATHLEN];
1208 int ret;
1209
1210 path = getenv("PATH");
1211 if (!path)
8afb3e61 1212 return NULL;
0e6e3a41
SG		 1213
1214 path = strdup(path);
1215 if (!path)
8afb3e61 1216 return NULL;
0e6e3a41
SG		 1217
1218 entry = strtok_r(path, ":", &saveptr);
1219 while (entry) {
9d9c111c
SH		 1220 if (rootfs)
1221 ret = snprintf(cmdpath, MAXPATHLEN, "%s/%s/%s", rootfs, entry, cmd);
1222 else
1223 ret = snprintf(cmdpath, MAXPATHLEN, "%s/%s", entry, cmd);
0e6e3a41
SG		 1224
1225 if (ret < 0 || ret >= MAXPATHLEN)
1226 goto next_loop;
1227
1228 if (access(cmdpath, X_OK) == 0) {
1229 free(path);
8afb3e61 1230 return strdup(cmdpath);
0e6e3a41
SG		 1231 }
1232
1233next_loop:
b707e368 1234 entry = strtok_r(NULL, ":", &saveptr);
0e6e3a41
SG		 1235 }
1236
1237 free(path);
8afb3e61 1238 return NULL;
0e6e3a41 1239}
76a26f55
SH		 1240
1241bool file_exists(const char *f)
1242{
1243 struct stat statbuf;
1244
1245 return stat(f, &statbuf) == 0;
1246}
9d9c111c 1247
12983ba4
SH		 1248bool cgns_supported(void)
1249{
1250 return file_exists("/proc/self/ns/cgroup");
1251}
1252
9d9c111c
SH		 1253/* historically lxc-init has been under /usr/lib/lxc and under
1254 * /usr/lib/$ARCH/lxc. It now lives as $prefix/sbin/init.lxc.
1255 */
1256char *choose_init(const char *rootfs)
1257{
1258 char *retv = NULL;
370ec268
SF		 1259 const char *empty = "",
1260 *tmp;
9d9c111c
SH		 1261 int ret, env_set = 0;
1262 struct stat mystat;
1263
1264 if (!getenv("PATH")) {
1265 if (setenv("PATH", "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin", 0))
1266 SYSERROR("Failed to setenv");
1267 env_set = 1;
1268 }
1269
1270 retv = on_path("init.lxc", rootfs);
1271
1272 if (env_set) {
1273 if (unsetenv("PATH"))
1274 SYSERROR("Failed to unsetenv");
1275 }
1276
1277 if (retv)
1278 return retv;
1279
1280 retv = malloc(PATH_MAX);
1281 if (!retv)
1282 return NULL;
1283
1284 if (rootfs)
370ec268 1285 tmp = rootfs;
9d9c111c 1286 else
370ec268
SF		 1287 tmp = empty;
1288
1289 ret = snprintf(retv, PATH_MAX, "%s/%s/%s", tmp, SBINDIR, "/init.lxc");
9d9c111c
SH		 1290 if (ret < 0 || ret >= PATH_MAX) {
1291 ERROR("pathname too long");
1292 goto out1;
1293 }
1294
1295 ret = stat(retv, &mystat);
1296 if (ret == 0)
1297 return retv;
1298
370ec268 1299 ret = snprintf(retv, PATH_MAX, "%s/%s/%s", tmp, LXCINITDIR, "/lxc/lxc-init");
9d9c111c
SH		 1300 if (ret < 0 || ret >= PATH_MAX) {
1301 ERROR("pathname too long");
1302 goto out1;
1303 }
1304
1305 ret = stat(retv, &mystat);
1306 if (ret == 0)
1307 return retv;
1308
370ec268 1309 ret = snprintf(retv, PATH_MAX, "%s/usr/lib/lxc/lxc-init", tmp);
9d9c111c
SH		 1310 if (ret < 0 || ret >= PATH_MAX) {
1311 ERROR("pathname too long");
1312 goto out1;
1313 }
1314 ret = stat(retv, &mystat);
1315 if (ret == 0)
1316 return retv;
1317
370ec268 1318 ret = snprintf(retv, PATH_MAX, "%s/sbin/lxc-init", tmp);
9d9c111c
SH		 1319 if (ret < 0 || ret >= PATH_MAX) {
1320 ERROR("pathname too long");
1321 goto out1;
1322 }
1323 ret = stat(retv, &mystat);
1324 if (ret == 0)
1325 return retv;
1326
1327 /*
1328 * Last resort, look for the statically compiled init.lxc which we
1329 * hopefully bind-mounted in.
1330 * If we are called during container setup, and we get to this point,
1331 * then the init.lxc.static from the host will need to be bind-mounted
1332 * in. So we return NULL here to indicate that.
1333 */
1334 if (rootfs)
1335 goto out1;
1336
1337 ret = snprintf(retv, PATH_MAX, "/init.lxc.static");
1338 if (ret < 0 || ret >= PATH_MAX) {
1339 WARN("Nonsense - name /lxc.init.static too long");
1340 goto out1;
1341 }
1342 ret = stat(retv, &mystat);
1343 if (ret == 0)
1344 return retv;
1345
1346out1:
1347 free(retv);
1348 return NULL;
1349}
735f2c6e
TA		 1350
1351int print_to_file(const char *file, const char *content)
1352{
1353 FILE *f;
1354 int ret = 0;
1355
1356 f = fopen(file, "w");
1357 if (!f)
1358 return -1;
1359 if (fprintf(f, "%s", content) != strlen(content))
1360 ret = -1;
1361 fclose(f);
1362 return ret;
1363}
e1daebd9
SH		 1364
1365int is_dir(const char *path)
1366{
1367 struct stat statbuf;
1368 int ret = stat(path, &statbuf);
1369 if (ret == 0 && S_ISDIR(statbuf.st_mode))
1370 return 1;
1371 return 0;
1372}
6010a416
SG		 1373
1374/*
1375 * Given the '-t' template option to lxc-create, figure out what to
1376 * do. If the template is a full executable path, use that. If it
1377 * is something like 'sshd', then return $templatepath/lxc-sshd.
1378 * On success return the template, on error return NULL.
1379 */
1380char *get_template_path(const char *t)
1381{
1382 int ret, len;
1383 char *tpath;
1384
1385 if (t[0] == '/' && access(t, X_OK) == 0) {
1386 tpath = strdup(t);
1387 return tpath;
1388 }
1389
1390 len = strlen(LXCTEMPLATEDIR) + strlen(t) + strlen("/lxc-") + 1;
1391 tpath = malloc(len);
1392 if (!tpath)
1393 return NULL;
1394 ret = snprintf(tpath, len, "%s/lxc-%s", LXCTEMPLATEDIR, t);
1395 if (ret < 0 || ret >= len) {
1396 free(tpath);
1397 return NULL;
1398 }
1399 if (access(tpath, X_OK) < 0) {
1400 SYSERROR("bad template: %s", t);
1401 free(tpath);
1402 return NULL;
1403 }
1404
1405 return tpath;
1406}
0a4be28d
TA		 1407
1408/*
7d6c20f2
TA		 1409 * Sets the process title to the specified title. Note that this may fail if
1410 * the kernel doesn't support PR_SET_MM_MAP (kernels <3.18).
0a4be28d
TA		 1411 */
1412int setproctitle(char *title)
1413{
058b94fe 1414 static char *proctitle = NULL;
0a4be28d
TA		 1415 char buf[2048], *tmp;
1416 FILE *f;
1417 int i, len, ret = 0;
93525c00
TA		 1418
1419 /* We don't really need to know all of this stuff, but unfortunately
1420 * PR_SET_MM_MAP requires us to set it all at once, so we have to
1421 * figure it out anyway.
1422 */
1423 unsigned long start_data, end_data, start_brk, start_code, end_code,
1424 start_stack, arg_start, arg_end, env_start, env_end,
1425 brk_val;
1426 struct prctl_mm_map prctl_map;
0a4be28d
TA		 1427
1428 f = fopen_cloexec("/proc/self/stat", "r");
1429 if (!f) {
1430 return -1;
1431 }
1432
1433 tmp = fgets(buf, sizeof(buf), f);
1434 fclose(f);
1435 if (!tmp) {
1436 return -1;
1437 }
1438
93525c00
TA		 1439 /* Skip the first 25 fields, column 26-28 are start_code, end_code,
1440 * and start_stack */
0a4be28d 1441 tmp = strchr(buf, ' ');
93525c00 1442 for (i = 0; i < 24; i++) {
0a4be28d
TA		 1443 if (!tmp)
1444 return -1;
1445 tmp = strchr(tmp+1, ' ');
1446 }
73c1c887
SH		 1447 if (!tmp)
1448 return -1;
1449
93525c00
TA		 1450 i = sscanf(tmp, "%lu %lu %lu", &start_code, &end_code, &start_stack);
1451 if (i != 3)
0a4be28d 1452 return -1;
93525c00
TA		 1453
1454 /* Skip the next 19 fields, column 45-51 are start_data to arg_end */
1455 for (i = 0; i < 19; i++) {
1456 if (!tmp)
1457 return -1;
1458 tmp = strchr(tmp+1, ' ');
0a4be28d
TA		 1459 }
1460
93525c00
TA		 1461 if (!tmp)
1462 return -1;
1463
be69ad43 1464 i = sscanf(tmp, "%lu %lu %lu %*u %*u %lu %lu",
93525c00
TA		 1465 &start_data,
1466 &end_data,
1467 &start_brk,
93525c00
TA		 1468 &env_start,
1469 &env_end);
be69ad43 1470 if (i != 5)
93525c00
TA		 1471 return -1;
1472
96fe6d1d
TA		 1473 /* Include the null byte here, because in the calculations below we
1474 * want to have room for it. */
1475 len = strlen(title) + 1;
1476
be69ad43
TA		 1477 proctitle = realloc(proctitle, len);
1478 if (!proctitle)
1479 return -1;
0a4be28d 1480
be69ad43 1481 arg_start = (unsigned long) proctitle;
058b94fe
TA		 1482 arg_end = arg_start + len;
1483
93525c00 1484 brk_val = syscall(__NR_brk, 0);
0a4be28d 1485
93525c00
TA		 1486 prctl_map = (struct prctl_mm_map) {
1487 .start_code = start_code,
1488 .end_code = end_code,
1489 .start_stack = start_stack,
1490 .start_data = start_data,
1491 .end_data = end_data,
1492 .start_brk = start_brk,
1493 .brk = brk_val,
1494 .arg_start = arg_start,
1495 .arg_end = arg_end,
1496 .env_start = env_start,
1497 .env_end = env_end,
1498 .auxv = NULL,
1499 .auxv_size = 0,
1500 .exe_fd = -1,
1501 };
1502
1503 ret = prctl(PR_SET_MM, PR_SET_MM_MAP, (long) &prctl_map, sizeof(prctl_map), 0);
1504 if (ret == 0)
1505 strcpy((char*)arg_start, title);
1506 else
2681c0e7 1507 INFO("setting cmdline failed - %s", strerror(errno));
0a4be28d
TA		 1508
1509 return ret;
1510}
ced03a01 1511
592fd47a
SH		 1512/*
1513 * @path: a pathname where / replaced with '\0'.
1514 * @offsetp: pointer to int showing which path segment was last seen.
1515 * Updated on return to reflect the next segment.
1516 * @fulllen: full original path length.
1517 * Returns a pointer to the next path segment, or NULL if done.
1518 */
1519static char *get_nextpath(char *path, int *offsetp, int fulllen)
1520{
1521 int offset = *offsetp;
1522
1523 if (offset >= fulllen)
1524 return NULL;
1525
1526 while (path[offset] != '\0' && offset < fulllen)
1527 offset++;
1528 while (path[offset] == '\0' && offset < fulllen)
1529 offset++;
1530
1531 *offsetp = offset;
1532 return (offset < fulllen) ? &path[offset] : NULL;
1533}
1534
1535/*
1536 * Check that @subdir is a subdir of @dir. @len is the length of
1537 * @dir (to avoid having to recalculate it).
1538 */
1539static bool is_subdir(const char *subdir, const char *dir, size_t len)
1540{
1541 size_t subdirlen = strlen(subdir);
1542
1543 if (subdirlen < len)
1544 return false;
1545 if (strncmp(subdir, dir, len) != 0)
1546 return false;
1547 if (dir[len-1] == '/')
1548 return true;
1549 if (subdir[len] == '/' || subdirlen == len)
1550 return true;
1551 return false;
1552}
1553
1554/*
1555 * Check if the open fd is a symlink. Return -ELOOP if it is. Return
1556 * -ENOENT if we couldn't fstat. Return 0 if the fd is ok.
1557 */
1558static int check_symlink(int fd)
1559{
1560 struct stat sb;
1561 int ret = fstat(fd, &sb);
1562 if (ret < 0)
1563 return -ENOENT;
1564 if (S_ISLNK(sb.st_mode))
1565 return -ELOOP;
1566 return 0;
1567}
1568
1569/*
1570 * Open a file or directory, provided that it contains no symlinks.
1571 *
1572 * CAVEAT: This function must not be used for other purposes than container
1573 * setup before executing the container's init
1574 */
1575static int open_if_safe(int dirfd, const char *nextpath)
1576{
1577 int newfd = openat(dirfd, nextpath, O_RDONLY | O_NOFOLLOW);
1578 if (newfd >= 0) // was not a symlink, all good
1579 return newfd;
1580
1581 if (errno == ELOOP)
1582 return newfd;
1583
1584 if (errno == EPERM || errno == EACCES) {
1585 /* we're not root (cause we got EPERM) so
1586 try opening with O_PATH */
1587 newfd = openat(dirfd, nextpath, O_PATH | O_NOFOLLOW);
1588 if (newfd >= 0) {
1589 /* O_PATH will return an fd for symlinks. We know
1590 * nextpath wasn't a symlink at last openat, so if fd
1591 * is now a link, then something * fishy is going on
1592 */
1593 int ret = check_symlink(newfd);
1594 if (ret < 0) {
1595 close(newfd);
1596 newfd = ret;
1597 }
1598 }
1599 }
1600
1601 return newfd;
1602}
1603
1604/*
1605 * Open a path intending for mounting, ensuring that the final path
1606 * is inside the container's rootfs.
1607 *
1608 * CAVEAT: This function must not be used for other purposes than container
1609 * setup before executing the container's init
1610 *
1611 * @target: path to be opened
1612 * @prefix_skip: a part of @target in which to ignore symbolic links. This
1613 * would be the container's rootfs.
1614 *
1615 * Return an open fd for the path, or <0 on error.
1616 */
1617static int open_without_symlink(const char *target, const char *prefix_skip)
1618{
1619 int curlen = 0, dirfd, fulllen, i;
1620 char *dup = NULL;
1621
1622 fulllen = strlen(target);
1623
1624 /* make sure prefix-skip makes sense */
01074e5b 1625 if (prefix_skip && strlen(prefix_skip) > 0) {
592fd47a
SH		 1626 curlen = strlen(prefix_skip);
1627 if (!is_subdir(target, prefix_skip, curlen)) {
1628 ERROR("WHOA there - target '%s' didn't start with prefix '%s'",
1629 target, prefix_skip);
1630 return -EINVAL;
1631 }
1632 /*
1633 * get_nextpath() expects the curlen argument to be
1634 * on a (turned into \0) / or before it, so decrement
1635 * curlen to make sure that happens
1636 */
1637 if (curlen)
1638 curlen--;
1639 } else {
1640 prefix_skip = "/";
1641 curlen = 0;
1642 }
1643
1644 /* Make a copy of target which we can hack up, and tokenize it */
1645 if ((dup = strdup(target)) == NULL) {
1646 SYSERROR("Out of memory checking for symbolic link");
1647 return -ENOMEM;
1648 }
1649 for (i = 0; i < fulllen; i++) {
1650 if (dup[i] == '/')
1651 dup[i] = '\0';
1652 }
1653
1654 dirfd = open(prefix_skip, O_RDONLY);
1655 if (dirfd < 0)
1656 goto out;
1657 while (1) {
1658 int newfd, saved_errno;
1659 char *nextpath;
1660
1661 if ((nextpath = get_nextpath(dup, &curlen, fulllen)) == NULL)
1662 goto out;
1663 newfd = open_if_safe(dirfd, nextpath);
1664 saved_errno = errno;
1665 close(dirfd);
1666 dirfd = newfd;
1667 if (newfd < 0) {
1668 errno = saved_errno;
1669 if (errno == ELOOP)
1670 SYSERROR("%s in %s was a symbolic link!", nextpath, target);
592fd47a
SH		 1671 goto out;
1672 }
1673 }
1674
1675out:
1676 free(dup);
1677 return dirfd;
1678}
1679
1680/*
1681 * Safely mount a path into a container, ensuring that the mount target
1682 * is under the container's @rootfs. (If @rootfs is NULL, then the container
1683 * uses the host's /)
1684 *
1685 * CAVEAT: This function must not be used for other purposes than container
1686 * setup before executing the container's init
1687 */
1688int safe_mount(const char *src, const char *dest, const char *fstype,
1689 unsigned long flags, const void *data, const char *rootfs)
1690{
1691 int srcfd = -1, destfd, ret, saved_errno;
1692 char srcbuf[50], destbuf[50]; // only needs enough for /proc/self/fd/<fd>
1693 const char *mntsrc = src;
1694
1695 if (!rootfs)
1696 rootfs = "";
1697
1698 /* todo - allow symlinks for relative paths if 'allowsymlinks' option is passed */
1699 if (flags & MS_BIND && src && src[0] != '/') {
1700 INFO("this is a relative bind mount");
1701 srcfd = open_without_symlink(src, NULL);
1702 if (srcfd < 0)
1703 return srcfd;
1704 ret = snprintf(srcbuf, 50, "/proc/self/fd/%d", srcfd);
1705 if (ret < 0 || ret > 50) {
1706 close(srcfd);
1707 ERROR("Out of memory");
1708 return -EINVAL;
1709 }
1710 mntsrc = srcbuf;
1711 }
1712
1713 destfd = open_without_symlink(dest, rootfs);
1714 if (destfd < 0) {
88e078ba
CB		 1715 if (srcfd != -1) {
1716 saved_errno = errno;
592fd47a 1717 close(srcfd);
88e078ba
CB		 1718 errno = saved_errno;
1719 }
592fd47a
SH		 1720 return destfd;
1721 }
1722
1723 ret = snprintf(destbuf, 50, "/proc/self/fd/%d", destfd);
1724 if (ret < 0 || ret > 50) {
1725 if (srcfd != -1)
1726 close(srcfd);
1727 close(destfd);
1728 ERROR("Out of memory");
1729 return -EINVAL;
1730 }
1731
1732 ret = mount(mntsrc, destbuf, fstype, flags, data);
1733 saved_errno = errno;
1734 if (srcfd != -1)
1735 close(srcfd);
1736 close(destfd);
1737 if (ret < 0) {
1738 errno = saved_errno;
1739 SYSERROR("Failed to mount %s onto %s", src, dest);
1740 return ret;
1741 }
1742
1743 return 0;
1744}
1745
ced03a01
SH		 1746/*
1747 * Mount a proc under @rootfs if proc self points to a pid other than
1748 * my own. This is needed to have a known-good proc mount for setting
1749 * up LSMs both at container startup and attach.
1750 *
1751 * @rootfs : the rootfs where proc should be mounted
1752 *
1753 * Returns < 0 on failure, 0 if the correct proc was already mounted
1754 * and 1 if a new proc was mounted.
f267d666
BP		 1755 *
1756 * NOTE: not to be called from inside the container namespace!
ced03a01 1757 */
943144d9 1758int lxc_mount_proc_if_needed(const char *rootfs)
ced03a01
SH		 1759{
1760 char path[MAXPATHLEN];
1761 char link[20];
2d036cca 1762 int link_to_pid, linklen, ret;
fe447886 1763 int mypid;
ced03a01
SH		 1764
1765 ret = snprintf(path, MAXPATHLEN, "%s/proc/self", rootfs);
1766 if (ret < 0 || ret >= MAXPATHLEN) {
1767 SYSERROR("proc path name too long");
1768 return -1;
1769 }
fc2ad9dc 1770
ced03a01
SH		 1771 memset(link, 0, 20);
1772 linklen = readlink(path, link, 20);
fe447886 1773 mypid = (int)getpid();
fc2ad9dc
CB		 1774 INFO("I am %d, /proc/self points to \"%s\"", mypid, link);
1775
ced03a01 1776 ret = snprintf(path, MAXPATHLEN, "%s/proc", rootfs);
d539a2b2
CB		 1777 if (ret < 0 || ret >= MAXPATHLEN) {
1778 SYSERROR("proc path name too long");
1779 return -1;
1780 }
fc2ad9dc
CB		 1781
1782 /* /proc not mounted */
1783 if (linklen < 0) {
1784 if (mkdir(path, 0755) && errno != EEXIST)
1785 return -1;
ced03a01 1786 goto domount;
fc2ad9dc
CB		 1787 }
1788
2d036cca
CB		 1789 if (lxc_safe_int(link, &link_to_pid) < 0)
1790 return -1;
fc2ad9dc
CB		 1791
1792 /* wrong /procs mounted */
2d036cca 1793 if (link_to_pid != mypid) {
fc2ad9dc
CB		 1794 /* ignore failure */
1795 umount2(path, MNT_DETACH);
ced03a01
SH		 1796 goto domount;
1797 }
fc2ad9dc 1798
ced03a01
SH		 1799 /* the right proc is already mounted */
1800 return 0;
1801
1802domount:
fc2ad9dc
CB		 1803 /* rootfs is NULL */
1804 if (!strcmp(rootfs,""))
f267d666
BP		 1805 ret = mount("proc", path, "proc", 0, NULL);
1806 else
1807 ret = safe_mount("proc", path, "proc", 0, NULL, rootfs);
f267d666 1808 if (ret < 0)
ced03a01 1809 return -1;
f267d666 1810
fc2ad9dc 1811 INFO("mounted /proc in container for security transition");
ced03a01
SH		 1812 return 1;
1813}
69aeabac 1814
f8dd0275 1815int open_devnull(void)
69aeabac 1816{
f8dd0275
AM		 1817 int fd = open("/dev/null", O_RDWR);
1818
1819 if (fd < 0)
1820 SYSERROR("Can't open /dev/null");
1821
1822 return fd;
1823}
69aeabac 1824
f8dd0275
AM		 1825int set_stdfds(int fd)
1826{
69aeabac
TA		 1827 if (fd < 0)
1828 return -1;
1829
1830 if (dup2(fd, 0) < 0)
f8dd0275 1831 return -1;
69aeabac 1832 if (dup2(fd, 1) < 0)
f8dd0275 1833 return -1;
69aeabac 1834 if (dup2(fd, 2) < 0)
f8dd0275
AM		 1835 return -1;
1836
1837 return 0;
1838}
1839
1840int null_stdfds(void)
1841{
1842 int ret = -1;
1843 int fd = open_devnull();
1844
1845 if (fd >= 0) {
1846 ret = set_stdfds(fd);
1847 close(fd);
1848 }
69aeabac 1849
69aeabac
TA		 1850 return ret;
1851}
ccb4cabe
SH		 1852
1853/*
1854 * Return the number of lines in file @fn, or -1 on error
1855 */
1856int lxc_count_file_lines(const char *fn)
1857{
1858 FILE *f;
1859 char *line = NULL;
1860 size_t sz = 0;
1861 int n = 0;
1862
1863 f = fopen_cloexec(fn, "r");
1864 if (!f)
1865 return -1;
1866
1867 while (getline(&line, &sz, f) != -1) {
1868 n++;
1869 }
1870 free(line);
1871 fclose(f);
1872 return n;
1873}
1adbd020 1874
25086a5f
CB		 1875void *lxc_strmmap(void *addr, size_t length, int prot, int flags, int fd,
1876 off_t offset)
1adbd020
CB		 1877{
1878 void *tmp = NULL, *overlap = NULL;
1879
1880 /* We establish an anonymous mapping that is one byte larger than the
1881 * underlying file. The pages handed to us are zero filled. */
1882 tmp = mmap(addr, length + 1, PROT_READ, MAP_PRIVATE | MAP_ANONYMOUS, -1, 0);
1883 if (tmp == MAP_FAILED)
a1e5280d 1884 return tmp;
1adbd020
CB		 1885
1886 /* Now we establish a fixed-address mapping starting at the address we
1887 * received from our anonymous mapping and replace all bytes excluding
1888 * the additional \0-byte with the file. This allows us to use normal
a1e5280d 1889 * string-handling functions. */
1adbd020
CB		 1890 overlap = mmap(tmp, length, prot, MAP_FIXED | flags, fd, offset);
1891 if (overlap == MAP_FAILED)
a1e5280d 1892 munmap(tmp, length + 1);
1adbd020 1893
1adbd020
CB		 1894 return overlap;
1895}
1896
25086a5f 1897int lxc_strmunmap(void *addr, size_t length)
1adbd020
CB		 1898{
1899 return munmap(addr, length + 1);
1900}
330ae3d3
CB		 1901
1902/* Check whether a signal is blocked by a process. */
de3c491b 1903/* /proc/pid-to-str/status\0 = (5 + 21 + 7 + 1) */
eab15c1e 1904#define __PROC_STATUS_LEN (5 + (LXC_NUMSTRLEN64) + 7 + 1)
330ae3d3
CB		 1905bool task_blocking_signal(pid_t pid, int signal)
1906{
1907 bool bret = false;
1908 char *line = NULL;
1909 long unsigned int sigblk = 0;
1910 size_t n = 0;
1911 int ret;
1912 FILE *f;
1913
de3c491b 1914 char status[__PROC_STATUS_LEN];
330ae3d3 1915
de3c491b
CB		 1916 ret = snprintf(status, __PROC_STATUS_LEN, "/proc/%d/status", pid);
1917 if (ret < 0 || ret >= __PROC_STATUS_LEN)
330ae3d3
CB		 1918 return bret;
1919
1920 f = fopen(status, "r");
1921 if (!f)
1922 return bret;
1923
1924 while (getline(&line, &n, f) != -1) {
1925 if (!strncmp(line, "SigBlk:\t", 8))
1926 if (sscanf(line + 8, "%lx", &sigblk) != 1)
1927 goto out;
1928 }
1929
1930 if (sigblk & signal)
1931 bret = true;
1932
1933out:
1934 free(line);
1935 fclose(f);
1936 return bret;
1937}
000dfda7
CB		 1938
1939static int lxc_append_null_to_list(void ***list)
1940{
1941 int newentry = 0;
1942 void **tmp;
1943
1944 if (*list)
1945 for (; (*list)[newentry]; newentry++) {
1946 ;
1947 }
1948
1949 tmp = realloc(*list, (newentry + 2) * sizeof(void **));
1950 if (!tmp)
1951 return -1;
1952
1953 *list = tmp;
1954 (*list)[newentry + 1] = NULL;
1955
1956 return newentry;
1957}
1958
1959int lxc_append_string(char ***list, char *entry)
1960{
000dfda7 1961 char *copy;
a54694f8
CB		 1962 int newentry;
1963
1964 newentry = lxc_append_null_to_list((void ***)list);
1965 if (newentry < 0)
1966 return -1;
000dfda7
CB		 1967
1968 copy = strdup(entry);
1969 if (!copy)
1970 return -1;
1971
1972 (*list)[newentry] = copy;
1973
1974 return 0;
1975}
a687256f
CB		 1976
1977int lxc_preserve_ns(const int pid, const char *ns)
1978{
1979 int ret;
a052913d
CB		 1980/* 5 /proc + 21 /int_as_str + 3 /ns + 20 /NS_NAME + 1 \0 */
1981#define __NS_PATH_LEN 50
1982 char path[__NS_PATH_LEN];
a687256f 1983
4d8ac866
CB		 1984 /* This way we can use this function to also check whether namespaces
1985 * are supported by the kernel by passing in the NULL or the empty
1986 * string.
1987 */
a052913d 1988 ret = snprintf(path, __NS_PATH_LEN, "/proc/%d/ns%s%s", pid,
4d8ac866
CB		 1989 !ns || strcmp(ns, "") == 0 ? "" : "/",
1990 !ns || strcmp(ns, "") == 0 ? "" : ns);
a052913d 1991 if (ret < 0 || (size_t)ret >= __NS_PATH_LEN)
a687256f
CB		 1992 return -1;
1993
1994 return open(path, O_RDONLY | O_CLOEXEC);
1995}
6bc2eafe
CB		 1996
1997int lxc_safe_uint(const char *numstr, unsigned int *converted)
1998{
1999 char *err = NULL;
2000 unsigned long int uli;
2001
643c1984
CB		 2002 while (isspace(*numstr))
2003 numstr++;
2004
2005 if (*numstr == '-')
2006 return -EINVAL;
2007
6bc2eafe
CB		 2008 errno = 0;
2009 uli = strtoul(numstr, &err, 0);
643c1984 2010 if (errno == ERANGE && uli == ULONG_MAX)
6bc2eafe
CB		 2011 return -errno;
2012
643c1984 2013 if (err == numstr || *err != '\0')
6bc2eafe
CB		 2014 return -EINVAL;
2015
2016 if (uli > UINT_MAX)
2017 return -ERANGE;
2018
8c57d930 2019 *converted = (unsigned int)uli;
6bc2eafe
CB		 2020 return 0;
2021}
b5f845e7
CB		 2022
2023int lxc_safe_int(const char *numstr, int *converted)
2024{
2025 char *err = NULL;
2026 signed long int sli;
2027
2028 errno = 0;
2029 sli = strtol(numstr, &err, 0);
643c1984
CB		 2030 if (errno == ERANGE && (sli == LONG_MAX || sli == LONG_MIN))
2031 return -errno;
2032
2033 if (errno != 0 && sli == 0)
b5f845e7
CB		 2034 return -errno;
2035
643c1984 2036 if (err == numstr || *err != '\0')
b5f845e7
CB		 2037 return -EINVAL;
2038
643c1984 2039 if (sli > INT_MAX || sli < INT_MIN)
b5f845e7
CB		 2040 return -ERANGE;
2041
2042 *converted = (int)sli;
2043 return 0;
2044}
8c57d930
CB		 2045
2046int lxc_safe_long(const char *numstr, long int *converted)
2047{
2048 char *err = NULL;
2049 signed long int sli;
2050
2051 errno = 0;
2052 sli = strtol(numstr, &err, 0);
643c1984 2053 if (errno == ERANGE && (sli == LONG_MAX || sli == LONG_MIN))
8c57d930
CB		 2054 return -errno;
2055
643c1984
CB		 2056 if (errno != 0 && sli == 0)
2057 return -errno;
8c57d930 2058
643c1984
CB		 2059 if (err == numstr || *err != '\0')
2060 return -EINVAL;
8c57d930
CB		 2061
2062 *converted = sli;
2063 return 0;
2064}
dbaf55a3
CB		 2065
2066int lxc_switch_uid_gid(uid_t uid, gid_t gid)
2067{
2068 if (setgid(gid) < 0) {
2069 SYSERROR("Failed to switch to gid %d.", gid);
2070 return -errno;
2071 }
2072 NOTICE("Switched to gid %d.", gid);
2073
2074 if (setuid(uid) < 0) {
2075 SYSERROR("Failed to switch to uid %d.", uid);
2076 return -errno;
2077 }
2078 NOTICE("Switched to uid %d.", uid);
2079
2080 return 0;
2081}
2082
2083/* Simple covenience function which enables uniform logging. */
2084int lxc_setgroups(int size, gid_t list[])
2085{
2086 if (setgroups(size, list) < 0) {
2087 SYSERROR("Failed to setgroups().");
2088 return -errno;
2089 }
2090 NOTICE("Dropped additional groups.");
2091
2092 return 0;
2093}
c6868a1f
CB		 2094
2095static int lxc_get_unused_loop_dev_legacy(char *loop_name)
2096{
2097 struct dirent *dp;
2098 struct loop_info64 lo64;
2099 DIR *dir;
2100 int dfd = -1, fd = -1, ret = -1;
2101
2102 dir = opendir("/dev");
2103 if (!dir)
2104 return -1;
2105
2106 while ((dp = readdir(dir))) {
2107 if (!dp)
2108 break;
2109
2110 if (strncmp(dp->d_name, "loop", 4) != 0)
2111 continue;
2112
2113 dfd = dirfd(dir);
2114 if (dfd < 0)
2115 continue;
2116
2117 fd = openat(dfd, dp->d_name, O_RDWR);
2118 if (fd < 0)
2119 continue;
2120
2121 ret = ioctl(fd, LOOP_GET_STATUS64, &lo64);
2122 if (ret < 0) {
2123 if (ioctl(fd, LOOP_GET_STATUS64, &lo64) == 0 ||
2124 errno != ENXIO) {
2125 close(fd);
2126 fd = -1;
2127 continue;
2128 }
2129 }
2130
2131 ret = snprintf(loop_name, LO_NAME_SIZE, "/dev/%s", dp->d_name);
2132 if (ret < 0 || ret >= LO_NAME_SIZE) {
2133 close(fd);
2134 fd = -1;
2135 continue;
2136 }
2137
2138 break;
2139 }
2140
2141 closedir(dir);
2142
2143 if (fd < 0)
2144 return -1;
2145
2146 return fd;
2147}
2148
2149static int lxc_get_unused_loop_dev(char *name_loop)
2150{
2151 int loop_nr, ret;
2152 int fd_ctl = -1, fd_tmp = -1;
2153
2154 fd_ctl = open("/dev/loop-control", O_RDWR | O_CLOEXEC);
2155 if (fd_ctl < 0)
2156 return -ENODEV;
2157
2158 loop_nr = ioctl(fd_ctl, LOOP_CTL_GET_FREE);
2159 if (loop_nr < 0)
2160 goto on_error;
2161
2162 ret = snprintf(name_loop, LO_NAME_SIZE, "/dev/loop%d", loop_nr);
2163 if (ret < 0 || ret >= LO_NAME_SIZE)
2164 goto on_error;
2165
2166 fd_tmp = open(name_loop, O_RDWR | O_CLOEXEC);
2167 if (fd_tmp < 0)
2168 goto on_error;
2169
2170on_error:
2171 close(fd_ctl);
2172 return fd_tmp;
2173}
2174
2175int lxc_prepare_loop_dev(const char *source, char *loop_dev, int flags)
2176{
2177 int ret;
2178 struct loop_info64 lo64;
2179 int fd_img = -1, fret = -1, fd_loop = -1;
2180
2181 fd_loop = lxc_get_unused_loop_dev(loop_dev);
2182 if (fd_loop < 0) {
2183 if (fd_loop == -ENODEV)
2184 fd_loop = lxc_get_unused_loop_dev_legacy(loop_dev);
2185 else
2186 goto on_error;
2187 }
2188
2189 fd_img = open(source, O_RDWR | O_CLOEXEC);
2190 if (fd_img < 0)
2191 goto on_error;
2192
2193 ret = ioctl(fd_loop, LOOP_SET_FD, fd_img);
2194 if (ret < 0)
2195 goto on_error;
2196
2197 memset(&lo64, 0, sizeof(lo64));
2198 lo64.lo_flags = flags;
2199
2200 ret = ioctl(fd_loop, LOOP_SET_STATUS64, &lo64);
2201 if (ret < 0)
2202 goto on_error;
2203
2204 fret = 0;
2205
2206on_error:
2207 if (fd_img >= 0)
2208 close(fd_img);
2209
2210 if (fret < 0 && fd_loop >= 0) {
2211 close(fd_loop);
2212 fd_loop = -1;
2213 }
2214
2215 return fd_loop;
2216}
74251e49
CB		 2217
2218int lxc_unstack_mountpoint(const char *path, bool lazy)
2219{
2220 int ret;
2221 int umounts = 0;
2222
2223pop_stack:
2224 ret = umount2(path, lazy ? MNT_DETACH : 0);
2225 if (ret < 0) {
2226 /* We consider anything else than EINVAL deadly to prevent going
2227 * into an infinite loop. (The other alternative is constantly
2228 * parsing /proc/self/mountinfo which is yucky and probably
2229 * racy.)
2230 */
2231 if (errno != EINVAL)
2232 return -errno;
2233 } else {
b4a40f7b
CB		 2234 /* Just stop counting when this happens. That'd just be so
2235 * stupid that we won't even bother trying to report back the
2236 * correct value anymore.
2237 */
2238 if (umounts != INT_MAX)
2239 umounts++;
74251e49
CB		 2240 /* We succeeded in umounting. Make sure that there's no other
2241 * mountpoint stacked underneath.
2242 */
74251e49
CB		 2243 goto pop_stack;
2244 }
2245
2246 return umounts;
2247}
LXC mirror