]>
git.proxmox.com Git - mirror_lxc.git/blob - src/lxc/storage/storage_utils.c
2 * lxc: linux Container library
4 * Copyright © 2017 Canonical Ltd.
7 * Christian Brauner <christian.brauner@ubuntu.com>
9 * This program is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU Lesser General Public
11 * License as published by the Free Software Foundation; either
12 * version 2.1 of the License, or (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17 * Lesser General Public License for more details.
19 * You should have received a copy of the GNU Lesser General Public
20 * License along with this program; if not, write to the Free Software
21 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
36 #include <sys/mount.h>
37 #include <sys/prctl.h>
38 #include <sys/types.h>
46 #include "storage_utils.h"
50 #include "include/strlcpy.h"
54 #define BLKGETSIZE64 _IOR(0x12, 114, size_t)
57 lxc_log_define(storage_utils
, lxc
);
59 /* the bulk of this needs to become a common helper */
60 char *dir_new_path(char *src
, const char *oldname
, const char *name
,
61 const char *oldpath
, const char *lxcpath
)
66 nlen
= strlen(src
) + 1;
69 /* if src starts with oldpath, look for oldname only after
71 if (strncmp(src
, oldpath
, l1
) == 0) {
73 nlen
+= (strlen(lxcpath
) - l1
);
76 while ((p
= strstr(p
, oldname
)) != NULL
) {
78 nlen
+= strlen(name
) - l2
;
86 if (strncmp(src
, oldpath
, l1
) == 0) {
87 p
+= sprintf(p
, "%s", lxcpath
);
91 while ((p2
= strstr(src
, oldname
)) != NULL
) {
94 /* copy text up to oldname */
95 retlen
= strlcpy(p
, src
, p2
- src
);
96 if (retlen
>= p2
- src
) {
101 /* move target pointer (p) */
103 /* print new name in place of oldname */
104 p
+= sprintf(p
, "%s", name
);
105 /* move src to end of oldname */
109 /* copy the rest of src */
110 sprintf(p
, "%s", src
);
115 * attach_block_device returns true if all went well,
116 * meaning either a block device was attached or was not
117 * needed. It returns false if something went wrong and
118 * container startup should be stopped.
120 bool attach_block_device(struct lxc_conf
*conf
)
124 if (!conf
->rootfs
.path
)
127 path
= conf
->rootfs
.path
;
128 if (!requires_nbd(path
))
131 path
= strchr(path
, ':');
136 if (!attach_nbd(path
, conf
))
143 * return block size of dev->src in units of bytes
145 int blk_getsize(struct lxc_storage
*bdev
, uint64_t *size
)
150 src
= lxc_storage_get_path(bdev
->src
, bdev
->type
);
151 fd
= open(src
, O_RDONLY
);
155 /* size of device in bytes */
156 ret
= ioctl(fd
, BLKGETSIZE64
, size
);
161 void detach_block_device(struct lxc_conf
*conf
)
163 if (conf
->nbd_idx
!= -1)
164 detach_nbd_idx(conf
->nbd_idx
);
168 * Given a lxc_storage (presumably blockdev-based), detect the fstype
169 * by trying mounting (in a private mntns) it.
170 * @lxc_storage: bdev to investigate
171 * @type: preallocated char* in which to write the fstype
172 * @len: length of passed in char*
173 * Returns length of fstype, of -1 on error
175 int detect_fs(struct lxc_storage
*bdev
, char *type
, int len
)
182 char *sp1
, *sp2
, *sp3
;
183 const char *l
, *srcdev
;
184 char devpath
[MAXPATHLEN
];
187 if (!bdev
|| !bdev
->src
|| !bdev
->dest
)
190 srcdev
= lxc_storage_get_path(bdev
->src
, bdev
->type
);
196 if ((pid
= fork()) < 0)
202 memset(type
, 0, len
);
203 ret
= read(p
[0], type
, len
- 1);
206 SYSERROR("error reading from pipe");
209 } else if (ret
== 0) {
210 ERROR("child exited early - fstype not found");
215 type
[len
- 1] = '\0';
216 INFO("detected fstype %s for %s", type
, srcdev
);
220 if (unshare(CLONE_NEWNS
) < 0)
223 if (detect_shared_rootfs()) {
224 if (mount(NULL
, "/", NULL
, MS_SLAVE
| MS_REC
, NULL
)) {
225 SYSERROR("Failed to make / rslave");
226 ERROR("Continuing...");
230 ret
= mount_unknown_fs(srcdev
, bdev
->dest
, bdev
->mntopts
);
232 ERROR("failed mounting %s onto %s to detect fstype", srcdev
,
237 l
= linkderef(srcdev
, devpath
);
240 f
= fopen("/proc/self/mounts", "r");
244 while (getline(&line
, &linelen
, f
) != -1) {
245 sp1
= strchr(line
, ' ');
251 sp2
= strchr(sp1
+ 1, ' ');
255 sp3
= strchr(sp2
+ 1, ' ');
260 if (write(p
[1], sp2
, strlen(sp2
)) != strlen(sp2
))
269 int do_mkfs_exec_wrapper(void *args
)
280 size_t len
= 5 + strlen(data
[0]) + 1;
286 ret
= snprintf(mkfs
, len
, "mkfs.%s", data
[0]);
287 if (ret
< 0 || (size_t)ret
>= len
) {
292 TRACE("executing \"%s %s\"", mkfs
, data
[1]);
293 execlp(mkfs
, mkfs
, data
[1], (char *)NULL
);
294 SYSERROR("failed to run \"%s %s \"", mkfs
, data
[1]);
300 * This will return 1 for physical disks, qemu-nbd, loop, etc right now only lvm
303 int is_blktype(struct lxc_storage
*b
)
305 if (strcmp(b
->type
, "lvm") == 0)
311 int mount_unknown_fs(const char *rootfs
, const char *target
,
327 * find the filesystem type with brute force:
328 * first we check with /etc/filesystems, in case the modules
329 * are auto-loaded and fall back to the supported kernel fs
336 for (i
= 0; i
< sizeof(fsfile
) / sizeof(fsfile
[0]); i
++) {
337 if (access(fsfile
[i
], F_OK
))
340 ret
= lxc_file_for_each_line(fsfile
[i
], find_fstype_cb
, &cbarg
);
342 ERROR("failed to parse '%s'", fsfile
[i
]);
350 ERROR("failed to determine fs type for '%s'", rootfs
);
355 * These are copied from conf.c. However as conf.c will be moved to using
356 * the callback system, they can be pulled from there eventually, so we
357 * don't need to pollute utils.c with these low level functions
359 int find_fstype_cb(char *buffer
, void *data
)
367 unsigned long mntflags
;
371 /* we don't try 'nodev' entries */
372 if (strstr(buffer
, "nodev"))
376 fstype
+= lxc_char_left_gc(fstype
, strlen(fstype
));
377 fstype
[lxc_char_right_gc(fstype
, strlen(fstype
))] = '\0';
379 DEBUG("trying to mount '%s'->'%s' with fstype '%s'", cbarg
->rootfs
,
380 cbarg
->target
, fstype
);
382 if (parse_mntopts(cbarg
->options
, &mntflags
, &mntdata
) < 0) {
387 if (mount(cbarg
->rootfs
, cbarg
->target
, fstype
, mntflags
, mntdata
)) {
388 SYSDEBUG("mount failed with error");
395 INFO("mounted '%s' on '%s', with fstype '%s'", cbarg
->rootfs
,
396 cbarg
->target
, fstype
);
401 const char *linkderef(const char *path
, char *dest
)
406 ret
= stat(path
, &sbuf
);
410 if (!S_ISLNK(sbuf
.st_mode
))
413 ret
= readlink(path
, dest
, MAXPATHLEN
);
415 SYSERROR("error reading link %s", path
);
417 } else if (ret
>= MAXPATHLEN
) {
418 ERROR("link in %s too long", path
);
427 * is an unprivileged user allowed to make this kind of snapshot
429 bool unpriv_snap_allowed(struct lxc_storage
*b
, const char *t
, bool snap
,
433 /* New type will be same as original (unless snap && b->type ==
434 * dir, in which case it will be overlayfs -- which is also
437 if (strcmp(b
->type
, "dir") == 0 ||
438 strcmp(b
->type
, "overlay") == 0 ||
439 strcmp(b
->type
, "overlayfs") == 0 ||
440 strcmp(b
->type
, "btrfs") == 0 ||
441 strcmp(b
->type
, "loop") == 0)
447 /* Unprivileged users can copy and snapshot dir, overlayfs, and loop.
448 * In particular, not zfs, btrfs, or lvm.
450 if (strcmp(t
, "dir") == 0 ||
451 strcmp(t
, "overlay") == 0 ||
452 strcmp(t
, "overlayfs") == 0 ||
453 strcmp(t
, "btrfs") == 0 ||
454 strcmp(t
, "loop") == 0)
460 bool is_valid_storage_type(const char *type
)
462 if (strcmp(type
, "dir") == 0 ||
463 strcmp(type
, "btrfs") == 0 ||
464 strcmp(type
, "loop") == 0 ||
465 strcmp(type
, "lvm") == 0 ||
466 strcmp(type
, "nbd") == 0 ||
467 strcmp(type
, "overlay") == 0 ||
468 strcmp(type
, "overlayfs") == 0 ||
469 strcmp(type
, "rbd") == 0 ||
470 strcmp(type
, "zfs") == 0)
476 int storage_destroy_wrapper(void *data
)
478 struct lxc_conf
*conf
= data
;
481 ERROR("Failed to setgid to 0");
485 if (setgroups(0, NULL
) < 0)
486 WARN("Failed to clear groups");
489 ERROR("Failed to setuid to 0");
493 if (!storage_destroy(conf
))