static bool do_destroy_container(struct lxc_conf *conf) {
int ret;
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ret = userns_exec_full(conf, storage_destroy_wrapper, conf,
"storage_destroy_wrapper");
if (ret < 0)
if (ret < 0 || (size_t)ret >= len)
goto out;
- if (am_unpriv())
+ if (am_host_unpriv())
ret = userns_exec_1(conf, lxc_unlink_exec_wrapper, path,
"lxc_unlink_exec_wrapper");
else
ret = snprintf(path, len, "%s/%s", p1, c->name);
if (ret < 0 || (size_t)ret >= len)
goto out;
- if (am_unpriv())
+ if (am_host_unpriv())
ret = userns_exec_full(conf, lxc_rmdir_onedev_wrapper, path,
"lxc_rmdir_onedev_wrapper");
else
}
}
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
if (chown_mapped_root(newpath, c->lxc_conf) < 0) {
ERROR("Error chowning %s to container root", newpath);
goto out;
data.c1 = c2;
data.flags = flags;
data.hookargs = hookargs;
- if (am_unpriv())
+ if (am_host_unpriv())
ret = userns_exec_full(c->lxc_conf, clone_update_rootfs_wrapper,
&data, "clone_update_rootfs_wrapper");
else
static bool do_lxcapi_add_device_node(struct lxc_container *c, const char *src_path, const char *dest_path)
{
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ERROR(NOT_SUPPORTED_ERROR, __FUNCTION__);
return false;
}
static bool do_lxcapi_remove_device_node(struct lxc_container *c, const char *src_path, const char *dest_path)
{
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ERROR(NOT_SUPPORTED_ERROR, __FUNCTION__);
return false;
}
pid_t init_pid;
int ret = 0;
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ERROR(NOT_SUPPORTED_ERROR, __FUNCTION__);
return false;
}
int ret;
pid_t pid, pid_outside;
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ERROR(NOT_SUPPORTED_ERROR, __FUNCTION__);
return false;
}
char ifname[IFNAMSIZ];
struct lxc_list *iterator;
- if (am_unpriv())
+ if (am_host_unpriv())
return 0;
lxc_list_for_each(iterator, network) {
{
struct lxc_list *iterator;
- if (!am_unpriv())
+ if (!am_host_unpriv())
return 0;
lxc_list_for_each(iterator, network) {
memset(handler, 0, sizeof(*handler));
- /* Note that am_unpriv() checks the effective uid. We probably don't
+ /* Note that am_host_unpriv() checks the effective uid. We probably don't
* care if we are real root only if we are running as root so this
* should be fine.
*/
- handler->am_root = !am_unpriv();
+ handler->am_root = !am_host_unpriv();
handler->data_sock[0] = handler->data_sock[1] = -1;
handler->conf = conf;
handler->lxcpath = lxcpath;
if (mkdir_p(new->dest, 0755) < 0)
return -1;
- if (am_unpriv() && chown_mapped_root(new->dest, conf) < 0)
+ if (am_host_unpriv() && chown_mapped_root(new->dest, conf) < 0)
WARN("Failed to update ownership of %s", new->dest);
if (strcmp(orig->type, "dir") == 0) {
free(delta);
return -1;
}
- if (am_unpriv() && chown_mapped_root(delta, conf) < 0)
+ if (am_host_unpriv() && chown_mapped_root(delta, conf) < 0)
WARN("Failed to update ownership of %s", delta);
// the src will be 'aufs:lowerdir:upperdir'
free(ndelta);
return -1;
}
- if (am_unpriv() && chown_mapped_root(ndelta, conf) < 0)
+ if (am_host_unpriv() && chown_mapped_root(ndelta, conf) < 0)
WARN("Failed to update ownership of %s", ndelta);
struct rsync_data_char rdata;
rdata.src = odelta;
rdata.dest = ndelta;
- if (am_unpriv())
+ if (am_host_unpriv())
ret = userns_exec_full(conf, lxc_rsync_delta_wrapper,
&rdata, "lxc_rsync_delta_wrapper");
else
/* rsync the contents from source to target */
data.orig = orig;
data.new = new;
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ret = userns_exec_full(conf, lxc_storage_rsync_exec_wrapper,
&data, "lxc_storage_rsync_exec_wrapper");
if (ret < 0) {
if (ret < 0 && errno != ENOENT)
return false;
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
struct rsync_data_char args;
args.src = orig->src;
return -1;
}
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ret = chown_mapped_root(new->dest, conf);
if (ret < 0)
WARN("Failed to update ownership of %s", new->dest);
return -1;
}
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ret = chown_mapped_root(delta, conf);
if (ret < 0)
WARN("Failed to update ownership of %s", delta);
return -1;
}
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ret = chown_mapped_root(work, conf);
if (ret < 0)
WARN("Failed to update ownership of %s", work);
return -1;
}
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ret = chown_mapped_root(ndelta, conf);
if (ret < 0)
WARN("Failed to update ownership of %s",
return -1;
}
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ret = chown_mapped_root(work, conf);
if (ret < 0)
WARN("Failed to update ownership of %s", work);
rdata.src = (char *)src;
rdata.dest = (char *)dest;
- if (am_unpriv())
+ if (am_host_unpriv())
ret = userns_exec_full(conf, lxc_rsync_exec_wrapper, &rdata,
"lxc_rsync_exec_wrapper");
else
if (!bdevtype && !keepbdevtype && snap && !strcmp(orig->type, "dir"))
bdevtype = "overlay";
- if (am_unpriv() && !unpriv_snap_allowed(orig, bdevtype, snap, maybe_snap)) {
+ if (am_host_unpriv() && !unpriv_snap_allowed(orig, bdevtype, snap, maybe_snap)) {
ERROR("Unsupported snapshot type \"%s\" for unprivileged users",
bdevtype ? bdevtype : "(null)");
goto on_error_put_orig;
else
src_no_prefix = lxc_storage_get_path(new->src, new->type);
- if (am_unpriv()) {
+ if (am_host_unpriv()) {
ret = chown_mapped_root(src_no_prefix, c->lxc_conf);
if (ret < 0)
WARN("Failed to chown \"%s\"", new->src);
/* rsync the contents from source to target */
data.orig = orig;
data.new = new;
- if (am_unpriv())
+ if (am_host_unpriv())
ret = userns_exec_full(c->lxc_conf,
lxc_storage_rsync_exec_wrapper, &data,
"lxc_storage_rsync_exec_wrapper");
/* initialize rand with urandom */
extern int randseed(bool);
-inline static bool am_unpriv(void)
+inline static bool am_host_unpriv(void)
{
FILE *f;
uid_t user, host, count;