]>
git.ipfire.org Git - thirdparty/systemd.git/blob - src/test/test-ns.c
2 This file is part of systemd.
4 Copyright 2010 Lennart Poettering
6 systemd is free software; you can redistribute it and/or modify it
7 under the terms of the GNU Lesser General Public License as published by
8 the Free Software Foundation; either version 2.1 of the License, or
9 (at your option) any later version.
11 systemd is distributed in the hope that it will be useful, but
12 WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
16 You should have received a copy of the GNU Lesser General Public License
17 along with systemd; If not, see <http://www.gnu.org/licenses/>.
24 #include "namespace.h"
26 int main(int argc
, char *argv
[]) {
27 const char * const writable
[] = {
29 "-/home/lennart/projects/foobar", /* this should be masked automatically */
33 const char * const readonly
[] = {
44 const char *inaccessible
[] = {
45 "/home/lennart/projects",
49 static const NamespaceInfo ns_info
= {
51 .protect_control_groups
= true,
52 .protect_kernel_tunables
= true,
53 .protect_kernel_modules
= true,
57 char *projects_directory
;
59 char tmp_dir
[] = "/tmp/systemd-private-XXXXXX",
60 var_tmp_dir
[] = "/var/tmp/systemd-private-XXXXXX";
62 log_set_max_level(LOG_DEBUG
);
64 assert_se(mkdtemp(tmp_dir
));
65 assert_se(mkdtemp(var_tmp_dir
));
67 root_directory
= getenv("TEST_NS_CHROOT");
68 projects_directory
= getenv("TEST_NS_PROJECTS");
70 if (projects_directory
)
71 inaccessible
[0] = projects_directory
;
73 log_info("Inaccessible directory: '%s'", inaccessible
[0]);
75 log_info("Chroot: '%s'", root_directory
);
77 log_info("Not chrooted");
79 r
= setup_namespace(root_directory
,
84 (char **) inaccessible
,
86 &(BindMount
) { .source
= (char*) "/usr/bin", .destination
= (char*) "/etc/systemd", .read_only
= true }, 1,
94 log_error_errno(r
, "Failed to setup namespace: %m");
97 " sudo TEST_NS_PROJECTS=/home/lennart/projects ./test-ns\n"
98 " sudo TEST_NS_CHROOT=/home/alban/debian-tree TEST_NS_PROJECTS=/home/alban/debian-tree/home/alban/Documents ./test-ns");
103 execl("/bin/sh", "/bin/sh", NULL
);
104 log_error_errno(errno
, "execl(): %m");