]>
Commit | Line | Data |
---|---|---|
d6c9574f | 1 | /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/ |
15ae422b LP |
2 | |
3 | /*** | |
4 | This file is part of systemd. | |
5 | ||
6 | Copyright 2010 Lennart Poettering | |
7 | ||
8 | systemd is free software; you can redistribute it and/or modify it | |
9 | under the terms of the GNU General Public License as published by | |
10 | the Free Software Foundation; either version 2 of the License, or | |
11 | (at your option) any later version. | |
12 | ||
13 | systemd is distributed in the hope that it will be useful, but | |
14 | WITHOUT ANY WARRANTY; without even the implied warranty of | |
15 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | |
16 | General Public License for more details. | |
17 | ||
18 | You should have received a copy of the GNU General Public License | |
19 | along with systemd; If not, see <http://www.gnu.org/licenses/>. | |
20 | ***/ | |
21 | ||
22 | #include <stdlib.h> | |
23 | #include <string.h> | |
24 | #include <unistd.h> | |
25 | #include <sys/mount.h> | |
25e870b5 | 26 | #include <linux/fs.h> |
15ae422b LP |
27 | |
28 | #include "namespace.h" | |
29 | #include "log.h" | |
30 | ||
31 | int main(int argc, char *argv[]) { | |
32 | const char * const writable[] = { | |
33 | "/home", | |
34 | NULL | |
35 | }; | |
36 | ||
37 | const char * const readable[] = { | |
5dcfe57b LP |
38 | "/", |
39 | "/usr", | |
40 | "/boot", | |
15ae422b LP |
41 | NULL |
42 | }; | |
43 | ||
44 | const char * const inaccessible[] = { | |
45 | "/home/lennart/projects", | |
46 | NULL | |
47 | }; | |
48 | ||
49 | int r; | |
50 | ||
51 | if ((r = setup_namespace((char**) writable, (char**) readable, (char**) inaccessible, true, MS_SHARED)) < 0) { | |
52 | log_error("Failed to setup namespace: %s", strerror(-r)); | |
53 | return 1; | |
54 | } | |
55 | ||
56 | execl("/bin/sh", "/bin/sh", NULL); | |
57 | log_error("execl(): %m"); | |
58 | ||
59 | return 1; | |
60 | } |