// Bind-mount all paths read-only
for (const char** path = paths; *path; path++) {
- r = pakfire_bind(jail->ctx, jail->pakfire, *path, NULL, MS_RDONLY);
+ r = pakfire_bind(jail->pakfire, *path, NULL, MS_RDONLY);
if (r) {
switch (errno) {
// Ignore if we don't have permission
flags |= PAKFIRE_MOUNT_LOOP_DEVICES;
// Mount all default stuff
- r = pakfire_mount_all(jail->ctx, jail->pakfire, PAKFIRE_MNTNS_OUTER, flags);
+ r = pakfire_mount_all(jail->pakfire, PAKFIRE_MNTNS_OUTER, flags);
if (r)
return r;
// Populate /dev
- r = pakfire_populate_dev(jail->ctx, jail->pakfire, flags);
+ r = pakfire_populate_dev(jail->pakfire, flags);
if (r)
return r;
// Mount the interpreter (if needed)
- r = pakfire_mount_interpreter(jail->ctx, jail->pakfire);
+ r = pakfire_mount_interpreter(jail->pakfire);
if (r)
return r;
mp = &jail->mountpoints[i];
// Mount it
- r = pakfire_bind(jail->ctx, jail->pakfire, mp->source, mp->target, mp->flags);
+ r = pakfire_bind(jail->pakfire, mp->source, mp->target, mp->flags);
if (r)
return r;
}
DEBUG(jail->pakfire, " GID: %u (effective %u)\n", gid, egid);
// Log all mountpoints
- pakfire_mount_list(jail->ctx);
+ pakfire_mount_list(jail->pakfire);
// Fail if we are not PID 1
if (pid != 1) {
const int socket_send = pakfire_jail_get_pipe_to_write(jail, &ctx->socket);
// Mount all default stuff
- r = pakfire_mount_all(jail->ctx, jail->pakfire, PAKFIRE_MNTNS_INNER, 0);
+ r = pakfire_mount_all(jail->pakfire, PAKFIRE_MNTNS_INNER, 0);
if (r)
return 126;
const char* arch = pakfire_get_effective_arch(jail->pakfire);
// Change mount propagation to slave to receive anything from the parent namespace
- r = pakfire_mount_change_propagation(jail->ctx, "/", MS_SLAVE);
+ r = pakfire_mount_change_propagation(jail->pakfire, "/", MS_SLAVE);
if (r)
return r;
// Make root a mountpoint in the new mount namespace
- r = pakfire_mount_make_mounpoint(jail->ctx, jail->pakfire, root);
+ r = pakfire_mount_make_mounpoint(jail->pakfire, root);
if (r)
return r;
// Change mount propagation to private
- r = pakfire_mount_change_propagation(jail->ctx, root, MS_PRIVATE);
+ r = pakfire_mount_change_propagation(jail->pakfire, root, MS_PRIVATE);
if (r)
return r;
{ NULL },
};
-int pakfire_mount_change_propagation(struct pakfire_ctx* ctx, const char* path, int propagation) {
- CTX_DEBUG(ctx, "Changing mount propagation on %s\n", path);
+int pakfire_mount_change_propagation(struct pakfire* pakfire, const char* path, int propagation) {
+ PAKFIRE_DEBUG(pakfire, "Changing mount propagation on %s\n", path);
int r = mount(NULL, path, NULL, propagation|MS_REC, NULL);
if (r)
- CTX_ERROR(ctx, "Failed to change mount propagation on %s: %m\n", path);
+ PAKFIRE_ERROR(pakfire, "Failed to change mount propagation on %s: %m\n", path);
return r;
}
return 1;
}
-int pakfire_mount_make_mounpoint(struct pakfire_ctx* ctx, struct pakfire* pakfire,
- const char* path) {
+int pakfire_mount_make_mounpoint(struct pakfire* pakfire, const char* path) {
int r;
// Check if path already is a mountpoint
break;
default:
- CTX_ERROR(ctx, "Could not determine whether %s is a mountpoint: %m\n", path);
+ PAKFIRE_ERROR(pakfire, "Could not determine whether %s is a mountpoint: %m\n", path);
return r;
}
// Bind-mount to self
r = mount(path, path, NULL, MS_BIND|MS_REC, NULL);
if (r) {
- CTX_ERROR(ctx, "Could not make %s a mountpoint: %m\n", path);
+ PAKFIRE_ERROR(pakfire, "Could not make %s a mountpoint: %m\n", path);
return r;
}
return 0;
}
-static int pakfire_mount(struct pakfire_ctx* ctx, struct pakfire* pakfire, const char* source,
- const char* target, const char* fstype, unsigned long mflags, const void* data) {
+static int pakfire_mount(struct pakfire* pakfire, const char* source, const char* target,
+ const char* fstype, unsigned long mflags, const void* data) {
const char* options = (const char*)data;
// Check for some basic inputs
return 1;
}
- CTX_DEBUG(ctx, "Mounting %s from %s (%s - %s)\n", target, source, fstype, options);
+ PAKFIRE_DEBUG(pakfire, "Mounting %s from %s (%s - %s)\n", target, source, fstype, options);
// Perform mount()
int r = mount(source, target, fstype, mflags, data);
if (r) {
- CTX_ERROR(ctx, "Could not mount %s: %m\n", target);
+ PAKFIRE_ERROR(pakfire, "Could not mount %s: %m\n", target);
}
return r;
}
static int __pakfire_mount_list(char* line, size_t length, void* data) {
- struct pakfire_ctx* ctx = data;
+ struct pakfire* pakfire = data;
// Send the line to the logger
- CTX_DEBUG(ctx, " %.*s", (int)length, line);
+ PAKFIRE_DEBUG(pakfire, " %.*s", (int)length, line);
return 0;
}
-int pakfire_mount_list(struct pakfire_ctx* ctx) {
- CTX_DEBUG(ctx, "Mountpoints:\n");
+int pakfire_mount_list(struct pakfire* pakfire) {
+ PAKFIRE_DEBUG(pakfire, "Mountpoints:\n");
- return pakfire_parse_file("/proc/self/mounts", __pakfire_mount_list, ctx);
+ return pakfire_parse_file("/proc/self/mounts", __pakfire_mount_list, pakfire);
}
-int pakfire_populate_dev(struct pakfire_ctx* ctx, struct pakfire* pakfire, int flags) {
+int pakfire_populate_dev(struct pakfire* pakfire, int flags) {
char path[PATH_MAX];
// Create device nodes
for (const struct pakfire_devnode* devnode = devnodes; devnode->path; devnode++) {
- CTX_DEBUG(ctx, "Creating device node %s\n", devnode->path);
+ PAKFIRE_DEBUG(pakfire, "Creating device node %s\n", devnode->path);
// Check if flags match
if (devnode->flags && !(flags & devnode->flags))
goto MOUNT;
// Otherwise log an error and end
- CTX_ERROR(ctx, "Could not create %s: %m\n", devnode->path);
+ PAKFIRE_ERROR(pakfire, "Could not create %s: %m\n", devnode->path);
return r;
MOUNT:
// Create an empty file
r = pakfire_touch(path, 0444);
if (r) {
- CTX_ERROR(ctx, "Could not create %s: %m\n", path);
+ PAKFIRE_ERROR(pakfire, "Could not create %s: %m\n", path);
return r;
}
// Create a bind-mount over the file
- r = pakfire_mount(ctx, pakfire, devnode->path, path, "bind", MS_BIND, NULL);
+ r = pakfire_mount(pakfire, devnode->path, path, "bind", MS_BIND, NULL);
if (r)
return r;
}
// Create symlinks
for (const struct pakfire_symlink* s = symlinks; s->target; s++) {
- CTX_DEBUG(ctx, "Creating symlink %s -> %s\n", s->path, s->target);
+ PAKFIRE_DEBUG(pakfire, "Creating symlink %s -> %s\n", s->path, s->target);
int r = pakfire_path(pakfire, path, "%s", s->path);
if (r)
r = symlink(s->target, path);
if (r) {
- CTX_ERROR(ctx, "Could not create symlink %s: %m\n", s->path);
+ PAKFIRE_ERROR(pakfire, "Could not create symlink %s: %m\n", s->path);
return r;
}
}
return 0;
}
-int pakfire_mount_interpreter(struct pakfire_ctx* ctx, struct pakfire* pakfire) {
+int pakfire_mount_interpreter(struct pakfire* pakfire) {
char target[PATH_MAX];
// Fetch the target architecture
if (!interpreter)
return 0;
- CTX_DEBUG(ctx, "Mounting interpreter %s for %s\n", interpreter, arch);
+ PAKFIRE_DEBUG(pakfire, "Mounting interpreter %s for %s\n", interpreter, arch);
// Where to mount this?
int r = pakfire_path(pakfire, target, "%s", interpreter);
return 1;
fclose(f);
- r = pakfire_mount(ctx, pakfire, interpreter, target, NULL, MS_BIND|MS_RDONLY, NULL);
+ r = pakfire_mount(pakfire, interpreter, target, NULL, MS_BIND|MS_RDONLY, NULL);
if (r)
- CTX_ERROR(ctx, "Could not mount interpreter %s to %s: %m\n", interpreter, target);
+ PAKFIRE_ERROR(pakfire, "Could not mount interpreter %s to %s: %m\n", interpreter, target);
return r;
}
-int pakfire_mount_all(struct pakfire_ctx* ctx, struct pakfire* pakfire, pakfire_mntns_t ns, int flags) {
+int pakfire_mount_all(struct pakfire* pakfire, pakfire_mntns_t ns, int flags) {
char target[PATH_MAX];
int r;
if (!pakfire_path_exists(target)) {
r = pakfire_mkdir(target, 0755);
if (r) {
- CTX_ERROR(ctx, "Could not create %s: %m\n", target);
+ PAKFIRE_ERROR(pakfire, "Could not create %s: %m\n", target);
return r;
}
}
// Perform mount()
- r = pakfire_mount(ctx, pakfire, mp->source, target,
- mp->fstype, mp->flags, mp->options);
+ r = pakfire_mount(pakfire, mp->source, target, mp->fstype, mp->flags, mp->options);
if (r)
return r;
}
return 0;
}
-int pakfire_make_ramdisk(struct pakfire_ctx* ctx, struct pakfire* pakfire,
- char* path, const char* args) {
+int pakfire_make_ramdisk(struct pakfire* pakfire, char* path, const char* args) {
int r;
// Create a new temporary directory
return -errno;
// Mount the ramdisk
- r = pakfire_mount(ctx, pakfire, "pakfire_ramdisk", p, "tmpfs", 0, args);
+ r = pakfire_mount(pakfire, "pakfire_ramdisk", p, "tmpfs", 0, args);
if (r) {
- CTX_ERROR(ctx, "Could not mount ramdisk at %s (%s): %s\n",
+ PAKFIRE_ERROR(pakfire, "Could not mount ramdisk at %s (%s): %s\n",
p, args, strerror(errno));
return r;
}
- CTX_DEBUG(ctx, "Ramdisk mounted at %s (%s)\n", p, args);
+ PAKFIRE_DEBUG(pakfire, "Ramdisk mounted at %s (%s)\n", p, args);
return 0;
}
-int pakfire_bind(struct pakfire_ctx* ctx, struct pakfire* pakfire,
- const char* src, const char* dst, int flags) {
+int pakfire_bind(struct pakfire* pakfire, const char* src, const char* dst, int flags) {
struct stat st;
char mountpoint[PATH_MAX];
if (r)
return r;
- CTX_DEBUG(ctx, "Bind-mounting %s to %s\n", src, mountpoint);
+ PAKFIRE_DEBUG(pakfire, "Bind-mounting %s to %s\n", src, mountpoint);
r = stat(src, &st);
if (r < 0) {
- CTX_ERROR(ctx, "Could not stat %s: %m\n", src);
+ PAKFIRE_ERROR(pakfire, "Could not stat %s: %m\n", src);
return 1;
}
// as read-only and requires us to mount the source first, and then remount it
// again using MS_RDONLY.
if (flags & MS_RDONLY) {
- r = pakfire_mount(ctx, pakfire, src, mountpoint, "bind", MS_BIND|MS_REC, NULL);
+ r = pakfire_mount(pakfire, src, mountpoint, "bind", MS_BIND|MS_REC, NULL);
if (r)
return r;
}
// Perform mount
- return pakfire_mount(ctx, pakfire, src, mountpoint, "bind", flags|MS_BIND|MS_REC, NULL);
+ return pakfire_mount(pakfire, src, mountpoint, "bind", flags|MS_BIND|MS_REC, NULL);
}
projects / pakfire.git / commitdiff
