mirror of
https://git.proxmox.com/git/mirror_lxc
synced 2025-08-06 07:11:51 +00:00
Merge pull request #2272 from brauner/2018-04-12/bugfixes
conf: ret-try devpts mount without gid=5 on error
This commit is contained in:
Serge Hallyn
GitHub
commit
465c891a7b
@ -99,6 +99,7 @@
|
||||
#include "network.h"
|
||||
#include "parse.h"
|
||||
#include "ringbuf.h"
|
||||
#include "start.h"
|
||||
#include "storage.h"
|
||||
#include "storage/overlay.h"
|
||||
#include "terminal.h"
|
||||
@ -1523,7 +1524,7 @@ static struct id_map *find_mapped_nsid_entry(struct lxc_conf *conf, unsigned id,
|
||||
static int lxc_setup_devpts(struct lxc_conf *conf)
|
||||
{
|
||||
int ret;
|
||||
const char *default_devpts_mntopts;
|
||||
const char *default_devpts_mntopts = "gid=5,newinstance,ptmxmode=0666,mode=0620";
|
||||
char devpts_mntopts[256];
|
||||
|
||||
if (conf->pts <= 0) {
|
||||
@ -1532,11 +1533,6 @@ static int lxc_setup_devpts(struct lxc_conf *conf)
|
||||
return 0;
|
||||
}
|
||||
|
||||
if (!find_mapped_nsid_entry(conf, 5, ID_TYPE_GID))
|
||||
default_devpts_mntopts = "newinstance,ptmxmode=0666,mode=0620";
|
||||
else
|
||||
default_devpts_mntopts = "newinstance,ptmxmode=0666,mode=0620,gid=5";
|
||||
|
||||
ret = snprintf(devpts_mntopts, sizeof(devpts_mntopts), "%s,max=%d",
|
||||
default_devpts_mntopts, conf->pts);
|
||||
if (ret < 0 || (size_t)ret >= sizeof(devpts_mntopts))
|
||||
@ -1560,11 +1556,16 @@ static int lxc_setup_devpts(struct lxc_conf *conf)
|
||||
return -1;
|
||||
}
|
||||
|
||||
/* Mount new devpts instance. */
|
||||
/* mount new devpts instance */
|
||||
ret = mount("devpts", "/dev/pts", "devpts", MS_NOSUID | MS_NOEXEC, devpts_mntopts);
|
||||
if (ret < 0) {
|
||||
SYSERROR("Failed to mount new devpts instance");
|
||||
return -1;
|
||||
/* try mounting without gid=5 */
|
||||
ret = mount("devpts", "/dev/pts", "devpts",
|
||||
MS_NOSUID | MS_NOEXEC, devpts_mntopts + sizeof("gid=5"));
|
||||
if (ret < 0) {
|
||||
SYSERROR("Failed to mount new devpts instance");
|
||||
return -1;
|
||||
}
|
||||
}
|
||||
DEBUG("Mount new devpts instance with options \"%s\"", devpts_mntopts);
|
||||
|
||||
@ -3206,10 +3207,12 @@ void remount_all_slave(void)
|
||||
free(line);
|
||||
}
|
||||
|
||||
static int lxc_execute_bind_init(struct lxc_conf *conf)
|
||||
static int lxc_execute_bind_init(struct lxc_handler *handler)
|
||||
{
|
||||
int ret;
|
||||
char path[PATH_MAX], destpath[PATH_MAX], *p;
|
||||
char *p;
|
||||
char path[PATH_MAX], destpath[PATH_MAX];
|
||||
struct lxc_conf *conf = handler->conf;
|
||||
|
||||
/* If init exists in the container, don't bind mount a static one */
|
||||
p = choose_init(conf->rootfs.mount);
|
||||
@ -3227,20 +3230,16 @@ static int lxc_execute_bind_init(struct lxc_conf *conf)
|
||||
return -1;
|
||||
}
|
||||
|
||||
ret = snprintf(destpath, PATH_MAX, "%s%s", conf->rootfs.mount, "/init.lxc.static");
|
||||
ret = snprintf(destpath, PATH_MAX, "%s" P_tmpdir "%s", conf->rootfs.mount, "/.lxc-init");
|
||||
if (ret < 0 || ret >= PATH_MAX)
|
||||
return -1;
|
||||
|
||||
if (!file_exists(destpath)) {
|
||||
FILE *pathfile;
|
||||
|
||||
pathfile = fopen(destpath, "wb");
|
||||
if (!pathfile) {
|
||||
SYSERROR("Failed to create mount target \"%s\"", destpath);
|
||||
ret = mknod(destpath, S_IFREG | 0000, 0);
|
||||
if (ret < 0 && errno != EEXIST) {
|
||||
SYSERROR("Failed to create dummy \"%s\" file as bind mount target", destpath);
|
||||
return -1;
|
||||
}
|
||||
|
||||
fclose(pathfile);
|
||||
}
|
||||
|
||||
ret = safe_mount(path, destpath, "none", MS_BIND, NULL, conf->rootfs.mount);
|
||||
@ -3249,6 +3248,11 @@ static int lxc_execute_bind_init(struct lxc_conf *conf)
|
||||
return -1;
|
||||
}
|
||||
|
||||
p = strdup(destpath + strlen(conf->rootfs.mount));
|
||||
if (!p)
|
||||
return -ENOMEM;
|
||||
((struct execute_args *)handler->data)->init_path = p;
|
||||
|
||||
INFO("Bind mounted lxc.init.static into container at \"%s\"", path);
|
||||
return 0;
|
||||
}
|
||||
@ -3383,7 +3387,7 @@ int lxc_setup(struct lxc_handler *handler)
|
||||
return -1;
|
||||
|
||||
if (lxc_conf->is_execute) {
|
||||
ret = lxc_execute_bind_init(lxc_conf);
|
||||
ret = lxc_execute_bind_init(handler);
|
||||
if (ret < 0) {
|
||||
ERROR("Failed to bind-mount the lxc init system");
|
||||
return -1;
|
||||
|
||||
@ -34,18 +34,12 @@
|
||||
|
||||
lxc_log_define(lxc_execute, lxc_start);
|
||||
|
||||
struct execute_args {
|
||||
char *const *argv;
|
||||
int quiet;
|
||||
};
|
||||
|
||||
static int execute_start(struct lxc_handler *handler, void* data)
|
||||
{
|
||||
int j, i = 0;
|
||||
struct execute_args *my_args = data;
|
||||
char **argv;
|
||||
int argc = 0, argc_add;
|
||||
char *initpath;
|
||||
|
||||
while (my_args->argv[argc++]);
|
||||
|
||||
@ -62,12 +56,10 @@ static int execute_start(struct lxc_handler *handler, void* data)
|
||||
if (!argv)
|
||||
goto out1;
|
||||
|
||||
initpath = choose_init(NULL);
|
||||
if (!initpath) {
|
||||
ERROR("Failed to find an init.lxc or init.lxc.static");
|
||||
if (!my_args->init_path)
|
||||
goto out2;
|
||||
}
|
||||
argv[i++] = initpath;
|
||||
|
||||
argv[i++] = my_args->init_path;
|
||||
|
||||
argv[i++] = "-n";
|
||||
argv[i++] = (char *)handler->name;
|
||||
@ -99,7 +91,7 @@ static int execute_start(struct lxc_handler *handler, void* data)
|
||||
|
||||
execvp(argv[0], argv);
|
||||
SYSERROR("Failed to exec %s", argv[0]);
|
||||
free(initpath);
|
||||
|
||||
out2:
|
||||
free(argv);
|
||||
out1:
|
||||
|
||||
@ -134,6 +134,12 @@ struct lxc_handler {
|
||||
int exit_status;
|
||||
};
|
||||
|
||||
struct execute_args {
|
||||
char *init_path;
|
||||
char *const *argv;
|
||||
int quiet;
|
||||
};
|
||||
|
||||
struct lxc_operations {
|
||||
int (*start)(struct lxc_handler *, void *);
|
||||
int (*post_start)(struct lxc_handler *, void *);
|
||||
|
||||
Loading…
Reference in New Issue
Block a user