openkylin
/
bubblewrap
mirror of https://gitee.com/openkylin/bubblewrap.git
9
0
Fork 0
Code Issues Projects Releases Wiki Activity
bubblewrap/demos/userns-block-fd.py

40 lines
969 B
Python
Raw Normal View History

Use Python 3 for test/demo code Forwarded: not-needed Gbp-Pq: Topic debian Gbp-Pq: Name Use-Python-3-for-test-demo-code.patch
2018-01-17 22:10:40 +08:00
#!/usr/bin/env python3
Import Upstream version 0.4.0
2022-05-13 20:02:29 +08:00
import os, select, subprocess, sys, json
pipe_info = os.pipe()
userns_block = os.pipe()
pid = os.fork()
if pid != 0:
os.close(pipe_info[1])
os.close(userns_block[0])
select.select([pipe_info[0]], [], [])
data = json.load(os.fdopen(pipe_info[0]))
child_pid = str(data['child-pid'])
subprocess.call(["newuidmap", child_pid, "0", str(os.getuid()), "1"])
subprocess.call(["newgidmap", child_pid, "0", str(os.getgid()), "1"])
os.write(userns_block[1], b'1')
else:
os.close(pipe_info[0])
os.close(userns_block[1])
Import Upstream version 0.9.0
2024-04-24 09:12:01 +08:00
os.set_inheritable(pipe_info[1], True)
os.set_inheritable(userns_block[0], True)
Import Upstream version 0.4.0
2022-05-13 20:02:29 +08:00
args = ["bwrap",
"bwrap",
"--unshare-all",
"--unshare-user",
"--userns-block-fd", "%i" % userns_block[0],
"--info-fd", "%i" % pipe_info[1],
"--bind", "/", "/",
"cat", "/proc/self/uid_map"]
os.execlp(*args)