1*053f45beSAndroid Build Coastguard Worker /*
2*053f45beSAndroid Build Coastguard Worker * Copyright © 2019 Alexey Dobriyan <[email protected]>
3*053f45beSAndroid Build Coastguard Worker *
4*053f45beSAndroid Build Coastguard Worker * Permission to use, copy, modify, and distribute this software for any
5*053f45beSAndroid Build Coastguard Worker * purpose with or without fee is hereby granted, provided that the above
6*053f45beSAndroid Build Coastguard Worker * copyright notice and this permission notice appear in all copies.
7*053f45beSAndroid Build Coastguard Worker *
8*053f45beSAndroid Build Coastguard Worker * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9*053f45beSAndroid Build Coastguard Worker * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10*053f45beSAndroid Build Coastguard Worker * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
11*053f45beSAndroid Build Coastguard Worker * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12*053f45beSAndroid Build Coastguard Worker * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
13*053f45beSAndroid Build Coastguard Worker * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
14*053f45beSAndroid Build Coastguard Worker * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
15*053f45beSAndroid Build Coastguard Worker */
16*053f45beSAndroid Build Coastguard Worker /*
17*053f45beSAndroid Build Coastguard Worker * Test that setns(CLONE_NEWNET) points to new /proc/net content even
18*053f45beSAndroid Build Coastguard Worker * if old one is in dcache.
19*053f45beSAndroid Build Coastguard Worker *
20*053f45beSAndroid Build Coastguard Worker * FIXME /proc/net/unix is under CONFIG_UNIX which can be disabled.
21*053f45beSAndroid Build Coastguard Worker */
22*053f45beSAndroid Build Coastguard Worker #undef NDEBUG
23*053f45beSAndroid Build Coastguard Worker #include <assert.h>
24*053f45beSAndroid Build Coastguard Worker #include <errno.h>
25*053f45beSAndroid Build Coastguard Worker #include <sched.h>
26*053f45beSAndroid Build Coastguard Worker #include <signal.h>
27*053f45beSAndroid Build Coastguard Worker #include <stdio.h>
28*053f45beSAndroid Build Coastguard Worker #include <stdlib.h>
29*053f45beSAndroid Build Coastguard Worker #include <string.h>
30*053f45beSAndroid Build Coastguard Worker #include <unistd.h>
31*053f45beSAndroid Build Coastguard Worker #include <sys/types.h>
32*053f45beSAndroid Build Coastguard Worker #include <sys/stat.h>
33*053f45beSAndroid Build Coastguard Worker #include <fcntl.h>
34*053f45beSAndroid Build Coastguard Worker #include <sys/socket.h>
35*053f45beSAndroid Build Coastguard Worker
36*053f45beSAndroid Build Coastguard Worker static pid_t pid = -1;
37*053f45beSAndroid Build Coastguard Worker
f(void)38*053f45beSAndroid Build Coastguard Worker static void f(void)
39*053f45beSAndroid Build Coastguard Worker {
40*053f45beSAndroid Build Coastguard Worker if (pid > 0) {
41*053f45beSAndroid Build Coastguard Worker kill(pid, SIGTERM);
42*053f45beSAndroid Build Coastguard Worker }
43*053f45beSAndroid Build Coastguard Worker }
44*053f45beSAndroid Build Coastguard Worker
main(void)45*053f45beSAndroid Build Coastguard Worker int main(void)
46*053f45beSAndroid Build Coastguard Worker {
47*053f45beSAndroid Build Coastguard Worker int fd[2];
48*053f45beSAndroid Build Coastguard Worker char _ = 0;
49*053f45beSAndroid Build Coastguard Worker int nsfd;
50*053f45beSAndroid Build Coastguard Worker
51*053f45beSAndroid Build Coastguard Worker atexit(f);
52*053f45beSAndroid Build Coastguard Worker
53*053f45beSAndroid Build Coastguard Worker /* Check for priviledges and syscall availability straight away. */
54*053f45beSAndroid Build Coastguard Worker if (unshare(CLONE_NEWNET) == -1) {
55*053f45beSAndroid Build Coastguard Worker if (errno == ENOSYS || errno == EPERM) {
56*053f45beSAndroid Build Coastguard Worker return 4;
57*053f45beSAndroid Build Coastguard Worker }
58*053f45beSAndroid Build Coastguard Worker return 1;
59*053f45beSAndroid Build Coastguard Worker }
60*053f45beSAndroid Build Coastguard Worker /* Distinguisher between two otherwise empty net namespaces. */
61*053f45beSAndroid Build Coastguard Worker if (socket(AF_UNIX, SOCK_STREAM, 0) == -1) {
62*053f45beSAndroid Build Coastguard Worker return 1;
63*053f45beSAndroid Build Coastguard Worker }
64*053f45beSAndroid Build Coastguard Worker
65*053f45beSAndroid Build Coastguard Worker if (pipe(fd) == -1) {
66*053f45beSAndroid Build Coastguard Worker return 1;
67*053f45beSAndroid Build Coastguard Worker }
68*053f45beSAndroid Build Coastguard Worker
69*053f45beSAndroid Build Coastguard Worker pid = fork();
70*053f45beSAndroid Build Coastguard Worker if (pid == -1) {
71*053f45beSAndroid Build Coastguard Worker return 1;
72*053f45beSAndroid Build Coastguard Worker }
73*053f45beSAndroid Build Coastguard Worker
74*053f45beSAndroid Build Coastguard Worker if (pid == 0) {
75*053f45beSAndroid Build Coastguard Worker if (unshare(CLONE_NEWNET) == -1) {
76*053f45beSAndroid Build Coastguard Worker return 1;
77*053f45beSAndroid Build Coastguard Worker }
78*053f45beSAndroid Build Coastguard Worker
79*053f45beSAndroid Build Coastguard Worker if (write(fd[1], &_, 1) != 1) {
80*053f45beSAndroid Build Coastguard Worker return 1;
81*053f45beSAndroid Build Coastguard Worker }
82*053f45beSAndroid Build Coastguard Worker
83*053f45beSAndroid Build Coastguard Worker pause();
84*053f45beSAndroid Build Coastguard Worker
85*053f45beSAndroid Build Coastguard Worker return 0;
86*053f45beSAndroid Build Coastguard Worker }
87*053f45beSAndroid Build Coastguard Worker
88*053f45beSAndroid Build Coastguard Worker if (read(fd[0], &_, 1) != 1) {
89*053f45beSAndroid Build Coastguard Worker return 1;
90*053f45beSAndroid Build Coastguard Worker }
91*053f45beSAndroid Build Coastguard Worker
92*053f45beSAndroid Build Coastguard Worker {
93*053f45beSAndroid Build Coastguard Worker char buf[64];
94*053f45beSAndroid Build Coastguard Worker snprintf(buf, sizeof(buf), "/proc/%u/ns/net", pid);
95*053f45beSAndroid Build Coastguard Worker nsfd = open(buf, O_RDONLY);
96*053f45beSAndroid Build Coastguard Worker if (nsfd == -1) {
97*053f45beSAndroid Build Coastguard Worker return 1;
98*053f45beSAndroid Build Coastguard Worker }
99*053f45beSAndroid Build Coastguard Worker }
100*053f45beSAndroid Build Coastguard Worker
101*053f45beSAndroid Build Coastguard Worker /* Reliably pin dentry into dcache. */
102*053f45beSAndroid Build Coastguard Worker (void)open("/proc/net/unix", O_RDONLY);
103*053f45beSAndroid Build Coastguard Worker
104*053f45beSAndroid Build Coastguard Worker if (setns(nsfd, CLONE_NEWNET) == -1) {
105*053f45beSAndroid Build Coastguard Worker return 1;
106*053f45beSAndroid Build Coastguard Worker }
107*053f45beSAndroid Build Coastguard Worker
108*053f45beSAndroid Build Coastguard Worker kill(pid, SIGTERM);
109*053f45beSAndroid Build Coastguard Worker pid = 0;
110*053f45beSAndroid Build Coastguard Worker
111*053f45beSAndroid Build Coastguard Worker {
112*053f45beSAndroid Build Coastguard Worker char buf[4096];
113*053f45beSAndroid Build Coastguard Worker ssize_t rv;
114*053f45beSAndroid Build Coastguard Worker int fd;
115*053f45beSAndroid Build Coastguard Worker
116*053f45beSAndroid Build Coastguard Worker fd = open("/proc/net/unix", O_RDONLY);
117*053f45beSAndroid Build Coastguard Worker if (fd == -1) {
118*053f45beSAndroid Build Coastguard Worker return 1;
119*053f45beSAndroid Build Coastguard Worker }
120*053f45beSAndroid Build Coastguard Worker
121*053f45beSAndroid Build Coastguard Worker #define S "Num RefCount Protocol Flags Type St Inode Path\n"
122*053f45beSAndroid Build Coastguard Worker rv = read(fd, buf, sizeof(buf));
123*053f45beSAndroid Build Coastguard Worker
124*053f45beSAndroid Build Coastguard Worker assert(rv == strlen(S));
125*053f45beSAndroid Build Coastguard Worker assert(memcmp(buf, S, strlen(S)) == 0);
126*053f45beSAndroid Build Coastguard Worker }
127*053f45beSAndroid Build Coastguard Worker
128*053f45beSAndroid Build Coastguard Worker return 0;
129*053f45beSAndroid Build Coastguard Worker }
130