diff options
author | Alice Frosi <afrosi@redhat.com> | 2023-06-08 17:43:56 +0200 |
---|---|---|
committer | Stefano Brivio <sbrivio@redhat.com> | 2023-06-09 10:31:35 +0200 |
commit | f1f136577a52b1588da5f74683f41d14df410300 (patch) | |
tree | 10a66b9f78cc87182e9aac12db7b02dd6834bd6b /common/util.c | |
parent | 15b54482241083d52b6e9857a66fecbf915d467d (diff) | |
download | seitan-f1f136577a52b1588da5f74683f41d14df410300.tar seitan-f1f136577a52b1588da5f74683f41d14df410300.tar.gz seitan-f1f136577a52b1588da5f74683f41d14df410300.tar.bz2 seitan-f1f136577a52b1588da5f74683f41d14df410300.tar.lz seitan-f1f136577a52b1588da5f74683f41d14df410300.tar.xz seitan-f1f136577a52b1588da5f74683f41d14df410300.tar.zst seitan-f1f136577a52b1588da5f74683f41d14df410300.zip |
seitan,cooker: add wd to change work directory and mknod
./seitan-cooker demo/mknod.hjson demo/mknod.gluten demo/mknod.bpf
Start seitan with the socket option:
./seitan -s /tmp/seitan.sock -i demo/mknod.gluten
Start the container:
sudo rm -f /dev/lol
sudo chown $USER:$USER /tmp/seitan.sock
podman run -ti --runtime /usr/bin/crun \
--security-opt label=disable \
-v $(pwd)/test:/test \
--annotation run.oci.seccomp_bpf_data="$(base64 -w0 demo/mknod.bpf)" \
--annotation run.oci.seccomp.receiver=/tmp/seitan.sock fedora \
sh -c 'mknod /dev/lol c 1 7 && ls -l /dev/lol'
Diffstat (limited to 'common/util.c')
-rw-r--r-- | common/util.c | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/common/util.c b/common/util.c index a03b73e..f7fc288 100644 --- a/common/util.c +++ b/common/util.c @@ -34,8 +34,12 @@ const char *gluten_offset_name[OFFSET_TYPE_MAX + 1] = { "read-only data", "temporary data", "seccomp data", "instruction area", }; -const char *ns_type_name[NS_TYPE_MAX + 1] = { - "mnt", "cgroup", "uts", "ipc", "user", "pid", "net", "time", +const char *context_type_name[CONTEXT_TYPE_MAX + 1] = { + "mnt", "cgroup", "uts", "ipc", "user", "pid", "net", "time", "cwd", +}; + +const char *context_spec_type_name[CONTEXT_SPEC_TYPE_MAX + 1] = { + "none", "caller", "pid", "path", }; const char *bitwise_type_str[BITWISE_MAX + 1] = { "&", "|" }; |