We use cookies to ensure you get the best experience on our website
Inicio Explorar Axuda
Rexistro Iniciar sesión
0ct0pu5
/
moby
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 6af7d6ea2d
Ramas Etiquetas
moby
/
vendor
/
github.com
/
opencontainers
/
runc
/
libcontainer
/
utils
/
utils_unix.go

utils_unix.go 1.7 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. //go:build !windows
    2. 

  2. // +build !windows
    3. 

  3. 

  4. package utils
    5. 

  5. 

  6. import (
    7. 

  7. 	"fmt"
    8. 

  8. 	"os"
    9. 

  9. 	"strconv"
    10. 

  10. 

  11. 	"golang.org/x/sys/unix"
    12. 

  12. )
    13. 

  13. 

  14. // EnsureProcHandle returns whether or not the given file handle is on procfs.
    15. 

  15. func EnsureProcHandle(fh *os.File) error {
    16. 

  16. 	var buf unix.Statfs_t
    17. 

  17. 	if err := unix.Fstatfs(int(fh.Fd()), &buf); err != nil {
    18. 

  18. 		return fmt.Errorf("ensure %s is on procfs: %w", fh.Name(), err)
    19. 

  19. 	}
    20. 

  20. 	if buf.Type != unix.PROC_SUPER_MAGIC {
    21. 

  21. 		return fmt.Errorf("%s is not on procfs", fh.Name())
    22. 

  22. 	}
    23. 

  23. 	return nil
    24. 

  24. }
    25. 

  25. 

  26. // CloseExecFrom applies O_CLOEXEC to all file descriptors currently open for
    27. 

  27. // the process (except for those below the given fd value).
    28. 

  28. func CloseExecFrom(minFd int) error {
    29. 

  29. 	fdDir, err := os.Open("/proc/self/fd")
    30. 

  30. 	if err != nil {
    31. 

  31. 		return err
    32. 

  32. 	}
    33. 

  33. 	defer fdDir.Close()
    34. 

  34. 

  35. 	if err := EnsureProcHandle(fdDir); err != nil {
    36. 

  36. 		return err
    37. 

  37. 	}
    38. 

  38. 

  39. 	fdList, err := fdDir.Readdirnames(-1)
    40. 

  40. 	if err != nil {
    41. 

  41. 		return err
    42. 

  42. 	}
    43. 

  43. 	for _, fdStr := range fdList {
    44. 

  44. 		fd, err := strconv.Atoi(fdStr)
    45. 

  45. 		// Ignore non-numeric file names.
    46. 

  46. 		if err != nil {
    47. 

  47. 			continue
    48. 

  48. 		}
    49. 

  49. 		// Ignore descriptors lower than our specified minimum.
    50. 

  50. 		if fd < minFd {
    51. 

  51. 			continue
    52. 

  52. 		}
    53. 

  53. 		// Intentionally ignore errors from unix.CloseOnExec -- the cases where
    54. 

  54. 		// this might fail are basically file descriptors that have already
    55. 

  55. 		// been closed (including and especially the one that was created when
    56. 

  56. 		// os.ReadDir did the "opendir" syscall).
    57. 

  57. 		unix.CloseOnExec(fd)
    58. 

  58. 	}
    59. 

  59. 	return nil
    60. 

  60. }
    61. 

  61. 

  62. // NewSockPair returns a new unix socket pair
    63. 

  63. func NewSockPair(name string) (parent *os.File, child *os.File, err error) {
    64. 

  64. 	fds, err := unix.Socketpair(unix.AF_LOCAL, unix.SOCK_STREAM|unix.SOCK_CLOEXEC, 0)
    65. 

  65. 	if err != nil {
    66. 

  66. 		return nil, nil, err
    67. 

  67. 	}
    68. 

  68. 	return os.NewFile(uintptr(fds[1]), name+"-p"), os.NewFile(uintptr(fds[0]), name+"-c"), nil
    69. 

  69. }
    70.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5