docs/linux_pid_namespace_support.md - Issue 1309473002: WIP: Migrate Wiki content over to src/docs

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: docs/linux_pid_namespace_support.md

Issue 1309473002: WIP: Migrate Wiki content over to src/docs (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Created 5 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

OLD	NEW
(Empty)
	1 The [LinuxSUIDSandbox](LinuxSUIDSandbox.md) currently relies on support for the CLONE\_NEWPID flag in Linux's [clone() system call](http://www.kernel.org/doc/ma n-pages/online/pages/man2/clone.2.html). You can check whether your system supp orts PID namespaces with the code below, which must be run as root:

	2

	3 ```

	4 #define _GNU_SOURCE

	5 #include <unistd.h>

	6 #include <sched.h>

	7 #include <stdio.h>

	8 #include <sys/wait.h>

	9

	10 #if !defined(CLONE_NEWPID)

	11 #define CLONE_NEWPID 0x20000000

	12 #endif

	13

	14 int worker(void* arg) {

	15 const pid_t pid = getpid();

	16 if (pid == 1) {

	17 printf("PID namespaces are working\n");

	18 } else {

	19 printf("PID namespaces ARE NOT working. Child pid: %d\n", pid);

	20 }

	21

	22 return 0;

	23 }

	24

	25 int main() {

	26 if (getuid()) {

	27 fprintf(stderr, "Must be run as root.\n");

	28 return 1;

	29 }

	30

	31 char stack[8192];

	32 const pid_t child = clone(worker, stack + sizeof(stack), CLONE_NEWPID, NULL);

	33 if (child == -1) {

	34 perror("clone");

	35 fprintf(stderr, "Clone failed. PID namespaces ARE NOT supported\n");

	36 }

	37

	38 waitpid(child, NULL, 0);

	39

	40 return 0;

	41 }

	42 ```

OLD	NEW

« no previous file with comments | « docs/linux_password_storage.md ('k') | docs/linux_plugins.md » ('j') | no next file with comments »