Usage instructions:
make
sudo snap install snapd-hacker-toolbelt --devmode
sudo snapd-hacker-toolbelt.busybox sh
./oops
Last active
March 30, 2017 15:03
-
-
Save zyga/652b608517443988754b704a8adf5b3f to your computer and use it in GitHub Desktop.
setns apparmor bug
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .PHONY: all clean | |
| CFLAGS += -Wall | |
| all: oops | |
| clean: | |
| rm -f oops |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #define _GNU_SOURCE | |
| #include <fcntl.h> | |
| #include <sched.h> | |
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <sys/stat.h> | |
| #include <sys/types.h> | |
| #include <unistd.h> | |
| int main(void) | |
| { | |
| int fd = open("/proc/1/ns/mnt", O_RDONLY | O_CLOEXEC | O_PATH); | |
| if (fd < 0) { | |
| perror("cannot open"); | |
| return 1; | |
| } | |
| if (setns(fd, CLONE_NEWNS) < 0) { | |
| perror("cannot setns"); | |
| return 1; | |
| }; | |
| if (close(fd) < 0) { | |
| perror("cannot close"); | |
| return 1; | |
| } | |
| return 0; | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment