Browse Source

made container running as non root

master
Antoine 9 months ago
parent
commit
24b6f1ed11
2 changed files with 3 additions and 3 deletions
  1. +2
    -2
      Makefile
  2. +1
    -1
      src/container.c

+ 2
- 2
Makefile View File

@@ -43,10 +43,10 @@ release: all

# debug target
valgrind:
@sudo valgrind --leak-check=full --show-leak-kinds=all --trace-children=no --track-origins=yes $(BIN_DIR)/$(TARGET) /bin/ls -la /bin
@valgrind --leak-check=full --show-leak-kinds=all --trace-children=no --track-origins=yes $(BIN_DIR)/$(TARGET) /bin/ls -la /bin

run:
sudo $(BIN_DIR)/$(TARGET) /bin/ls -la /
$(BIN_DIR)/$(TARGET) /bin/ls -la /

clean:
@rm -f $(OBJ_DIR)/*.o


+ 1
- 1
src/container.c View File

@@ -58,7 +58,7 @@ container_t *initialize_container(struct clone_args cloneArgs)
{
container_t *c = (container_t *)malloc(sizeof(container_t));
// in order new net ns, new mount ns, new hostname ns, new pid ns, child ns
c->_cloneFlags = CLONE_NEWNET | CLONE_NEWNS | CLONE_NEWUTS | CLONE_NEWIPC | CLONE_NEWPID | CLONE_NEWCGROUP;
c->_cloneFlags = CLONE_NEWUSER | CLONE_NEWNET | CLONE_NEWNS | CLONE_NEWUTS | CLONE_NEWIPC | CLONE_NEWPID | CLONE_NEWCGROUP;
c->cloneArgs = cloneArgs;
return c;
}


Loading…
Cancel
Save