lxc/apidoc/attach__options_8h_source.html

 /* SPDX-License-Identifier: LGPL-2.1+ */

 #ifndef __LXC_ATTACH_OPTIONS_H
 #define __LXC_ATTACH_OPTIONS_H

 #include <sys/types.h>

 #ifdef  __cplusplus
 extern "C" {
 #endif

 typedef enum lxc_attach_env_policy_t {
     LXC_ATTACH_KEEP_ENV     = 0,
 #define LXC_ATTACH_KEEP_ENV     LXC_ATTACH_KEEP_ENV

     LXC_ATTACH_CLEAR_ENV    = 1,
 #define LXC_ATTACH_CLEAR_ENV    LXC_ATTACH_CLEAR_ENV
 } lxc_attach_env_policy_t;

 enum {
     /* The following are on by default: */
     LXC_ATTACH_MOVE_TO_CGROUP        = 0x00000001,
 #define LXC_ATTACH_MOVE_TO_CGROUP        LXC_ATTACH_MOVE_TO_CGROUP

     LXC_ATTACH_DROP_CAPABILITIES     = 0x00000002,
 #define LXC_ATTACH_DROP_CAPABILITIES     LXC_ATTACH_DROP_CAPABILITIES

     LXC_ATTACH_SET_PERSONALITY       = 0x00000004,
 #define LXC_ATTACH_SET_PERSONALITY       LXC_ATTACH_SET_PERSONALITY

     LXC_ATTACH_LSM_EXEC              = 0x00000008,
 #define LXC_ATTACH_LSM_EXEC              LXC_ATTACH_LSM_EXEC


     /* The following are off by default: */
     LXC_ATTACH_REMOUNT_PROC_SYS      = 0x00010000,
 #define LXC_ATTACH_REMOUNT_PROC_SYS      LXC_ATTACH_REMOUNT_PROC_SYS

     LXC_ATTACH_LSM_NOW               = 0x00020000,
 #define LXC_ATTACH_LSM_NOW               LXC_ATTACH_LSM_NOW

     /* Set PR_SET_NO_NEW_PRIVS to block execve() gainable privileges. */
     LXC_ATTACH_NO_NEW_PRIVS          = 0x00040000,
 #define LXC_ATTACH_NO_NEW_PRIVS          LXC_ATTACH_NO_NEW_PRIVS

     LXC_ATTACH_TERMINAL              = 0x00080000,
 #define LXC_ATTACH_TERMINAL              LXC_ATTACH_TERMINAL

     LXC_ATTACH_LSM_LABEL             = 0x00100000,
 #define LXC_ATTACH_LSM_LABEL             LXC_ATTACH_LSM_LABEL

     LXC_ATTACH_SETGROUPS             = 0x00200000,
 #define LXC_ATTACH_SETGROUPS             LXC_ATTACH_SETGROUPS


     /* We have 16 bits for things that are on by default and 16 bits that
      * are off by default, that should be sufficient to keep binary
      * compatibility for a while
      */
     LXC_ATTACH_DEFAULT               = 0x0000FFFF
 #define LXC_ATTACH_DEFAULT               LXC_ATTACH_DEFAULT
 };

 #define LXC_ATTACH_LSM (LXC_ATTACH_LSM_EXEC | LXC_ATTACH_LSM_NOW)

 typedef int (*lxc_attach_exec_t)(void* payload);

 typedef struct lxc_groups_t {
     size_t size;
     gid_t *list;
 } lxc_groups_t;

 #define LXC_ATTACH_DETECT_PERSONALITY ~0L

 typedef struct lxc_attach_options_t {
     int attach_flags;

     int namespaces;

     long personality;

     char *initial_cwd;

     uid_t uid;

     gid_t gid;

     lxc_attach_env_policy_t env_policy;

     char **extra_env_vars;

     char **extra_keep_env;

     int stdin_fd;
     int stdout_fd;
     int stderr_fd;
     int log_fd;

     char *lsm_label;

     lxc_groups_t groups;
 } lxc_attach_options_t;

 #define LXC_ATTACH_OPTIONS_DEFAULT                  \
     {                                                       \
         .attach_flags   = LXC_ATTACH_DEFAULT,           \
         .namespaces = -1,                   \
         .personality    = LXC_ATTACH_DETECT_PERSONALITY,    \
         .initial_cwd    = NULL,                 \
         .uid        = (uid_t)-1,                    \
         .gid        = (gid_t)-1,                    \
         .env_policy = LXC_ATTACH_KEEP_ENV,          \
         .extra_env_vars = NULL,                         \
         .extra_keep_env = NULL,                         \
         .stdin_fd   = 0,                            \
         .stdout_fd  = 1,                            \
         .stderr_fd  = 2,                            \
         .log_fd     = -EBADF,                       \
         .lsm_label  = NULL,                 \
         .groups     = {},                   \
     }

 typedef struct lxc_attach_command_t {
     char *program;
     char **argv;
 } lxc_attach_command_t;

 extern int lxc_attach_run_command(void* payload);

 extern int lxc_attach_run_shell(void* payload);

 #ifdef  __cplusplus
 }
 #endif

 #endif
lxc_attach_options_t::stdin_fd
int stdin_fd
Definition: attach_options.h:142

lxc_attach_options_t::log_fd
int log_fd
Definition: attach_options.h:148

lxc_attach_command_t
Definition: attach_options.h:183

lxc_attach_options_t::namespaces
int namespaces
Definition: attach_options.h:95

lxc_attach_options_t::groups
lxc_groups_t groups
Definition: attach_options.h:157

lxc_attach_command_t::program
char * program
Definition: attach_options.h:184

lxc_attach_options_t::uid
uid_t uid
Definition: attach_options.h:114

lxc_attach_options_t::stderr_fd
int stderr_fd
Definition: attach_options.h:144

lxc_attach_options_t::extra_env_vars
char ** extra_env_vars
Definition: attach_options.h:127

lxc_attach_options_t::lsm_label
char * lsm_label
Definition: attach_options.h:151

lxc_attach_options_t::extra_keep_env
char ** extra_keep_env
Definition: attach_options.h:132

lxc_attach_options_t::attach_flags
int attach_flags
Definition: attach_options.h:92

lxc_attach_command_t::argv
char ** argv
Definition: attach_options.h:185

lxc_attach_options_t::gid
gid_t gid
Definition: attach_options.h:121

lxc_groups_t
Definition: attach_options.h:80

lxc_attach_options_t::personality
long personality
Definition: attach_options.h:101

lxc_attach_options_t::env_policy
lxc_attach_env_policy_t env_policy
Definition: attach_options.h:124

lxc_attach_options_t
Definition: attach_options.h:90

lxc_attach_options_t::initial_cwd
char * initial_cwd
Definition: attach_options.h:107

lxc_attach_options_t::stdout_fd
int stdout_fd
Definition: attach_options.h:143