Split installation process.

[eval.git] / src / box.c

diff --git a/src/box.c b/src/box.c
index cd5b8c4ac0c8df4b52ddb23a319bb236e753d095..2a409a935b6cd1b9662fe2eaece27ea40e73cbaa 100644 (file)
--- a/src/box.c
+++ b/src/box.c
@@ -15,6 +15,7 @@
 #include <stdarg.h>
 #include <unistd.h>
 #include <getopt.h>
+#include <time.h>
 #include <sys/wait.h>
 #include <sys/user.h>
 #include <sys/time.h>
@@ -34,6 +35,7 @@ static int use_wall_clock;
 static int file_access;
 static int verbose;
 static int memory_limit;
+static char *redir_stdin, *redir_stdout;
 
 static pid_t box_pid;
 static int is_ptraced;
@@ -197,9 +199,11 @@ valid_syscall(struct user *u)
     case SYS_ftruncate64:
     case SYS_fstat64:
     case SYS_fcntl:
+    case SYS_fcntl64:
     case SYS_mmap:
     case SYS_munmap:
     case SYS_ioctl:
+    case SYS_uname:
       return 1;
     case SYS_time:
     case SYS_alarm:
@@ -222,6 +226,7 @@ valid_syscall(struct user *u)
     case SYS_mprotect:
     case SYS_sigprocmask:
     case SYS_getdents:
+    case SYS_getdents64:
     case SYS__newselect:
     case SYS_fdatasync:
     case SYS_mremap:
@@ -236,6 +241,7 @@ valid_syscall(struct user *u)
     case SYS_rt_sigqueueinfo:
     case SYS_rt_sigsuspend:
     case SYS_mmap2:
+    case SYS__sysctl:
       return (filter_syscalls == 1);
     default:
       return 0;
@@ -352,7 +358,7 @@ boxkeeper(void)
          timeradd(&rus.ru_utime, &rus.ru_stime, &total);
          wall = time(NULL) - start_time;
          if ((use_wall_clock ? wall : total.tv_sec) > timeout)
-           die("Timeout exceeded (after exit).");
+           die("Time limit exceeded (after exit).");
          fprintf(stderr, "OK (%d sec real, %d sec wall, %d syscalls)\n", (int) total.tv_sec, wall, syscall_count);
          exit(0);
        }
@@ -417,6 +423,18 @@ box_inside(int argc, char **argv)
 
   memcpy(args, argv, argc * sizeof(char *));
   args[argc] = NULL;
+  if (redir_stdin)
+    {
+      close(0);
+      if (open(redir_stdin, O_RDONLY) != 0)
+       die("open(\"%s\"): %m", redir_stdin);
+    }
+  if (redir_stdout)
+    {
+      close(1);
+      if (open(redir_stdout, O_WRONLY | O_CREAT | O_TRUNC, 0666) != 1)
+       die("open(\"%s\"): %m", redir_stdout);
+    }
   close(2);
   dup(1);
   setpgrp();
@@ -444,9 +462,12 @@ Usage: box [<options>] -- <command> <arguments>\n\
 \n\
 Options:\n\
 -a <level>\tSet file access level (0=none, 1=cwd, 2=/etc,/lib,..., 3=whole fs, 9=no checks; needs -f)\n\
+-c <dir>\tChange directory to <dir> first\n\
 -e\t\tPass full environment of parent process\n\
 -f\t\tFilter system calls (-ff=very restricted)\n\
+-i <file>\tRedirect stdin from <file>\n\
 -m <size>\tLimit address space to <size> KB\n\
+-o <file>\tRedirect stdout to <file>\n\
 -t <time>\tStop after <time> seconds\n\
 -v\t\tBe verbose\n\
 -w\t\tMeasure wall clock time instead of run time\n\
@@ -459,22 +480,32 @@ main(int argc, char **argv)
 {
   int c;
   uid_t uid;
+  char *cwd = NULL;
 
-  while ((c = getopt(argc, argv, "a:efm:t:vw")) >= 0)
+  while ((c = getopt(argc, argv, "a:c:efi:m:o:t:vw")) >= 0)
     switch (c)
       {
       case 'a':
        file_access = atol(optarg);
        break;
+      case 'c':
+       cwd = optarg;
+       break;
       case 'e':
        pass_environ = 1;
        break;
       case 'f':
        filter_syscalls++;
        break;
+      case 'i':
+       redir_stdin = optarg;
+       break;
       case 'm':
        memory_limit = atol(optarg);
        break;
+      case 'o':
+       redir_stdout = optarg;
+       break;
       case 't':
        timeout = atol(optarg);
        break;
@@ -493,6 +524,8 @@ main(int argc, char **argv)
   uid = geteuid();
   if (setreuid(uid, uid) < 0)
     die("setreuid: %m");
+  if (cwd && chdir(cwd))
+    die("chdir: %m");
   box_pid = fork();
   if (box_pid < 0)
     die("fork: %m");