1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
|
/*
* This file and its contents are supplied under the terms of the
* Common Development and Distribution License ("CDDL"), version 1.0.
* You may only use this file in accordance with the terms of version
* 1.0 of the CDDL.
*
* A full copy of the text of the CDDL should have accompanied this
* source. A copy of the CDDL is also available via the Internet at
* http://www.illumos.org/license/CDDL.
*/
/*
* Copyright (c) 2014 Joyent, Inc. All rights reserved.
*/
/*
* Fail to attach a device without PRIV_NET_CONFIG
*/
#include <sys/types.h>
#include <sys/stat.h>
#include <fcntl.h>
#include <errno.h>
#include <assert.h>
#include <priv.h>
#include <string.h>
#include <unistd.h>
#include <stropts.h>
#include <stdio.h>
#include <sys/vnd.h>
#define VND_PATH "/dev/vnd/ctl"
int
main(int argc, const char *argv[])
{
int fd, ret;
priv_set_t *ps;
vnd_ioc_attach_t via;
if (argc < 2) {
(void) fprintf(stderr, "missing arguments...\n");
return (1);
}
if (strlen(argv[1]) >= VND_NAMELEN) {
(void) fprintf(stderr, "vnic name too long...\n");
return (1);
}
ps = priv_allocset();
assert(ps != NULL);
assert(priv_addset(ps, PRIV_SYS_NET_CONFIG) == 0);
assert(setppriv(PRIV_OFF, PRIV_PERMITTED, ps) == 0);
fd = open(VND_PATH, O_RDWR);
assert(fd >= 0);
(void) strlcpy(via.via_name, argv[1], VND_NAMELEN);
via.via_zoneid = 0;
via.via_errno = 0;
ret = ioctl(fd, VND_IOC_ATTACH, &via);
assert(ret == -1);
assert(errno == EPERM);
assert(close(fd) == 0);
return (0);
}
|