fix console overwrite any file

Prevent to specify a file not belonging to us as the output for the console Signed-off-by: Daniel Lezcano <dlezcano@fr.ibm.com>

fix console overwrite any file
00dbc43e · Daniel Lezcano · 28f602ff · 00dbc43e
Commit 00dbc43e authored Jul 20, 2010 by Daniel Lezcano
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 5 deletions

console.c src/lxc/console.c +6 -5

No files found.
--- a/src/lxc/console.c
+++ b/src/lxc/console.c
@@ -30,10 +30,10 @@
 #include <sys/types.h>
 #include <sys/un.h>
-#include <lxc/log.h>
+#include "log.h"
-#include <lxc/conf.h>
+#include "conf.h"
-#include <lxc/start.h> 	/* for struct lxc_handler */
+#include "start.h" 	/* for struct lxc_handler */
+#include "caps.h"
 #include "commands.h"
 #include "mainloop.h"
 #include "af_unix.h"
@@ -192,7 +192,8 @@ int lxc_create_console(struct lxc_conf *conf)
 		goto err;
 	}
-	fd = open(console->path, O_CLOEXEC | O_RDWR | O_CREAT | O_APPEND, 0600);
+	fd = lxc_unpriv(open(console->path, O_CLOEXEC | O_RDWR | O_CREAT |
+			     O_APPEND, 0600));
 	if (fd < 0) {
 		SYSERROR("failed to open '%s'", console->path);
 		goto err;