lxc-attach: Clear environment and set container=lxc

The child process's environment should be manipulated the same way by lxc-attach as it would be by lxc-start or lxc-execute. Signed-off-by: David Ward <david.ward@ll.mit.edu> Acked-by: Serge E. Hallyn <serge.hallyn@ubuntu.com>

lxc-attach: Clear environment and set container=lxc
b3a39ba6 · David Ward · Stéphane Graber · 89d556d8 · b3a39ba6 · b3a39ba6
Commit b3a39ba6 authored Mar 20, 2013 by David Ward Committed by Stéphane Graber Mar 21, 2013
Hide whitespace changes
Inline Side-by-side

Showing with 21 additions and 0 deletions

attach.c src/lxc/attach.c +15 -0

attach.h src/lxc/attach.h +1 -0

lxc_attach.c src/lxc/lxc_attach.c +5 -0

No files found.
--- a/src/lxc/attach.c
+++ b/src/lxc/attach.c
@@ -277,6 +277,21 @@ int lxc_attach_drop_privs(struct lxc_proc_context_info *ctx)
 	return 0;
 }

+int lxc_attach_set_environment()
+{
+	if (clearenv()) {
+		SYSERROR("failed to clear environment");
+		/* don't error out though */
+	}
+
+	if (putenv("container=lxc")) {
+		SYSERROR("failed to set environment variable");
+		return -1;
+	}
+
+	return 0;
+}
+
 char *lxc_attach_getpwshell(uid_t uid)
 {
 	/* local variables */

--- a/src/lxc/attach.h
+++ b/src/lxc/attach.h
@@ -37,6 +37,7 @@ extern struct lxc_proc_context_info *lxc_proc_get_context_info(pid_t pid);
 extern int lxc_attach_to_ns(pid_t other_pid, int which);
 extern int lxc_attach_remount_sys_proc();
 extern int lxc_attach_drop_privs(struct lxc_proc_context_info *ctx);
+extern int lxc_attach_set_environment();

 extern char *lxc_attach_getpwshell(uid_t uid);


--- a/src/lxc/lxc_attach.c
+++ b/src/lxc/lxc_attach.c
@@ -411,6 +411,11 @@ int main(int argc, char *argv[])
 			return -1;
 		}

+		if (lxc_attach_set_environment()) {
+			ERROR("could not set environment");
+			return -1;
+		}
+
 		/* tell parent we are done setting up the container and wait
 		 * until we have been put in the container's cgroup, if
 		 * applicable */