From 052424d7f5edb687adc0b9fe4cbc664f9f08d130 Mon Sep 17 00:00:00 2001
From: Stefano Brivio <sbrivio@redhat.com>
Date: Sun, 27 Mar 2022 21:55:29 +0200
Subject: passt: Accurate error reporting for sandbox()

It's actually quite easy to make it fail depending on the
environment, accurately report errors here.

Signed-off-by: Stefano Brivio <sbrivio@redhat.com>
---
 passt.c | 36 ++++++++++++++++++++++++++----------
 1 file changed, 26 insertions(+), 10 deletions(-)

(limited to 'passt.c')

diff --git a/passt.c b/passt.c
index c63a3cb..c469fe8 100644
--- a/passt.c
+++ b/passt.c
@@ -241,8 +241,6 @@ static int sandbox(struct ctx *c)
 {
 	int flags = CLONE_NEWIPC | CLONE_NEWNS | CLONE_NEWUTS;
 
-	errno = 0;
-
 	if (!c->netns_only) {
 		if (c->pasta_userns_fd == -1)
 			flags |= CLONE_NEWUSER;
@@ -259,19 +257,37 @@ static int sandbox(struct ctx *c)
 	if (!c->foreground || c->mode == MODE_PASST)
 		flags |= CLONE_NEWPID;
 
-	unshare(flags);
+	if (unshare(flags)) {
+		perror("unshare");
+		return -errno;
+	}
 
-	mount("", "/", "", MS_UNBINDABLE | MS_REC, NULL);
-	mount("", TMPDIR, "tmpfs", MS_NODEV | MS_NOEXEC | MS_NOSUID | MS_RDONLY,
-	      "nr_inodes=2,nr_blocks=0");
-	if (chdir(TMPDIR))
+	if (mount("", "/", "", MS_UNBINDABLE | MS_REC, NULL)) {
+		perror("mount /");
 		return -errno;
+	}
 
-	syscall(SYS_pivot_root, ".", ".");
-	umount2(".", MNT_DETACH | UMOUNT_NOFOLLOW);
+	if (mount("", TMPDIR, "tmpfs",
+		  MS_NODEV | MS_NOEXEC | MS_NOSUID | MS_RDONLY,
+		  "nr_inodes=2,nr_blocks=0")) {
+		perror("mount tmpfs");
+		return -errno;
+	}
 
-	if (errno)
+	if (chdir(TMPDIR)) {
+		perror("chdir");
 		return -errno;
+	}
+
+	if (syscall(SYS_pivot_root, ".", ".")) {
+		perror("pivot_root");
+		return -errno;
+	}
+
+	if (umount2(".", MNT_DETACH | UMOUNT_NOFOLLOW)) {
+		perror("umount2");
+		return -errno;
+	}
 
 	drop_caps();	/* Relative to the new user namespace this time. */
 
-- 
cgit v1.2.3