RGBCube/serenity
1
Fork 0
mirror of https://github.com/RGBCube/serenity synced 2025-10-31 06:12:43 +00:00
Code Issues Activity Actions
serenity/Userland/Utilities/jail-create.cpp
Liav A 8289759f1d Kernel: Allow configuring a Jail to not impose PID isolation restriction 
This is quite useful for userspace applications that can't cope with the
restriction, but it's still useful to impose other non-configurable
restrictions by using jails.
2023-04-24 12:15:29 +02:00

31 lines
999 B
C++
Raw Blame History

/*
* Copyright (c) 2022, Liav A. <liavalb@hotmail.co.il>
*
* SPDX-License-Identifier: BSD-2-Clause
*/
#include <LibCore/ArgsParser.h>
#include <LibCore/System.h>
#include <LibMain/Main.h>
#include <unistd.h>
ErrorOr<int> serenity_main(Main::Arguments arguments)
{
StringView new_jail_name;
Core::ArgsParser args_parser;
bool pid_isolation = false;
args_parser.add_positional_argument(new_jail_name, "New jail name", "jail name");
args_parser.add_option(pid_isolation, "Use PID-isolation (as a custom isolation option)", "pid-isolation", 'p');
args_parser.parse(arguments);
TRY(Core::System::pledge("stdio jail"));
if (new_jail_name.is_null() || new_jail_name.is_empty())
return Error::from_string_view("Can't create a jail with empty name."sv);
JailIsolationFlags flags = JailIsolationFlags::None;
if (pid_isolation)
flags |= JailIsolationFlags::PIDIsolation;
TRY(Core::System::create_jail(new_jail_name, flags));
return 0;
}
Reference in a new issue View git blame Copy permalink