+import os
+import setns
+
+from argparse import ArgumentParser
+
+drop_capabilities='cap_sys_admin,cap_sys_boot,cap_sys_module'
+
+# can set to True here, but also use the -d option
+debug = False
+
+def getarch(f):
+ output = os.popen('readelf -h %s 2>&1'%f).readlines()
+ classlines = [x for x in output if ('Class' in x.split(':')[0])]
+ line = classlines[0]
+ c = line.split(':')[1]
+ if ('ELF64' in c):
+ return 'x86_64'
+ elif ('ELF32' in c):
+ return 'i686'
+ else:
+ raise Exception('Could not determine architecture')
+
+def umount(fs_dir):
+ output = os.popen('/bin/umount %s 2>&1'%fs_dir).read()
+ return ('device is busy' not in output)
+
+def main ():
+ parser = ArgumentParser()
+ parser.add_argument("-n", "--nonet",
+ action="store_true", dest="netns", default=False,
+ help="Don't enter network namespace")
+ parser.add_argument("-m", "--nomnt",
+ action="store_true", dest="mntns", default=False,
+ help="Don't enter mount namespace")
+ parser.add_argument("-p", "--nopid",
+ action="store_true", dest="pidns", default=False,
+ help="Don't enter pid namespace")
+ parser.add_argument("-r", "--root",
+ action="store_true", dest="root", default=False,
+ help="Enter as root: be careful")
+ parser.add_argument("-i","--internal",
+ action="store_true", dest="internal", default=False,
+ help="does *not* prepend '-- -c' to arguments - or invoke lxcsu-internal")
+ parser.add_argument("-d","--debug",
+ action='store_true', dest='debug', default=False,
+ help="debug option")
+ parser.add_argument("-s","--nosliceuid", dest="nosliceuid", default=False,
+ help="do not change to slice uid inside of slice")
+ parser.add_argument ("slice_name")
+ parser.add_argument ("command_to_run",nargs="*")
+
+ args = parser.parse_args()
+ slice_name=args.slice_name
+
+ # unless we run the symlink 'lxcsu-internal', or we specify the -i option, prepend '--' '-c'
+ if sys.argv[0].find('internal')>=0: args.internal=True
+
+ if len(args.command_to_run)>0 and (args.command_to_run[0] == "/sbin/service"):
+ # A quick hack to support nodemanager interfaces.py when restarting
+ # networking in a slice.
+ args.nosliceuid = True
+
+ # plain lxcsu
+ if not args.internal:
+ # no command given: enter interactive shell
+ if not args.command_to_run: args.command_to_run=['/bin/sh']
+ args.command_to_run = [ '-c' ] + [" ".join(args.command_to_run)]
+
+ # support for either setting debug at the top of this file, or on the command-line
+ if args.debug:
+ global debug
+ debug=True
+
+ try:
+ cmd = 'grep %s /proc/*/cgroup | grep freezer'%slice_name
+ output = os.popen(cmd).readlines()
+ except:
+ print "Error finding slice %s"%slice_name
+ exit(1)
+
+ slice_spec = None
+
+ # provide a default as this is not always properly computed
+ arch = None
+
+ for e in output:
+ try:
+ l = e.rstrip()
+ path = l.split(':')[0]
+ comp = l.rsplit(':')[-1]
+ slice_name_check = comp.rsplit('/')[-1]
+ if debug: print "dealing with >%s<"%slice_name_check
+
+ if (slice_name_check == slice_name):
+ if debug: print "found %s"%slice_name
+ slice_path = path
+ pid = slice_path.split('/')[2]
+ cmdline = open('/proc/%s/cmdline'%pid).read().rstrip('\n\x00')
+ if (cmdline == '/sbin/init') or (cmdline.startswith("init [")):
+ slice_spec = slice_path
+ arch = getarch('/proc/%s/exe'%pid)
+ break
+ except Exception,e:
+ if debug:
+ import traceback
+ print "BEG lxcsu - ignoring exception"
+ traceback.print_exc()
+ print "END lxcsu - ignoring exception"
+ pass
+
+ if (not slice_spec or not pid):
+ print "Not started: %s"%slice_name
+ exit(1)