FLAG_NEW_LISTENER, &prog); if (notifyFd == -1) err(EXIT_FAILURE, "seccomp-install-notify-filter"); return ... sockPair[2]) { if (close(sockPair[0]) == -1) err(EXIT_FAILURE, "closeS…NULL, MS_REC | MS_PRIVATE, NULL) == -1) err(EXIT_FAILURE, "mount-MS_PRIVATE"); /* Ensure that ... root, NULL, MS_BIND, NULL) == -1) err(EXIT_FAILURE, "mount-MS_BIND"); /* Create di…ANONYMOUS, -1, 0); if (page == MAP_FAILED) err(EXIT_FAILURE, "mmap"); } /* Loop, handling incoming events ... poll(&pollfd, 1, -1); if (nready == -1) err(EXIT_FAILURE, "poll"); pri…malloc(fhsize); if (fhp == NULL) err(EXIT_FAILURE, "malloc"); /* Make an initial call to name ... Copies fhp->handle_bytes */ if (fhp == NULL) err(EXIT_FAILURE, "realloc"); /* Get …malloc(fhsize); if (fhp == NULL) err(EXIT_FAILURE, "malloc"); /* Make an initial call to name ... Copies fhp->handle_bytes */ if (fhp == NULL) err(EXIT_FAILURE, "realloc"); /* Get …child. */ if (sethostname(arg, strlen(arg)) == -1) err(EXIT_FAILURE, "sethostname"); /* Retrieve and display hostname ... uname(&uts) == -1) err(EXIT_FAILURE, "uname"); printf("uts…child. */ if (sethostname(arg, strlen(arg)) == -1) err(EXIT_FAILURE, "sethostname"); /* Retrieve and display hostname ... uname(&uts) == -1) err(EXIT_FAILURE, "uname"); printf("uts…child. */ if (sethostname(arg, strlen(arg)) == -1) err(EXIT_FAILURE, "sethostname"); /* Retrieve and display hostname ... uname(&uts) == -1) err(EXIT_FAILURE, "uname"); printf("uts…clock_gettime(CLOCK_MONOTONIC, &start) == -1) err(EXIT_FAILURE, "clock_gettime"); } if (clock_gettime(CLOCK ... MONOTONIC, &curr) == -1) err(EXIT_FAILURE, "clock_gettime"); secs = …clock_gettime(CLOCK_MONOTONIC, &start) == -1) err(EXIT_FAILURE, "clock_gettime"); } if (clock_gettime(CLOCK ... MONOTONIC, &curr) == -1) err(EXIT_FAILURE, "clock_gettime"); secs = …clock_gettime(CLOCK_MONOTONIC, &start) == -1) err(EXIT_FAILURE, "clock_gettime"); } if (clock_gettime(CLOCK ... MONOTONIC, &curr) == -1) err(EXIT_FAILURE, "clock_gettime"); secs = …name, MFD_ALLOW_SEALING); if (fd == -1) err(EXIT_FAILURE, "memfd_create"); /* Size the file ... command line. */ if (ftruncate(fd, len) == -1) err(EXIT_FAILURE, "truncate"); printfeventfd(0, 0); if (efd == -1) err(EXIT_FAILURE, "eventfd"); switch (fork()) { case ... uint64_t)); if (s != sizeof(uint64_t)) err(EXIT_FAILURE, "write"); } printf("Child completed …eventfd(0, 0); if (efd == -1) err(EXIT_FAILURE, "eventfd"); switch (fork()) { case ... uint64_t)); if (s != sizeof(uint64_t)) err(EXIT_FAILURE, "write"); } printf("Child completed …CREAT | O_RDWR, 0600); if (fd1 == -1) err(EXIT_FAILURE, "open"); printf("Parent ... switch (fork()) { case -1: err(EXIT_FAILURE, "fork"); case 0: printf("PID of childNULL, 0); if (s == -1 && errno != EAGAIN) err(EXIT_FAILURE, "futex-FUTEX_WAIT"); } } /* Release ... NULL, NULL, 0); if (s == -1) err(EXIT_FAILURE, "futex-FUTEX_WAKE"); } } int mainRDONLY | O_CLOEXEC); if (fd_userns == -1) err(EXIT_FAILURE, "open(%s)", optarg); break; case ... RECURSIVE : 0)); if (fd_tree == -1) err(EXIT_FAILURE, "open(%s)", source); if (fd_u…create, "/spu/example-context", 0, 0755); if (context == -1) err(EXIT_FAILURE, "spu_create"); /* * Write a 'stop ... open("/spu/example-context/mem", O_RDWR); if (fd == -1) err(EXI…error is supplied in a sock_extended_err structure: #define SO_EE_ORIGIN_NONE ... ORIGIN_ICMP6 3 struct sock_extended_err { uint32_t ee_errno; /* Error number */ uint8RDONLY | O_CLOEXEC); if (fd == -1) err(EXIT_FAILURE, "open"); if (setns ... Join that namespace */ err(EXIT_FAILURE, "setns"); execvp(argv[2], &argv[2]); /* Execute a command