Use ping in sandbox

white_fish · June 19, 2017, 2:33pm

Hey,

I am trying to send a ping in the an application by using the following code:

int status = system(“ping -c 3 192.168.2.3”);

status should be 0 if the ping is successful, and something else, if it is not successful. This works when I don’t run my application in a sandbox, but it is not working, when I am running it in a sandbox. Has anybody an idea how this could be solved?

Thanks!

white_fish · June 20, 2017, 5:57am

I tried to add a section to the .adef file to have access to the ping-tool of linux:

requires:
{
file:
{
/bin/ping /bin/ping
}
}

And called the ping tool with system(“/bin/ping -c 3 192.168.2.3”); instead. But still the same…

white_fish · June 20, 2017, 9:27am

Found the solution:
/bin/sh has to be added to the sandbox section too. So it looks like this:

requires:
{
    file:
    {
    	/bin/sh  /bin/sh 
    	/bin/ping  /bin/ping
    }
}

Have a nice day!

kdunwoody · June 21, 2017, 5:51pm

You need /bin/sh if you want to use system() as system() calls /bin/sh first. This is a common source of security vulnerabilities if a end-user can influence the string passed to system() in any way.

Another way which doesn’t use /bin/sh would be to fork()/exec(), in which case you can call ping directly.

white_fish · June 22, 2017, 11:28am

Thanks, I will give it a try!

Topic		Replies	Views
Popen in sandboxed app Legato Application Framework	2	494	December 12, 2018
File I/O in Legato Application	1	629	July 4, 2017
How to write data to a file outside sandbox Legato Application Framework	13	4655	October 21, 2021
Accessing sysfs as RW from a sandboxed app	1	674	October 11, 2017
Permission denied with the httpServer example Legato Application Framework	5	3792	August 9, 2017

Use ping in sandbox

Related Topics