lind_run: re-exec with sudo when not running as root by rishabhBudhouliya · Pull Request #688 · Lind-Project/lind-wasm

rishabhBudhouliya · 2026-02-04T20:31:26Z

Purpose

After introducing chroot for filesystem isolation, wasmtime requires sudo to run the cage system. A non-root user running lind_run will require sudo.

#685

github-actions · 2026-02-04T20:52:48Z

End-to-End Test Report

Test Preview

Test Report

Deterministic Tests

Summary

Metric	Count
Total Test Cases	142
Number of Successes	142
Number of Failures	0
Number of Compilation Failure Native	0
Number of Runtime Failure Native	0
Number of Segmentation Fault Native	0
Number of Timeout During Native	0
Number of Lind Wasm Compile Failure	0
Number of Lind Wasm Runtime Failure	0
Number of Lind Wasm Segmentation Failure	0
Number of Timeout During Lind Wasm run	0
Number of Unknown Failure	0
Number of C Compiler and Wasm Output mismatch	0
Number of Fail Test: Native Succeeded (Should Fail)	0
Number of Fail Test: Wasm Succeeded (Should Fail)	0
Number of Fail Test: Both Native and Wasm Succeeded (Should Fail)	0
Number of Fail Test: Native Compilation Failure (Should Succeed)	0
Number of Fail Test: Wasm Compilation Failure (Should Succeed)	0

Test Results by Category

Test Case	Status	Error Type	Output
File Tests
chartests.c	Success	None	Success
chdir_getcwd.c	Success	None	Success
chmod.c	Success	None	Success
clock_gettime_highlevel.c	Success	None	Success
clock_gettime_simple.c	Success	None	Success
cloexec.c	Success	None	Success
close.c	Success	None	Success
doubleclose.c	Success	None	Success
dup.c	Success	None	Success
dup2.c	Success	None	Success
dup3.c	Success	None	Success
dupwrite.c	Success	None	Success
fchdir.c	Success	None	Success
fchmod.c	Success	None	Success
fcntl.c	Success	None	Success
fdatasync.c	Success	None	Success
filetest.c	Success	None	Success
filetest1000.c	Success	None	Success
flock.c	Success	None	Success
fstat.c	Success	None	Success
fstatfs.c	Success	None	Success
fsync.c	Success	None	Success
ftruncate.c	Success	None	Success
getcwd.c	Success	None	Success
getrandom.c	Success	None	Success
ioctl.c	Success	None	Success
link.c	Success	None	Success
lseek.c	Success	None	Success
mkdir_rmdir.c	Success	None	Success
open.c	Success	None	Success
pread_pwrite.c	Success	None	Success
printf.c	Success	None	Success
read.c	Success	None	Success
readbytes.c	Success	None	Success
readlink.c	Success	None	Success
readlinkat.c	Success	None	Success
rename.c	Success	None	Success
sc-writev.c	Success	None	Success
stat.c	Success	None	Success
statfs.c	Success	None	Success
sync_file_range.c	Success	None	Success
truncate.c	Success	None	Success
unlink.c	Success	None	Success
unlinkat.c	Success	None	Success
write.c	Success	None	Success
writeloop.c	Success	None	Success
writepartial.c	Success	None	Success
writev.c	Success	None	Success
Memory Tests
brk.c	Success	None	Success
malloc.c	Success	None	Success
malloc_large.c	Success	None	Success
memcpy.c	Success	None	Success
memory_error_test.c	Success	None	Success
mmap.c	Success	None	Success
mmap_aligned.c	Success	None	Success
mmap_complicated.c	Success	None	Success
mmap_file.c	Success	None	Success
mmap_shared.c	Success	None	Success
mprotect.c	Success	None	Success
mprotect_boundary.c	Success	None	Success
mprotect_end_region.c	Success	None	Success
mprotect_middle_region.c	Success	None	Success
mprotect_multiple_times.c	Success	None	Success
mprotect_same_value.c	Success	None	Success
mprotect_spanning_regions.c	Success	None	Success
sbrk.c	Success	None	Success
segfault.c	Success	None	Success
shm.c	Success	None	Success
shmtest.c	Success	None	Success
vtable.c	Success	None	Success
Networking Tests
dnstest.c	Success	None	Success
epollcreate1.c	Success	None	Success
gethostname.c	Success	None	Success
getsockopt.c	Success	None	Success
makepipe.c	Success	None	Success
pipe.c	Success	None	Success
pipe2.c	Success	None	Success
pipeinput.c	Success	None	Success
pipeinput2.c	Success	None	Success
pipeonestring.c	Success	None	Success
pipepong.c	Success	None	Success
pipewrite.c	Success	None	Success
poll.c	Success	None	Success
recvfrom-sendto.c	Success	None	Success
serverclient.c	Success	None	Success
shutdown.c	Success	None	Success
shutdown_fork.c	Success	None	Success
simple-select.c	Success	None	Success
simple_epoll.c	Success	None	Success
socket.c	Success	None	Success
socket_cloexec.c	Success	None	Success
socketepoll.c	Success	None	Success
socketpair.c	Success	None	Success
socketselect.c	Success	None	Success
tcp_connect_single.c	Success	None	Success
uds-getsockname.c	Success	None	Success
uds-socketselect.c	Success	None	Success
Process Tests
chain_thread.c	Success	None	Success
exit.c	Success	None	Success
fork.c	Success	None	Success
fork2malloc.c	Success	None	Success
fork_simple.c	Success	None	Success
fork_syscall.c	Success	None	Success
forkandopen.c	Success	None	Success
forkdup.c	Success	None	Success
forkexecuid.c	Success	None	Success
forkexecv-arg.c	Success	None	Success
forkexecv.c	Success	None	Success
forkfiles.c	Success	None	Success
forkmalloc.c	Success	None	Success
forknodup.c	Success	None	Success
function-ptr.c	Success	None	Success
getegid_syscall.c	Success	None	Success
getgid_syscall.c	Success	None	Success
getpid.c	Success	None	Success
getpid_syscall.c	Success	None	Success
getppid.c	Success	None	Success
getppid_syscall.c	Success	None	Success
getuid.c	Success	None	Success
getuid_syscall.c	Success	None	Success
hello-arg.c	Success	None	Success
hello.c	Success	None	Success
longjmp.c	Success	None	Success
mutex.c	Success	None	Success
noforkfiles.c	Success	None	Success
sem_forks.c	Success	None	Success
setsid.c	Success	None	Success
template.c	Success	None	Success
thread.c	Success	None	Success
wait.c	Success	None	Success
waitpid_anychild.c	Success	None	Success
waitpid_syscall.c	Success	None	Success
waitpid_wnohang.c	Success	None	Success
Signal Tests
alarm.c	Success	None	Success
setitimer.c	Success	None	Success
sigalrm.c	Success	None	Success
sigchld.c	Success	None	Success
signal-fork.c	Success	None	Success
signal-simple.c	Success	None	Success
signal_fork.c	Success	None	Success
signal_int_ignored.c	Success	None	Success
sigprocmask.c	Success	None	Success

Non Deterministic Tests

Summary

Metric	Count
Total Test Cases	0
Number of Successes	0
Number of Failures	0
Number of Compilation Failure Native	0
Number of Runtime Failure Native	0
Number of Segmentation Fault Native	0
Number of Timeout During Native	0
Number of Lind Wasm Compile Failure	0
Number of Lind Wasm Runtime Failure	0
Number of Lind Wasm Segmentation Failure	0
Number of Timeout During Lind Wasm run	0
Number of Unknown Failure	0
Number of C Compiler and Wasm Output mismatch	0
Number of Fail Test: Native Succeeded (Should Fail)	0
Number of Fail Test: Wasm Succeeded (Should Fail)	0
Number of Fail Test: Both Native and Wasm Succeeded (Should Fail)	0
Number of Fail Test: Native Compilation Failure (Should Succeed)	0
Number of Fail Test: Wasm Compilation Failure (Should Succeed)	0

Fail Tests

Summary

Metric	Count
Total Test Cases	1
Number of Successes	1
Number of Failures	0
Number of Compilation Failure Native	0
Number of Runtime Failure Native	0
Number of Segmentation Fault Native	0
Number of Timeout During Native	0
Number of Lind Wasm Compile Failure	0
Number of Lind Wasm Runtime Failure	0
Number of Lind Wasm Segmentation Failure	0
Number of Timeout During Lind Wasm run	0
Number of Unknown Failure	0
Number of C Compiler and Wasm Output mismatch	0
Number of Fail Test: Native Succeeded (Should Fail)	0
Number of Fail Test: Wasm Succeeded (Should Fail)	0
Number of Fail Test: Both Native and Wasm Succeeded (Should Fail)	0
Number of Fail Test: Native Compilation Failure (Should Succeed)	0
Number of Fail Test: Wasm Compilation Failure (Should Succeed)	0

Test Results by Category

Test Case	Status	Error Type	Output
Memory Tests
mmap-negative1.c	Success	None	Success

rishabhBudhouliya · 2026-02-04T21:03:31Z

@Yaxuan-w The lind_run sudo change breaks test parity - native and WASM now run in different privilege contexts. Now, native runs as a normal user but wasmtime is in sudo, so two of our tests: forkexecuid and getuid fail due to an user id mismatch.

This doesn't happen in CI because I am assuming everything runs as root.

commit 48e27f5 Author: MHemmings <discount.yoyos@gmail.com> Date: Sat Feb 7 08:37:03 2026 -0800 Add support for flags to be passed to wasmtestreport.py and lind_comp… (#691) * Add support for flags to be passed to wasmtestreport.py and lind_compile.sh scripts * Test permissions on wasmtestreport.py * Correct permissions on other scripts for tests * Remove support for json files and hard code math folder as variable commit a78185a Author: MHemmings <discount.yoyos@gmail.com> Date: Fri Feb 6 12:43:45 2026 -0800 Remove non-deterministic tests from test runner (#706) commit e717f4a Author: Alice Wen <40227173+Yaxuan-w@users.noreply.github.com> Date: Thu Feb 5 14:01:59 2026 -0500 Update gitignore (#702) * Update gitignore * Update gitignore commit df0e912 Author: Alice Wen <40227173+Yaxuan-w@users.noreply.github.com> Date: Thu Feb 5 11:22:00 2026 -0500 Add 3i and grate documentation (#493) * Add 3i and grate documentation * Deploy 3i doc to web * Fix type * Revise Lind-Wasm documentation for clarity and detail Updated the Lind-Wasm documentation to clarify the concepts of cages, grates, and the 3i system. Enhanced explanations of memory safety, control flow integrity, and the roles of Wasmtime and RawPOSIX. * Revising 3i doc according to comments * Update 3i.md (upper portion) I will comment on some of the lower portions which I think are wrong. * Update docs/index.md * Update docs/index.md * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update docs/index.md * Update docs/index.md * Update docs/index.md * Update docs/index.md * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update Wasm Implementation * Update wasm implementation * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Fix typo * Add 3i API doc + update 3i readme * Update 3i.md * Update 3i.md * Update 3i.md * todo * Update grate call routine doc and pic * Update according to comments * Add thread pool explanation * Remove ds_store * Add link and refine --------- Co-authored-by: Justin Cappos <justincappos@gmail.com> commit 44d910e Author: Rishabh Budhouliya <31189405+rishabhBudhouliya@users.noreply.github.com> Date: Wed Feb 4 19:06:04 2026 -0500 lind_run: re-exec with sudo when not running as root (#688) * add sudo if not root for lind_run * refactor

* Update Makefile, e2e, compilation, run scripts * Add chroot fix to lind_run * Copy to chroot * Squashed commit of the following: commit 48e27f5 Author: MHemmings <discount.yoyos@gmail.com> Date: Sat Feb 7 08:37:03 2026 -0800 Add support for flags to be passed to wasmtestreport.py and lind_comp… (#691) * Add support for flags to be passed to wasmtestreport.py and lind_compile.sh scripts * Test permissions on wasmtestreport.py * Correct permissions on other scripts for tests * Remove support for json files and hard code math folder as variable commit a78185a Author: MHemmings <discount.yoyos@gmail.com> Date: Fri Feb 6 12:43:45 2026 -0800 Remove non-deterministic tests from test runner (#706) commit e717f4a Author: Alice Wen <40227173+Yaxuan-w@users.noreply.github.com> Date: Thu Feb 5 14:01:59 2026 -0500 Update gitignore (#702) * Update gitignore * Update gitignore commit df0e912 Author: Alice Wen <40227173+Yaxuan-w@users.noreply.github.com> Date: Thu Feb 5 11:22:00 2026 -0500 Add 3i and grate documentation (#493) * Add 3i and grate documentation * Deploy 3i doc to web * Fix type * Revise Lind-Wasm documentation for clarity and detail Updated the Lind-Wasm documentation to clarify the concepts of cages, grates, and the 3i system. Enhanced explanations of memory safety, control flow integrity, and the roles of Wasmtime and RawPOSIX. * Revising 3i doc according to comments * Update 3i.md (upper portion) I will comment on some of the lower portions which I think are wrong. * Update docs/index.md * Update docs/index.md * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update docs/index.md * Update docs/index.md * Update docs/index.md * Update docs/index.md * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Update Wasm Implementation * Update wasm implementation * Update docs/internal/3i.md Co-authored-by: Justin Cappos <justincappos@gmail.com> * Fix typo * Add 3i API doc + update 3i readme * Update 3i.md * Update 3i.md * Update 3i.md * todo * Update grate call routine doc and pic * Update according to comments * Add thread pool explanation * Remove ds_store * Add link and refine --------- Co-authored-by: Justin Cappos <justincappos@gmail.com> commit 44d910e Author: Rishabh Budhouliya <31189405+rishabhBudhouliya@users.noreply.github.com> Date: Wed Feb 4 19:06:04 2026 -0500 lind_run: re-exec with sudo when not running as root (#688) * add sudo if not root for lind_run * refactor

* add sudo if not root for lind_run * refactor

rishabhBudhouliya added 2 commits February 4, 2026 14:46

add sudo if not root for lind_run

69e5414

refactor

1b06dac

Yaxuan-w self-requested a review February 4, 2026 20:33

rennergade approved these changes Feb 5, 2026

View reviewed changes

rennergade merged commit 44d910e into main Feb 5, 2026
3 checks passed

qianxichen233 pushed a commit that referenced this pull request Feb 12, 2026

lind_run: re-exec with sudo when not running as root (#688)

a45fae9

* add sudo if not root for lind_run * refactor

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

lind_run: re-exec with sudo when not running as root#688

lind_run: re-exec with sudo when not running as root#688
rennergade merged 2 commits intomainfrom
bug/issue-685

rishabhBudhouliya commented Feb 4, 2026 •

edited

Loading

Uh oh!

github-actions bot commented Feb 4, 2026

Summary

Test Results by Category

Summary

Summary

Test Results by Category

Uh oh!

rishabhBudhouliya commented Feb 4, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

rishabhBudhouliya commented Feb 4, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Purpose

Uh oh!

github-actions bot commented Feb 4, 2026

End-to-End Test Report

Summary

Test Results by Category

Summary

Summary

Test Results by Category

Uh oh!

rishabhBudhouliya commented Feb 4, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

rishabhBudhouliya commented Feb 4, 2026 •

edited

Loading