chiark / gitweb /
~ianmdlvl / elogind.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e0c7469) | patch
units: conditionalize configfs and debugfs with CAP_SYS_RAWIO
authorLennart Poettering <lennart@poettering.net>
Fri, 4 Jul 2014 01:10:09 +0000 (03:10 +0200)
committerLennart Poettering <lennart@poettering.net>
Fri, 4 Jul 2014 01:24:42 +0000 (03:24 +0200)
commitfa229d09281d435153b4cfd138a2a62fa66d889b
treef15b28718287883d2eb7f34785b43c9c6ea36c0atree | snapshot
parente0c74691c41a204eba2fd5f39615049fc9ff1648commit | diff
units: conditionalize configfs and debugfs with CAP_SYS_RAWIO

We really don't want these in containers as they provide a too lowlevel
look on the system.

Conditionalize them with CAP_SYS_RAWIO since that's required to access
/proc/kcore, /dev/kmem and similar, which feel similar in style. Also,
npsawn containers lack that capability.
units/sys-kernel-config.mount diff | blob | history
units/sys-kernel-debug.mount diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.