chiark / gitweb /
~ianmdlvl / elogind.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 7491ccf)
nspawn: fix DeviceAllow list
authorDaniel Mack <daniel@zonque.org>
Fri, 17 Oct 2014 14:04:49 +0000 (16:04 +0200)
committerDaniel Mack <daniel@zonque.org>
Fri, 17 Oct 2014 14:07:12 +0000 (16:07 +0200)
Commit 864e17068 ("nspawn: actually allow access to /dev/net/tun in the
container") added "/dev/net/tun" to the list of allowed devices but forgot
to tweak the array length, which caused "/dev/kdbus/*" to be missed.

src/nspawn/nspawn.c patch | blob | history

diff --git a/src/nspawn/nspawn.c b/src/nspawn/nspawn.c
index f04d32613123f4da9805c9a293b773d39b4e1e1d..c567c8d2720fb8ae210e49f22107ccb0154fdc2a 100644 (file)
--- a/src/nspawn/nspawn.c
+++ b/src/nspawn/nspawn.c
@@ -1545,7 +1545,7 @@ static int register_machine(pid_t pid, int local_ifindex) {
                         return r;
                 }
 
-                r = sd_bus_message_append(m, "(sv)", "DeviceAllow", "a(ss)", 10,
+                r = sd_bus_message_append(m, "(sv)", "DeviceAllow", "a(ss)", 11,
                                           /* Allow the container to
                                            * access and create the API
                                            * device nodes, so that
Unnamed repository; edit this file 'description' to name the repository.