core: make sure PrivateDevices= makes /dev/log available

[elogind.git] / src / core / execute.h

diff --git a/src/core/execute.h b/src/core/execute.h
index 2c5d8bbf76ffb15a5f901143f897ef7d1d0ee367..3d6f77c8ef01f63e7971e3f46f1234a4733a67d4 100644 (file)
--- a/src/core/execute.h
+++ b/src/core/execute.h
@@ -38,6 +38,8 @@ typedef struct ExecRuntime ExecRuntime;
 #include "util.h"
 #include "set.h"
 #include "fdset.h"
+#include "missing.h"
+#include "namespace.h"
 
 typedef enum ExecInput {
         EXEC_INPUT_NULL,
@@ -93,7 +95,7 @@ struct ExecContext {
         char **environment;
         char **environment_files;
 
-        struct rlimit *rlimit[RLIMIT_NLIMITS];
+        struct rlimit *rlimit[_RLIMIT_MAX];
         char *working_directory, *root_directory;
 
         mode_t umask;
@@ -112,8 +114,6 @@ struct ExecContext {
 
         nsec_t timer_slack_nsec;
 
-        char *tcpwrap_name;
-
         char *tty_path;
 
         bool tty_reset;
@@ -157,6 +157,8 @@ struct ExecContext {
         bool private_tmp;
         bool private_network;
         bool private_devices;
+        bool read_only_system;
+        ProtectedHome protected_home;
 
         bool no_new_privileges;
 
@@ -184,6 +186,7 @@ struct ExecContext {
         bool nice_set:1;
         bool ioprio_set:1;
         bool cpu_sched_set:1;
+        bool no_new_privileges_set:1;
 };
 
 #include "cgroup.h"