chiark / gitweb /
~ianmdlvl / elogind.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1d5989f) | patch
Mount /run, /dev/shm usable to tasks when using SMACK.
authorAuke Kok <auke-jan.h.kok@intel.com>
Thu, 26 Sep 2013 21:41:09 +0000 (14:41 -0700)
committerAuke Kok <auke-jan.h.kok@intel.com>
Mon, 7 Oct 2013 17:23:20 +0000 (10:23 -0700)
commitd407c9402064d8b9d1b12dca6ca1ddb2688e5454
tree9b1a92f312926b3e63d6aa72fbb6fa18127365eftree | snapshot
parent1d5989fd803d2019de0f6aaaf3cfb1cb2bbc3cdbcommit | diff
Mount /run, /dev/shm usable to tasks when using SMACK.

Once systemd itself is running in a security domain for SMACK,
it will fail to start countless tasks due to missing privileges
for mounted and created directory structures. For /run and shm
specifically, we grant all tasks access.

These 2 mounts are allowed to fail, which will happen if the
system is not running a SMACK enabled kernel or security=none is
passed to the kernel.
src/core/mount-setup.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.