chiark
/
gitweb
/
~ianmdlvl
/
elogind.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (parent:
fd42f6e
)
nspawn: properly bind mount /sys/fs/selinux into container, since /selinux moved...
author
Lennart Poettering
<lennart@poettering.net>
Fri, 29 Jul 2011 01:25:05 +0000
(
03:25
+0200)
committer
Lennart Poettering
<lennart@poettering.net>
Fri, 29 Jul 2011 01:25:05 +0000
(
03:25
+0200)
src/nspawn.c
patch
|
blob
|
history
diff --git
a/src/nspawn.c
b/src/nspawn.c
index 8d7e0d03a973304662d8fbf757c7dae27356248f..a1ed425f05818ab970d262447e467ad71ac63351 100644
(file)
--- a/
src/nspawn.c
+++ b/
src/nspawn.c
@@
-133,8
+133,8
@@
static int mount_all(const char *dest) {
{ "/dev/pts", "/dev/pts", "bind", NULL, MS_BIND, true },
{ "tmpfs", "/run", "tmpfs", "mode=755", MS_NOSUID|MS_NODEV, true },
#ifdef HAVE_SELINUX
{ "/dev/pts", "/dev/pts", "bind", NULL, MS_BIND, true },
{ "tmpfs", "/run", "tmpfs", "mode=755", MS_NOSUID|MS_NODEV, true },
#ifdef HAVE_SELINUX
- { "/s
elinux", "/selinux", "bind", NULL,
MS_BIND, false }, /* Bind mount first */
- { "/s
elinux", "/selinux", "bind", NULL,
MS_BIND|MS_RDONLY|MS_REMOUNT, false }, /* Then, make it r/o */
+ { "/s
ys/fs/selinux", "/sys/fs/selinux", "bind", NULL,
MS_BIND, false }, /* Bind mount first */
+ { "/s
ys/fs/selinux", "/sys/fs/selinux", "bind", NULL,
MS_BIND|MS_RDONLY|MS_REMOUNT, false }, /* Then, make it r/o */
#endif
};
#endif
};