From fd5b0b9141728abf503f900200dd8b43248ec9e2 Mon Sep 17 00:00:00 2001 From: Lennart Poettering Date: Mon, 2 Dec 2013 19:59:15 +0100 Subject: [PATCH] nspawn: make sure /dev/kdbus in the container is world accessible --- TODO | 1 - src/libsystemd-bus/bus-kernel.c | 2 +- 2 files changed, 1 insertion(+), 2 deletions(-) diff --git a/TODO b/TODO index d2e5348ba..d5b31c21b 100644 --- a/TODO +++ b/TODO @@ -146,7 +146,6 @@ Features: complain loudly if they have argv[0][0] == '@' set. https://bugzilla.redhat.com/show_bug.cgi?id=961044 - * Introduce a way how we can kill the main process of a service with KillSignal, but all processes with SIGKILL later on https://bugzilla.redhat.com/show_bug.cgi?id=952634 diff --git a/src/libsystemd-bus/bus-kernel.c b/src/libsystemd-bus/bus-kernel.c index 93be698f5..98fc27cda 100644 --- a/src/libsystemd-bus/bus-kernel.c +++ b/src/libsystemd-bus/bus-kernel.c @@ -1111,7 +1111,7 @@ int bus_kernel_create_namespace(const char *name, char **s) { n->type = KDBUS_MAKE_NAME; make->size = ALIGN8(offsetof(struct kdbus_cmd_ns_make, items) + n->size); - make->flags = KDBUS_MAKE_POLICY_OPEN; + make->flags = KDBUS_MAKE_POLICY_OPEN | KDBUS_MAKE_ACCESS_WORLD; if (ioctl(fd, KDBUS_CMD_NS_MAKE, make) < 0) { close_nointr_nofail(fd); -- 2.30.2