summaryrefslogtreecommitdiff
path: root/src/core/namespace.c
Commit message (Expand)AuthorAgeFilesLines
* Type of mount(2) flags is unsigned longTopi Miettinen2015-01-011-1/+1
* tmpfiles: add new line type 'v' for creating btrfs subvolumesLennart Poettering2014-12-281-1/+2
* treewide: another round of simplificationsMichal Schmidt2014-11-281-4/+2
* treewide: use log_*_errno whenever %m is in the format stringMichal Schmidt2014-11-281-5/+5
* namespace: unchecked return value from librarySusant Sahani2014-11-171-6/+6
* sd-bus: sync with kdbus upstream (ABI break)Daniel Mack2014-11-131-8/+1
* selinux: clean up selinux label function namingLennart Poettering2014-10-231-2/+2
* mac: rename apis with mac_{selinux/smack}_ prefixWaLyong Cho2014-10-231-2/+2
* namespace: add missing 'const' to parametersLennart Poettering2014-10-171-3/+3
* core/namespace: remove invalid checkZbigniew Jędrzejewski-Szmek2014-10-031-5/+2
* core/namespace: remove invalid checkZbigniew Jędrzejewski-Szmek2014-10-031-5/+2
* namespace: avoid posible use of uninitialized variableThomas Hindoe Paaboel Andersen2014-09-081-1/+1
* namespace: add support for custom kdbus endpointDaniel Mack2014-09-081-1/+90
* drop_duplicates: copy full BindMount structAnsgar Burchardt2014-07-271-2/+1
* namespace: make sure /tmp, /var/tmp and /dev are writable in namespaces we se...Lennart Poettering2014-07-031-1/+1
* namespace: fix uninitialized memory accessLennart Poettering2014-07-031-1/+2
* namespace: properly label device nodes we createLennart Poettering2014-06-181-0/+4
* namespace: cover /boot with ProtectSystem= againLennart Poettering2014-06-061-2/+2
* namespace: beef up read-only bind mount logicLennart Poettering2014-06-061-12/+16
* namespace: also include /root in ProtectHome=Lennart Poettering2014-06-051-2/+2
* namespace: when setting up an inaccessible mount point, unmounting everything...Lennart Poettering2014-06-051-0/+6
* core: don't include /boot in effect of ProtectSystem=Lennart Poettering2014-06-051-2/+2
* core: rename ReadOnlySystem= to ProtectSystem= and add a third value for also...Lennart Poettering2014-06-041-13/+22
* core: provide /dev/ptmx as symlink in PrivateDevices= execution environmentsLennart Poettering2014-06-041-1/+4
* core: make sure PrivateDevices= makes /dev/log availableLennart Poettering2014-06-041-1/+4
* core: add new ReadOnlySystem= and ProtectedHome= settings for service unitsLennart Poettering2014-06-031-1/+25
* unit: turn off mount propagation for udevdLennart Poettering2014-03-201-17/+23
* core: Beef up PrivateDevices=Lennart Poettering2014-03-191-35/+93
* conf-parser: config_parse_path_strv() is not generic, so let's move it into l...Lennart Poettering2014-03-031-1/+1
* exec: introduce PrivateDevices= switch to provide services with a private /devLennart Poettering2014-01-201-1/+87
* namespace: include boot id in private tmp directoriesLennart Poettering2013-12-131-1/+11
* namespace: comment typo fixLennart Poettering2013-11-271-3/+4
* service: add the ability for units to join other unit's PrivateNetwork= and P...Lennart Poettering2013-11-271-51/+181
* systemd: use unit name in PrivateTmp directoriesZbigniew Jędrzejewski-Szmek2013-10-221-6/+9
* Never call qsort on potentially NULL arraysZbigniew Jędrzejewski-Szmek2013-10-131-18/+20
* "-" prefix for InaccessibleDirectories and ReadOnlyDirectoriesMaciej Wereski2013-08-231-1/+11
* core: remove unnecessary goto in setup_namespaceZbigniew Jędrzejewski-Szmek2013-03-201-10/+5
* Make PrivateTmp dirs also inaccessible from the outsideZbigniew Jędrzejewski-Szmek2013-03-201-9/+7
* core: reuse the same /tmp, /var/tmp and inaccessible dirMichal Sekletar2013-03-151-136/+90
* nspawn,namespaces: make sure we recursively bind mount things inLennart Poettering2012-08-131-2/+2
* namespace: rework namespace supportLennart Poettering2012-08-131-123/+95
* fix a couple of issues found with llvm-analyzeLennart Poettering2012-08-081-0/+2
* namespace: make PrivateTmp= apply to both /tmp and /var/tmpLennart Poettering2012-05-141-7/+16
* util: split-out path-util.[ch]Kay Sievers2012-05-081-0/+1
* remove MS_* which can not be combined with current kernel codeKay Sievers2012-04-181-1/+1
* relicense to LGPLv2.1 (with exceptions)Lennart Poettering2012-04-121-4/+4
* move libsystemd_core.la sources into core/Kay Sievers2012-04-111-0/+346
View Lorry Controller Status