diff options
author | Daniel Mack <daniel@zonque.org> | 2014-10-17 16:04:49 +0200 |
---|---|---|
committer | Daniel Mack <daniel@zonque.org> | 2014-10-17 16:07:12 +0200 |
commit | 317cde8b80a611f6194aaba2dad418cc21eefe55 (patch) | |
tree | ea9c15f6cef9ca420b2d7fe03d81c16dddbb7f92 | |
parent | 7491ccf2cb237a2a88b831b2c7374ba2bb255cba (diff) |
nspawn: fix DeviceAllow list
Commit 864e17068 ("nspawn: actually allow access to /dev/net/tun in the
container") added "/dev/net/tun" to the list of allowed devices but forgot
to tweak the array length, which caused "/dev/kdbus/*" to be missed.
-rw-r--r-- | src/nspawn/nspawn.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/nspawn/nspawn.c b/src/nspawn/nspawn.c index f04d326131..c567c8d272 100644 --- a/src/nspawn/nspawn.c +++ b/src/nspawn/nspawn.c @@ -1545,7 +1545,7 @@ static int register_machine(pid_t pid, int local_ifindex) { return r; } - r = sd_bus_message_append(m, "(sv)", "DeviceAllow", "a(ss)", 10, + r = sd_bus_message_append(m, "(sv)", "DeviceAllow", "a(ss)", 11, /* Allow the container to * access and create the API * device nodes, so that |