diff options
| author | Michael Scherer <misc@zarb.org> | 2014-02-20 16:19:44 +0100 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2014-02-21 03:44:20 +0100 |
| commit | eef65bf3ee6f73afa4a5de23ae3a794a279f30c0 (patch) | |
| tree | 366b91cc8b993595fec85469317e1351c98d8ee7 /man/systemd.exec.xml | |
| parent | 37f78db2f4a33474fc349f406b0a0a48e9c573a2 (diff) | |
core: Add AppArmor profile switching
This permit to switch to a specific apparmor profile when starting a daemon. This
will result in a non operation if apparmor is disabled.
It also add a new build requirement on libapparmor for using this feature.
Diffstat (limited to 'man/systemd.exec.xml')
| -rw-r--r-- | man/systemd.exec.xml | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml index 7dbe05d265..19839937c7 100644 --- a/man/systemd.exec.xml +++ b/man/systemd.exec.xml @@ -968,6 +968,19 @@ </varlistentry> <varlistentry> + <term><varname>AppArmorProfile=</varname></term> + + <listitem><para>Take a profile name as argument. + The process executed by the unit will switch to + this profile when started. Profiles must already + be loaded in the kernel, or the unit will fail. + This result in a non operation if AppArmor is not + enabled. If prefixed by <literal>-</literal>, all errors + will be ignored. + </para></listitem> + </varlistentry> + + <varlistentry> <term><varname>IgnoreSIGPIPE=</varname></term> <listitem><para>Takes a boolean |