diff options
author | Daniel Mack <zonque@gmail.com> | 2014-08-22 18:55:21 +0200 |
---|---|---|
committer | Daniel Mack <daniel@zonque.org> | 2014-09-08 14:12:56 +0200 |
commit | a610cc4f18c24a007e5a2cac21b2ecbd81e5f3c3 (patch) | |
tree | 7e1dd169235a078a63a367fadbf2f54aa31ac6ca /src/core/execute.c | |
parent | 501996231293506a85bf4d610938a655ddc8cb92 (diff) |
namespace: add support for custom kdbus endpoint
If a path to a previously created custom kdbus endpoint is passed in,
bind-mount a new devtmpfs that contains a 'bus' node, which in turn in
bind-mounted with the custom endpoint. This tmpfs then mounted over the
kdbus subtree that refers to the current bus.
This way, we can fake the bus node in order to lock down services with
a kdbus custom endpoint policy.
Diffstat (limited to 'src/core/execute.c')
-rw-r--r-- | src/core/execute.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/core/execute.c b/src/core/execute.c index a88e1b1953..96cabe6d99 100644 --- a/src/core/execute.c +++ b/src/core/execute.c @@ -1523,6 +1523,7 @@ static int exec_child(ExecCommand *command, context->inaccessible_dirs, tmp, var, + NULL, context->private_devices, context->protect_home, context->protect_system, |