diff options
| author | Jonathan Boulle <jonathanboulle@gmail.com> | 2016-05-20 15:09:14 +0200 | 
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2016-05-20 15:09:14 +0200 | 
| commit | 186ad4b1a05b5c5d231a3b4b7faba8a5c40e3c9d (patch) | |
| tree | 9fef694a323d14f7d1dd09652cdd2a0af48e4f08 /src | |
| parent | f942504e4f74c6d30d7b73cb602517e055f02152 (diff) | |
core/dbus: expose SELinuxContext property (#3284)
Adds support to core for systemd D-Bus clients to send the
`SELinuxContext` property . This means `systemd-run -p
SELinuxContext=foo` should now work.
Diffstat (limited to 'src')
| -rw-r--r-- | src/core/dbus-execute.c | 17 | ||||
| -rw-r--r-- | src/shared/bus-unit-util.c | 2 | 
2 files changed, 18 insertions, 1 deletions
| diff --git a/src/core/dbus-execute.c b/src/core/dbus-execute.c index 04fbc7ad15..888319593c 100644 --- a/src/core/dbus-execute.c +++ b/src/core/dbus-execute.c @@ -1446,6 +1446,23 @@ int bus_exec_context_set_transient_property(                  return 1; +        } else if (streq(name, "SELinuxContext")) { +                const char *s; + +                r = sd_bus_message_read(message, "s", &s); +                if (r < 0) +                        return r; + +                if (mode != UNIT_CHECK) { +                        r = free_and_strdup(&c->selinux_context, s); +                        if (r < 0) +                                return r; + +                        unit_write_drop_in_private_format(u, mode, name, "%s=%s\n", name, strempty(s)); +                } + +                return 1; +          }          ri = rlimit_from_string(name); diff --git a/src/shared/bus-unit-util.c b/src/shared/bus-unit-util.c index 8f0df84793..9431dad411 100644 --- a/src/shared/bus-unit-util.c +++ b/src/shared/bus-unit-util.c @@ -235,7 +235,7 @@ int bus_append_unit_property_assignment(sd_bus_message *m, const char *assignmen                                "StandardInput", "StandardOutput", "StandardError",                                "Description", "Slice", "Type", "WorkingDirectory",                                "RootDirectory", "SyslogIdentifier", "ProtectSystem", -                              "ProtectHome")) +                              "ProtectHome", "SELinuxContext"))                  r = sd_bus_message_append(m, "v", "s", eq);          else if (streq(field, "SyslogLevel")) { | 
