index
:
~lukeshu/systemd
elogind/master
eudev/master
notsystemd/master
notsystemd/postmove
notsystemd/premove
notsystemd/wip/cgroup2
notsystemd/wip/nspawn
notsystemd/wip/nspawn-parse
systemd/master
systemd/parabola
Unnamed repository; edit this file 'description' to name the repository.
git-mirror
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
src
/
core
/
execute.c
Age
Commit message (
Expand
)
Author
2016-12-13
Merge pull request #4806 from poettering/keyring-init
Zbigniew Jędrzejewski-Szmek
2016-12-14
core: add ability to define arbitrary bind mounts for services
Lennart Poettering
2016-12-13
core: store the invocation ID in the per-service keyring
Lennart Poettering
2016-12-13
core: run each system service with a fresh session keyring
Lennart Poettering
2016-11-18
Merge pull request #4538 from fbuihuu/confirm-spawn-fixes
Lennart Poettering
2016-11-17
core: in confirm spawn, suggest 'f' when user selects 'n' choice
Franck Bui
2016-11-17
core: confirm_spawn: always accept units with same_pgrp set for now
Franck Bui
2016-11-17
core: include the unit name when notifying that a confirmation question timed...
Franck Bui
2016-11-17
core: add 'c' in confirmation_spawn to resume the boot process
Franck Bui
2016-11-17
core: add 'j' in confirmation_spawn to list the jobs that are in progress
Franck Bui
2016-11-17
core: add 'D' in confirmat spawn to show a full dump of the unit to spawn
Franck Bui
2016-11-17
core: add 'i' in confirm spawn to give a short summary of the unit to spawn
Franck Bui
2016-11-17
core: rework the confirmation spawn prompt
Franck Bui
2016-11-17
core: limit the length of the confirmation question
Franck Bui
2016-11-17
core: in confirm_spawn, the meaning of 'n' and 's' choices are confusing
Franck Bui
2016-11-17
core: rework ask_for_confirmation()
Franck Bui
2016-11-17
core: allow to redirect confirmation messages to a different console
Franck Bui
2016-11-15
core: improve the logic that implies no new privileges
Djalal Harouni
2016-11-08
core: on DynamicUser= make sure that protecting sensitive paths is enforced (...
Djalal Harouni
2016-11-08
Merge pull request #4536 from poettering/seccomp-namespaces
Zbigniew Jędrzejewski-Szmek
2016-11-07
Rename formats-util.h to format-util.h
Zbigniew Jędrzejewski-Szmek
2016-11-04
core: add new RestrictNamespaces= unit file setting
Lennart Poettering
2016-11-03
Merge pull request #4510 from keszybz/tree-wide-cleanups
Lennart Poettering
2016-11-03
core: intialize user aux groups and SupplementaryGroups= when DynamicUser= is...
Djalal Harouni
2016-11-02
Merge pull request #4483 from poettering/exec-order
Lennart Poettering
2016-11-02
core: initialize groups list before checking SupplementaryGroups= of a unit (...
Djalal Harouni
2016-11-02
execute: apply seccomp filters after changing selinux/aa/smack contexts
Lennart Poettering
2016-10-28
Merge pull request #4495 from topimiettinen/block-shmat-exec
Djalal Harouni
2016-10-27
core: make unit argument const for apply seccomp functions
Djalal Harouni
2016-10-27
core: lets apply working directory just after mount namespaces
Djalal Harouni
2016-10-27
core: get the working directory value inside apply_working_directory()
Djalal Harouni
2016-10-27
core: move apply working directory code into its own apply_working_directory()
Djalal Harouni
2016-10-27
core: move the code that setups namespaces on its own function
Djalal Harouni
2016-10-26
seccomp: also block shmat(..., SHM_EXEC) for MemoryDenyWriteExecute
Topi Miettinen
2016-10-24
seccomp: add new helper call seccomp_load_filter_set()
Lennart Poettering
2016-10-24
seccomp: add new seccomp_init_conservative() helper
Lennart Poettering
2016-10-24
core: rework apply_protect_kernel_modules() to use seccomp_add_syscall_filter...
Lennart Poettering
2016-10-24
core: rework syscall filter set handling
Lennart Poettering
2016-10-24
core: move misplaced comment to the right place
Lennart Poettering
2016-10-24
core: simplify skip_seccomp_unavailable() a bit
Lennart Poettering
2016-10-24
core: do not assert when sysconf(_SC_NGROUPS_MAX) fails (#4466)
Djalal Harouni
2016-10-23
core: lets move the setup of working directory before group enforce
Djalal Harouni
2016-10-23
core: first lookup and cache creds then apply them after namespace setup
Djalal Harouni
2016-10-23
tree-wide: drop NULL sentinel from strjoin
Zbigniew Jędrzejewski-Szmek
2016-10-17
core/exec: add a named-descriptor option ("fd") for streams (#4179)
Luca Bruno
2016-10-16
tree-wide: use mfree more
Zbigniew Jędrzejewski-Szmek
2016-10-12
core: make sure to dump ProtectKernelModules= value
Djalal Harouni
2016-10-12
core: check protect_kernel_modules and private_devices in order to setup NNP
Djalal Harouni
2016-10-12
core:sandbox: lets make /lib/modules/ inaccessible on ProtectKernelModules=
Djalal Harouni
2016-10-12
core:sandbox: Add ProtectKernelModules= option
Djalal Harouni
[next]