summaryrefslogtreecommitdiff
path: root/src/core/namespace.c
AgeCommit message (Expand)Author
2015-05-31core/namespace: Protect /usr instead of /home with ProtectSystem=yesJason Pleau
2015-05-21nspawn: finish user namespace supportLennart Poettering
2015-05-20core,nspawn: unify code that moves the root dirLennart Poettering
2015-05-18core: Private*/Protect* options with RootDirectoryAlban Crequy
2015-05-13nspawn: rework custom mount point order, and add support for overlayfsLennart Poettering
2015-03-31nspawn: change filesystem type from "bind" to NULL in mount() syscallsIago López Galeiras
2015-03-16core/namespace: fix path sortingMichal Schmidt
2015-03-13core: explicitly ignore failure during cleanupZbigniew Jędrzejewski-Szmek
2015-03-13core: either ignore or handle mount failuresZbigniew Jędrzejewski-Szmek
2015-03-13Use space after a silencing (void)Zbigniew Jędrzejewski-Szmek
2015-02-23remove unused includesThomas Hindoe Paaboel Andersen
2015-02-03util: rework strappenda(), and rename it strjoina()Lennart Poettering
2015-01-01Type of mount(2) flags is unsigned longTopi Miettinen
2014-12-28tmpfiles: add new line type 'v' for creating btrfs subvolumesLennart Poettering
2014-11-28treewide: another round of simplificationsMichal Schmidt
2014-11-28treewide: use log_*_errno whenever %m is in the format stringMichal Schmidt
2014-11-17namespace: unchecked return value from librarySusant Sahani
2014-11-13sd-bus: sync with kdbus upstream (ABI break)Daniel Mack
2014-10-23selinux: clean up selinux label function namingLennart Poettering
2014-10-23mac: rename apis with mac_{selinux/smack}_ prefixWaLyong Cho
2014-10-17namespace: add missing 'const' to parametersLennart Poettering
2014-10-03core/namespace: remove invalid checkZbigniew Jędrzejewski-Szmek
2014-10-03core/namespace: remove invalid checkZbigniew Jędrzejewski-Szmek
2014-09-08namespace: avoid posible use of uninitialized variableThomas Hindoe Paaboel Andersen
2014-09-08namespace: add support for custom kdbus endpointDaniel Mack
2014-07-27drop_duplicates: copy full BindMount structAnsgar Burchardt
2014-07-03namespace: make sure /tmp, /var/tmp and /dev are writable in namespaces we se...Lennart Poettering
2014-07-03namespace: fix uninitialized memory accessLennart Poettering
2014-06-18namespace: properly label device nodes we createLennart Poettering
2014-06-06namespace: cover /boot with ProtectSystem= againLennart Poettering
2014-06-06namespace: beef up read-only bind mount logicLennart Poettering
2014-06-05namespace: also include /root in ProtectHome=Lennart Poettering
2014-06-05namespace: when setting up an inaccessible mount point, unmounting everything...Lennart Poettering
2014-06-05core: don't include /boot in effect of ProtectSystem=Lennart Poettering
2014-06-04core: rename ReadOnlySystem= to ProtectSystem= and add a third value for also...Lennart Poettering
2014-06-04core: provide /dev/ptmx as symlink in PrivateDevices= execution environmentsLennart Poettering
2014-06-04core: make sure PrivateDevices= makes /dev/log availableLennart Poettering
2014-06-03core: add new ReadOnlySystem= and ProtectedHome= settings for service unitsLennart Poettering
2014-03-20unit: turn off mount propagation for udevdLennart Poettering
2014-03-19core: Beef up PrivateDevices=Lennart Poettering
2014-03-03conf-parser: config_parse_path_strv() is not generic, so let's move it into l...Lennart Poettering
2014-01-20exec: introduce PrivateDevices= switch to provide services with a private /devLennart Poettering
2013-12-13namespace: include boot id in private tmp directoriesLennart Poettering
2013-11-27namespace: comment typo fixLennart Poettering
2013-11-27service: add the ability for units to join other unit's PrivateNetwork= and P...Lennart Poettering
2013-10-22systemd: use unit name in PrivateTmp directoriesZbigniew Jędrzejewski-Szmek
2013-10-13Never call qsort on potentially NULL arraysZbigniew Jędrzejewski-Szmek
2013-08-23"-" prefix for InaccessibleDirectories and ReadOnlyDirectoriesMaciej Wereski
2013-03-20core: remove unnecessary goto in setup_namespaceZbigniew Jędrzejewski-Szmek
2013-03-20Make PrivateTmp dirs also inaccessible from the outsideZbigniew Jędrzejewski-Szmek