index
:
~lukeshu/systemd
elogind/master
eudev/master
notsystemd/master
notsystemd/postmove
notsystemd/premove
notsystemd/wip/cgroup2
notsystemd/wip/nspawn
notsystemd/wip/nspawn-parse
systemd/master
systemd/parabola
Unnamed repository; edit this file 'description' to name the repository.
git-mirror
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
src
/
core
Age
Commit message (
Expand
)
Author
2016-11-02
execute: apply seccomp filters after changing selinux/aa/smack contexts
Lennart Poettering
2016-10-28
Merge pull request #4495 from topimiettinen/block-shmat-exec
Djalal Harouni
2016-10-28
Merge pull request #4458 from keszybz/man-nonewprivileges
Martin Pitt
2016-10-27
core: make unit argument const for apply seccomp functions
Djalal Harouni
2016-10-27
core: lets apply working directory just after mount namespaces
Djalal Harouni
2016-10-27
core: get the working directory value inside apply_working_directory()
Djalal Harouni
2016-10-27
core: move apply working directory code into its own apply_working_directory()
Djalal Harouni
2016-10-27
core: move the code that setups namespaces on its own function
Djalal Harouni
2016-10-26
seccomp: also block shmat(..., SHM_EXEC) for MemoryDenyWriteExecute
Topi Miettinen
2016-10-24
Merge pull request #4450 from poettering/seccompfixes
Zbigniew Jędrzejewski-Szmek
2016-10-24
core: move initialization of -.slice and init.scope into the unit_load() call...
Lennart Poettering
2016-10-24
seccomp: add new helper call seccomp_load_filter_set()
Lennart Poettering
2016-10-24
seccomp: add new seccomp_init_conservative() helper
Lennart Poettering
2016-10-24
core: rework apply_protect_kernel_modules() to use seccomp_add_syscall_filter...
Lennart Poettering
2016-10-24
core: rework syscall filter set handling
Lennart Poettering
2016-10-24
core: move misplaced comment to the right place
Lennart Poettering
2016-10-24
core: simplify skip_seccomp_unavailable() a bit
Lennart Poettering
2016-10-24
Merge pull request #4459 from keszybz/commandline-parsing
Lennart Poettering
2016-10-24
Merge pull request #4406 from jsynacek/jsynacek-is-enabled
Lennart Poettering
2016-10-24
core: do not assert when sysconf(_SC_NGROUPS_MAX) fails (#4466)
Djalal Harouni
2016-10-24
shared, systemctl: teach is-enabled to show installation targets
Jan Synacek
2016-10-24
install: introduce UnitFileFlags
Jan Synacek
2016-10-23
core: lets move the setup of working directory before group enforce
Djalal Harouni
2016-10-23
core: first lookup and cache creds then apply them after namespace setup
Djalal Harouni
2016-10-22
core: do not set no_new_privileges flag in config_parse_syscall_filter
Zbigniew Jędrzejewski-Szmek
2016-10-22
Merge pull request #4428 from lnykryn/ctrl_v2
Zbigniew Jędrzejewski-Szmek
2016-10-22
tree-wide: make parse_proc_cmdline() strip "rd." prefix automatically
Zbigniew Jędrzejewski-Szmek
2016-10-22
tree-wide: allow state to be passed through to parse_proc_cmdline_item
Zbigniew Jędrzejewski-Szmek
2016-10-21
core: use emergency_action for ctr+alt+del burst
Lukas Nykryn
2016-10-21
failure-action: generalize failure action to emergency action
Lukas Nykryn
2016-10-21
core: if the start command vanishes during runtime don't hit an assert
Lennart Poettering
2016-10-20
journald,core: add short comments we we keep reopening /dev/console all the time
Lennart Poettering
2016-10-20
Merge pull request #4417 from keszybz/man-and-rlimit
Lennart Poettering
2016-10-19
pid1: downgrade some rlimit warnings
Zbigniew Jędrzejewski-Szmek
2016-10-19
core: let's upgrade the log level for service processes dying of signal (#4415)
Lennart Poettering
2016-10-17
core/exec: add a named-descriptor option ("fd") for streams (#4179)
Luca Bruno
2016-10-17
Merge pull request #4392 from keszybz/running-timers
Lennart Poettering
2016-10-17
core/timer: reset next_elapse_*time when timer is not waiting
Zbigniew Jędrzejewski-Szmek
2016-10-17
pid1: do not use mtime==0 as sign of masking (#4388)
Zbigniew Jędrzejewski-Szmek
2016-10-16
tree-wide: introduce free_and_replace helper
Zbigniew Jędrzejewski-Szmek
2016-10-16
tree-wide: use mfree more
Zbigniew Jędrzejewski-Szmek
2016-10-14
core: make settings for unified cgroup hierarchy supersede the ones for legac...
Tejun Heo
2016-10-12
core: make sure to dump ProtectKernelModules= value
Djalal Harouni
2016-10-12
core: check protect_kernel_modules and private_devices in order to setup NNP
Djalal Harouni
2016-10-12
core:sandbox: lets make /lib/modules/ inaccessible on ProtectKernelModules=
Djalal Harouni
2016-10-12
core:sandbox: remove CAP_SYS_RAWIO on PrivateDevices=yes
Djalal Harouni
2016-10-12
core:sandbox: Add ProtectKernelModules= option
Djalal Harouni
2016-10-12
Allow block and char classes in DeviceAllow bus properties (#4353)
Zbigniew Jędrzejewski-Szmek
2016-10-11
core/main: get rid from excess check of ACTION_TEST (#4350)
0xAX
2016-10-11
core: chown() any TTY used for stdin, not just when StandardInput=tty is used...
Lennart Poettering
[next]