diff options
Diffstat (limited to 'src/nspawn')
-rw-r--r-- | src/nspawn/nspawn-mount.c | 4 | ||||
-rw-r--r-- | src/nspawn/nspawn-patch-uid.c | 4 | ||||
-rw-r--r-- | src/nspawn/nspawn-seccomp.c | 6 | ||||
-rw-r--r-- | src/nspawn/nspawn.c | 10 |
4 files changed, 12 insertions, 12 deletions
diff --git a/src/nspawn/nspawn-mount.c b/src/nspawn/nspawn-mount.c index e80c944e9f..531f29cb7b 100644 --- a/src/nspawn/nspawn-mount.c +++ b/src/nspawn/nspawn-mount.c @@ -374,7 +374,7 @@ static int tmpfs_patch_options( options = buf; } -#ifdef HAVE_SELINUX +#if HAVE_SELINUX if (selinux_apifs_context) { char *t; @@ -557,7 +557,7 @@ int mount_all(const char *dest, { "tmpfs", "/dev", "tmpfs", "mode=755", MS_NOSUID|MS_STRICTATIME, MOUNT_FATAL }, { "tmpfs", "/dev/shm", "tmpfs", "mode=1777", MS_NOSUID|MS_NODEV|MS_STRICTATIME, MOUNT_FATAL }, { "tmpfs", "/run", "tmpfs", "mode=755", MS_NOSUID|MS_NODEV|MS_STRICTATIME, MOUNT_FATAL }, -#ifdef HAVE_SELINUX +#if HAVE_SELINUX { "/sys/fs/selinux", "/sys/fs/selinux", NULL, NULL, MS_BIND, 0 }, /* Bind mount first */ { NULL, "/sys/fs/selinux", NULL, NULL, MS_BIND|MS_RDONLY|MS_NOSUID|MS_NOEXEC|MS_NODEV|MS_REMOUNT, 0 }, /* Then, make it r/o */ #endif diff --git a/src/nspawn/nspawn-patch-uid.c b/src/nspawn/nspawn-patch-uid.c index f861db879a..063fdb1053 100644 --- a/src/nspawn/nspawn-patch-uid.c +++ b/src/nspawn/nspawn-patch-uid.c @@ -19,7 +19,7 @@ #include <fcntl.h> #include <linux/magic.h> -#ifdef HAVE_ACL +#if HAVE_ACL #include <sys/acl.h> #endif #include <sys/stat.h> @@ -37,7 +37,7 @@ #include "strv.h" #include "user-util.h" -#ifdef HAVE_ACL +#if HAVE_ACL static int get_acl(int fd, const char *name, acl_type_t type, acl_t *ret) { char procfs_path[strlen("/proc/self/fd/") + DECIMAL_STR_MAX(int) + 1]; diff --git a/src/nspawn/nspawn-seccomp.c b/src/nspawn/nspawn-seccomp.c index 38c2b12e95..196766dc98 100644 --- a/src/nspawn/nspawn-seccomp.c +++ b/src/nspawn/nspawn-seccomp.c @@ -22,20 +22,20 @@ #include <sys/capability.h> #include <sys/types.h> -#ifdef HAVE_SECCOMP +#if HAVE_SECCOMP #include <seccomp.h> #endif #include "alloc-util.h" #include "log.h" #include "nspawn-seccomp.h" -#ifdef HAVE_SECCOMP +#if HAVE_SECCOMP #include "seccomp-util.h" #endif #include "string-util.h" #include "strv.h" -#ifdef HAVE_SECCOMP +#if HAVE_SECCOMP static int seccomp_add_default_syscall_filter( scmp_filter_ctx ctx, diff --git a/src/nspawn/nspawn.c b/src/nspawn/nspawn.c index 82fd0bd5f4..4e3803be82 100644 --- a/src/nspawn/nspawn.c +++ b/src/nspawn/nspawn.c @@ -17,7 +17,7 @@ along with systemd; If not, see <http://www.gnu.org/licenses/>. ***/ -#ifdef HAVE_BLKID +#if HAVE_BLKID #include <blkid.h> #endif #include <errno.h> @@ -26,7 +26,7 @@ #include <linux/loop.h> #include <pwd.h> #include <sched.h> -#ifdef HAVE_SELINUX +#if HAVE_SELINUX #include <selinux/selinux.h> #endif #include <signal.h> @@ -1234,7 +1234,7 @@ static int verify_arguments(void) { return -EINVAL; } -#ifndef HAVE_LIBIPTC +#if ! HAVE_LIBIPTC if (arg_expose_ports) { log_error("--port= is not supported, compiled without libiptc support."); return -EOPNOTSUPP; @@ -1547,7 +1547,7 @@ static int setup_pts(const char *dest) { const char *p; int r; -#ifdef HAVE_SELINUX +#if HAVE_SELINUX if (arg_selinux_apifs_context) (void) asprintf(&options, "newinstance,ptmxmode=0666,mode=620,gid=" GID_FMT ",context=\"%s\"", @@ -2332,7 +2332,7 @@ static int inner_child( return log_error_errno(r, "personality() failed: %m"); } -#ifdef HAVE_SELINUX +#if HAVE_SELINUX if (arg_selinux_context) if (setexeccon(arg_selinux_context) < 0) return log_error_errno(errno, "setexeccon(\"%s\") failed: %m", arg_selinux_context); |