summaryrefslogtreecommitdiffstats
path: root/src/core/namespace.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* core/namespace: replace MOUNT_PRIVATE_TMP_READ_ONLY with MOUNT_PRIVATE_TMP wi...Yu Watanabe2024-10-231-10/+5
* core/namespace: coding style cleanupsYu Watanabe2024-10-231-6/+6
* core/namespace: honor MountEntry.read_only, .options, and so on in static ent...Yu Watanabe2024-10-231-5/+10
* core: do not fail if ignorable img.v/ vpick dir is missingLuca Boccassi2024-10-151-0/+4
* namespace: rename drop_unused_mounts() → sort_and_drop_unused_mounts()Lennart Poettering2024-10-091-3/+3
* core: drop implicit support of PrivateTmp=offYu Watanabe2024-10-091-1/+1
* core: drop implicit support of PrivateUsers=offYu Watanabe2024-10-081-1/+1
* tree-wide: replace reallocarray() with GREEDY_REALLOC()Yu Watanabe2024-10-081-12/+4
* core: do not fail if ignorable img.v/ vpick dir is emptyLuca Boccassi2024-09-131-6/+14
* core: Add support for PrivateUsers=identityDaan De Meyer2024-09-091-0/+8
* core: rename BindJournalSockets= to BindLogSockets=Mike Yuan2024-09-041-4/+4
* core/namespace: add comment to explain the non-obvious assumption on /run/sys...Mike Yuan2024-09-041-0/+2
* core/namespace: make bind mounted journal sockets nosuid + noexec + nodevMike Yuan2024-09-041-3/+7
* core/namespace: use GREEDY_REALLOC at one more placeMike Yuan2024-09-041-6/+2
* core/namespace: create /dev/log only if journal socket is presentMike Yuan2024-09-031-6/+11
* core: introduce BindJournalSockets=Mike Yuan2024-09-031-1/+12
* namespace: Fix extension release memory leakmaia x.2024-08-201-8/+14
* core: try again bind mounting if the destination was already createdLuca Boccassi2024-06-301-5/+5
* core: deduplicate identical dm-verity ExtensionImages=Luca Boccassi2024-06-281-1/+46
* core: expose PrivateTmp=disconnectedMike Yuan2024-06-211-1/+1
* core/namespace: add assertion for PRIVATE_TMP_CONNECTEDMike Yuan2024-06-211-1/+4
* core/namespace: ensure private tmpfs is mounted earlierYu Watanabe2024-06-201-3/+5
* Merge pull request #32724 from bluca/dynamic_user_no_private_tmpLuca Boccassi2024-06-181-31/+110
|\
| * core: do not imply PrivateTmp with DynamicUser, create a private tmpfs insteadLuca Boccassi2024-06-171-31/+110
* | fs-util: add simple open_mkdir() wrapperLennart Poettering2024-06-151-1/+1
|/
* namespace: rename 'n' to 'n_mount_images'Lennart Poettering2024-06-131-4/+4
* core/namespace: take char* const* for strv, use FOREACH_ARRAYMike Yuan2024-05-091-7/+7
* tree-wise: several cleanups for loggingYu Watanabe2024-04-301-4/+4
* core/namespace: modernize mount_private_devMike Yuan2024-04-271-60/+41
* core/namespace: modernize clone_device_nodeMike Yuan2024-04-271-21/+20
* core/namespace: use FOREACH_ARRAY at one more placeMike Yuan2024-04-271-3/+3
* core/namespace: check error first, add missing assertionMike Yuan2024-04-261-3/+5
* core: implement RootImage= via mountfsd in unprivileged environmentsLennart Poettering2024-04-061-36/+56
* dissect-image: add flag for explicitly enabling userspace verity signature ch...Lennart Poettering2024-02-281-1/+2
* core: add support for vpick for ExtensionDirectories=Luca Boccassi2024-02-171-5/+16
* core: add support for vpick for ExtensionImages=Luca Boccassi2024-02-171-1/+17
* mountpoint-util: introduce path_is_mount_point_fullMike Yuan2024-02-061-6/+6
* namespace: don't invoke loopback_setup() unless we allocate a CLONE_NEWNET na...Lennart Poettering2024-01-311-9/+7
* simplify bitwise checking (#30722)AtariDreams2024-01-091-2/+1
* tree-wide: drop space between variable and an increment/decrementYu Watanabe2023-12-241-4/+4
* core: do not make private /dev/ read-only too soonLuca Boccassi2023-12-081-5/+0
* core: check that extensions have the hierarchies before overlayingLuca Boccassi2023-11-031-47/+62
* namespace: fix whitespace mixupLennart Poettering2023-11-031-5/+5
* namespace: normalize MountMode type a bitLennart Poettering2023-10-281-165/+165
* core: do not post-process skipped mountsLuca Boccassi2023-10-261-16/+51
* Merge pull request #29529 from yuwata/core-namespace-check-privLuca Boccassi2023-10-261-66/+81
|\
| * core/namespace: check if we have enough privilege to mount sysfs or procfsYu Watanabe2023-10-261-14/+27
| * core/namespace: unify logic of mounting /proc and /sysYu Watanabe2023-10-261-51/+40
| * core/namespace: split out create_temporary_mount_point()Yu Watanabe2023-10-191-11/+24
* | core/namespace: merge if blocksMike Yuan2023-10-191-6/+4
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-30 00:58:09 +0100