summaryrefslogtreecommitdiffstats
path: root/src/core/namespace.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* namespace: allow overriding /run with a TemporaryFileSystem=Topi Miettinen2021-12-111-1/+1
* namespace: allow ProcSubset=pid with some ProtectKernel optionsTopi Miettinen2021-11-271-8/+34
* extension-release.d/: add a new field SYSEXT_SCOPE= for clarifying what a sys...Lennart Poettering2021-11-231-1/+1
* tree-wide: port various places over to open_mkdir_at()Lennart Poettering2021-11-171-7/+10
* shared: clean up mkdir.h/label.h situationLennart Poettering2021-11-161-1/+1
* namespace: make tmp dir handling code independent of umask tooLennart Poettering2021-11-121-5/+7
* namespace: make whole namespace_setup() work regardless of configured umaskLennart Poettering2021-11-121-3/+4
* namespace: rebreak a few commentsLennart Poettering2021-11-121-16/+14
* core: make DynamicUser=1 and StateDirectory= work with TemporaryFileSystem=/v...Luca Boccassi2021-10-271-1/+35
* basic: spit out chase_symlinks() from fs-util.[ch] → chase-symlinks.[ch]Lennart Poettering2021-10-051-1/+1
* dissect-image: load embedded verity signature info from imageLennart Poettering2021-09-281-0/+7
* tree-wide: mark set-but-not-used variables as unused to make LLVM happyFrantisek Sumsal2021-09-151-1/+1
* Merge pull request #20257 from bluca/seqnoLuca Boccassi2021-08-311-0/+1
|\
| * dissect: use DISKSEQ when waiting for block devicesLuca Boccassi2021-07-281-0/+1
* | tree-wide: port everything over to new sd-id128 compund literal blissLennart Poettering2021-08-201-2/+1
* | Drop the text argument from assert_not_reached()Zbigniew Jędrzejewski-Szmek2021-08-031-3/+3
|/
* Revert "core: do not set noexec on sysfs/procfs"Lennart Poettering2021-07-011-1/+1
* core/namespace: drop unnecessary initializationsYu Watanabe2021-06-261-6/+6
* Merge pull request #20023 from yuwata/re-enable-nosuid-mount-flagZbigniew Jędrzejewski-Szmek2021-06-251-0/+32
|\
| * Revert "Revert "Mount all fs nosuid when NoNewPrivileges=yes""Yu Watanabe2021-06-251-0/+32
* | ExtensionImages: log explicit error when extension-release metadata does not ...Luca Boccassi2021-06-251-0/+9
|/
* Revert "Mount all fs nosuid when NoNewPrivileges=yes"Topi Miettinen2021-06-141-32/+0
* Mount all fs nosuid when NoNewPrivileges=yesTopi Miettinen2021-05-261-0/+32
* dissect-image: add support for optionally mounting images with idmapping onLennart Poettering2021-05-071-1/+1
* tree-wide: enable automatic growing of file systems in images in various tool...Lennart Poettering2021-04-231-1/+2
* dissect: ignore udev database entries from before the loopback attachmentLennart Poettering2021-04-201-0/+1
* dissect: ignore old uevents when waiting for loopback partition scanLennart Poettering2021-04-201-0/+1
* dissect: split read-only flag into twoLennart Poettering2021-04-191-1/+1
* tree-wide: avoid uninitialized warning on _cleanup_ variablesLuca Boccassi2021-04-141-2/+2
* Merge pull request #18958 from poettering/dissect-no-rootZbigniew Jędrzejewski-Szmek2021-03-311-3/+7
|\
| * execute: drop DissectImageFlags parameter from namespace_setup()Lennart Poettering2021-03-161-3/+7
| * dissect-image: split DISSECT_IMAGE_REQUIRE_ROOT in twoLennart Poettering2021-03-161-1/+1
* | tree-wide: coccinelle fixesFrantisek Sumsal2021-03-181-4/+2
|/
* Remount /dev/mqueue in unshared mount namespace for PrivateIPCXℹ Ruoyao2021-03-031-1/+33
* Refactor network namespace specific functions in generic helpersXℹ Ruoyao2021-03-031-35/+41
* tree-wide: fix typoYu Watanabe2021-03-021-1/+1
* core: do not set noexec on sysfs/procfsLuca Boccassi2021-02-261-1/+1
* Merge pull request #18797 from keszybz/trivial-cleanupsLuca Boccassi2021-02-251-9/+6
|\
| * core/namespace: inline more iterator variable declarationsZbigniew Jędrzejewski-Szmek2021-02-251-9/+6
* | namespace: return correct error codeLennart Poettering2021-02-251-1/+4
|/
* Add ExtensionImages directive to form overlaysLuca Boccassi2021-02-231-9/+187
* core/namespace: reafactor applying mounts in a separate functionLuca Boccassi2021-02-231-93/+111
* namespace: store and use original MountEntry paths when prefixingLuca Boccassi2021-02-161-5/+29
* MountImages: actually support optional pathsLuca Boccassi2021-02-161-0/+2
* New directives NoExecPaths= ExecPaths=Topi Miettinen2021-01-291-3/+91
* treewide: tighten variable scope in loops (#18372)Susant Sahani2021-01-271-18/+8
* dissect: split verity_dissect_and_mount helper out for reuseLuca Boccassi2021-01-211-64/+2
* core: make NotifyAccess= in combination with RootDirectory=/RootImage= workLennart Poettering2021-01-201-4/+16
* core: add DBUS method to bind mount new nodes without service restartLuca Boccassi2021-01-181-3/+34
* MountAPIVFS: always mount a tmpfs on /runLuca Boccassi2021-01-181-1/+20
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-13 09:09:52 +0100