summaryrefslogtreecommitdiffstats
path: root/src/core/namespace.h (follow)
Commit message (Expand)AuthorAgeFilesLines
* license: LGPL-2.1+ -> LGPL-2.1-or-laterYu Watanabe2020-11-091-1/+1
* core/namespace: drop bitfield annotations from boolean fieldsZbigniew Jędrzejewski-Szmek2020-09-221-13/+13
* core: hide /run/credentials whenever namespacing is requestedLennart Poettering2020-08-251-0/+1
* core: introduce ProtectProc= and ProcSubset= to expose hidepid= and subset= p...Lennart Poettering2020-08-241-0/+24
* namespace: move protect_{home|system} into NamespaceInfoLennart Poettering2020-08-241-2/+2
* core: add mount options support for MountImagesLuca Boccassi2020-08-201-0/+1
* core: cleanup unused variablesLuca Boccassi2020-08-201-1/+0
* core: new feature MountImagesLuca Boccassi2020-08-051-0/+13
* service: add new RootImageOptions featureLuca Boccassi2020-07-291-0/+1
* pid1: create ro private tmp dirs when /tmp or /var/tmp is read-onlyZbigniew Jędrzejewski-Szmek2020-07-141-0/+12
* core: add RootHashSignature service parameterLuca Boccassi2020-06-251-0/+3
* core: add RootHash and RootVerity service parametersLuca Boccassi2020-06-231-0/+4
* core: add new LogNamespace= execution settingLennart Poettering2020-01-311-0/+1
* core: ProtectKernelLogs= mask kmsg in proc and sysKevin Kuehler2019-11-141-0/+1
* tree-wide: some more [static] related fixesLennart Poettering2019-07-121-2/+2
* pid1: improve message when setting up namespace failsZbigniew Jędrzejewski-Szmek2019-05-221-1/+2
* namespace: when DynamicUser=1 is set, mount StateDirectory= bind mounts "nosuid"Lennart Poettering2019-03-251-0/+1
* core: add open_netns_path() helperLennart Poettering2019-03-071-0/+1
* core: ProtectHostname= featureTopi Miettinen2019-02-201-0/+1
* tree-wide: use c99 static for array size declarationsZbigniew Jędrzejewski-Szmek2019-01-041-1/+1
* namespace: drop protect_{home,system}_or_bool_from_string()Yu Watanabe2018-06-151-2/+0
* tree-wide: beautify remaining copyright statementsLennart Poettering2018-06-141-1/+1
* tree-wide: remove Lennart's copyright linesLennart Poettering2018-06-141-1/+0
* tree-wide: drop 'This file is part of systemd' blurbLennart Poettering2018-06-141-2/+0
* core: add new PrivateMounts= unit settingLennart Poettering2018-06-121-0/+1
* namespace: rename parse_protect_{home,system}_or_bool() to protect_{home,syst...Yu Watanabe2018-05-311-2/+2
* tree-wide: be more careful with the type of array sizesLennart Poettering2018-04-271-6/+6
* tree-wide: drop license boilerplateZbigniew Jędrzejewski-Szmek2018-04-061-13/+0
* core: add new option 'tmpfs' to ProtectHome=Yu Watanabe2018-02-211-0/+1
* core: add new setting TemporaryFileSystem=Yu Watanabe2018-02-211-0/+12
* namespace: introduce parse_protect_system()_or_boolYu Watanabe2018-01-011-0/+1
* namespace: introduce parse_protect_home_or_bool()Yu Watanabe2018-01-011-0/+1
* Add SPDX license identifiers to source files under the LGPLZbigniew Jędrzejewski-Szmek2017-11-191-0/+1
* namespace: change NameSpace → NamespaceLennart Poettering2017-10-101-3/+3
* namespace: fall back gracefully when kernel doesn't support network namespace...Michal Sekletar2017-10-101-0/+17
* execute: make StateDirectory= and friends compatible with DynamicUser=1 and R...Lennart Poettering2017-10-021-0/+1
* core: add RootImage= setting for using a specific image file as root director...Lennart Poettering2017-02-071-1/+4
* core: add a per-unit setting MountAPIVFS= for mounting /dev, /proc, /sys in c...Lennart Poettering2017-02-071-0/+1
* core: add ability to define arbitrary bind mounts for servicesLennart Poettering2016-12-141-14/+30
* core: on DynamicUser= make sure that protecting sensitive paths is enforced (...Djalal Harouni2016-11-091-0/+1
* core:sandbox: lets make /lib/modules/ inaccessible on ProtectKernelModules=Djalal Harouni2016-10-121-3/+11
* core: introduce ProtectSystem=strictLennart Poettering2016-09-251-0/+1
* core: add two new service settings ProtectKernelTunables= and ProtectControlG...Lennart Poettering2016-09-251-0/+2
* doc,core: Read{Write,Only}Paths= and InaccessiblePaths=Alessandro Puccetti2016-07-191-3/+3
* Remove kdbus custom endpoint supportDaniel Mack2016-02-111-1/+0
* tree-wide: remove Emacs lines from all filesDaniel Mack2016-02-101-2/+0
* core: Private*/Protect* options with RootDirectoryAlban Crequy2015-05-181-1/+2
* Type of mount(2) flags is unsigned longTopi Miettinen2015-01-011-1/+1
* namespace: add missing 'const' to parametersLennart Poettering2014-10-171-3/+3
* namespace: add support for custom kdbus endpointDaniel Mack2014-09-081-0/+1
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-14 06:06:47 +0100