execute: don't create /tmp and /var/tmp if both are inaccessible
If both /tmp and either /var/tmp or whole /var are inaccessible, there's no need to create the temporary directories.
This commit is contained in:
parent
de46b2be07
commit
efa2f3a18b
|
@ -5371,7 +5371,10 @@ static int exec_runtime_make(Manager *m, const ExecContext *c, const char *id, E
|
||||||
if (!c->private_network && !c->private_tmp && !c->network_namespace_path)
|
if (!c->private_network && !c->private_tmp && !c->network_namespace_path)
|
||||||
return 0;
|
return 0;
|
||||||
|
|
||||||
if (c->private_tmp) {
|
if (c->private_tmp &&
|
||||||
|
!(prefixed_path_strv_contains(c->inaccessible_paths, "/tmp") &&
|
||||||
|
(prefixed_path_strv_contains(c->inaccessible_paths, "/var/tmp") ||
|
||||||
|
prefixed_path_strv_contains(c->inaccessible_paths, "/var")))) {
|
||||||
r = setup_tmp_dirs(id, &tmp_dir, &var_tmp_dir);
|
r = setup_tmp_dirs(id, &tmp_dir, &var_tmp_dir);
|
||||||
if (r < 0)
|
if (r < 0)
|
||||||
return r;
|
return r;
|
||||||
|
|
Loading…
Reference in a new issue