picnoir/Systemd
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
Systemd/src/core
History
Joerg Behrmann 56ef8db9f5 core: apply WorkingDirectory after enforce_user 
If WorkingDirectory is on NFS, root might only have the privileges of
nobody and the chdir to the WorkingDirectory might fail, even if the
user running the service would have the proper privileges to chdir to
that directory.

Fixes #10568
2018-10-31 12:07:24 +01:00
..
all-units.h core: undo the dependency inversion between unit.h and all unit types 2018-05-15 14:24:34 -04:00
audit-fd.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
audit-fd.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
automount.c core: rework serialization 2018-10-26 10:52:41 +02:00
automount.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
bpf-devices.c core: support cgroup v2 device controller 2018-10-09 09:47:51 -07:00
bpf-devices.h core: support cgroup v2 device controller 2018-10-09 09:47:51 -07:00
bpf-firewall.c bpf-firewall: always use log_unit_xyz() insteadof log_xyz() 2018-10-09 21:11:41 +02:00
bpf-firewall.h tree-wide: drop double newline 2018-06-29 11:02:17 +09:00
cgroup.c core: include error cause in log message 2018-10-20 01:40:42 +09:00
cgroup.h core: refactor bpf firewall support into a pseudo-controller 2018-10-09 09:46:08 -07:00
chown-recursive.c chown-recursive: TAKE_FD() is your friend 2018-10-26 15:13:26 +02:00
chown-recursive.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-automount.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-automount.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-cgroup.c core: add IODeviceLatencyTargetSec 2018-08-22 16:46:18 +02:00
dbus-cgroup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-device.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-device.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-execute.c core: implement per unit journal rate limiting 2018-10-18 09:56:20 +02:00
dbus-execute.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-job.c tree-wide: use "polkit" to refer to PolicyKit/polkit 2018-07-16 12:44:24 +02:00
dbus-job.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-kill.c Make Watchdog Signal Configurable 2018-09-26 16:14:29 +02:00
dbus-kill.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-manager.c core: rename ManagerExitCode → ManagerObjective 2018-10-09 19:43:43 +02:00
dbus-manager.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-mount.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-mount.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-path.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-path.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-scope.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-scope.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-service.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-service.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-slice.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-slice.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-socket.c core: use structured initialization 2018-10-17 21:13:02 +02:00
dbus-socket.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-swap.c tree-wide: beautify remaining copyright statements 2018-06-14 10:20:21 +02:00
dbus-swap.h tree-wide: beautify remaining copyright statements 2018-06-14 10:20:21 +02:00
dbus-target.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-target.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-timer.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-timer.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-unit.c core: reword polkit request a bit (#10524) 2018-10-26 06:01:41 +09:00
dbus-unit.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-util.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus-util.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
dbus.c core: rework serialization 2018-10-26 10:52:41 +02:00
dbus.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
device.c core: rework serialization 2018-10-26 10:52:41 +02:00
device.h device: clean up DeviceFound flags set 2018-10-09 21:11:22 +02:00
dynamic-user.c core: rework serialization 2018-10-26 10:52:41 +02:00
dynamic-user.h tree-wide: use unsigned for refcount 2018-08-27 13:48:04 +09:00
emergency-action.c core: do not "warn" about mundane emergency actions 2018-10-17 19:32:09 +02:00
emergency-action.h core: do not "warn" about mundane emergency actions 2018-10-17 19:32:09 +02:00
execute.c core: apply WorkingDirectory after enforce_user 2018-10-31 12:07:24 +01:00
execute.h tree-wide: add a few missing _sentinel_ decorators 2018-10-26 19:49:15 +02:00
hostname-setup.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
hostname-setup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
ima-setup.c ima-setup: prefer safe_close() over plain close() 2018-10-18 16:23:45 +02:00
ima-setup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
ip-address-access.c tree-wide: drop copyright headers from frequent contributors 2018-06-20 11:58:53 +02:00
ip-address-access.h tree-wide: drop double newline 2018-06-29 11:02:17 +09:00
job.c core: rework serialization 2018-10-26 10:52:41 +02:00
job.h job: add a comment that JOB_DONE also means skipped due to condition (#10453) 2018-10-19 03:55:30 +09:00
kill.c Make Watchdog Signal Configurable 2018-09-26 16:14:29 +02:00
kill.h Make Watchdog Signal Configurable 2018-09-26 16:14:29 +02:00
killall.c killall: (void)ify more things 2018-09-25 12:50:35 +02:00
killall.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
kmod-setup.c tree-wide: replace 'unsigned int' with 'unsigned' 2018-10-19 22:19:12 +02:00
kmod-setup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
load-dropin.c pid1: drop now-unused path parameter to add_dependency_by_name() 2018-09-15 19:57:52 +02:00
load-dropin.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
load-fragment-gperf-nulstr.awk build-sys: fix the script used for generating load_fragment_gperf_nulstr (#6646) 2017-08-26 23:21:23 +09:00
load-fragment-gperf.gperf.m4 core: implement per unit journal rate limiting 2018-10-18 09:56:20 +02:00
load-fragment.c core: accept system mode emergency action specifiers with a warning 2018-10-17 19:31:50 +02:00
load-fragment.h core: add IODeviceLatencyTargetSec 2018-08-22 16:46:18 +02:00
locale-setup.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
locale-setup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
loopback-setup.c sd-netlink: make sd_netlink_slot take its description 2018-10-16 18:42:23 +09:00
loopback-setup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
machine-id-setup.c core: include error cause in log message 2018-10-20 01:40:42 +09:00
machine-id-setup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
macros.systemd.in Merge pull request #9489 from keszybz/copyright-removal-3 2018-07-03 16:55:01 +02:00
main.c core: rework serialization 2018-10-26 10:52:41 +02:00
manager.c core: skip unit deserialization and move to the next one when unit_deserialize() fails 2018-10-30 14:52:13 +01:00
manager.h core: replace udev_monitor by sd_device_monitor 2018-10-17 03:31:20 +09:00
meson.build core: support cgroup v2 device controller 2018-10-09 09:47:51 -07:00
mount-setup.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
mount-setup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
mount.c core: rework serialization 2018-10-26 10:52:41 +02:00
mount.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
namespace.c tree-wide: use typesafe_qsort() 2018-09-19 08:02:52 +09:00
namespace.h namespace: drop protect_{home,system}_or_bool_from_string() 2018-06-15 11:32:27 +02:00
org.freedesktop.systemd1.conf systemd-analyze: make dump work for large # of units 2018-05-11 08:11:02 -07:00
org.freedesktop.systemd1.policy.in core: systemd1.manage-unit-files policy implies systemd1.manage-units 2018-05-18 00:02:58 +09:00
org.freedesktop.systemd1.service Add SPDX license headers to various assorted files 2017-11-19 19:08:15 +01:00
path.c core: rework serialization 2018-10-26 10:52:41 +02:00
path.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
scope.c core: rework serialization 2018-10-26 10:52:41 +02:00
scope.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
selinux-access.c tree-wide: drop copyright lines for more authors 2018-06-22 16:39:45 +02:00
selinux-access.h tree-wide: drop double newline 2018-06-29 11:02:17 +09:00
selinux-setup.c tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
selinux-setup.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
service.c service: when starting a service make a copy of the watchdog timeout and use that 2018-10-26 13:00:04 +02:00
service.h service: when starting a service make a copy of the watchdog timeout and use that 2018-10-26 13:00:04 +02:00
show-status.c core: serialize and deserialize current ShowStatus 2018-07-23 23:42:48 +09:00
show-status.h core: serialize and deserialize current ShowStatus 2018-07-23 23:42:48 +09:00
shutdown.c core: include error cause in log message 2018-10-20 01:40:42 +09:00
slice.c core: rework serialization 2018-10-26 10:52:41 +02:00
slice.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
smack-setup.c core: include error cause in log message 2018-10-20 01:40:42 +09:00
smack-setup.h tree-wide: use proper unicode © instead of (C) where we can 2018-06-14 10:20:20 +02:00
socket.c core: rework serialization 2018-10-26 10:52:41 +02:00
socket.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
swap.c core: rework serialization 2018-10-26 10:52:41 +02:00
swap.h core: replace udev_device by sd_device 2018-08-23 04:57:39 +09:00
system.conf.in meson: define @HIGH_RLIMIT_NOFILE@ and use it everywhere 2018-10-17 14:54:48 +02:00
systemd.pc.in build-sys: make the dynamic UID range, and the container UID range configurable 2017-12-06 12:55:37 +01:00
target.c core: rework serialization 2018-10-26 10:52:41 +02:00
target.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
timer.c core: don't drop timer expired but not yet processed when system date is changed 2018-10-30 15:38:45 +01:00
timer.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
transaction.c core: make destructive transaction error a bit more useful 2018-10-13 13:01:08 +02:00
transaction.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
triggers.systemd.in Drop my copyright headers 2018-06-14 13:03:20 +02:00
umount.c core/umount: use structured initializers 2018-09-10 16:48:37 +09:00
umount.h tree-wide: beautify remaining copyright statements 2018-06-14 10:20:21 +02:00
unit-printf.c shared: add %g, %G specifiers for group / gid (#10368) 2018-10-13 17:26:48 +09:00
unit-printf.h tree-wide: remove Lennart's copyright lines 2018-06-14 10:20:20 +02:00
unit.c core: rework serialization 2018-10-26 10:52:41 +02:00
unit.h core: rework serialization 2018-10-26 10:52:41 +02:00
user.conf core: rename StartLimitInterval= to StartLimitIntervalSec= 2016-04-29 16:27:48 +02:00