picnoir/Systemd
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
Systemd/src
History
Anita Zhang f66ad46066 nspawn: don't hard fail when setting capabilities 
The OCI changes in #9762 broke a use case in which we use nspawn from
inside a container that has dropped capabilities from the bounding set
that nspawn expected to retain. In an attempt to keep OCI compliance
and support our use case, I made hard failing on setting capabilities
not in the bounding set optional (hard fail if using OCI and log only
if using nspawn cmdline).

Fixes #12539
2019-06-20 21:46:36 +02:00
..
ac-power
activate Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
analyze analyze: also print unix time in "timestamp" 2019-05-21 09:56:41 +02:00
ask-password Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
backlight tree-wide: (void)ify a few unlink() and rmdir() 2019-03-27 18:09:56 +01:00
basic nspawn: don't hard fail when setting capabilities 2019-06-20 21:46:36 +02:00
binfmt tree-wide: voidify a few calls 2019-05-08 06:36:20 -04:00
boot Merge pull request #12508 from keszybz/no-root-checks 2019-06-06 21:31:19 +09:00
busctl busctl: always prefix bus error message with local string 2019-06-04 08:37:24 +02:00
cgls Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
cgroups-agent
cgtop cgtop,test: use consistent capitalization for CGroup 2019-05-21 10:57:23 +02:00
core bpf: use more TAKE_FD() 2019-06-21 03:28:24 +09:00
coredump coredumpctl: fix --debugger option 2019-05-28 08:22:07 +02:00
cryptsetup Merge pull request #12636 from mbroz/master 2019-05-30 14:27:22 +02:00
debug-generator headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
delta tree-wide: drop alloca() in loop 2019-06-20 06:29:19 +09:00
detect-virt Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
dissect
environment-d-generator
escape Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
firstboot Merge pull request #12390 from poettering/string-file-mkdir 2019-05-28 14:42:55 +02:00
fsck fsck: copy out device argument from argv[] before forking 2019-03-29 08:18:25 +01:00
fstab-generator fstab-generator: Prevent double free of reused FILE* 2019-05-03 13:22:36 +02:00
fuzz udev: modernize udev-rules.c 2019-06-02 14:15:26 +09:00
getty-generator tree-wide: drop alloca() in loop 2019-06-20 06:29:19 +09:00
gpt-auto-generator tree-wide: make use of the new WRITE_STRING_FILE_MKDIR_0755 flag 2019-05-08 06:36:20 -04:00
hibernate-resume hibernate-resume: add resumeflags= kernel option 2019-06-05 18:59:05 -06:00
hostname Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
hwdb
id128 Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
import util: introduce format_bytes_full() 2019-06-19 23:15:19 +09:00
initctl headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
journal Merge pull request #12837 from yuwata/tree-wide-lgtm-fixes 2019-06-20 12:35:34 +02:00
journal-remote fix(journal-gatewayd): use relative urls (not starting with '/') 2019-06-18 17:06:12 +02:00
kernel-install kernel-install: add a check that the vmlinuz arg is sane 2019-04-03 11:25:40 +02:00
libsystemd bus-creds: fix size calculation for storing caps data 2019-06-20 14:55:30 +02:00
libsystemd-network dhcp: use memdup_suffix0() instead of strndup() 2019-06-19 14:15:42 +09:00
libudev libudev: hide definition of struct udev_device 2019-06-12 23:59:08 +09:00
locale tree-wide: drop alloca() in loop 2019-06-20 06:29:19 +09:00
login Merge pull request #12424 from poettering/logind-brightness 2019-06-12 14:28:09 +02:00
machine terminal-util: introduce openpt_allocate() 2019-06-18 09:26:31 +02:00
machine-id-setup
modules-load
mount systemd-mount: don't check for non-normalized WHAT for network FS 2019-06-11 09:19:16 +02:00
network Merge pull request #12762 from yuwata/network-introduce-carrier-and-network-state-12752 2019-06-20 13:36:30 +02:00
notify Merge pull request #12411 from keszybz/pr/12394 2019-05-08 10:11:32 -04:00
nspawn nspawn: don't hard fail when setting capabilities 2019-06-20 21:46:36 +02:00
nss-myhostname nss-myhostname: unify code that handles NOT_FOUND case 2019-04-11 11:13:10 +02:00
nss-mymachines nss-mymachines: return NO_RECOVERY instead of NO_DATA when we fail to do D-Bus and similar 2019-04-11 11:13:10 +02:00
nss-resolve codespell: fix spelling errors 2019-04-29 16:47:18 +02:00
nss-systemd headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
partition tree-wide: drop several missing_*.h and import relevant headers from kernel-5.0 2019-04-11 19:00:37 +02:00
path Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
portable Merge pull request #12411 from keszybz/pr/12394 2019-05-08 10:11:32 -04:00
quotacheck headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
random-seed tree-wide: port various places over to use chmod_and_chown() 2019-05-24 15:07:55 +02:00
rc-local-generator Drop support for /usr/sbin/halt.local 2019-05-23 10:19:01 +02:00
remount-fs
reply-password util: move some raw memory functions from string-util.h → memory-util.h 2019-03-14 13:25:51 +01:00
resolve resolved: support TLS 1.3 when using GnuTLS for DNS-over-TLS 2019-06-19 13:10:44 +02:00
rfkill util: make device_wait_for_initialization() optionally takes timeout value 2019-06-04 01:19:43 +09:00
run Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
run-generator headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
shared Merge pull request #12837 from yuwata/tree-wide-lgtm-fixes 2019-06-20 12:35:34 +02:00
shutdown Replace the legacy ULONG_LONG_MAX with the C99 ULLONG_MAX 2019-05-17 09:39:46 +03:00
sleep sleep: properly pass verb to sleep script 2019-06-17 13:04:03 +02:00
socket-proxy tree-wide: port users over to use new ERRNO_IS_ACCEPT_AGAIN() call 2019-04-10 22:11:18 +02:00
stdio-bridge stdio-bridge: slightly optimize formatting of structure 2019-03-19 15:29:44 +01:00
sulogin-shell
sysctl headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
system-update-generator system-update-generator: do not emit bogus warning if no /system-update symlink 2019-06-12 17:27:17 +02:00
systemctl systemctl: Prevent state_missing from being used uninit 2019-06-07 06:33:35 +01:00
systemd Merge pull request #12762 from yuwata/network-introduce-carrier-and-network-state-12752 2019-06-20 13:36:30 +02:00
sysusers tree-wide: introduce empty_or_dash() helper 2019-04-08 12:03:33 +02:00
sysv-generator
test test: add tests for format_bytes() 2019-06-19 23:15:19 +09:00
time-wait-sync codespell: fix spelling errors 2019-04-29 16:47:18 +02:00
timedate Enable log colors for most of tools in /usr/bin 2019-05-08 09:50:21 +02:00
timesync Merge pull request #12420 from mrc0mmand/coccinelle-tweaks 2019-04-30 11:37:19 +02:00
tmpfiles tmpfiles: use common fd_is_mount_point() implementation in tmpfiles.c 2019-06-18 12:42:30 +02:00
tty-ask-password-agent ask-passwd: slightly optimize handling arguments 2019-04-04 08:07:03 +02:00
udev ethtool-util: move from src/udev/net/ to src/shared/ 2019-06-19 09:03:50 +09:00
update-done headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
update-utmp headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
user-sessions headers: remove unneeded includes from util.h 2019-03-27 11:53:12 +01:00
vconsole Merge pull request #12378 from rbalint/vt-kbd-reset-check 2019-05-16 16:39:38 +02:00
veritysetup
version
volatile-root mount-util: beef up bind_remount_recursive() to be able to toggle more than MS_RDONLY 2019-03-25 19:33:55 +01:00