]> git.ipfire.org Git - thirdparty/systemd.git/commit - src/analyze/analyze-security.c
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 444d9ab) | patch
analyze security: print DeviceAllow list
authorLuca Boccassi <bluca@debian.org>
Sat, 30 Apr 2022 22:29:10 +0000 (23:29 +0100)
committerYu Watanabe <watanabe.yu+github@gmail.com>
Sun, 1 May 2022 04:43:01 +0000 (13:43 +0900)
commit6a59dfa108997f5022e1d0fd9acc4ed79c9686b8
tree2624b5221e366071232c8f2e64c5cfbf8d54de1atree | snapshot
parent444d9abd06478525fc5da3b03c512f6a1f0ef12bcommit | diff
analyze security: print DeviceAllow list

Many sandboxing options add implicit DeviceAllow rules, which might be confusing
for users running systemd-analyze security and not expecting it.
Print the list.

Fixes https://github.com/systemd/systemd/issues/23185
src/analyze/analyze-security.c diff | blob | blame | history
test/units/testsuite-65.sh diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.