]> git.ipfire.org Git - people/ms/pakfire.git/commit
projects / people / ms / pakfire.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c7b9ea4) | patch
execute: Mount all file systems only in namespace
authorMichael Tremer <michael.tremer@ipfire.org>
Sun, 17 Jul 2022 18:16:04 +0000 (18:16 +0000)
committerMichael Tremer <michael.tremer@ipfire.org>
Sun, 17 Jul 2022 18:16:04 +0000 (18:16 +0000)
commitf71c82d89a3b757ebe49262b18467db6d065e18d
tree395a9c1acde47bf8803430be6629ea0b1a4ec8e0tree | snapshot
parentc7b9ea4f1febdb8f56dfe775c5c2d26963d72ecccommit | diff
execute: Mount all file systems only in namespace

If Pakfire is running as an unprivileged user, we cannot call mount() in
the original namespace. However, it is difficult to spawn a new process
in a new namespace first and then perform loads of actions in there.
Embedded Pakfire would become more difficult.

At the cost of losing the option to create an environment in a
dynamically created ramdisk, we can only mount everything when we enter
the container.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
src/libpakfire/execute.c diff | blob | blame | history
src/libpakfire/include/pakfire/mount.h diff | blob | blame | history
src/libpakfire/mount.c diff | blob | blame | history
src/libpakfire/pakfire.c diff | blob | blame | history
Pakfire is the package management and build system for IPFire 3.x.