]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 720f0a2) | patch
namespace: extend list of masked files by ProtectKernelTunables=
authorLennart Poettering <lennart@poettering.net>
Thu, 3 May 2018 15:44:20 +0000 (17:44 +0200)
committerLennart Poettering <lennart@poettering.net>
Thu, 3 May 2018 15:46:31 +0000 (17:46 +0200)
commit4e2c0a227efb2103cb4bac359953ab1238831904
tree0fbba0982c26b3862f4de0ec64687266e2e98641tree | snapshot
parent720f0a2f3c928cc9379501a52146be9fbb4d9be2commit | diff
namespace: extend list of masked files by ProtectKernelTunables=

This adds a number of entries nspawn already applies to regular service
namespacing too. Most importantly let's mask /proc/kcore and
/proc/kallsyms too.
src/core/namespace.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.