cgroup: don't enable bpf pseudo-controllers when doing a wildcard delegation

author Lennart Poettering <lennart@poettering.net>

Wed, 24 Jan 2024 21:40:04 +0000 (22:40 +0100)

committer Lennart Poettering <lennart@poettering.net>

Thu, 25 Jan 2024 12:42:13 +0000 (13:42 +0100)
author Lennart Poettering <lennart@poettering.net>
Wed, 24 Jan 2024 21:40:04 +0000 (22:40 +0100)
committer Lennart Poettering <lennart@poettering.net>
Thu, 25 Jan 2024 12:42:13 +0000 (13:42 +0100)
diff --git a/src/basic/cgroup-util.h b/src/basic/cgroup-util.h

index be97258d1688f5ad7023d90a7f37b1c2a54eea7e..f62b26458d4aa76898e130a3918553f8861e29e8 100644 (file)
--- a/src/basic/cgroup-util.h
+++ b/src/basic/cgroup-util.h
@@ -67,10 +67,13 @@ typedef enum CGroupMask {
          /* All real cgroup v2 controllers */
          CGROUP_MASK_V2 = CGROUP_MASK_CPU|CGROUP_MASK_CPUSET|CGROUP_MASK_IO|CGROUP_MASK_MEMORY|CGROUP_MASK_PIDS,
  
+        /* All controllers we want to delegate in case of Delegate=yes. Which are prety much the v2 controllers only, as delegation on v1 is not safe, and bpf stuff isn't a real controller */
+        CGROUP_MASK_DELEGATE = CGROUP_MASK_V2,
+
          /* All cgroup v2 BPF pseudo-controllers */
          CGROUP_MASK_BPF = CGROUP_MASK_BPF_FIREWALL|CGROUP_MASK_BPF_DEVICES|CGROUP_MASK_BPF_FOREIGN|CGROUP_MASK_BPF_SOCKET_BIND|CGROUP_MASK_BPF_RESTRICT_NETWORK_INTERFACES,
  
-        _CGROUP_MASK_ALL = CGROUP_CONTROLLER_TO_MASK(_CGROUP_CONTROLLER_MAX) - 1
+        _CGROUP_MASK_ALL = CGROUP_CONTROLLER_TO_MASK(_CGROUP_CONTROLLER_MAX) - 1,
  } CGroupMask;
  
  static inline CGroupMask CGROUP_MASK_EXTEND_JOINED(CGroupMask mask) {
diff --git a/src/core/dbus-cgroup.c b/src/core/dbus-cgroup.c

index 4c0b3ddf9c27972efcc9430652891053fc901a17..bba38bddc9b3929faed485669c12a1d057b613d6 100644 (file)
--- a/src/core/dbus-cgroup.c
+++ b/src/core/dbus-cgroup.c
@@ -542,7 +542,7 @@ static int bus_cgroup_set_transient_property(
  
                  if (!UNIT_WRITE_FLAGS_NOOP(flags)) {
                          c->delegate = b;
-                        c->delegate_controllers = b ? _CGROUP_MASK_ALL : 0;
+                        c->delegate_controllers = b ? CGROUP_MASK_DELEGATE : 0;
  
                          unit_write_settingf(u, flags, name, "Delegate=%s", yes_no(b));
                  }
diff --git a/src/core/load-fragment.c b/src/core/load-fragment.c

index 6fc6bb360980e59af70425a3cb0d873c3a9aa2fa..5f4e642e545c89f7426c79adc51f7873350d3265 100644 (file)
--- a/src/core/load-fragment.c
+++ b/src/core/load-fragment.c
@@ -4036,7 +4036,7 @@ int config_parse_delegate(
  
          } else if (r > 0) {
                  c->delegate = true;
-                c->delegate_controllers = _CGROUP_MASK_ALL;
+                c->delegate_controllers = CGROUP_MASK_DELEGATE;
          } else {
                  c->delegate = false;
                  c->delegate_controllers = 0;
author	Lennart Poettering <lennart@poettering.net>
	Wed, 24 Jan 2024 21:40:04 +0000 (22:40 +0100)
committer	Lennart Poettering <lennart@poettering.net>
	Thu, 25 Jan 2024 12:42:13 +0000 (13:42 +0100)
src/basic/cgroup-util.h		patch \| blob \| blame \| history
src/core/dbus-cgroup.c		patch \| blob \| blame \| history
src/core/load-fragment.c		patch \| blob \| blame \| history