core: open up LockPersonality= for transient units

author Lennart Poettering <lennart@poettering.net>

Wed, 9 Aug 2017 18:52:54 +0000 (20:52 +0200)

committer Lennart Poettering <lennart@poettering.net>

Tue, 29 Aug 2017 13:58:13 +0000 (15:58 +0200)
author Lennart Poettering <lennart@poettering.net>
Wed, 9 Aug 2017 18:52:54 +0000 (20:52 +0200)
committer Lennart Poettering <lennart@poettering.net>
Tue, 29 Aug 2017 13:58:13 +0000 (15:58 +0200)
diff --git a/src/core/dbus-execute.c b/src/core/dbus-execute.c

index d28e8aafd671bd6d10c230a4f8f8275dd47a0dfa..ac7cd7fd0ca74af6ca4fbcfafb22e73a6c21713c 100644 (file)
--- a/src/core/dbus-execute.c
+++ b/src/core/dbus-execute.c
@@ -1696,7 +1696,7 @@ int bus_exec_context_set_transient_property(
                                "NoNewPrivileges", "SyslogLevelPrefix", "MemoryDenyWriteExecute",
                                "RestrictRealtime", "DynamicUser", "RemoveIPC", "ProtectKernelTunables",
                                "ProtectKernelModules", "ProtectControlGroups", "MountAPIVFS",
-                              "CPUSchedulingResetOnFork", "NonBlocking")) {
+                              "CPUSchedulingResetOnFork", "NonBlocking", "LockPersonality")) {
                  int b;
  
                  r = sd_bus_message_read(message, "b", &b);
@@ -1744,6 +1744,8 @@ int bus_exec_context_set_transient_property(
                                  c->cpu_sched_reset_on_fork = b;
                          else if (streq(name, "NonBlocking"))
                                  c->non_blocking = b;
+                        else if (streq(name, "LockPersonality"))
+                                c->lock_personality = b;
  
                          unit_write_drop_in_private_format(u, mode, name, "%s=%s", name, yes_no(b));
                  }
diff --git a/src/shared/bus-unit-util.c b/src/shared/bus-unit-util.c

index 1e720004c976167d7700f99e6b3844e357bed3c8..98a6ada9f21694da50a411bd8dfe528620690ce4 100644 (file)
--- a/src/shared/bus-unit-util.c
+++ b/src/shared/bus-unit-util.c
@@ -214,7 +214,7 @@ int bus_append_unit_property_assignment(sd_bus_message *m, const char *assignmen
                                "SyslogLevelPrefix", "Delegate", "RemainAfterElapse", "MemoryDenyWriteExecute",
                                "RestrictRealtime", "DynamicUser", "RemoveIPC", "ProtectKernelTunables",
                                "ProtectKernelModules", "ProtectControlGroups", "MountAPIVFS",
-                              "CPUSchedulingResetOnFork")) {
+                              "CPUSchedulingResetOnFork", "LockPersonality")) {
  
                  r = parse_boolean(eq);
                  if (r < 0)
author	Lennart Poettering <lennart@poettering.net>
	Wed, 9 Aug 2017 18:52:54 +0000 (20:52 +0200)
committer	Lennart Poettering <lennart@poettering.net>
	Tue, 29 Aug 2017 13:58:13 +0000 (15:58 +0200)
src/core/dbus-execute.c		patch \| blob \| blame \| history
src/shared/bus-unit-util.c		patch \| blob \| blame \| history