From: Lennart Poettering Date: Wed, 9 Aug 2017 18:52:54 +0000 (+0200) Subject: core: open up LockPersonality= for transient units X-Git-Tag: v235~218^2 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=refs%2Fpull%2F6585%2Fhead;p=thirdparty%2Fsystemd.git core: open up LockPersonality= for transient units Let's make "systemd-run -p LockPersonality=1 -t /bin/sh" work. --- diff --git a/src/core/dbus-execute.c b/src/core/dbus-execute.c index d28e8aafd67..ac7cd7fd0ca 100644 --- a/src/core/dbus-execute.c +++ b/src/core/dbus-execute.c @@ -1696,7 +1696,7 @@ int bus_exec_context_set_transient_property( "NoNewPrivileges", "SyslogLevelPrefix", "MemoryDenyWriteExecute", "RestrictRealtime", "DynamicUser", "RemoveIPC", "ProtectKernelTunables", "ProtectKernelModules", "ProtectControlGroups", "MountAPIVFS", - "CPUSchedulingResetOnFork", "NonBlocking")) { + "CPUSchedulingResetOnFork", "NonBlocking", "LockPersonality")) { int b; r = sd_bus_message_read(message, "b", &b); @@ -1744,6 +1744,8 @@ int bus_exec_context_set_transient_property( c->cpu_sched_reset_on_fork = b; else if (streq(name, "NonBlocking")) c->non_blocking = b; + else if (streq(name, "LockPersonality")) + c->lock_personality = b; unit_write_drop_in_private_format(u, mode, name, "%s=%s", name, yes_no(b)); } diff --git a/src/shared/bus-unit-util.c b/src/shared/bus-unit-util.c index 1e720004c97..98a6ada9f21 100644 --- a/src/shared/bus-unit-util.c +++ b/src/shared/bus-unit-util.c @@ -214,7 +214,7 @@ int bus_append_unit_property_assignment(sd_bus_message *m, const char *assignmen "SyslogLevelPrefix", "Delegate", "RemainAfterElapse", "MemoryDenyWriteExecute", "RestrictRealtime", "DynamicUser", "RemoveIPC", "ProtectKernelTunables", "ProtectKernelModules", "ProtectControlGroups", "MountAPIVFS", - "CPUSchedulingResetOnFork")) { + "CPUSchedulingResetOnFork", "LockPersonality")) { r = parse_boolean(eq); if (r < 0)