/[pkg-src]/trunk/systemd/patches/systemd-220-core-namespace-protect-usr-instead-of-home-with-protectsystem-yes.patch |
Annotation of /trunk/systemd/patches/systemd-220-core-namespace-protect-usr-instead-of-home-with-protectsystem-yes.patch
Parent Directory | Revision Log
Revision 2587 -
(hide annotations)
(download)
Thu Jun 18 13:12:27 2015 UTC (9 years, 3 months ago) by niro
File size: 1040 byte(s)
Thu Jun 18 13:12:27 2015 UTC (9 years, 3 months ago) by niro
File size: 1040 byte(s)
upstream fixes
1 | niro | 2587 | From d38e01dc96c5cae1986561c4f3bc7f760560bf2a Mon Sep 17 00:00:00 2001 |
2 | From: Jason Pleau <jason@jpleau.ca> | ||
3 | Date: Sun, 31 May 2015 12:51:17 -0400 | ||
4 | Subject: core/namespace: Protect /usr instead of /home with ProtectSystem=yes | ||
5 | |||
6 | A small typo in ee818b8 caused /home to be put in read-only instead of | ||
7 | /usr when ProtectSystem was enabled (ie: not set to "no"). | ||
8 | |||
9 | diff --git a/src/core/namespace.c b/src/core/namespace.c | ||
10 | index 7d0b7e7..01a817b 100644 | ||
11 | --- a/src/core/namespace.c | ||
12 | +++ b/src/core/namespace.c | ||
13 | @@ -499,7 +499,7 @@ int setup_namespace( | ||
14 | if (protect_system != PROTECT_SYSTEM_NO) { | ||
15 | const char *usr_dir, *boot_dir, *etc_dir; | ||
16 | |||
17 | - usr_dir = prefix_roota(root_directory, "/home"); | ||
18 | + usr_dir = prefix_roota(root_directory, "/usr"); | ||
19 | boot_dir = prefix_roota(root_directory, "/boot"); | ||
20 | boot_dir = strjoina("-", boot_dir); | ||
21 | etc_dir = prefix_roota(root_directory, "/etc"); | ||
22 | -- | ||
23 | cgit v0.10.2 | ||
24 |