projects / systemd / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 920a789) | patch
execute: drop group priviliges only after setting up namespace
authorLennart Poettering <lennart@poettering.net>
Thu, 25 Aug 2016 15:29:12 +0000 (17:29 +0200)
committerDjalal Harouni <tixxdz@opendz.org>
Sun, 25 Sep 2016 08:42:18 +0000 (10:42 +0200)
commit096424d1230e0a0339735c51b43949809e972430
treebf3ac491bc270ec67886f2135e5c404023e5d37ftree | snapshot
parent920a7899ded2711e5ff4fe367a60a4fefca6767fcommit | diff
execute: drop group priviliges only after setting up namespace

If PrivateDevices=yes is set, the namespace code creates device nodes in /dev
that should be owned by the host's root, hence let's make sure we set up the
namespace before dropping group privileges.
src/core/execute.c diff | blob | history
https://github.com/systemd/systemd.git