[systemd-commits] src/nspawn
Daniel Mack
zonque at kemper.freedesktop.org
Fri Oct 17 07:07:28 PDT 2014
src/nspawn/nspawn.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
New commits:
commit 317cde8b80a611f6194aaba2dad418cc21eefe55
Author: Daniel Mack <daniel at zonque.org>
Date: Fri Oct 17 16:04:49 2014 +0200
nspawn: fix DeviceAllow list
Commit 864e17068 ("nspawn: actually allow access to /dev/net/tun in the
container") added "/dev/net/tun" to the list of allowed devices but forgot
to tweak the array length, which caused "/dev/kdbus/*" to be missed.
diff --git a/src/nspawn/nspawn.c b/src/nspawn/nspawn.c
index f04d326..c567c8d 100644
--- a/src/nspawn/nspawn.c
+++ b/src/nspawn/nspawn.c
@@ -1545,7 +1545,7 @@ static int register_machine(pid_t pid, int local_ifindex) {
return r;
}
- r = sd_bus_message_append(m, "(sv)", "DeviceAllow", "a(ss)", 10,
+ r = sd_bus_message_append(m, "(sv)", "DeviceAllow", "a(ss)", 11,
/* Allow the container to
* access and create the API
* device nodes, so that
More information about the systemd-commits
mailing list