morgan/systemd - systemd - Gitea

morgan/systemd

mirror of https://github.com/morgan9e/systemd synced 2026-04-14 16:37:19 +09:00

Go to file

Christian Brauner b71a0192c0 nspawn: mount temporary visible procfs and sysfs instance

In order to mount procfs and sysfs in an unprivileged container the
kernel requires that a fully visible instance is already present in the
target mount namespace. Mount one here so the inner child can mount its
own  instances. Later we umount the temporary  instances created here
before we actually exec the payload. Since the rootfs is shared the
umount will propagate into the container. Note, the inner child wouldn't
be able to unmount the  instances on its own since it doesn't own the
originating mount namespace. IOW, the outer child needs to do this.

So far nspawn didn't run into this issue because it used MS_MOVE which
meant that the shadow mount tree pinned a procfs and sysfs instance
which the kernel would find. The shadow mount tree is gone with proper
pivot_root() semantics.

Signed-off-by: Christian Brauner (Microsoft) <brauner@kernel.org>

2022-12-05 18:34:25 +01:00

.clusterfuzzlite

ci: unpin CFLite

2022-04-26 09:13:57 +00:00

Merge pull request #25319 from zx2c4-forks/krngseed

2022-11-16 15:07:54 +01:00

semaphore: remove the Semaphore repositories recursively

2022-11-08 01:11:44 +09:00

man: reword some awkward sentences

2022-10-14 15:56:58 +02:00

basic/list: drop LIST_IS_EMPTY

2022-07-02 12:46:16 +02:00

core: add possibility to not track certain unit types

2022-11-24 09:28:22 +09:00

meson: also allow setting GIT_VERSION via templates

2022-04-05 22:18:31 +02:00

hwdb: remove fuzz and deadzone for Simucube wheel bases.

2022-11-23 21:18:55 +01:00

network: change license of examples to MIT-0

2022-10-26 08:39:34 +02:00

man/journalctl: mention systemd-cat, make the description more direct

2022-11-22 13:31:04 +01:00

mkosi: pull in libbpf1 instead of legacy libbpf0 on debian

2022-11-21 16:13:29 +01:00

meson: install the right README file in modprobe.d

2021-07-07 14:52:05 +02:00

network: change license of examples to MIT-0

2022-10-26 08:39:34 +02:00

po: Translated using Weblate (Dutch)

2022-11-21 00:43:55 +09:00

units: enable systemd-network-generator by default

2021-12-16 09:49:39 +01:00

udev: add safe guard for setting by-id symlink

2022-11-03 09:59:54 +09:00

shell-completion

dissect: add --list option

2022-10-31 21:11:09 +01:00

nspawn: mount temporary visible procfs and sysfs instance

2022-12-05 18:34:25 +01:00

tree-wide: link to docs.kernel.org for kernel documentation

2022-07-04 19:56:53 +02:00

Use descriptive name for nobody

2022-05-27 22:09:24 +01:00

Merge pull request #25423 from yuwata/network-tc-cake-rtt-and-ack-filter

2022-11-19 15:35:49 +09:00

tmpfiles.d: do not fail if provision.conf fails

2022-11-04 15:42:16 +01:00

tree-wide: BLS and DPS are now on uapi-group website

2022-11-21 12:26:35 +01:00

stub: handle random seed like sd-boot does

2022-11-23 00:56:45 +01:00

xorg/50-systemd-user: add a full license header

2021-10-01 14:45:00 +02:00

.clang-format

clang-format: Adjust style of pointers

2022-05-30 04:00:54 +09:00

.ctags

…

.dir-locals.el

…

.editorconfig

docs: configure editorconfig for css and html

2022-05-17 21:13:17 +02:00

.gitattributes

gitattributes: introduce and use "generated" attribute

2021-10-18 09:42:55 +02:00

.gitignore

core/cgroup: CPUWeight/CPUShares support idle input

2022-08-11 14:25:58 +02:00

.mailmap

mailmap: two more names

2021-03-30 13:17:58 +02:00

.packit.yml

Packit: build SRPMs in Copr

2022-03-09 09:52:41 +00:00

.vimrc

…

.ycm_extra_conf.py

…

configure

tools: shellcheck-ify tool scripts

2021-09-30 12:27:06 +02:00

LICENSE.GPL2

…

LICENSE.LGPL2.1

…

Makefile

tree-wide: add spdx header on all scripts and helpers

2021-01-28 09:55:35 +01:00

meson_options.txt

shutdown: Add Xen kexec support

2022-11-02 20:47:41 +01:00

meson.build

Merge pull request #25389 from fbuihuu/update-test-for-opensuse

2022-11-19 05:58:51 +09:00

mkosi.build

Merge pull request #25327 from keszybz/mkosi-less-work

2022-11-14 11:44:16 +00:00

mkosi.postinst

mkosi: drop spaces after shell redirection operator

2022-11-14 11:59:30 +01:00

NEWS

Update changelog with latest sd-boot, sd-stub, and bootctl changes

2022-11-23 01:33:05 +01:00

README

README: note Kconfig for verifying DDIs via MoK keys

2022-11-14 11:09:36 +00:00

README.md

README.md: add a missing line break

2022-10-19 11:17:33 +02:00

TODO

TODO: add item about mnt_fstype_is_netfs()

2022-11-23 12:43:28 +01:00

README.md

System and Service Manager

Details

Most documentation is available on systemd's web site.

Assorted, older, general information about systemd can be found in the systemd Wiki.

Information about build requirements is provided in the README file.

Consult our NEWS file for information about what's new in the most recent systemd versions.

Please see the Code Map for information about this repository's layout and content.

Please see the Hacking guide for information on how to hack on systemd and test your modifications.

Please see our Contribution Guidelines for more information about filing GitHub Issues and posting GitHub Pull Requests.

When preparing patches for systemd, please follow our Coding Style Guidelines.

If you are looking for support, please contact our mailing list or join our IRC channel.

Stable branches with backported patches are available in the stable repo.