shaba/systemd-stable
1
1
Fork 0
mirror of https://github.com/systemd/systemd-stable.git synced 2025-08-27 21:50:15 +03:00
Code Activity

nspawn: actually allow access to /dev/net/tun in the container

Browse Source 
It's not sufficient to just copy the device node over, we need to update
the policy for it too.
This commit is contained in:
Lennart Poettering
2014-10-10 11:11:25 +02:00
parent 5516ae4419
commit 864e17068c
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/nspawn/nspawn.c
View File

@ -1558,6 +1558,7 @@ static int register_machine(pid_t pid, int local_ifindex) {
"/dev/random", "rwm", "/dev/random", "rwm",
"/dev/urandom", "rwm", "/dev/urandom", "rwm",
"/dev/tty", "rwm", "/dev/tty", "rwm",
"/dev/net/tun", "rwm",
/* Allow the container /* Allow the container
* access to ptys. However, * access to ptys. However,
* do not permit the * do not permit the