shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-01-11 09:18:07 +03:00
Code

units: run systemd-networkd.service only if CAP_NET_ADMIN capability is around

Browse Source 
This has the effect that systemd-networkd won't run in containers
without network namespacing wher CAP_NET_ADMIN is (usually) not
available. It will still run in containers with network namespacing on
(where CAP_NET_ADMIN is usually avilable).

We might remove this condition check again if networkd provides services
to apps that also are useful in containers lacking network namespacing,
however, as long as it doesn't it should be handled like udevd and be
excluded in such containers.
This commit is contained in:
Lennart Poettering 2013-12-18 16:45:20 +01:00
parent 220ec97ad6
commit 74f9e0f203
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
units/systemd-networkd.service.in
View File

@ -11,6 +11,7 @@ Documentation=man:systemd-networkd.service(8)
DefaultDependencies=no
Before=network.target
Wants=network.target
ConditionCapability=CAP_NET_ADMIN
[Service]
Type=notify