From 8dd294c5a9111d7c03043f20dd23371991fbd1fa Mon Sep 17 00:00:00 2001
From: Lennart Poettering <lennart@poettering.net>
Date: Thu, 21 Jan 2021 15:06:13 +0100
Subject: [PATCH] portabled: add BindPaths=/run back into "trusted" policy

This partly reverts fe239c7d7d6227209234100f4e0a36dd952a5587, where I
accidentally dropped only line for /run that was unlike the others.
Oops.

@bluca, thanks for noticing:

https://github.com/systemd/systemd/pull/18329#pullrequestreview-573343549
---
 src/portable/profile/trusted/service.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/portable/profile/trusted/service.conf b/src/portable/profile/trusted/service.conf
index cb859c4e278..9a6af70b939 100644
--- a/src/portable/profile/trusted/service.conf
+++ b/src/portable/profile/trusted/service.conf
@@ -2,5 +2,6 @@
 
 [Service]
 MountAPIVFS=yes
+BindPaths=/run
 BindReadOnlyPaths=/etc/machine-id
 BindReadOnlyPaths=/etc/resolv.conf