projects / snapd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 00c5ba3) | patch
[PATCH 1/4] data: Add systemd-tmpfiles configuration to create
authorAlex Murray <alex.murray@canonical.com>
Wed, 19 Oct 2022 23:58:42 +0000 (10:28 +1030)
committerAlex Murray <alex.murray@canonical.com>
Mon, 28 Nov 2022 10:37:00 +0000 (10:37 +0000)
commit323c8e410b1c77cfcb1b01a3235bb079ad2b7a76
tree77a4460d78b91cc00bcb7cc1a45c87c8298b9272tree | snapshot
parent00c5ba371a90733e167c0a407d09c65629f103aecommit | diff
[PATCH 1/4] data: Add systemd-tmpfiles configuration to create

Backport of the following upstream patch:
From 6226cdc57052f4b7057d92f2e549aa169e35cd2d Mon Sep 17 00:00:00 2001

private tmp dir
Backport of the following upstream patch:
From 6226cdc57052f4b7057d92f2e549aa169e35cd2d Mon Sep 17 00:00:00 2001
From: Alex Murray <alex.murray@canonical.com>
Date: Thu, 20 Oct 2022 10:28:42 +1030
Subject: [PATCH 1/4] data: Add systemd-tmpfiles configuration to create
 private tmp dir

Use systemd-tmpfiles to create the private tmp mount namespace root
dir (/tmp/snap-private-tmp) on boot as owned by root with restrictive
permissions. We can use this as a known location to then create per-snap
private tmp mount namespace dirs (/tmp/snap-private-tmp/snap.$SNAP_INSTANCE)
etc.

Signed-off-by: Alex Murray <alex.murray@canonical.com>
Gbp-Pq: Name 0017-cve-2022-3328-1.patch
data/Makefile diff | blob | history
data/systemd-tmpfiles/Makefile [new file with mode: 0644] blob
data/systemd-tmpfiles/snapd.conf [new file with mode: 0644] blob
packaging/fedora/snapd.spec diff | blob | history
packaging/opensuse/snapd.spec diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.