|
 |
17b0f1 |
From 38d653dbd39cd1e3370e49c5cc7b031a93532e10 Mon Sep 17 00:00:00 2001
|
|
|
17b0f1 |
From: Jason Pleau <jason@jpleau.ca>
|
|
|
17b0f1 |
Date: Sun, 31 May 2015 12:51:17 -0400
|
|
|
17b0f1 |
Subject: [PATCH] core/namespace: Protect /usr instead of /home with
|
|
|
17b0f1 |
ProtectSystem=yes
|
|
|
17b0f1 |
|
|
|
17b0f1 |
A small typo in ee818b8 caused /home to be put in read-only instead of
|
|
|
17b0f1 |
/usr when ProtectSystem was enabled (ie: not set to "no").
|
|
|
17b0f1 |
|
|
|
17b0f1 |
(cherry picked from commit d38e01dc96c5cae1986561c4f3bc7f760560bf2a)
|
|
|
17b0f1 |
|
|
|
17b0f1 |
Resolves: #1493047
|
|
|
17b0f1 |
---
|
|
|
17b0f1 |
src/core/namespace.c | 2 +-
|
|
|
17b0f1 |
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
17b0f1 |
|
|
|
17b0f1 |
diff --git a/src/core/namespace.c b/src/core/namespace.c
|
|
|
17b0f1 |
index 5747462736..217dd36cbd 100644
|
|
|
17b0f1 |
--- a/src/core/namespace.c
|
|
|
17b0f1 |
+++ b/src/core/namespace.c
|
|
|
17b0f1 |
@@ -521,7 +521,7 @@ int setup_namespace(
|
|
|
17b0f1 |
if (protect_system != PROTECT_SYSTEM_NO) {
|
|
|
17b0f1 |
const char *usr_dir, *boot_dir, *etc_dir;
|
|
|
17b0f1 |
|
|
|
17b0f1 |
- usr_dir = prefix_roota(root_directory, "/home");
|
|
|
17b0f1 |
+ usr_dir = prefix_roota(root_directory, "/usr");
|
|
|
17b0f1 |
boot_dir = prefix_roota(root_directory, "/boot");
|
|
|
17b0f1 |
boot_dir = strjoina("-", boot_dir);
|
|
|
17b0f1 |
etc_dir = prefix_roota(root_directory, "/etc");
|