Compare commits
No commits in common. "8e4a44c5853840167227d232a58b34dd09b02380" and "d62e09c1eb9037288836edde9c50de6b0a8399e9" have entirely different histories.
8e4a44c585
...
d62e09c1eb
|
@ -147,7 +147,7 @@
|
|||
<command>attach</command> command above, and removes the unit file copies, drop-ins and image symlink
|
||||
again. This command expects an image name or path as parameter. Note that if a path is specified only the last
|
||||
component of it (i.e. the file or directory name itself, not the path to it) is used for finding matching unit
|
||||
files. This is a convenience feature to allow all arguments passed as <command>attach</command> also to
|
||||
files. This is a convencience feature to allow all arguments passed as <command>attach</command> also to
|
||||
<command>detach</command>.</para></listitem>
|
||||
|
||||
<para>If <option>--now</option> and/or <option>--enable</option> are passed, the portable service(s) are
|
||||
|
|
|
@ -154,7 +154,7 @@
|
|||
is equivalent to <function>sd_bus_open()</function>. This description string is used in log
|
||||
messages about the bus object, and including a "name" for the bus makes them easier to
|
||||
understand. Some messages are emitted during bus initialization, hence using this function is
|
||||
preferable to setting the description later with
|
||||
prefereable to setting the description later with
|
||||
<function>sd_bus_open_with_description()</function>. The argument is copied internally and will
|
||||
not be referenced after the function returns.</para>
|
||||
|
||||
|
|
|
@ -66,7 +66,7 @@
|
|||
function to call when the inode changes. The handler function will be passed the <parameter>userdata</parameter>
|
||||
pointer, which may be chosen freely by the caller. The handler also receives a pointer to a <structname>struct
|
||||
inotify_event</structname> structure containing information about the inode event. The <parameter>mask</parameter>
|
||||
parameter specifies which types of inode events to watch specifically. It must contain an OR-ed combination of
|
||||
parameter specifie which types of inode events to watch specifically. It must contain an OR-ed combination of
|
||||
<constant>IN_ACCESS</constant>, <constant>IN_ATTRIB</constant>, <constant>IN_CLOSE_WRITE</constant>, … flags. See
|
||||
<citerefentry project='man-pages'><refentrytitle>inotify</refentrytitle><manvolnum>7</manvolnum></citerefentry> for
|
||||
further information.</para>
|
||||
|
|
|
@ -2025,7 +2025,7 @@ RestrictNamespaces=~cgroup net</programlisting>
|
|||
</row>
|
||||
<row>
|
||||
<entry>@process</entry>
|
||||
<entry>Process control, execution, namespacing operations (<citerefentry project='man-pages'><refentrytitle>clone</refentrytitle><manvolnum>2</manvolnum></citerefentry>, <citerefentry project='man-pages'><refentrytitle>kill</refentrytitle><manvolnum>2</manvolnum></citerefentry>, <citerefentry project='man-pages'><refentrytitle>namespaces</refentrytitle><manvolnum>7</manvolnum></citerefentry>, …)</entry>
|
||||
<entry>Process control, execution, namespaceing operations (<citerefentry project='man-pages'><refentrytitle>clone</refentrytitle><manvolnum>2</manvolnum></citerefentry>, <citerefentry project='man-pages'><refentrytitle>kill</refentrytitle><manvolnum>2</manvolnum></citerefentry>, <citerefentry project='man-pages'><refentrytitle>namespaces</refentrytitle><manvolnum>7</manvolnum></citerefentry>, …)</entry>
|
||||
</row>
|
||||
<row>
|
||||
<entry>@raw-io</entry>
|
||||
|
|
|
@ -1160,7 +1160,7 @@
|
|||
into words, and afterwards removed.</para>
|
||||
|
||||
<para>If the command is not a full (absolute) path, it will be resolved to a full path using a
|
||||
fixed search path determined at compilation time. Searched directories include
|
||||
fixed search path determinted at compilation time. Searched directories include
|
||||
<filename>/usr/local/bin/</filename>, <filename>/usr/bin/</filename>, <filename>/bin/</filename>
|
||||
on systems using split <filename>/usr/bin/</filename> and <filename>/bin/</filename>
|
||||
directories, and their <filename>sbin/</filename> counterparts on systems using split
|
||||
|
|
|
@ -88,7 +88,7 @@
|
|||
<term><varname>resolve_names=</varname></term>
|
||||
|
||||
<listitem>
|
||||
<para>Specifies when systemd-udevd should resolve names of users and groups. When set to
|
||||
<para>Specifes when systemd-udevd should resolve names of users and groups. When set to
|
||||
<option>early</option> (the default), names will be resolved when the rules are parsed.
|
||||
When set to <option>late</option>, names will be resolved for every event. When set to
|
||||
<option>never</option>, names will never be resolved and all devices will be owned by
|
||||
|
|
|
@ -1349,7 +1349,7 @@ int vt_release(int fd, bool restore) {
|
|||
|
||||
void get_log_colors(int priority, const char **on, const char **off, const char **highlight) {
|
||||
/* Note that this will initialize output variables only when there's something to output.
|
||||
* The caller must pre-initialize to "" or NULL as appropriate. */
|
||||
* The caller must pre-initalize to "" or NULL as appropriate. */
|
||||
|
||||
if (priority <= LOG_ERR) {
|
||||
if (on)
|
||||
|
|
|
@ -691,7 +691,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
|
|||
},
|
||||
[SYSCALL_FILTER_SET_PROCESS] = {
|
||||
.name = "@process",
|
||||
.help = "Process control, execution, namespacing operations",
|
||||
.help = "Process control, execution, namespaceing operations",
|
||||
.value =
|
||||
"arch_prctl\0"
|
||||
"capget\0" /* Able to query arbitrary processes */
|
||||
|
|
Loading…
Reference in New Issue