mirror of
https://github.com/systemd/systemd.git
synced 2026-06-30 19:57:29 +00:00
This also relaxes the inode access modes a bit, in case they were set to 0600: we now set the "r" bit too, i.e. use 0644. This is beneficial since it permits unpriv code to read the xattrs of the entrypoints (which require read access). Note that in order to be able to connect() to a socket inode you need write access, hence this shouldn't compromise security in any way.
27 lines
788 B
SYSTEMD
27 lines
788 B
SYSTEMD
# SPDX-License-Identifier: LGPL-2.1-or-later
|
|
#
|
|
# This file is part of systemd.
|
|
#
|
|
# systemd is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU Lesser General Public License as published by
|
|
# the Free Software Foundation; either version 2.1 of the License, or
|
|
# (at your option) any later version.
|
|
|
|
[Unit]
|
|
Description=Boot Loader Control Service Socket
|
|
Documentation=man:bootctl(1)
|
|
DefaultDependencies=no
|
|
After=local-fs.target
|
|
Before=sockets.target
|
|
|
|
[Socket]
|
|
ListenStream=/run/systemd/io.systemd.BootControl
|
|
Symlinks=/run/varlink/registry/io.systemd.BootControl
|
|
FileDescriptorName=varlink
|
|
SocketMode=0644
|
|
Accept=yes
|
|
MaxConnectionsPerSource=16
|
|
XAttrEntryPoint=user.varlink=entrypoint
|
|
XAttrListen=user.varlink=listen
|
|
XAttrAccept=user.varlink=server
|