mirror of
https://github.com/systemd/systemd.git
synced 2026-06-30 19:57:29 +00:00
This also relaxes the inode access modes a bit, in case they were set to 0600: we now set the "r" bit too, i.e. use 0644. This is beneficial since it permits unpriv code to read the xattrs of the entrypoints (which require read access). Note that in order to be able to connect() to a socket inode you need write access, hence this shouldn't compromise security in any way.
30 lines
892 B
SYSTEMD
30 lines
892 B
SYSTEMD
# SPDX-License-Identifier: LGPL-2.1-or-later
|
|
#
|
|
# This file is part of systemd.
|
|
#
|
|
# systemd is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU Lesser General Public License as published by
|
|
# the Free Software Foundation; either version 2.1 of the License, or
|
|
# (at your option) any later version.
|
|
|
|
[Unit]
|
|
Description=Userspace Out-Of-Memory (OOM) Killer Socket
|
|
Documentation=man:systemd-oomd.service(8)
|
|
DefaultDependencies=no
|
|
Before=sockets.target shutdown.target
|
|
Conflicts=shutdown.target
|
|
ConditionControlGroupController=memory
|
|
ConditionPathExists=/proc/pressure/cpu
|
|
ConditionPathExists=/proc/pressure/io
|
|
ConditionPathExists=/proc/pressure/memory
|
|
|
|
[Socket]
|
|
ListenStream=/run/systemd/oom/io.systemd.ManagedOOM
|
|
SocketMode=0666
|
|
RemoveOnStop=yes
|
|
XAttrEntryPoint=user.varlink=entrypoint
|
|
XAttrListen=user.varlink=listen
|
|
|
|
[Install]
|
|
WantedBy=sockets.target
|