Re: [systemd-devel] [PATCH] condition, man: Add support for ConditionSecurity=smack

On Wed, May 8, 2013 at 8:20 PM, Zbigniew Jędrzejewski-Szmek zbys...@in.waw.pl wrote: On Wed, May 08, 2013 at 11:42:34AM -0700, Kok, Auke-jan H wrote: On Tue, May 7, 2013 at 5:29 AM, Karol Lewandowski k.lewando...@samsung.com wrote: On 05/07/2013 01:32 PM, Lennart Poettering wrote: On Tue,

Re: [systemd-devel] [PATCH] condition, man: Add support for ConditionSecurity=smack

On Wed, May 08, 2013 at 11:42:34AM -0700, Kok, Auke-jan H wrote: On Tue, May 7, 2013 at 5:29 AM, Karol Lewandowski k.lewando...@samsung.com wrote: On 05/07/2013 01:32 PM, Lennart Poettering wrote: On Tue, 07.05.13 13:21, Karol Lewandowski (k.lewando...@samsung.com) wrote: Heya, Hmm,

[systemd-devel] [PATCH] condition, man: Add support for ConditionSecurity=smack

Signed-off-by: Karol Lewandowski k.lewando...@samsung.com diff --git a/man/systemd.unit.xml b/man/systemd.unit.xml index 49103da..256c813 100644 --- a/man/systemd.unit.xml +++ b/man/systemd.unit.xml @@ -984,8 +984,9 @@ may be used to check whether the given

Re: [systemd-devel] [PATCH] condition, man: Add support for ConditionSecurity=smack

On Tue, 07.05.13 13:21, Karol Lewandowski (k.lewando...@samsung.com) wrote: Heya, Hmm, does that directory always exist? Or only if AppArmor is actually runtime enabled? I.e. this check should ideally only return true if SMACK is not only built into the kernel, but actually really enabled

Re: [systemd-devel] [PATCH] condition, man: Add support for ConditionSecurity=smack

On 05/07/2013 01:32 PM, Lennart Poettering wrote: On Tue, 07.05.13 13:21, Karol Lewandowski (k.lewando...@samsung.com) wrote: Heya, Hmm, does that directory always exist? Or only if AppArmor is actually runtime enabled? /sys/fs/smackfs is only registered when smack lsm is actually