Configure systemd-journald to work inside containers running systemd.
authorNik Lutz <nik@netstyle.ch>
Mon, 13 May 2013 00:08:04 +0000 (02:08 +0200)
committerDaniel Baumann <mail@daniel-baumann.ch>
Tue, 28 May 2013 12:27:47 +0000 (14:27 +0200)
scripts/debconfig/0040-systemd

index dea9ce1..db79f57 100755 (executable)
@@ -124,6 +124,9 @@ case "${_LXC_ENABLE}" in
                do
                        systemctl mask ${_SERVICE}
                done
+
+               # Disable setting CapabilityBoundingSet for journald
+               sed -e 's/^ *CapabilityBoundingSet/\#&/' /lib/systemd/system/systemd-journald.service > /etc/systemd/system/systemd-journald.service
                ;;
 
        false)
@@ -154,5 +157,8 @@ case "${_LXC_ENABLE}" in
                do
                        systemctl unmask ${_SERVICE}
                done
+
+               # Restore journald capabilities
+               rm -f /etc/systemd/system/systemd-journald.service
                ;;
 esac