jail: add /dev/shm unconditionally

It is used by udebug, but might be used for other purposes as well Signed-off-by: Felix Fietkau <nbd@nbd.name>
author: Felix Fietkau 2025-05-28 14:24:54 +0000
committer: Felix Fietkau 2025-05-28 14:24:55 +0000
commit: a3d6f1f59ff73cdb384ffde14049f841384968c9 (patch)
tree: 7d8de732f96ae6e9b128bd6be83882deed9ea358
parent: 58b6c3313e07ac8b3f61abdefae6120cd41c8f93 (diff)
download: procd-a3d6f1f59ff73cdb384ffde14049f841384968c9.tar.gz
1 files changed, 1 insertions, 3 deletions
diff --git a/jail/jail.c b/jail/jail.c
index e7e4d6b..bd15b47 100644
--- a/jail/jail.c
+++ b/jail/jail.c
@@ -2982,6 +2982,7 @@ static void post_main(struct uloop_timeout *t)
 			}
 			/* default mounts */
 			add_mount(NULL, "/dev", "tmpfs", MS_NOATIME | MS_NOEXEC | MS_NOSUID, 0, "size=1M", -1);
+			add_mount("shm", "/dev/shm", "tmpfs", MS_NOSUID | MS_NOEXEC | MS_NODEV, 0, "mode=1777", -1);
 			add_mount(NULL, "/dev/pts", "devpts", MS_NOATIME | MS_NOEXEC | MS_NOSUID, 0, "newinstance,ptmxmode=0666,mode=0620,gid=5", 0);
 
 			if (opts.procfs || opts.ocibundle) {
@@ -3012,9 +3013,6 @@ static void post_main(struct uloop_timeout *t)
 			if (opts.sysfs || opts.ocibundle)
 				add_mount("sysfs", "/sys", "sysfs", MS_RELATIME | MS_NODEV | MS_NOEXEC | MS_NOSUID | MS_RDONLY, 0, NULL, -1);
 
-			if (opts.ocibundle)
-				add_mount("shm", "/dev/shm", "tmpfs", MS_NOSUID | MS_NOEXEC | MS_NODEV, 0, "mode=1777", -1);
-
 		}
 
 		if (opts.setns.pid != -1) {
author	Felix Fietkau	2025-05-28 14:24:54 +0000
committer	Felix Fietkau	2025-05-28 14:24:55 +0000
commit	a3d6f1f59ff73cdb384ffde14049f841384968c9 (patch)
tree	7d8de732f96ae6e9b128bd6be83882deed9ea358
parent	58b6c3313e07ac8b3f61abdefae6120cd41c8f93 (diff)
download	procd-a3d6f1f59ff73cdb384ffde14049f841384968c9.tar.gz