shaba/systemd-stable
1
1
Fork 0
mirror of https://github.com/systemd/systemd-stable.git synced 2025-02-08 05:57:26 +03:00
Code
52,905 Commits 36 Branches 656 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Maanya Goenka 3838d22cfb systemd-analyze: allow parsing of JSON file to obtain custom security requirements for comparison 
The 'security' verb of systemd-analyze needs to be able to parse JSON files to be able to read in
the user-defined requirements and use them to determine the overall exposure level of the specified unit
file(s). The JSON files are expected to have a specific format where the keys in the file are the
unit ids consisting of only alphanumeric characters and underscores and the values are JSON objects
again consisting of key value pairs. The keys in these objects may include one or more of the following
properties: description_na, description_good, description_bad, weight, and range. The first three of these
are expected to be strings and the latter two are expected to be unsigned integer values. If one or more
of these properties is missing from the JSON object, then the default values of the properties as specified
in the hard coded set of security directives is used. The other properties that assess() needs to determine
overall exposure levels for a unit file for example, the assess function and parameter type among others,
are not to be included in the JSON files defined by the user because the values assigned to these fields
are expected to be consistent across unit files for each id.
2021-08-31 08:02:08 -07:00
.github
ci: Add openSUSE Tumbleweed among tested distros
2021-08-04 11:16:48 +02:00
.lgtm/cpp-queries
lgtm: complain about accept() [people should use accept4() instead, due to O_CLOEXEC]
2019-04-10 20:03:38 +02:00
.mkosi
mkosi: Fix openSUSE Jinja2 package name
2021-07-09 10:49:30 +02:00
.semaphore
ci: drop py2 lxml, pull in jinja2
2021-05-19 10:25:26 +09:00
catalog
units: added factory-reset.target
2021-08-10 17:08:00 +02:00
coccinelle
coccinelle: filter out a couple of 'false-positive' transformations
2021-03-18 11:59:53 +01:00
docs
docs: adjust sentece, fix minor typo
2021-08-24 15:39:17 +02:00
factory/etc
pam: fix typo try_authtok → use_authtok
2021-05-12 12:14:17 +02:00
hwdb.d
Add matrix for the Chuwi SurBook Mini (CWI540)
2021-08-30 12:16:52 +02:00
man
systemd-analyze: add new 'security' option to allow user to choose custom requirements
2021-08-31 08:02:08 -07:00
mkosi.default.d
mkosi: Enable InstallDirectory and SourceFileTransferFinal options
2021-01-06 23:28:34 +00:00
modprobe.d
meson: install the right README file in modprobe.d
2021-07-07 14:52:05 +02:00
network
meson: use a/b instead of join_paths(a,b)
2021-07-27 19:32:35 +02:00
po
po: Translated using Weblate (Finnish)
2021-08-26 20:05:20 +02:00
presets
boot: optionally update sd-boot on boot
2021-07-30 17:19:55 +02:00
rules.d
udev: Fix by-uuid symlink for ubifs volumes
2021-07-02 14:26:18 +01:00
shell-completion
systemd-analyze: add new 'security' option to allow user to choose custom requirements
2021-08-31 08:02:08 -07:00
src
systemd-analyze: allow parsing of JSON file to obtain custom security requirements for comparison
2021-08-31 08:02:08 -07:00
sysctl.d
meson: use a/b instead of join_paths(a,b)
2021-07-27 19:32:35 +02:00
sysusers.d
meson: allow "soft-static" allocations for uids and gids in the initrd
2021-06-17 09:48:28 +02:00
test
network: default LinkLocalAddresssing= to no for link stacked with a passthru mode MACVLAN/MACVTAP
2021-08-26 06:11:41 +09:00
tmpfiles.d
tmpfiles.d: remove .Test-unix, it's obsolete
2021-08-31 10:57:37 +02:00
tools
git-contrib: copypaste-friendly output
2021-07-19 15:39:26 +09:00
units
homed: add missing capabilities for SMB/CIFS backend
2021-08-31 10:51:42 +02:00
xorg
scripts: use 4 space indentation
2019-04-12 08:30:31 +02:00
.clang-format
clang-format: set SpaceBeforeParens to ControlStatementsExceptForEachMacros
2020-11-16 16:57:51 +09:00
.ctags
editors: Prevent ctags from following symlinks
2019-02-15 11:01:20 -08:00
.dir-locals.el
scripts: use 4 space indentation
2019-04-12 08:30:31 +02:00
.editorconfig
editorconfig: add man configuration
2020-05-26 15:37:05 +02:00
.gitattributes
udev: Extract RAM properties from DMI information
2020-12-16 18:32:29 +01:00
.gitignore
Move shared mkosi settings to a single file in mkosi.default.d/
2021-01-06 12:10:58 +00:00
.lgtm.yml
ci: bump meson version in LGTM
2021-07-28 11:26:10 +02:00
.mailmap
mailmap: two more names
2021-03-30 13:17:58 +02:00
.packit.yml
ci: add ppc64le Rawhide chroot to the Packit chroot set
2021-07-19 12:16:36 +01:00
.vimrc
scripts: use 4 space indentation
2019-04-12 08:30:31 +02:00
.ycm_extra_conf.py
ycm: add doc string for all the functions in configuration file
2017-11-29 13:21:49 -07:00
configure
tree-wide: add spdx header on all scripts and helpers
2021-01-28 09:55:35 +01:00
LICENSE.GPL2
relicense to LGPLv2.1 (with exceptions)
2012-04-12 00:24:39 +02:00
LICENSE.LGPL2.1
licence: remove references to old FSF address
2012-12-17 11:41:31 +01:00
Makefile
tree-wide: add spdx header on all scripts and helpers
2021-01-28 09:55:35 +01:00
meson_options.txt
sd-boot: Draw custom edit cursor
2021-08-17 13:59:13 +02:00
meson.build
meson: capitalize the last instance of "efi"
2021-08-24 15:39:17 +02:00
mkosi.build
mkosi: initialize /usr/lib/os-release' IMAGE_ID + IMAGE_VERSION fields from build
2021-07-03 11:07:00 +01:00
NEWS
NEWS: net.ipv4.tcp_ecn = 1 was reverted at v240
2021-08-25 09:08:23 +01:00
README
README: add requirements for RestrictNetworkInterfaces=
2021-08-19 07:25:01 -05:00
README.md
docs: add ARCHITECTURE.md with code map
2021-06-03 22:14:19 +02:00
TODO
update TODO
2021-08-28 07:15:12 +02:00

README.md

Systemd

System and Service Manager

Count of open issues over time Count of open pull requests over time Semaphore CI 2.0 Build Status
Coverity Scan Status
OSS-Fuzz Status
CIFuzz
CII Best Practices
Language Grade: C/C++
CentOS CI - CentOS 7
CentOS CI - Arch
CentOS CI - Arch (sanitizers)
Fossies codespell report
Packaging status

Details

Most documentation is available on systemd's web site.

Assorted, older, general information about systemd can be found in the systemd Wiki.

Information about build requirements is provided in the README file.

Consult our NEWS file for information about what's new in the most recent systemd versions.

Please see the Code Map for information about this repository's layout and content.

Please see the Hacking guide for information on how to hack on systemd and test your modifications.

Please see our Contribution Guidelines for more information about filing GitHub Issues and posting GitHub Pull Requests.

When preparing patches for systemd, please follow our Coding Style Guidelines.

If you are looking for support, please contact our mailing list or join our IRC channel.

Stable branches with backported patches are available in the stable repo.

Description
Backports of patch from systemd git to stable distributions
Readme 226 MiB
Languages
C 89.4%
Python 5.8%
Shell 2.1%
Meson 1.3%
HTML 0.9%
Other 0.4%