shaba/systemd-stable
1
1
Fork 0
mirror of https://github.com/systemd/systemd-stable.git synced 2025-01-21 18:03:41 +03:00
Code
63,799 Commits 36 Branches 656 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Katariina Lounento a85962c6a0 man: document unprivileged is not for reading properties 
Document the fact that read-only properties may not have the flag
SD_BUS_VTABLE_UNPRIVILEGED as that is not obvious especially given the
flag is accepted for writable properties.

Based on the check in `add_object_vtable_internal` called by
`sd_bus_add_object_vtable` (as of the current tip of the main branch
f7f5ba019206cacd486b0892fec76f70f525e04d):

    case _SD_BUS_VTABLE_PROPERTY: {
            [...]
            if ([...] ||
                [...]
                (v->flags & SD_BUS_VTABLE_UNPRIVILEGED && v->type == _SD_BUS_VTABLE_PROPERTY)) {
                    r = -EINVAL;
                    goto fail;
            }

(where `_SD_BUS_VTABLE_PROPERTY` means read-only property whereas
`_SD_BUS_VTABLE_WRITABLE_PROPERTY` maps to writable property).

This was implemented in the commit
adacb9575a09981fcf11279f2f661e3fc21e58ff ("bus: introduce "trusted" bus
concept and encode access control in object vtables") where
`SD_BUS_VTABLE_UNPRIVILEGED` was introduced:

    Writable properties are also subject to SD_BUS_VTABLE_UNPRIVILEGED
    and SD_BUS_VTABLE_CAPABILITY() for controlling write access to them.
    Note however that read access is unrestricted, as PropertiesChanged
    messages might send out the values anyway as an unrestricted
    broadcast.

(cherry picked from commit 3ca09aa4dd57327989eceb1298754601046ac041)
(cherry picked from commit cd727031a4daafe19f491df360c512433562f469)
(cherry picked from commit f694a84faf082ce4a18cc2478d7843bb2b7e7fc4)
(cherry picked from commit 0aea62ba3364192e70f426aaf1e8596f67fdc2c3)
(cherry picked from commit 413d82c4620b5e2bcc7001f98a9f90bc109c1998)
2024-12-23 14:21:27 +00:00
.clusterfuzzlite
ci: unpin CFLite
2022-04-26 09:13:57 +00:00
.github
ci: link systemd-keyutil into place
2024-11-16 10:30:57 +00:00
.semaphore
semaphore: do not build docs
2024-10-10 10:33:40 +01:00
catalog
portable: log structured message when attach/detach succeeds
2024-02-28 10:29:35 +00:00
coccinelle
coccinelle: skip the empty-to-null transformation on the macro itself
2023-01-25 11:35:06 +01:00
docs
docs: add a missing : character
2024-11-16 10:30:57 +00:00
factory
man: don't suggest using pam_unix.so's use_authtok switch
2024-01-26 19:53:42 +00:00
hwdb.d
hwdb: update to main@{2024-11-28}
2024-11-30 16:56:34 +00:00
LICENSES
LICENSES/README: expand text to summarize state for binaries and libs
2024-07-07 00:15:21 +02:00
man
man: document unprivileged is not for reading properties
2024-12-23 14:21:27 +00:00
mkosi.conf.d
mkosi: policykit-1 was renamed to polkitd
2024-07-25 09:16:58 +01:00
modprobe.d
modprobe: set 'ifb numifbs=0' to avoid autocreating ifb0
2024-01-26 19:53:42 +00:00
network
network: request non-NULL SSID when a wlan interface is configured as station
2024-08-19 20:22:44 +02:00
po
po: Translated using Weblate (Portuguese)
2022-12-12 13:26:55 +09:00
presets
journal: give the ability to enable/disable systemd-journald-audit.socket
2023-01-11 17:18:57 +01:00
rules.d
udev: consider serial ports as unconfigured only if both port and iomem_base sysattr is zero
2024-11-16 10:30:57 +00:00
shell-completion
shell completion: fix machinectl import-{tar,raw}
2024-05-09 17:44:12 +02:00
src
test-fd-util: skip test when lacking privileges to create a new namespace
2024-12-23 14:21:27 +00:00
sysctl.d
sysctl.d: Fix pid_max comment
2023-11-09 21:05:51 +00:00
sysusers.d
sysusers: also add root group
2023-02-15 10:29:10 +09:00
test
test: set nsec3-salt-length=8 in knot.conf
2024-12-23 14:21:27 +00:00
tmpfiles.d
Revert "tmpfiles.d/systemd: use ACL 'X' bit where appropriate"
2024-05-26 11:54:40 +01:00
tools
tools: syscall tables moved to a subdirectory
2023-11-09 21:05:51 +00:00
units
logind: allow read/write to char-hvc devices
2024-11-16 10:30:57 +00:00
xorg
xorg/50-systemd-user: add a full license header
2021-10-01 14:45:00 +02:00
.clang-format
clang-format: Adjust style of pointers
2022-05-30 04:00:54 +09:00
.ctags
editors: Prevent ctags from following symlinks
2019-02-15 11:01:20 -08:00
.dir-locals.el
scripts: use 4 space indentation
2019-04-12 08:30:31 +02:00
.editorconfig
docs: configure editorconfig for css and html
2022-05-17 21:13:17 +02:00
.gitattributes
gitattributes: introduce and use "generated" attribute
2021-10-18 09:42:55 +02:00
.gitignore
git: Ignore mkosi secure boot keys
2023-02-01 16:52:28 +01:00
.mailmap
mailmap: two more names
2021-03-30 13:17:58 +02:00
.packit.yml
packit: use the closest matching tag for the checked out revision
2024-01-26 19:53:42 +00:00
.vimrc
scripts: use 4 space indentation
2019-04-12 08:30:31 +02:00
.ycm_extra_conf.py
ycm: add doc string for all the functions in configuration file
2017-11-29 13:21:49 -07:00
configure
configure: update meson invocation
2023-08-09 23:04:43 +01:00
LICENSE.GPL2
relicense to LGPLv2.1 (with exceptions)
2012-04-12 00:24:39 +02:00
LICENSE.LGPL2.1
licence: remove references to old FSF address
2012-12-17 11:41:31 +01:00
Makefile
tree-wide: add spdx header on all scripts and helpers
2021-01-28 09:55:35 +01:00
meson_options.txt
meson: fix description for link-udev-shared option
2023-06-01 16:37:09 +02:00
meson.build
meson: sort includes
2024-11-16 10:30:57 +00:00
mkosi.build
mkosi: configure multiarch libdir in debian/ubuntu builds
2023-03-03 09:43:10 +01:00
mkosi.kernel.config
mkosi: Enable CONFIG_ZBOOT
2022-12-13 21:27:15 +01:00
mkosi.postinst
mkosi: mask unit from newer versions that gets installed by package
2023-11-09 23:28:34 +00:00
mkosi.prepare
mkosi: Use globs instead of prepare script to install extra packages
2023-02-10 16:05:32 +01:00
NEWS
tree-wide: use https for the 0pointer.de doc links
2023-07-07 19:30:52 +01:00
README
README: update requirements for signed dm-verity
2024-07-07 00:15:21 +02:00
README.md
README.md: add a missing line break
2022-10-19 11:17:33 +02:00
TODO
doc: replace wrong á preposition by à
2023-03-28 18:57:25 +02:00

README.md

Systemd

System and Service Manager

Semaphore CI 2.0 Build Status
Coverity Scan Status
OSS-Fuzz Status
CIFuzz
CII Best Practices
CentOS CI - CentOS 8
CentOS CI - Arch
CentOS CI - Arch (sanitizers)
CentOS CI - Rawhide (SELinux)
Fossies codespell report
Coverage Status
Packaging status
OpenSSF Scorecard

Details

Most documentation is available on systemd's web site.

Assorted, older, general information about systemd can be found in the systemd Wiki.

Information about build requirements is provided in the README file.

Consult our NEWS file for information about what's new in the most recent systemd versions.

Please see the Code Map for information about this repository's layout and content.

Please see the Hacking guide for information on how to hack on systemd and test your modifications.

Please see our Contribution Guidelines for more information about filing GitHub Issues and posting GitHub Pull Requests.

When preparing patches for systemd, please follow our Coding Style Guidelines.

If you are looking for support, please contact our mailing list or join our IRC channel.

Stable branches with backported patches are available in the stable repo.

Description
Backports of patch from systemd git to stable distributions
Readme 226 MiB
Languages
C 89.4%
Python 5.8%
Shell 2.1%
Meson 1.3%
HTML 0.9%
Other 0.4%