1
0
mirror of https://github.com/systemd/systemd.git synced 2024-12-23 21:35:11 +03:00
Commit Graph

33297 Commits

Author SHA1 Message Date
Yu Watanabe
0f5bc6effd
Merge pull request #8938 from keszybz/sd-bus-automatic-cleanup
Use automatic cleanup more in sd-bus
2018-05-09 17:54:30 +09:00
David Tardon
33d8fe6057 use max. message size allowed by DBus spec (#8936)
C.f. https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-messages.
2018-05-09 10:33:28 +02:00
Zbigniew Jędrzejewski-Szmek
4aa524a13c
Merge pull request #8934 from yuwata/fix-8913
bus-util: print a friendly message when PID1 is not systemd
2018-05-09 10:31:24 +02:00
Yu Watanabe
fb507898a3 bus-util: print a friendly message when PID1 is not systemd
Follow-up for 861f16d267.

Fixes #8913.
2018-05-09 17:07:37 +09:00
Yu Watanabe
f7e2933677 analyze: merge acquire_full_bus() and acquire_systemd_bus()
Follow-up for 5c69b31c13.
2018-05-09 17:07:37 +09:00
Zbigniew Jędrzejewski-Szmek
9df088f1ea sd-bus: add bus_freep and use _cleanup_ 2018-05-09 09:44:37 +02:00
Zbigniew Jędrzejewski-Szmek
01c4dcaffb sd-bus: use automatic cleanup more 2018-05-09 09:35:01 +02:00
Zbigniew Jędrzejewski-Szmek
0639f1354c sd-bus: trivial simplification 2018-05-09 09:30:58 +02:00
Yu Watanabe
cf5c1cbfba man: fix invalid option name --devpath in 'udevadm info' (#8935) 2018-05-09 09:17:37 +02:00
Yu Watanabe
35a44646c8 man: --debug option is implied in udev test and test-builtin commands (#8933) 2018-05-09 09:00:55 +02:00
Zbigniew Jędrzejewski-Szmek
3e010e3baf
Merge pull request #8902 from yuwata/link-multiple-mac
network,link: make MACAddress= in [Match] section can take multiple MAC addresses
2018-05-09 08:35:26 +02:00
Yu Watanabe
0fbddd042c network,udev: sort included headers 2018-05-09 12:00:27 +09:00
Yu Watanabe
9310bf4b52 man: document that MACAddress= in [Match] section can take multiple MAC addresses 2018-05-09 12:00:16 +09:00
Yu Watanabe
e90d037411 network,udev: make MACAddress= in [Match] section take multiple MAC addresses 2018-05-09 11:59:18 +09:00
Yu Watanabe
a7533e3e48 test: add tests for config_parse_hwaddrs() 2018-05-09 11:57:36 +09:00
Yu Watanabe
206b63eebb libsystemd-network: introduce config_parse_hwaddrs() 2018-05-09 11:57:36 +09:00
Yu Watanabe
583706abf9 ether-addr-util: add hash_ops functions for struct ether_addr 2018-05-09 11:57:36 +09:00
Yu Watanabe
e5c1be89b5 ether-addr-util: make ether_addr_from_string() stricter 2018-05-09 11:57:36 +09:00
Zbigniew Jędrzejewski-Szmek
3c31f3a575 tools/oss-fuzz: install private shared library non-executable (#8927)
Apparently oss-fuzz's "bad build check" is confused by the library.
Let's make it non-executable, so the checker ignores it.

Should fix https://github.com/google/oss-fuzz/issues/1330.
2018-05-08 18:00:19 +03:00
Alan Jenkins
3c88cbeed4 man/systemd.special: fix network v.s. LSB scripts (#8930)
$network is converted to network-online.target, not network-target.

See https://www.freedesktop.org/wiki/Software/systemd/NetworkTarget/
and the implementation at `src/sysv-generator/sysv-generator.c`.
2018-05-08 16:53:41 +02:00
Michael Biebl
a72759c1d3
Merge pull request #8915 from yuwata/fix-8904
login: do not wall message on cancelling shutdown when Manager.enable_wall_messages is false
2018-05-08 15:03:27 +02:00
Susant Sahani
5f94520221 link: Add support to configure channels of the specified network device (#8882)
closes #8856
2018-05-08 13:03:41 +02:00
Zbigniew Jędrzejewski-Szmek
6b1ca2a948
Merge pull request #8898 from poettering/nspawn-mount-block
some nspawn cgroup and mount lock-down fixes
2018-05-08 12:54:58 +02:00
Yu Watanabe
6157694dc6
Merge pull request #8926 from keszybz/man-journal-remote
Small additions to sd-journal-{remote,upload}.service man pages
2018-05-08 17:56:51 +09:00
Yu Watanabe
77e3a240b3 man: fix title of systemd-networkd-wait-online(8) (#8925) 2018-05-08 10:53:52 +02:00
Zbigniew Jędrzejewski-Szmek
0b063391d8 man: add a bit more text about systemd-journal-upload.service 2018-05-08 10:39:18 +02:00
Zbigniew Jędrzejewski-Szmek
3dd22749ae man: add a bit more text about systemd-journal-remote.service 2018-05-08 10:37:09 +02:00
Zbigniew Jędrzejewski-Szmek
27dbecde96
Merge pull request #8922 from yuwata/fix-8920-8921
man: update references to systemd-journal-{remote,upload}
2018-05-08 10:31:50 +02:00
Yu Watanabe
5efc15d6e9 man: fix typo 2018-05-08 12:41:59 +09:00
Yu Watanabe
767f565fc3 man: mention that --url option of journal-upload can specify the port number 2018-05-08 11:58:16 +09:00
Yu Watanabe
691bba5987 man: mention the default port number of journal-remote 2018-05-08 11:57:28 +09:00
Yu Watanabe
1f416853b6 man: update references to systemd-journal-{remote,upload}
Fixes #8920 and #8921.
2018-05-08 10:14:06 +09:00
Lennart Poettering
bf613f7acc doc: clarify at which point user/group name resolution needs to work (#8884)
Prompted by the discussions on:

https://bugs.freedesktop.org/show_bug.cgi?id=106339
2018-05-07 14:49:16 +02:00
Susant Sahani
af1c0de0e1 networkd: add support to send DHCP user class option (#7499)
This patch add support to enables to send User Class option code 77
RFC 3004.

This option MAY carry multiple User Classes.

The format of this option is as follows:

         Code   Len   Value
        +-----+-----+---------------------  . . .  --+
        | 77  |  N  | User Class Data ('Len' octets) |
        +-----+-----+---------------------  . . .  --+

   where Value consists of one or more instances of User Class Data.
   Each instance of User Class Data is formatted as follows:

         UC_Len_i     User_Class_Data_i
        +--------+------------------------  . . .  --+
        |  L_i   | Opaque-Data ('UC_Len_i' octets)   |
        +--------+------------------------  . . .  --+

UserClass=
A DHCPv4 client can use UserClass option to identify the type or category of user or applications
it represents. The information contained in this option is an string that represents the user class
of which the client is a member. Each class sets an identifying string of information to be used by the DHCP service to classify clients. Takes a whitespace-separated list.

UserClass= hello world how are you

Closes: RFC: #5134
2018-05-07 14:21:02 +02:00
Yu Watanabe
348b44372f meson: generate m4 preprocessor from config.h (#8914) 2018-05-07 11:17:35 +02:00
Yu Watanabe
6e78fa4afd login: do not wall message on cancelling shutdown when Manager.enable_wall_messages is false
Fixes #8904.
2018-05-07 10:17:58 +09:00
Yu Watanabe
c9482b8822 login: change variable type of enable_wall_messages as it matches Manager.enable_wall_messages 2018-05-07 10:13:54 +09:00
Yu Watanabe
4b4ee0f781 meson: also try to search gnu-efi based on EFI_MACHINE_TYPE_NAME (#8900)
On Fedora rawhide, since gnu-efi-3.0.8-3.fc29, many file paths are
changed to use `EFI_MACHINE_TYPE_NAME` instead of `gnu_efi_arch`.

Fixes #8896.
2018-05-04 17:49:57 +02:00
Lennart Poettering
c7db2a9de4 update TODO 2018-05-03 17:46:31 +02:00
Lennart Poettering
4e2c0a227e namespace: extend list of masked files by ProtectKernelTunables=
This adds a number of entries nspawn already applies to regular service
namespacing too. Most importantly let's mask /proc/kcore and
/proc/kallsyms too.
2018-05-03 17:46:31 +02:00
Lennart Poettering
720f0a2f3c nspawn: move nspawn cgroup hierarchy one level down unconditionally
We need to do this in all cases, including on cgroupsv1 in order to
ensure the host systemd and any systemd in the payload won't fight for
the cgroup attributes of the top-level cgroup of the payload.

This is because systemd for Delegate=yes units will only delegate the
right to create children as well as their attributes. However, nspawn
expects that the cgroup delegated covers both the right to create
children and the attributes of the cgroup itself. Hence, to clear this
up, let's unconditionally insert a intermediary cgroup, on cgroupsv1 as
well as cgroupsv2, unconditionally.

This is also nice as it reduces the differences in the various setups
and exposes very close behaviour everywhere.
2018-05-03 17:45:42 +02:00
Lennart Poettering
910384c821 nspawn: let's make use of SPECIAL_MACHINE_SLICE macro, after all we already set it 2018-05-03 17:45:42 +02:00
Lennart Poettering
9ec5a93c98 nspawn: don't make /proc/kmsg node too special
Similar to the previous commit, let's just use our regular calls for
managing temporary nodes take care of this.
2018-05-03 17:45:42 +02:00
Lennart Poettering
cdde6ba6b6 nspawn: mount boot ID from temporary file in /tmp
Let's not make /run too special and let's make sure the source file is
not guessable: let's use our regular temporary file helper calls to
create the source node.
2018-05-03 17:45:42 +02:00
Lennart Poettering
d4b653c589 nspawn: lock down a few things in /proc by default
This tightens security on /proc: a couple of files exposed there are now
made inaccessible. These files might potentially leak kernel internals
or expose non-virtualized concepts, hence lock them down by default.
Moreover, a couple of dirs in /proc that expose stuff also exposed in
/sys are now marked read-only, similar to how we handle /sys.

The list is taken from what docker/runc based container managers
generally apply, but slightly extended.
2018-05-03 17:45:42 +02:00
Lennart Poettering
c69c7068ce
Merge pull request #8868 from yuwata/resolve-show-current-server
resolvectl: show current DNS server
2018-05-03 17:24:34 +02:00
Lennart Poettering
d0821d8839
Merge pull request #8644 from yuwata/rfe-1589
timesync: expose NTP response on DBus
2018-05-03 17:23:40 +02:00
Susant Sahani
801d2c9f5d ethtool: get_glinksettings Fix copy (#8889)
It should be other way around.
2018-05-03 17:20:56 +02:00
Lennart Poettering
10af01a5ff nspawn: use free_and_replace() at more places 2018-05-03 17:19:46 +02:00
Lennart Poettering
88614c8a28 nspawn: size_t more stuff
A follow-up for #8840
2018-05-03 17:19:46 +02:00