1
0
mirror of https://github.com/systemd/systemd.git synced 2024-11-02 19:21:53 +03:00
Commit Graph

305 Commits

Author SHA1 Message Date
Kay Sievers
26cbf29c52 delete plymouth units; moved to plymouth 2012-06-07 19:27:17 +02:00
Michal Schmidt
ed061a8dc2 units: add systemd-debug-shell.service
If enabled, the service provides a root shell from an early boot. It also
remains active late into shutdown. It is useful for debugging startup and
shutdown problems.

This is the unit referenced in
http://freedesktop.org/wiki/Software/systemd/Debugging#early_debug_shell
2012-06-07 16:33:45 +02:00
Kay Sievers
2d1972857b build-sys: release 185 2012-06-04 20:15:16 +02:00
Lennart Poettering
4c8cd17330 build-sys: prepare release 184 2012-05-31 01:58:01 +02:00
Lennart Poettering
9262a51946 build-sys: prepare release 183 2012-05-24 15:44:38 +02:00
Kay Sievers
9a203affa6 build-sys: use libpci's pkgconfig file to find the pci.ids file 2012-05-22 02:35:44 +02:00
Kay Sievers
6e92b23f0d build-sys: support build-from-git without gobject-introspection 2012-05-15 15:05:36 +02:00
Kay Sievers
66be655480 autogen.sh: undef _FORTIFY_SOURCE, which now logs warnings when used with -O0 2012-05-08 02:51:26 +02:00
Javier Jardón
9e45e7d8f0 docs: do not generate tmpl files
Its not needed as all the documentation is inline source code,
not in separate *.tmpl files
2012-04-19 16:21:09 +02:00
Kay Sievers
80a5cbace4 build-sys: silence gtk-doc check, remove gtk-doc options from configure and distcheck 2012-04-17 17:11:02 +02:00
Javier Jardón
92ec4495f7 build-sys: make gtk-doc dependency optional 2012-04-17 17:01:21 +02:00
Javier Jardón
a80db8bd5f configure.ac: Use a auxiliar directory to store autogenerated files 2012-04-17 16:02:36 +02:00
Javier Jardón
4e949c11a1 configure.ac: Use the new autoconf field to set the project webpage 2012-04-17 16:01:08 +02:00
Kay Sievers
bb061708d5 udev: move libudev, gudev to src/; move gudev/docs/, udev/docs/ to to docs/ 2012-04-13 19:22:06 +02:00
Kay Sievers
0eaeca1f23 udev: use native instead of custom --disable-introspection logic 2012-04-13 12:49:51 +02:00
Marc-Antoine Perennou
d5449fdcc5 udev: gudev - rework introspection generation 2012-04-12 13:12:06 +02:00
Kay Sievers
78a825f216 rename machine-id-main.c tomacht the binary and move main.c to core/ 2012-04-12 13:12:06 +02:00
Lennart Poettering
5430f7f2bc relicense to LGPLv2.1 (with exceptions)
We finally got the OK from all contributors with non-trivial commits to
relicense systemd from GPL2+ to LGPL2.1+.

Some udev bits continue to be GPL2+ for now, but we are looking into
relicensing them too, to allow free copy/paste of all code within
systemd.

The bits that used to be MIT continue to be MIT.

The big benefit of the relicensing is that closed source code may now
link against libsystemd-login.so and friends.
2012-04-12 00:24:39 +02:00
Kay Sievers
64661ee70d build-sys: bump systemd version to 'udev version 182' 2012-04-06 19:52:49 +02:00
Kay Sievers
3e2147858f move imported udev into place 2012-04-04 05:05:07 +02:00
Lucas De Marchi
9e7adc3ae1 build-sys: separate ldflags from cflags 2012-03-26 21:02:29 +02:00
Lucas De Marchi
eb2e280f9c build-sys: do not set CFLAGS directly
Set a separate variable for adding warning flags. Build systems are not
supposed to change CFLAGS and LDFLAGS, these are user variables.

Reference: http://www.gnu.org/software/automake/manual/html_node/Flag-Variables-Ordering.html
2012-03-26 21:02:26 +02:00
Roberto Sassu
8161158639 main: added support for loading IMA custom policies
This is an S/MIME signed message

The new function ima_setup() loads an IMA custom policy from a file in the
default location '/etc/ima/ima-policy', if present, and writes it to the
path 'ima/policy' in the security filesystem. This function is executed
at early stage in order to avoid that some file operations are not measured
by IMA and it is placed after the initialization of SELinux because IMA
needs the latter (or other security modules) to understand LSM-specific
rules. This feature is enabled by default and can be disabled by providing
the option '--disable-ima' to the configure script.

Signed-off-by: Roberto Sassu <roberto.sassu@polito.it>
Acked-by: Gianluca Ramunno <ramunno@polito.it>
2012-03-22 00:20:58 +01:00
Michal Schmidt
ee4cbc2c85 remove GTK pieces
They've moved to systemd-ui.
2012-03-20 13:10:22 +01:00
Lennart Poettering
16f1239e1e build-sys: prepare release 44 2012-03-16 01:57:47 +01:00
Lennart Poettering
5ee9f21e86 build-sys: don't build distcheck version with split /usr 2012-03-16 01:44:16 +01:00
Thierry Reding
82bdec0d65 configure.ac: fix typo in distro help string 2012-03-05 15:29:09 +01:00
Kay Sievers
4c80c73c2b systemctl: forward untrusted user reboot, poweroff requests to logind 2012-02-29 22:28:33 +01:00
Lennart Poettering
437b7dee32 build-sys: prepare release of 43 2012-02-15 05:02:38 +01:00
Kay Sievers
be31376e6c configure.ac: fix whitespace 2012-02-13 01:53:55 +01:00
Kay Sievers
3ce4fad8f5 always use /etc/os-release and ignore all distro-specific files
The text mode welcome message will only show the distro name stored
in /etc/os-release and no longer read any distro-specific files.  If
/etc/os-release does not exist, 'Linux' will be printed.

When the source tree is is ./configure'd, only /etc-os-release is read
to guess the distro to build for. If /etc/os-release does not exist,
--with-distro= needs to be specified.
2012-02-13 01:51:51 +01:00
Lennart Poettering
204fa33c82 build-sys: prepare 42 2012-02-11 01:52:18 +01:00
Michał Górny
bc9bdbbab4 build-sys: Support explicitly specifying --enable-split-usr.
Fixes: https://bugs.freedesktop.org/show_bug.cgi?id=45875
2012-02-11 00:28:30 +01:00
Lennart Poettering
4c2b0e4e42 build-sys: minor typo fix 2012-02-10 21:45:15 +01:00
Lennart Poettering
75db9a7760 man: make building of man pages optional 2012-02-10 21:44:14 +01:00
Lennart Poettering
2c8b32d9f7 build-sys: get rid of a few unnecessary AC_SUBST calls 2012-02-09 01:41:39 +01:00
Lennart Poettering
b13df9644b build-sys: prepare release 41 2012-02-09 01:06:07 +01:00
Tom Gundersen
728beb28a7 kmod-setup: use libkmod rather than modprobe 2012-02-09 00:43:05 +01:00
Lennart Poettering
2c6db6fb9b main: use a shorter default $PATH if /usr is merged 2012-02-07 15:56:28 +01:00
Lennart Poettering
e9c06c79f2 configure: it makes no sense to install systemd with stow 2012-02-07 14:43:33 +01:00
Lennart Poettering
45a7b8bd24 build-sys: bump release 2012-02-07 03:32:03 +01:00
Lennart Poettering
bbd9b8c213 build-sys: enable automake's check-news option 2012-01-25 01:12:23 +01:00
Lennart Poettering
7f62569d70 build-sys: bump release 2012-01-25 01:07:31 +01:00
Michal Schmidt
d200735e13 dbus: more efficient implementation of properties
The way the various properties[] arrays are initialized is inefficient:
 - only the .data members change at runtime, yet the whole arrays of
   properties with all the fields are constructed on the stack one by
   one by the code.
 - there's duplication, eg. the properties of "org.freedesktop.systemd1.Unit"
   are repeated in several unit types.

Fix it by moving the information about properties into static const
sections. Instead of storing the .data directly in the property, store
a constant offset from a run-time base.
The small arrays of struct BusBoundProperties bind together the constant
information with the right runtime information (the base pointer).

On my system the code shrinks by 60 KB, data increases by 10 KB.
2012-01-16 13:34:42 +01:00
Lennart Poettering
f5e04665eb journal: hook up coredumping with journal 2012-01-14 01:54:33 +01:00
Lennart Poettering
f1a42db5a3 build-sys: bump version 2012-01-11 03:56:35 +01:00
Michael Biebl
b0cca7d886 build-sys: fix typo in help string 2012-01-07 00:37:12 +01:00
Kay Sievers
fbe224e203 autogen: add --with-rootlibdir= and switch /usr/local to /usr 2012-01-05 17:57:02 +01:00
Kay Sievers
39ad55a9aa build-sys: use ${ac_default_prefix} 2012-01-05 04:10:59 +01:00
Kay Sievers
9d3203b476 build-sys: install pam module in $rootlibdir 2012-01-05 03:51:52 +01:00
Kay Sievers
eb7bbee6cd build-sys: switch autoconf's default prefix from /usr/local to /usr 2012-01-05 03:42:48 +01:00
Kay Sievers
b8079ae19b build-sys: rename 'rootdir' to 'rootprefix' like udev and kmod uses 2012-01-05 00:40:39 +01:00
Lennart Poettering
4de856120f build-sys: make quotacheck and randomseed optional 2012-01-03 21:08:57 +01:00
Kay Sievers
f7762bf336 build-sys: switch to tar xz 2012-01-02 13:55:58 +01:00
Lennart Poettering
e5e83e8362 build-sys: make readahead and vconsole optional 2011-12-31 19:45:41 +01:00
Kay Sievers
bb765041af gnome-ask-password-agent: require libnotify >= 0.7.0 2011-12-31 18:15:27 +01:00
Kay Sievers
2a018e83de build-sys: restructure logind parts in Makefile.am and add --disable-logind 2011-12-31 06:02:42 +01:00
Lennart Poettering
807e17f05e journal: add inline compression support with XZ 2011-12-21 02:40:59 +01:00
Lennart Poettering
263653e103 Merge remote-tracking branch 'zbigniew/systemadm_changes' 2011-11-02 14:08:49 +01:00
Dexter Morgan
6fdae8a6a4 Add Mageia support
This patch adds support for the Mageia Linux distribution:
 http://www.mageia.org/

Mageia is a fork of Mandriva although some divergence has already occured
and thus inclusion of these changes upstream allow us to (hopefully)
migrate more rapidly to the new standard approaches systemd offers.
Indeed, we already use the preferred mechanism of OS identification via
the /etc/os-release file rather than a distro specific variation.

This patch mostly mirrors the patch added previously for Mandriva
support. In addition to those original authors, this patch was mostly
written by Dexter Morgan with help from Colin Guthrie and Eugeni Dodonov.
2011-11-02 02:16:39 +01:00
Lennart Poettering
d2134abdd5 build-sys: bump release for v37 2011-10-11 20:46:56 +02:00
Lennart Poettering
7c83341a59 build-sys: bump release 2011-09-23 18:30:02 +02:00
Zbigniew Jędrzejewski-Szmek
11216eb0bd systemadm: add libgee as dependency and use it for a unit map 2011-09-20 01:06:01 +02:00
Lennart Poettering
fe7ac31021 build-sys: bump release 2011-09-01 02:10:25 +02:00
Lennart Poettering
66be5eda80 build-sys: bump version 2011-08-25 17:02:33 +02:00
Miklos Vajna
4cd1eaa545 build-sys: Add --disable-localed configure switch 2011-08-25 00:58:20 +02:00
Miklos Vajna
f47cd184c0 build-sys: Add --disable-timedated configure switch 2011-08-24 16:03:59 +02:00
Michael Biebl
b62cfcea00 build-sys: make gperf configure check fatal
and document the new build requirement.
2011-08-03 17:11:13 +02:00
Lennart Poettering
47675042c2 bump release 2011-08-03 04:19:53 +02:00
Miklos Vajna
b2e9fb99ab build-sys: Add --disable-hostnamed configure switch 2011-08-02 01:38:43 +02:00
Lennart Poettering
f975e971ac load-fragment: speed up parsing by using a perfect hash table with configuration settings built by gperf 2011-08-01 00:43:05 +02:00
Lennart Poettering
fd42f6e020 build-sys: prepare new release 2011-07-29 03:15:20 +02:00
Michael Biebl
85f19d825e Link against -lcap only where required
Don't put -lcap into LIBS as otherwise everything will be linked against
it, like libsystemd-daemon, where this is not desired.
2011-07-28 05:01:12 +02:00
Lennart Poettering
904a553a32 build-sys: prepare v31 2011-07-27 20:55:25 +02:00
Kay Sievers
ae446765eb libsystemd-daemon: support installation in --with-rootlibdir 2011-07-15 01:31:06 +02:00
Lennart Poettering
736925d5cd build-sys: bump release 2011-07-13 23:11:53 +02:00
Lennart Poettering
309c2a2ce9 loginctl: use new udev_device_has_tag() call from libudev where applicable 2011-07-13 20:11:23 +02:00
Kay Sievers
d98b9b6345 build-sys: drop AM_GNU_GETTEXT as it fights with IT_PROG_INTLTOOL
<mbiebl> kay, mezcalero: https://bugzilla.gnome.org/show_bug.cgi?id=627789
  <mezcalero> so we can drop that entirely?
  <mezcalero> kay: if you drop those two lines, does it improve things for you?
  <mbiebl> kay: but ./configure should work now
  <mbiebl> resp. autogen.sh
  <kay> mezcalero, mbiebl: autogen.sh seems a lot better without the two lines
  <kay> mezcalero: works without the 'touch' thing
  <mezcalero> kay: ok, commit please
2011-07-12 00:45:28 +02:00
Bastien Nocera
1c7dde3e47 build-sys: Add i18n support through intltool
And put the PolicyKit policy files up for translation.
2011-07-11 21:10:33 +02:00
Henry Gebhardt
e05b415e95 configure: Add --enable-plymouth option
As in the bug[1] it would be nice to configure plymouth support
independently of the distro. This patch adds a "--enable-plymouth" and
"--disable-plymouth" option to the configure script to overwrite the
distro specific default.

[1] https://bugs.freedesktop.org/show_bug.cgi?id=38460
2011-07-02 00:18:26 +02:00
Lennart Poettering
5eda94dda2 logind: implement ACL management 2011-06-21 19:29:44 +02:00
Lennart Poettering
f9a61ef2c9 build-sys: prepare new release 2011-06-16 13:17:51 +02:00
Lennart Poettering
0e8eb2d2e2 build-sys: prepare v28 2011-05-26 19:18:54 +02:00
Lennart Poettering
784a51d5ef build-sys: prepare new release 27 2011-05-20 02:02:23 +02:00
Koen Kooi
1bd8b8184e build-sys: Angstrom support
This commit consists of the initial work to include Angstrom as a ported
distribution for systemd.

Angstrom tries to follow the debian way as much as possible, but deviates
where it doesn't make sense for 'embedded'.
2011-05-09 23:50:23 +02:00
Miklos Vajna
34a852e6f9 units: Enable plymouth for Frugalware 2011-05-09 22:41:02 +02:00
Lennart Poettering
db91c52703 build-sys: prepare release 26 2011-04-30 04:29:28 +02:00
Miklos Vajna
27669061f4 build-sys: Add --disable-binfmt configure switch 2011-04-27 00:08:47 +02:00
Kay Sievers
4db6d587c3 configure.ac: move AC_USE_SYSTEM_EXTENSIONS up to fix warning 2011-04-25 22:00:12 +02:00
Kay Sievers
907dd1953b configure: add AC_SYS_LARGEFILE 2011-04-25 21:50:42 +02:00
Lennart Poettering
dffbaed964 build-sys: bump release 2011-04-21 03:18:39 +02:00
Chris E Ferron
54e4fdef80 MeeGo support
This commit consists of the initial work to include MeeGo as a ported
distribution for systemd.

The majority of the changes are small configuration additions to auto
tools, so that MeeGo is identified as a valid distribution option.

Some small deviations will be noticed between the configuration of MeeGo
and other distributions. As MeeGo is a distribution striving for
compliancy to support its near embedded attributes and target users,
there is less user configuration options available by default. Most
services will be enabled by systemd as part of the distribution
requirements, and as such most links and service files will be pre-setup
for the MeeGo distribution. As much of this is going to be done within
the MeeGo distribution packaging this is still noteworthy to mention, as
it explains why in systemd you will observe configuration differences
where the MeeGo distribution removes all links in the pkgsysconfdir for
instance.  MeeGo will be user configurable if there is desire, but most
services will be enabled by the distribution as designated by the MeeGo
compliancy standards.

Other changes are in source to add such areas as meego-release defined
in utils, and hostname in hostname-setup, defining vconsole-setup,
localizations and rescue additions as needed.

As this is all ground work, MeeGo will continue to strive for complete
compatibility.
2011-04-20 01:05:30 +02:00
Lennart Poettering
42054a3e44 build-sys: bump version 2011-04-06 21:28:41 +02:00
Lennart Poettering
8947c242c5 build-sys: bump version number 2011-04-05 00:36:01 +02:00
Lennart Poettering
cca4aeeead tmpfiles: split off rules for legacy systems into legacy.conf 2011-04-02 01:08:31 +02:00
Lennart Poettering
a9f470b802 build-sys: bump version 2011-04-01 01:35:27 +02:00
Lennart Poettering
18a5d7fffb build-sys: bump version 2011-03-29 12:12:31 +02:00
Lennart Poettering
f1dd0c3f9b syslog: rework syslog detection so that we need no compile-time option what the name of the syslog implementation is 2011-03-18 04:53:31 +01:00
cee1
d59d0a2b4b read-ahead: Fix broken systemd-readahead-collect on mips.
This actually adjust the __NR_fanotify* system call numbers to proper
ones on mips(according userspace ABI).
2011-03-17 04:03:44 +01:00
Andrey Borzenkov
1de4d79bf5 build-sys: add Mandriva distribution support
This merges several separate patches that I carry as part of
Mandriva systemd RPM. They touch those parts that are very
unlikely to be changed in near future and do not impose any
functionality change for systemd core. I also think it is
useful for troubleshooting to have real distribution name in
system logs, espicially when someone reports problem upstream.

The patch looks bigger than sum of replaced patches because

- previous patches were applied on top of distro=fedora, now
I need to add all those bits for distro=mandriva as well

- part of patch was done as spec file magic, but it seems more
logical to ship all these bits together
2011-03-08 19:47:36 +01:00
Lennart Poettering
6e25b33cdd build-sys: prepare v20 2011-03-08 19:41:33 +01:00
Lennart Poettering
020501d952 build-sys: prepare v19 2011-03-01 01:33:38 +01:00
53bdb7c186 build-sys: update ALTLinux support
Please apply patch for update ALTLinux support.
2011-02-28 22:10:13 +01:00
Lennart Poettering
2588ff0b94 build-sys: prepare release v18 2011-02-16 22:18:28 +01:00
Jeff Mahoney
cd3f8b7ddb plymouth: move plymouth out of TARGET_FEDORA 2011-02-08 18:47:32 +01:00
a338bab5d0 build-sys: initial support ALTLinux
Hi all!
I added basic support for ALTLinux.
Please see patch or
http://git.altlinux.org/people/shaba/packages/systemd.git?p=systemd.git;a=shortlog;h=refs/heads/altlinux
Thanks.
2011-02-08 12:52:06 +01:00
Lucas De Marchi
8d7cb6e068 build-sys: make less noise when checking file
There's already a condition that gives a warning if user is
cross-compiling an relying on files from the build system. AC_CHECK_FILE
macro only tests for file in the build system. Hence use a simple
'test -f' that does the same job, without the warning.
2011-02-08 12:44:35 +01:00
Lennart Poettering
591622d7ef build-sys: ensure selinux configure check follows logic of other optional features 2011-02-08 11:46:18 +01:00
990d8b885b build-sys: autodetect and use pkg-config for libselinux
Hi!
libselinux has a pkg-config file:

$ rpm -qf /usr/lib64/pkgconfig/libselinux.pc
libselinux-devel-2.0.98-alt1

$ cat /usr/lib64/pkgconfig/libselinux.pc
prefix=/usr
exec_prefix=${prefix}
libdir=${exec_prefix}/lib64
includedir=/usr/include

Name: libselinux
Description: SELinux utility library
Version: 2.0.98
URL: http://userspace.selinuxproject.org/
Libs.private: -lsepol
Libs: -lselinux
Cflags:

Patch for use pkg-config in attach.

--
Alexey Shabalin
2011-02-08 11:38:28 +01:00
Lennart Poettering
1b2700a155 build-sys: prep v17 2011-01-22 02:19:16 +01:00
Kay Sievers
db040a61c5 vala 0.10 seem to work fine 2011-01-21 18:22:54 +01:00
Lennart Poettering
26742b3fd8 vala: convert from dbus-glib to gdbus 2011-01-20 18:24:26 +01:00
Lennart Poettering
c292c495fb build-sys: prepare v16 2011-01-08 02:34:55 +01:00
Michael Biebl
a05ea46dc7 fix help message for --with-tty-gid configure option 2011-01-04 03:00:09 +01:00
Lennart Poettering
bef2733fae mount-setup: mount /dev/pts with mode=620,gid=5 by default and make GID overridable via configure switch 2011-01-04 01:58:38 +01:00
Miklos Vajna
f5c88ec133 build-sys: frugalware linux support 2010-11-29 17:07:41 +01:00
Michael Biebl
ab85c225e0 Ensure LIBNOTIFY07 conditional is always set
Also use PKG_CHECK_EXISTS to test if libnotify is recent enough
2010-11-27 13:29:14 +01:00
Kay Sievers
d0ef2204b4 gnome-ask-password-agent: also support libnotify < 0.7 for now 2010-11-26 17:59:53 +01:00
Lennart Poettering
920dc3dee0 build-sys: prepare release 15 2010-11-25 01:41:25 +01:00
Lennart Poettering
9b8a535f4d bump version in preparation for release 2010-11-24 23:41:37 +01:00
Thierry Reding
9a60da2834 build-sys: allow cross-compilation
When cross-compiling systemd, the introspection XML files fail to be
generated because the systemd host binary is not executable. This patch
works around this by putting the introspection XML data into separate
ELF sections and extracting them from the binary when generating the XML
files.

The extracted XML data is passed through the strings utility in order to
strip the trailing NUL character. A small AWK script is used to prepend
the doctype and add the opening and closing node tags respectively.
Finally, the C preprocessor is used to substitute the correct doctype
information from the D-Bus header files.
2010-11-23 22:38:55 +01:00
Lennart Poettering
8e486ef03b build-sys: bump for v13 2010-11-18 23:56:34 +01:00
Kay Sievers
230e5a3fb0 Revert "update TODO"
This reverts commit afe635e718.

Oops, libnotify should not have been in here.
2010-11-17 13:19:10 +01:00
Kay Sievers
afe635e718 update TODO 2010-11-17 11:58:42 +01:00
Lennart Poettering
b6a7b0890e build-sys: prep release 12 2010-11-17 00:41:14 +01:00
Matthias Clasen
5c273f8556 build-sys: fix building against libnotify 0.7
Here are two patches I needed to get systemd to build against the
current libnotify and vala releases.
2010-11-15 22:13:25 +01:00
Lennart Poettering
2fa47da53e build-sys: make check for libnotify explicit 2010-11-15 18:42:34 +01:00
Gustavo Sverzut Barbieri
010e310f29 build-sys: dbus-glib is just required by gtk's systemadm
do not fail if there is no dbus-glib and we're not building the gtk
frontend.
2010-11-15 18:38:48 +01:00
Lennart Poettering
7f4e08056d cryptsetup: hook up tool with ask-password 2010-11-12 00:40:27 +01:00
Andrew Edmunds
858dae181b ubuntu: Treat Ubuntu as a distinct distro in configure.ac etc
Previously Ubuntu was treated as being equivalent to Debian, but the two
distributions require different behaviour in certain places.  This commit does
not change the behaviour of systemd on either distro but it creates a
framework for changes to be introduced by later commits.

The following previously meant "Target is Debian or Ubuntu".
    * configure option "--with-distro=debian"
    * C preprocessor symbol "TARGET_DEBIAN"
    * Automake conditional "TARGET_DEBIAN"
After this commit, all of the above are redefined to mean "Target is Debian"

The following are introduced to mean "Target is Ubuntu".
    * configure option "--with-distro=ubuntu"
    * C preprocessor symbol "TARGET_UBUNTU"
    * Automake conditional "TARGET_UBUNTU"

Most code written for Debian will also be applicable to Ubuntu. An extra
Automake conditional "TARGET_DEBIAN_OR_UBUNTU" is introduced to avoid
duplication of code that would otherwise occur.

This commit updates configure.ac, Makefile.am and distro-specific source files
in line with the above definitions.
2010-10-25 21:09:56 +02:00
Lennart Poettering
68ce1b7f2d build-sys: prepare v11 2010-10-07 15:39:28 +02:00
Gustavo Sverzut Barbieri
9b85fc6a89 build-sys: Add compiler and linker flags to reduce binary size
Reduce number of exported symbols with -fvisibility=hidden by default,
this is safe as we're not generating and loadable library and our
binaries should have no exported symbol other than main(). This alone
reduces around 4kb per binary.

It will also request GCC to emit every function and data variable in
its own section, then request the linker to remove unused
sections. This reduces the size of utility tools
(/lib/systemd/systemd-*) by half or even more (in my system some
binaries went from 84kb to 32kb).
2010-10-05 21:45:51 +02:00
Fabiano Fidencio
07459bb6b9 sysv: optionally disable of SysV init/rcN.d support at compile time
This patch adds a cpp definition HAVE_SYSV_COMPAT that is used to
isolate code dealing with /etc/init.d and /etc/rcN.d for systems where
it does not make sense (one that does not use sysv or one that is fully
systemd native).

The patch tries to be as little intrusive as possible, however in
order to minimize the number of #ifdef'ed regions I've reordered some
code in path-lookup.c:lookup_paths_init() where all code dealing with
sysv is now isolated under running_as == MANAGER_SYSTEM as well.

Moreover, In struct Service, some fields were rearranged to reduce
the number of ifdefs.

Lennart's suggestions were fixed and squashed with the original patch,
that was sent by Gustavo Sverzut Barbieri (barbieri@profusion.mobi).
2010-09-27 03:25:05 +02:00
Lennart Poettering
22be093ffb readahead: implement minimal readahead logic based on fanotify(), mincore() and readahead() 2010-09-23 15:02:13 +02:00
Lennart Poettering
efb3237ee6 ask-password: popup notification when we ask for a password 2010-09-17 02:32:48 +02:00
Lennart Poettering
490aed5849 ask-password: add minimal framework to allow services query SSL/harddisk passphrases from the user 2010-09-17 01:26:29 +02:00
Lennart Poettering
6f890469f4 build-sys: bump version 2010-09-14 02:29:58 +02:00
Lennart Poettering
7d568925bd systemctl: make --version a little bit more verbose 2010-09-06 03:11:24 +02:00
Lennart Poettering
a9c72fe933 build-sys: prepare new release 2010-09-03 04:51:02 +02:00
Lennart Poettering
1271623839 build-sys: show audit/selinux in summary 2010-08-26 03:23:03 +02:00
Lennart Poettering
cff89041ae build-sys: prepare release v8 2010-08-25 21:28:50 +02:00
Lennart Poettering
afea26ad7d main: disable nscd properly, if possible 2010-08-11 23:31:07 +02:00
Lennart Poettering
4927fcae48 audit,utmp: implement audit logic and rip utmp stuff out of the main daemon and into a helper binary 2010-08-11 01:44:38 +02:00
Lennart Poettering
add060fea4 build-sys: prepare release 7 2010-08-10 03:47:00 +02:00
Lennart Poettering
7e551fbd68 build-sys: prepare new release 2010-08-06 12:15:54 +02:00
Lennart Poettering
804bbed8f4 prepare new release 2010-08-04 01:30:40 +02:00
Daniel J Walsh
56cf987fe7 Systemd is causing mislabeled devices to be created and then attempting to read them.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 07/28/2010 05:57 AM, Kay Sievers wrote:
> On Wed, Jul 28, 2010 at 11:43, Lennart Poettering
> <lennart@poettering.net> wrote:
>> On Mon, 26.07.10 16:42, Daniel J Walsh (dwalsh@redhat.com) wrote:
>>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file
>>> type=1400 audit(1280174589.476:7): avc:  denied  { read } for  pid=1
>>> comm="systemd" name="autofs" dev=devtmpfs ino=9482
>>> scontext=system_u:system_r:init_t:s0
>>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file
>>> type=1400 audit(1280174589.476:8): avc:  denied  { read } for  pid=1
>>> comm="systemd" name="autofs" dev=devtmpfs ino=9482
>>> scontext=system_u:system_r:init_t:s0
>>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file
>>>
>>> Lennart, we talked about this earlier.  I think this is caused by the
>>> modprobe calls to create /dev/autofs.  Since udev is not created at the
>>> point that init loads the kernel modules, the devices get created with
>>> the wrong label.  Once udev starts the labels get fixed.
>>>
>>> I can allow init_t to read device_t chr_files.
>>
>> Hmm, I think a cleaner fix would be to make systemd relabel this device
>> properly before accessing it? Given that this is only one device this
>> should not be a problem for us to maintain, I think? How would the
>> fixing of the label work? Would we have to spawn restorecon for this, or
>> can we actually do this in C without too much work?
>
> I guess we can just do what udev is doing, and call setfilecon(), with
> a context of an earlier matchpathcon().
>
> Kay
> _______________________________________________
> systemd-devel mailing list
> systemd-devel@lists.freedesktop.org
> http://lists.freedesktop.org/mailman/listinfo/systemd-devel

Here is the updated patch with a fix for the labeling of /dev/autofs
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iEYEARECAAYFAkxQMyoACgkQrlYvE4MpobNviACfWgxsjW2xzz1qznFex8RVAQHf
gIEAmwRmRcLvGqYtwQaZ3WKIg8wmrwNk
=pC2e
2010-08-03 23:45:22 +02:00
Daniel J Walsh
7a58bfa4ae socket: SELinux support for socket creation.
It seems to work on my machine.

/proc/1/fd/20	system_u:system_r:system_dbusd_t:s0

/proc/1/fd/21	system_u:system_r:avahi_t:s0

And the AVC's seem to have dissapeared when a confined app trys to
connect to dbus or avahi.

If you run with this patch and selinux-policy-3.8.8-3.fc14.noarch
You should be able to boot in enforcing mode.
2010-07-23 05:12:13 +02:00
Lennart Poettering
25da667e1a build-sys: prepare release 4 2010-07-22 02:52:26 +02:00
Lennart Poettering
d3d91d10c9 build-sys: fix compatibility with vala 0.9 2010-07-22 02:21:42 +02:00