shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2024-11-08 11:27:32 +03:00
Code
1,530 Commits 3 Branches 391 Tags 553 MiB
3b63d2d31d
Commit Graph

722 Commits

Author SHA1 Message Date
Matthew Miller
fdf20a3160 manager: add missing second part of s/maintenance/failed/ 2010-08-31 00:23:34 +02:00
Matthew Miller
74ac3cbd50 manager: rename 'maintenance' state to 'failed' to avoid user confusion 
https://bugzilla.redhat.com/show_bug.cgi?id=614619
 2010-08-31 00:17:56 +02:00
Lennart Poettering
c88e7f4e57 manager: don't try to minimize transaction when using isolate 
We should not avoid stopping services when using isolate, since that
kinda defeats the point of it.

http://bugzilla.redhat.com/show_bug.cgi?id=627014
 2010-08-30 23:51:52 +02:00
Lennart Poettering
da726a4d4d exec: make sure O_NONBLOCK is off for all sockets passed as STDIN/STDOUT/STDERR 2010-08-30 23:31:27 +02:00
Lennart Poettering
2528a7a62c unit: introduce AllowIsolate= switch 2010-08-30 23:04:36 +02:00
Lennart Poettering
b2bb3dbed9 console: rework automatic getty on kernel console logic again 
It is essential that the gettys are proper dependencies from
getty.target so that they aren't killed and immediately restarted on
runlevel changes. Hence rework the logic to implicitly add console
gettys to getty.target as dependencies.

This also adds an automatic hvc console for virtualizers.

https://bugzilla.redhat.com/show_bug.cgi?id=501720
 2010-08-30 23:03:58 +02:00
Lennart Poettering
3177a49ce9 service: properly handle Fedora's broken MTA meta-service name 2010-08-26 04:10:40 +02:00
Lennart Poettering
43a3754933 service: reword warnings a little 2010-08-26 04:10:17 +02:00
Lennart Poettering
42a097a253 service: if we cannot add an alias to a sysv service, ignore this and go on 2010-08-26 04:08:28 +02:00
Lennart Poettering
eb9e50de3e device: allow aliases on devices 2010-08-26 04:08:01 +02:00
Matthew Miller
cc8a7a6129 systemctl: very very trivial typo patch :) 2010-08-26 02:04:25 +02:00
Lennart Poettering
81bf310edc mount: imply noauto for mount points configured with native mount files 2010-08-25 21:24:21 +02:00
Lennart Poettering
173a8d04fc mount: rework automatic mounting to follow the 'nofail' option in fstab 2010-08-25 20:37:04 +02:00
Lennart Poettering
4cf5d67507 dbus: simplify some dbus error messages a bit 2010-08-25 19:50:06 +02:00
Lennart Poettering
50f74deea3 sd-daemon: drop SCM_CREDENTIALS passing since it is redundant, the kernel fills this in anyway 2010-08-25 19:50:05 +02:00
Lennart Poettering
77d5f105bf cgroup: mount cgroup file systems to /sys/fs/cgroup instead of /cgroup 
This requires the /sys/fs/cgroup to exist. Current git kernels have
this, released kernels need a backport of a single patch.
 2010-08-25 04:58:24 +02:00
Lennart Poettering
ee2083d5ca utmp: document that the order of preference for runlevel numbers might be something to change in other distributions 2010-08-25 03:31:59 +02:00
Lennart Poettering
3006982d93 utmp: write out runlevels 5 and 3 preferrably if multiples make sense, and S instead of 1 2010-08-25 03:14:53 +02:00
Lennart Poettering
f3d41013e2 systemctl: rename a few status lines 2010-08-25 03:14:04 +02:00
Lennart Poettering
584be568b9 systemctl: show timestamps for state changes 2010-08-25 03:13:44 +02:00
Lennart Poettering
f1e36d677a systemctl: add --sysv-compat 2010-08-25 03:13:09 +02:00
Lennart Poettering
44bcea6654 log: SCM_CREDENTIALS will be added by the kernel anyway, so there's no need to write them manually 2010-08-25 03:12:19 +02:00
Lennart Poettering
d3689161a2 mount: add global configuration options for handling of auto mounts 2010-08-25 03:11:26 +02:00
Lennart Poettering
93a45c562a serial: use seperate getty template for serial ttys 2010-08-25 03:09:57 +02:00
Lennart Poettering
addab137cd syslog: add minimal syslog/kmsg bridge syslogd 2010-08-21 03:57:47 +02:00
Lennart Poettering
8e4d105ddf mount: don't create depdency for device node of root fs, since it is always there 2010-08-21 01:51:55 +02:00
Lennart Poettering
6309077509 log: pass SCM_CREDENTIALS when logging to syslog 2010-08-21 01:51:16 +02:00
Lennart Poettering
5845b46ba3 device: handle properly if two devices want to have the same name 
https://bugzilla.redhat.com/show_bug.cgi?id=624539
 2010-08-20 04:04:08 +02:00
Lennart Poettering
1afbdcb06b exit-status: add missing files src/exit-status.h src/exit-status.c 2010-08-20 03:26:37 +02:00
Lennart Poettering
449ddb2d23 remount: add tool that applies /etc/fstab mount options to all api mounts 2010-08-20 03:26:15 +02:00
Lennart Poettering
11ce342724 mount: properly handle LABEL="" in fstab 2010-08-20 02:46:15 +02:00
Lennart Poettering
049f86421b selinux: properly query policy for FIFO files 2010-08-20 02:31:54 +02:00
Lennart Poettering
c4e2ceae94 dbus: follow standardized fdo PropertiesChanged signal spec 2010-08-20 02:31:54 +02:00
Lennart Poettering
d06dacd002 service/systemctl: don't consider LSB exit codes 5 and 6 as failure, and decode exit codes in systemctl 2010-08-20 02:31:54 +02:00
Lennart Poettering
8a2b3c097b service: make sure sysv services marked as interactive in the LSB header get output on the TTY in all cases 2010-08-20 02:31:54 +02:00
Lennart Poettering
be11c12e49 kmod: downgrade modprobe log message for since ipv6 might be compiled as module for blacklisting 2010-08-19 03:30:36 +02:00
Lennart Poettering
28695e0fac hostname: if no hostname is configured use localhost 2010-08-19 03:29:43 +02:00
Lennart Poettering
e59077036b hostname: on all distros make the name configured in /etc/hostname take precedence over distro-specific configuration 
In order to unify configuration across distributions we pick the
simple-most option by default (Debian's /etc/hostname) and then fall
back to distro-specific hacks if that doesn't exist.
 2010-08-19 03:02:22 +02:00
Lennart Poettering
b2423f1f43 modules-load: add systemd-modules-load tool that can load a configured list of modules in /etc/modules.d/ on boot, replacing distro-dependent shell hacks for this 2010-08-19 02:03:17 +02:00
Matthias Clasen
5948ee7cef dbus: small typo in introspection data 
Hey,

here is a patch to fix a small typo in the systemd dbus introspection data.
I found this while trying to explore the systemd dbus API via bash
completion with gdbus. You should try this, it is really fun, and,
evidently, helps to find some bugs...

Matthias
 2010-08-18 23:10:43 +02:00
Lennart Poettering
26192dfc21 random-seed: honour kernel pool size when saving/restoring seed 2010-08-18 19:38:45 +02:00
Lennart Poettering
2dc11f9948 udev: dm has been fixed in the meantime 2010-08-18 01:04:51 +02:00
Lennart Poettering
4252a5b66d udev: fix syntax 2010-08-18 01:01:22 +02:00
Tero Roponen
a9c501a590 main: restore an accidentally removed 'else' 
I just noticed this when reading the latest commits.
 2010-08-17 23:45:57 +02:00
Lennart Poettering
9028d0ecba dbus: downgrade disconnection message 2010-08-17 22:15:02 +02:00
Lennart Poettering
1c27d3f3fd main: properly fallback to rescue.target if default.target is hosed 2010-08-17 20:42:53 +02:00
Lennart Poettering
02ee865a46 service: rename ValidNoProcess= to RemainAfterExit= 2010-08-17 19:37:36 +02:00
Lennart Poettering
4694836523 service: prefix descriptions when they come from legacy sources 2010-08-17 18:59:05 +02:00
Lennart Poettering
85ad5b18ad systemctl: break output properly for 80ch terminals 2010-08-17 18:53:47 +02:00
Lennart Poettering
1cba2c90e8 modprobe: kill support for nomodules 
this should happen in the kernel itself, not be controlled from
userspace, if at all. So let's kill this here.
 2010-08-17 18:13:47 +02:00
Lennart Poettering
f276a41821 shutdown: drop -f/-F switches again, simply because we don't want to condone non-ro root dirs 
Instead of using /forcefsck and /fastboot people should just kernel
command line options to achieve the same.
 2010-08-17 18:13:47 +02:00
Lennart Poettering
888c6216ca nss: don't disable nscd anymore, since it doesn't make sense to socket-activate nscd anyway 2010-08-17 18:13:46 +02:00
Lennart Poettering
03467c88fb emacs: disable tabs in .h files, too 2010-08-17 03:50:18 +02:00
Lennart Poettering
9499b235b9 log: print at to one target at max 2010-08-17 03:31:45 +02:00
Lennart Poettering
8630d37023 device: be more verbose of udev confuses us 2010-08-17 03:31:31 +02:00
Lennart Poettering
c0b346969d load-fragment: make parser more forgiving 2010-08-17 03:30:53 +02:00
Lennart Poettering
5192bd1945 auto-getty: rework auto console getty logic to work in conjunction with single user mode 2010-08-17 03:29:46 +02:00
Lennart Poettering
16061c20dd shutdownd: kill /etc/nologin file before we go down 2010-08-16 23:52:19 +02:00
Lennart Poettering
08e4b1c5c8 shutdown: various fixes for handling of delayed shutdowns 2010-08-16 22:40:11 +02:00
Lennart Poettering
2396fb04f7 log: properly open log target in the various utilities 2010-08-16 22:39:02 +02:00
Lennart Poettering
618e02c7b7 util: properly detect ttyname_r() failing 2010-08-16 21:25:09 +02:00
Lennart Poettering
116205924e util: use format_timestamp() instead of ctime() wherever possible 2010-08-16 21:24:50 +02:00
Lennart Poettering
a2a3a5b93c systemctl: sort case-insensitively 2010-08-16 20:07:01 +02:00
Lennart Poettering
9be9828c00 systemctl: warn in intervals before going down when delayed shutdown is used 2010-08-16 19:26:27 +02:00
Lennart Poettering
6b5ad000ab shutdown: if now time argument is passed, imply +1 not +0 
That should friendlier for folks who just run "shutdown" to figure out
the command line arguments...

https://bugzilla.redhat.com/show_bug.cgi?id=624149
 2010-08-16 17:12:40 +02:00
Lennart Poettering
f614480831 systemctl: add support for delayed shutdown, similar to sysv in style 2010-08-16 15:37:52 +02:00
Lennart Poettering
6e200d55ae random-seed: add missing random-seed.c file 2010-08-14 21:23:26 +02:00
Lennart Poettering
d6c9574fb5 emacs: make sure nobody accidently adds tabs to our sources 2010-08-14 19:59:25 +02:00
Lennart Poettering
d90e1a301d systemctl: skip writing of utmp if we booted using systemd, under the assumption that systemd-update-utmp is used 2010-08-14 19:14:52 +02:00
Lennart Poettering
36c32ba297 systemctl: sort 'list-units' output 2010-08-14 03:40:10 +02:00
Lennart Poettering
2cf19a7a8f job: don't accidently access a job that doesn't exist anymore 2010-08-13 19:29:21 +02:00
Lennart Poettering
34e9ba669e service: rename Type=finish to Type=oneshot and allow multiple ExecStart= lines for oneshot services 
In contrast to the other service types oneshot services are usually not
long lasting and there's not necessarily a single clean main process for
them. This change allows multiple ExecStart= lines for this type of
services so that the admin/developer doesn't have to arbitrarily pick on
of various sequential commands as the "main one".
 2010-08-13 18:23:01 +02:00
Lennart Poettering
fbc43921be systemctl: properly detect whether taling to systemd via D-Bus worked before falling back to upstart/initctl 2010-08-13 04:53:33 +02:00
Lennart Poettering
75676b7287 man: document new 'systemctl status PID' syntax 2010-08-13 02:15:10 +02:00
Lennart Poettering
4455bcd0e6 cgroup: try harder to find a unit a PID belongs to by traversing through parent cgroups 2010-08-13 02:08:34 +02:00
Lennart Poettering
598b557bf0 systemctl: when calling 'status' accept a PID 2010-08-13 02:07:22 +02:00
Lennart Poettering
c31b4423a9 systemctl: show sysv path if it is set if the fragment path isn't in systemctl status 2010-08-13 01:29:30 +02:00
Lennart Poettering
3059b1c1f4 systemctl: at full stop after last message before shutting down 2010-08-12 17:15:10 +02:00
Lennart Poettering
bbd3a7ba5c audit: suppress repeated audit events when deserializing 2010-08-12 03:51:58 +02:00
Lennart Poettering
8821a00fd5 unit: don't show ENOENT configuration file warnings for units that are not essential 2010-08-12 01:05:35 +02:00
Lennart Poettering
302e27c89e main: log build time features on startup 2010-08-12 01:03:24 +02:00
Lennart Poettering
91805b3bcb dbus: downgrade a few log messages 2010-08-12 01:02:19 +02:00
Lennart Poettering
674cdd1933 dbus: fix capability serialization 2010-08-12 01:01:55 +02:00
Lennart Poettering
449648c430 conf-parser: don't crash if an assignment is read before a section header 2010-08-12 01:01:30 +02:00
Lennart Poettering
afea26ad7d main: disable nscd properly, if possible 2010-08-11 23:31:07 +02:00
Lennart Poettering
444a79d340 dbus: properly pass capabilities 2010-08-11 23:19:28 +02:00
Lennart Poettering
1e59887dc9 gc: remove a lot of unused code 2010-08-11 23:19:04 +02:00
Lennart Poettering
e51bc1a23e selinux: split off selinux calls into seperate file label.c 2010-08-11 22:58:34 +02:00
Lennart Poettering
7fab9d01b5 pahole: rearrange structs to make them smaller 2010-08-11 22:37:10 +02:00
Lennart Poettering
e364ad0628 clang: fix numerous little issues found with clang-analyzer 2010-08-11 22:04:25 +02:00
Lennart Poettering
10f8e83cbb manager: serialize/deserialize startup time, too 2010-08-11 20:19:27 +02:00
Lennart Poettering
19b68260aa audit: remove double header inclusion 2010-08-11 17:55:54 +02:00
Lennart Poettering
e543deaeb5 audit: initialize audit only if it is enabled 2010-08-11 17:52:01 +02:00
Lennart Poettering
eaf9102011 target: don't synthesize a runlevel property for targets anymore since we don't need it anymore and it is crutfy 2010-08-11 17:46:27 +02:00
Lennart Poettering
830f6caa77 audit: smaller fixes to audit hookup 2010-08-11 15:19:50 +02:00
Lennart Poettering
2ee68f7211 systemctl: beef up highlighting of service states a little 2010-08-11 15:19:31 +02:00
Lennart Poettering
cd6d0a456b utmp: enable systemd-update-utmp by default 2010-08-11 04:38:55 +02:00
Lennart Poettering
41b02ec77e unit: make sure a job for a service of type 'finish' succeeds if the process terminates cleanly 2010-08-11 04:03:13 +02:00
Lennart Poettering
6c073082e7 socket: disable GC for pre-allocated per-connection service until it is used 2010-08-11 02:07:59 +02:00
Lennart Poettering
4927fcae48 audit,utmp: implement audit logic and rip utmp stuff out of the main daemon and into a helper binary 2010-08-11 01:44:38 +02:00
Lennart Poettering
b95cf3629e util: when replacing env vars replace unset envvars by nothing 
This makes it easier to support /etc/sysconfig/xxxx with command line
env vars in style of $OPTIONS which might or might not be set.
 2010-08-11 01:44:38 +02:00
Lennart Poettering
3454f9e519 conf: add commented default SysVConsole= value 2010-08-11 01:44:37 +02:00
Lennart Poettering
b5e9dba8d6 unit: rename OnlyByDependency= to RefuseManualStart= and introduce RefuseManualStop= 
Some unit shall never be start on user request (e.g. shutdown.target)
others never be stopped on user request (e.g. auditd.servce), hence
offer options for both.
 2010-08-11 01:44:37 +02:00
Lennart Poettering
47342320a0 main: fix auto restarting of units after a configuration reload 2010-08-09 23:53:49 +02:00
Lennart Poettering
76143638fd swap: properly enter maintenance mode on failure 2010-08-09 22:44:52 +02:00
Lennart Poettering
69dd2852bb manager: when two pending jobs conflict, keep the one that "conflicts", remove the one that is "conflicted" 
This gives the writer of units control which unit is kept and which is
stopped when two units conflict.
 2010-08-09 22:32:30 +02:00
Lennart Poettering
6e98720f14 service: hide output of sysv scripts if quiet is passed on the kernel cmdline 2010-08-09 18:00:24 +02:00
Lennart Poettering
5de6b30219 service: properly remember if a sysv is actually enabled 
Previously we checked the SysV priority value to figure out if a SysV
unit was enabled or not, since th value was mostly read from the S
startup links. Since we read this value from the LSB headers as a
fallback we hence ended up considering a lot more services enabled than
were actually enabled.

This patch adds an explicit boolean which encodes whether a sysv service
is enabled or not via S links.

https://bugzilla.redhat.com/show_bug.cgi?id=615293
 2010-08-09 17:12:25 +02:00
Lennart Poettering
2cf3143ac3 service: show restart value in dump 2010-08-09 17:07:05 +02:00
Lennart Poettering
04ade7d215 dbus: don't call bus_path_escape() with NULL unit name 
Fixes an assertion triggerable via D-Bus.

https://bugzilla.redhat.com/show_bug.cgi?id=622008
 2010-08-09 17:07:05 +02:00
Lennart Poettering
6d4fc029d9 systemctl: show exit code only if it is actually set 2010-08-09 17:06:18 +02:00
Michal Schmidt
4a4d6b4b31 systemctl: fix parsing of DBus reply in 'dot' 
"systemctl dot" has been broken since the addition of the "Following="
property.
 2010-08-07 18:08:03 +02:00
Lennart Poettering
4502d22cb8 util: when formatting timestamps return '0' for 0 timestamps instead of empty string 2010-08-06 21:34:11 +02:00
Lennart Poettering
c593cfe164 sd-daemon: fix compilation on old systems lacking SOCK_CLOEXEC 2010-08-06 21:34:11 +02:00
Lennart Poettering
ee6cb28869 device: properly handle devices that are referenced before they show up 2010-08-06 04:17:51 +02:00
Lennart Poettering
3c661fadd5 cgroup: if the system bus cannot be found, send cgroup empty msg directly to init proces 2010-08-06 03:21:50 +02:00
Lennart Poettering
2e81c8a557 manager: downgrade a few log msgs regarding conflicting but fixable jobs 2010-08-06 02:58:46 +02:00
Lennart Poettering
75d287d3ae automount: order automount units after fsck, too 2010-08-06 02:23:45 +02:00
Lennart Poettering
922cc00119 units: split fsck.target from sysinit.target for suse compat 2010-08-06 01:30:20 +02:00
Lennart Poettering
0ff4cdd967 main: automatically spawn a getty on the kernel configured serial console 2010-08-06 00:42:24 +02:00
Lennart Poettering
48a21c9b37 manager: fix conflicting job check 2010-08-05 20:49:35 +02:00
Lennart Poettering
674a6e4d0c manager: when breaking ordering cycle show full cycle loop 2010-08-05 20:39:45 +02:00
Lennart Poettering
d4054675b1 service: read special startup dirs only on the respective distros 2010-08-05 20:28:51 +02:00
Lennart Poettering
95978cf8a6 selinux: minor error handling fix 2010-08-05 19:50:03 +02:00
Lennart Poettering
eeaafddcb5 service: always sort services from suse B runlevel before services from normal runlevels 2010-08-05 19:50:03 +02:00
Michal Schmidt
a042efad57 reboot: handle -p switch properly 
https://bugzilla.redhat.com/show_bug.cgi?id=618678
 2010-08-05 19:50:03 +02:00
Lennart Poettering
6319292f15 selinux: fix labels only when configured for it 2010-08-05 19:50:02 +02:00
Lennart Poettering
5b1fe56a8b selinux: rework selinux tests a little 2010-08-04 01:07:38 +02:00
Lennart Poettering
f7f4cccb2a selinux: fix if vs. ifdef mixup 2010-08-04 00:40:19 +02:00
Daniel J Walsh
56cf987fe7 Systemd is causing mislabeled devices to be created and then attempting to read them. 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 07/28/2010 05:57 AM, Kay Sievers wrote:
> On Wed, Jul 28, 2010 at 11:43, Lennart Poettering
> <lennart@poettering.net> wrote:
>> On Mon, 26.07.10 16:42, Daniel J Walsh (dwalsh@redhat.com) wrote:
>>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file
>>> type=1400 audit(1280174589.476:7): avc:  denied  { read } for  pid=1
>>> comm="systemd" name="autofs" dev=devtmpfs ino=9482
>>> scontext=system_u:system_r:init_t:s0
>>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file
>>> type=1400 audit(1280174589.476:8): avc:  denied  { read } for  pid=1
>>> comm="systemd" name="autofs" dev=devtmpfs ino=9482
>>> scontext=system_u:system_r:init_t:s0
>>> tcontext=system_u:object_r:device_t:s0 tclass=chr_file
>>>
>>> Lennart, we talked about this earlier.  I think this is caused by the
>>> modprobe calls to create /dev/autofs.  Since udev is not created at the
>>> point that init loads the kernel modules, the devices get created with
>>> the wrong label.  Once udev starts the labels get fixed.
>>>
>>> I can allow init_t to read device_t chr_files.
>>
>> Hmm, I think a cleaner fix would be to make systemd relabel this device
>> properly before accessing it? Given that this is only one device this
>> should not be a problem for us to maintain, I think? How would the
>> fixing of the label work? Would we have to spawn restorecon for this, or
>> can we actually do this in C without too much work?
>
> I guess we can just do what udev is doing, and call setfilecon(), with
> a context of an earlier matchpathcon().
>
> Kay
> _______________________________________________
> systemd-devel mailing list
> systemd-devel@lists.freedesktop.org
> http://lists.freedesktop.org/mailman/listinfo/systemd-devel

Here is the updated patch with a fix for the labeling of /dev/autofs
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iEYEARECAAYFAkxQMyoACgkQrlYvE4MpobNviACfWgxsjW2xzz1qznFex8RVAQHf
gIEAmwRmRcLvGqYtwQaZ3WKIg8wmrwNk
=pC2e
 2010-08-03 23:45:22 +02:00
Tomasz Torcz
cebf8b2092 socket: Allow selection of TCP Congestion Avoidance algorithm to socket 
Hi,

attached path extends socket configurables with another
knob - TCP Congestion Avoidance selection. Linux implements
handful of those, useful in various situations. For example,
TCP Low Priority may be used by FTP service to gracefully
yield bandwidth for more important TCP/IP streams.

Until recently TCP_CONGESTION was Linux-specific, recently
FreeBSD 8 and OpenSolaris gained compatible support.
 2010-08-03 23:23:47 +02:00
Lennart Poettering
d5ca5f1185 telinit: forward to upstart, if not booted with systemd 2010-07-24 02:33:38 +02:00
Lennart Poettering
ec7f7f2006 systemctl: don't use the systemd bus to talk to upstart 2010-07-24 02:23:40 +02:00
Lennart Poettering
385771fcf0 systemctl: don't hit an assert when we are run from a non-systemd boot 2010-07-24 01:56:13 +02:00
Lennart Poettering
e054f8333d main: disable NSS disabling logic for now, since this is incompatible with rpm 2010-07-24 01:29:21 +02:00
Lennart Poettering
ee5762e378 systemctl: fold systemd-install into systemctl 2010-07-24 00:53:33 +02:00
Lennart Poettering
9d8a57fff1 systemctl: support force-reload and condrestart as aliases for reload-or-try-restart 2010-07-23 05:24:45 +02:00
Lennart Poettering
85e5760d4f install: default to minimal realization mode 2010-07-23 05:24:24 +02:00
Lennart Poettering
ea4a240dc2 systemctl: accept -p more than once 2010-07-23 05:24:05 +02:00
Daniel J Walsh
7a58bfa4ae socket: SELinux support for socket creation. 
It seems to work on my machine.

/proc/1/fd/20	system_u:system_r:system_dbusd_t:s0

/proc/1/fd/21	system_u:system_r:avahi_t:s0

And the AVC's seem to have dissapeared when a confined app trys to
connect to dbus or avahi.

If you run with this patch and selinux-policy-3.8.8-3.fc14.noarch
You should be able to boot in enforcing mode.
 2010-07-23 05:12:13 +02:00
Robert "arachnist" Gerus
28322e1eb6 sshd, tmux and others are broken when /dev/pts is mounted with "-o nodev" 2010-07-23 05:12:13 +02:00
Lennart Poettering
d3d91d10c9 build-sys: fix compatibility with vala 0.9 2010-07-22 02:21:42 +02:00
Lennart Poettering
3a2776bc86 service: save/restore status text string 2010-07-21 05:16:45 +02:00
Lennart Poettering
cc42e0817f job: make sure restart jobs are readded to the run queue after conversion to start jobs 2010-07-21 05:16:31 +02:00
Lennart Poettering
a7f241db3f unit: deduce following unit value dynamically instead of statically, to avoid dangling pointers 2010-07-21 05:00:29 +02:00
Lennart Poettering
672c48cc06 pam: remove only sessions we ourselves created in the first place 2010-07-21 04:32:44 +02:00
Lennart Poettering
294d81f124 load: make sure that unit files in /etc/ always take precedence, even over link targets, to make them easily overrdiable 2010-07-21 03:28:10 +02:00
Lennart Poettering
8f05424d50 unit: allow symlinking unit files to /dev/null 2010-07-21 03:13:15 +02:00
Lennart Poettering
c24eb49e6a exec: extend variable substitution to support splitting variable values into seperate arguments 2010-07-21 02:57:35 +02:00
Lennart Poettering
9d25f5ed7b sysv: do not add sysv services that are not enabled in /etc/rcN.d/ to network.target or other LSB-style Provides: targets 2010-07-20 22:30:45 +02:00
Lennart Poettering
84b00965b7 hostname: properly deal with unset hostname in fedora configuration 2010-07-20 21:34:25 +02:00
Lennart Poettering
2cc59dbfe0 systemctl: always disable color when output goes into a file 2010-07-20 21:04:32 +02:00
Lennart Poettering
d8d5ab981a manager: write serialization to /dev/.systemd/ instead of /dev/shm 2010-07-20 20:54:33 +02:00
Lennart Poettering
de0200fca5 socket: fix access mode verification of FIFOs 2010-07-20 20:40:49 +02:00
Lennart Poettering
8fe914ec81 device: do not merge devices 
Don't try to merge devices that have been created via dependencies when
they appear in the system and can be recognized as the same.  Instead,
simply continue to maintain them independently of each other, however
with the same state cycle. Why? Because otherwise we'd have a hard time
to seperate the dependencies after the devices are unplugged again and
we hence cannot be sure anymore that next time the device is plugged in
it will carry the same names.

Example: if one depndency refers to dev-sda.device and another one to
dev-by-id-xxxyyy.device we only learn at time of plug in of the device
that it is actually the same device that was ment. In the moment the
device is unplugged again we won't know anymore their relation to each
other and the next time the harddisk is plugged it might even appear as
dev-by-id-xxxyyy.device and dev-sdb.service. To ensure the dependencies
continue to have the meaning they were intended to have let's hence keep
the .device objects seperate all the time, even when they are plugged
in.

This patch also introduces a new Following= property which points from
the various .device units of a specific device to the main .device unit
for it. This can be used by the client side to figure out the relation
of the .device units to each other and even filter units from display.
 2010-07-20 20:33:24 +02:00
Lennart Poettering
5632e3743d systemctl: introduce reset-maintenance command 2010-07-19 04:08:07 +02:00
Lennart Poettering
246756ca92 install: optionally remove all symlinks from configuration tree recursively 2010-07-18 01:33:05 +02:00
Lennart Poettering
92abbefbef execute: bump up log level of executed processes that failed 2010-07-17 04:17:30 +02:00
Lennart Poettering
faf919f1eb job: timeout every job independently of the unit 2010-07-17 04:09:28 +02:00
Lennart Poettering
064f51fa29 unit: consider only_by_dependency setting when clients ask whether a unit is startable 2010-07-17 04:07:49 +02:00
Lennart Poettering
d06428248a systemctl: extend list-units output a little 2010-07-17 00:59:03 +02:00
Lennart Poettering
5de9682cd6 unit: introduce OnFailure dependencies to activate units on failure of other units, as a way to implement an automatic rescue shell 2010-07-17 00:58:47 +02:00
Lennart Poettering
45fb0699c4 systemctl: warn when operating on service files that changed on disk but haven't been reloaded 2010-07-17 00:57:51 +02:00
Lennart Poettering
73608ed994 device: rename 'available' state to 'plugged' 2010-07-16 21:32:34 +02:00
Lennart Poettering
2d3b2c0032 units: introduce smartcard.target 2010-07-16 21:32:11 +02:00
Lennart Poettering
0ff3dea700 systemctl: always show units with active jobs in list-units output 2010-07-16 21:31:34 +02:00
Lennart Poettering
b15bdda870 socket: prepare for proper selinux labelling of sockets 2010-07-16 19:42:27 +02:00
Lennart Poettering
0009d2a633 socket: don't allow mixing of accepting and non-accepting sockets in the same unit 2010-07-16 19:41:50 +02:00
Lennart Poettering
cac6f7c872 service: refuse to start services that are configured for per-connection instantiation to start without a socket 2010-07-16 19:41:11 +02:00
Lennart Poettering
276c3e78ce unit: allow units to have more than one instance id 2010-07-16 19:40:24 +02:00
Lennart Poettering
6c155fe3d0 path,timer: order units after sysinit by default 2010-07-16 18:57:21 +02:00
Lennart Poettering
772a599e4f target: if the user configured a manual ordering between target units and the unit they require don't contradict that automatically 2010-07-16 03:17:34 +02:00
Lennart Poettering
ad780f1991 main: disable nscd if we can to avoid deadlock, just in case 2010-07-16 03:07:53 +02:00
Lennart Poettering
949c651032 mount-setup: consider a few file systems API mounts and ignore them 2010-07-16 02:56:57 +02:00
Lennart Poettering
992f87e192 install: refuse installation of symlinked units 2010-07-16 02:56:40 +02:00
Lennart Poettering
4445a87557 systemctl: add to command for virtualizing the dependency tree with graphviz 2010-07-16 02:56:00 +02:00
Lennart Poettering
d04247cf25 cgls: rename source file to cgls.c, since we have no prefix for any of the other files either 2010-07-14 15:09:27 +02:00
Lennart Poettering
73883adc1e socket: don't close sockets when activating per-connection units 2010-07-14 04:47:57 +02:00
Lennart Poettering
6f28c033ec systemctl: introduce try-restart and reload-or-restart commands 2010-07-13 20:20:36 +02:00
Lennart Poettering
3dda9fc3a7 manager: always allow stopping of units that failed to load 2010-07-13 20:07:00 +02:00
Lennart Poettering
1d2e23ab72 main: introduce -D as quick acess to debugging 2010-07-13 20:06:33 +02:00
Lennart Poettering
53b543608e install: implement systemd-install realize 2010-07-13 20:05:47 +02:00
Lennart Poettering
9f611ad82e unit: disable retroactive starting/stopping of units when deserializing 2010-07-13 19:01:20 +02:00
Lennart Poettering
4c633005ea cgroup: treat non-existing cgroups like empty ones, to deal with races 2010-07-13 19:00:01 +02:00
Lennart Poettering
edb9aaa8b2 main: replace --running-as= by --session and --system do mimic related tools and D-Bus 2010-07-13 18:57:58 +02:00
Lennart Poettering
17df43e32c udev: use prettier subsystem paths for bluetooth devices, too 2010-07-13 02:40:24 +02:00
Lennart Poettering
935e3e5cc7 udev: ignore dynamic ram/loop block devices 2010-07-13 02:40:08 +02:00
Lennart Poettering
0f13830395 units: make maximum unit name longer, since DM names manager to hit the limit 2010-07-13 02:18:13 +02:00
Lennart Poettering
7e6e7b06e5 unit: retroactively start dependencies for job-less units too 2010-07-13 02:17:53 +02:00
Lennart Poettering
ee5f3479e2 device: properly create dependencies 2010-07-13 02:17:26 +02:00
Lennart Poettering
7c9c5d0eb1 units: dm is an awful piece of work 2010-07-13 02:17:06 +02:00
Lennart Poettering
da78e1b444 units: introduce bluetooth.target/printer.target which are activated if the right hardware is plugged in 2010-07-13 02:16:44 +02:00
Lennart Poettering
7c610628cd socket: when going down, flush all queued sockets 2010-07-13 00:52:17 +02:00
Lennart Poettering
ba3e67a785 socket: when the socket is supposed to stop, don't accept any connections anymore 2010-07-13 00:27:27 +02:00
Lennart Poettering
f057408c9c units: introduce emergency.target 2010-07-12 23:49:20 +02:00
Lennart Poettering
2edd4434e5 mount: add automatic start ordering dependencies for mounts 2010-07-12 22:55:27 +02:00
Lennart Poettering
21d21ea42e execute: inherit from original input, not the fixed up 2010-07-12 22:04:59 +02:00
Lennart Poettering
5830833f7c service: allow input from terminal when executing more than one start-pre or stop-post command 2010-07-12 21:56:51 +02:00
Lennart Poettering
85d73053f2 execute: reword comment 2010-07-12 21:53:36 +02:00
Lennart Poettering
3fe5e5d476 util: reset terminal even harder 2010-07-12 21:40:43 +02:00
Lennart Poettering
7bc0351dd8 util: fix error handling in acquire_terminal() 2010-07-12 20:35:14 +02:00
Lennart Poettering
fc9b2a84dc execute: close inherited fds earlier 2010-07-12 20:34:53 +02:00
Lennart Poettering
4a3c7c7952 pam: remove leftover libcgroup inclusion 2010-07-12 18:43:21 +02:00
Lennart Poettering
35d2e7ec19 cgroup: reimplement the last bit of libcgroup functionality natively 2010-07-12 18:16:44 +02:00
Lennart Poettering
dbd821acb4 cgroup: implement cg_get_path natively 2010-07-12 03:15:20 +02:00
Lennart Poettering
3b6fdb5b5a unit: introduce IgnoreDependencyFailure= 2010-07-12 03:07:02 +02:00
Lennart Poettering
f6023656e1 service: trim cgroups if services that are "active" but "exited" 2010-07-12 03:07:02 +02:00
Lennart Poettering
b708e7cea9 execute: optionally ignore return status of invoked commands 2010-07-12 03:07:01 +02:00
Lennart Poettering
a013bd94cc sd-daemon: fix abstract namespace sockaddr for notification socket 2010-07-11 23:49:20 +02:00
Lennart Poettering
c2ad51299a install: fix wrong dbus connection shutdown 2010-07-11 23:02:46 +02:00
Lennart Poettering
b5f776cee9 execute: use right logger socket 2010-07-11 04:38:40 +02:00
Lennart Poettering
983d9c9015 units: turn Wants=shutdown back into Requires=shutdown to avoid removal of jobs due to the impact minimizer 2010-07-11 04:22:00 +02:00
Lennart Poettering
51bc5d4b84 dbus: get rid of last non-private busses 2010-07-11 04:10:28 +02:00
Lennart Poettering
c0bd0cf7ff dbus: don't hit an assert if we sent a changed signal for something not in the dbus queue (i.e. because it was deleted before it was fully created 2010-07-11 03:59:59 +02:00
Lennart Poettering
90d473a1c0 systemctl: turn --replace into --fail 2010-07-11 03:59:59 +02:00
Lennart Poettering
dce3acd2e2 Merge branch 'master' of ssh://git.freedesktop.org/git/systemd 2010-07-11 03:49:22 +02:00
Lennart Poettering
b12c1e7cf7 socket: pass minimal abstract socket names 2010-07-11 02:23:11 +02:00
Lennart Poettering
b574246b4f dbus: use private connections wherever possible 2010-07-11 02:22:46 +02:00
Lennart Poettering
17bb73821c systemctl: move status further down 2010-07-11 01:20:57 +02:00
Lennart Poettering
7740296dcf service: fix minor memory leak 2010-07-11 00:52:28 +02:00
Lennart Poettering
65e92d67b6 manager: free dbus error when ignoring it 2010-07-11 00:52:19 +02:00
Lennart Poettering
fe51822e71 manager: introduce unit path cache to minimize disk accesses 2010-07-11 00:52:00 +02:00
Lennart Poettering
9014a8bd7a dbus: suppress duplicate message when reusing bus for system and session 2010-07-11 00:51:28 +02:00
Lennart Poettering
c6c18be35b cgroup: kill processes, not tasks and other cgroup changes 2010-07-11 00:50:49 +02:00
Lennart Poettering
5509654721 cgroup: make cgroup controller name a constant 2010-07-10 17:38:50 +02:00
Lennart Poettering
fb38518151 unit: trim cgroups when going down 2010-07-10 17:34:42 +02:00
Lennart Poettering
582a507f1a systemctl: show exec status of all exited programs 2010-07-10 15:42:24 +02:00
Lennart Poettering
3f6c78dceb service: allow immediate stopping while starting 2010-07-10 04:52:00 +02:00
Lennart Poettering
82c64bf578 snapshot: fix deserialization 2010-07-10 04:51:03 +02:00
Lennart Poettering
1e001f52d2 main: add a few more useful diagnostic log messages 2010-07-10 04:50:19 +02:00
Lennart Poettering
2e22afe909 execute: add ability to configure the kill signal 2010-07-10 04:49:37 +02:00
Lennart Poettering
73c33e7f22 mount: add implicit umount.target conflicts only in system mode 2010-07-10 04:46:58 +02:00
Lennart Poettering
41e450596a automount: refuse automounts for the root file system 2010-07-10 02:41:25 +02:00
Lennart Poettering
4e67ddd6b3 units: introduce umount.target for unmounting all file systems 2010-07-10 02:41:06 +02:00
Lennart Poettering
b8131a87cc systemctl: show connection counters only for Accept=yes sockets 2010-07-10 00:55:44 +02:00
Lennart Poettering
83bda35801 build-sys: drop special name hack for dbus.service since a native service file is now shipped upstream dbus 2010-07-10 00:22:38 +02:00
Lennart Poettering
25366e094c socket: fix loading of .service files for .socket files 2010-07-09 23:43:16 +02:00
Lennart Poettering
a821caaae1 main: make it possible to run a system daemon along side an aloready running one for testing purposes 2010-07-09 23:43:16 +02:00
Lennart Poettering
71a6f75381 install: properly parse --realize=reload 2010-07-09 23:43:16 +02:00
Lennart Poettering
ca326f6f2d main: introduce $SYSTEMD_SKIP_API_MOUNTS to disable mounting of API FS 2010-07-09 00:03:09 +02:00
Lennart Poettering
b4f10a5e89 install: various improvements 
Rename --start to --realize, to make things less confusing when doing
"systemctl stop --realize foo.service".

Introduce --realize=reload.

Don't talk to systemd when run within a chroot, or when systemd isn't
running.
 2010-07-08 21:39:01 +02:00
Lennart Poettering
bc8c2f5c54 systemctl: short cut things if we aren't root and the user requested a reboot to suppress unnecessary wall message 2010-07-08 21:36:40 +02:00
Kay Sievers
d47b555bb6 systemctl: don't actually reboot/poweroff/halt if only a wtmp update is requested 2010-07-08 21:36:40 +02:00
Lennart Poettering
e34b6159f3 cgls: fix missing initialization 2010-07-08 21:17:41 +02:00
Lennart Poettering
fa776d8e96 cgls: beef up control group dumping and introduce cgls tool 2010-07-08 21:01:42 +02:00
Lennart Poettering
ab35fb1bc6 systemctl: filter and sort member pid of cgroup 2010-07-08 06:08:32 +02:00
Lennart Poettering
f8820b628c service: don't enable native services via legacy sysv symlinks anymore 2010-07-08 05:29:46 +02:00
Lennart Poettering
301056b7a0 util: fix missing memory initialization 2010-07-08 05:23:34 +02:00
Lennart Poettering
c368608323 mount: fix confirm spawn setting 2010-07-08 05:22:34 +02:00
Lennart Poettering
4c90c122af dbus: add missing dbus-errors.h header 2010-07-08 04:24:09 +02:00