shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-01-11 09:18:07 +03:00
Code
43,179 Commits 4 Branches 400 Tags 553 MiB
4523f1db0f
Commit Graph

4838 Commits

Author SHA1 Message Date
Lennart Poettering
f2e5e70410 man: document that scope units can fail, but not due to process exit statusses 
Let's clarify that scope units can fail, but not due to process exit
statusses.

This hopefully clears up some confusion that manifested in #14142: scope
units can fail, but for other reasons than assumed there.

Fixes: #14142
 2020-01-09 11:04:27 +01:00
Yu Watanabe
125c7814fa
Merge pull request #14523 from keszybz/refactorings 
Refactorings inspired by recent pull requests
 2020-01-09 12:50:11 +09:00
Lennart Poettering
0aa9bffe10
Merge pull request #14448 from yuwata/network-permanent-mac-address 
network, udev: support permanent mac address
 2020-01-08 15:36:27 +01:00
Lennart Poettering
3bfcfcf942
Merge pull request #14518 from keszybz/interface-text 
doc: tweak grammar in CONTAINER_INTERFACE description
 2020-01-08 14:26:33 +01:00
Lennart Poettering
48dfa8b0e1
Merge pull request #14512 from poettering/root-image-devices 
Make RootImage= work reliable with DeviceAllow= in the mix
 2020-01-08 12:18:38 +01:00
Zbigniew Jędrzejewski-Szmek
d9b204544b man: use xi:include to avoid duplication 
... and fix some unwarranted discrepancies between the two man pages.
 2020-01-08 11:43:09 +01:00
Zbigniew Jędrzejewski-Szmek
629548c405
Merge pull request #14488 from yuwata/networkctl-show-logs 
networkctl: status command also shows logs of networkd
 2020-01-08 10:49:39 +01:00
Zbigniew Jędrzejewski-Szmek
9552209292 man: fix option name 2020-01-08 10:39:44 +01:00
Zbigniew Jędrzejewski-Szmek
af6a2a1e57
Merge pull request #14494 from poettering/container-interface 
Let's import the container interface description text from the fdo wiki
 2020-01-08 09:58:57 +01:00
Yu Watanabe
4bb7cc8287 network, udev: introduce PermanentMACAddress= setting in [Match] section 
Closes #13983.
 2020-01-08 17:54:54 +09:00
Zbigniew Jędrzejewski-Szmek
31ffbfd101
Merge pull request #14510 from poettering/net-naming-scheme-fixlets 
some net naming scheme documentation fixes
 2020-01-08 09:46:49 +01:00
Lennart Poettering
65ad4ad89d
Merge pull request #14499 from yuwata/network-gateway-dhcp 
network: static route via DHCP gateway
 2020-01-07 19:17:51 +01:00
Lennart Poettering
3a827125e7 man: stop recommending modprobe -abq in ExecStartPre= 2020-01-07 19:00:56 +01:00
Lennart Poettering
a1686563de man: fix documentation of IBM VIO device naming 
We generate "v" in two different ways, and they got mixed up.
 2020-01-07 18:02:15 +01:00
Lennart Poettering
e232c307c0 man: slightly extend documentation on difference between ID_NET_NAME_ONBOARD and ID_NET_LABEL_ONBOARD 2020-01-07 18:01:56 +01:00
Yu Watanabe
10c71c3605 networkctl: status command also shows logs of networkd 
Closes #14050.
 2020-01-07 22:20:37 +09:00
Yu Watanabe
b6cea5496a man: drop unnecessary white space 2020-01-07 13:25:13 +01:00
Yu Watanabe
1985c54ff3 network: static routes via DHCP gateway 
This makes Gateway= also take "DHCP". If "DHCP" is set, then the gateway
address provided by DHCP or IPv6 RA is used.

Closes #8213.
 2020-01-07 19:10:54 +09:00
Lennart Poettering
53dc5fbc41 man: change links to container interface doc to https://systemd.io/ 
Now that we converted the documentation we should also link to it.
 2020-01-06 18:15:07 +01:00
Lennart Poettering
dc5737470e
Merge pull request #14194 from yuwata/network-multipath-routing-12541 
network: introduce multipath routing
 2020-01-03 15:38:03 +01:00
Ansgar Burchardt
72a86dd5ec man: tmpfiles.d: only list "v" once 2020-01-03 20:22:48 +09:00
Ansgar Burchardt
f6bc26ee7f man: tmpfiles.d: "b", "c" options require major and minor numbers 2020-01-03 20:22:31 +09:00
Kai Krakow
bc5ea049f2 nspawn: Generate unique short veth names 
This commit lowers the chance of having veth name conflicts for machines
created with similar names.

Replaces: #12865
Fixes: #13417
 2020-01-02 20:05:42 +01:00
Lennart Poettering
49d418d4ab
Merge pull request #14444 from yuwata/network-codel-more 
network: more CoDel settings
 2020-01-02 14:51:55 +01:00
Topi Miettinen
412a6c646c systemd.exec: document the file system for EnvironmentFile paths 
Files specified with EnvironmentFile are read from PID1 mount namespace, before
any file system operations like RootImage or BindPaths are in effect.
 2020-01-02 14:21:16 +01:00
Tobias Stoeckmann
be78e0f07b systemd-analyze: fixed typo in documentation 
The example shows the output of critical-chain, which means
that the title is wrong.
 2020-01-02 13:35:34 +01:00
Yu Watanabe
b078e52855 network: add more settings for CoDel 2019-12-28 22:25:12 +09:00
Susant Sahani
c695dcf929 network: Add support to configure DHCPv4 route MTU 
This is useful for transitioning systems from small frames to jumbo frames.

Closes #14302
 2019-12-28 21:37:26 +09:00
Susant Sahani
a9a5d632da network: tc introduce codel 
Please see http://man7.org/linux/man-pages/man8/tc-codel.8.html
 2019-12-28 21:35:39 +09:00
Felipe Sateler
11fcfc5398 Fix several typos in documentation 
Found by lintian
 2019-12-24 14:45:40 +01:00
Lennart Poettering
31ca5166b6 man: document /var/tmp/ and /var/ handling in systemd-gpt-auto-generator man page 
And some other fixes and additions.
 2019-12-23 14:44:48 +01:00
Lennart Poettering
19ac32cdd6 docs: import discoverable partitions spec 
This was previously available here:

https://www.freedesktop.org/wiki/Specifications/DiscoverablePartitionsSpec/

Let's pull it into our repository.
 2019-12-23 14:44:33 +01:00
Susant Sahani
0f3ff4eae2 network: DHCP4 introduce send decline 2019-12-21 00:26:44 +09:00
Lennart Poettering
1cb342447d
Merge pull request #14329 from anitazha/user_invocation_id 
export user units' InvocationID and use as _SYSTEMD_INVOCATION_ID
 2019-12-20 10:20:21 +01:00
Lennart Poettering
10ad50d38c
Merge pull request #14378 from keszybz/unit-docs 
Unit documentation and build-system tweaks
 2019-12-19 19:00:14 +01:00
Zbigniew Jędrzejewski-Szmek
277519db51 man: add section about user manager units 2019-12-19 13:32:31 +01:00
Zbigniew Jędrzejewski-Szmek
f71502c49f man: add remote-*.targets to the bootup sequence 
I think this makes it easier to see the difference between local and remote
mounts.

Make the graph a bit narrower while at it.
 2019-12-19 13:32:31 +01:00
Lennart Poettering
17ef83b231
Merge pull request #14388 from anitazha/man_uid_updates 
man: document uids for user journals
 2019-12-19 12:45:59 +01:00
Zbigniew Jędrzejewski-Szmek
4186441bbd Revert "cryptsetup: umount encrypted devices before detaching it during shutdown" 
This reverts commit 362c378291.

This commit introduced an ordering loop: remote-cryptsetup.target was both
before and after remote-fs-pre.target. It also globally ordered all cryptsetup
volumes before all mounts. Such global ordering is problematic if people have
stacked storage. Let's look for a different solution.

See https://github.com/systemd/systemd/pull/14378#discussion_r359460109.
 2019-12-19 10:42:14 +01:00
Anita Zhang
a1533ad73f [man] note which UID ranges will get user journals 
Fixes #13926
 2019-12-18 16:12:43 -08:00
Anita Zhang
d59fc29bb7 [man] fix URL 2019-12-18 16:08:53 -08:00
Anita Zhang
5749f855a7 core: PrivateUsers=true for (unprivileged) user managers 
Let per-user service managers have user namespaces too.

For unprivileged users, user namespaces are set up much earlier
(before the mount, network, and UTS namespaces vs after) in
order to obtain capbilities in the new user namespace and enable use of
the other listed namespaces. However for privileged users (root), the
set up for the user namspace is still done at the end to avoid any
restrictions with combining namespaces inside a user namespace (see
inline comments).

Closes #10576
 2019-12-18 11:09:30 -08:00
Yu Watanabe
de697db05b network: introduce AddPrefixRoute= and deprecate PrefixRoute= 
PrefixRoute= was added by e63be0847c,
but unfortunately, the meaning of PrefixRoute= is inverted; when true
IFA_F_NOPREFIXROUTE flag is added. This introduces AddPrefixRoute=
setting.
 2019-12-18 16:32:31 +01:00
Yu Watanabe
6ff5cc6b7a network: introduce multipath route 
Closes #12541.
 2019-12-18 22:12:57 +09:00
Lennart Poettering
ac6431dad9 man: add man page for sd_bus_message_sensitive() 2019-12-18 09:10:34 +01:00
Lennart Poettering
2ccf0ff6e8 man: tweaks to the crypttab(5) man page 2019-12-17 18:53:45 +01:00
Lennart Poettering
35a05d8d5e man: whitespace fix 2019-12-17 18:02:04 +01:00
Lennart Poettering
76b73ce21c man: we support growing xfs too these days 2019-12-17 18:02:04 +01:00
Lennart Poettering
13b6c4c8de
Merge pull request #14267 from poettering/pkcs11-cryptsetup 
just the pkcs11 hookup for classic cryptsetup (/etc/crypttab) split out of the homed PR
 2019-12-17 15:30:32 +01:00
Yu Watanabe
6e5df4036f
Merge pull request #14337 from yuwata/network-tc-fq-more 
network: tc: introduce more FQ settings
 2019-12-17 23:30:10 +09:00
Yu Watanabe
ef1d2c07f9 udev: introduce AlternativeNamesPolicy= setting 2019-12-17 15:44:43 +09:00
Yu Watanabe
bb181dd4a6 udev: do not fail if kernel does not support alternative names 2019-12-17 15:43:50 +09:00
Lennart Poettering
3b5cd25f4d
Merge pull request #14196 from keszybz/gpt-auto-generator-debugging 
gpt-auto-generator debugging
 2019-12-16 09:24:02 +01:00
Yu Watanabe
572b21d96c network: make Name= in [Match] support alternative names of interfaces 2019-12-16 10:55:56 +09:00
Yu Watanabe
a5053a158b udev: support AlternativeName= setting in .link file 2019-12-16 10:52:22 +09:00
Yu Watanabe
e83562e51e network: tc: add more settings for FQ 2019-12-13 23:36:17 +09:00
Yu Watanabe
ac810b75c1 network: tc: support more attributes for FQ-CoDel 2019-12-12 23:36:48 +09:00
Yu Watanabe
3d85f19ced
Merge pull request #14305 from ssahani/tc-fq 
network tc: inroduce FQ - Fair Queue traffic policing
 2019-12-12 21:16:38 +09:00
Susant Sahani
7234b91596 network tc: inroduce FQ - Fair Queue traffic policing 
Please see http://man7.org/linux/man-pages/man8/tc-fq.8.html
 2019-12-12 17:26:20 +09:00
Anita Zhang
ef88639028 man: document INVOCATION_ID and USER_INVOCATION_ID journal fields 2019-12-11 20:50:10 -08:00
Lennart Poettering
335498ca57 docs: direct to systemd.io version of naming scheme docs 
The document was imported back in
f9e6d49904. Let's make sure we actually
point to that version rather than the old one on freedesktop.
 2019-12-11 12:09:02 +01:00
Lennart Poettering
955ed5d540 man: fix typo in net-naming-scheme man page 2019-12-11 12:08:34 +01:00
cheese1
f32d15b0e4 man: fix typos (#14304) 2019-12-11 18:33:13 +09:00
Susant Sahani
4e5ef14919 network tc: Add support to conkfigure CoDel - Controlled-Delay Active Queue Management algorithm 
```
$ tc qdisc show dev dummy99
qdisc fq_codel 8005: dev dummy99 root refcnt 2 limit 1000p flows 1024 quantum 1514 target 5.0ms interval 100.0ms memory_limit 32Mb ecn
$ network cat dumm99.network
[Match]
Name=dummy99

[TrafficControlQueueingDiscipline]
Parent=root
FairQueuingControlledDelayPacketLimit=1000

```
 2019-12-11 00:06:31 +09:00
Susant Sahani
d808102008 network tc: qdisc parent add support to set ingress 
```
$ network tc qdisc
qdisc noqueue 0: dev dummy99 root refcnt 2
qdisc ingress ffff: dev dummy99 parent ffff:fff1 ----------------

$ network cat dumm99.network
[Match]
Name=dummy99

[TrafficControlQueueingDiscipline]
Parent=ingress
```
 2019-12-11 00:06:31 +09:00
Lennart Poettering
c2d54475c4 man: document pkcs#11 hookup in /etc/crypttab 2019-12-09 19:25:25 +01:00
Yu Watanabe
dcfc23ae77 network: tc: add more options for TBF 2019-12-10 01:28:38 +09:00
Yu Watanabe
debda5a4e5
Merge pull request #14273 from ssahani/ifb 
network: introduce IFB
 2019-12-08 05:13:08 +09:00
Susant Sahani
3295a461b3 network: introduce ifb (Intermediate Functional Block) 
Intermediate Functional Block

The Intermediate Functional Block (ifb) pseudo network interface acts as a QoS concentrator for multiple different sources of traffic. Packets from or to other interfaces have to be redirected to it using the mirred action in order to be handled, regularly routed traffic will be dropped. This way, a single stack of qdiscs, classes and filters can be shared between multiple interfaces.

Here's a simple example to feed incoming traffic from multiple interfaces through a Stochastic Fairness Queue (sfq):

(1) # modprobe ifb
(2) # ip link set ifb0 up
(3) # tc qdisc add dev ifb0 root sfq
 2019-12-07 15:29:50 +01:00
Susant Sahani
051e77cac1 network: introduce DAD for static address 
Closes #2527.
 2019-12-06 23:29:07 +09:00
Zbigniew Jędrzejewski-Szmek
36f43076b9
Merge pull request #14235 from fbuihuu/cryptsetup-fixes 
Cryptsetup fixes
 2019-12-06 12:46:42 +01:00
Franck Bui
362c378291 cryptsetup: umount encrypted devices before detaching it during shutdown 
This is done by ordering local-fs-pre.target and remote-fs-pre.target after
cryptsetup.target and remote-cryptsetup.target respectively.

Fixes: #8472
 2019-12-05 11:43:05 +01:00
Franck Bui
1dc85eff1d crypsetup: introduce x-initrd.attach option 
This option is an indication for PID1 that the entry in crypttab is handled by
initrd only and therefore it shouldn't interfer during the usual start-up and
shutdown process.

It should be primarily used with the encrypted device containing the root FS as
we want to keep it (and thus its encrypted device) until the very end of the
shutdown process, i.e. when initrd takes over.

This option is the counterpart of "x-initrd.mount" used in fstab.

Note that the slice containing the cryptsetup services also needs to drop the
usual shutdown dependencies as it's required by the cryptsetup services.

Fixes: #14224
 2019-12-05 11:43:02 +01:00
Anita Zhang
da4dd97405
Merge pull request #14173 from ssahani/tc-sfq 
network: tc: introduce sfq and tbf
 2019-12-04 16:14:11 -08:00
Guilhem Lettron
2e22a54f4e Implement SNI when using DNS-over-TLS 
Some DNS providers need SNI to identify client.

This can be used by adding #name to a DNS.
Example:
[Resolve]
DNS=192.168.1.1#example.com
 2019-12-04 23:24:06 +09:00
Lennart Poettering
ef560d8b06
Merge pull request #13886 from poettering/sd-event-pidfd 
add pidfd support to sd-event (but not yet PID 1)
 2019-12-04 13:13:18 +01:00
Susant Sahani
9942b71089 network: tc introduce sfq - Stochastic Fairness Queueing 
Stochastic Fairness Queueing is a classless queueing discipline.
SFQ does not shape traffic but only schedules the transmission of packets, based on 'flows'.
The goal is to ensure fairness so that each flow is able to send data in turn,
thus preventing any single flow from drowning out the rest.
 2019-12-04 20:58:17 +09:00
Susant Sahani
ba5841b520 networkd tc: introduce tbf 
See https://linux.die.net/man/8/tc-tbf
 2019-12-04 20:55:48 +09:00
Charles (Chas) Williams
c0dd326953 man: document journal rate limit burst multiplier 
The actual burst limit is modified by the remaining disk space. This
isn't mentioned anywhere in the available documentation and might be a
source of surprise for an end user expecting certain behaviors.
 2019-12-04 10:58:15 +01:00
Lennart Poettering
8089643328 man: document the new sd-event pidfd magic 2019-12-04 10:36:10 +01:00
Lennart Poettering
b350807200 man: mention that SIGCHLD has to be blocked before using sd_event_add_child() 2019-12-04 10:35:56 +01:00
Lennart Poettering
68765d94fe man: don't claim we'd unblock the specified signal in sd_event_add_signal() 
We don't, the signal remains blocked. We use signalfd() to be able to
read the signal events without unblocking the signal.

While we are at it, mention that pthread_sigmask() is fine too.
 2019-12-04 10:35:42 +01:00
Lennart Poettering
b51d61fec6
Merge pull request #14177 from keszybz/use-initrd.target 
Use initrd.target in the initramfs
 2019-12-04 10:30:32 +01:00
Lennart Poettering
68d58f3869 pid1: add new kernel cmdline arg systemd.cpu_affinity= 
Let's allow configuration of the CPU affinity via the kernel cmdline,
overriding CPUAffinity= in /etc/systemd/system.conf

Prompted by:

https://lists.freedesktop.org/archives/systemd-devel/2019-November/043754.html
 2019-12-04 10:28:43 +01:00
Zbigniew Jędrzejewski-Szmek
b50a3a1565 gpt-auto-generator: make it easier to notice if boot loader support is missing 
The docs didn't talk about this, so let's add an explicit mention that the
boot loader must cooperate. And also make the message from the generator
notice level. This should help people who are trying to mix grub and the
gpt auto logic.
 2019-11-30 17:42:00 +01:00
afg
c152a2ba54 nspawn: allow Capability=all in systemd.nspawn [EXEC] section 
Just like --capability=all is allowed in the systemd-nspawn
command line.
 2019-11-29 14:42:27 +01:00
Zbigniew Jędrzejewski-Szmek
2b1daf24dc man: document initrd.target 2019-11-28 19:59:33 +01:00
Yu Watanabe
e681a2ee4d man: use literal tag at one more place 2019-11-28 19:50:12 +01:00
Lennart Poettering
0bca283127 man: document sd_event_source_set_floating() 
Let's make sure we get back to 100% man page documentation coverage of
our sd-event APIs. We are bad enough at the others, let's get these ones
right at least.
 2019-11-29 02:48:41 +09:00
Jan Tojnar
88eb051972 man: use mkswap@ instead of makeswap@ 
That is what is linked from systemd.swap(5) and also what the systemd.generator produces.
 2019-11-28 15:46:21 +01:00
Lennart Poettering
870a2d85d0 man: don't claim journalctl would still use signals 
It's using the varlink interface these days.
 2019-11-28 14:33:31 +01:00
Lennart Poettering
5a5bd9f7e0 man: add reference to journald man page from systemd.journal-fields(7) 
We had none so far. Which is weird.
 2019-11-28 14:33:01 +01:00
Lennart Poettering
d58b613bbb man: apparently we lowercased STDOUT/STDERR everywhere else in docs, do so here too 2019-11-28 14:25:38 +01:00
Lennart Poettering
d18df32d82 man: drop reference to machined, add one for journald instead 
We dropped documentation from sd_journal_open_container() long ago
(since the call is obsolete), hence drop the reference to machined. But
add one in for journald instead.
 2019-11-28 14:22:12 +01:00
Paul Menzel
a19b9a3827 man/systemd.link: Add missing verb *be* 2019-11-27 13:35:29 +09:00
Yu Watanabe
f5c3892266
network: also assume Table=local for ipv6 route if Type=local, broadcast, anycast or nat (#14148) 
Also, if Type=multicast and scope is not set, then assume Scope=link.

Fixes #14122.
 2019-11-26 12:41:54 +09:00
Yu Watanabe
cfbb1c6def
Merge pull request #14134 from keszybz/variables-and-docs 
Documentation and option parsing fixes
 2019-11-26 12:40:30 +09:00
Zbigniew Jędrzejewski-Szmek
6a5b75dbcc man: refer to systemd.syntax(7) from systemd.nspawn(5) 
systemd.nspawn(5) contained a partial repeat of the stuff that is now in the
dedicated man page. Let's just refer to that.

While at it, do s/searched/searched for/ where appropriate and reword some
sentences for brevity.
 2019-11-25 14:03:09 +01:00
Steve Ramage
81a4108180 man: restores ConditionVirtualization documentation (#14138) 
Resolves #14137. Error introduced in 337b733449.
 2019-11-25 08:31:39 +01:00
Zbigniew Jędrzejewski-Szmek
3d58bfc01c man: document all pager variables for systemctl and systemd 
In those two pages, we need to include individual entries with xi:include to
merge the list less-variables.xml with the other entries, which is obviously
error prone. All variables are supported in both tools so add them.
 2019-11-24 13:59:32 +01:00