shaba/systemd: The systemd System and Service Manager - systemd - Gitea: Git with a cup of tea

IF YOU WOULD LIKE TO GET AN ACCOUNT, please write an email to Administrator. User accounts are meant only to access repo and report issues and/or generate pull requests. This is a purpose-specific Git hosting for BaseALT projects. Thank you for your understanding!

Только зарегистрированные пользователи имеют доступ к сервису! Для получения аккаунта, обратитесь к администратору.

shaba/systemd

mirror of https://github.com/systemd/systemd.git synced 2025-01-18 10:04:04 +03:00

Go to file

Jeremy Linton 2572bf6a39 confidential-virt: add detection for aarch64 CCA

The arm confidential compute architecture (CCA) provides a platform design for
confidential VMs running in a new realm context.

This can be detected by the existence of a platform device exported for the
arm-cca-guest driver, which provides attestation services via the realm
services interface (RSI) to the Realm Management Monitor (RMM).

Like the other methods systemd uses to detect Confidential VM's, checking
the sysfs entry suggests that this is a confidential VM and should only be
used for informative purposes, or to trigger further attestation.

Like the s390 detection logic, the sysfs path being checked is not labeled
as ABI, and may change in the future. It was chosen because its
directly tied to the kernel's detection of the realm service interface rather
to the Trusted Security Module (TSM) which is what is being triggered by the
device entry. The TSM module has a provider string of 'arm-cca-guest' which
could also be used, but that (IMHO) doesn't currently provide any additional
benefit except that it can fail of the module isn't loaded.

More information can be found here:
https://developer.arm.com/documentation/den0125/0300

Signed-off-by: Jeremy Linton <jeremy.linton@arm.com>

2025-01-15 13:51:12 +09:00

.clusterfuzzlite

ci: unpin CFLite

2022-04-26 09:13:57 +00:00

ci: Skip coverage workflow on forks

2025-01-14 11:04:05 +01:00

obs: also trigger Fedora package builds

2025-01-07 13:56:52 +01:00

Revert "semaphore: skip some tests"

2024-12-13 23:43:28 +00:00

catalog: update Polish translation

2024-11-28 13:03:31 +01:00

introduce FOREACH_ELEMENT

2024-04-18 17:39:34 +02:00

docs: fix markup (#35995 )

2025-01-14 15:19:56 +01:00

man: don't suggest using pam_unix.so's use_authtok switch

2024-01-17 23:59:05 +00:00

meson: add install tags for udev and hwdb

2025-01-10 15:15:13 +09:00

boot: Add HWID calculation from SMBIOS strings and matching against a built-in list

2024-11-05 22:29:58 +03:00

confidential-virt: add detection for aarch64 CCA

2025-01-15 13:51:12 +09:00

creds-util: add a concept of "user-scoped" credentials

2024-01-30 17:07:47 +01:00

mkosi: Install libxslt on CentOS/Fedora instead of xsltproc

2025-01-14 16:01:56 +01:00

mkosi: Make sure the /coverage directory exists

2024-12-05 22:03:07 +01:00

mkosi: move drop-in config for sanitizers

2024-12-10 09:46:29 +09:00

mkosi.extra.common

mkosi: Bump device timeout back to default value

2025-01-07 16:20:35 +01:00

mkosi: update fedora commit reference

2025-01-14 11:05:02 +01:00

mkosi: Switch back to btrfs

2024-08-05 15:00:24 +02:00

mkosi.sanitizers

mkosi: drop wrapper for unshare

2024-12-14 17:30:01 +09:00

mkosi.uki-profiles

Rework TEST-86-MULTI-PROFILE-UKI

2024-10-21 17:24:14 +02:00

modprobe: set 'ifb numifbs=0' to avoid autocreating ifb0

2024-01-12 23:24:54 +00:00

network: request non-NULL SSID when a wlan interface is configured as station

2024-07-31 10:06:04 +09:00

po: Translated using Weblate (German)

2025-01-01 11:55:42 +09:00

presets: Don't enable systemd-homed-firstboot.service by default

2024-06-08 11:29:55 +01:00

profile.d: don't bail if $SHELL_* variables are unset

2024-12-11 18:33:41 +00:00

meson: add install tags for udev and hwdb

2025-01-10 15:15:13 +09:00

shell-completion

bash-completion/journalctl: also escape the current input of user unit

2025-01-02 11:50:44 +09:00

confidential-virt: add detection for aarch64 CCA

2025-01-15 13:51:12 +09:00

sysctl.d: Fix pid_max comment

2023-10-31 13:07:49 +01:00

sysusers.d/basic: fix alignment

2024-12-30 21:43:51 +01:00

oomd: support reloading configuration at runtime

2025-01-14 14:42:23 +01:00

Revert "link README.logs from tmpfiles.d/legacy.conf only if available"

2024-11-29 14:18:15 +01:00

tools: drop workaround for CentOS 7

2025-01-07 02:05:12 +09:00

oomd: support reloading configuration at runtime

2025-01-14 14:42:23 +01:00

xorg/50-systemd-user: add a full license header

2021-10-01 14:45:00 +02:00

.clang-format

Improve the formatting by adding AlignArrayOfStructures and setting it to Right(right justify)

2024-03-06 15:24:23 +01:00

.ctags

editors: Prevent ctags from following symlinks

2019-02-15 11:01:20 -08:00

.dir-locals.el

scripts: use 4 space indentation

2019-04-12 08:30:31 +02:00

.editorconfig

editorconfig: add NEWS whitespace configuration

2023-10-26 22:41:03 +01:00

.gitattributes

Mark all base64 files as generated

2023-08-16 12:49:45 +02:00

.gitignore

Add .venv to gitignore

2024-12-20 15:33:32 +00:00

.mailmap

mailmap: fix entries for Tobias Klauser

2024-12-11 13:55:07 +00:00

.packit.yml

packit: Simplify configuration

2025-01-07 15:18:50 +01:00

.pylintrc

Add .pylintrc to globally suppress warnings we don't really care about

2023-08-10 18:13:29 +02:00

.vimrc

vimrc: explicitly set shiftwidth for the C file type

2023-09-18 13:11:45 +02:00

.ycm_extra_conf.py

ycm: add doc string for all the functions in configuration file

2017-11-29 13:21:49 -07:00

LICENSE.GPL2

relicense to LGPLv2.1 (with exceptions)

2012-04-12 00:24:39 +02:00

LICENSE.LGPL2.1

licence: remove references to old FSF address

2012-12-17 11:41:31 +01:00

meson_options.txt

user-classification: add new "foreign" UID range

2025-01-08 21:41:03 +01:00

meson.build

user-classification: add new "foreign" UID range

2025-01-08 21:41:03 +01:00

meson.version

meson: update version to 258~devel

2024-12-10 19:30:06 +00:00

mkosi.clangd

mkosi.clangd: Fail on command errors

2024-12-20 20:09:36 +01:00

mkosi.clean

mkosi: Add missing SPDX line

2024-09-22 15:23:08 +02:00

mkosi.conf

mkosi: replace deprecated settings and command with new ones

2025-01-06 12:00:43 +01:00

mkosi.functions

mkosi: Move copying packages to the output directory to the postinst script

2024-10-29 11:28:47 +01:00

mkosi.postinst.chroot

mkosi: Fix authselect systemd-homed feature name

2024-12-21 21:03:03 +01:00

mypy.ini

Move mypy.ini and ruff.toml to top level

2024-11-24 16:47:20 +01:00

NEWS

NEWS: mention mesg y/n

2025-01-14 15:38:39 +01:00

README

Bump minimum kernel baseline to 5.4, recommended version to 5.7

2025-01-07 22:43:45 +01:00

README.md

README: add OBS status icon and link to instructions to add bleeding edge repo

2025-01-11 14:19:02 +09:00

ruff.toml

Move mypy.ini and ruff.toml to top level

2024-11-24 16:47:20 +01:00

TODO

update TODO

2025-01-15 00:26:00 +01:00

README.md

System and Service Manager

Details

Most documentation is available on systemd's web site.

Assorted, older, general information about systemd can be found in the systemd Wiki.

Information about build requirements is provided in the README file.

Consult our NEWS file for information about what's new in the most recent systemd versions.

Please see the Code Map for information about this repository's layout and content.

Please see the Hacking guide for information on how to hack on systemd and test your modifications.

Please see our Contribution Guidelines for more information about filing GitHub Issues and posting GitHub Pull Requests.

When preparing patches for systemd, please follow our Coding Style Guidelines.

If you are looking for support, please contact our mailing list, join our IRC channel #systemd on libera.chat or Matrix channel

Stable branches with backported patches are available in the stable repo.

We have a security bug bounty program sponsored by the Sovereign Tech Fund hosted on YesWeHack

Repositories with distribution packages built from git main are available on OBS