shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-01-26 14:04:03 +03:00
Code
70,995 Commits 4 Branches 400 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Ronan Pigott 67d0ce8843 resolved: limit the number of signature validations in a transaction 
It has been demonstrated that tolerating an unbounded number of dnssec
signature validations is a bad idea. It is easy for a maliciously
crafted DNS reply to contain as many keytag collisions as desired,
causing us to iterate every dnskey and signature combination in vain.

The solution is to impose a maximum number of validations we will
tolerate. While collisions are not hard to craft, I still expect they
are unlikely in the wild so it should be safe to pick fairly small
values.

Here two limits are imposed: one on the maximum number of invalid
signatures encountered per rrset, and another on the total number of
validations performed per transaction.
2024-02-26 01:55:57 -07:00
.clusterfuzzlite
ci: unpin CFLite
2022-04-26 09:13:57 +00:00
.github
build(deps): bump systemd/mkosi
2024-02-09 16:28:12 +01:00
.semaphore
semaphore: temporarily pin autopkgtest to v5.32
2024-02-09 11:18:25 +01:00
catalog
bulgarian: use "RateLimitIntervalSec" rather than "RateLimitInterval"
2024-02-04 02:42:09 +09:00
coccinelle
cocci: merge mfree.cocci and mfree_return.cocci (#30838)
2024-01-09 12:24:37 +09:00
docs
docs: Use v255~rc1 instead of v255-rc1
2024-02-14 15:36:33 +01:00
factory
man: don't suggest using pam_unix.so's use_authtok switch
2024-01-17 23:59:05 +00:00
hwdb.d
hwdb: add resolution setting for GAOMON S620
2024-02-08 13:12:10 +09:00
LICENSES
LICENSES/README.md: fix syntax
2023-07-08 22:33:53 +00:00
man
Merge pull request #31283 from CodethinkLabs/vmspawn/start_from_template
2024-02-14 13:55:04 +00:00
mime
creds-util: add a concept of "user-scoped" credentials
2024-01-30 17:07:47 +01:00
mkosi.conf.d
Update to mkosi v19
2023-11-28 19:54:58 +01:00
mkosi.images
Install pacman in Arch Linux image
2024-02-09 12:41:54 +00:00
modprobe.d
modprobe: set 'ifb numifbs=0' to avoid autocreating ifb0
2024-01-12 23:24:54 +00:00
network
network: fix 6rd tunnel link section name
2024-01-12 21:42:04 +00:00
po
po: Translated using Weblate (Korean)
2024-02-13 10:49:37 +01:00
presets
preset: enable homed sidecar services
2024-02-08 22:44:00 +00:00
rules.d
Fix systemd-backlight ignoring numbered kbd_backlight entries
2024-01-22 22:03:35 +00:00
shell-completion
user-record: Add languages field
2024-02-13 17:39:14 -05:00
src
resolved: limit the number of signature validations in a transaction
2024-02-26 01:55:57 -07:00
sysctl.d
sysctl.d: Fix pid_max comment
2023-10-31 13:07:49 +01:00
sysusers.d
Revert "sysusers.d: create the user for systemd-journal-upload.service"
2023-12-04 19:44:10 +01:00
test
test: fix typo
2024-02-14 04:04:12 +09:00
tmpfiles.d
meson: don't install broken tmpfiles config with sshd?confdir == 'no'
2024-01-30 17:56:21 +00:00
tools
tools: fix typo
2024-02-14 03:58:35 +09:00
units
vmspawn: add template unit to start systemd-vmspawn -M
2024-02-13 12:31:03 +00:00
xorg
xorg/50-systemd-user: add a full license header
2021-10-01 14:45:00 +02:00
.clang-format
clang-format: Adjust style of pointers
2022-05-30 04:00:54 +09:00
.ctags
editors: Prevent ctags from following symlinks
2019-02-15 11:01:20 -08:00
.dir-locals.el
scripts: use 4 space indentation
2019-04-12 08:30:31 +02:00
.editorconfig
editorconfig: add NEWS whitespace configuration
2023-10-26 22:41:03 +01:00
.gitattributes
Mark all base64 files as generated
2023-08-16 12:49:45 +02:00
.gitignore
Update to mkosi v19
2023-11-28 19:54:58 +01:00
.mailmap
mailmap: "reduce contributor count by 13"
2023-08-16 12:49:42 +02:00
.packit.yml
Revert "packit: temporarily build systemd without BPF stuff"
2024-02-11 16:45:03 +01:00
.pylintrc
Add .pylintrc to globally suppress warnings we don't really care about
2023-08-10 18:13:29 +02:00
.vimrc
vimrc: explicitly set shiftwidth for the C file type
2023-09-18 13:11:45 +02:00
.ycm_extra_conf.py
ycm: add doc string for all the functions in configuration file
2017-11-29 13:21:49 -07:00
configure
configure: update meson invocation
2023-07-29 14:08:06 +02:00
LICENSE.GPL2
relicense to LGPLv2.1 (with exceptions)
2012-04-12 00:24:39 +02:00
LICENSE.LGPL2.1
licence: remove references to old FSF address
2012-12-17 11:41:31 +01:00
Makefile
tree-wide: add spdx header on all scripts and helpers
2021-01-28 09:55:35 +01:00
meson_options.txt
dissect: add --make-archive option to convert DDI to tarball
2024-01-25 18:47:39 +01:00
meson.build
meson: do not attempt to install tests when they are disabled
2024-02-14 12:41:09 +01:00
mkosi.conf
mkosi: Build a directory image by default
2024-01-12 16:19:48 +01:00
mkosi.kernel.config
mkosi: Don't disable CONFIG_USB
2023-09-06 12:58:30 +02:00
NEWS
Merge pull request #31181 from fbuihuu/gpt-auto-more-defensive
2024-02-12 19:12:17 +08:00
README
README: bump the gcc baseline to 8.4
2024-02-05 10:45:10 +00:00
README.md
README: update link to CentOS CI
2024-02-09 18:08:58 +09:00
TODO
update TODO
2024-02-14 10:56:35 +01:00

README.md

Systemd

System and Service Manager

Semaphore CI 2.0 Build Status
Coverity Scan Status
OSS-Fuzz Status
CIFuzz
CII Best Practices
CentOS CI - CentOS 9
CentOS CI - Arch
CentOS CI - Arch (sanitizers)
Fossies codespell report
Weblate
Coverage Status
Packaging status
OpenSSF Scorecard

Details

Most documentation is available on systemd's web site.

Assorted, older, general information about systemd can be found in the systemd Wiki.

Information about build requirements is provided in the README file.

Consult our NEWS file for information about what's new in the most recent systemd versions.

Please see the Code Map for information about this repository's layout and content.

Please see the Hacking guide for information on how to hack on systemd and test your modifications.

Please see our Contribution Guidelines for more information about filing GitHub Issues and posting GitHub Pull Requests.

When preparing patches for systemd, please follow our Coding Style Guidelines.

If you are looking for support, please contact our mailing list, join our IRC channel #systemd on libera.chat or Matrix channel

Stable branches with backported patches are available in the stable repo.

Description
The systemd System and Service Manager
cinitlinuxservicessystemsystemd
Readme 556 MiB
Languages
C 89.2%
Python 5.3%
Shell 4.1%
Meson 1.2%