shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-03-09 12:58:26 +03:00
Code
58,196 Commits 4 Branches 403 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Topi Miettinen ab51fd9dbd network: firewall integration with NFT sets 
New directives `NFTSet=`, `IPv4NFTSet=` and `IPv6NFTSet=` provide a method for
integrating configuration of dynamic networks into firewall rules with NFT
sets.

/etc/systemd/network/eth.network
```
[DHCPv4]
...
NFTSet=netdev:filter:eth_ipv4_address
```

```
table netdev filter {
        set eth_ipv4_address {
                type ipv4_addr
                flags interval
        }
        chain eth_ingress {
                type filter hook ingress device "eth0" priority filter; policy drop;
                ip saddr != @eth_ipv4_address drop
                accept
        }
}
```
```
sudo nft list set netdev filter eth_ipv4_address
table netdev filter {
        set eth_ipv4_address {
                type ipv4_addr
                flags interval
                elements = { 10.0.0.0/24 }
        }
}
```
2022-06-08 16:12:25 +00:00
.clusterfuzzlite
ci: unpin CFLite
2022-04-26 09:13:57 +00:00
.github
ci: build systemd with clang with -Dmode=release --optimization=2
2022-06-05 16:26:54 +00:00
.lgtm/cpp-queries
ci: pack-ify our custom CodeQL queries and enable them in Actions
2021-12-07 14:57:09 +01:00
.semaphore
semaphoreci: re-enable rebooting tests
2022-04-07 14:53:49 +09:00
catalog
Move message repeat
2022-06-01 00:20:30 +09:00
coccinelle
coccinelle: don't try to use IN_SET() in assert_cc()
2022-05-30 18:17:11 +02:00
docs
sd-bus: drop D-Bus version 2 format support
2022-06-01 03:41:15 +09:00
factory
meson: also allow setting GIT_VERSION via templates
2022-04-05 22:18:31 +02:00
hwdb.d
hwdb: Add accel orientation quirk for the Aya Neo Next
2022-06-06 16:35:17 +02:00
LICENSES
network: license all config files as CC0
2022-01-12 16:05:59 +01:00
man
network: firewall integration with NFT sets
2022-06-08 16:12:25 +00:00
mkosi.default.d
mkosi: drop libiptc from build for Fedora
2022-05-13 04:21:27 +09:00
modprobe.d
meson: install the right README file in modprobe.d
2021-07-07 14:52:05 +02:00
network
network: add example file that enables DHCP on ethernet links
2022-01-12 16:05:59 +01:00
po
Update Bulgarian translation
2022-05-31 16:34:25 +02:00
presets
units: enable systemd-network-generator by default
2021-12-16 09:49:39 +01:00
rules.d
meson: install 70-power-switch.rules
2022-05-19 05:04:58 +09:00
shell-completion
bash-completion: resolvectl: add missing options and verb
2022-05-08 14:14:28 +02:00
src
network: firewall integration with NFT sets
2022-06-08 16:12:25 +00:00
sysctl.d
meson: also allow setting GIT_VERSION via templates
2022-04-05 22:18:31 +02:00
sysusers.d
Use descriptive name for nobody
2022-05-27 22:09:24 +01:00
test
network: firewall integration with NFT sets
2022-06-08 16:12:25 +00:00
tmpfiles.d
meson: Sort lines in tmpfiles.d/meson.build
2022-05-03 20:46:16 +02:00
tools
meson: Switch default-locale default to C.UTF-8
2022-06-04 05:08:37 +09:00
units
tree-wide: replace obsolete wiki links with systemd.io/manpages
2022-05-21 14:29:14 +02:00
xorg
xorg/50-systemd-user: add a full license header
2021-10-01 14:45:00 +02:00
.clang-format
clang-format: Adjust style of pointers
2022-05-30 04:00:54 +09:00
.ctags
editors: Prevent ctags from following symlinks
2019-02-15 11:01:20 -08:00
.dir-locals.el
scripts: use 4 space indentation
2019-04-12 08:30:31 +02:00
.editorconfig
docs: configure editorconfig for css and html
2022-05-17 21:13:17 +02:00
.gitattributes
gitattributes: introduce and use "generated" attribute
2021-10-18 09:42:55 +02:00
.gitignore
git: ignore manifest
2022-05-15 15:35:46 +01:00
.lgtm.yml
Revert "lgtm: disable cpp/missing-return (again)"
2022-04-16 10:59:29 +00:00
.mailmap
mailmap: two more names
2021-03-30 13:17:58 +02:00
.packit.yml
Packit: build SRPMs in Copr
2022-03-09 09:52:41 +00:00
.vimrc
scripts: use 4 space indentation
2019-04-12 08:30:31 +02:00
.ycm_extra_conf.py
ycm: add doc string for all the functions in configuration file
2017-11-29 13:21:49 -07:00
configure
tools: shellcheck-ify tool scripts
2021-09-30 12:27:06 +02:00
LICENSE.GPL2
relicense to LGPLv2.1 (with exceptions)
2012-04-12 00:24:39 +02:00
LICENSE.LGPL2.1
licence: remove references to old FSF address
2012-12-17 11:41:31 +01:00
Makefile
tree-wide: add spdx header on all scripts and helpers
2021-01-28 09:55:35 +01:00
meson_options.txt
meson: Switch default-locale default to C.UTF-8
2022-06-04 05:08:37 +09:00
meson.build
meson: adjust rootlibdir default for multiarch
2022-06-07 12:26:38 +02:00
mkosi.build
ci: check for failed services after boot
2021-12-10 10:25:43 +01:00
mkosi.postinst
ci: check for failed services after boot
2021-12-10 10:25:43 +01:00
NEWS
Minor wording fixes
2022-05-24 21:26:06 +02:00
README
tree-wide: streamline wiki links
2022-05-21 14:28:03 +02:00
README.md
README: rawhide -> Rawhide
2022-04-06 23:14:21 +09:00
TODO
sd-bus: drop D-Bus version 2 format support
2022-06-01 03:41:15 +09:00

README.md

Systemd

System and Service Manager

Count of open issues over time Count of open pull requests over time Semaphore CI 2.0 Build Status
Coverity Scan Status
OSS-Fuzz Status
CIFuzz
CII Best Practices
Language Grade: C/C++
CentOS CI - CentOS 8
CentOS CI - Arch
CentOS CI - Arch (sanitizers)
CentOS CI - Rawhide (SELinux)
Fossies codespell report
Coverage Status
Packaging status

Details

Most documentation is available on systemd's web site.

Assorted, older, general information about systemd can be found in the systemd Wiki.

Information about build requirements is provided in the README file.

Consult our NEWS file for information about what's new in the most recent systemd versions.

Please see the Code Map for information about this repository's layout and content.

Please see the Hacking guide for information on how to hack on systemd and test your modifications.

Please see our Contribution Guidelines for more information about filing GitHub Issues and posting GitHub Pull Requests.

When preparing patches for systemd, please follow our Coding Style Guidelines.

If you are looking for support, please contact our mailing list or join our IRC channel.

Stable branches with backported patches are available in the stable repo.

Description
The systemd System and Service Manager
cinitlinuxservicessystemsystemd
Readme 562 MiB
Languages
C 89.2%
Python 5.3%
Shell 4.1%
Meson 1.2%