chiark / gitweb /
elogind.git
4 years agozsh-completion: add missing completions for coredumpctl
Ronny Chevalier [Mon, 12 Jan 2015 20:26:27 +0000 (21:26 +0100)]
zsh-completion: add missing completions for coredumpctl

4 years agoTODO: update
David Herrmann [Mon, 12 Jan 2015 17:25:11 +0000 (18:25 +0100)]
TODO: update

4 years agoudev: link_config - modernize a bit and fix leakes
Tom Gundersen [Sat, 10 Jan 2015 00:11:54 +0000 (01:11 +0100)]
udev: link_config - modernize a bit and fix leakes

Not all of the link_config struct was getting freed.

4 years agonetwork-intenal: user _cleanup_ macro in parse_ifname
Tom Gundersen [Fri, 9 Jan 2015 23:33:46 +0000 (00:33 +0100)]
network-intenal: user _cleanup_ macro in parse_ifname

4 years agocore/mount: remove "fail" again
Zbigniew Jędrzejewski-Szmek [Mon, 12 Jan 2015 17:14:59 +0000 (12:14 -0500)]
core/mount: remove "fail" again

deb6120920 'man: there's actually no "fail" fstab option, but only
"nofail" removed it from our documentation, which I missed.
fstab(5) only mentions "auto", "noauto", and "nofail". Stick to
those three.

4 years agosd-bus: sync kdbus.h (API break)
Daniel Mack [Mon, 12 Jan 2015 17:15:18 +0000 (18:15 +0100)]
sd-bus: sync kdbus.h (API break)

Just a simple variable rename, and a dropped flag that sd-bus didn't make
use of.

4 years agocore/mount: use isempty() to check for empty strings
Daniel Mack [Mon, 12 Jan 2015 12:46:39 +0000 (13:46 +0100)]
core/mount: use isempty() to check for empty strings

strempty() will return an empty string in case the input parameter is
a NULL pointer. The correct test to check for an empty string is
isempty(), so use that instead.

This fixes a regression from commit 17a1c59 ("core/mount: filter out
noauto,auto,nofail,fail options").

4 years agoudev: Add builtin/rule to export evdev information as udev properties
Carlos Garnacho [Sun, 11 Jan 2015 19:47:19 +0000 (20:47 +0100)]
udev: Add builtin/rule to export evdev information as udev properties

This rule is only run on tablet/touchscreen devices, and extracts their size
in millimeters, as it can be found out through their struct input_absinfo.

The first usecase is exporting device size from tablets/touchscreens. This
may be useful to separate policy and application at the time of mapping
these devices to the available outputs in windowing environments that don't
offer that information as readily (eg. Wayland). This way the compositor can
stay deterministic, and the mix-and-match heuristics are performed outside.

Conceivably, size/resolution information can be changed through EVIOCSABS
anywhere else, but we're only interested in values prior to any calibration,
this rule is thus only run on "add", and no tracking of changes is performed.
This should only remain a problem if calibration were automatically applied
by an earlier udev rule (read: don't).

  v2: Folded rationale into commit log, made a builtin, set properties
      on device nodes themselves
  v3: Use inline function instead of macro for mm. size calculation,
      use DECIMAL_STR_MAX, other code style issues
  v4: Made rule more selective
  v5: Minor style issues, renamed to a more generic builtin, refined
      rule further.

4 years agocatalog: add pt_BR translation
Rafael Ferreira [Sun, 11 Jan 2015 23:11:42 +0000 (18:11 -0500)]
catalog: add pt_BR translation

https://bugs.freedesktop.org/show_bug.cgi?id=88271

4 years agopo: add Brazilian Portuguese translation
Rafael Ferreira [Sat, 10 Jan 2015 15:33:13 +0000 (13:33 -0200)]
po: add Brazilian Portuguese translation

https://bugs.freedesktop.org/show_bug.cgi?id=88271

4 years agofstab-util: fix priority parsing and add test
Zbigniew Jędrzejewski-Szmek [Mon, 12 Jan 2015 04:40:46 +0000 (23:40 -0500)]
fstab-util: fix priority parsing and add test

4 years agoshared/util: respect buffer boundary on incomplete escape sequences
Zbigniew Jędrzejewski-Szmek [Sun, 11 Jan 2015 22:21:17 +0000 (17:21 -0500)]
shared/util: respect buffer boundary on incomplete escape sequences

cunescape_length_with_prefix() is called with the length as an
argument, so it cannot rely on the buffer being NUL terminated.
Move the length check before accessing the memory.

When an incomplete escape sequence was given at the end of the
buffer, c_l_w_p() would read past the end of the buffer. Fix this
and add a test.

4 years agocore/load-fragment: avoid allocating 0 bytes when given an invalid command
Zbigniew Jędrzejewski-Szmek [Sun, 11 Jan 2015 21:57:02 +0000 (16:57 -0500)]
core/load-fragment: avoid allocating 0 bytes when given an invalid command

With a command line like "@/something" we would allocate an array with
0 elements. Avoid that, and add a test too.

4 years agotest-unit-file: don't access out-of-bounds memory
Zbigniew Jędrzejewski-Szmek [Sun, 11 Jan 2015 21:52:50 +0000 (16:52 -0500)]
test-unit-file: don't access out-of-bounds memory

Fixes an error introduced by me when the test was added.

4 years agocore/mount: filter out noauto,auto,nofail,fail options
Zbigniew Jędrzejewski-Szmek [Sun, 11 Jan 2015 05:27:37 +0000 (00:27 -0500)]
core/mount: filter out noauto,auto,nofail,fail options

We passed the full option string from fstab to /bin/mount. It would in
turn pass the full option string to its helper, if it needed to invoke
one. Some helpers would ignore things like "nofail", but others would
be confused. We could try to get all helpers to ignore those
"meta-options", but it seems better to simply filter them out.

In our model, /bin/mount simply has no business in knowing whether the
mount was configured as fail or nofail, auto or noauto, in the
fstab. If systemd tells invokes a command to mount something, and it
fails, it should always return an error. It seems cleaner to filter
out the option, since then there's no doubt how the command should
behave.

https://bugzilla.redhat.com/show_bug.cgi?id=1177823

4 years agoSupport negated fstab options
Zbigniew Jędrzejewski-Szmek [Sun, 11 Jan 2015 05:04:00 +0000 (00:04 -0500)]
Support negated fstab options

We would ignore options like "fail" and "auto", and for any option
which takes a value the first assignment would win. Repeated and
options equivalent to the default are rarely used, but they have been
documented forever, and people might use them. Especially on the
kernel command line it is easier to append a repeated or negated
option at the end.

4 years agocryptsetup-generator: remove duplicated function
Zbigniew Jędrzejewski-Szmek [Sun, 11 Jan 2015 04:06:52 +0000 (23:06 -0500)]
cryptsetup-generator: remove duplicated function

4 years agofstab-util: detect out-of-range pri= assignments
Zbigniew Jędrzejewski-Szmek [Sun, 11 Jan 2015 03:59:44 +0000 (22:59 -0500)]
fstab-util: detect out-of-range pri= assignments

We would silently ignore them. One would have to be crazy
to do assign an out of range value, but simply ignoring it
bothers me.

4 years ago.gitignore: add new tests and sort tests alphabetically
Zbigniew Jędrzejewski-Szmek [Sun, 11 Jan 2015 22:35:31 +0000 (17:35 -0500)]
.gitignore: add new tests and sort tests alphabetically

4 years agoAdd new function to filter fstab options
Zbigniew Jędrzejewski-Szmek [Fri, 9 Jan 2015 21:58:29 +0000 (16:58 -0500)]
Add new function to filter fstab options

This fixes parsing of options in shared/generator.c. Existing code
had some issues:

- it would treate whitespace and semicolons as seperators. fstab(5)
  is pretty clear that only commas matter. And the syntax does
  not allow for spaces to be inserted in the field in fstab.
  Whitespace might be escaped, but then it should not seperate
  options. Treat whitespace and semicolons as any other character.
- it assumed that x-systemd.device-timeout would always be followed
  by "=". But this is not guaranteed, hasmntopt will return this
  option even if there's no value. Uninitialized memory could be read.
- some error paths would log, and inconsistently, some would just
  return an error code.

Filtering is split out to a separate function and tests are added.

Similar code paths in other places are adjusted to use the new function.

4 years agonetwork: apply static addresses in specified order
Zbigniew Jędrzejewski-Szmek [Fri, 9 Jan 2015 18:34:37 +0000 (13:34 -0500)]
network: apply static addresses in specified order

https://bugs.freedesktop.org/show_bug.cgi?id=83270

4 years agoshared/list: add LIST_APPEND
Zbigniew Jędrzejewski-Szmek [Fri, 9 Jan 2015 18:34:01 +0000 (13:34 -0500)]
shared/list: add LIST_APPEND

4 years agopath-lookup: allow /run to override /etc in generator search
Zbigniew Jędrzejewski-Szmek [Fri, 9 Jan 2015 04:34:21 +0000 (23:34 -0500)]
path-lookup: allow /run to override /etc in generator search

Generators are different than unit files: they are never automatically
generated, so there's no point in allowing /etc to override /run. On
the other hand, overriding /etc might be useful in some cases.

4 years agotest-path-lookup: add simple test for path lookup functions
Zbigniew Jędrzejewski-Szmek [Fri, 9 Jan 2015 04:29:33 +0000 (23:29 -0500)]
test-path-lookup: add simple test for path lookup functions

4 years agotest-util: make sure that masking and overriding works
Zbigniew Jędrzejewski-Szmek [Fri, 9 Jan 2015 02:21:12 +0000 (21:21 -0500)]
test-util: make sure that masking and overriding works

4 years agoImplement masking and overriding of generators
Zbigniew Jędrzejewski-Szmek [Fri, 9 Jan 2015 01:47:25 +0000 (20:47 -0500)]
Implement masking and overriding of generators

Sometimes it is necessary to stop a generator from running. Either
because of a bug, or for testing, or some other reason. The only way
to do that would be to rename or chmod the generator binary, which is
inconvenient and does not survive upgrades. Allow masking and
overriding generators similarly to units and other configuration
files.

For the systemd instance, masking would be more common, rather than
overriding generators. For the user instances, it may also be useful
for users to have generators in $XDG_CONFIG_HOME to augment or
override system-wide generators.

Directories are searched according to the usual scheme (/usr/lib,
/usr/local/lib, /run, /etc), and files with the same name in higher
priority directories override files with the same name in lower
priority directories. Empty files and links to /dev/null mask a given
name.

https://bugs.freedesktop.org/show_bug.cgi?id=87230

4 years agoSimplify execute_directory()
Zbigniew Jędrzejewski-Szmek [Thu, 8 Jan 2015 22:30:07 +0000 (17:30 -0500)]
Simplify execute_directory()

Remove the optional sepearate opening of the directory,
it would be just too complicated with the change to
multiple directories.

Move the middle of execute_directory() to a seperate
function to make it easier to grok.

4 years agobus-proxy: implement 'at_console'
David Herrmann [Sun, 11 Jan 2015 16:23:24 +0000 (17:23 +0100)]
bus-proxy: implement 'at_console'

The 'at_console' policy-category allows to apply policy-items to clients
depending on whether they're run from within a valid user-session or not.
We use sd_uid_get_seats() to check whether a user has a valid seat (which
excludes remote-sessions like ssh).

4 years agobus-proxy: print message direction in policy logs
David Herrmann [Sun, 11 Jan 2015 14:27:18 +0000 (15:27 +0100)]
bus-proxy: print message direction in policy logs

Make sure to print "dbus-1 to kernel" or "kernel to dbus-1" in policy logs
to better diagnose the situation.

4 years agobus-proxy: fix receiver policy on dbus-1 to kdbus signals
David Herrmann [Sun, 11 Jan 2015 14:14:14 +0000 (15:14 +0100)]
bus-proxy: fix receiver policy on dbus-1 to kdbus signals

If a dbus-1 client sends a broadcasted signal via the bus-proxy to kdbus,
the bus-proxy has no idea who the receiver is. Classic dbus-daemon has
bus-access and can perform policy checks for each receiver, but we cant.
Instead, we know the kernel will perform receiver policy checks for
broadcasts, so we can skip the policy check and just push it into the
kernel.

This fixes wpa_supplicant which has DENY rules on receive_type=signal for
non-root. As we never know the target, we always DENY all broadcasts from
wpa_supplicant.

Note that will still perform receiver-policy checks for signals that we
get from the kernel back to us. In those cases, we know the receiver
(which is us).

4 years agobus-proxy: fix swapped path/interface debug messages
David Herrmann [Sun, 11 Jan 2015 13:54:33 +0000 (14:54 +0100)]
bus-proxy: fix swapped path/interface debug messages

The policy debug messages swapped "path=" and "interface=", fix this.

4 years agobus-proxy: fix policy for expected/non-expected reply tags
David Herrmann [Sun, 11 Jan 2015 13:13:19 +0000 (14:13 +0100)]
bus-proxy: fix policy for expected/non-expected reply tags

dbus-1 distinguishes expected and non-expected replies. An expected reply
is a reply that is sent as answer to a previously forwarded method-call
before the timeout fires. Those replies are, by default, forwarded and
DENY policy tags are ignored on them (unless explicitly stated otherwise).

We don't track reply-windows in the bus-proxy as the kernel already does
this. Furthermore, the kernel prohibits any non-expected replies (which
breaks dbus-1, but it was an odd feature, anyway).

Therefore, skip policy checks on replies and always let the kernel deal
with it!

To be correct, we should still process DENY tags marked as
send_expected_reply=true (which is *NOT* the default!). However, so far we
don't parse those attributes, and no-one really uses it, so lets not
implement it for now. It's marked as TODO if anyone feels like fixing it.

4 years agolog: fix log_full_errno() with custom facilities
David Herrmann [Sun, 11 Jan 2015 02:13:46 +0000 (03:13 +0100)]
log: fix log_full_errno() with custom facilities

Make sure to extract the log-priority when comparing against
max-log-level, otherwise, we will always drop those messages.

This fixes bus-proxyd to properly send warnings on policy blocks.

4 years agobuild-sys: fix link-order and avoid "label" functions in libsystemd-shared
Kay Sievers [Sat, 10 Jan 2015 23:25:31 +0000 (00:25 +0100)]
build-sys: fix link-order and avoid "label" functions in libsystemd-shared

4 years agokdbus.h: update
Kay Sievers [Sat, 10 Jan 2015 03:16:18 +0000 (04:16 +0100)]
kdbus.h: update

4 years agopush xorg information to the systemd --user instance
Kay Sievers [Fri, 9 Jan 2015 20:23:48 +0000 (21:23 +0100)]
push xorg information to the systemd --user instance

4 years agoupdate TODO
Lennart Poettering [Fri, 9 Jan 2015 20:32:29 +0000 (21:32 +0100)]
update TODO

4 years agologinctl: make session/user arguments optional for a number commands, and imply calli...
Lennart Poettering [Fri, 9 Jan 2015 20:30:39 +0000 (21:30 +0100)]
loginctl: make session/user arguments optional for a number commands, and imply calling session/user instead

This turns "lock-session", "activate", "unlock-session",
"enable-linger", "disable-linger" into commands that take no argument,
optionally in which case the callers session/user is implied.

4 years agosd-bus: even if we need a cookie when sending a message there's no need to needlessly...
Lennart Poettering [Fri, 9 Jan 2015 20:25:23 +0000 (21:25 +0100)]
sd-bus: even if we need a cookie when sending a message there's no need to needlessly send it if we don't actually need it

4 years agobus-proxy: make sure we have creds when two legacy clients talk to each other
Lennart Poettering [Fri, 9 Jan 2015 20:24:37 +0000 (21:24 +0100)]
bus-proxy: make sure we have creds when two legacy clients talk to each other

4 years agohwdb: add Kay's Laser Mouse to the dpi database
Lennart Poettering [Fri, 9 Jan 2015 19:28:32 +0000 (20:28 +0100)]
hwdb: add Kay's Laser Mouse to the dpi database

4 years agobus-proxy-test: show parsed system/session policy
Lennart Poettering [Fri, 9 Jan 2015 18:30:01 +0000 (19:30 +0100)]
bus-proxy-test: show parsed system/session policy

4 years agobus-proxy: eat up "*" matches, they are pointless
Lennart Poettering [Fri, 9 Jan 2015 18:28:18 +0000 (19:28 +0100)]
bus-proxy: eat up "*" matches, they are pointless

4 years agobus-proxy: dbus-daemon implies that connections from UIDs that are identical to the...
Lennart Poettering [Fri, 9 Jan 2015 18:25:23 +0000 (19:25 +0100)]
bus-proxy: dbus-daemon implies that connections from UIDs that are identical to the bus owner should be allowed

Hence, copy this behaviour for bus-proxy too.

4 years agobus-proxyd: xml - consider empty tags as recv
Kay Sievers [Fri, 9 Jan 2015 17:46:08 +0000 (18:46 +0100)]
bus-proxyd: xml - consider empty tags as recv

4 years agobus-proxy: make sure sure eavesdrop= XML attributes are properly handled
Lennart Poettering [Fri, 9 Jan 2015 17:34:46 +0000 (18:34 +0100)]
bus-proxy: make sure sure eavesdrop= XML attributes are properly handled

4 years agologind: unify how we cast between uid_t and pointers for hashmap keys
Lennart Poettering [Fri, 9 Jan 2015 15:25:47 +0000 (16:25 +0100)]
logind: unify how we cast between uid_t and pointers for hashmap keys

4 years agologind: when a bus call is done on a session, user or seat, optionally determine...
Lennart Poettering [Fri, 9 Jan 2015 15:14:19 +0000 (16:14 +0100)]
logind: when a bus call is done on a session, user or seat, optionally determine them from the caller credentials

More specifically, if an operation is requested on a session with an
empty name, the caller's session is used. If an operation is requested
on a seat with an empty name, the seat of the caller's session is used.
Finally, if an operation on the user with UID -1 is requested, the user
of the client's session is used (and not the UID of the client!).

4 years agoman: document that 'loginctl activate' only takes a single argument
Lennart Poettering [Fri, 9 Jan 2015 00:47:03 +0000 (01:47 +0100)]
man: document that 'loginctl activate' only takes a single argument

4 years agologind: include "self" object links in dbus introspection
Lennart Poettering [Fri, 9 Jan 2015 00:44:40 +0000 (01:44 +0100)]
logind: include "self" object links in dbus introspection

Makes "busctl introspect" a lot more fun.

4 years agologinctl: make "loginctl session-status" without session ID show the caller's session...
Lennart Poettering [Fri, 9 Jan 2015 00:43:53 +0000 (01:43 +0100)]
loginctl: make "loginctl session-status" without session ID show the caller's session status

Similar for user-status and seat-status.

4 years agocore: modernize execution code a bit
Lennart Poettering [Thu, 8 Jan 2015 23:13:33 +0000 (00:13 +0100)]
core: modernize execution code a bit

Among other things, avoid log_struct() unless we really need it.

Also, use "r" as variable to store function errors in, instead of "err".
"r" is pretty much what we use everywhere else, hence using the same
here make sense.

FInally, in the child, when we want to log, make sure to open the
logging framework first, since it is explicitly closed in preparation
for the exec().

4 years agojournal: do not check for number of files
Zbigniew Jędrzejewski-Szmek [Fri, 9 Jan 2015 14:09:59 +0000 (09:09 -0500)]
journal: do not check for number of files

Now that we bump rlimit, we do not really know how many files
we can open. Remove the check.

https://bugzilla.redhat.com/show_bug.cgi?id=1179980

4 years agosystemctl: add missing output modes to help message
Ronny Chevalier [Fri, 9 Jan 2015 12:54:19 +0000 (13:54 +0100)]
systemctl: add missing output modes to help message

4 years agoshell-completion: add missing output modes
Ronny Chevalier [Fri, 9 Jan 2015 12:53:23 +0000 (13:53 +0100)]
shell-completion: add missing output modes

https://bugs.freedesktop.org/show_bug.cgi?id=88216

4 years agobus: append bloom-filter to all signals
David Herrmann [Thu, 8 Jan 2015 23:53:00 +0000 (00:53 +0100)]
bus: append bloom-filter to all signals

Make sure to append bloom-filters to all signal-messages, not only
broadcasts.

4 years agohwdb: add missing line between the G400 entries
Peter Hutterer [Thu, 8 Jan 2015 23:33:27 +0000 (09:33 +1000)]
hwdb: add missing line between the G400 entries

Error, DATA expected but got 'mouse:usb:v046dpc24c:name:Logitech G400s Optical
Gaming Mouse:' in '/etc/udev/hwdb.d/70-mouse.hwdb':
Error, MATCH expected but got ' MOUSE_DPI=400@1000 *800@1000 2000@1000
4000@1000' in '/etc/udev/hwdb.d/70-mouse.hwdb':

Introduced in 6366e349

4 years agocore: check both EPERM and EACCES for OOM adjustments
Lennart Poettering [Thu, 8 Jan 2015 22:21:01 +0000 (23:21 +0100)]
core: check both EPERM and EACCES for OOM adjustments

4 years agoupdate TODO
Lennart Poettering [Thu, 8 Jan 2015 22:13:28 +0000 (23:13 +0100)]
update TODO

4 years agocore: make EPERM errors when applying OOM adjustment for forked processes non-fatal
Lennart Poettering [Thu, 8 Jan 2015 22:12:16 +0000 (23:12 +0100)]
core: make EPERM errors when applying OOM adjustment for forked processes non-fatal

This should be useful for user namespaces.

4 years agologinctl: port to generic verbs.h API
Lennart Poettering [Thu, 8 Jan 2015 22:11:35 +0000 (23:11 +0100)]
loginctl: port to generic verbs.h API

4 years agoman: remove references to systemadm from systemctl man page
Lennart Poettering [Thu, 8 Jan 2015 18:16:44 +0000 (19:16 +0100)]
man: remove references to systemadm from systemctl man page

The tool is badly maintained and we shouldn't refence such old cruft.

4 years agomachined: when cloning a raw disk image, also set the NOCOW flag
Lennart Poettering [Thu, 8 Jan 2015 18:15:49 +0000 (19:15 +0100)]
machined: when cloning a raw disk image, also set the NOCOW flag

4 years agoman: bring machinectl man page up-to-date
Lennart Poettering [Thu, 8 Jan 2015 18:14:08 +0000 (19:14 +0100)]
man: bring machinectl man page up-to-date

4 years agoman: bring systemctl man page and --help text into the same order
Lennart Poettering [Thu, 8 Jan 2015 17:08:40 +0000 (18:08 +0100)]
man: bring systemctl man page and --help text into the same order

4 years agoman: add the same command sections to the man page as the --help text shows
Lennart Poettering [Thu, 8 Jan 2015 17:07:25 +0000 (18:07 +0100)]
man: add the same command sections to the man page as the --help text shows

4 years agosystemctl,loginctl: start polkit agent for all polkit enabled operations
Lennart Poettering [Thu, 8 Jan 2015 14:33:46 +0000 (15:33 +0100)]
systemctl,loginctl: start polkit agent for all polkit enabled operations

4 years agomachinectl: given that machinectl invokes a number of polkit enabled methods, start...
Lennart Poettering [Thu, 8 Jan 2015 14:23:54 +0000 (15:23 +0100)]
machinectl: given that machinectl invokes a number of polkit enabled methods, start the polkit agent on terminals

4 years agomachinectl: show most recent log output in "machinectl status", too
Lennart Poettering [Thu, 8 Jan 2015 14:09:12 +0000 (15:09 +0100)]
machinectl: show most recent log output in "machinectl status", too

4 years agologinctl: show the 10 most recent log user/session log lines in "loginctl user-status...
Lennart Poettering [Thu, 8 Jan 2015 13:38:52 +0000 (14:38 +0100)]
loginctl: show the 10 most recent log user/session log lines in "loginctl user-status" and "loginctl session-status"

4 years agohwdb: note that we care about the maximum frequency in MOUSE_DPI
Peter Hutterer [Thu, 8 Jan 2015 21:53:55 +0000 (07:53 +1000)]
hwdb: note that we care about the maximum frequency in MOUSE_DPI

Devices with dynamic frequency scaling adjust the frequency as needed. For
those we only care about the maximum frequency, not the various in betweens.

https://bugs.freedesktop.org/show_bug.cgi?id=87435#c8

4 years agohwdb: adjust max frequency of Logitech RX 250
Zbigniew Jędrzejewski-Szmek [Thu, 8 Jan 2015 21:45:34 +0000 (16:45 -0500)]
hwdb: adjust max frequency of Logitech RX 250

https://bugs.freedesktop.org/show_bug.cgi?id=87435

4 years agobash-completion: systemd-nspawn update
Carlos Morata Castillo [Thu, 8 Jan 2015 20:51:49 +0000 (21:51 +0100)]
bash-completion: systemd-nspawn update

*Autocompletion for dirs, doesn't leave until you press space.
*Added tmpfs, volatile and network-macvlan options.

I tried with the SELinux options with seinfo(setools-console), but too
messy to get it right. Even Daniel Walsh haven't done it yet. :)

4 years agocryptsetup: support header= option
Andrey Chaser [Thu, 8 Jan 2015 21:21:06 +0000 (16:21 -0500)]
cryptsetup: support header= option

https://bugs.freedesktop.org/show_bug.cgi?id=66396

4 years agotest-verbs: add unit tests for verbs minilib
Dave Reisner [Sat, 20 Dec 2014 03:59:51 +0000 (22:59 -0500)]
test-verbs: add unit tests for verbs minilib

4 years agodoc: fix stale references to systemd-verify
Dave Reisner [Thu, 8 Jan 2015 02:54:45 +0000 (21:54 -0500)]
doc: fix stale references to systemd-verify

This was subsumed into systemd-analyze back in 142c4ecaa98.

4 years agoman: add hostnamed chassis type "embedded" to machine-info(5)
Peter Mattern [Sat, 20 Dec 2014 14:09:19 +0000 (15:09 +0100)]
man: add hostnamed chassis type "embedded" to machine-info(5)

man machine-info lacks hostnamed chassis type "embedded" as introduced in 218. The following lines should fix this.

4 years agoman: mention where timesyncd keeps the timestamp
Zbigniew Jędrzejewski-Szmek [Thu, 8 Jan 2015 19:45:57 +0000 (14:45 -0500)]
man: mention where timesyncd keeps the timestamp

4 years agobus-proxyd: fix EPERM on replies
David Herrmann [Thu, 8 Jan 2015 20:06:14 +0000 (21:06 +0100)]
bus-proxyd: fix EPERM on replies

Imagine a kdbus peer sending a method-call without EXPECT_REPLY set
through the proxy to a dbus1 peer. The proxy turns the missing
EXPECT_REPLY flag into a dbus1 NO_REPLY_EXPECTED flag. However, if the
receipient ignores that flag (valid dbus1 behavior) and sends a reply, the
proxy will try to forward it to the original peer. This will fail with
EPERM as the kernel didn't track the reply.

We have two options now: Either we ignore EPERM for reply messages, or we
track reply-windows in the proxy so we can properly ignore replies if
EXPECT_REPLY wasn't set.

This commit chose the first option: ignore EPERM for replies. The only
down-side is that replies without matching method call will no longer be
forwarded by the proxy. This works on dbus1, though.
Nobody sane does this, so lets ignore it.

4 years agobus-proxyd: optimize replies if they're not requested
David Herrmann [Thu, 8 Jan 2015 19:58:59 +0000 (20:58 +0100)]
bus-proxyd: optimize replies if they're not requested

If a caller does not request a reply, dont send it. This skips message
creation and speeds up NO_REPLY_EXPECTED cases. Note that sd-bus still
handles this case internally, but if we handle it in bus-proxyd, we can
skip the whole message creation step.

4 years agobus-proxy: augment credentials from /proc for cmdline update
David Herrmann [Thu, 8 Jan 2015 16:43:48 +0000 (17:43 +0100)]
bus-proxy: augment credentials from /proc for cmdline update

dbus1 does not provide cmdline, so we have to augment our credentials from
/proc to beautify the bus-proxyd cmdline. We dont use this for anything
but beautification, so there shouldn't be any problems due to /proc
pid-recycling races.

This fixes bus-proxyd to no longer display 'xxxxxxxxxxxxxxxxxxxxxxxxxxx'
in its cmdline.

4 years agonspawn: fix error message when mknod fails
Tom Gundersen [Tue, 6 Jan 2015 18:50:25 +0000 (19:50 +0100)]
nspawn: fix error message when mknod fails

4 years agopath-util: plug leak
Tom Gundersen [Tue, 6 Jan 2015 18:12:38 +0000 (19:12 +0100)]
path-util: plug leak

4 years agodbus1-generator: fix array sentinal
David Herrmann [Thu, 8 Jan 2015 15:13:39 +0000 (16:13 +0100)]
dbus1-generator: fix array sentinal

Add a {} sentinal entry so the config-iterator can properly iterate all
array elements. Fixes a segfault in the dbus1-generator.

4 years agobuild: print conditions of ldconfig, hibernate configs
Umut Tezduyar Lindskog [Tue, 16 Dec 2014 07:45:28 +0000 (08:45 +0100)]
build: print conditions of ldconfig, hibernate configs

4 years agosd-bus: fix copy-paste error
Lukasz Skalski [Thu, 8 Jan 2015 10:10:21 +0000 (11:10 +0100)]
sd-bus: fix copy-paste error

4 years agoupdate TODO
Lennart Poettering [Thu, 8 Jan 2015 02:20:10 +0000 (03:20 +0100)]
update TODO

4 years agojournal: bump RLIMIT_NOFILE when journal files to 16K (if possible)
Lennart Poettering [Thu, 8 Jan 2015 02:17:50 +0000 (03:17 +0100)]
journal: bump RLIMIT_NOFILE when journal files to 16K (if possible)

When there are a lot of split out journal files, we might run out of fds
quicker then we want. Hence: bump RLIMIT_NOFILE to 16K if possible.

Do these even for journalctl. On Fedora the soft RLIMIT_NOFILE is at 1K,
the hard at 4K by default for normal user processes, this code hence
bumps this up for users to 4K.

https://bugzilla.redhat.com/show_bug.cgi?id=1179980

4 years agoudevadm: don't hit an assert when obsolete parameters are passed
Lennart Poettering [Thu, 8 Jan 2015 00:59:58 +0000 (01:59 +0100)]
udevadm: don't hit an assert when obsolete parameters are passed

https://bugzilla.redhat.com/show_bug.cgi?id=1178051

4 years agoupdate TODO
Lennart Poettering [Thu, 8 Jan 2015 00:28:15 +0000 (01:28 +0100)]
update TODO

4 years agoutil: make it easy to initialize the crtime from the current time in fd_setcrtime()
Lennart Poettering [Thu, 8 Jan 2015 00:27:13 +0000 (01:27 +0100)]
util: make it easy to initialize the crtime from the current time in fd_setcrtime()

4 years agoimport: also set NOCOW for gpt disk images
Lennart Poettering [Thu, 8 Jan 2015 00:25:40 +0000 (01:25 +0100)]
import: also set NOCOW for gpt disk images

Given the write patterns on disk images, we better should turn COW off
for them. In particular as the file systems used inside the disk images
should do their own data integrity checks anyway and we don't need
multiple layers of it.

4 years agojournald: turn off COW for journal files on btrfs
Lennart Poettering [Thu, 8 Jan 2015 00:22:29 +0000 (01:22 +0100)]
journald: turn off COW for journal files on btrfs

btrfs' COW logic results in heavily fragment journal files, which is
detrimental for perfomance. Hence, turn off COW for journal files as we
create them.

Turning off COW comes at the cost of data integrity guarantees, but this
should be acceptable, given that we do our own checksumming, and
generally have a pretty conservative write pattern.

Also see discussion on linux-btrfs:

http://www.spinics.net/lists/linux-btrfs/msg41001.html

4 years agoutil: upgrade default $TERM from vt102 to vt220 if we have no idea about the connecte...
Lennart Poettering [Wed, 7 Jan 2015 22:02:08 +0000 (23:02 +0100)]
util: upgrade default $TERM from vt102 to vt220 if we have no idea about the connected terminal

So far, if we had no knowledge about the correct $TERM we defaulted to
v102, as a safe, conservative choice. However, the terminfo data for
vt102 is not aware of pageup/pagedown, which makes "less" much harder
work with than necessary. Setting vt220 allows them to work correctly.

"vt220" should be a sufficiently safe choice too, given that xterm,
gnome-terminal and the linux console all strive to implement vt220 as
baseline, already to pass pageup/pagedown correctly to apps.

Effectively, with this change "journalctl -e" run inside a
"systemd-nspawn" terminal will now run a pager where pageup/pagedown
works, which is quite an improvement of usability for containers.

4 years agobus-util: fix error number output when waiting for job
Lennart Poettering [Wed, 7 Jan 2015 21:51:48 +0000 (22:51 +0100)]
bus-util: fix error number output when waiting for job

4 years agoupdate TODO
Lennart Poettering [Wed, 7 Jan 2015 21:19:59 +0000 (22:19 +0100)]
update TODO

4 years agounits: make resolved pull in its own .busname unit, but only on kdbus systems
Lennart Poettering [Wed, 7 Jan 2015 21:19:02 +0000 (22:19 +0100)]
units: make resolved pull in its own .busname unit, but only on kdbus systems

The daemon requires the busname unit to operate, since it contains the
policy that allows it to acquire its service name.

4 years agoservice: automatically create After= dependency from services to their .busname units...
Lennart Poettering [Wed, 7 Jan 2015 21:08:25 +0000 (22:08 +0100)]
service: automatically create After= dependency from services to their .busname units, if BusName= is set

4 years agoconf-parse: don't accept invalid bus names as BusName= arguments in service units
Lennart Poettering [Wed, 7 Jan 2015 21:07:09 +0000 (22:07 +0100)]
conf-parse: don't accept invalid bus names as BusName= arguments in service units

4 years agoconf-parse: make syntax logging functions behave more like other log functons
Lennart Poettering [Wed, 7 Jan 2015 21:05:20 +0000 (22:05 +0100)]
conf-parse: make syntax logging functions behave more like other log functons

In particular, don't patch the error number to EINVAL if 0, and don't
negate it.

(Also, add do {} while (false) around multi-line macro)