]>
git.ipfire.org Git - thirdparty/systemd.git/log
Lennart Poettering [Wed, 8 Jan 2020 11:18:38 +0000 (12:18 +0100)]
Merge pull request #14512 from poettering/root-image-devices
Make RootImage= work reliable with DeviceAllow= in the mix
Frantisek Sumsal [Wed, 8 Jan 2020 09:44:10 +0000 (10:44 +0100)]
test: pin meson to 0.52.1 for fuzzit/fuzzbuzz
Latest meson doesn't work with older python 3.5, which is present on
Ubuntu 16.04. Let's pin in to the latest working version (0.52.1) until
we properly bump all necessary Ubuntu images to 18.04.
See: https://github.com/mesonbuild/meson/issues/6427
Zbigniew Jędrzejewski-Szmek [Wed, 8 Jan 2020 10:06:46 +0000 (11:06 +0100)]
Merge pull request #14465 from poettering/setprio-rework
When Nice= is used, clamp to RLIMIT_NICE
Zbigniew Jędrzejewski-Szmek [Wed, 8 Jan 2020 09:49:39 +0000 (10:49 +0100)]
Merge pull request #14488 from yuwata/networkctl-show-logs
networkctl: status command also shows logs of networkd
Zbigniew Jędrzejewski-Szmek [Wed, 8 Jan 2020 08:58:57 +0000 (09:58 +0100)]
Merge pull request #14494 from poettering/container-interface
Let's import the container interface description text from the fdo wiki
ezst036 [Wed, 8 Jan 2020 00:47:15 +0000 (19:47 -0500)]
Support Plugable UD-PRO8 dock
Add support for Plugable Pro8 docking station for auto-configuring seat
Lennart Poettering [Tue, 7 Jan 2020 16:21:24 +0000 (17:21 +0100)]
gpt-auto: don't assume XBOOTLDR is vfat
Let's not assume "umask=" is a valid mount option for XBOOTLDR
partitions unconditionally.
Fixes: #14165
Robert Scheck [Wed, 8 Jan 2020 01:36:07 +0000 (02:36 +0100)]
network, meson: allow statically linked build
Build option "link-networkd-shared" to build a statically linked
systemd-networkd by using
-Dlink-udev-shared=false -Dlink-networkd-shared=false
on systems with full systemd stack except systemd-networkd, such
as RHEL/CentOS 8.
Zbigniew Jędrzejewski-Szmek [Wed, 8 Jan 2020 08:46:49 +0000 (09:46 +0100)]
Merge pull request #14510 from poettering/net-naming-scheme-fixlets
some net naming scheme documentation fixes
Daniel Shahaf [Tue, 7 Jan 2020 20:17:26 +0000 (20:17 +0000)]
zsh: Complete systemctl subcommands in separate tags
Fixes #14422
Chris Down [Tue, 7 Jan 2020 19:34:55 +0000 (19:34 +0000)]
Merge pull request #14423 from danielshahaf/zsh-add-missing-completions
zsh: Add missing completions
Lennart Poettering [Tue, 7 Jan 2020 14:20:32 +0000 (15:20 +0100)]
boot: fix osrel parser
let's check VERSION instead of VERSION_ID where appropriate.
Fixes: #14493
Anita Zhang [Tue, 7 Jan 2020 18:53:13 +0000 (10:53 -0800)]
Merge pull request #14472 from poettering/test-43-fixes
Various robustness fixes for TEST-43-PRIVATEUSER-UNPRIV
Lennart Poettering [Tue, 7 Jan 2020 18:17:51 +0000 (19:17 +0100)]
Merge pull request #14499 from yuwata/network-gateway-dhcp
network: static route via DHCP gateway
Lennart Poettering [Tue, 7 Jan 2020 18:00:56 +0000 (19:00 +0100)]
man: stop recommending modprobe -abq in ExecStartPre=
Lennart Poettering [Tue, 7 Jan 2020 17:54:24 +0000 (18:54 +0100)]
units: tweaks to modprobe@.service
Let's use uppercase wording in the description string, like we usually
do.
Let's allow using this service in early boot.
If it's pulled into the initial transaction it's better to finish
loading this before sysinit.target.
Don't bother with this in containers that lack CAP_SYS_MODULE
Lennart Poettering [Tue, 7 Jan 2020 17:53:31 +0000 (18:53 +0100)]
unit: make sure to pull in modprobe@loop.service when RootImage= is used with DeviceAllow=
Fixes: #14214
Lennart Poettering [Tue, 7 Jan 2020 17:21:26 +0000 (18:21 +0100)]
bpf-devices: line-break some overly long function signatures
Iain Lane [Tue, 7 Jan 2020 14:33:29 +0000 (14:33 +0000)]
units: Split modprobing out into a separate service unit
Devices referred to by `DeviceAllow=` sandboxing are resolved into their
corresponding major numbers when the unit is loaded by looking at
`/proc/devices`. If a reference is made to a device which is not yet
available, the `DeviceAllow` is ignored and the unit's processes cannot
access that device.
In both logind and nspawn, we have `DeviceAllow=` lines, and `modprobe`
in `ExecStartPre=` to load some kernel modules. Those kernel modules
cause device nodes to become available when they are loaded: the device
nodes may not exist when the unit itself is loaded. This means that the
unit's processes will not be able to access the device since the
`DeviceAllow=` will have been resolved earlier and denied it.
One way to fix this would be to re-evaluate the available devices and
re-apply the policy to the cgroup, but this cannot work atomically on
cgroupsv1. So we fall back to a second approach: instead of running
`modprobe` via `ExecStartPre`, we move this out to a separate unit and
order it before the units which want the module.
Closes #14322.
Fixes: #13943.
Lennart Poettering [Tue, 7 Jan 2020 17:02:53 +0000 (18:02 +0100)]
udev: use dot_or_dot_dot() where appropriate
Lennart Poettering [Tue, 7 Jan 2020 17:02:15 +0000 (18:02 +0100)]
man: fix documentation of IBM VIO device naming
We generate "v" in two different ways, and they got mixed up.
Lennart Poettering [Tue, 7 Jan 2020 17:01:56 +0000 (18:01 +0100)]
man: slightly extend documentation on difference between ID_NET_NAME_ONBOARD and ID_NET_LABEL_ONBOARD
Yu Watanabe [Tue, 7 Jan 2020 10:22:59 +0000 (19:22 +0900)]
udev: do not use exact match of file permission
This partially reverts
25de7aa7b90c23d33ea50ada1e50c5834a414237 .
Fixes #14473.
Lennart Poettering [Tue, 7 Jan 2020 14:16:31 +0000 (15:16 +0100)]
Merge pull request #14481 from yuwata/virt-string-table
virt: use string table to detect VM or container
Yu Watanabe [Sat, 4 Jan 2020 20:35:13 +0000 (05:35 +0900)]
nspawn: set original ifname as alternative if it is truncated
Yu Watanabe [Tue, 7 Jan 2020 03:53:19 +0000 (12:53 +0900)]
network: append INTERFACE= attributes for logs corresponds to a netif
Yu Watanabe [Tue, 7 Jan 2020 02:32:04 +0000 (11:32 +0900)]
test-network: suppress logs in status command
Yu Watanabe [Tue, 7 Jan 2020 02:32:03 +0000 (11:32 +0900)]
networkctl: status command also shows logs of networkd
Closes #14050.
Yu Watanabe [Tue, 7 Jan 2020 08:54:55 +0000 (17:54 +0900)]
man: drop unnecessary white space
Lennart Poettering [Tue, 7 Jan 2020 09:51:50 +0000 (10:51 +0100)]
locale-util: extend comments on unicode glyph use, and drop mdash (that actually was an ndash)
Let's add the actual unicode names of the glyphs we use. Let's also add
in comments what the width expectations of these glyphs are on the
console.
Also, remove the "mdash" definition. First of all it wasn't used, but
what's worse the glyph encoded was actually an "ndash"...
Fixes: #14075
Lennart Poettering [Tue, 7 Jan 2020 11:14:24 +0000 (12:14 +0100)]
Merge pull request #14420 from DaanDeMeyer/nspawn-fix-read-only-overlay-rootfs
nspawn: Don't mount read-only if we have a custom mount on root.
Yu Watanabe [Tue, 7 Jan 2020 05:55:58 +0000 (14:55 +0900)]
test-network: add test for Gateway=DHCP
Yu Watanabe [Tue, 7 Jan 2020 05:43:09 +0000 (14:43 +0900)]
network: static routes via DHCP gateway
This makes Gateway= also take "DHCP". If "DHCP" is set, then the gateway
address provided by DHCP or IPv6 RA is used.
Closes #8213.
Yu Watanabe [Tue, 7 Jan 2020 02:49:40 +0000 (11:49 +0900)]
virt: drop trailing white spaces
Yu Watanabe [Tue, 7 Jan 2020 02:49:39 +0000 (11:49 +0900)]
virt: use string table to detect VM or container
Frantisek Sumsal [Mon, 6 Jan 2020 09:44:19 +0000 (10:44 +0100)]
pkcs11-util: don't mask return value of the first asprintf()
Fixes CID#
1409666
Yu Watanabe [Mon, 6 Jan 2020 07:48:27 +0000 (16:48 +0900)]
network: lower the log-level of harmless message
Closes #14285.
Yu Watanabe [Mon, 6 Jan 2020 03:16:53 +0000 (12:16 +0900)]
meson: drop unnecessary linking of libudev_core
Yu Watanabe [Mon, 6 Jan 2020 10:32:22 +0000 (19:32 +0900)]
sd-netlink: fix copy and paste mistake
Lennart Poettering [Mon, 6 Jan 2020 17:15:07 +0000 (18:15 +0100)]
man: change links to container interface doc to https://systemd.io/
Now that we converted the documentation we should also link to it.
Lennart Poettering [Mon, 6 Jan 2020 17:12:19 +0000 (18:12 +0100)]
docs: move container interface docs from wiki to markdown
Let's move
https://www.freedesktop.org/wiki/Software/systemd/ContainerInterface/
into our tree and convert it to Markdown.
This also incldues some minor fixes and other changes.
Yu Watanabe [Mon, 6 Jan 2020 01:48:42 +0000 (10:48 +0900)]
sd-netlink: use uint8_t* for non-character data
Lennart Poettering [Mon, 6 Jan 2020 12:40:36 +0000 (13:40 +0100)]
testsuite: drop "systemctl is-system-running --wait" invocation
We wait for "basic.target" being reached in the user instance anyway
before allowing the user's session to start, hence doing such a wait is
unnecessary, since that would just mean we'd wait for "default.target"
on top of "basic.target", but we shouldn#t need anything of that...
Hence, let's simplify this, reduce explicit sync points.
Lennart Poettering [Fri, 3 Jan 2020 17:27:14 +0000 (18:27 +0100)]
test: don't rely on "nobody" user for TEST-43
The name is not as universal as we want, still, hence let's use our own
user we create with sysusers.d/. That should yield same behaviour
everywhere (and also test sysusers a bit as side effect).
Lennart Poettering [Fri, 3 Jan 2020 17:25:51 +0000 (18:25 +0100)]
test: hardcode shell to use
let's make sure we always invoke our commands through /bin/sh, since
on some distros su will use /bin/nologin (or whatever is listed in
/etc/passwd) as shell otherwise and we don#t want that.
Topi Miettinen [Thu, 2 Jan 2020 17:59:48 +0000 (19:59 +0200)]
dbus-execute: avoid extra strdup()
bind_mount_add does the strdup(), so we can avoid
strdup()ing the strings.
Lennart Poettering [Fri, 3 Jan 2020 17:00:03 +0000 (18:00 +0100)]
test: use symlinks for Makefiles
for some reason the newer tests used file copyies instead of symlinks.
let's fix that.
Kevin Kuehler [Tue, 19 Nov 2019 21:43:58 +0000 (13:43 -0800)]
job: Don't mark as redundant if deps are relevant
In the steps given in #13850, the resulting graph looks like:
C (Anchor) -> B -> A
Since B is inactive, it will be flagged as redundant and removed from
the transaction, causing A to get garbage collected. The proposed fix is
to not mark nodes as redundant if doing so causes a relevant node to be
garbage collected.
Fixes #13850
Lennart Poettering [Fri, 3 Jan 2020 14:38:03 +0000 (15:38 +0100)]
Merge pull request #14194 from yuwata/network-multipath-routing-12541
network: introduce multipath routing
Lennart Poettering [Fri, 3 Jan 2020 13:18:16 +0000 (14:18 +0100)]
Merge pull request #14469 from aburch/man-tmpfiles.d-minor-improvements
man: tmpfiles.d: minor improvements
Daan De Meyer [Tue, 24 Dec 2019 10:40:03 +0000 (11:40 +0100)]
nspawn: Make a custom mount on root imply --read-only.
Daan De Meyer [Mon, 23 Dec 2019 10:50:02 +0000 (11:50 +0100)]
nspawn: Don't mount read-only if we have a custom mount on root.
Lennart Poettering [Fri, 3 Jan 2020 11:47:03 +0000 (12:47 +0100)]
Merge pull request #14401 from DaanDeMeyer/nspawn-move-veth-back-to-host
nspawn: move virtual interfaces added with --network-interface back to the host
Ansgar Burchardt [Fri, 3 Jan 2020 11:21:57 +0000 (20:21 +0900)]
man: tmpfiles.d: only list "v" once
Ansgar Burchardt [Fri, 3 Jan 2020 11:13:51 +0000 (20:13 +0900)]
man: tmpfiles.d: "b", "c" options require major and minor numbers
Mike Auty [Fri, 3 Jan 2020 00:44:54 +0000 (00:44 +0000)]
hwdb: Lenovo T490 Synaptics Touchpad hwdb entry
The Synaptics Touchpad that comes with the T490 doesn't explicitly set
its resolution, so these lines are needed to provide that, in order to
help the libinput code detect overly large jumps. Since this device
contains buttons under the lower section of the touchpad, large jumps
are common, so having the resolution helps libinput greatly reduce
the number of occurances of pointer jump.
This comes from
https://gitlab.freedesktop.org/libinput/libinput/issues/402.
Lennart Poettering [Fri, 3 Jan 2020 08:55:29 +0000 (09:55 +0100)]
Merge pull request #14467 from poettering/nspawn-short-names-rework
nspawn: change how we truncate --network-veth names
Lennart Poettering [Thu, 2 Jan 2020 16:33:51 +0000 (17:33 +0100)]
test: add test case for setpriority_closest()
Dimitri John Ledkov [Tue, 1 Aug 2017 16:38:05 +0000 (17:38 +0100)]
core: in execute, Never fail setting Nice priority
Instead, push to the closest possible Nice priority setting.
Replaces: #11397
Kai Krakow [Sun, 23 Jun 2019 22:24:18 +0000 (00:24 +0200)]
nspawn: Generate unique short veth names
This commit lowers the chance of having veth name conflicts for machines
created with similar names.
Replaces: #12865
Fixes: #13417
Lennart Poettering [Thu, 2 Jan 2020 18:33:29 +0000 (19:33 +0100)]
udev: move naming-scheme.[ch] into src/shared/
That way we can use it from non-udev code too, for example nspawn.
Lennart Poettering [Thu, 2 Jan 2020 14:43:04 +0000 (15:43 +0100)]
Merge pull request #13748 from jwrdegoede/hwdb-updates2
Add LCD menu key mappings for the Logitech MX5000 and MX5500
Frantisek Sumsal [Sat, 28 Dec 2019 14:38:43 +0000 (15:38 +0100)]
systemctl: show 'VENDOR PRESET' column in 'list-unit-files'
Show the install value presets would suggest for each service in a
separate column.
Frantisek Sumsal [Sat, 28 Dec 2019 11:29:19 +0000 (12:29 +0100)]
systemctl: skip non-existent units in the 'cat' verb
When processing list of units (either provided manually or as a
wildcard), let's skip units for which we don't have an on-disk
counterpart, but note the -ENOENT error code and propagate it back to
the user.
Fixes: #14082
Lennart Poettering [Thu, 2 Jan 2020 13:51:55 +0000 (14:51 +0100)]
Merge pull request #14444 from yuwata/network-codel-more
network: more CoDel settings
Topi Miettinen [Sat, 28 Dec 2019 17:38:27 +0000 (19:38 +0200)]
systemd.exec: document the file system for EnvironmentFile paths
Files specified with EnvironmentFile are read from PID1 mount namespace, before
any file system operations like RootImage or BindPaths are in effect.
Daan De Meyer [Thu, 19 Dec 2019 20:17:57 +0000 (21:17 +0100)]
nspawn: Move --network-interface interfaces back to the host.
Lennart Poettering [Thu, 2 Jan 2020 12:41:16 +0000 (13:41 +0100)]
Merge pull request #14441 from GothAck/gothack_type.d_dropin_test_master
Fix type.d drop-in ordering for #14439 - duplicate against master
Rafa Couto [Sun, 29 Dec 2019 18:44:32 +0000 (19:44 +0100)]
hwdb: 60-sensor.hwdb Chuwi Hi10 CWI515 accelerometer orientation.
Fran Dieguez [Sun, 29 Dec 2019 21:37:31 +0000 (22:37 +0100)]
Update Galician translations
Tobias Stoeckmann [Tue, 31 Dec 2019 12:56:02 +0000 (13:56 +0100)]
systemd-analyze: fixed typo in documentation
The example shows the output of critical-chain, which means
that the title is wrong.
Frantisek Sumsal [Wed, 1 Jan 2020 18:17:15 +0000 (19:17 +0100)]
tree-wide: yet another batch of coccinelle recommendations
Prettify certain parts of the codebase using coccinelle transformations
(no functional changes).
Yu Watanabe [Thu, 26 Dec 2019 06:29:26 +0000 (15:29 +0900)]
network: bump netlink receive buffer size to 128M
Prompted by #14417.
Frantisek Sumsal [Mon, 23 Dec 2019 19:54:08 +0000 (20:54 +0100)]
travis: wait for the container to fully boot up
This avoids nasty race conditions between dnf/apt-get and unfinished
population of /tmp (among other things), as `docker exec` allows commands
to run before the system is fully booted (i.e. initializing/starting
state reported by `systemctl is-system-running`).
Yu Watanabe [Sat, 28 Dec 2019 13:25:49 +0000 (22:25 +0900)]
test-network: add a test case for CoDel
Yu Watanabe [Sat, 28 Dec 2019 13:07:24 +0000 (22:07 +0900)]
network: add more settings for CoDel
Susant Sahani [Thu, 19 Dec 2019 10:05:16 +0000 (11:05 +0100)]
network: Add support to configure DHCPv4 route MTU
This is useful for transitioning systems from small frames to jumbo frames.
Closes #14302
Susant Sahani [Sat, 21 Dec 2019 19:18:09 +0000 (20:18 +0100)]
network: tc introduce codel
Please see http://man7.org/linux/man-pages/man8/tc-codel.8.html
Greg "GothAck" Miell [Fri, 27 Dec 2019 14:49:51 +0000 (14:49 +0000)]
unit drop-in: Fix ordering of special type.d drop-ins
Greg "GothAck" Miell [Fri, 27 Dec 2019 14:36:49 +0000 (14:36 +0000)]
Add failing test to show service.d global drop-in does not get overridden by more specific dropins
Felipe Sateler [Tue, 24 Dec 2019 01:04:44 +0000 (22:04 -0300)]
test-condition: fix group check condition
We were checking the uid, whereas we should have checked the gid
Leonid Evdokimov [Wed, 25 Dec 2019 13:16:27 +0000 (16:16 +0300)]
Fix typo
Felipe Sateler [Tue, 24 Dec 2019 12:50:04 +0000 (09:50 -0300)]
Fix several typos in documentation
Found by lintian
Yu Watanabe [Mon, 23 Dec 2019 14:41:09 +0000 (23:41 +0900)]
network: add one more log message
Daan De Meyer [Thu, 19 Dec 2019 20:16:30 +0000 (21:16 +0100)]
nspawn-network: Split off udev checking from parse_interface.
Daniel Shahaf [Mon, 23 Dec 2019 17:17:31 +0000 (17:17 +0000)]
zsh: Prepare for classifying systemctl commands (#14422)
Daniel Shahaf [Mon, 23 Dec 2019 16:49:51 +0000 (16:49 +0000)]
zsh: Complete more systemctl commands
The completion is now synced with the manual.
Daniel Shahaf [Mon, 23 Dec 2019 16:44:28 +0000 (16:44 +0000)]
zsh: Group systemctl subcommands as in the manual. No functional change.
Yu Watanabe [Fri, 20 Dec 2019 02:29:11 +0000 (11:29 +0900)]
bash-completion: move shell-completion for log-level or friends to systemctl
Zbigniew Jędrzejewski-Szmek [Sat, 21 Dec 2019 18:21:10 +0000 (19:21 +0100)]
Merge pull request #14409 from poettering/shutdown-modernization
some smaller modernizations to the shutdown loop
Yu Watanabe [Fri, 20 Dec 2019 23:40:22 +0000 (08:40 +0900)]
Merge pull request #14407 from ssahani/dhcp-decline
network: DHCP4 introduce send decline
Lennart Poettering [Fri, 20 Dec 2019 17:37:24 +0000 (18:37 +0100)]
umount: when we fail to detach a loopback device, set the auto-clear flag
We might get lucky and this cleans up things later on automatically for
us.
Lennart Poettering [Fri, 20 Dec 2019 16:58:03 +0000 (17:58 +0100)]
umount: check LO_FLAGS_AUTOCLEAR after LOOP_CLR_FD claimed success
Fixes: #14410
Replaces: #14386
Lennart Poettering [Fri, 20 Dec 2019 16:02:05 +0000 (17:02 +0100)]
umount: detect root loopback device the same way as we detect root DM devices
get_block_device() is just the nicer way to do it (since it also odes
btrfs). Also, let's already collect the dev_t of the loopback device
when we enumerate things, that allows us to do the checks simpler
without constantly stat()ing things over and over again.
Lennart Poettering [Fri, 20 Dec 2019 15:59:42 +0000 (16:59 +0100)]
umount: show correct error message
We fucked up errno vs. r two times, let's correct that.
While we are at it, let's handle the error first, like we usually do,
and the clean case without indentation.
Lennart Poettering [Fri, 20 Dec 2019 15:58:27 +0000 (16:58 +0100)]
umount: remove unneeded variable
Lennart Poettering [Fri, 20 Dec 2019 15:57:29 +0000 (16:57 +0100)]
umount: line break comments again
break them like we usually do, taking our intended line width into
account.
Lennart Poettering [Fri, 20 Dec 2019 11:26:17 +0000 (12:26 +0100)]
Revert "Drop dbus activation stub service"
This reverts commit
07125d24eedb71693b3bf2b1f0730cd01aaac2dd .
In contrast to what is claimed in #13396 dbus-broker apparently does
care for the service file to be around, and otherwise will claim
"Service Not Activatable" in the time between systemd starting up the
broker and connecting to it, which the stub service file is supposed to
make go away.
Reverting this makes the integration test suite pass again on host with
dbus-broker (i.e. current Fedora desktop).
Tested with dbus-broker-21-6.fc31.x86_64.
Yu Watanabe [Fri, 20 Dec 2019 15:25:47 +0000 (00:25 +0900)]
test-network: add a test case for DHCPv4.SendDecline=
Yu Watanabe [Fri, 20 Dec 2019 15:19:25 +0000 (00:19 +0900)]
network: link should not become configured state during ACD probing