]>
git.ipfire.org Git - thirdparty/systemd.git/log
Lennart Poettering [Thu, 12 Dec 2019 16:05:21 +0000 (17:05 +0100)]
nspawn: fix overlay with automatic temporary tree
This makes --overlay=+/foobar::/foobar work again, i.e. where the middle
parameter is left out. According to the documentation this is supposed
to generate a temporary writable work place in the midle. But it
apparently never did. Weird.
Tobias Bernard [Fri, 13 Dec 2019 11:01:59 +0000 (12:01 +0100)]
Merge pull request #14333 from poettering/markdown-header-fixes
docs: make sure there's only one # markdown header in each file
Lennart Poettering [Fri, 13 Dec 2019 10:56:08 +0000 (11:56 +0100)]
docs: make sure there's only one # markdown header in each file
@bertob wants us to be strict here, and only have one "#" header per
markdown file, and use "##" (or "###", …) for all others. Interestingly,
we mostly got this right already, but this fixes a few cases where this
wasn't correct.
Lennart Poettering [Thu, 12 Dec 2019 13:18:26 +0000 (14:18 +0100)]
blockdev-util: rework get_block_device()
Let's open the specified path once, and use the same fd for all lookups.
Also, don't check for btrfs twice.
The behaviour remains unmodified.
Yu Watanabe [Fri, 13 Dec 2019 09:33:04 +0000 (18:33 +0900)]
Merge pull request #13915 from ddstreet/ipv6_mtu
Set ipv6 mtu after link-up or device mtu change
Yu Watanabe [Fri, 13 Dec 2019 02:09:36 +0000 (11:09 +0900)]
Merge pull request #14320 from yuwata/network-tc-fq_codel-more
network: tc: introduce more FQ-CoDel settings
Lennart Poettering [Thu, 12 Dec 2019 23:05:38 +0000 (00:05 +0100)]
Merge pull request #14269 from DaanDeMeyer/enable-mounts-on-root
nspawn: Enable specifying root as the mount target directory.
Daan De Meyer [Thu, 12 Dec 2019 19:18:37 +0000 (20:18 +0100)]
nspawn-mount: Use FLAGS_SET to check flags.
Daan De Meyer [Sat, 7 Dec 2019 11:43:39 +0000 (12:43 +0100)]
nspawn: Only bind-mount directory when necessary.
Daan De Meyer [Sat, 7 Dec 2019 10:59:59 +0000 (11:59 +0100)]
nspawn-mount: Remove unused parameters
Daan De Meyer [Fri, 6 Dec 2019 21:45:14 +0000 (22:45 +0100)]
nspawn: Enable specifying root as the mount target directory.
Fixes #3847.
Christian Ehrhardt [Thu, 12 Dec 2019 12:37:27 +0000 (13:37 +0100)]
test: increase qemu timeout for TEST-08 and TEST-09
These tests two have shown to be flaky in Ubuntu test infrastructure,
but got more reliable with increased timeouts of 300 seconds each.
Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
Shengjing Zhu [Sun, 8 Dec 2019 19:00:01 +0000 (03:00 +0800)]
nspawn: allow combination of private-network and network-namespace-path
Fixes: #14289
Lennart Poettering [Thu, 12 Dec 2019 16:52:09 +0000 (17:52 +0100)]
Merge pull request #14321 from yuwata/network-generator-14319
network-generator: allow empty hostname
Yu Watanabe [Thu, 12 Dec 2019 09:22:09 +0000 (18:22 +0900)]
test-network: add a test case for the new settings of FQ-CoDel
Yu Watanabe [Thu, 12 Dec 2019 08:25:29 +0000 (17:25 +0900)]
network: tc: support more attributes for FQ-CoDel
Yu Watanabe [Thu, 12 Dec 2019 12:16:38 +0000 (21:16 +0900)]
Merge pull request #14305 from ssahani/tc-fq
network tc: inroduce FQ - Fair Queue traffic policing
Yu Watanabe [Thu, 12 Dec 2019 10:02:25 +0000 (19:02 +0900)]
test: add a test case for network-generator
Yu Watanabe [Thu, 12 Dec 2019 10:01:21 +0000 (19:01 +0900)]
network-generator: allow empty hostname
Fixes #14319.
Yu Watanabe [Thu, 12 Dec 2019 07:29:23 +0000 (16:29 +0900)]
test-network: add a test case for FQ
Susant Sahani [Wed, 11 Dec 2019 09:52:51 +0000 (10:52 +0100)]
network tc: inroduce FQ - Fair Queue traffic policing
Please see http://man7.org/linux/man-pages/man8/tc-fq.8.html
Yu Watanabe [Thu, 12 Dec 2019 08:04:06 +0000 (17:04 +0900)]
Merge pull request #14308 from poettering/man-naming-scheme-typo
superficial fixes to network naming docs
Yu Watanabe [Thu, 12 Dec 2019 07:21:49 +0000 (16:21 +0900)]
sd-netlink: add attributes for FQ
Yu Watanabe [Thu, 12 Dec 2019 06:55:11 +0000 (15:55 +0900)]
Merge pull request #14309 from yuwata/network-tc-vtable
network: tc: introduce QDiscVTable
Anita Zhang [Wed, 11 Dec 2019 21:49:01 +0000 (13:49 -0800)]
Merge pull request #14307 from poettering/unicode-fuckup
locale-util: drop weird invisible unicode codepoints accidentally ins…
Anita Zhang [Wed, 11 Dec 2019 21:35:22 +0000 (13:35 -0800)]
Merge pull request #14317 from poettering/hwdb-indent-fix
hwdb: trivial indentation fix
Lennart Poettering [Tue, 10 Dec 2019 20:30:39 +0000 (21:30 +0100)]
locale-util: drop weird invisible unicode codepoints accidentally inserted in comment
Lennart Poettering [Wed, 11 Dec 2019 20:35:33 +0000 (21:35 +0100)]
hwdb: trivial indentation fix
Tobias Bernard [Wed, 11 Dec 2019 16:19:14 +0000 (17:19 +0100)]
minor: avoid double title
The logo and H1 were clashing a bit
Tobias Bernard [Wed, 11 Dec 2019 16:01:46 +0000 (17:01 +0100)]
docs: make it pretty
Add custom Jekyll theme, logo, webfont and .gitignore
FIXME: the markdown files have some H1 headers which need to be replaced
with H2
Yu Watanabe [Wed, 11 Dec 2019 11:10:29 +0000 (20:10 +0900)]
network: tc: introduce QDiscVTable for future extendability
Yu Watanabe [Wed, 11 Dec 2019 11:09:11 +0000 (20:09 +0900)]
network: tc: drop unused element
Yu Watanabe [Wed, 11 Dec 2019 10:25:09 +0000 (19:25 +0900)]
network: tc: drop unused functions
Lennart Poettering [Wed, 11 Dec 2019 11:04:55 +0000 (12:04 +0100)]
docs: direct to systemd.io version of naming scheme docs
The document was imported back in
f9e6d49904e06d2cba3871f6873d0519fe086d0f . Let's make sure we actually
point to that version rather than the old one on freedesktop.
Lennart Poettering [Wed, 11 Dec 2019 11:04:32 +0000 (12:04 +0100)]
docs: fix markdown links
Lennart Poettering [Wed, 11 Dec 2019 11:03:58 +0000 (12:03 +0100)]
docs: use `` quotes for marking identifiers of some form
Lennart Poettering [Wed, 11 Dec 2019 10:52:00 +0000 (11:52 +0100)]
man: fix typo in net-naming-scheme man page
Yu Watanabe [Wed, 11 Dec 2019 11:07:20 +0000 (20:07 +0900)]
Merge pull request #14303 from yuwata/tc-use-typesafe-functions
network: tc: use typesafe functions
Lennart Poettering [Wed, 11 Dec 2019 10:43:31 +0000 (11:43 +0100)]
Merge pull request #14306 from poettering/markdown-category
beef up systemd.io pages with simple categorization
Lennart Poettering [Wed, 11 Dec 2019 09:49:59 +0000 (10:49 +0100)]
docs: beef up entrypoint documentation page
Let's use the rough categorization of the markdown pages to add basic
sections, via Jeykll templating. Also, add in a couple of additional
links via a JSON array that lists them.
So much web development, so much wow!
Lennart Poettering [Wed, 11 Dec 2019 09:49:28 +0000 (10:49 +0100)]
docs: place all our markdown docs in rough categories
cheese1 [Wed, 11 Dec 2019 09:33:13 +0000 (10:33 +0100)]
man: fix typos (#14304)
Yu Watanabe [Wed, 11 Dec 2019 07:31:52 +0000 (16:31 +0900)]
network: tc: use typesafe functions to append netlink attributes
Yu Watanabe [Wed, 11 Dec 2019 07:30:39 +0000 (16:30 +0900)]
sd-netlink: make TCA_OPTIONS take NETLINK_TYPE_UNION
Yu Watanabe [Wed, 11 Dec 2019 04:27:14 +0000 (13:27 +0900)]
Merge pull request #14278 from ssahani/tc
network tc: qdisc parent add support to set ingress
Yu Watanabe [Wed, 11 Dec 2019 04:26:51 +0000 (13:26 +0900)]
Merge pull request #14297 from poettering/id128-size
cleaning up id128 formatting buffer sizing
AJ Bagwell [Tue, 10 Dec 2019 16:27:31 +0000 (16:27 +0000)]
ipv4ll: do not reset conflict counter on restart
Don't reset the conflict counter when trying a new pseudo random
address, so that after trying 10 addresses the londer timeout is used in
accordance with the RFC
Fixes #14299.
Yu Watanabe [Tue, 10 Dec 2019 14:46:38 +0000 (23:46 +0900)]
test-network: add a test case for fq-codel
Susant Sahani [Sat, 7 Dec 2019 19:48:18 +0000 (20:48 +0100)]
network tc: Add support to conkfigure CoDel - Controlled-Delay Active Queue Management algorithm
```
$ tc qdisc show dev dummy99
qdisc fq_codel 8005: dev dummy99 root refcnt 2 limit 1000p flows 1024 quantum 1514 target 5.0ms interval 100.0ms memory_limit 32Mb ecn
$ network cat dumm99.network
[Match]
Name=dummy99
[TrafficControlQueueingDiscipline]
Parent=root
FairQueuingControlledDelayPacketLimit=1000
```
Susant Sahani [Sat, 7 Dec 2019 16:46:37 +0000 (17:46 +0100)]
network tc: qdisc parent add support to set ingress
```
$ network tc qdisc
qdisc noqueue 0: dev dummy99 root refcnt 2
qdisc ingress ffff: dev dummy99 parent ffff:fff1 ----------------
$ network cat dumm99.network
[Match]
Name=dummy99
[TrafficControlQueueingDiscipline]
Parent=ingress
```
Yu Watanabe [Tue, 10 Dec 2019 15:02:43 +0000 (00:02 +0900)]
Merge pull request #14280 from yuwata/network-tbf-more
network: tc: add more options for TBF
Yu Watanabe [Tue, 10 Dec 2019 11:17:33 +0000 (20:17 +0900)]
Merge pull request #14295 from poettering/greedy-alloc-round-up
add new GREEDY_ALLOC_ROUND_UP() to make strv_extend() a bit less slow
Lennart Poettering [Tue, 10 Dec 2019 10:52:54 +0000 (11:52 +0100)]
tree-wide: use SD_ID128_STRING_MAX where appropriate
Lennart Poettering [Tue, 10 Dec 2019 10:33:28 +0000 (11:33 +0100)]
id128: introduce ID128_UUID_STRING_MAX for sizing UUID buffers
Anita Zhang [Mon, 9 Dec 2019 21:33:36 +0000 (13:33 -0800)]
Merge pull request #14284 from yuwata/network-fix-segfault-14283
network: fix segfault in parsing SendOption=
Lennart Poettering [Mon, 9 Dec 2019 17:30:00 +0000 (18:30 +0100)]
strv: when growing strv arrays piecemeal actually allocate memory in exponential steps
Let's improve memory allocation for call such as strv_extend() that just
one item to an strv: these are often called in a loop, where they used
to be very ineffecient, since we'd allocate byte-exact space. With this
change let's improve on that, by allocating exponentially by rounding up
to the next exponent of 2. This way we get GREEDY_REALLOC()-like
behaviour without passing around state.
In fact this should be good enough so that we could replace existing
loops around GREEDY_REALLOC() for strv build-up with plain strv_extend()
and get similar behaviour.
Lennart Poettering [Mon, 9 Dec 2019 17:29:29 +0000 (18:29 +0100)]
test-util: add more tests for ALIGN_POWER2
Lennart Poettering [Mon, 9 Dec 2019 17:26:10 +0000 (18:26 +0100)]
macro: introduce new GREEDY_ALLOC_ROUND_UP() helper
Lennart Poettering [Mon, 9 Dec 2019 17:24:41 +0000 (18:24 +0100)]
macro: avoid subtraction overflow in ALIGN_POWER2()
Yu Watanabe [Sat, 7 Dec 2019 20:55:49 +0000 (05:55 +0900)]
test-network: add tests for new TBF settings
Yu Watanabe [Sat, 7 Dec 2019 20:54:33 +0000 (05:54 +0900)]
network: tc: add more options for TBF
Yu Watanabe [Sun, 8 Dec 2019 10:54:49 +0000 (19:54 +0900)]
test-network: add a test case for SendOption=
Yu Watanabe [Sun, 8 Dec 2019 10:54:20 +0000 (19:54 +0900)]
network: fix segfault in parsing SendOption=
Fixes #14283.
Mike Gilbert [Fri, 6 Dec 2019 19:28:13 +0000 (14:28 -0500)]
seccomp: real syscall numbers are >= 0
Real syscall numbers start at 0. The fake seccomp values seem to be
strictly less than 0.
Fixes: 4df8fe8415eaf4abd5b93c3447452547c6ea9e5f
Yong Cong Sin [Sat, 7 Dec 2019 14:15:02 +0000 (01:15 +1100)]
Add Cube iWork 11 Stylus
Yu Watanabe [Sun, 8 Dec 2019 15:57:06 +0000 (00:57 +0900)]
test: do not fail if new device is plugged during enumeration
Yu Watanabe [Sun, 8 Dec 2019 15:39:33 +0000 (00:39 +0900)]
test-network: make test_bind_carrier more stable
Yu Watanabe [Sun, 8 Dec 2019 15:15:31 +0000 (00:15 +0900)]
Merge pull request #14266 from topimiettinen/dont-resolve-user-if-not-root
resolved: don't resolve the user if not root
Yu Watanabe [Sat, 7 Dec 2019 20:13:08 +0000 (05:13 +0900)]
Merge pull request #14273 from ssahani/ifb
network: introduce IFB
Yu Watanabe [Sat, 7 Dec 2019 14:20:37 +0000 (23:20 +0900)]
network: fix copy and paste mistake
Topi Miettinen [Fri, 6 Dec 2019 14:36:58 +0000 (16:36 +0200)]
resolved, networkd: don't resolve the user if not root
If a daemon is not started as root, most likely it also can't create its
directory and let's not try to resolve the user in that case either.
Create /run/systemd/netif/lldp with tmpfiles.d like other netif directories.
This is also very helpful for preparing a RootImage for the daemons as NSS crud
is not needed.
Yu Watanabe [Sat, 7 Dec 2019 15:03:29 +0000 (00:03 +0900)]
test-network: add test case for IFB
Susant Sahani [Sat, 7 Dec 2019 13:35:55 +0000 (14:35 +0100)]
network: introduce ifb (Intermediate Functional Block)
Intermediate Functional Block
The Intermediate Functional Block (ifb) pseudo network interface acts as a QoS concentrator for multiple different sources of traffic. Packets from or to other interfaces have to be redirected to it using the mirred action in order to be handled, regularly routed traffic will be dropped. This way, a single stack of qdiscs, classes and filters can be shared between multiple interfaces.
Here's a simple example to feed incoming traffic from multiple interfaces through a Stochastic Fairness Queue (sfq):
(1) # modprobe ifb
(2) # ip link set ifb0 up
(3) # tc qdisc add dev ifb0 root sfq
Susant Sahani [Sat, 7 Dec 2019 13:35:23 +0000 (14:35 +0100)]
sd-netlink: add support for ifb device
Yu Watanabe [Sat, 7 Dec 2019 05:11:44 +0000 (14:11 +0900)]
Merge pull request #14102 from ssahani/acd-duplicate-ip
network: introduce DAD for static IPV4 address
Anita Zhang [Fri, 6 Dec 2019 19:02:56 +0000 (11:02 -0800)]
Merge pull request #14265 from keszybz/seccomp-log-line-fix
shared/seccomp: avoid possibly writing bogus errno code in debug log
Yu Watanabe [Fri, 6 Dec 2019 14:29:28 +0000 (23:29 +0900)]
test-network: add test case for IPv4 DAD
Susant Sahani [Thu, 21 Nov 2019 15:54:52 +0000 (16:54 +0100)]
network: introduce DAD for static address
Closes #2527.
Zbigniew Jędrzejewski-Szmek [Fri, 6 Dec 2019 14:04:51 +0000 (15:04 +0100)]
shared/seccomp: avoid possibly writing bogus errno code in debug log
CID
1409488 .
This code was added in
903659e7b242c3cc897e32835f1918d380b24e5f . The change
that is done here is a simple fix to avoid use of a
unitialized/wrongly-initialized variable, but the bigger issue is that nothing
looks at the returned result to distinguish between 0 and a positive return
value.
Zbigniew Jędrzejewski-Szmek [Fri, 6 Dec 2019 11:46:42 +0000 (12:46 +0100)]
Merge pull request #14235 from fbuihuu/cryptsetup-fixes
Cryptsetup fixes
Yu Watanabe [Thu, 5 Dec 2019 10:54:29 +0000 (19:54 +0900)]
network: do not drop foreign config if interface is in initialized state
If the interface is in initialized state, no network file is assigned to
the interface. If an interface is not managed by networkd, previously,
the foreign configs of the interface was dropped.
Fixes #14250.
Lennart Poettering [Fri, 6 Dec 2019 07:55:30 +0000 (08:55 +0100)]
Merge pull request #14252 from keszybz/growfs-port-resizefs
Port growfs over to resizefs
Lennart Poettering [Fri, 6 Dec 2019 07:55:15 +0000 (08:55 +0100)]
Merge pull request #14253 from keszybz/cleanups
Cleanups
Lennart Poettering [Fri, 6 Dec 2019 07:54:54 +0000 (08:54 +0100)]
Merge pull request #14167 from cpaelzer/fix-MemoryDenyWriteExecute-x86-s390-bug-
1853852 -UPSTREAM
Fix memory_deny_write_execute on x86 and s390 with libseccomp 2.4.2
Dan Streetman [Wed, 30 Oct 2019 12:35:37 +0000 (08:35 -0400)]
test-network: add tests to verify IPv6MTUBytes
Dan Streetman [Tue, 26 Nov 2019 20:36:53 +0000 (15:36 -0500)]
test-network: disable restart limiting for networkd
Some of the tests restart networkd rapidly, so restart limiting
must be disabled to avoid start ratelimiting from causing test
failures.
Dan Streetman [Sat, 2 Nov 2019 09:09:11 +0000 (05:09 -0400)]
test-network: in wait_online() allow a few seconds to reach setup_state
Dan Streetman [Thu, 31 Oct 2019 14:15:53 +0000 (10:15 -0400)]
test-network: read link attribute at any depth
Dan Streetman [Sat, 2 Nov 2019 08:43:18 +0000 (04:43 -0400)]
test-network: allow specifying only individual drop-in files
Dan Streetman [Tue, 29 Oct 2019 14:31:58 +0000 (10:31 -0400)]
network: set ipv6 mtu after link-up or device mtu change
The kernel resets the ipv6 mtu after NETDEV_UP or NETDEV_CHANGEMTU event,
so we must reset the ipv6 mtu to our configured value after we detect
IFF_UP flag set or after we set the device mtu.
Fixes: #13914.
Anita Zhang [Thu, 5 Dec 2019 18:55:20 +0000 (10:55 -0800)]
Merge pull request #14258 from TimoWilken/patch-1
Fix typo (duplicate "or")
Timo Wilken [Thu, 5 Dec 2019 18:36:57 +0000 (18:36 +0000)]
Fix typo (duplicate "or")
This fixes a double "or" in the text of `systemctl --help`.
Franck Bui [Tue, 3 Dec 2019 08:49:09 +0000 (09:49 +0100)]
cryptsetup: umount encrypted devices before detaching it during shutdown
This is done by ordering local-fs-pre.target and remote-fs-pre.target after
cryptsetup.target and remote-cryptsetup.target respectively.
Fixes: #8472
Franck Bui [Tue, 3 Dec 2019 08:30:57 +0000 (09:30 +0100)]
crypsetup: introduce x-initrd.attach option
This option is an indication for PID1 that the entry in crypttab is handled by
initrd only and therefore it shouldn't interfer during the usual start-up and
shutdown process.
It should be primarily used with the encrypted device containing the root FS as
we want to keep it (and thus its encrypted device) until the very end of the
shutdown process, i.e. when initrd takes over.
This option is the counterpart of "x-initrd.mount" used in fstab.
Note that the slice containing the cryptsetup services also needs to drop the
usual shutdown dependencies as it's required by the cryptsetup services.
Fixes: #14224
Zbigniew Jędrzejewski-Szmek [Thu, 5 Dec 2019 09:31:55 +0000 (10:31 +0100)]
TODO: remove obsolete entries
"introspect" is well established and OK. We shouldn't change it at this point.
Zbigniew Jędrzejewski-Szmek [Wed, 4 Dec 2019 13:51:33 +0000 (14:51 +0100)]
Fix use of unitialized variable in error path
CID
1408478 .
Zbigniew Jędrzejewski-Szmek [Thu, 5 Dec 2019 09:22:01 +0000 (10:22 +0100)]
Merge pull request #14209 from poettering/sd-bus-sensitive
sd-bus bits from homed PR
Zbigniew Jędrzejewski-Szmek [Thu, 5 Dec 2019 09:17:10 +0000 (10:17 +0100)]
Merge pull request #14221 from poettering/homed-preparatory-resizefs
preparatory fs resizing support split out of homed PR
Zbigniew Jędrzejewski-Szmek [Thu, 5 Dec 2019 09:15:49 +0000 (10:15 +0100)]
growfs: port over to resize_fs()
Zbigniew Jędrzejewski-Szmek [Thu, 5 Dec 2019 08:22:13 +0000 (09:22 +0100)]
growfs: define main function through macro