From: Jan Engelhardt Date: Wed, 25 Dec 2024 15:13:02 +0000 (+0100) Subject: man: expand word contractions X-Git-Tag: v258-rc1~1773^2~3 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=44855c77a171840a70b65e8a8b2388c91202ef01;p=thirdparty%2Fsystemd.git man: expand word contractions For written text, contractions are not normally used. --- diff --git a/man/90-rearrange-path.py b/man/90-rearrange-path.py index 5c727e411ec..0620195157e 100755 --- a/man/90-rearrange-path.py +++ b/man/90-rearrange-path.py @@ -35,7 +35,7 @@ def rearrange_bin_sbin(path): if __name__ == '__main__': path = os.environ['PATH'] # This should be always set. - # If it's not, we'll just crash, which is OK too. + # If it is not, we will just crash, which is OK too. new = rearrange_bin_sbin(path) if new != path: print('PATH={}'.format(new)) diff --git a/man/bootup.xml b/man/bootup.xml index a0aafe5e790..8c97051b56d 100644 --- a/man/bootup.xml +++ b/man/bootup.xml @@ -339,7 +339,7 @@ systemd-reboot.service | | | | remaining file systems, kill any remaining processes and release any other remaining resources, in a simple and robust fashion, without taking any service or unit concept into account anymore. At that point, regular applications and resources are generally terminated and released already, the second phase hence operates only as - safety net for everything that couldn't be stopped or released for some reason during the primary, unit-based + safety net for everything that could not be stopped or released for some reason during the primary, unit-based shutdown phase described above. diff --git a/man/crypttab.xml b/man/crypttab.xml index c91e8c2819c..7ef06c43599 100644 --- a/man/crypttab.xml +++ b/man/crypttab.xml @@ -984,10 +984,10 @@ systemd.mount5 units marked with . - Although it's not necessary to mark the mount entry for the root file system with + Although it is not necessary to mark the mount entry for the root file system with , is still recommended with the encrypted block device containing the root file system as otherwise systemd will - attempt to detach the device during the regular system shutdown while it's still in + attempt to detach the device during the regular system shutdown while it is still in use. With this option the device will still be detached but later after the root file system is unmounted. diff --git a/man/directives-template.xml b/man/directives-template.xml index 0b6ee219293..80d8e08b021 100644 --- a/man/directives-template.xml +++ b/man/directives-template.xml @@ -163,7 +163,7 @@ Miscellaneous options and directives - Other configuration elements which don't fit in any of the above groups. + Other configuration elements which do not fit in any of the above groups. diff --git a/man/fido2-crypttab.sh b/man/fido2-crypttab.sh index d1c31e3e8ce..6823958a4e4 100644 --- a/man/fido2-crypttab.sh +++ b/man/fido2-crypttab.sh @@ -8,7 +8,7 @@ sudo systemd-cryptenroll --fido2-device=auto /dev/sdXn sudo systemd-cryptsetup attach mytest /dev/sdXn - fido2-device=auto # If that worked, let's now add the same line persistently to /etc/crypttab, -# for the future. We don't want to use the (unstable) /dev/sdX name, so let's +# for the future. We do not want to use the (unstable) /dev/sdX name, so let's # figure out a stable link: udevadm info -q symlink -r /dev/sdXn diff --git a/man/file-hierarchy.xml b/man/file-hierarchy.xml index 358f428538e..1c4a33d5977 100644 --- a/man/file-hierarchy.xml +++ b/man/file-hierarchy.xml @@ -72,7 +72,7 @@ If the boot partition /boot/ is maintained separately from the EFI System Partition (ESP), the latter is mounted here. Tools that need to operate on the EFI system partition should look for it at this mount point first, and fall back to /boot/ - — if the former doesn't qualify (for example if it is not a mount point or does not have the correct + — if the former does not qualify (for example if it is not a mount point or does not have the correct file system type MSDOS_SUPER_MAGIC). @@ -534,7 +534,7 @@ possible to mount them , because various programs use those directories for dynamically generated or optimized code, and with that flag those use cases would break. Using this flag is OK on special-purpose installations or systems where all software that may be installed is - known and doesn't require such functionality. See the discussion of + known and does not require such functionality. See the discussion of // in mount8 and PROT_EXEC in logind.conf5 (for home directories of LUKS2 storage located on removable media this defaults to 0 though). A longer - time makes sure quick, repetitive logins are more efficient as the user's service manager doesn't + time makes sure quick, repetitive logins are more efficient as the user's service manager does not have to be started every time. @@ -1310,7 +1310,7 @@ ykman piv generate-key -a RSA2048 9d pubkey.pem # Create a self-signed certificate from this public key, and store it on the device. ykman piv generate-certificate --subject "Knobelei" 9d pubkey.pem -# We don't need the public key on disk anymore +# We do not need the public key on disk anymore rm pubkey.pem # Allow the security token to unlock the account of user 'lafcadio'. diff --git a/man/journalctl.xml b/man/journalctl.xml index 5881a52eaf0..a21b4dc3c27 100644 --- a/man/journalctl.xml +++ b/man/journalctl.xml @@ -737,7 +737,7 @@ - Don't show the hostname field of log messages originating from the local host. This + Do not show the hostname field of log messages originating from the local host. This switch has an effect only on the family of output modes (see above). Note: this option does not remove occurrences of the hostname from log entries themselves, so diff --git a/man/journald.conf.xml b/man/journald.conf.xml index 1aa74926ab5..3aae53551c7 100644 --- a/man/journald.conf.xml +++ b/man/journald.conf.xml @@ -422,7 +422,7 @@ where the console is often a slow, virtual serial port. Since journald is implemented as a conventional single-process daemon, forwarding to a completely hung console will block journald. This can have a cascading effect resulting in any services synchronously - logging to the blocked journal also becoming blocked. Unless actively debugging/developing something, it's + logging to the blocked journal also becoming blocked. Unless actively debugging/developing something, it is generally preferable to setup a journalctl --follow style service redirected to the console, instead of ForwardToConsole=yes, for production use. diff --git a/man/kernel-command-line.xml b/man/kernel-command-line.xml index 94bc8740094..29d6426b01b 100644 --- a/man/kernel-command-line.xml +++ b/man/kernel-command-line.xml @@ -688,7 +688,7 @@ dd if=/dev/urandom bs=512 count=1 status=none | base64 -w 0 - Again: do not use this option outside of testing environments, it's a security risk elsewhere, + Again: do not use this option outside of testing environments, it is a security risk elsewhere, as secret key material derived from the entropy pool can possibly be reconstructed by unprivileged programs. diff --git a/man/kernel-install.xml b/man/kernel-install.xml index f3468bbde0e..7f57d96839f 100644 --- a/man/kernel-install.xml +++ b/man/kernel-install.xml @@ -413,7 +413,7 @@ $KERNEL_INSTALL_MACHINE_ID is set for the plugins to the desired machine-id to - use. It's always a 128-bit ID. Normally it's read from /etc/machine-id, but it can + use. It's always a 128-bit ID. Normally it is read from /etc/machine-id, but it can also be overridden via $MACHINE_ID (see below). If not specified via these methods, a fallback value will generated by kernel-install and used only for a single invocation. @@ -442,7 +442,7 @@ $KERNEL_INSTALL_LAYOUT=auto|bls|uki|other|... is set for the plugins to specify the installation layout. Additional layout names may be defined by convention. If a plugin uses a special layout, - it's encouraged to declare its own layout name and configure layout= in + it is encouraged to declare its own layout name and configure layout= in install.conf upon initial installation. The following values are currently understood: diff --git a/man/logind.conf.xml b/man/logind.conf.xml index da41d56e7fa..ff3ab5422a4 100644 --- a/man/logind.conf.xml +++ b/man/logind.conf.xml @@ -386,7 +386,7 @@ Specifies a timeout in seconds, or a time span value after which systemd-logind checks the idle state of all sessions. Every session that is idle - for longer than the timeout will be stopped. Note that this option doesn't apply to + for longer than the timeout will be stopped. Note that this option does not apply to greeter or lock-screen sessions. Defaults to infinity (systemd-logind is not checking the idle state of sessions). For details about the syntax of time spans, see diff --git a/man/machinectl.xml b/man/machinectl.xml index 5b19a9abbd7..a47269b24e9 100644 --- a/man/machinectl.xml +++ b/man/machinectl.xml @@ -422,7 +422,7 @@ Edit the settings file of the specified machines. For the format of the settings file, refer to systemd.nspawn5. - If an existing settings file of the given machine can't be found, edit + If an existing settings file of the given machine cannot be found, edit automatically create a new settings file from scratch under /etc/systemd/nspawn/. diff --git a/man/networkctl.xml b/man/networkctl.xml index 22f9744c955..86ef52915ea 100644 --- a/man/networkctl.xml +++ b/man/networkctl.xml @@ -156,7 +156,7 @@ pending systemd-udevd8 - is still processing the link, we don't yet know if we will manage it. + is still processing the link, we do not yet know if we will manage it. @@ -165,7 +165,7 @@ initialized systemd-udevd8 - has processed the link, but we don't yet know if we will manage it. + has processed the link, but we do not yet know if we will manage it. diff --git a/man/nss-systemd.xml b/man/nss-systemd.xml index 890faaea329..fc887cacacd 100644 --- a/man/nss-systemd.xml +++ b/man/nss-systemd.xml @@ -39,7 +39,7 @@ systemd-homed.service8, or systemd-machined.service8. This module also ensures that the root and nobody users and groups (i.e. the users/groups with the UIDs/GIDs - 0 and 65534) remain resolvable at all times, even if they aren't listed in /etc/passwd or + 0 and 65534) remain resolvable at all times, even if they are not listed in /etc/passwd or /etc/group, or if these files are missing. This module preferably utilizes diff --git a/man/org.freedesktop.home1.xml b/man/org.freedesktop.home1.xml index dd947a3ed4f..403778288d7 100644 --- a/man/org.freedesktop.home1.xml +++ b/man/org.freedesktop.home1.xml @@ -568,7 +568,7 @@ node /org/freedesktop/home1/home { operate like their matching counterparts on the org.freedesktop.home1.Manager interface (see above). The main difference is that they are methods of the home directory objects, and hence carry no additional user name parameter. Which of the two flavors of methods to call depends on - the handles to the user known on the client side: if only the user name is known, it's preferable to use + the handles to the user known on the client side: if only the user name is known, it is preferable to use the methods on the manager object since they operate with user names only. Clients can also easily operate on their own home area by using the methods on the manager object with an empty string as the user name. If the client has the home's object path already acquired in some way, however, it is preferable to operate diff --git a/man/org.freedesktop.login1.xml b/man/org.freedesktop.login1.xml index a69a8ecb354..965d826101a 100644 --- a/man/org.freedesktop.login1.xml +++ b/man/org.freedesktop.login1.xml @@ -1420,7 +1420,7 @@ node /org/freedesktop/login1/session/1 { only works on devices that are attached to the seat of the given session. A process is not required to have direct access to the device node. systemd-logind only requires you to be the active session controller (see TakeControl()). Also note that any device can only - be requested once. As long as you don't release it, further TakeDevice() calls + be requested once. As long as you do not release it, further TakeDevice() calls will fail. ReleaseDevice() releases a device again (see @@ -1465,7 +1465,7 @@ node /org/freedesktop/login1/session/1 { notification. pause means systemd-logind grants you a limited amount of time to pause the device. You must respond to this via PauseDeviceComplete(). This synchronous pausing mechanism is used for backwards-compatibility to VTs and systemd-logind is free to not make use of - it. It is also free to send a forced PauseDevice() if you don't respond in a timely + it. It is also free to send a forced PauseDevice() if you do not respond in a timely manner (or for any other reason). gone means the device was unplugged from the system and you will no longer get any notifications about it. There is no need to call ReleaseDevice(). You may call TakeDevice() again if a new diff --git a/man/org.freedesktop.systemd1.xml b/man/org.freedesktop.systemd1.xml index 1d0042cc9b7..1c5e7f2eb75 100644 --- a/man/org.freedesktop.systemd1.xml +++ b/man/org.freedesktop.systemd1.xml @@ -1283,7 +1283,7 @@ node /org/freedesktop/systemd1 { its dependencies, possibly replacing already queued jobs that conflict with it. If fail, the method will start the unit and its dependencies, but will fail if this would change an already queued job. If isolate, the method will start the unit in question - and terminate all units that aren't dependencies of it. If ignore-dependencies, it + and terminate all units that are not dependencies of it. If ignore-dependencies, it will start a unit but ignore all its dependencies. If ignore-requirements, it will start a unit but only ignore the requirement dependencies. It is not recommended to make use of the latter two options. On reply, if successful, this method returns the newly created job object @@ -1309,8 +1309,8 @@ node /org/freedesktop/systemd1 { TryRestartUnit(), ReloadOrRestartUnit(), or ReloadOrTryRestartUnit() may be used to restart and/or reload a unit. These methods take similar arguments as StartUnit(). Reloading is done only if the unit is already - running and fails otherwise. If a service is restarted that isn't running, it will be started unless - the "Try" flavor is used in which case a service that isn't running is not affected by the restart. The + running and fails otherwise. If a service is restarted that is not running, it will be started unless + the "Try" flavor is used in which case a service that is not running is not affected by the restart. The "ReloadOrRestart" flavors attempt a reload if the unit supports it and use a restart otherwise. EnqueueMarkedJobs() creates reload/restart jobs for units which have been @@ -1619,12 +1619,12 @@ node /org/freedesktop/systemd1 { failed, dependency, or skipped. done indicates successful execution of a job. canceled indicates that a job has been canceled (via - CancelJob() above) before it finished execution (this doesn't necessarily mean + CancelJob() above) before it finished execution (this does not necessarily mean though that the job operation is actually cancelled too, see above). timeout indicates that the job timeout was reached. failed indicates that the job failed. dependency indicates that a job this job depended on failed and the job hence was removed as well. skipped indicates that a job was skipped because - it didn't apply to the unit's current state. + it did not apply to the unit's current state. StartupFinished() is sent out when startup finishes. It carries six microsecond timespan values, each indicating how much boot time has been spent in the firmware (if @@ -2575,7 +2575,7 @@ node /org/freedesktop/systemd1/unit/avahi_2ddaemon_2eservice { reboot). masked indicates that the unit file is masked permanently. masked-runtime indicates that it is masked in /run/ temporarily (until the next reboot). static indicates that the unit is statically enabled, i.e. - always enabled and doesn't need to be enabled explicitly. invalid indicates that it + always enabled and does not need to be enabled explicitly. invalid indicates that it could not be determined whether the unit file is enabled. InactiveExitTimestamp, InactiveExitTimestampMonotonic, @@ -2636,7 +2636,7 @@ node /org/freedesktop/systemd1/unit/avahi_2ddaemon_2eservice { five fields are given: condition type (e.g. ConditionPathExists), whether the condition is a trigger condition, whether the condition is reversed, the right hand side of the condition (e.g. the path in case of ConditionPathExists), and the status. The status - can be 0, in which case the condition hasn't been checked yet, a positive value, in which case the + can be 0, in which case the condition has not been checked yet, a positive value, in which case the condition passed, or a negative value, in which case the condition is not met. Currently only 0, +1, and -1 are used, but additional values may be used in the future, retaining the meaning of zero/positive/negative values. @@ -4767,7 +4767,7 @@ node /org/freedesktop/systemd1/unit/avahi_2ddaemon_2eservice { with runtime data. LimitCPU (and related properties) map more or less directly to the - corresponding settings in the service unit files except that if they aren't set, their value is + corresponding settings in the service unit files except that if they are not set their value is 18446744073709551615 (i.e. -1). Capabilities contains the configured capabilities, as formatted with @@ -4813,7 +4813,7 @@ node /org/freedesktop/systemd1/unit/avahi_2ddaemon_2eservice { Result encodes the execution result of the last run of the service. It is useful to determine the reason a service failed if it is in the failed state (see ActiveState above). The following values are currently known: - success is set if the unit didn't fail. resources indicates that + success is set if the unit did not fail. resources indicates that not enough resources were available to fork off and execute the service processes. timeout indicates that a timeout occurred while executing a service operation. exit-code indicates that a service process exited with an unclean exit diff --git a/man/org.freedesktop.sysupdate1.xml b/man/org.freedesktop.sysupdate1.xml index 651422477ad..a34ca18c5ce 100644 --- a/man/org.freedesktop.sysupdate1.xml +++ b/man/org.freedesktop.sysupdate1.xml @@ -284,7 +284,7 @@ node /org/freedesktop/sysupdate1/target/host { software center to correctly associate the catalogs with this target. GetVersion() returns the current version of this target, if any. The current - version is the newest version that is installed. Note that this isn't necessarily the same thing as the + version is the newest version that is installed. Note that this is not necessarily the same thing as the booted or currently-in-use version of the target. For example, on the host system the booted version is the current version most of the time, but if an update is installed and pending a reboot it will become the current version instead. You can query the booted version of the host system via diff --git a/man/os-release.xml b/man/os-release.xml index 99e31ba24eb..548eb47a4c0 100644 --- a/man/os-release.xml +++ b/man/os-release.xml @@ -120,7 +120,7 @@ In the extension-release.IMAGE filename, the IMAGE part must exactly match the file name of the containing image with the - suffix removed. In case it is not possible to guarantee that an image file name is stable and doesn't + suffix removed. In case it is not possible to guarantee that an image file name is stable and does not change between the build and the deployment phases, it is possible to relax this check: if exactly one file whose name matches extension-release.* is present in this directory, and the file is tagged with a user.extension-release.strict diff --git a/man/pam_systemd_home.xml b/man/pam_systemd_home.xml index ae3a24faf02..74c4363b730 100644 --- a/man/pam_systemd_home.xml +++ b/man/pam_systemd_home.xml @@ -65,7 +65,7 @@ user concurrently uses graphical login sessions that implement the required re-authentication mechanism and console logins that do not, the home directory is not locked during suspend, due to the logic explained above. That said, it is possible to set this field for TTY logins too, ignoring the - fact that TTY logins actually don't support the re-authentication mechanism. In that case the TTY + fact that TTY logins actually do not support the re-authentication mechanism. In that case the TTY sessions will appear hung until the user logs in on another virtual terminal (regardless of whether via another TTY session or graphically) which will resume the home directory and unblock the original TTY session. (Do note that lack of screen locking on TTY sessions means even though the TTY session diff --git a/man/portablectl.xml b/man/portablectl.xml index cafb3565ace..1cac9925570 100644 --- a/man/portablectl.xml +++ b/man/portablectl.xml @@ -170,7 +170,7 @@ Detaches an existing portable service image from the host, and immediately attaches it again. This is useful in case the image was replaced. Running units are not stopped during the process. Partial matching, to allow for different versions in the image name, is allowed: only the part before the first _ - character has to match. If the new image doesn't exist, the existing one will not be detached. The parameters + character has to match. If the new image does not exist, the existing one will not be detached. The parameters follow the same syntax as the attach command. If and/or are passed, the portable services are @@ -350,7 +350,7 @@ - Don't reload the service manager after attaching or detaching a portable service + Do not reload the service manager after attaching or detaching a portable service image. Normally the service manager is reloaded to ensure it is aware of added or removed unit files. @@ -388,7 +388,7 @@ - Don't block waiting for attach --now to complete. + Do not block waiting for attach --now to complete. diff --git a/man/poweroff.xml b/man/poweroff.xml index 501db12a58b..ce4ff3cb2c8 100644 --- a/man/poweroff.xml +++ b/man/poweroff.xml @@ -129,7 +129,7 @@ - Don't sync hard disks/storage media before power-off, reboot, or halt. + Do not sync hard disks/storage media before power-off, reboot, or halt. diff --git a/man/repart.d.xml b/man/repart.d.xml index 204fc162081..b5487e3b20c 100644 --- a/man/repart.d.xml +++ b/man/repart.d.xml @@ -391,7 +391,7 @@ This option has no effect if the partition it is declared for already exists, i.e. existing data is never overwritten. Note that the data is copied in before the partition table is updated, i.e. before the partition actually is persistently created. This provides robustness: it is - guaranteed that the partition either doesn't exist or exists fully populated; it is not possible that + guaranteed that the partition either does not exist or exists fully populated; it is not possible that the partition exists but is not or only partially populated. This option cannot be combined with Format= or @@ -445,7 +445,7 @@ The copy operation is executed before the file system is registered in the partition table, thus ensuring that a file system populated this way only ever exists fully initialized. - Note that CopyFiles= will skip copying files that aren't supported by the + Note that CopyFiles= will skip copying files that are not supported by the target filesystem (e.g symlinks, fifos, sockets and devices on vfat). When an unsupported file type is encountered, systemd-repart will skip copying this file and write a log message about it. diff --git a/man/resolved.conf.xml b/man/resolved.conf.xml index 65dd83f2405..73f73c3b5d9 100644 --- a/man/resolved.conf.xml +++ b/man/resolved.conf.xml @@ -294,7 +294,7 @@ CacheFromLocalhost= Takes a boolean as argument. If no (the default), and response cames from - host-local IP address (such as 127.0.0.1 or ::1), the result wouldn't be cached in order to avoid + host-local IP address (such as 127.0.0.1 or ::1), the result would not be cached in order to avoid potential duplicate local caching. @@ -382,7 +382,7 @@ DNSStubListenerExtra=udp:[2001:db8:0:f102::13]:9953 This is useful when a DNS server failure occurs or becomes unreachable. In such cases, systemd-resolved8 continues to use the stale records to answer DNS queries, particularly when no valid response can be - obtained from the upstream DNS servers. However, this doesn't apply to NXDOMAIN responses, as those + obtained from the upstream DNS servers. However, this does not apply to NXDOMAIN responses, as those are still perfectly valid responses. This feature enhances resilience against DNS infrastructure failures and outages. diff --git a/man/sd-json.xml b/man/sd-json.xml index 95a1985d6fe..de75be042df 100644 --- a/man/sd-json.xml +++ b/man/sd-json.xml @@ -40,7 +40,7 @@ The API's central data structure is JsonVariant which encapsulates a JSON object, array, string, boolean, number or null value. These data structures are mostly considered immutable after - construction (i.e. their contents won't change, but some meta-data might, such as reference counters). + construction (i.e. their contents will not change, but some meta-data might, such as reference counters). The APIs broadly fall into five categories: diff --git a/man/sd_bus_get_fd.xml b/man/sd_bus_get_fd.xml index c7bab0f9558..21eba130132 100644 --- a/man/sd_bus_get_fd.xml +++ b/man/sd_bus_get_fd.xml @@ -77,7 +77,7 @@ CLOCK_MONOTONIC and specified in microseconds. When converting this value in order to pass it as third argument to poll() (which expects relative milliseconds), care should be taken to convert to a relative time and use a division that rounds up to ensure the I/O polling - operation doesn't sleep for shorter than necessary, which might result in unintended busy looping + operation does not sleep for shorter than necessary, which might result in unintended busy looping (alternatively, use ppoll2 instead of plain poll(), which understands timeouts with nano-second granularity). diff --git a/man/sd_bus_message_read.xml b/man/sd_bus_message_read.xml index 7ee34489685..eab02b5d640 100644 --- a/man/sd_bus_message_read.xml +++ b/man/sd_bus_message_read.xml @@ -209,7 +209,7 @@ sd_bus_message_read(m, "x", &x); Read a boolean value: sd_bus_message *m; -int x; /* Do not use C99 'bool' type here, it's typically smaller +int x; /* Do not use C99 "bool" type here, it is typically smaller in memory and would cause memory corruption */ sd_bus_message_read(m, "b", &x); diff --git a/man/sd_bus_message_seal.xml b/man/sd_bus_message_seal.xml index d64486b41ab..25f0d325dbf 100644 --- a/man/sd_bus_message_seal.xml +++ b/man/sd_bus_message_seal.xml @@ -45,7 +45,7 @@ corresponding request. timeout_usec specifies the maximum time in microseconds to wait for a reply to arrive. - Note that in most scenarios, it's not necessary to call this function directly. + Note that in most scenarios, it is not necessary to call this function directly. sd_bus_call3, sd_bus_call_async3 and sd_bus_send3 diff --git a/man/sd_bus_message_sensitive.xml b/man/sd_bus_message_sensitive.xml index af46a6ed7ea..f994c8bb257 100644 --- a/man/sd_bus_message_sensitive.xml +++ b/man/sd_bus_message_sensitive.xml @@ -39,7 +39,7 @@ sensitive data. This ensures that the message data is carefully removed from memory (specifically, overwritten with zero bytes) when released. It is recommended to mark all incoming and outgoing messages like this that contain security credentials and similar data that should be dealt with carefully. Note - that it is not possible to unmark messages like this, it's a one way operation. If a message is already + that it is not possible to unmark messages like this, it is a one way operation. If a message is already marked sensitive and then marked sensitive a second time the message remains marked so and no further operation is executed. diff --git a/man/sd_bus_message_set_destination.xml b/man/sd_bus_message_set_destination.xml index 1e2775dd5de..bbb38596c48 100644 --- a/man/sd_bus_message_set_destination.xml +++ b/man/sd_bus_message_set_destination.xml @@ -81,7 +81,7 @@ sd_bus_message_get_member() return the destination, path, interface, and member fields from message header. The return value will be NULL is message is NULL or the - message is of a type that doesn't use those fields or the message doesn't have them set. See + message is of a type that does not use those fields or the message does not have them set. See sd_bus_message_new_method_call3 and sd_bus_message_set_destination3 for more discussion of those values. @@ -96,7 +96,7 @@ When a string is returned, it is a pointer to internal storage, and may not be modified or freed. It is only valid as long as the message remains referenced and - this field hasn't been changed by a different call. + this field has not been changed by a different call. diff --git a/man/sd_bus_query_sender_creds.xml b/man/sd_bus_query_sender_creds.xml index f7c802bee9f..dff38d07b64 100644 --- a/man/sd_bus_query_sender_creds.xml +++ b/man/sd_bus_query_sender_creds.xml @@ -52,7 +52,7 @@ for a list of possible flags. First, this message checks if the requested credentials are attached to the message itself. If not, but the message contains the pid of the sender and the caller specified the SD_BUS_CREDS_AUGMENT flag, this function tries to figure out - the missing credentials via other means (starting from the pid). If the pid isn't available but the + the missing credentials via other means (starting from the pid). If the PID is not available but the message has a sender, this function calls sd_bus_get_name_creds3 to get the requested credentials. If the message has no sender (when a direct connection is used), this diff --git a/man/sd_bus_send.xml b/man/sd_bus_send.xml index 8cdfff07baf..97b5850991c 100644 --- a/man/sd_bus_send.xml +++ b/man/sd_bus_send.xml @@ -56,11 +56,11 @@ sd_bus_send() queues the bus message object m for transfer. If bus is NULL, the bus that m is attached to is used. bus only needs to be set when the - message is sent to a different bus than the one it's attached to, for example when forwarding messages. + message is sent to a different bus than the one it is attached to, for example when forwarding messages. If the output parameter cookie is not NULL, it is set to the message identifier. This value can later be used to match incoming replies to their corresponding messages. If cookie is set to NULL and the message is not - sealed, sd_bus_send() assumes the message m doesn't expect a + sealed, sd_bus_send() assumes the message m does not expect a reply and adds the necessary headers to indicate this. Note that in most scenarios, sd_bus_send() should not be called diff --git a/man/sd_bus_set_watch_bind.xml b/man/sd_bus_set_watch_bind.xml index 6619d3c9cb3..747a397e61f 100644 --- a/man/sd_bus_set_watch_bind.xml +++ b/man/sd_bus_set_watch_bind.xml @@ -61,7 +61,7 @@ sd_bus_call3, sd_bus_add_match3 or sd_bus_request_name3), - that is used on a connection with this feature enabled that hasn't been established yet, might block + that is used on a connection with this feature enabled that has not been established yet, might block forever if the socket is never created. However, asynchronous remote operations (such as sd_bus_send3, sd_bus_call_async3, diff --git a/man/sd_bus_track_add_name.xml b/man/sd_bus_track_add_name.xml index 98ec3b30aff..5b3306da650 100644 --- a/man/sd_bus_track_add_name.xml +++ b/man/sd_bus_track_add_name.xml @@ -159,7 +159,7 @@ On success, sd_bus_track_add_name() and sd_bus_track_add_sender() return 0 if the specified name has already been added to the bus peer tracking object before and positive if it - hasn't. On failure, they return a negative errno-style error code. + has not. On failure, they return a negative errno-style error code. sd_bus_track_remove_name() and sd_bus_track_remove_sender() return positive if the specified name was previously tracked by the bus peer tracking object and has now been removed. In diff --git a/man/sd_event_add_io.xml b/man/sd_event_add_io.xml index 6eab52b0305..0a53221b844 100644 --- a/man/sd_event_add_io.xml +++ b/man/sd_event_add_io.xml @@ -137,7 +137,7 @@ read from or written to the file descriptor to reset the mask of events seen. Setting the I/O event mask to watch for to 0 does not mean - that the event source won't be triggered anymore, as + that the event source will not be triggered anymore, as EPOLLHUP and EPOLLERR may be triggered even with a zero event mask. To temporarily disable an I/O event source use diff --git a/man/sd_event_add_memory_pressure.xml b/man/sd_event_add_memory_pressure.xml index 096f0480efb..ba7502a466f 100644 --- a/man/sd_event_add_memory_pressure.xml +++ b/man/sd_event_add_memory_pressure.xml @@ -138,7 +138,7 @@ This event source typically fires on memory pressure stalls, i.e. when operational latency above a configured threshold already has been seen. This should be taken into consideration when discussing - whether later latency to re-aquire any released resources is acceptable: it's usually more important to + whether later latency to re-aquire any released resources is acceptable: it is usually more important to think of the latencies that already happened than those coming up in future. The sd_event_source_set_memory_pressure_type() and diff --git a/man/sd_event_set_signal_exit.xml b/man/sd_event_set_signal_exit.xml index 10b68a0edfc..0ee04702f59 100644 --- a/man/sd_event_set_signal_exit.xml +++ b/man/sd_event_set_signal_exit.xml @@ -51,7 +51,7 @@ state before it was turned on, for the two signals. By default the two signals are not handled by the event loop, and Linux' default signal handling for them is in effect. - It's customary for UNIX programs to exit on either of these two signals, hence it's typically a + It is customary for UNIX programs to exit on either of these two signals, hence it is typically a good idea to enable this functionality for the main event loop of a program. diff --git a/man/sd_event_source_set_ratelimit.xml b/man/sd_event_source_set_ratelimit.xml index cc1ce816bc0..ba30fea69af 100644 --- a/man/sd_event_source_set_ratelimit.xml +++ b/man/sd_event_source_set_ratelimit.xml @@ -111,7 +111,7 @@ return a negative errno-style error code. sd_event_source_is_ratelimited() returns zero if rate limiting is currently not in effect and greater than zero if it is in effect; it returns a negative errno-style error code on failure. sd_event_source_leave_ratelimit() - returns zero if rate limiting wasn't in effect on the specified event source, and positive if it was and + returns zero if rate limiting was not in effect on the specified event source, and positive if it was and rate limiting is now turned off again; it returns a negative errno-style error code on failure. @@ -151,7 +151,7 @@ -ENOEXEC sd_event_source_get_ratelimit() was called on an event source - that doesn't have rate limiting configured. + that does not have rate limiting configured. diff --git a/man/sd_journal_get_catalog.xml b/man/sd_journal_get_catalog.xml index 6db9b8bf174..56acabb441b 100644 --- a/man/sd_journal_get_catalog.xml +++ b/man/sd_journal_get_catalog.xml @@ -85,9 +85,9 @@ Notes Function sd_journal_get_catalog() is thread-agnostic and only - a single specific thread may operate on a given object during its entire lifetime. It's safe to allocate multiple - independent objects and use each from a specific thread in parallel. However, it's not safe to allocate such an - object in one thread, and operate or free it from any other, even if locking is used to ensure these threads don't + a single specific thread may operate on a given object during its entire lifetime. It is safe to allocate multiple + independent objects and use each from a specific thread in parallel. However, it is not safe to allocate such an + object in one thread, and operate or free it from any other, even if locking is used to ensure these threads do not operate on it at the very same time. Function sd_journal_get_catalog_for_message_id() is are thread-safe and may be called in diff --git a/man/sd_journal_get_data.xml b/man/sd_journal_get_data.xml index 61e9268a7ef..e3c8e0b5cd9 100644 --- a/man/sd_journal_get_data.xml +++ b/man/sd_journal_get_data.xml @@ -148,7 +148,7 @@ code. sd_journal_enumerate_data() and sd_journal_enumerate_available_data() return a positive integer if the next field has been read, 0 when no more fields remain, or a negative errno-style error code. - sd_journal_restart_data() doesn't return anything. + sd_journal_restart_data() does not return anything. sd_journal_set_data_threshold() and sd_journal_get_threshold() return 0 on success or a negative errno-style error code. diff --git a/man/sd_journal_query_unique.xml b/man/sd_journal_query_unique.xml index fedee468fef..3ad11460594 100644 --- a/man/sd_journal_query_unique.xml +++ b/man/sd_journal_query_unique.xml @@ -119,7 +119,7 @@ code. sd_journal_enumerate_unique() and sd_journal_query_available_unique() return a positive integer if the next field data has been read, 0 when no more fields remain, or a negative errno-style error code. - sd_journal_restart_unique() doesn't return anything. + sd_journal_restart_unique() does not return anything. Errors diff --git a/man/sd_listen_fds.xml b/man/sd_listen_fds.xml index 8a10677b93d..f8a6d43ffaf 100644 --- a/man/sd_listen_fds.xml +++ b/man/sd_listen_fds.xml @@ -52,13 +52,13 @@ (i.e. SD_LISTEN_FDS_START), the remaining descriptors follow at 4, 5, 6, …, if any. - The file descriptors passed this way may be closed at will by the processes receiving them: it's up + The file descriptors passed this way may be closed at will by the processes receiving them: it is up to the processes themselves to close them after use or whether to leave them open until the process exits (in which case the kernel closes them automatically). Note that the file descriptors received by daemons are duplicates of the file descriptors the service manager originally allocated and bound and of which it continuously keeps a copy (except if Accept=yes is used). This means any socket option changes and other changes made to the sockets will be visible to the service manager too. Most - importantly this means it's generally not a good idea to invoke shutdown2 on such sockets, since it will shut down communication on the file descriptor the service manager holds for the same socket too. Also note that if a daemon is restarted (and its associated sockets are not) it will diff --git a/man/sd_notify.xml b/man/sd_notify.xml index 6aaaa64b3f7..9ba2c85688e 100644 --- a/man/sd_notify.xml +++ b/man/sd_notify.xml @@ -292,7 +292,7 @@ MAINPID=… Change the main process ID (PID) of the service. This is especially useful in the case - where the real main process isn't directly forked off by the service manager. + where the real main process is not directly forked off by the service manager. Example: MAINPID=4711. @@ -362,7 +362,7 @@ Tells the service manager to extend the startup, runtime or shutdown service timeout corresponding the current state. The value specified is a time in microseconds during which the - service must send a new message. A service timeout will occur if the message isn't received, but only + service must send a new message. A service timeout will occur if the message is not received, but only if the runtime of the current state is beyond the original maximum times of TimeoutStartSec=, RuntimeMaxSec=, and TimeoutStopSec=. See diff --git a/man/standard-conf.xml b/man/standard-conf.xml index 0ff71ece722..9f908725f81 100644 --- a/man/standard-conf.xml +++ b/man/standard-conf.xml @@ -61,7 +61,7 @@ /usr/lib/systemd/. The vendor version of the file contains commented out entries showing the defaults as a guide to the administrator. Local overrides can also be created by creating drop-ins, as described below. The main - configuration file can also be edited for this purpose (or a copy in /etc/ if it's + configuration file can also be edited for this purpose (or a copy in /etc/ if it is shipped under /usr/), however using drop-ins for local configuration is recommended over modifications to the main configuration file. diff --git a/man/sysctl.d.xml b/man/sysctl.d.xml index 7e1ecfa0305..9bcd62aa538 100644 --- a/man/sysctl.d.xml +++ b/man/sysctl.d.xml @@ -174,7 +174,7 @@ net.ipv4.conf.hub0.rp_filter = 1 net.ipv4.conf.default.rp_filter first, so any interfaces which are added later will get this value (this also covers any interfaces detected while we're running). The glob matches any interfaces which were detected earlier. The glob - will also match net.ipv4.conf.all.rp_filter, which we don't want to set at all, so + will also match net.ipv4.conf.all.rp_filter, which we do not want to set at all, so it is explicitly excluded. And "hub0" is excluded from the glob because it has an explicit setting. diff --git a/man/systemctl.xml b/man/systemctl.xml index fe15bd37227..336ac815f81 100644 --- a/man/systemctl.xml +++ b/man/systemctl.xml @@ -66,7 +66,7 @@ options are specified. Note that this command does not show unit templates, but only instances of unit - templates. Units templates that aren't instantiated are not runnable, and will thus never show up + templates. Units templates that are not instantiated are not runnable, and will thus never show up in the output of this command. Specifically this means that foo@.service will never be shown in this list — unless instantiated, e.g. as foo@bar.service. Use list-unit-files (see below) for @@ -357,7 +357,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err on disk, which might not match the system manager's understanding of these units if any unit files were updated on disk and the daemon-reload - command wasn't issued since. + command was not issued since. @@ -391,7 +391,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err default.target is implied. The units that are shown are additionally filtered by and - if those options are specified. Note that we won't be able to + if those options are specified. Note that we will not be able to use a tree structure in this case, so is implied. By default, only target units are recursively @@ -405,7 +405,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err Note that this command only lists units currently loaded into memory by the service manager. In particular, this command is not suitable to get a comprehensive list at all reverse dependencies on a - specific unit, as it won't list the dependencies declared by units currently not loaded. + specific unit, as it will not list the dependencies declared by units currently not loaded. @@ -496,8 +496,8 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err Stop and then start one or more units specified on the command line if the units are running. This does nothing if units are not running. - + @@ -514,8 +514,8 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err Reload one or more units if they support it. If not, stop and then start them instead. This does nothing if the units are not running. - + @@ -629,7 +629,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err command line using cgroup freezer Freezing the unit will cause all processes contained within the cgroup corresponding to the unit - to be suspended. Being suspended means that unit's processes won't be scheduled to run on CPU until thawed. + to be suspended. Being suspended means that unit's processes will not be scheduled to run on CPU until thawed. Note that this command is supported only on systems that use unified cgroup hierarchy. Unit is automatically thawed just before we execute a job against the unit, e.g. before the unit is stopped. @@ -1113,7 +1113,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err not-found - The unit file doesn't exist. + The unit file does not exist. 4 @@ -1142,7 +1142,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err specified). If a matching unit file already exists under these directories this operation will hence fail. This means that the operation is primarily useful to mask units shipped by the vendor (as those are shipped in /usr/lib/systemd/system/ and not the aforementioned - two directories), but typically doesn't work for units created locally (as those are typically + two directories), but typically does not work for units created locally (as those are typically placed precisely in the two aforementioned directories). Similar restrictions apply for mode, in which case the directories are below the user's home directory however. @@ -1740,7 +1740,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err Shut down and reboot the system via kexec. This command will load a - kexec kernel if one wasn't loaded yet or fail. A kernel may be loaded earlier by a separate step, + kexec kernel if one was not loaded yet or fail. A kernel may be loaded earlier by a separate step, this is particularly useful if a custom initrd or additional kernel command line options are desired. The can be used to continue without a kexec kernel, i.e. to perform a normal reboot. The final reboot step is equivalent to @@ -1939,7 +1939,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err units currently in memory, and patterns which do not match anything are silently skipped. For example: # systemctl stop "sshd@*.service" - will stop all sshd@.service instances. Note that alias names of units, and units that aren't + will stop all sshd@.service instances. Note that alias names of units, and units that are not in memory are not considered for glob expansion. @@ -2350,7 +2350,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err - Don't generate the warnings shown by default in the following cases: + Do not generate the warnings shown by default in the following cases: when systemctl is invoked without procfs mounted on @@ -2358,7 +2358,7 @@ Jan 12 10:46:45 example.com bluetoothd[8900]: gatt-time-server: Input/output err when using enable or disable on units without - install information (i.e. don't have or have an empty [Install] section), + install information (i.e. do not have or have an empty [Install] section), when using disable combined with on units diff --git a/man/systemd-analyze.xml b/man/systemd-analyze.xml index cf005db70b4..1ccef877b1c 100644 --- a/man/systemd-analyze.xml +++ b/man/systemd-analyze.xml @@ -255,7 +255,7 @@ multi-user.target reached after 47.820s in userspace This command prints a list of all running units, ordered by the time they took to initialize. This information may be used to optimize boot-up times. Note that the output might be misleading as the initialization of one service might be slow simply because it waits for the initialization of another - service to complete. Also note: systemd-analyze blame doesn't display results for + service to complete. Also note: systemd-analyze blame does not display results for services with Type=simple, because systemd considers such services to be started immediately, hence no measurement of the initialization delays can be done. Also note that this command only shows the time units took for starting up, it does not show how long unit jobs spent in the @@ -371,8 +371,8 @@ $ eog bootup.svg& Note that this plot is based on the most recent per-unit timing data of loaded units. This means that if a unit gets started, then stopped and then started again the information shown will cover the - most recent start cycle, not the first one. Thus it's recommended to consult this information only - shortly after boot, so that this distinction doesn't matter. Moreover, units that are not referenced by + most recent start cycle, not the first one. Thus it is recommended to consult this information only + shortly after boot, so that this distinction does not matter. Moreover, units that are not referenced by any other unit through a dependency might be unloaded by the service manager once they terminate (and did not fail). Such units will not show up in the plot. diff --git a/man/systemd-bless-boot.service.xml b/man/systemd-bless-boot.service.xml index 7ace7703b9a..86a3fac799f 100644 --- a/man/systemd-bless-boot.service.xml +++ b/man/systemd-bless-boot.service.xml @@ -41,7 +41,7 @@ OS. It contains a file system path (relative to the EFI system partition) of the Boot Loader Specification compliant boot loader entry file or unified kernel image file that was used to boot up the - system. systemd-bless-boot.service removes the two 'tries done' and 'tries left' numeric boot + system. systemd-bless-boot.service removes the two "tries done" and "tries left" numeric boot counters from the filename, which indicates to future invocations of the boot loader that the entry has completed booting successfully at least once. (This service will hence rename the boot loader entry file or unified kernel image file on the first successful boot.) @@ -84,8 +84,8 @@ - When called the 'tries left' counter in the boot loader entry file name or unified kernel image - file name is set to zero, marking the boot loader entry or kernel image as "bad", so that the boot loader won't + When called the "tries left" counter in the boot loader entry file name or unified kernel image + file name is set to zero, marking the boot loader entry or kernel image as "bad", so that the boot loader will not consider it anymore on future boots (at least as long as there are other entries available that are not marked "bad" yet). This command is normally not executed, but can be used to instantly put an end to the boot counting logic if a problem is detected and persistently mark the boot entry as bad. diff --git a/man/systemd-boot-random-seed.service.xml b/man/systemd-boot-random-seed.service.xml index 2e7aff53780..0993f7a75ea 100644 --- a/man/systemd-boot-random-seed.service.xml +++ b/man/systemd-boot-random-seed.service.xml @@ -43,12 +43,12 @@ the random seed stored in the ESP is refreshed on every reboot ensuring that multiple subsequent boots will boot with different seeds. On the other hand, the system token is generated randomly once, and then persistently stored in the system's EFI variable - storage, ensuring the same disk image won't result in the same series of boot loader seed values if used + storage, ensuring the same disk image will not result in the same series of boot loader seed values if used on multiple systems in parallel. The systemd-boot-random-seed.service unit invokes the bootctl random-seed command, which updates the random seed in the ESP, and initializes the system - token if it's not initialized yet. The service is conditionalized so that it is run only when a boot + token if it is not initialized yet. The service is conditionalized so that it is run only when a boot loader is used that implements the Boot Loader Interface. For further details see bootctl1, regarding diff --git a/man/systemd-boot.xml b/man/systemd-boot.xml index 2c2128482fc..18b0708035d 100644 --- a/man/systemd-boot.xml +++ b/man/systemd-boot.xml @@ -602,7 +602,7 @@ If the 'tries left' counter of an entry is greater than zero the entry is considered to be in - 'indeterminate' state. This means the entry has not completed booting successfully yet, but also hasn't been + 'indeterminate' state. This means the entry has not completed booting successfully yet, but also has not been determined not to work. If the 'tries left' counter of an entry is zero it is considered to be in 'bad' state. This means diff --git a/man/systemd-bsod.service.xml b/man/systemd-bsod.service.xml index 29a08710c2f..f9812fb6627 100644 --- a/man/systemd-bsod.service.xml +++ b/man/systemd-bsod.service.xml @@ -52,7 +52,7 @@ When specified, systemd-bsod waits continuously for changes in the - journal if it doesn't find any emergency messages on the initial attempt. + journal if it does not find any emergency messages on the initial attempt. diff --git a/man/systemd-creds.xml b/man/systemd-creds.xml index e88cbb5e6f4..a9ef14226fd 100644 --- a/man/systemd-creds.xml +++ b/man/systemd-creds.xml @@ -88,7 +88,7 @@ Generates a host encryption key for credentials, if one has not been generated already. This ensures the /var/lib/systemd/credential.secret file is initialized - with a random secret key if it doesn't exist yet. This secret key is used when encrypting/decrypting + with a random secret key if it does not exist yet. This secret key is used when encrypting/decrypting credentials with encrypt or decrypt, and is only accessible to the root user. Note that there's typically no need to invoke this command explicitly as it is implicitly called when encrypt is invoked, and credential host key encryption @@ -247,7 +247,7 @@ When specified with cat or decrypt controls - whether to add a trailing newline character to the end of the output if it doesn't end in one, + whether to add a trailing newline character to the end of the output if it does not end in one, anyway. Takes one of auto, yes or no. The default mode of auto will suffix the output with a single newline character only when writing credential data to a TTY. @@ -284,7 +284,7 @@ done. Embedding the credential name in the encrypted credential is done in order to protect against - reuse of credentials for purposes they weren't originally intended for, under the assumption the + reuse of credentials for purposes they were not originally intended for, under the assumption the credential name is chosen carefully to encode its intended purpose. diff --git a/man/systemd-cryptenroll.xml b/man/systemd-cryptenroll.xml index fb36f455ba9..949e07fd632 100644 --- a/man/systemd-cryptenroll.xml +++ b/man/systemd-cryptenroll.xml @@ -229,7 +229,7 @@ Note that currently when enrolling a new key of one of the five supported types listed above, it is required to first provide a passphrase, a recovery key, a FIDO2 token, or a TPM2 key. It's currently not supported to unlock a device with a PKCS#11 key in order to enroll a new PKCS#11 key. Thus, if in future - key roll-over is desired it's generally recommended to ensure a passphrase, a recovery key, a FIDO2 + key roll-over is desired it is generally recommended to ensure a passphrase, a recovery key, a FIDO2 token, or a TPM2 key is always enrolled. Also note that support for enrolling multiple FIDO2 tokens is currently limited. When multiple FIDO2 @@ -398,7 +398,7 @@ is unsupported if option is also specified. The special value list may be used to enumerate all suitable FIDO2 tokens currently plugged in. Note that many hardware security tokens that implement FIDO2 also implement the older PKCS#11 - standard. Typically FIDO2 is preferable, given it's simpler to use and more modern. + standard. Typically FIDO2 is preferable, given it is simpler to use and more modern. In order to unlock a LUKS2 volume with an enrolled FIDO2 security token, specify the option in the respective /etc/crypttab line: diff --git a/man/systemd-firstboot.xml b/man/systemd-firstboot.xml index ded7048792c..edd26018846 100644 --- a/man/systemd-firstboot.xml +++ b/man/systemd-firstboot.xml @@ -304,7 +304,7 @@ Write configuration even if the relevant files already exist. Without this option, - systemd-firstboot doesn't modify or replace existing files. Note that when + systemd-firstboot does not modify or replace existing files. Note that when configuring the root account, even with this option, systemd-firstboot only modifies the entry of the root user, leaving other entries in /etc/passwd and /etc/shadow intact. @@ -445,7 +445,7 @@ systemd.firstboot= Takes a boolean argument, defaults to on. If off, systemd-firstboot.service - won't interactively query the user for basic settings at first boot, even if those settings are not + will not interactively query the user for basic settings at first boot, even if those settings are not initialized yet. diff --git a/man/systemd-measure.xml b/man/systemd-measure.xml index 368c94f7005..408e89ec804 100644 --- a/man/systemd-measure.xml +++ b/man/systemd-measure.xml @@ -46,7 +46,7 @@ The result may optionally be signed cryptographically, to allow TPM2 policies that can only be unlocked if a certain set of kernels is booted, for which such a PCR signature can be provided. - It usually doesn't make sense to call this tool directly when constructing a UKI. Instead, + It usually does not make sense to call this tool directly when constructing a UKI. Instead, ukify1 should be used; it will invoke systemd-measure and take care of embedding the resulting measurements into the UKI. @@ -234,7 +234,7 @@ enter-initrd:leave-initrd:sysinit:ready, i.e. calculates expected PCR values for the boot phase in the initrd, during early boot, during later boot, and during system runtime, but excluding the phases before the initrd or when shutting down. This setting is honoured both by - calculate and sign. When used with the latter it's particularly + calculate and sign. When used with the latter it is particularly useful for generating PCR signatures that can only be used for unlocking resources during specific parts of the boot process. diff --git a/man/systemd-mount.xml b/man/systemd-mount.xml index 7bf366eabde..60b10ec18e4 100644 --- a/man/systemd-mount.xml +++ b/man/systemd-mount.xml @@ -77,7 +77,7 @@ If two arguments are specified, the first indicates the mount source (the WHAT) and the second indicates the path to mount it on (the WHERE). In this mode no probing of the source is attempted, and a backing - device node doesn't have to exist. However, if this mode is combined with , + device node does not have to exist. However, if this mode is combined with , device node probing for additional metadata is enabled, and – much like in the single-argument case discussed above – the specified device has to exist at the time of invocation of the command. diff --git a/man/systemd-network-generator.service.xml b/man/systemd-network-generator.service.xml index 8962f1a05f3..f18508e5f0c 100644 --- a/man/systemd-network-generator.service.xml +++ b/man/systemd-network-generator.service.xml @@ -142,7 +142,7 @@ credential network.link.50-foobar will be copied into a configuration file 50-foobar.link. - Note that the resulting files are created world-readable, it's hence recommended to not include + Note that the resulting files are created world-readable, it is hence recommended to not include secrets in these credentials, but supply them via separate credentials directly to systemd-networkd.service. diff --git a/man/systemd-nspawn.xml b/man/systemd-nspawn.xml index 5838424b820..a01e699080d 100644 --- a/man/systemd-nspawn.xml +++ b/man/systemd-nspawn.xml @@ -733,7 +733,7 @@ Make the container part of the specified slice, instead of the default machine.slice. This applies only if the machine is run in its own scope unit, i.e. if - isn't used. + is not used. @@ -743,7 +743,7 @@ Set a unit property on the scope unit to register for the machine. This applies only if the - machine is run in its own scope unit, i.e. if isn't used. Takes unit property + machine is run in its own scope unit, i.e. if is not used. Takes unit property assignments in the same format as systemctl set-property. This is useful to set memory limits and similar for the container. @@ -1601,7 +1601,7 @@ After=sys-subsystem-net-devices-ens1.device Note that the user record propagated from the host into the container will contain the UNIX password hash of the user, so that seamless logins in the container are possible. If the container is - less trusted than the host it's hence important to use a strong UNIX password hash function + less trusted than the host it is hence important to use a strong UNIX password hash function (e.g. yescrypt or similar, with the $y$ hash prefix). When binding a user from the host into the container checks are executed to ensure that the diff --git a/man/systemd-repart.xml b/man/systemd-repart.xml index d1740af5a22..c6e2e306da8 100644 --- a/man/systemd-repart.xml +++ b/man/systemd-repart.xml @@ -204,7 +204,7 @@ Takes a boolean. If this switch is not specified is the implied default. Controls whether to issue the BLKDISCARD I/O control - command on the space taken up by any added partitions or on the space in between them. Usually, it's + command on the space taken up by any added partitions or on the space in between them. Usually, it is a good idea to issue this request since it tells the underlying hardware that the covered blocks shall be considered empty, improving performance. If operating on a regular file instead of a block device node, a sparse file is generated. @@ -455,7 +455,7 @@ These options specify which partition types systemd-repart should - operate on. If is used, all partitions that aren't specified + operate on. If is used, all partitions that are not specified are excluded. If is used, all partitions that are specified are excluded. Both options take a comma separated list of GPT partition type UUIDs or identifiers (see Type= in @@ -470,7 +470,7 @@ This option specifies for which partition types systemd-repart should defer. All partitions that are deferred using this option are still taken into account when - calculating the sizes and offsets of other partitions, but aren't actually written to the disk image. + calculating the sizes and offsets of other partitions, but are not actually written to the disk image. The net effect of this option is that if you run systemd-repart again without this option, the missing partitions will be added as if they had not been deferred the first time systemd-repart was executed. diff --git a/man/systemd-resolved.service.xml b/man/systemd-resolved.service.xml index 2578eb0073b..26921ff2baf 100644 --- a/man/systemd-resolved.service.xml +++ b/man/systemd-resolved.service.xml @@ -178,7 +178,7 @@ DNS servers, unless the domain is specified explicitly as routing or search domain for the DNS server and interface. This means that on networks where the .local domain is defined in a site-specific DNS server, explicit search or routing domains need to be configured to make lookups work - within this DNS domain. Note that these days, it's generally recommended to avoid defining + within this DNS domain. Note that these days, it is generally recommended to avoid defining .local in a DNS server, as RFC6762 reserves this domain for exclusive MulticastDNS use. @@ -213,7 +213,7 @@ In case of single-label names, when search domains are defined, the same logic applies, except that the name is first suffixed by each of the search domains in turn. Note that this search logic - doesn't apply to any names with at least one dot. Also see the discussion about compatibility with + does not apply to any names with at least one dot. Also see the discussion about compatibility with the traditional glibc resolver below. If a query does not match any configured routing domain (either per-link or global), it diff --git a/man/systemd-run.xml b/man/systemd-run.xml index e5b6f75f1eb..c8e0ca1a8ab 100644 --- a/man/systemd-run.xml +++ b/man/systemd-run.xml @@ -314,7 +314,7 @@ This option will result in systemd-run synchronously waiting for the transient service to terminate, similar to specifying . If specified - along with , systemd-run won't exit when manually disconnecting + along with , systemd-run will not exit when manually disconnecting from the pseudo TTY device. Note that @@ -652,7 +652,7 @@ There is a screen on: <>, <${INVOCATION_ID}>] as the argument array, and then systemd1 generates ${INVOCATION_ID} and substitutes it in the command-line. This substitution - could not be done on the client side, because the target ID that will be set for the service isn't + could not be done on the client side, because the target ID that will be set for the service is not known before the call is made. diff --git a/man/systemd-soft-reboot.service.xml b/man/systemd-soft-reboot.service.xml index 7a15982c09a..27f17a1f1e5 100644 --- a/man/systemd-soft-reboot.service.xml +++ b/man/systemd-soft-reboot.service.xml @@ -149,7 +149,7 @@ DefaultDependencies=no Even though passing resources from one soft reboot cycle to the next is possible this way, we strongly suggest to use this functionality sparingly only, as it creates a more fragile system as resources from different versions of the OS and applications might be mixed with unforeseen - consequences. In particular it's recommended to avoid allowing processes to survive + consequences. In particular it is recommended to avoid allowing processes to survive the soft reboot operation, as this means code updates will necessarily be incomplete, and processes typically pin various other resources (such as the file system they are backed by), thus increasing memory usage (as two versions of the OS/application/file system might be kept in memory). Leaving diff --git a/man/systemd-ssh-proxy.xml b/man/systemd-ssh-proxy.xml index 97e8bcb96b2..8b81654bddb 100644 --- a/man/systemd-ssh-proxy.xml +++ b/man/systemd-ssh-proxy.xml @@ -65,7 +65,7 @@ Host .host must be of type SOCK_STREAM. Similar, SSH connections to vsock/ followed by an AF_VSOCK CID will result in an SSH connection made to that CID. vsock-mux/ followed by an absolute AF_UNIX file system - path to a socket is similar but for cloud-hypervisor/firecracker which don't allow + path to a socket is similar but for cloud-hypervisor/firecracker which do not allow direct AF_VSOCK communication between the host and guests, and provide their own multiplexer over AF_UNIX sockets. See cloud-hypervisor VSOCK support diff --git a/man/systemd-stub.xml b/man/systemd-stub.xml index 921abb7e231..764fd32ddd5 100644 --- a/man/systemd-stub.xml +++ b/man/systemd-stub.xml @@ -127,7 +127,7 @@ multi-profile UKIs, see below. If UEFI SecureBoot is enabled and the .cmdline section is present in the executed image, any attempts to override the kernel command line by passing one as invocation parameters to the EFI binary are ignored. Thus, in order to - allow overriding the kernel command line, either disable UEFI SecureBoot, or don't include a kernel + allow overriding the kernel command line, either disable UEFI SecureBoot, or do not include a kernel command line PE section in the kernel image file. If a command line is accepted via EFI invocation parameters to the EFI binary it is measured into TPM PCR 12 (if a TPM is present). If a DeviceTree is embedded in the .dtb section, it replaces an existing DeviceTree in the @@ -345,12 +345,12 @@ The section list above would define three profiles. The first four sections make up the base - profile. A .profile section then introduces profile @0. It doesn't override any + profile. A .profile section then introduces profile @0. It does not override any sections (or add any) from the base section, hence it is immediately followed by another .profile section that then introduces section @1. This profile overrides the kernel command line. Finally, the last two sections define section @2, again overriding the command line. (Note that in this example the first .cmdline could also moved behind the first - .profile with equivalent effect. To keep things nicely extensible, it's probably a + .profile with equivalent effect. To keep things nicely extensible, it is probably a good idea to keep the generic command line in the base section instead of profile 0, in case later added profiles might want to reuse it.) @@ -597,7 +597,7 @@ Note that some of the variables above may also be set by the boot loader. The stub will only set - them if they aren't set already. Some of these variables are defined by the Boot Loader Interface. diff --git a/man/systemd-system.conf.xml b/man/systemd-system.conf.xml index 580da9d75f5..a6de3ab30b2 100644 --- a/man/systemd-system.conf.xml +++ b/man/systemd-system.conf.xml @@ -192,7 +192,7 @@ NUMAMask= Configures the NUMA node mask that will be associated with the selected NUMA policy. Note that - and NUMA policies don't require explicit NUMA node mask and + and NUMA policies do not require explicit NUMA node mask and value of the option can be empty. Similarly to NUMAPolicy=, value can be overridden by individual services in unit files, see systemd.exec5. diff --git a/man/systemd-sysusers.xml b/man/systemd-sysusers.xml index 8ace9a80485..29d02f26e0a 100644 --- a/man/systemd-sysusers.xml +++ b/man/systemd-sysusers.xml @@ -124,7 +124,7 @@ - Process the configuration and figure out what entries would be created, but don't + Process the configuration and figure out what entries would be created, but do not actually write anything. diff --git a/man/systemd-tmpfiles.xml b/man/systemd-tmpfiles.xml index b7b4d0dca68..e4794c3f163 100644 --- a/man/systemd-tmpfiles.xml +++ b/man/systemd-tmpfiles.xml @@ -204,7 +204,7 @@ - Process the configuration and print what operations would be performed, but don't + Process the configuration and print what operations would be performed, but do not actually change anything in the file system. diff --git a/man/systemd-tpm2-generator.xml b/man/systemd-tpm2-generator.xml index 6a85b78f1cc..44d33cf68cd 100644 --- a/man/systemd-tpm2-generator.xml +++ b/man/systemd-tpm2-generator.xml @@ -41,7 +41,7 @@ The kernel command line option may be used to override behaviour of the generator. It accepts a boolean value: if true then tpm2.target will be added as synchronization point even if the firmware has not detected a TPM2 device. If false, the - target will not be inserted even if firmware reported a device but the OS kernel doesn't expose a device + target will not be inserted even if firmware reported a device but the OS kernel does not expose a device for it yet. The latter might be useful in environments where a suitable TPM2 driver for the available hardware is not available. diff --git a/man/systemd-tpm2-setup.service.xml b/man/systemd-tpm2-setup.service.xml index 71b5de387ce..52ed6acf92a 100644 --- a/man/systemd-tpm2-setup.service.xml +++ b/man/systemd-tpm2-setup.service.xml @@ -33,7 +33,7 @@ systemd-tpm2-setup.service and systemd-tpm2-setup-early.service are services that generate the Storage Root Key - (SRK) if it hasn't been generated yet, and stores it in the TPM. + (SRK) if it has not been generated yet, and stores it in the TPM. The services will store the public key of the SRK key pair in a PEM file in /run/systemd/tpm2-srk-public-key.pem and diff --git a/man/systemd-vmspawn.xml b/man/systemd-vmspawn.xml index f349c712188..5934095d2c3 100644 --- a/man/systemd-vmspawn.xml +++ b/man/systemd-vmspawn.xml @@ -540,7 +540,7 @@ $ systemd-vmspawn \ enforcing=0 - Note: this example also uses a kernel command line argument to ensure SELinux isn't started in + Note: this example also uses a kernel command line argument to ensure SELinux is not started in enforcing mode. diff --git a/man/systemd.device.xml b/man/systemd.device.xml index 9e53a46a066..0a998e7c9e6 100644 --- a/man/systemd.device.xml +++ b/man/systemd.device.xml @@ -108,8 +108,8 @@ SYSTEMD_READY= (see below) to configure when a udev device shall be considered active, and thus when to trigger the dependencies. - + The specified property value should be a space-separated list of valid unit names. If a unit template name is specified (that is, a unit name containing an @ character indicating a unit name to diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml index 8d1737c7bc0..d7a792f1a4c 100644 --- a/man/systemd.exec.xml +++ b/man/systemd.exec.xml @@ -79,7 +79,7 @@ - + Paths @@ -407,7 +407,7 @@ cannot be used for services that need to access metainformation about other users' processes. This option implies MountAPIVFS=. - If the kernel doesn't support per-mount point mount options this + If the kernel does not support per-mount point mount options this setting remains without effect, and the unit's processes will be able to access and see other process as if the option was not used. @@ -701,7 +701,7 @@ ProtectHome=read-only are implied, thus prohibiting the service to write to arbitrary file system locations. In order to allow the service to write to certain directories, they have to be allow-listed using ReadWritePaths=, but care must be taken so that - UID/GID recycling doesn't create security issues involving files created by the service. Use + UID/GID recycling does not create security issues involving files created by the service. Use RuntimeDirectory= (see below) in order to assign a writable runtime directory to a service, owned by the dynamic user/group and removed automatically when the unit is terminated. Use StateDirectory=, CacheDirectory= and @@ -902,8 +902,8 @@ CapabilityBoundingSet=~CAP_B CAP_C Set the SELinux security context of the executed process. If set, this will override the automated domain transition. However, the policy still needs to authorize the transition. This directive is ignored if SELinux is disabled. If prefixed by -, failing to set the SELinux - security context will be ignored, but it's still possible that the subsequent - execve() may fail if the policy doesn't allow the transition for the + security context will be ignored, but it is still possible that the subsequent + execve() may fail if the policy does not allow the transition for the non-overridden context. This does not affect commands prefixed with +. See setexeccon3 @@ -1059,7 +1059,7 @@ CapabilityBoundingSet=~CAP_B CAP_C LimitDATA= ulimit -d Bytes - Don't use. This limits the allowed address range, not memory use! Defaults to unlimited and should not be lowered. To limit memory use, see MemoryMax= in systemd.resource-control5. + Do not use. This limits the allowed address range, not memory use! Defaults to unlimited and should not be lowered. To limit memory use, see MemoryMax= in systemd.resource-control5. LimitSTACK= @@ -1077,25 +1077,25 @@ CapabilityBoundingSet=~CAP_B CAP_C LimitRSS= ulimit -m Bytes - Don't use. No effect on Linux. + Do not use. No effect on Linux. LimitNOFILE= ulimit -n Number of File Descriptors - Don't use. Be careful when raising the soft limit above 1024, since select2 cannot function with file descriptors above 1023 on Linux. Nowadays, the hard limit defaults to 524288, a very high value compared to historical defaults. Typically applications should increase their soft limit to the hard limit on their own, if they are OK with working with file descriptors above 1023, i.e. do not use select2. Note that file descriptors are nowadays accounted like any other form of memory, thus there should not be any need to lower the hard limit. Use MemoryMax= to control overall service memory use, including file descriptor memory. + Do not use. Be careful when raising the soft limit above 1024, since select2 cannot function with file descriptors above 1023 on Linux. Nowadays, the hard limit defaults to 524288, a very high value compared to historical defaults. Typically applications should increase their soft limit to the hard limit on their own, if they are OK with working with file descriptors above 1023, i.e. do not use select2. Note that file descriptors are nowadays accounted like any other form of memory, thus there should not be any need to lower the hard limit. Use MemoryMax= to control overall service memory use, including file descriptor memory. LimitAS= ulimit -v Bytes - Don't use. This limits the allowed address range, not memory use! Defaults to unlimited and should not be lowered. To limit memory use, see MemoryMax= in systemd.resource-control5. + Do not use. This limits the allowed address range, not memory use! Defaults to unlimited and should not be lowered. To limit memory use, see MemoryMax= in systemd.resource-control5. LimitNPROC= ulimit -u Number of Processes - This limit is enforced based on the number of processes belonging to the user. Typically it's better to track processes per service, i.e. use TasksMax=, see systemd.resource-control5. + This limit is enforced based on the number of processes belonging to the user. Typically it is better to track processes per service, i.e. use TasksMax=, see systemd.resource-control5. LimitMEMLOCK= @@ -1976,7 +1976,7 @@ BindReadOnlyPaths=/var/lib/systemd kernel documentation. Note that this functionality might not be available, for example if KSM is disabled in the - kernel, or the kernel doesn't support controlling KSM at the process level through + kernel, or the kernel does not support controlling KSM at the process level through prctl2. @@ -2522,7 +2522,7 @@ RestrictNamespaces=~cgroup net It is not recommended to use mount propagation for units, as this means temporary mounts (such as removable media) of the host will stay mounted and thus indefinitely busy in forked - off processes, as unmount propagation events won't be received by the file system namespace of the unit. + off processes, as unmount propagation events will not be received by the file system namespace of the unit. Usually, it is best to leave this setting unmodified, and use higher level file system namespacing options instead, in particular PrivateMounts=, see above. @@ -3096,7 +3096,7 @@ SystemCallErrorNumber=EPERM The option may be used to connect a specific file system object to standard output. The semantics are similar to the same option of StandardInput=, see above. If path refers to a regular file - on the filesystem, it is opened (created if it doesn't exist yet using privileges of the user executing the + on the filesystem, it is opened (created if it does not exist yet using privileges of the user executing the systemd process) for writing at the beginning of the file, but without truncating it. If standard input and output are directed to the same file path, it is opened only once — for reading as well as writing — and duplicated. This is particularly useful when the specified path refers to an @@ -3310,7 +3310,7 @@ StandardInputData=V2XigLJyZSBubyBzdHJhbmdlcnMgdG8gbG92ZQpZb3Uga25vdyB0aGUgcnVsZX Filtering is based on the unit for which LogFilterPatterns= is defined, meaning log messages coming from systemd1 about the - unit are not taken into account. Filtered log messages won't be forwarded to traditional syslog daemons, + unit are not taken into account. Filtered log messages will not be forwarded to traditional syslog daemons, the kernel log buffer (kmsg), the systemd console, or sent as wall messages to all logged-in users. @@ -3544,7 +3544,7 @@ StandardInputData=V2XigLJyZSBubyBzdHJhbmdlcnMgdG8gbG92ZQpZb3Uga25vdyB0aGUgcnVsZX specific user or the system as a whole, and it is ensured that per-user service managers cannot decrypt secrets intended for the system or for other users. - The credential files/IPC sockets must be accessible to the service manager, but don't have to + The credential files/IPC sockets must be accessible to the service manager, but do not have to be directly accessible to the unit's processes: the credential data is read and copied into separate, read-only copies for the unit that are accessible to appropriately privileged processes. This is particularly useful in combination with DynamicUser= as this way privileged data @@ -3612,7 +3612,7 @@ StandardInputData=V2XigLJyZSBubyBzdHJhbmdlcnMgdG8gbG92ZQpZb3Uga25vdyB0aGUgcnVsZX ImportCredential=GLOB - Pass one or more credentials to the unit. Takes a credential name for which we'll + Pass one or more credentials to the unit. Takes a credential name for which we will attempt to find a credential that the service manager itself received under the specified name — which may be used to propagate credentials from an invoking environment (e.g. a container manager that invoked the service manager) into a service. If the credential name is a glob, all credentials @@ -4690,7 +4690,7 @@ StandardInputData=V2XigLJyZSBubyBzdHJhbmdlcnMgdG8gbG92ZQpZb3Uga25vdyB0aGUgcnVsZX 71 EX_OSERR - System error (e.g., can't fork) + System error (e.g., cannot fork) 72 @@ -4700,7 +4700,7 @@ StandardInputData=V2XigLJyZSBubyBzdHJhbmdlcnMgdG8gbG92ZQpZb3Uga25vdyB0aGUgcnVsZX 73 EX_CANTCREAT - Can't create (user) output file + Cannot create (user) output file 74 diff --git a/man/systemd.image-policy.xml b/man/systemd.image-policy.xml index 9ae959cf612..36a8395bf0c 100644 --- a/man/systemd.image-policy.xml +++ b/man/systemd.image-policy.xml @@ -172,7 +172,7 @@ root=encrypted+read-only-off:srv=encrypted+absent:swap=absent The following image policy string dictates a single root partition that may be encrypted, but - doesn't have to be, and ignores swap partitions, and uses all other partitions if they are available, possibly with encryption. + does not have to be, and ignores swap partitions, and uses all other partitions if they are available, possibly with encryption. root=unprotected+encrypted:swap=absent+unused:=unprotected+encrypted+absent diff --git a/man/systemd.link.xml b/man/systemd.link.xml index 81d54cdc397..28e175bde43 100644 --- a/man/systemd.link.xml +++ b/man/systemd.link.xml @@ -604,7 +604,7 @@ Interface names must have a minimum length of 1 character and a maximum length of 15 characters, and may contain any 7bit ASCII character, with the exception of control characters, :, / and %. While . is - an allowed character, it's recommended to avoid it when naming interfaces as various tools (such as + an allowed character, it is recommended to avoid it when naming interfaces as various tools (such as resolvconf1) use it as separator character. Also, fully numeric interface names are not allowed (in order to avoid ambiguity with interface specification by numeric indexes), nor are the special strings @@ -1435,7 +1435,7 @@ Config file /etc/systemd/network/10-eth0.link applies to device hub0 link_config: autonegotiation is unset or enabled, the speed and duplex are not writable. hub0: Device has name_assign_type=4 Using default interface naming scheme 'v240'. -hub0: Policies didn't yield a name, using specified Name=hub0. +hub0: Policies did not yield a name, using specified Name=hub0. ID_NET_LINK_FILE=/etc/systemd/network/10-eth0.link ID_NET_NAME=hub0 … diff --git a/man/systemd.mount.xml b/man/systemd.mount.xml index 20e724d5409..73d5e28e721 100644 --- a/man/systemd.mount.xml +++ b/man/systemd.mount.xml @@ -556,7 +556,7 @@ for details. This setting is optional. If the type is overlay, and upperdir= or - workdir= are specified as options and the directories don't exist, they will be created. + workdir= are specified as options and the directories do not exist, they will be created. diff --git a/man/systemd.net-naming-scheme.xml b/man/systemd.net-naming-scheme.xml index 19967af8803..6e77af99293 100644 --- a/man/systemd.net-naming-scheme.xml +++ b/man/systemd.net-naming-scheme.xml @@ -243,7 +243,7 @@ name and the bus number are ignored. In some configurations a parent PCI bridge of a given network controller may be associated - with a slot. In such case we don't generate this device property to avoid possible naming conflicts. + with a slot. In such case we do not generate this device property to avoid possible naming conflicts. @@ -431,7 +431,7 @@ When a PCI slot is associated with a PCI bridge that has multiple child network controllers, the same value of the ID_NET_NAME_SLOT property might be derived for those controllers. This would cause a naming conflict if the property is selected as the device - name. Now, we detect this situation and don't produce the ID_NET_NAME_SLOT + name. Now, we detect this situation and do not produce the ID_NET_NAME_SLOT property. diff --git a/man/systemd.netdev.xml b/man/systemd.netdev.xml index 4e65885295a..70d34189028 100644 --- a/man/systemd.netdev.xml +++ b/man/systemd.netdev.xml @@ -1102,7 +1102,7 @@ UDPSourcePort= Specifies the UDP source port to be used for the tunnel. When UDP encapsulation is selected - it's mandatory. Ignored when IP encapsulation is selected. + it is mandatory. Ignored when IP encapsulation is selected. @@ -1110,7 +1110,7 @@ UDPDestinationPort= - Specifies destination port. When UDP encapsulation is selected it's mandatory. Ignored when IP + Specifies destination port. When UDP encapsulation is selected it is mandatory. Ignored when IP encapsulation is selected. @@ -1945,7 +1945,7 @@ I.e. for 50-foobar.netdev, network.wireguard.private.50-foobar is tried. - Note that because this information is secret, it's strongly recommended to use an (encrypted) + Note that because this information is secret, it is strongly recommended to use an (encrypted) credential. Alternatively, you may want to set the permissions of the .netdev file to be owned by root:systemd-network with a 0640 file mode. @@ -2055,7 +2055,7 @@ This option honors the @ prefix in the same way as the setting of the section. - Note that because this information is secret, it's strongly recommended to use an (encrypted) + Note that because this information is secret, it is strongly recommended to use an (encrypted) credential. Alternatively, you may want to set the permissions of the .netdev file to be owned by root:systemd-network with a 0640 file mode. diff --git a/man/systemd.network.xml b/man/systemd.network.xml index e2d698285e5..c71634e70af 100644 --- a/man/systemd.network.xml +++ b/man/systemd.network.xml @@ -1511,7 +1511,7 @@ DuplicateAddressDetection=none Once labeling is enabled for network traffic, a lot of LSM access control points in Linux networking stack go from dormant to active. Care should be taken to avoid getting into a - situation where for example remote connectivity is broken, when the security policy hasn't been + situation where for example remote connectivity is broken, when the security policy has not been updated to consider LSM per-packet access controls and no rules would allow any network traffic. Also note that additional configuration with netlabelctl8 @@ -2100,7 +2100,7 @@ NFTSet=prefix:netdev:filter:eth_ipv4_prefix - nowhere means the destination doesn't exist. + nowhere means the destination does not exist. @@ -4177,7 +4177,7 @@ ServerAddress=192.168.0.1/24 Configures the time, used in the Neighbor Unreachability Detection algorithm, for which clients can assume a neighbor is reachable after having received a reachability confirmation. Takes - a time span in the range 0…4294967295 ms. When 0, clients will handle it as if the value wasn't + a time span in the range 0…4294967295 ms. When 0, clients will handle it as if the value was not specified. Defaults to 0. @@ -4667,7 +4667,7 @@ ServerAddress=192.168.0.1/24 indicate to the kernel that the fdb entry is in use. self means the address is associated with the port drivers fdb. Usually hardware. master means the address is associated with master devices fdb. router means - the destination address is associated with a router. Note that it's valid if the referenced + the destination address is associated with a router. Note that it is valid if the referenced device is a VXLAN type device and has route shortcircuit enabled. Defaults to self. @@ -6546,7 +6546,7 @@ Bond=bond1 Add the bond1 interface to the VRF master interface vrf1. This will redirect routes generated on this interface to be within the routing table defined during VRF creation. For kernels before 4.8 traffic - won't be redirected towards the VRFs routing table unless specific ip-rules are added. + will not be redirected towards the VRFs routing table unless specific ip-rules are added. # /etc/systemd/network/25-vrf.network [Match] diff --git a/man/systemd.offline-updates.xml b/man/systemd.offline-updates.xml index 0195022a29b..1d084a47a45 100644 --- a/man/systemd.offline-updates.xml +++ b/man/systemd.offline-updates.xml @@ -98,7 +98,7 @@ After a reboot, now that the /system-update and - /etc/system-update symlink is gone, the generator won't redirect + /etc/system-update symlink is gone, the generator will not redirect default.target anymore and the system now boots into the default target again. diff --git a/man/systemd.resource-control.xml b/man/systemd.resource-control.xml index 5ad9793c7a2..84d1bfa0d33 100644 --- a/man/systemd.resource-control.xml +++ b/man/systemd.resource-control.xml @@ -73,7 +73,7 @@ MemoryAccounting=/TasksAccounting=/IOAccounting= settings. Because of how the cgroup hierarchy works, controllers will be automatically enabled for all parent units and for any sibling units starting with the lowest level at which a controller is enabled. - Units for which a controller is enabled may be subject to resource control even if they don't have any + Units for which a controller is enabled may be subject to resource control even if they do not have any explicit configuration. Setting Delegate= enables any delegated controllers for that unit (see below). @@ -172,7 +172,7 @@ CPUWeight=20 DisableControllers=cpu / \ - + Options @@ -304,7 +304,7 @@ CPUWeight=20 DisableControllers=cpu / \ Restrict processes to be executed on specific CPUs. Takes a list of CPU indices or ranges separated by either whitespace or commas. CPU ranges are specified by the lower and upper CPU indices separated by a dash. - Setting AllowedCPUs= or StartupAllowedCPUs= doesn't guarantee that all + Setting AllowedCPUs= or StartupAllowedCPUs= does not guarantee that all of the CPUs will be used by the processes as it may be limited by parent units. The effective configuration is reported as EffectiveCPUs=. @@ -533,7 +533,7 @@ CPUWeight=20 DisableControllers=cpu / \ or ranges separated by either whitespace or commas. Memory NUMA nodes ranges are specified by the lower and upper NUMA nodes indices separated by a dash. - Setting AllowedMemoryNodes= or StartupAllowedMemoryNodes= doesn't + Setting AllowedMemoryNodes= or StartupAllowedMemoryNodes= does not guarantee that all of the memory NUMA nodes will be used by the processes as it may be limited by parent units. The effective configuration is reported as EffectiveMemoryNodes=. @@ -1429,7 +1429,7 @@ DeviceAllow=/dev/loop-control Not all of these controllers are available on all kernels however, and some are specific to the unified hierarchy while others are specific to the legacy hierarchy. Also note that the kernel - might support further controllers, which aren't covered here yet as delegation is either not + might support further controllers, which are not covered here yet, as delegation is either not supported at all for them or not defined cleanly. Note that because of the hierarchical nature of cgroup hierarchy, any controllers that are @@ -1459,7 +1459,7 @@ DeviceAllow=/dev/loop-control ownership is passed to the unit's configured user/group) when a process is started in it. This option is useful to avoid manually moving the invoked process into a subgroup after it - has been started. Since no processes should live in inner nodes of the control group tree it's + has been started. Since no processes should live in inner nodes of the control group tree it is almost always necessary to run the main ("supervising") process of a unit that has delegation turned on in a subgroup. @@ -1625,7 +1625,7 @@ DeviceAllow=/dev/loop-control disabled otherwise. If set to skip the logic is neither enabled, nor disabled and the two environment variables are not set. - Note that services are free to use the two environment variables, but it's unproblematic if + Note that services are free to use the two environment variables, but it is unproblematic if they ignore them. Memory pressure handling must be implemented individually in each service, and usually means different things for different software. For further details on memory pressure handling see Memory Pressure Handling in diff --git a/man/systemd.service.xml b/man/systemd.service.xml index f17e3efcce9..061fb5fcd24 100644 --- a/man/systemd.service.xml +++ b/man/systemd.service.xml @@ -176,7 +176,7 @@ proceed starting follow-up units, right after creating the main service process, and before executing the service's binary. Note that this means systemctl start command lines for services will report success even if the service's binary - cannot be invoked successfully (for example because the selected User= doesn't + cannot be invoked successfully (for example because the selected User= does not exist, or the service binary is missing). The type is similar to , but the @@ -187,7 +187,7 @@ fork() and execve() in the service process succeeded.) Note that this means systemctl start command lines for services will report failure when the service's binary cannot be invoked successfully (for - example because the selected User= doesn't exist, or the service binary is + example because the selected User= does not exist, or the service binary is missing). This type is implied if credentials are used (refer to LoadCredential= in systemd.exec5 for details). @@ -274,9 +274,9 @@ It is recommended to use Type= for long-running services, as it ensures that process setup errors (e.g. errors such as a missing service - executable, or missing user) are properly tracked. However, as this service type won't propagate + executable, or missing user) are properly tracked. However, as this service type will not propagate the failures in the service's own startup code (as opposed to failures in the preparatory steps the - service manager executes before execve()) and doesn't allow ordering of other + service manager executes before execve()) and does not allow ordering of other units against completion of initialization of the service code itself (which for example is useful if clients need to connect to the service through some form of IPC, and the IPC channel is only established by the service itself — in contrast to doing this ahead of time through socket or bus @@ -286,7 +286,7 @@ precisely schedule when to consider the service started up successfully and when to proceed with follow-up units. The / service types require explicit support in the service codebase (as sd_notify() or an equivalent API - needs to be invoked by the service at the appropriate time) — if it's not supported, then + needs to be invoked by the service at the appropriate time) — if it is not supported, then is an alternative: it supports the traditional heavy-weight UNIX service start-up protocol. Note that using any type other than possibly delays the boot process, as the service manager needs to wait for at least some service initialization to @@ -525,7 +525,7 @@ Note that the commands specified in ExecStop= are only executed when the service started successfully first. They are not invoked if the service was never started at all, or in case its start-up failed, for example because any of the commands specified in ExecStart=, - ExecStartPre= or ExecStartPost= failed (and weren't prefixed with + ExecStartPre= or ExecStartPost= failed (and were not prefixed with -, see above) or timed out. Use ExecStopPost= to invoke commands when a service failed to start up correctly and is shut down again. Also note that the stop operation is always performed if the service started successfully, even if the processes in the service terminated on their @@ -636,7 +636,7 @@ are skipped and the service will be terminated by SIGTERM. If no ExecStop= commands are specified, the service gets the SIGTERM immediately. This default behavior can be changed by the TimeoutStopFailureMode= option. Second, it configures the time - to wait for the service itself to stop. If it doesn't terminate in the specified time, it will be forcibly terminated + to wait for the service itself to stop. If it does not terminate in the specified time, it will be forcibly terminated by SIGKILL (see KillMode= in systemd.kill5). Takes a unit-less value in seconds, or a time span value such @@ -945,7 +945,7 @@ ExecStopPost= is still invoked. OnSuccess= and OnFailure= are skipped. - This option is useful in cases where a dependency can fail temporarily but we don't + This option is useful in cases where a dependency can fail temporarily but we do not want these temporary failures to make the dependent units fail. Dependent units are not notified of these temporary failures. @@ -1309,7 +1309,7 @@ See sd_listen_fds3 for more details on how to retrieve these file descriptors. - This setting is useful to allow services to access files/sockets that they can't access themselves + This setting is useful to allow services to access files/sockets that they cannot access themselves (due to running in a separate mount namespace, not having privileges, ...). This setting can be specified multiple times, in which case all the specified paths are opened and the file descriptors passed to the service. diff --git a/man/systemd.socket.xml b/man/systemd.socket.xml index bbcd7f051a3..f20c5fc2ef8 100644 --- a/man/systemd.socket.xml +++ b/man/systemd.socket.xml @@ -432,7 +432,7 @@ For AF_UNIX socket connections, the $REMOTE_ADDR environment variable will contain either the remote socket's file system path starting with a slash (/) or its address in the abstract namespace starting with an at symbol - (@). If the socket is unnamed, $REMOTE_ADDR won't be set. + (@). If the socket is unnamed, $REMOTE_ADDR will not be set. It is recommended to set CollectMode=inactive-or-failed for service instances activated via Accept=yes, to ensure that failed connection services are @@ -455,7 +455,7 @@ . If yes, the socket's buffers are cleared after the triggered service exited. This causes any pending data to be flushed and any pending incoming connections to be rejected. If no, the - socket's buffers won't be cleared, permitting the service to handle any + socket's buffers will not be cleared, permitting the service to handle any pending connections after restart, which is the usually expected behaviour. Defaults to . @@ -905,7 +905,7 @@ If the polling limit is hit polling is temporarily disabled on it until the specified time window passes. The polling limit hence slows down connection attempts if hit, but unlike the trigger - limit won't cause permanent failures. It's the recommended mechanism to deal with DoS attempts + limit will not cause permanent failures. It's the recommended mechanism to deal with DoS attempts through packet flooding. The polling limit is enforced per file descriptor to listen on, as opposed to the trigger limit diff --git a/man/systemd.system-credentials.xml b/man/systemd.system-credentials.xml index b8612aa8a5a..aa974837cde 100644 --- a/man/systemd.system-credentials.xml +++ b/man/systemd.system-credentials.xml @@ -81,7 +81,7 @@ login.issue The data of this credential is written to - /etc/issue.d/50-provision.conf, if the file doesn't exist yet. + /etc/issue.d/50-provision.conf, if the file does not exist yet. agetty8 reads this file and shows its contents at the login prompt of terminal logins. See issue5 @@ -98,7 +98,7 @@ login.motd The data of this credential is written to /etc/motd.d/50-provision.conf, - if the file doesn't exist yet. + if the file does not exist yet. pam_motd8 reads this file and shows its contents as "message of the day" during terminal logins. See motd5 @@ -115,7 +115,7 @@ network.hosts The data of this credential is written to /etc/hosts, if the file - doesn't exist yet. See + does not exist yet. See hosts5 for details. @@ -154,7 +154,7 @@ of a credential network.link.50-foobar will be copied into a file 50-foobar.link. - Note that the resulting files are created world-readable, it's hence recommended to not include + Note that the resulting files are created world-readable, it is hence recommended to not include secrets in these credentials, but supply them via separate credentials directly to systemd-networkd.service, e.g. network.wireguard.* as described below. @@ -209,7 +209,7 @@ ssh.authorized_keys.root The data of this credential is written to /root/.ssh/authorized_keys, if - the file doesn't exist yet. This allows provisioning SSH access for the system's root user. + the file does not exist yet. This allows provisioning SSH access for the system's root user. Consumed by /usr/lib/tmpfiles.d/provision.conf, see tmpfiles.d5. diff --git a/man/systemd.target.xml b/man/systemd.target.xml index 37f5857eaaf..19dabe4497a 100644 --- a/man/systemd.target.xml +++ b/man/systemd.target.xml @@ -113,7 +113,7 @@ Requires=emergency.target systemd-networkd.service After=emergency.target systemd-networkd.service AllowIsolate=yes - When adding dependencies to other units, it's important to check if they set + When adding dependencies to other units, it is important to check if they set DefaultDependencies=. Service units, unless they set DefaultDependencies=no, automatically get a dependency on sysinit.target. In this case, both diff --git a/man/systemd.time.xml b/man/systemd.time.xml index f7cf97625b7..8348d6bd63f 100644 --- a/man/systemd.time.xml +++ b/man/systemd.time.xml @@ -139,7 +139,7 @@ A timestamp can start with a field containing a weekday, which can be in an abbreviated (Wed) or non-abbreviated (Wednesday) English language form (case does not matter), regardless of the locale. - However, if a weekday is specified and doesn't match the date, the timestamp is rejected. + However, if a weekday is specified and does not match the date, the timestamp is rejected. If the date is omitted, it defaults to today. If the time is omitted, it defaults to 00:00:00. Fractional seconds can be specified down to 1µs precision. The seconds field can also be omitted, defaulting to 0. diff --git a/man/systemd.unit.xml b/man/systemd.unit.xml index 33ac732ebf3..2b1f953b4fc 100644 --- a/man/systemd.unit.xml +++ b/man/systemd.unit.xml @@ -533,7 +533,7 @@ It is important to distinguish "linked unit files" from "unit file aliases": any symlink where the symlink target is within the unit load path becomes an alias: the source name and the target file name must satisfy specific constraints listed above in the discussion of aliases, but the - symlink target doesn't have to exist, and in fact the symlink target path is not used, except to check + symlink target does not have to exist, and in fact the symlink target path is not used, except to check whether the target is within the unit load path. In contrast, a symlink which goes outside of the unit load path signifies a linked unit file. The symlink is followed when loading the file, but the destination name is otherwise unused (and may even not be a valid unit file name). For example, symlinks @@ -599,7 +599,7 @@ Description= A short human readable title of the unit. This may be used by systemd (and other UIs) as a user-visible label for the unit, so this string - should identify the unit rather than describe it, despite the name. This string also shouldn't just + should identify the unit rather than describe it, despite the name. This string also should not just repeat the unit name. Apache2 Web Server is a good example. Bad examples are high-performance lightweight HTTP server (too generic) or Apache2 (meaningless for people who do not know Apache, duplicates the unit @@ -789,7 +789,7 @@ Note that this setting does not imply an ordering dependency, similarly to the Wants= and Requires= dependencies described above. This means that to ensure that the conflicting unit is stopped before the other unit is started, an - After= or Before= dependency must be declared. It doesn't + After= or Before= dependency must be declared. It does not matter which of the two ordering dependencies is used, because stop jobs are always ordered before start jobs, see the discussion in Before=/After= below. @@ -824,8 +824,8 @@ start-up order is applied. I.e. if a unit is configured with After= on another unit, the former is stopped before the latter if both are shut down. Given two units with any ordering dependency between them, if one unit is shut down and the other is started up, the shutdown - is ordered before the start-up. It doesn't matter if the ordering dependency is - After= or Before=, in this case. It also doesn't matter which + is ordered before the start-up. It does not matter if the ordering dependency is + After= or Before=, in this case. It also does not matter which of the two is shut down, as long as one is shut down and the other is started up; the shutdown is ordered before the start-up in all cases. If two units have no ordering dependencies between them, they are shut down or started up simultaneously, and no ordering takes place. It depends on the unit @@ -1265,7 +1265,7 @@ unit was successfully activated, and the conditions and asserts are executed the precise moment the unit would normally start and thus can validate system state after the units ordered before completed initialization. Use condition expressions for skipping units that do not apply to the local system, for - example because the kernel or runtime environment doesn't require their functionality. + example because the kernel or runtime environment does not require their functionality. If multiple conditions are specified, the unit will be executed if all of them apply (i.e. a @@ -2463,7 +2463,7 @@ Note that this setting is not influenced by the Us %y The path to the fragment - This is the path where the main part of the unit file is located. For linked unit files, the real path outside of the unit search directories is used. For units that don't have a fragment file, this specifier will raise an error. + This is the path where the main part of the unit file is located. For linked unit files, the real path outside of the unit search directories is used. For units that do not have a fragment file, this specifier will raise an error. %Y @@ -2657,7 +2657,7 @@ OnFailure=failure-handler@%N.service in the creation of a recursive dependency chain. systemd will try to detect these recursive dependency chains where a template unit directly and recursively depends on itself and will remove such dependencies - automatically if it finds them. If systemd doesn't detect the recursive + automatically if it finds them. If systemd does not detect the recursive dependency chain, we can break the chain ourselves by disabling the drop-in for the template instance units via a symlink to /dev/null: diff --git a/man/threads-aware.xml b/man/threads-aware.xml index bb39266626f..8492ca398f9 100644 --- a/man/threads-aware.xml +++ b/man/threads-aware.xml @@ -7,9 +7,9 @@ <para id="strict">All functions listed here are thread-agnostic and only a single specific thread may operate on a - given object during its entire lifetime. It's safe to allocate multiple independent objects and use each from a - specific thread in parallel. However, it's not safe to allocate such an object in one thread, and operate or free it - from any other, even if locking is used to ensure these threads don't operate on it at the very same time.</para> + given object during its entire lifetime. It is safe to allocate multiple independent objects and use each from a + specific thread in parallel. However, it is not safe to allocate such an object in one thread, and operate or free it + from any other, even if locking is used to ensure these threads do not operate on it at the very same time.</para> <para id="safe">All functions listed here are thread-safe and may be called in parallel from multiple threads.</para> diff --git a/man/tmpfiles.d.xml b/man/tmpfiles.d.xml index a66774555b8..536f9539d78 100644 --- a/man/tmpfiles.d.xml +++ b/man/tmpfiles.d.xml @@ -512,7 +512,7 @@ r! /tmp/.X[0-9]*-lock</programlisting> an error.</para> <para>For example: - <programlisting># Modify sysfs but don't fail if we are in a container with a read-only /proc + <programlisting># Modify sysfs but do not fail if we are in a container with a read-only /proc w- /proc/sys/vm/swappiness - - - - 10</programlisting></para> <para>If the equals sign (<literal>=</literal>) is used, the file types of existing objects in the specified path diff --git a/man/tpm2-crypttab.sh b/man/tpm2-crypttab.sh index f22a0b445e4..aff0c9b62a2 100644 --- a/man/tpm2-crypttab.sh +++ b/man/tpm2-crypttab.sh @@ -8,7 +8,7 @@ sudo systemd-cryptenroll --tpm2-device=auto --tpm2-pcrs=7 /dev/sdXn sudo systemd-cryptsetup attach mytest /dev/sdXn - tpm2-device=auto # If that worked, let's now add the same line persistently to /etc/crypttab, -# for the future. We don't want to use the (unstable) /dev/sdX name, so let's +# for the future. We do not want to use the (unstable) /dev/sdX name, so let's # figure out a stable link: udevadm info -q symlink -r /dev/sdXn diff --git a/man/udev.xml b/man/udev.xml index e6c0e23ed47..72e74758520 100644 --- a/man/udev.xml +++ b/man/udev.xml @@ -86,7 +86,7 @@ <varlistentry> <term><literal>!=</literal></term> <listitem> - <para>Compare for inequality. (The specified key doesn't have the specified value, or the + <para>Compare for inequality. (The specified key does not have the specified value, or the specified key is not present at all.) </para> </listitem> diff --git a/man/udevadm.xml b/man/udevadm.xml index ca6fa0353a2..8923bc70fe2 100644 --- a/man/udevadm.xml +++ b/man/udevadm.xml @@ -581,7 +581,7 @@ <term><option>--include-parents</option></term> <listitem> <para>Trigger parent devices of found devices even if the parents - won't match the filter condition. + will not match the filter condition. This is useful if we are interested to limit the coldplug activities to some devices or subsystems.</para> @@ -1151,7 +1151,7 @@ <title>Format a File System Take a lock on the backing block device while creating a file system, to ensure that - systemd-udevd doesn't probe or announce the new superblock before it is + systemd-udevd does not probe or announce the new superblock before it is comprehensively written: # udevadm lock --device=/dev/sda1 mkfs.ext4 /dev/sda1 @@ -1169,7 +1169,7 @@ Copy in a File System Take a lock on the backing block device while copying in a prepared file system image, to ensure - that systemd-udevd doesn't probe or announce the new superblock before it is fully + that systemd-udevd does not probe or announce the new superblock before it is fully written: # udevadm lock -d /dev/sda1 dd if=fs.raw of=/dev/sda1 diff --git a/man/user@.service.xml b/man/user@.service.xml index e9cbda48338..cc078d2d3c1 100644 --- a/man/user@.service.xml +++ b/man/user@.service.xml @@ -173,7 +173,7 @@ After=systemd-user-sessions.service [Slice] TasksMax=33% - The user-UID.slice units by default don't + The user-UID.slice units by default do not have a unit file. The resource limits are set through a drop-in, which can be easily replaced or extended following standard drop-in mechanisms discussed in the first section. diff --git a/man/userdbctl.xml b/man/userdbctl.xml index 924de89d4b9..43ba804b0c0 100644 --- a/man/userdbctl.xml +++ b/man/userdbctl.xml @@ -136,7 +136,7 @@ Controls whether to synthesize records for the root and nobody users/groups if they - aren't defined otherwise. By default (or yes) such records are implicitly + are not defined otherwise. By default (or yes) such records are implicitly synthesized if otherwise missing since they have special significance to the OS. When no this synthesizing is turned off. @@ -423,7 +423,7 @@ AuthorizedKeysCommand /usr/bin/userdbctl ssh-authorized-keys %u AuthorizedKeysCommandUser root … - Sometimes it's useful to allow chain invocation of another program to list SSH authorized keys. By + Sometimes it is useful to allow chain invocation of another program to list SSH authorized keys. By using the such a tool may be chain executed by userdbctl ssh-authorized-keys once a lookup completes (regardless of whether an SSH key was found or not). Example: diff --git a/man/veritytab.xml b/man/veritytab.xml index 19b26e9b373..7d17e80b0bb 100644 --- a/man/veritytab.xml +++ b/man/veritytab.xml @@ -187,7 +187,7 @@ This is based on crypttab(5). Use forward error correction (FEC) to recover from corruption if hash verification fails. Use encoding data from the specified device. The fec device argument can be block device or file image. - If fec device path doesn't exist, it will be created as file. Note: block sizes for data and hash devices must + If fec device path does not exist, it will be created as file. Note: block sizes for data and hash devices must match. Also, if the verity data_device is encrypted the fec_device should be too. @@ -279,10 +279,10 @@ This is based on crypttab(5). systemd.mount5 units marked with . - Although it's not necessary to mark the mount entry for the root file system with + Although it is not necessary to mark the mount entry for the root file system with , is still recommended with the verity protected block device containing the root file system as otherwise systemd - will attempt to detach the device during the regular system shutdown while it's still in + will attempt to detach the device during the regular system shutdown while it is still in use. With this option the device will still be detached but later after the root file system is unmounted. diff --git a/man/yubikey-crypttab.sh b/man/yubikey-crypttab.sh index 00de2702e36..291ec42e32b 100644 --- a/man/yubikey-crypttab.sh +++ b/man/yubikey-crypttab.sh @@ -12,7 +12,7 @@ ykman piv generate-key -a RSA2048 9d pubkey.pem # the token with. ykman piv generate-certificate --subject "Knobelei" 9d pubkey.pem -# We don't need the public key anymore, let's remove it. Since it is not +# We do not need the public key anymore, let's remove it. Since it is not # security sensitive we just do a regular "rm" here. rm pubkey.pem @@ -24,7 +24,7 @@ sudo systemd-cryptenroll --pkcs11-token-uri=auto /dev/sdXn sudo systemd-cryptsetup attach mytest /dev/sdXn - pkcs11-uri=auto # If that worked, let's now add the same line persistently to /etc/crypttab, -# for the future. We don't want to use the (unstable) /dev/sdX name, so let's +# for the future. We do not want to use the (unstable) /dev/sdX name, so let's # figure out a stable link: udevadm info -q symlink -r /dev/sdXn