Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | coverity: stop setting _Float*coverity | Evgeny Vereshchagin | 2019-06-21 | 1 | -2/+1 |
| | | | | Should address https://github.com/systemd/systemd/issues/12854 | ||||
* | path-util: get rid of prefix_root() | Lennart Poettering | 2019-06-21 | 14 | -76/+44 |
| | | | | | | | | | | | | | | | | | | | prefix_root() is equivalent to path_join() in almost all ways, hence let's remove it. There are subtle differences though: prefix_root() will try shorten multiple "/" before and after the prefix. path_join() doesn't do that. This means prefix_root() might return a string shorter than both its inputs combined, while path_join() never does that. I like the path_join() semantics better, hence I think dropping prefix_root() is totally OK. In the end the strings generated by both functon should always be identical in terms of path_equal() if not streq(). This leaves prefix_roota() in place. Ideally we'd have path_joina(), but I don't think we can reasonably implement that as a macro. or maybe we can? (if so, sounds like something for a later PR) Also add in a few missing OOM checks | ||||
* | nspawn: don't hard fail when setting capabilities | Anita Zhang | 2019-06-20 | 3 | -1/+55 |
| | | | | | | | | | | | The OCI changes in #9762 broke a use case in which we use nspawn from inside a container that has dropped capabilities from the bounding set that nspawn expected to retain. In an attempt to keep OCI compliance and support our use case, I made hard failing on setting capabilities not in the bounding set optional (hard fail if using OCI and log only if using nspawn cmdline). Fixes #12539 | ||||
* | Merge pull request #12846 from poettering/cap-last-cap-fix | Yu Watanabe | 2019-06-21 | 3 | -6/+8 |
|\ | | | | | cap_last_cap() off by one fixes | ||||
| * | bus-creds: fix size calculation for storing caps data | Lennart Poettering | 2019-06-20 | 1 | -3/+5 |
| | | | | | | | | This is a bit confusing, hence let's at an example comment. | ||||
| * | capability: fix loops for cap_last_cap() | Lennart Poettering | 2019-06-20 | 2 | -3/+3 |
| | | | | | | | | | | | | | | cap_last_cap() returns the last valid cap (instead of the number of valid caps). to iterate through all known caps we hence need to use a <= check, and not a < check like for all other cases. We got this right usually, but in three cases we did not. | ||||
* | | bpf: use more TAKE_FD() | Lennart Poettering | 2019-06-21 | 1 | -4/+2 |
|/ | |||||
* | units: deny access to block devices | Topi Miettinen | 2019-06-20 | 4 | -0/+8 |
| | | | | | | While the need for access to character devices can be tricky to determine for the general case, it's obvious that most of our services have no need to access block devices. For logind and timedated this can be tightened further. | ||||
* | Merge pull request #12762 from ↵ | Lennart Poettering | 2019-06-20 | 13 | -78/+270 |
|\ | | | | | | | | | yuwata/network-introduce-carrier-and-network-state-12752 network: introduce carrier and address state to fix network_is_online() | ||||
| * | timesync: judging if network is online by networkd's address state | Yu Watanabe | 2019-06-16 | 1 | -3/+8 |
| | | | | | | | | Closes #12752. | ||||
| * | sd-network: introduce functions for new link and manager states | Yu Watanabe | 2019-06-16 | 4 | -9/+50 |
| | | |||||
| * | network: drop unused manager_send_changed() | Yu Watanabe | 2019-06-16 | 2 | -9/+0 |
| | | |||||
| * | network: also introduce two new manager states | Yu Watanabe | 2019-06-16 | 3 | -4/+36 |
| | | |||||
| * | network: expose carrier and address states over dbus | Yu Watanabe | 2019-06-16 | 5 | -5/+57 |
| | | | | | | | | | | | | Previously, when a bridge or bonding interface is in degraded-carrier state, then we cannot judge the interface has addresses or not. By using the new states, dbus clients can distinguish such situation. | ||||
| * | network: split operational states into carrier and address states | Yu Watanabe | 2019-06-16 | 3 | -39/+82 |
| | | | | | | | | | | This should not change any behavior. The new states will be exposed by later commits. | ||||
| * | network: introduce manager_send_changed_strv() | Yu Watanabe | 2019-06-16 | 2 | -7/+13 |
| | | |||||
| * | network: introduce link_send_changed_strv() | Yu Watanabe | 2019-06-16 | 2 | -6/+13 |
| | | | | | | | | It will be used in later commits. | ||||
| * | network: split out DBus related prototypes to networkd-link-bus.h | Yu Watanabe | 2019-06-16 | 7 | -7/+22 |
| | | |||||
* | | Merge pull request #12837 from yuwata/tree-wide-lgtm-fixes | Lennart Poettering | 2019-06-20 | 10 | -38/+67 |
|\ \ | | | | | | | tree-wide: fix issues found by lgtm | ||||
| * | | util: use extract_first_word() instead of strsep() | Yu Watanabe | 2019-06-20 | 2 | -22/+36 |
| | | | |||||
| * | | tree-wide: use htobe{32,16}() instead of hton{l,s}() | Yu Watanabe | 2019-06-20 | 2 | -3/+3 |
| | | | |||||
| * | | tree-wide: drop alloca() in loop | Yu Watanabe | 2019-06-20 | 6 | -13/+28 |
| | | | |||||
* | | | cgroup: Continue unit reset if cgroup is busy | Donald Buczek | 2019-06-20 | 1 | -4/+7 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When part of the cgroup hierarchy cannot be deleted (e.g. because there are still processes in it), do not exit unit_prune_cgroup early, but continue so that u->cgroup_realized is reset. Log the known case of non-empty cgroups at debug level and other errors at warning level. Fixes https://github.com/systemd/systemd/issues/12386 | ||||
* | | | Merge pull request #12806 from yuwata/networkctl-ethtool-12657 | Yu Watanabe | 2019-06-20 | 24 | -214/+406 |
|\ \ \ | |/ / |/| | | networkctl: show speed, duplex, auto negotiation, and port | ||||
| * | | networkctl: show link speed, duplex, auto negotiation, and port | Yu Watanabe | 2019-06-20 | 1 | -2/+72 |
| | | | |||||
| * | | network: change type of BitRates= bus property | Yu Watanabe | 2019-06-19 | 2 | -47/+18 |
| | | | |||||
| * | | table: introduce FORMAT_BPS type | Yu Watanabe | 2019-06-19 | 2 | -0/+24 |
| | | | |||||
| * | | test: add tests for format_bytes() | Yu Watanabe | 2019-06-19 | 2 | -0/+42 |
| | | | |||||
| * | | util: make format_bytes() support e.g. 3.0E | Yu Watanabe | 2019-06-19 | 1 | -5/+8 |
| | | | |||||
| * | | util: introduce format_bytes_full() | Yu Watanabe | 2019-06-19 | 11 | -49/+77 |
| | | | | | | | | | | | | And move it into format-util.c. | ||||
| * | | ethtool-util: introduce ethtool_get_link_info() | Yu Watanabe | 2019-06-19 | 2 | -0/+41 |
| | | | | | | | | | | | | Will be used in later commits. | ||||
| * | | ethtool-util: make ethtool_connect() warn on failure | Yu Watanabe | 2019-06-19 | 2 | -16/+15 |
| | | | |||||
| * | | ethtool-util: use structured initializers | Yu Watanabe | 2019-06-19 | 1 | -16/+19 |
| | | | |||||
| * | | ethtool-util: move from src/udev/net/ to src/shared/ | Yu Watanabe | 2019-06-19 | 7 | -90/+101 |
| | | | |||||
* | | | sd-resolve: suppress false positive MSan warnings | Frantisek Sumsal | 2019-06-19 | 1 | -0/+10 |
| | | | | | | | | | | | | MSan dislikes structured initializers for nested structures. | ||||
* | | | Merge pull request #12828 from ↵ | Zbigniew Jędrzejewski-Szmek | 2019-06-19 | 6 | -141/+112 |
|\ \ \ | | | | | | | | | | | | | | | | | yuwata/network-routing-policy-rule-add-missing-entries network: add missing entries in routing_policy_rule_{hash,compare}_func() | ||||
| * | | | network: add missing entries in routing_policy_rule_{hash,compare}_func() | Yu Watanabe | 2019-06-19 | 4 | -141/+105 |
| | | | | | | | | | | | | | | | | | | | | This also makes routing_policy_rule_get() or friends take a RoutingPolicyRule object as an input. | ||||
| * | | | util: introduce siphash24_compress_boolean() | Yu Watanabe | 2019-06-19 | 2 | -0/+7 |
| | | | | |||||
* | | | | Merge pull request #12815 from irtimmer/dot-strict | Lennart Poettering | 2019-06-19 | 22 | -58/+129 |
|\ \ \ \ | |/ / / |/| | | | resolved: strict mode for DNS-over-TLS | ||||
| * | | | resolved: support TLS 1.3 when using GnuTLS for DNS-over-TLS | Iwan Timmer | 2019-06-19 | 1 | -1/+6 |
| | | | | |||||
| * | | | resolved: add strict mode for DNS-over-TLS | Iwan Timmer | 2019-06-19 | 14 | -15/+46 |
| | | | | | | | | | | | | | | | | Add strict mode for DNS-over-TLS, which will require TLS support from the server. Closes #10755 | ||||
| * | | | resolved: don't require check when importing resolved-dnstls.h | Iwan Timmer | 2019-06-19 | 4 | -12/+7 |
| | | | | |||||
| * | | | resolved: add missing error code check when initializing DNS-over-TLS | Iwan Timmer | 2019-06-18 | 4 | -11/+18 |
| | | | | |||||
| * | | | resolved: move TLS data shared by all servers to manager | Iwan Timmer | 2019-06-18 | 8 | -30/+63 |
| | | | | | | | | | | | | | | | | Instead of having a context and/or trusted CA list per server this is now moved to the server. Ensures future TLS configuration options are global instead of per server. | ||||
* | | | | Merge pull request #12829 from yuwata/dhcp-memdup_suffix0 | Lennart Poettering | 2019-06-19 | 2 | -2/+2 |
|\ \ \ \ | | | | | | | | | | | sd-bus,dhcp: use memdup_suffix0() instead of strndup() | ||||
| * | | | | sd-bus: use memdup_suffix0() instead of strndup() | Yu Watanabe | 2019-06-19 | 1 | -1/+1 |
| | | | | | |||||
| * | | | | dhcp: use memdup_suffix0() instead of strndup() | Yu Watanabe | 2019-06-19 | 1 | -1/+1 |
| | |/ / | |/| | | |||||
* | | | | Merge pull request #12822 from poettering/tmpfiles-is-mount-point | Yu Watanabe | 2019-06-19 | 1 | -45/+21 |
|\ \ \ \ | |/ / / |/| | | | tmpfiles: use common fd_is_mount_point() implementation | ||||
| * | | | tmpfiles: use common fd_is_mount_point() implementation in tmpfiles.c | Lennart Poettering | 2019-06-18 | 1 | -36/+10 |
| | | | | | | | | | | | | | | | | | | | | No need to have a private reimplementation here. Let's just use the common one, which supports "fdinfo" as fallback. | ||||
| * | | | tmpfiles: merge two nested if checks into one | Lennart Poettering | 2019-06-18 | 1 | -8/+10 |
| | | | |