picnoir/Systemd
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
39457 commits 2 branches 0 tags 166 MiB
Commit graph

4324 commits

Author SHA1 Message Date
Zbigniew Jędrzejewski-Szmek 38df8d3f52 sd-id128: expose ID128_UUID_FORMAT_STR 
It is generally useful, and can be made public in the same manner that
SD_ID128_FORMAT_STR is.
 2019-04-05 13:47:54 +02:00
Lennart Poettering bf65b7e0c9 core: imply NNP and SUID/SGID restriction for DynamicUser=yes service 
Let's be safe, rather than sorry. This way DynamicUser=yes services can
neither take benefit of, nor create SUID/SGID binaries.

Given that DynamicUser= is a recent addition only we should be able to
get away with turning this on, even though this is strictly speaking a
binary compatibility breakage.
 2019-04-02 16:56:48 +02:00
Lennart Poettering 7445db6eb7 man: document the new RestrictSUIDSGID= setting 2019-04-02 16:56:48 +02:00
Lennart Poettering d9b8c2ef8b man: document the two new .timer settings 2019-04-02 08:20:10 +02:00
Yu Watanabe 3f8f021541
Merge pull request #12030 from poettering/condition-memory 
add ConditionCPUs= + ConditionMemory=
 2019-04-02 08:01:42 +09:00
Yu Watanabe 1589231365
Merge pull request #12168 from poettering/man-fixes 
three minor tweaks to the man pages
 2019-04-02 07:32:40 +09:00
Yu Watanabe dd09a9ec0f
Merge pull request #12160 from yuwata/wait-online-allow-configuring 
wait-online: add --any option
 2019-04-02 06:10:36 +09:00
Yu Watanabe 2f9859baa8 wait-online: add --any option 
When this option is specified, wait-online exits with success even
when several interfaces are in configuring state.

Closes #9714.
 2019-04-02 03:37:50 +09:00
Yu Watanabe 0b145817ff man: update FooOverUDP= 2019-04-02 03:29:46 +09:00
Lennart Poettering 58031d99c6 man: be clearer that .timer time expressions need to be reset to override them 
let's be clearer about the overriding concept for OnCalendar= settings.

Prompted by this thread:

https://lists.freedesktop.org/archives/systemd-devel/2019-March/042351.html
 2019-04-01 18:30:18 +02:00
Lennart Poettering 6d463b8aed man: refer to innermost directory as innermost, not as "lowest" 
Let's avoid confusion whether the root is at the top or of the bottom of
the directory tree. Moreover we use "innermost" further down for the
same concept, so let's stick to the same terminology here.
 2019-04-01 18:30:18 +02:00
Lennart Poettering 8601482cd8 man: tweak XyzDirectory= table a bit 2019-04-01 18:30:18 +02:00
Yu Watanabe c65c01c41a man: update Tunnel.Key= and friends 2019-03-30 21:17:48 +09:00
Lennart Poettering ef81ce6e80 man: clarify which addresses are affected by IPAddressAllow=/IPAddressDeny= 
For ingress traffic it's the source address of IP packets we check, for
egress traffic it's the destination address. Mention that.
 2019-03-29 16:17:55 +01:00
Lennart Poettering 75006470ce tmpfiles: support the FS_PROJINHERIT_FL chattr flag 2019-03-28 18:43:04 +01:00
Zbigniew Jędrzejewski-Szmek c6335c3b51
Merge pull request #12115 from poettering/verbose-job-enqueue 
add "systemctl --show-transaction start" as a more verbose "systemctl start" that shows enqueued jobs
 2019-03-28 11:04:26 +01:00
Zbigniew Jędrzejewski-Szmek 65aeb9d4ab man: clarify the role of OnBootSec= in containers 
https://github.com/systemd/systemd/pull/12104#pullrequestreview-218627236
 2019-03-27 14:03:37 +01:00
Lennart Poettering df4a7cb732 man: document the new systemctl --show-transaction option 2019-03-27 12:37:37 +01:00
Lennart Poettering c49357e747 man: rework timer docs to use a table for monotonic timers 2019-03-25 20:32:18 +01:00
Zbigniew Jędrzejewski-Szmek 3aaae27a75 man: clarify that ExecStop= is always called 
Fixes #11744.
 2019-03-22 16:28:43 +01:00
Zbigniew Jędrzejewski-Szmek 543e6bd4c2 man: update description of initrd in bootup(7) 
Mention that initramfs is used, not initrd, even though we still call
it that. Also add links and clarify who loads the initramfs.
 2019-03-22 16:28:43 +01:00
Yu Watanabe 3f4c9bc04c
Merge pull request #12066 from yuwata/fix-network-tunnel-12041 
network: fix netdev_tunnel_verify()
 2019-03-22 05:57:38 +09:00
Yu Watanabe 8643885f58 man: mention that Tunnel.Local= and Tunnel.Remote= can take 'any' 2019-03-22 03:31:55 +09:00
Yu Watanabe d653a35919 man: do not wrap line in the table 2019-03-22 03:31:55 +09:00
Lennart Poettering e947830460
Merge pull request #12046 from keszybz/simplify-invocation-id-check 
sd-id128: look for invocation id in environment first, keyring second
 2019-03-21 19:15:49 +01:00
Yu Watanabe b239288f72
Merge pull request #11931 from yuwata/condition-test-list 
split static condition tests from net_match_config()
 2019-03-22 02:30:57 +09:00
Zbigniew Jędrzejewski-Szmek bb068de080 nspawn: add --no-pager switch 
It only matters for --help.
 2019-03-21 17:42:43 +01:00
Yu Watanabe d689bbcaa3 man: mention that conditions in [Match] section support negation 2019-03-21 23:38:51 +09:00
Yu Watanabe 1cdca39752 man: use literal tag 2019-03-21 23:38:51 +09:00
Zbigniew Jędrzejewski-Szmek b1de39dec8 man: make separate "Errors" sections subsection of "Return value" 
Logically, this is better, because we're describing a subset of possible
return values. Visually this also looks quite good because groff renders
refsect2 much less prominently.

Also rewrap things, add <constant> in various places, fix some typos.
 2019-03-21 14:53:00 +01:00
Zbigniew Jędrzejewski-Szmek 6d99c5d1d9 man: document error values for sd_id128_get_*() 2019-03-21 14:13:02 +01:00
Lennart Poettering d99058c979 man: adjust nspawn man page to follow same section/order as --help text 
No other changes, just some reshuffling and adding of section headers
(well, admittedly, I changed some "see above" and "see below" in the
text to match the new order.)
 2019-03-21 13:27:48 +01:00
Zbigniew Jędrzejewski-Szmek d0b6a10c00
Merge pull request #9762 from poettering/nspawn-oci 
OCI runtime support for nspawn
 2019-03-21 11:01:53 +01:00
Lennart Poettering 2b60d7ea54 man: document ConditionMemory= + ConditionCPUs= 2019-03-19 15:55:08 +01:00
Lennart Poettering 2877d42870 condition: for completenes sake at != comparator for ConditionKernelVersion= 2019-03-19 15:55:08 +01:00
dana 4890482531 journalctl: support -b all to negate effect of -b 
Also fix an issue where -b without argument didn't always behave as -b0
 2019-03-19 10:48:26 +01:00
Lennart Poettering f0e3650de1 man: clarify that /run/media/system/ is where mounts are placed by default 
Prompted by the discussions on: https://github.com/systemd/systemd/issues/11982#issuecomment-472781806
 2019-03-15 16:37:17 +01:00
Lennart Poettering 3d6c367510 man: document the various new options nspawn learnt 2019-03-15 15:42:21 +01:00
Zbigniew Jędrzejewski-Szmek d323a99001 man: reorder and add examples to systemd-analyze(1) 
The number of verbs supported by systemd-analyze has grown quite a bit, and the
man page has become an unreadable wall of text. Let's put each verb in a
separate subsection, grouping similar verbs together, and add a lot of examples
to guide the user.
 2019-03-15 13:55:24 +01:00
Zbigniew Jędrzejewski-Szmek 827f62c3f2 man,units: document what user "default.target" is a bit 2019-03-15 13:55:24 +01:00
Zbigniew Jędrzejewski-Szmek 9c5ac5ebba man: tell generator writers to provide authorship and source information 
Our generators always put a comment who generated the file, but we didn't
recommend it to others.

Let's also strengthen the advice to use SourcePath=.
 2019-03-15 08:19:07 +01:00
Zbigniew Jędrzejewski-Szmek de04bbdce1 tree-wide: spell "lifecycle" without hyphen everywhere 
We had 10 instances of unhyphentated spelling, and 4 of the hyphenated one.
Consistency trumps ispell.
 2019-03-14 22:47:44 +01:00
Lennart Poettering b3f6c4531e
Merge pull request #12002 from keszybz/man-headers 
Man headers
 2019-03-14 15:55:04 +01:00
Lennart Poettering c4d4b5a708 man: say explicitly which settings are not available in --user services 
Fixes: #3944
 2019-03-14 15:13:33 +01:00
Lennart Poettering 2e34d21b70 man: document that if the main process exits after SIGTERM we go directly to SIGKILL 
Fixes: #8122
 2019-03-14 15:13:33 +01:00
Lennart Poettering c4a05aa1a8 networkd: clarify that IPv6 RA uses our own stack, no the kernel's 
Fixes: #8906
 2019-03-14 15:13:33 +01:00
Lennart Poettering 5f42830079 man: mention O_NOCTTY and it's importance in daemon(7) 
Fixes: #9164
 2019-03-14 15:13:33 +01:00
Lennart Poettering 6cc68362d5 man: document the network interface size limits --network-veth= enforces 
Fixes: #10721
 2019-03-14 15:13:33 +01:00
Lennart Poettering fba10579f1 man: document that Anonymize=yes makes DHCP leases grow in size 
Fixes: #11551
 2019-03-14 15:13:33 +01:00
Zbigniew Jędrzejewski-Szmek 3a54a15760 man: use same header for all files 
The "include" files had type "book" for some raeason. I don't think this
is meaningful. Let's just use the same everywhere.

$ perl -i -0pe 's^..DOCTYPE (book|refentry) PUBLIC "-//OASIS//DTD DocBook XML V4.[25]//EN"\s+"http^<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"\n  "http^gms' man/*.xml
 2019-03-14 14:42:05 +01:00