87cf1f8f59
meson: let's make unified cgroupsv2 the default
...
Prompted by @evverx' comments:
https://github.com/systemd/systemd/pull/10161#pullrequestreview-158327715
2019-05-24 16:44:26 +02:00
2570578d90
machine-image: openat() doesn't operate on the cwd if the first argument is specified
...
A fix-up for bcb846f30f
2019-05-24 14:39:19 +02:00
de26d715e3
Merge pull request #12430 from poettering/seccomp-kill-process
...
use SCMP_ACT_KILL_PROCESS for SystemCallFilters=
2019-05-24 12:17:53 +02:00
a429223d17
test-execute: turn off coredump generation in test services
...
These services are likely to coredump, and we expect that but aren't
interested in the coredump. Hence let's turn off processing by setting
RLIMIT_CORE to 0/0.
2019-05-24 10:48:28 +02:00
c3ab2c389e
test-execute: let's ignore the difference between CLD_KILLED and CLD_DUMPED
...
Depending on system configuration and whether SCMP_ACT_KILL_PROCESS or
SCMP_ACT_KILL_THREAD is available/used processes might coredump on
specific coredumps or are just plain killed. For our test case the
difference doesn't really matter, hence let's hide it away.
2019-05-24 10:48:28 +02:00
18f8c5d466
test-execute: check exit code before exit status
...
The meaning of the status changes depending on the code, hence let's
always compare the code first, status second.
2019-05-24 10:48:28 +02:00
727a1a0607
service: tweak capitalization of unit description
2019-05-24 10:48:28 +02:00
4cd8263166
NEWS: document the new SystemCallFilter= behaviour
2019-05-24 10:48:28 +02:00
f9a3d8e2f3
nspawn: expose the new seccomp actions in the OCI logic
2019-05-24 10:48:28 +02:00
7bbc229cf7
test: use the new action in our tests
...
This way, we know that it works as intended.
2019-05-24 10:48:28 +02:00
ccc16c7842
core: prefer SCMP_ACT_KILL_PROCESS for SystemCallFilter= behaviour
...
If we have it, use it. It makes a ton more sense.
Fixes : #11967
2019-05-24 10:48:28 +02:00
915fb32438
seccomp: add scmp_act_kill_process() helper that returns SCMP_ACT_KILL_PROCESS if supported
2019-05-24 10:48:28 +02:00
d631a760e0
Merge pull request #12601 from keszybz/two-log-color-adjustments
...
Two log color adjustments
2019-05-24 10:43:07 +02:00
05332e243c
Merge pull request #12590 from keszybz/unicode-cmdlines
...
Use unicode for cmdline printing
2019-05-24 10:41:30 +02:00
4450894653
Drop support for /usr/sbin/halt.local
...
/usr/sbin/halt.local is a Fedora/Red Hat anachronism from pre-systemd
times.
2019-05-23 10:19:01 +02:00
ff807cbb29
mkosi: update to Fedora30 ( #12642 )
2019-05-23 09:39:07 +02:00
ed55dc6084
Merge pull request #12645 from poettering/journal-mmap-einval
...
journald: output a proper error message when the journal is used on f…
2019-05-23 09:37:54 +02:00
bcb846f30f
shared/machine-image: avoid passing NULL to log_debug_errno
...
Fixes: https://github.com/systemd/systemd/issues/12534
2019-05-23 09:36:50 +02:00
a43b1f8267
Merge pull request #12618 from yuwata/test-network-improvements
...
network: several cleanups
2019-05-23 11:17:33 +09:00
12e982425c
login: fixup button_open() fd
2019-05-23 11:16:11 +09:00
94b0b1566a
Merge pull request #12647 from cdown/dup
...
test: Remove superfluous error check
2019-05-22 16:44:30 -04:00
3062dddabd
test: Remove superfluous error check
...
This is already checked above before we set any manager attributes,
immediately after manager_new().
2019-05-22 15:27:26 -04:00
93d70b6cf2
Merge pull request #12631 from keszybz/doc-and-error-message-tweaks
...
Doc and error message tweaks
2019-05-22 19:00:10 +02:00
5087825ea7
journald: output a proper error message when the journal is used on fs that doesn't do mmap() properly
...
Prompted by:
https://lists.freedesktop.org/archives/systemd-devel/2019-May/042708.html
2019-05-22 18:56:24 +02:00
9e099c9fd8
Merge pull request #12431 from poettering/tmpfiles-chmod-chown-order
...
tmpfiles: run chown() before chmod()
2019-05-22 17:23:28 +02:00
847af199e5
man: reword systemd.socket(5) description to avoid "file" when talking about services
...
This text was written a long time ago, when we mostly talked about "service
files". Strictly speaking, we don't need a "file", because the service might
be just an instance of a template, or an alias to another service. So let's use
the more modern parlance of "service units".
https://bugzilla.redhat.com/show_bug.cgi?id=1623781#c21
2019-05-22 16:28:02 +02:00
7cc5ef5f18
pid1: improve message when setting up namespace fails
...
I covered the most obvious paths: those where there's a clear problem
with a path specified by the user.
Prints something like this (at error level):
May 21 20:00:01.040418 systemd[125871]: bad-workdir.service: Failed to set up mount namespacing: /run/systemd/unit-root/etc/tomcat9/Catalina: No such file or directory
May 21 20:00:01.040456 systemd[125871]: bad-workdir.service: Failed at step NAMESPACE spawning /bin/true: No such file or directory
Fixes #10972 .
2019-05-22 16:28:02 +02:00
35b966ca23
man: tweak description of #12247 a bit
...
It wasn't really wrong, but maybe we can make it a bit clearer.
Fixes #12247 .
2019-05-22 16:28:02 +02:00
b4e2407716
man: add note that %h/%u/%U are mostly useless
...
Fixes #12389 .
2019-05-22 16:28:02 +02:00
9d48671c62
core: unset HOME=/ that the kernel gives us
...
Partially fixes #12389 .
%h would return "/" in a machine, but "/root" in a container. Let's fix
this by resetting $HOME to the expected value.
2019-05-22 16:28:02 +02:00
8da24acad5
sd-bus: improve error message for invalid org.freedesktop.DBus.Properties.Set signature
...
Fixes #12551 .
2019-05-22 16:28:02 +02:00
727036325a
man: add note which tmpfiles services read which files
...
Fixes #12596 .
2019-05-22 16:28:02 +02:00
92c605796d
login: use _cleanup_ to simplify error handling
...
When logging about a device, try to include the path to it everywhere in
messages. Also fixes an invalid assert(fd).
Inspired by b2774a3ae6
2019-05-22 15:17:24 +02:00
0f6519d43c
loop-util: invoke LOOP_CTL_GET_FREE in a loop
...
if we don't call it in a loop the device it tells us to open might
already be gone, taken by somebody else racing against us. Hence try a
few times.
2019-05-22 13:04:26 +02:00
17bcf0a09f
test-network: drop wait_online() from test_ip6gre_tunnel()
2019-05-22 18:02:20 +09:00
910feb787f
network: unify link_ipv4ll_enabled() and link_ipv4ll_fallback_enabled()
2019-05-22 17:59:39 +09:00
be0e1ef9b5
test-network: wait for bridge slave to be enslaved in test_bridge_ignore_carrier_loss_frequent_loss_and_gain()
2019-05-22 17:59:39 +09:00
a0ae96149a
network: drop unused variable
2019-05-22 17:59:39 +09:00
bb262ef02b
network: update master's ifindex in link_update()
...
And use it in link_is_enslaved().
2019-05-22 17:59:39 +09:00
0a5dced161
test-network: drop unused variable
2019-05-22 17:58:46 +09:00
2292a4c6db
network: drop duplicated logs
...
link_set_state() already logs about state change.
2019-05-22 17:58:46 +09:00
a1b3559088
test-network: add test that vcan device can be configured state
2019-05-22 17:58:46 +09:00
af9ba57aa2
network: make CAN devices go through LINK_STATE_CONFIGURING
2019-05-22 17:58:46 +09:00
671dacdf0c
test-network: add basic tests for veth interfaces
2019-05-22 17:58:46 +09:00
3543304057
network: deprecate OneQueue= for tun or tap devices
...
IFF_ONE_QUEUE has no effect since kernel-3.8. See kernel's commit
5d097109257c03a71845729f8db6b5770c4bbedc.
2019-05-22 17:58:46 +09:00
2746d30797
test-network: add tests for flags of tun or tap devices
2019-05-22 17:58:46 +09:00
1df569bf72
network: extend warning messages
2019-05-22 17:58:46 +09:00
75eed300a9
network: Allow IFF_VNET_HDR to also be set for tun devices
...
f5f07dbf06
2019-05-22 17:58:46 +09:00
077f9abc3a
test-network: add tests for LinkLocalAddressing= on ipvlan or friends
2019-05-22 17:58:46 +09:00
f410d46358
network: disable IPv4LL for ipvlan with L3 or L3S mode
...
As L3 or L3S mode do not support ARP.
2019-05-22 17:58:46 +09:00
Lennart Poettering