Zbigniew Jędrzejewski-Szmek
bc130b6858
Fix typo in function name
2020-02-04 18:54:12 +01:00
Lennart Poettering
6374862615
polkit: when authorizing via PK let's re-resolve callback/userdata instead of caching it
...
Previously, when doing an async PK query we'd store the original
callback/userdata pair and call it again after the PK request is
complete. This is problematic, since PK queries might be slow and in the
meantime the userdata might be released and re-acquired. Let's avoid
this by always traversing through the message handlers so that we always
re-resolve the callback and userdata pair and thus can be sure it's
up-to-date and properly valid.
2020-02-04 18:47:32 +01:00
Lennart Poettering
f4425c72c7
polkit: use structured initialization
2020-02-04 18:45:22 +01:00
Lennart Poettering
7f56982289
polkit: on async pk requests, re-validate action/details
...
When we do an async pk request, let's store which action/details we used
for the original request, and when we are called for the second time,
let's compare. If the action/details changed, let's not allow the access
to go through.
2020-02-04 18:45:22 +01:00
Lennart Poettering
95f82ae9d7
polkit: reuse some common bus message appending code
2020-02-04 18:45:22 +01:00
Lennart Poettering
773b1a7916
bus-polkit: rename return error parameter to ret_error
2020-02-04 18:45:22 +01:00
Zbigniew Jędrzejewski-Szmek
dc9fd22d3d
Merge pull request #14398 from poettering/mount-prep
2020-02-04 16:28:51 +01:00
Zbigniew Jędrzejewski-Szmek
2f1fc899ce
Merge pull request #14589 from keszybz/sysctl-downgrade-messages
...
sysctl: add glob patterns to set network settings more flexibly
2020-02-04 00:04:28 +01:00
Yu Watanabe
bf2334c054
udev: add {Receive,Transmit}ChecksumOffload= settings
...
Closes #14661 .
2020-02-03 12:31:31 +09:00
Lennart Poettering
6d4d600260
varlink: add ability to register callback for disconnections
2020-01-31 15:03:27 +01:00
Lennart Poettering
c4f601f205
varlink: add API for determining number of current connections
2020-01-31 15:03:11 +01:00
Lennart Poettering
d93dda3afe
systemctl: show logs for correct namespace of service
2020-01-31 15:02:52 +01:00
Lennart Poettering
91dd5f7cbe
core: add new LogNamespace= execution setting
2020-01-31 15:01:43 +01:00
Anita Zhang
1b9d61bcee
Merge pull request #14696 from poettering/dissect-tweaks
...
various tweaks to the image dissection logic
2020-01-30 12:46:03 -08:00
Zbigniew Jędrzejewski-Szmek
2a4be3c52b
Various typo fixes and grammar corrections
2020-01-30 13:48:01 +01:00
Zbigniew Jędrzejewski-Szmek
f3b136a484
shared/sysctl-util: normalize repeated slashes or dots to a single value
...
We use those strings as hash keys. While writing "a...b" looks strange,
"a///b" does not look so strange. Both syntaxes would actually result in the
value being correctly written to the file, but they would confuse our
de-deplication over keys. So let's normalize. Output also becomes nicer.
Add test.
2020-01-30 10:48:27 +01:00
Lennart Poettering
cf32c48657
dissect: optionally, run fsck before mounting dissected images
...
Some file systems want us to run fsck before mounting, hence do so,
optionally.
2020-01-29 19:29:44 +01:00
Lennart Poettering
0f7c9a3d81
dissect: complain if partition flags are set that we don't know
2020-01-29 19:29:39 +01:00
Lennart Poettering
70a5db5822
home: add new systemd-homed service that can manage LUKS homes
...
Fixes more or less: https://bugs.freedesktop.org/show_bug.cgi?id=67474
2020-01-28 22:36:07 +01:00
Lennart Poettering
b940fb1f4f
Merge pull request #14594 from keszybz/id128-show-gpt
...
Print gpt table values in systemd-id128
2020-01-28 17:23:50 +01:00
Zbigniew Jędrzejewski-Szmek
d2b45da40a
Merge pull request #14633 from poettering/logind-switch-polkit
...
add polkit hookup for VT switching in logind
2020-01-28 16:09:09 +01:00
Lennart Poettering
8615bec7a0
Merge pull request #14667 from yuwata/boot-random-seed-mode
...
boot: parse random-seed-mode
2020-01-28 15:42:10 +01:00
Kevin Kuehler
fc64760dda
core: shared: Add ProtectClock= to systemd.exec
2020-01-26 12:23:33 -08:00
Yu Watanabe
fe5a698f76
bootspec: parse random-seed-mode line in loader.conf
...
Fixes #14657 .
2020-01-26 13:20:34 +09:00
Zbigniew Jędrzejewski-Szmek
dc972b0740
systemd-id128: add new verb to print GPT partitions UUIDs
2020-01-23 23:32:13 +01:00
Zbigniew Jędrzejewski-Szmek
19ce38ce62
shared/gpt: export gpt_partition_type_uuid_{to,from}_string functions
2020-01-23 22:56:23 +01:00
Zbigniew Jędrzejewski-Szmek
5e176a4dee
Merge pull request #14368 from poettering/repart
2020-01-23 19:07:02 +01:00
Anita Zhang
72528419e1
Merge pull request #14618 from poettering/growfs-rootfs
...
generator: order growfs for the root fs after systemd-remount-fs
2020-01-22 05:32:18 -08:00
Anita Zhang
fe888c79f5
Merge pull request #14614 from poettering/import-fixlets
...
three small importd fixes
2020-01-22 03:48:31 -08:00
Lennart Poettering
269e4d2d6b
shared: split out polkit stuff from bus-util.c → bus-polkit.c
...
It's enough, complex stuff to warrant its own source file.
No other changes, just splitting out.
2020-01-22 12:34:10 +01:00
Lennart Poettering
a7e8855879
units: introduce blockdev@.target for properly ordering mounts/swaps against cryptsetup
...
Let's hook it into both cryptsetup-generator and gpt-auto-generator with
a shared implementation in generator.c
Fixes : #8472
2020-01-21 20:23:13 +01:00
Yu Watanabe
5029912157
network,udev: use uint64_t for bit rate
...
Fixes #14620 .
2020-01-21 16:51:19 +01:00
Lennart Poettering
898820edb5
json: lower maximum allowed recursion to 2K
...
Apparently 4K is too high still, let's halve it.
Fixes : #14396
2020-01-21 10:50:09 +01:00
Lennart Poettering
18e6e8635f
generator: order growfs for the root fs after systemd-remount-fs
...
Fixes : #14603
2020-01-21 10:40:18 +01:00
Lennart Poettering
137c6c6b36
import: don't complain if FS_NOCOW_FL is not available
...
Let's downgrade the log message to LOG_DEBUG if triggered by an fs that
doesn't support the flag.
2020-01-20 21:10:31 +01:00
Lennart Poettering
b57ebc6004
conf-parser: add parser for 32bit signed integers
2020-01-20 17:42:03 +01:00
Lennart Poettering
137688dff4
format-table: add support for formatting uuids/id128 values
2020-01-20 17:42:03 +01:00
Zbigniew Jędrzejewski-Szmek
ddee3ada46
shared/user-record-nss: use macro to avoid repeats
...
It's easier to read when each field is intialized in exactly one place.
2020-01-17 08:13:09 +01:00
Zbigniew Jędrzejewski-Szmek
192aee3cae
shared/user-record-nss: shorten code a bit
...
free_and_strdup() already does comparison internally.
2020-01-16 21:57:00 +01:00
Arian van Putten
c7d26acce6
Disable reading SystemdOptions EFI Var when in SecureBoot mode
...
In SecureBoot mode this is probably not what you want. As your cmdline
is cryptographically signed like when using Type #2 EFI Unified Kernel
Images (https://systemd.io/BOOT_LOADER_SPECIFICATION/ ) The user's
intention is then that the cmdline should not be modified. You want to
make sure that the system starts up as exactly specified in the signed
artifact.
2020-01-16 18:46:56 +01:00
Zbigniew Jędrzejewski-Szmek
c16460cf78
shared/sysctl-util: add missing header
...
one_zero() is used later in the header...
2020-01-16 15:51:44 +01:00
Lennart Poettering
cef9f2a647
shared: add pam utility helpers
2020-01-15 15:29:31 +01:00
Lennart Poettering
295c1a6e45
shared: add helpers for displaying new-style user/group records to users
2020-01-15 15:27:59 +01:00
Lennart Poettering
ec8e4a0ef1
shared: add internal API for querying JSON user records via varlink
...
This new API can be used in place of NSS by our own internal code if
more than the classic UNIX records are needed.
2020-01-15 15:27:41 +01:00
Lennart Poettering
9b2d907877
shared: add helpers for converting NSS passwd/group structures to new JSON objects
...
These new calls may be used to convert classic UNIX/glibc NSS struct
passwd and struct group records into new-style JSON-based user/group
objects.
2020-01-15 15:27:23 +01:00
Lennart Poettering
71d0b9d422
shared: add generic user/group record structures and JSON parsers
2020-01-15 15:27:04 +01:00
Lennart Poettering
64aa2622a3
libcrypt-util: add superficial validator for UNIX hashed password strings
2020-01-15 15:26:51 +01:00
Lennart Poettering
42f3b2f975
shared: split out crypt() specific helpers into its own .c/.h in src/shared/
...
This way we can use libxcrypt specific functionality such as
crypt_gensalt() and thus take benefit of the newer algorithms libxcrypt
implements. (Also adds support for a new env var $SYSTEMD_CRYPT_PREFIX
which may be used to select the hash algorithm to use for libxcrypt.)
Also, let's move the weird crypt.h inclusion into libcrypt.h so that
there's a single place for it.
2020-01-15 15:26:27 +01:00
Yu Watanabe
4618660d10
format-table: introduce TABLE_STRV
2020-01-15 11:52:40 +09:00
Zbigniew Jędrzejewski-Szmek
ea7fe1d1c2
Merge pull request #14390 from poettering/gpt-var-tmp
...
introduce GPT partition types for /var and /var/tmp and support them for auto-discovery
2020-01-14 15:37:53 +01:00