picnoir/Systemd
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
45605 commits 2 branches 0 tags 166 MiB
Commit graph

45605 commits

This branch
This branch
All branches
Author SHA1 Message Date
Frantisek Sumsal bf795c47bc test: use KILL instead of SIGKILL in TEST-52-HONORFIRSTSHUTDOWN 
SIG-prefixed signals for `kill` are not POSIX compliant, so on Ubuntu CI
(which defaults to dash instead of bash) the TEST-52 contains following
error:

[ 9693.549638] sh[51]: + systemctl poweroff --no-block
[ 9693.553130] systemd-logind[26]: System is powering down.
[ 9693.608911] sh[54]: /bin/sh: 1: kill: Illegal option -S

This can be reproduced manually as well, either by running dash, or bash
in POSIX mode:

$ dash -c 'kill -SIGKILL 123'
dash: 1: kill: Illegal option -S

$ bash --posix -c 'kill -SIGKILL 123'
bash: line 0: kill: SIGKILL: invalid signal specification
 2020-07-05 11:00:57 +01:00
Dan Callaghan 2fadbb4535 core: set private section name for automount units 
Because this was left unset, the unit_write_setting() function was
refusing to write out the automount-specific TimeoutIdleSec= and
DirectoryMode= settings when creating transient automount units.
Set it to the proper value in line with other unit types.
 2020-07-04 18:48:36 +02:00
MaxVerevkin c2056dd6f9 hwdb: Pavilion 13 x360: Tablet mode and SYSRQ key 2020-07-04 16:36:20 +02:00
Zbigniew Jędrzejewski-Szmek 071be2fa9f
Merge pull request #15442 from poettering/fido2 
add fido2 authentication support to homed
 2020-07-03 17:27:15 +02:00
gzjsgdsb 33d943d168 initialize arg_clock_usec 2020-07-03 14:52:20 +02:00
Zbigniew Jędrzejewski-Szmek 9e99bfbd5a
Merge pull request #16348 from yuwata/news-sriov 
NEWS: two updates about networkd
 2020-07-03 12:13:14 +02:00
Yu Watanabe 71af436c63 NEWS: mention .network [SR-IOV] section 2020-07-03 17:58:41 +09:00
Yu Watanabe 554a97ba23 NEWS: WithoutRA= is not a boolean option anymore 2020-07-03 15:25:28 +09:00
Zbigniew Jędrzejewski-Szmek a68da22257 NEWS: tweak WithoutRA= description a bit more 
Follow-up for cbdf02952e.
 2020-07-02 18:12:03 +02:00
Yu Watanabe c03ef420fa network: tc: rename several settings which take size in bytes 2020-07-02 16:51:11 +02:00
hadess 25b67032a8
Merge pull request #16343 from jirislaby/master 
hwdb: Add accel orientation quirk for UMAX VisionBook 10Wi Pro
 2020-07-02 15:19:33 +02:00
Zbigniew Jędrzejewski-Szmek cc832f9772
Merge pull request #16338 from keszybz/spelling2 
Tree-wide spelling fixes
 2020-07-02 15:10:27 +02:00
Zbigniew Jędrzejewski-Szmek 63b7e7b4ba
Merge pull request #16336 from yuwata/ifindex-cleanups 
tiny cleanups related to ifindex
 2020-07-02 15:08:41 +02:00
Yu Watanabe cbdf02952e NEWS: update document about WithoutRA= 
Follow-up for 838d39af93.
 2020-07-02 20:25:48 +09:00
Yu Watanabe 1447dc625a
Merge pull request #16219 from ssahani/network-sr-iov 
network: Introduce SR-IOV
 2020-07-02 20:24:13 +09:00
Jiri Slaby 74986a0f88 hwdb: Add accel orientation quirk for UMAX VisionBook 10Wi Pro 2020-07-02 13:06:04 +02:00
Zbigniew Jędrzejewski-Szmek 52e085af82 tree-wide: "unparseable" → "unparsable" 
"unparsable" is the more common spelling. We already pick "movable" over
"moveable". Let's do the same with this pair.
 2020-07-02 09:58:23 +02:00
Yu Watanabe 13adf35343 resolve: use appropriate type 2020-07-02 16:58:06 +09:00
Yu Watanabe 5e958e1d6c util: use setsockopt_int() at one more place 2020-07-02 16:58:06 +09:00
Yu Watanabe 1a6c913676 libsystemd-network: rename index -> ifindex 2020-07-02 16:58:06 +09:00
Yu Watanabe 7fa69c0a6f dhcp6, radv: only accept valid ifindex 2020-07-02 16:58:06 +09:00
Zbigniew Jędrzejewski-Szmek 15e6a6e87b tree-wide: spell "lifecycle" without hyphen everywhere 
We had 2 more instances of unhyphentated spelling.
 2020-07-02 09:55:44 +02:00
Zbigniew Jędrzejewski-Szmek 37b22b3b47 tree: wide "the the" and other trivial grammar fixes 2020-07-02 09:51:38 +02:00
Susant Sahani 838d39af93 network: Allow DHCPv6 client to start solicit mode 
Now DHCPv6 client start only DHCPv6 INFORMATION-REQUEST mode.
Let's enable Solicit mode too.
 2020-07-02 16:18:48 +09:00
AsciiWolf 51115fdc42 l10n: update Czech Translation 2020-07-01 17:44:20 +02:00
Lennart Poettering c8fe23d45c update TODO 2020-07-01 11:20:26 +02:00
Lennart Poettering 4442c26942 man: update homectl man page with documentation for new features 2020-07-01 11:20:26 +02:00
Lennart Poettering fe2520fbb5 docs: document new FIDO2 user record fields 2020-07-01 11:20:26 +02:00
Lennart Poettering 0eb3be4644 homectl: add --pkcs11-uri=auto and --pkcs-11-uri=list support 
We have the same for FIDO2 devices, for listing suitable devices, or
picking the right one automatically, let's add that for PKCS11 too.
 2020-07-01 11:20:26 +02:00
Lennart Poettering 2af3966af3 homectl: add acquired fido2 PIN to user record 
If we successfully acquired the PIN for the fido2 key, let's add it to
our user record, so that we can pass it to homed, which will need it
too.
 2020-07-01 11:20:26 +02:00
Lennart Poettering 93295a2501 homectl: split out pkcs#11 related code bits into own .c/.h file 
There's some highly specific PKCS#11 code in homectl.c. Let's split that
out, since it is easily isolatable, to make homectl.c a bit more
readable.

No funcional changes, just some moving around and renaming two functions
to make them more suitably named when exported.
 2020-07-01 11:20:25 +02:00
Lennart Poettering c98811d837 homectl: rework how we log when doing a home directory update 
When updating a home directory we might update the record first, then
resize the image and finally synchronize the passwords to the storage
layers. These are three individually authenticated operations. Since
each might require touching a FIDO2 or PKCS#11 key we should say what we
are doing. Hence do so.

Usually we are pretty quiet with what we do, and let's stick to that.
Hence show this information only if we actually do more than one thing.
If we only update (and do not resize/sync passwords) then let's be quiet
as usual, as the command line then sufficiently clarifies what we are
doing.
 2020-07-01 11:17:28 +02:00
Lennart Poettering 8e62dfb12a homectl: do generic error handling/retry also when creating a home directory 
After all, when creating we might need interaction with the security
token too, and our initial attempt to create the user will fail, since
we do not allow interactive auth on the security token, so that we then
can print a log message and retry with interactive auth then enabled.
 2020-07-01 11:17:28 +02:00
Lennart Poettering f737186ab1 homectl: show touch emoji when asking for PKCS#11 protected auth path 2020-07-01 11:17:28 +02:00
Lennart Poettering 85b1294488 pam-systemd-home: print helpful message when token's PIN is locked 2020-07-01 11:17:28 +02:00
Lennart Poettering 7b78db28e5 homed: add support for authenticating with fido2 hmac-secret tokens 2020-07-01 11:17:28 +02:00
Lennart Poettering 1c0c4a43c6 homectl: add support for enrolling FIDO2 HMAC-SECRET tokens 2020-07-01 11:17:28 +02:00
Lennart Poettering 5e4fa456fa user-record: add fields for FIDO2 HMAC authentication options 2020-07-01 11:17:28 +02:00
Lennart Poettering af4fbd463f build-sys: add libfido2 as optional dependency 2020-07-01 11:17:28 +02:00
Lennart Poettering c0bde0d240 user-record: rename JSON field "pkcs11Pin" to "tokenPin" 
We'd like to use it for FIDO2 tokens too, and the concept is entirely
generic, hence let's just reuse the field, but rename it. Read the old
name for compatibility, and treat the old name and the new name as
identical for most purposes.
 2020-07-01 11:17:28 +02:00
Lennart Poettering d00f318323 user-record: securely erase pkcs#11 when assigned NULL too 2020-07-01 11:17:28 +02:00
Lennart Poettering 7b8d55b72c homectl: add missing log messages when json_variant_format() fails 2020-07-01 11:17:28 +02:00
Lennart Poettering c63ec11bf5 pkcs11-util: reduce scope of a variable 2020-07-01 11:17:28 +02:00
Lennart Poettering 1146b664e6 macro: add new FOREACH_POINTER() macro magic 
This allows us to iterate through a series of specified pointers. It's a
bit like FOREACH_STRING(), but for all kinds of pointers.
 2020-07-01 11:17:28 +02:00
Lennart Poettering 428d32afea locale-util: add support for touch emoji 
We can use this to highlight when users are supposed to touch their
security tokens.
 2020-07-01 11:17:27 +02:00
Yu Watanabe 830ffbce1b doc: add recentry introduced transient settings 
Also sort entries for service settings.
 2020-07-01 10:38:08 +02:00
Yu Watanabe 9457b6bb21
Merge pull request #16303 from poettering/dbus-util-split 
shared: split src/shared/bus-util.c into multiple files
 2020-07-01 14:15:40 +09:00
Yu Watanabe 3d2c26925f test-network: add tests for SR-IOV 
This also adjusts test_sysctl_disable_ipv6(), as rt_trap flag may be
added to routes on some environments.
 2020-07-01 13:51:35 +09:00
Yu Watanabe c3a5025dc6 network: add MACAddress= setting in [SR-IOV] section 2020-07-01 13:51:35 +09:00
Yu Watanabe e64b31c848 network: add VLANProtocol= setting in [SR-IOV] section 2020-07-01 13:51:35 +09:00