Frantisek Sumsal
bf795c47bc
test: use KILL instead of SIGKILL in TEST-52-HONORFIRSTSHUTDOWN
...
SIG-prefixed signals for `kill` are not POSIX compliant, so on Ubuntu CI
(which defaults to dash instead of bash) the TEST-52 contains following
error:
[ 9693.549638] sh[51]: + systemctl poweroff --no-block
[ 9693.553130] systemd-logind[26]: System is powering down.
[ 9693.608911] sh[54]: /bin/sh: 1: kill: Illegal option -S
This can be reproduced manually as well, either by running dash, or bash
in POSIX mode:
$ dash -c 'kill -SIGKILL 123'
dash: 1: kill: Illegal option -S
$ bash --posix -c 'kill -SIGKILL 123'
bash: line 0: kill: SIGKILL: invalid signal specification
2020-07-05 11:00:57 +01:00
Dan Callaghan
2fadbb4535
core: set private section name for automount units
...
Because this was left unset, the unit_write_setting() function was
refusing to write out the automount-specific TimeoutIdleSec= and
DirectoryMode= settings when creating transient automount units.
Set it to the proper value in line with other unit types.
2020-07-04 18:48:36 +02:00
MaxVerevkin
c2056dd6f9
hwdb: Pavilion 13 x360: Tablet mode and SYSRQ key
2020-07-04 16:36:20 +02:00
Zbigniew Jędrzejewski-Szmek
071be2fa9f
Merge pull request #15442 from poettering/fido2
...
add fido2 authentication support to homed
2020-07-03 17:27:15 +02:00
gzjsgdsb
33d943d168
initialize arg_clock_usec
2020-07-03 14:52:20 +02:00
Zbigniew Jędrzejewski-Szmek
9e99bfbd5a
Merge pull request #16348 from yuwata/news-sriov
...
NEWS: two updates about networkd
2020-07-03 12:13:14 +02:00
Yu Watanabe
71af436c63
NEWS: mention .network [SR-IOV] section
2020-07-03 17:58:41 +09:00
Yu Watanabe
554a97ba23
NEWS: WithoutRA= is not a boolean option anymore
2020-07-03 15:25:28 +09:00
Zbigniew Jędrzejewski-Szmek
a68da22257
NEWS: tweak WithoutRA= description a bit more
...
Follow-up for cbdf02952e
.
2020-07-02 18:12:03 +02:00
Yu Watanabe
c03ef420fa
network: tc: rename several settings which take size in bytes
2020-07-02 16:51:11 +02:00
hadess
25b67032a8
Merge pull request #16343 from jirislaby/master
...
hwdb: Add accel orientation quirk for UMAX VisionBook 10Wi Pro
2020-07-02 15:19:33 +02:00
Zbigniew Jędrzejewski-Szmek
cc832f9772
Merge pull request #16338 from keszybz/spelling2
...
Tree-wide spelling fixes
2020-07-02 15:10:27 +02:00
Zbigniew Jędrzejewski-Szmek
63b7e7b4ba
Merge pull request #16336 from yuwata/ifindex-cleanups
...
tiny cleanups related to ifindex
2020-07-02 15:08:41 +02:00
Yu Watanabe
cbdf02952e
NEWS: update document about WithoutRA=
...
Follow-up for 838d39af93
.
2020-07-02 20:25:48 +09:00
Yu Watanabe
1447dc625a
Merge pull request #16219 from ssahani/network-sr-iov
...
network: Introduce SR-IOV
2020-07-02 20:24:13 +09:00
Jiri Slaby
74986a0f88
hwdb: Add accel orientation quirk for UMAX VisionBook 10Wi Pro
2020-07-02 13:06:04 +02:00
Zbigniew Jędrzejewski-Szmek
52e085af82
tree-wide: "unparseable" → "unparsable"
...
"unparsable" is the more common spelling. We already pick "movable" over
"moveable". Let's do the same with this pair.
2020-07-02 09:58:23 +02:00
Yu Watanabe
13adf35343
resolve: use appropriate type
2020-07-02 16:58:06 +09:00
Yu Watanabe
5e958e1d6c
util: use setsockopt_int() at one more place
2020-07-02 16:58:06 +09:00
Yu Watanabe
1a6c913676
libsystemd-network: rename index -> ifindex
2020-07-02 16:58:06 +09:00
Yu Watanabe
7fa69c0a6f
dhcp6, radv: only accept valid ifindex
2020-07-02 16:58:06 +09:00
Zbigniew Jędrzejewski-Szmek
15e6a6e87b
tree-wide: spell "lifecycle" without hyphen everywhere
...
We had 2 more instances of unhyphentated spelling.
2020-07-02 09:55:44 +02:00
Zbigniew Jędrzejewski-Szmek
37b22b3b47
tree: wide "the the" and other trivial grammar fixes
2020-07-02 09:51:38 +02:00
Susant Sahani
838d39af93
network: Allow DHCPv6 client to start solicit mode
...
Now DHCPv6 client start only DHCPv6 INFORMATION-REQUEST mode.
Let's enable Solicit mode too.
2020-07-02 16:18:48 +09:00
AsciiWolf
51115fdc42
l10n: update Czech Translation
2020-07-01 17:44:20 +02:00
Lennart Poettering
c8fe23d45c
update TODO
2020-07-01 11:20:26 +02:00
Lennart Poettering
4442c26942
man: update homectl man page with documentation for new features
2020-07-01 11:20:26 +02:00
Lennart Poettering
fe2520fbb5
docs: document new FIDO2 user record fields
2020-07-01 11:20:26 +02:00
Lennart Poettering
0eb3be4644
homectl: add --pkcs11-uri=auto and --pkcs-11-uri=list support
...
We have the same for FIDO2 devices, for listing suitable devices, or
picking the right one automatically, let's add that for PKCS11 too.
2020-07-01 11:20:26 +02:00
Lennart Poettering
2af3966af3
homectl: add acquired fido2 PIN to user record
...
If we successfully acquired the PIN for the fido2 key, let's add it to
our user record, so that we can pass it to homed, which will need it
too.
2020-07-01 11:20:26 +02:00
Lennart Poettering
93295a2501
homectl: split out pkcs#11 related code bits into own .c/.h file
...
There's some highly specific PKCS#11 code in homectl.c. Let's split that
out, since it is easily isolatable, to make homectl.c a bit more
readable.
No funcional changes, just some moving around and renaming two functions
to make them more suitably named when exported.
2020-07-01 11:20:25 +02:00
Lennart Poettering
c98811d837
homectl: rework how we log when doing a home directory update
...
When updating a home directory we might update the record first, then
resize the image and finally synchronize the passwords to the storage
layers. These are three individually authenticated operations. Since
each might require touching a FIDO2 or PKCS#11 key we should say what we
are doing. Hence do so.
Usually we are pretty quiet with what we do, and let's stick to that.
Hence show this information only if we actually do more than one thing.
If we only update (and do not resize/sync passwords) then let's be quiet
as usual, as the command line then sufficiently clarifies what we are
doing.
2020-07-01 11:17:28 +02:00
Lennart Poettering
8e62dfb12a
homectl: do generic error handling/retry also when creating a home directory
...
After all, when creating we might need interaction with the security
token too, and our initial attempt to create the user will fail, since
we do not allow interactive auth on the security token, so that we then
can print a log message and retry with interactive auth then enabled.
2020-07-01 11:17:28 +02:00
Lennart Poettering
f737186ab1
homectl: show touch emoji when asking for PKCS#11 protected auth path
2020-07-01 11:17:28 +02:00
Lennart Poettering
85b1294488
pam-systemd-home: print helpful message when token's PIN is locked
2020-07-01 11:17:28 +02:00
Lennart Poettering
7b78db28e5
homed: add support for authenticating with fido2 hmac-secret tokens
2020-07-01 11:17:28 +02:00
Lennart Poettering
1c0c4a43c6
homectl: add support for enrolling FIDO2 HMAC-SECRET tokens
2020-07-01 11:17:28 +02:00
Lennart Poettering
5e4fa456fa
user-record: add fields for FIDO2 HMAC authentication options
2020-07-01 11:17:28 +02:00
Lennart Poettering
af4fbd463f
build-sys: add libfido2 as optional dependency
2020-07-01 11:17:28 +02:00
Lennart Poettering
c0bde0d240
user-record: rename JSON field "pkcs11Pin" to "tokenPin"
...
We'd like to use it for FIDO2 tokens too, and the concept is entirely
generic, hence let's just reuse the field, but rename it. Read the old
name for compatibility, and treat the old name and the new name as
identical for most purposes.
2020-07-01 11:17:28 +02:00
Lennart Poettering
d00f318323
user-record: securely erase pkcs#11 when assigned NULL too
2020-07-01 11:17:28 +02:00
Lennart Poettering
7b8d55b72c
homectl: add missing log messages when json_variant_format() fails
2020-07-01 11:17:28 +02:00
Lennart Poettering
c63ec11bf5
pkcs11-util: reduce scope of a variable
2020-07-01 11:17:28 +02:00
Lennart Poettering
1146b664e6
macro: add new FOREACH_POINTER() macro magic
...
This allows us to iterate through a series of specified pointers. It's a
bit like FOREACH_STRING(), but for all kinds of pointers.
2020-07-01 11:17:28 +02:00
Lennart Poettering
428d32afea
locale-util: add support for touch emoji
...
We can use this to highlight when users are supposed to touch their
security tokens.
2020-07-01 11:17:27 +02:00
Yu Watanabe
830ffbce1b
doc: add recentry introduced transient settings
...
Also sort entries for service settings.
2020-07-01 10:38:08 +02:00
Yu Watanabe
9457b6bb21
Merge pull request #16303 from poettering/dbus-util-split
...
shared: split src/shared/bus-util.c into multiple files
2020-07-01 14:15:40 +09:00
Yu Watanabe
3d2c26925f
test-network: add tests for SR-IOV
...
This also adjusts test_sysctl_disable_ipv6(), as rt_trap flag may be
added to routes on some environments.
2020-07-01 13:51:35 +09:00
Yu Watanabe
c3a5025dc6
network: add MACAddress= setting in [SR-IOV] section
2020-07-01 13:51:35 +09:00
Yu Watanabe
e64b31c848
network: add VLANProtocol= setting in [SR-IOV] section
2020-07-01 13:51:35 +09:00