picnoir/Systemd
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
Systemd/src/core
History
Zbigniew Jędrzejewski-Szmek 17af49f248 selinux: use different log priorites for log messages 
When selinux calls our callback with a log message, it specifies the
type as AVC or INFO/WARNING/ERROR. The question is how to map this to
audit types and/or log priorities. SELINUX_AVC maps to AUDIT_USER_AVC
reasonably, but for the other messages we have no idea, hence we use
AUDIT_USER_AVC for everything. When not using audit logging, we can
map those selinux levels to LOG_INFO/WARNING/ERROR etc.

Also update comment which was not valid anymore in light of journald
sucking in audit logs, and was actually wrong from the beginning —
libselinux uses the callback for everything, not just avcs.

This stemmed out of https://bugzilla.redhat.com/show_bug.cgi?id=1195330,
but does not solve it.
2015-04-14 21:47:20 -04:00
..
.gitignore build-sys: move more files from core/ to share/ that are generic enough 2013-11-22 16:31:40 +01:00
audit-fd.c treewide: use log_*_errno whenever %m is in the format string 2014-11-28 19:49:27 +01:00
audit-fd.h audit: turn the audit fd into a static variable 2012-10-02 17:40:09 -04:00
automount.c shared: add process-util.[ch] 2015-04-10 23:54:49 +02:00
automount.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
bus-endpoint.c bus: sync with kdbus (ABI break) 2015-02-05 16:52:42 +01:00
bus-endpoint.h core: rearrange code so that libsystemd/sd-bus/ does not include header files from core 2014-12-23 19:15:27 +01:00
bus-policy.c tree-wide: there is no ENOTSUP on linux 2015-03-13 14:10:39 +01:00
bus-policy.h bus: add missing bus-policy.[ch] 2014-12-23 21:06:01 +01:00
busname.c shared: add formats-util.h 2015-04-10 23:54:48 +02:00
busname.h remove unused includes 2015-02-23 23:53:42 +01:00
cgroup.c shared: add process-util.[ch] 2015-04-10 23:54:49 +02:00
cgroup.h core: expose consumed CPU time per unit 2015-03-02 12:15:25 +01:00
dbus-automount.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-automount.h remove unused includes 2015-02-23 23:53:42 +01:00
dbus-busname.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-busname.h remove unused includes 2015-02-23 23:53:42 +01:00
dbus-cgroup.c util: rework strappenda(), and rename it strjoina() 2015-02-03 02:05:59 +01:00
dbus-cgroup.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-device.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-device.h remove unused includes 2015-02-23 23:53:42 +01:00
dbus-execute.c run: add a new "-t" mode for invoking a binary on an allocated TTY 2014-12-23 03:26:24 +01:00
dbus-execute.h core: allow User=, Group=, Nice=, Environment=, Type= to be passed when creating a transient service 2014-02-05 02:03:10 +01:00
dbus-job.c core: rework policykit hookup 2015-02-18 18:56:27 +01:00
dbus-job.h core: Common code for DBus methods that Cancel a job 2014-08-15 14:07:07 +02:00
dbus-kill.c includes: remove duplicate includes 2014-02-10 13:06:31 +01:00
dbus-kill.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-manager.c shared: add formats-util.h 2015-04-10 23:54:48 +02:00
dbus-manager.h core: emit changes for NFailedUnits property 2015-02-26 09:38:50 -05:00
dbus-mount.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-mount.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-path.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-path.h remove unused includes 2015-02-23 23:53:42 +01:00
dbus-scope.c core: rework policykit hookup 2015-02-18 18:56:27 +01:00
dbus-scope.h core: introduce new stop protocol for unit scopes 2014-01-31 17:48:36 +01:00
dbus-service.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-service.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-slice.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-slice.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-snapshot.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-snapshot.h bus: rework message handlers to always take an error argument 2013-11-21 21:12:36 +01:00
dbus-socket.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-socket.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-swap.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-swap.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-target.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-target.h remove unused includes 2015-02-23 23:53:42 +01:00
dbus-timer.c remove unused includes 2015-02-23 23:53:42 +01:00
dbus-timer.h timer: timer can be a transient unit 2014-12-08 16:28:56 +01:00
dbus-unit.c core: expose consumed CPU time per unit 2015-03-02 12:15:25 +01:00
dbus-unit.h bus: rework message handlers to always take an error argument 2013-11-21 21:12:36 +01:00
dbus.c dbus: typo fix in log 2015-04-10 23:39:40 +02:00
dbus.h core: rework policykit hookup 2015-02-18 18:56:27 +01:00
device.c device: remove unused null check 2015-04-07 21:11:38 +02:00
device.h core: rework device state logic 2015-02-28 17:38:38 +01:00
execute.c shared: add terminal-util.[ch] 2015-04-11 00:34:02 +02:00
execute.h remove unused includes 2015-02-23 23:53:42 +01:00
failure-action.c shared: add terminal-util.[ch] 2015-04-11 00:34:02 +02:00
failure-action.h core: introduce "poweroff" as new failure action types 2014-08-22 18:10:31 +02:00
hostname-setup.c remove unused includes 2015-02-23 23:53:42 +01:00
hostname-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
ima-setup.c remove unused includes 2015-02-23 23:53:42 +01:00
ima-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
job.c shared: add terminal-util.[ch] 2015-04-11 00:34:02 +02:00
job.h remove unused includes 2015-02-23 23:53:42 +01:00
kill.c remove unused includes 2015-02-23 23:53:42 +01:00
kill.h core: introduce new KillMode=mixed which sends SIGTERM only to the main process, but SIGKILL to all daemon processes 2014-01-29 13:42:06 +01:00
killall.c shared: add terminal-util.[ch] 2015-04-11 00:34:02 +02:00
killall.h core: fix order of parameters in broadcast_signal() 2013-11-25 23:03:03 +01:00
kmod-setup.c remove unused includes 2015-02-23 23:53:42 +01:00
kmod-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
load-dropin.c remove unused includes 2015-02-23 23:53:42 +01:00
load-dropin.h Move dropin listing to shared 2014-12-16 00:30:33 -05:00
load-fragment-gperf.gperf.m4 conf-parse: don't accept invalid bus names as BusName= arguments in service units 2015-01-07 23:44:08 +01:00
load-fragment.c core: set_put never returns -EEXIST 2015-04-10 17:13:15 +02:00
load-fragment.h conf-parse: don't accept invalid bus names as BusName= arguments in service units 2015-01-07 23:44:08 +01:00
locale-setup.c remove unused includes 2015-02-23 23:53:42 +01:00
locale-setup.h rework systemd's own process environment handling/passing 2013-07-26 18:40:40 +02:00
loopback-setup.c remove unused includes 2015-02-23 23:53:42 +01:00
loopback-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
machine-id-setup.c shared: add process-util.[ch] 2015-04-10 23:54:49 +02:00
machine-id-setup.h machine-id-setup: add a machine_id_commit call to commit on disk a transient machine-id 2014-12-03 03:41:19 +01:00
macros.systemd.in rpm: add user macros 2014-10-27 22:34:09 -04:00
main.c shared: add terminal-util.[ch] 2015-04-11 00:34:02 +02:00
Makefile build-sys: add stub makefiles to make emacs easier to use 2012-04-12 13:35:56 +02:00
manager.c shared: add terminal-util.[ch] 2015-04-11 00:34:02 +02:00
manager.h core: emit changes for NFailedUnits property 2015-02-26 09:38:50 -05:00
mount-setup.c core: fix mount setup to work with non-existing mount points 2015-04-07 14:03:44 +02:00
mount-setup.h mount-setup: remove mount_setup_late() 2014-11-14 15:18:56 +01:00
mount.c shared: add formats-util.h 2015-04-10 23:54:48 +02:00
mount.h core: expose consumed CPU time per unit 2015-03-02 12:15:25 +01:00
namespace.c nspawn: change filesystem type from "bind" to NULL in mount() syscalls 2015-03-31 15:36:53 +02:00
namespace.h Type of mount(2) flags is unsigned long 2015-01-01 14:39:17 -05:00
org.freedesktop.systemd1.conf systemctl: add add-wants and add-requires verbs 2014-10-08 12:44:00 +02:00
org.freedesktop.systemd1.policy.in.in core: rework policykit hookup 2015-02-18 18:56:27 +01:00
org.freedesktop.systemd1.service move more main systemd parts to core/ 2012-04-12 14:24:40 +02:00
path.c core: do not spawn jobs or touch other units during coldplugging 2015-03-07 08:44:57 -05:00
path.h remove unused includes 2015-02-23 23:53:42 +01:00
scope.c core: do not spawn jobs or touch other units during coldplugging 2015-03-07 08:44:57 -05:00
scope.h remove unused includes 2015-02-23 23:53:42 +01:00
selinux-access.c selinux: use different log priorites for log messages 2015-04-14 21:47:20 -04:00
selinux-access.h remove unused includes 2015-02-23 23:53:42 +01:00
selinux-setup.c remove unused includes 2015-02-23 23:53:42 +01:00
selinux-setup.h mac: add mac_ prefix to distinguish origin security apis 2014-10-28 14:31:48 +01:00
service.c shared: add process-util.[ch] 2015-04-10 23:54:49 +02:00
service.h service: remove unnecessary forward declare 2015-04-05 08:45:56 +02:00
show-status.c core: add missing show-status.[ch] 2014-03-03 22:27:25 +01:00
show-status.h core: add missing show-status.[ch] 2014-03-03 22:27:25 +01:00
shutdown.c shared: add terminal-util.[ch] 2015-04-11 00:34:02 +02:00
slice.c core: do not spawn jobs or touch other units during coldplugging 2015-03-07 08:44:57 -05:00
slice.h remove unused includes 2015-02-23 23:53:42 +01:00
smack-setup.c remove unused includes 2015-02-23 23:53:42 +01:00
smack-setup.h mac: add mac_ prefix to distinguish origin security apis 2014-10-28 14:31:48 +01:00
snapshot.c core: do not spawn jobs or touch other units during coldplugging 2015-03-07 08:44:57 -05:00
snapshot.h remove unused includes 2015-02-23 23:53:42 +01:00
socket.c shared: add formats-util.h 2015-04-10 23:54:48 +02:00
socket.h core: expose consumed CPU time per unit 2015-03-02 12:15:25 +01:00
swap.c shared: add formats-util.h 2015-04-10 23:54:48 +02:00
swap.h core: expose consumed CPU time per unit 2015-03-02 12:15:25 +01:00
system.conf Do not advertise .d snippets over main config file 2015-03-03 19:10:21 -05:00
systemd.pc.in pc: no longer expose exec_prefix in .pc file 2014-06-30 23:19:00 +02:00
target.c core: do not spawn jobs or touch other units during coldplugging 2015-03-07 08:44:57 -05:00
target.h remove unused includes 2015-02-23 23:53:42 +01:00
timer.c core: do not spawn jobs or touch other units during coldplugging 2015-03-07 08:44:57 -05:00
timer.h remove unused includes 2015-02-23 23:53:42 +01:00
transaction.c shared: add terminal-util.[ch] 2015-04-11 00:34:02 +02:00
transaction.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
umount.c util: rework cunescape(), improve error handling 2015-04-07 15:42:25 +02:00
umount.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
unit-printf.c shared: add formats-util.h 2015-04-10 23:54:48 +02:00
unit-printf.h specifier: rework specifier calls to return proper error message 2013-09-17 10:06:50 -05:00
unit.c shared: add process-util.[ch] 2015-04-10 23:54:49 +02:00
unit.h core: do not spawn jobs or touch other units during coldplugging 2015-03-07 08:44:57 -05:00
user.conf core: Support system.conf.d and user.conf.d directories in the usual search paths 2014-11-29 13:55:31 -05:00