picnoir/Systemd
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
Systemd/src/core
History
Lennart Poettering 5331194c12 core: don't include /boot in effect of ProtectSystem= 
This would otherwise unconditionally trigger any /boot autofs mount,
which we probably should avoid.

ProtectSystem= will now only cover /usr and (optionally) /etc, both of
which cannot be autofs anyway.

ProtectHome will continue to cover /run/user and /home. The former
cannot be autofs either. /home could be, however is frequently enough
used (unlikey /boot) so that it isn't too problematic to simply trigger
it unconditionally via ProtectHome=.
2014-06-05 10:03:26 +02:00
..
.gitignore build-sys: move more files from core/ to share/ that are generic enough 2013-11-22 16:31:40 +01:00
audit-fd.c util: replace close_nointr_nofail() by a more useful safe_close() 2014-03-18 19:31:34 +01:00
audit-fd.h audit: turn the audit fd into a static variable 2012-10-02 17:40:09 -04:00
automount.c util: replace close_pipe() with new safe_close_pair() 2014-03-24 03:22:44 +01:00
automount.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
build.h core: remove tcpwrap support 2014-03-24 20:07:42 +01:00
busname.c core: by default .busname units should be activating 2014-03-19 03:09:51 +01:00
busname.h core: expose missing busname properties on the bus 2014-03-19 16:25:11 +01:00
cgroup.c cgroups: simplify CPUQuota= logic 2014-05-22 11:53:12 +09:00
cgroup.h cgroups: simplify CPUQuota= logic 2014-05-22 11:53:12 +09:00
condition.c Remove unnecessary casts in printfs 2014-05-15 15:29:58 +02:00
condition.h condition: split out most of condition handling into libsystemd-shard 2014-02-20 20:14:33 +01:00
dbus-automount.c core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-automount.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-busname.c core: expose missing busname properties on the bus 2014-03-19 16:25:11 +01:00
dbus-busname.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-cgroup.c cgroups: simplify CPUQuota= logic 2014-05-22 11:53:12 +09:00
dbus-cgroup.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-device.c core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-device.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-execute.c core: rename ReadOnlySystem= to ProtectSystem= and add a third value for also mounting /etc read-only 2014-06-04 18:12:55 +02:00
dbus-execute.h core: allow User=, Group=, Nice=, Environment=, Type= to be passed when creating a transient service 2014-02-05 02:03:10 +01:00
dbus-job.c core: no need to pass bus object to selinux access check calls anymore 2014-05-14 22:58:43 +02:00
dbus-job.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-kill.c includes: remove duplicate includes 2014-02-10 13:06:31 +01:00
dbus-kill.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-manager.c shared: rename hwclock.[ch] to clock-util.[ch] 2014-05-24 07:56:20 +09:00
dbus-manager.h bus: add sd_bus_track object for tracking peers, and port core over to it 2014-03-03 02:34:13 +01:00
dbus-mount.c core: rework cgroup mask propagation 2014-02-17 15:49:21 +01:00
dbus-mount.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-path.c core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-path.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-scope.c Remove unnecessary casts in printfs 2014-05-15 15:29:58 +02:00
dbus-scope.h core: introduce new stop protocol for unit scopes 2014-01-31 17:48:36 +01:00
dbus-service.c service: rename StartLimitAction enum to FailureAction 2014-04-24 20:11:20 +02:00
dbus-service.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-slice.c core: rework cgroup mask propagation 2014-02-17 15:49:21 +01:00
dbus-slice.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-snapshot.c core: no need to pass bus object to selinux access check calls anymore 2014-05-14 22:58:43 +02:00
dbus-snapshot.h bus: rework message handlers to always take an error argument 2013-11-21 21:12:36 +01:00
dbus-socket.c socket: add SocketUser= and SocketGroup= for chown()ing sockets in the file system 2014-06-05 09:55:53 +02:00
dbus-socket.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-swap.c core: rework cgroup mask propagation 2014-02-17 15:49:21 +01:00
dbus-swap.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-target.c core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-target.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
dbus-timer.c timer: support timers that can resume the system from suspend 2014-03-24 16:24:07 +01:00
dbus-timer.h core: no need to list properties for PropertiesChanged messages anymore 2013-12-22 03:50:52 +01:00
dbus-unit.c core: no need to pass bus object to selinux access check calls anymore 2014-05-14 22:58:43 +02:00
dbus-unit.h bus: rework message handlers to always take an error argument 2013-11-21 21:12:36 +01:00
dbus.c sd-bus: introduce sd_bus_slot objects encapsulating callbacks or vtables attached to a bus connection 2014-05-15 01:15:30 +02:00
dbus.h bus: add sd_bus_track object for tracking peers, and port core over to it 2014-03-03 02:34:13 +01:00
device.c core: include partition label in .device description fields 2014-03-06 05:04:51 +01:00
device.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
execute.c core: rename ReadOnlySystem= to ProtectSystem= and add a third value for also mounting /etc read-only 2014-06-04 18:12:55 +02:00
execute.h core: rename ReadOnlySystem= to ProtectSystem= and add a third value for also mounting /etc read-only 2014-06-04 18:12:55 +02:00
hostname-setup.c hostname: only suppress setting of pretty hostname if it is non-equal to the static hostname and if the static hostname is set, too 2013-05-07 20:56:41 +02:00
hostname-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
ima-setup.c core: reindent {selinux, ima, smack}-setup.c 2014-04-26 00:54:03 +02:00
ima-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
job.c job: always add waiting jobs to run queue during coldplug 2014-05-12 09:32:06 +02:00
job.h bus: add sd_bus_track object for tracking peers, and port core over to it 2014-03-03 02:34:13 +01:00
kill.c core: introduce new KillMode=mixed which sends SIGTERM only to the main process, but SIGKILL to all daemon processes 2014-01-29 13:42:06 +01:00
kill.h core: introduce new KillMode=mixed which sends SIGTERM only to the main process, but SIGKILL to all daemon processes 2014-01-29 13:42:06 +01:00
killall.c shared: procfs_file_alloca: handle pid==0 2014-01-05 00:59:13 -05:00
killall.h core: fix order of parameters in broadcast_signal() 2013-11-25 23:03:03 +01:00
kmod-setup.c macro: introduce a nice macro for disabling -Wformat-nonliteral temporarily 2014-02-20 18:18:32 +01:00
kmod-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
load-dropin.c core: remove unused vars 2014-05-22 16:52:53 +09:00
load-dropin.h Introspect and monitor dropin configuration 2013-04-01 23:43:49 -04:00
load-fragment-gperf.gperf.m4 socket: add SocketUser= and SocketGroup= for chown()ing sockets in the file system 2014-06-05 09:55:53 +02:00
load-fragment.c core: rename ReadOnlySystem= to ProtectSystem= and add a third value for also mounting /etc read-only 2014-06-04 18:12:55 +02:00
load-fragment.h core: rename ReadOnlySystem= to ProtectSystem= and add a third value for also mounting /etc read-only 2014-06-04 18:12:55 +02:00
locale-setup.c Introduce strv_consume which takes ownership 2014-03-04 10:04:50 -05:00
locale-setup.h rework systemd's own process environment handling/passing 2013-07-26 18:40:40 +02:00
loopback-setup.c api: in constructor function calls, always put the returned object pointer first (or second) 2014-02-20 00:03:10 +01:00
loopback-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
machine-id-setup.c machine-id: only look into KVM uuid when we are not running in a 2014-04-28 18:36:59 +02:00
machine-id-setup.h machine-id: add --root option to operate on an alternate fs tree 2014-03-14 12:44:17 +01:00
macros.systemd.in rpm: add RPM macro for creating tmpfiles entries after package installation 2013-07-16 18:54:03 +02:00
main.c virt: rework container detection logic 2014-05-28 18:53:44 +08:00
Makefile build-sys: add stub makefiles to make emacs easier to use 2012-04-12 13:35:56 +02:00
manager.c cgroups: simplify CPUQuota= logic 2014-05-22 11:53:12 +09:00
manager.h cgroups: simplify CPUQuota= logic 2014-05-22 11:53:12 +09:00
mount-setup.c build-sys: use glibc's xattr support instead of requiring libattr 2014-05-28 17:36:40 +08:00
mount-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
mount.c sd-event: rework API to support CLOCK_REALTIME_ALARM and CLOCK_BOOTTIME_ALARM, too 2014-03-24 02:58:41 +01:00
mount.h service: add the ability for units to join other unit's PrivateNetwork= and PrivateTmp= namespaces 2013-11-27 20:28:48 +01:00
namespace.c core: don't include /boot in effect of ProtectSystem= 2014-06-05 10:03:26 +02:00
namespace.h core: rename ReadOnlySystem= to ProtectSystem= and add a third value for also mounting /etc read-only 2014-06-04 18:12:55 +02:00
org.freedesktop.systemd1.conf core: Filter by state behind the D-Bus API, not in the systemctl client. 2014-05-19 00:50:30 +09:00
org.freedesktop.systemd1.policy.in.in move more main systemd parts to core/ 2012-04-12 14:24:40 +02:00
org.freedesktop.systemd1.service move more main systemd parts to core/ 2012-04-12 14:24:40 +02:00
path.c util: replace close_nointr_nofail() by a more useful safe_close() 2014-03-18 19:31:34 +01:00
path.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
scope.c sd-event: rework API to support CLOCK_REALTIME_ALARM and CLOCK_BOOTTIME_ALARM, too 2014-03-24 02:58:41 +01:00
scope.h core: watch SIGCHLD more closely to track processes of units with no reliable cgroup empty notifier 2014-02-07 15:14:36 +01:00
selinux-access.c selinux: fix build for non-selinux systems 2014-05-15 17:48:28 +02:00
selinux-access.h core: no need to pass bus object to selinux access check calls anymore 2014-05-14 22:58:43 +02:00
selinux-setup.c core: let selinux_setup() load policy more than once 2014-05-16 20:09:02 +02:00
selinux-setup.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
service.c core: close socket fds asynchronously 2014-05-15 15:30:00 +02:00
service.h service: rename StartLimitAction enum to FailureAction 2014-04-24 20:11:20 +02:00
show-status.c core: add missing show-status.[ch] 2014-03-03 22:27:25 +01:00
show-status.h core: add missing show-status.[ch] 2014-03-03 22:27:25 +01:00
shutdown.c util: add timeout to generator execution 2014-03-06 04:00:42 +01:00
slice.c core: rework context initialization/destruction logic 2014-03-19 21:06:53 +01:00
slice.h core: general cgroup rework 2013-06-27 04:17:34 +02:00
smack-setup.c util: replace close_nointr_nofail() by a more useful safe_close() 2014-03-18 19:31:34 +01:00
smack-setup.h smack: set loaded_policy in smack_setup() 2014-02-24 17:36:13 +01:00
snapshot.c Use enums to make it obvious what boolean params mean 2013-12-26 15:49:54 -05:00
snapshot.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
socket.c socket: add SocketUser= and SocketGroup= for chown()ing sockets in the file system 2014-06-05 09:55:53 +02:00
socket.h socket: add SocketUser= and SocketGroup= for chown()ing sockets in the file system 2014-06-05 09:55:53 +02:00
swap.c Remove unnecessary casts in printfs 2014-05-15 15:29:58 +02:00
swap.h service: add the ability for units to join other unit's PrivateNetwork= and PrivateTmp= namespaces 2013-11-27 20:28:48 +01:00
switch-root.c util: replace close_nointr_nofail() by a more useful safe_close() 2014-03-18 19:31:34 +01:00
switch-root.h use #pragma once instead of foo*foo define guards 2013-11-18 20:28:54 -05:00
sysfs-show.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
system.conf cgroups: simplify CPUQuota= logic 2014-05-22 11:53:12 +09:00
systemd.pc.in logind: don't apply RemoveIPC= to system users 2014-05-21 09:36:49 +09:00
target.c core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
target.h Add __attribute__((const, pure, format)) in various places 2013-05-02 22:52:09 -04:00
timer.c core: timer - switch to touch_file() 2014-05-24 11:39:47 +08:00
timer.h timer: support timers that can resume the system from suspend 2014-03-24 16:24:07 +01:00
transaction.c transaction: print more information about conflicting jobs 2014-02-06 00:46:15 -05:00
transaction.h core: convert PID 1 to libsystemd-bus 2013-11-20 20:52:36 +01:00
umount.c util: replace close_nointr_nofail() by a more useful safe_close() 2014-03-18 19:31:34 +01:00
umount.h use #pragma once instead of foo*foo #define guards 2012-07-19 12:30:59 +02:00
unit-printf.c Remove unnecessary casts in printfs 2014-05-15 15:29:58 +02:00
unit-printf.h specifier: rework specifier calls to return proper error message 2013-09-17 10:06:50 -05:00
unit.c Fix several small typos 2014-05-24 19:01:03 -04:00
unit.h core: rework context initialization/destruction logic 2014-03-19 21:06:53 +01:00
user.conf core: add a setting to globally control the default for timer unit accuracy 2014-03-24 16:24:07 +01:00