| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-11-26 | bus-policy: actually test messages against the newly added test.conf | Lennart Poettering | |
| 2014-11-26 | bus-policy: also add in other bus policy tests from dbus1 | Lennart Poettering | |
| dbus1 only checks if these files parse correctly so let's do the same for now. | |||
| 2014-11-26 | bus-policy: steal a test case for prefix ownership from dbus1, and make sure ↵ | Lennart Poettering | |
| it passes with the bus proxy enforcement | |||
| 2014-11-26 | sd-bus: make sure that when we connect to the system bus we have enough ↵ | Lennart Poettering | |
| creds to make security decisions | |||
| 2014-11-26 | core: make sure we have enough information when doing selinux decisions | Lennart Poettering | |
| Let's ask for the security relevant bits in a race-free way, and augment the rest from /proc. | |||
| 2014-11-26 | update TODO | Lennart Poettering | |
| 2014-11-26 | sd-bus: update peeking into receieved messages, with recent kernel change we ↵ | Lennart Poettering | |
| need to FREE them after all | |||
| 2014-11-26 | core: fix check for transaction destructiveness | Michal Schmidt | |
| When checking if the transaction is destructive, we need to check if the previously installed job is a superset of the new job (and hence the new job will fold into the installed one without changing it), not the other way around. | |||
| 2014-11-26 | core: drop now-redundant special-casing of JOB_NOP | Michal Schmidt | |
| job_type_is_conflicting(X, JOB_NOP) correctly gives: false. job_type_allows_late_merge(JOB_NOP) && job_type_is_superset(X, JOB_NOP) correctly gives: true. | |||
| 2014-11-26 | core: fix assertion failure in checking a transaction with a JOB_NOP | Michal Schmidt | |
| Several functions called from transaction_activate() need to correctly handle the case where a JOB_NOP job is being checked against a unit's pending job. The assumption that JOB_NOP never merges with other job types was correct, but since the job_type_is_*() functions are implemented using the merge lookup, they need to special-case JOB_NOP to avoid hitting assertion failures. | |||
| 2014-11-26 | test: add test for crash when adding a JOB_NOP | Michal Schmidt | |
| 2014-11-26 | sd-bus: update kdbus.h from upstream | Lennart Poettering | |
| 2014-11-26 | core: reindent mount/kmod tables | Lennart Poettering | |
| 2014-11-26 | update TODO | Lennart Poettering | |
| 2014-11-26 | update TODO | Lennart Poettering | |
| 2014-11-26 | sd-bus: given that the kernel now passes the auxgroups list as 32bit array ↵ | Lennart Poettering | |
| to us, no need to convert to uid_t manually This way, we can save one allocation and avoid copying the array unnecesarily. | |||
| 2014-11-26 | update TODO | Lennart Poettering | |
| 2014-11-26 | update TODO | Lennart Poettering | |
| 2014-11-26 | bus: update kdbus.h (ABI break) | David Herrmann | |
| We changed creds to u32, so fix systemd sd-bus to acknowledge that. | |||
| 2014-11-26 | reorder TODO a bit | Lennart Poettering | |
| 2014-11-25 | udevadm trigger: allow matching by device name | Zbigniew Jędrzejewski-Szmek | |
| This makes udevadm trigger mirror udevadm info, except that multiple device names can be specified. Instructions in 60-keyboard.hwdb should now actually work. udevadm(8) is updated, but it could use a bit more polishing. https://bugs.freedesktop.org/show_bug.cgi?id=82311 | |||
| 2014-11-25 | udevadm: split out find_device helper | Zbigniew Jędrzejewski-Szmek | |
| The idea is to unify the way that devices can be specified. | |||
| 2014-11-26 | update TODO | Lennart Poettering | |
| 2014-11-26 | bus-kernel: when installing an activator, ask for any kind of metadata to be ↵ | Lennart Poettering | |
| attached to incoming messages We don't know what the activated service might want in the end, hence enable everything current and future, just to be sure. | |||
| 2014-11-26 | sd-bus: don't clobber return values on failure in bus_kernel_open_bus_fd() | Lennart Poettering | |
| 2014-11-26 | sd-bus: set per-bus attach flag requirement mask to ANY | Lennart Poettering | |
| On the system and user busses we create it's the receiver that chooses which metadata is attched, not the sender, hence set the requirement mask to ANY, to allow any current of future credential bit to be attached. | |||
| 2014-11-26 | update TODO | Lennart Poettering | |
| 2014-11-26 | sd-bus: add suppot for renegotiating message credential attach flags | Lennart Poettering | |
| 2014-11-26 | sd-bus: use free_and_strdup() where appropriate | Lennart Poettering | |
| This simplifies things a bit and makes sure we free any previously set creds component before writing in a new one. | |||
| 2014-11-25 | resolved: fix typo in sd_notify() call | Tom Gundersen | |
| 2014-11-25 | update TODO | Lennart Poettering | |
| 2014-11-25 | core: show log message about process triggering kdbus service activation | Lennart Poettering | |
| 2014-11-25 | sd-bus: react properly to EOVERFLOW by generating a log message about ↵ | Lennart Poettering | |
| dropped broadcast messages and proceeding | |||
| 2014-11-25 | kdbus: update header file to current upstream version | Lennart Poettering | |
| 2014-11-25 | kdbus: minor simplification | Lennart Poettering | |
| 2014-11-25 | update TODO | Lennart Poettering | |
| 2014-11-25 | util: mark page_size() as pure | Lennart Poettering | |
| 2014-11-25 | update TODO | Lennart Poettering | |
| 2014-11-25 | sd-bus: fix error handling when receiving invalid service name | Lennart Poettering | |
| Also, properly keep track of incoming additional service names. | |||
| 2014-11-25 | sd-bus: properly handle non-initialized audit records attached to incoming ↵ | Lennart Poettering | |
| kernel messages | |||
| 2014-11-25 | sd-bus: properly copy selinux label and description field when duplicating ↵ | Lennart Poettering | |
| creds object | |||
| 2014-11-25 | sd-bus: add supplementary groups list to creds object | Lennart Poettering | |
| 2014-11-25 | busctl: if no parameter is specified for "busctl status" show credentials of ↵ | Lennart Poettering | |
| bus owner | |||
| 2014-11-25 | sd-bus: properly handle uninitialized audit creds from kdbus | Lennart Poettering | |
| 2014-11-25 | sd-bus: don't fail when querying creds and dbus1 refuses to tell us the ↵ | Lennart Poettering | |
| selinux context | |||
| 2014-11-25 | busctl: add new --augment-creds= switch for controlling whether shown ↵ | Lennart Poettering | |
| credential data shall be augment with data from /proc | |||
| 2014-11-25 | sd-bus: update to current kernel version, by splitting off the extended ↵ | Lennart Poettering | |
| KDBUS_ITEM_PIDS structure from KDBUS_ITEM_CREDS Also: - adds support for euid, suid, fsuid, egid, sgid, fsgid fields. - makes augmentation of creds with data from /proc explicitly controllable to give apps better control over this, given that this is racy. - enables augmentation for kdbus connections (previously we only did it for dbus1). This is useful since with recent kdbus versions it is possible for clients to control the metadata they want to send. - changes sd_bus_query_sender_privilege() to take the euid of the client into consideration, if known - when we don't have permissions to read augmentation data from /proc, don't fail, just don't add the data in | |||
| 2014-11-25 | busctl: improve readability a bit | Lennart Poettering | |
| 2014-11-25 | bus: change creds dumping order to be more close to internal storage order | Lennart Poettering | |
| 2014-11-25 | util: skip incomplete ucred information in getpeersec() | Lennart Poettering | |
 |
index : ~lukeshu/systemd | |
| Unnamed repository; edit this file 'description' to name the repository. | git-mirror |
| summaryrefslogtreecommitdiff |