summaryrefslogtreecommitdiff
path: root/Makefile.am
AgeCommit message (Collapse)Author
2014-02-28networkd: add networkd-wait-onlineTom Gundersen
This is mostly a proof of concept to try sd-network, so we don't hook it up with a .service file quite yet. We probably want it to be more clever about deciding when we are 'online'. The binary will wait for at least one network managed by networkd, and until all networks managed by networkd are configured.
2014-02-28sd-network: add new libraryTom Gundersen
This is similar to sd-login, but exposes the state of networkd rather than logind. Include it in libsystemd-dhcp and rename it to libsystemd-network.
2014-02-27build-sys: Do not distribute generated udev service filesArmin K
They are already in nodist_systemunit_DATA and if they are shipped, they contain hardcoded paths to udevadm and systemd-udevd which will cause them to fail to start when rootprefix != prefix and rootlibdir != libdir.
2014-02-26build-sys: networkd - simplify makefile fragmentTom Gundersen
2014-02-26core: add new RestrictAddressFamilies= switchLennart Poettering
This new unit settings allows restricting which address families are available to processes. This is an effective way to minimize the attack surface of services, by turning off entire network stacks for them. This is based on seccomp, and does not work on x86-32, since seccomp cannot filter socketcall() syscalls on that platform.
2014-02-24build-sys: bump revisions and versionLennart Poettering
2014-02-24NEWS: prepare for release of 210Lennart Poettering
2014-02-23src/shared/ cannot reference symbols from librariesKay Sievers
../src/shared/unit-name.c:462: error: undefined reference to 'sd_bus_label_escape' ../src/shared/unit-name.c:477: error: undefined reference to 'sd_bus_label_unescape' collect2: error: ld returned 1 exit status
2014-02-22build-sys: build compat libs from sources, avoiding the not generally ↵Kay Sievers
available ifunc wrapping
2014-02-22build-sys: add seccomp includes where neededKay Sievers
2014-02-22networkd/nspawn: enable dhcp client on veth device created in guestTom Gundersen
When starting systemd-nspawn with --network-veth, we create a veth device called host0 in the guest. Pick up on this and start a dhcp client on it. We will also pick up host0 netdevs created by other containers should they chose to use the same name.
2014-02-22build-sys: create /var/log/journal/ in journald sectionKay Sievers
2014-02-22build-sys: Also move libsystemd-journal to rootlibdirArmin K
2014-02-21Makefile: fix build on clangThomas Hindoe Paaboel Andersen
needed after libsystemd-daemon was merged into libsystemd in 0ebee8818404adb95a0b8a01416aad3a16f64ae1
2014-02-21install: networkd.service depend on !--disableJason A. Donenfeld
It doesn't make any sense to symlink this unit file into /etc when the unit file itself isn't even installed, with --disable-networkd. This moves the GENERAL_ALIASES logic into the right "if" block.
2014-02-21build-sys: make network files respect --rootprefixSamuli Suominen
With --rootprefix= systemd-udevd gets installed to /lib/systemd, and since the network configuration is also required during early boot, it should be available there with it. Using --prefix= is not an option since it would put everything, including pkg-config files, man pages, documentation, to / which is not wanted. This commit puts 99-default.link to /lib/systemd/network/ when required.
2014-02-21install: enable networkd by defaultTom Gundersen
This treats it similarly to getty@tty1.service and remote-fs.target, which can be enabled/disabled, but defaults to enabled.
2014-02-21install: do not statically enable systemd-networkdJason A. Donenfeld
[tomegun: pruned the commit message as not to contradict the follow-up commit]
2014-02-20build-sys: add conditionals and regenerate manpage listZbigniew Jędrzejewski-Szmek
The list of man pages is auto generated, based on conditonal='...' attributes in the man page itself.
2014-02-21core: Add AppArmor profile switchingMichael Scherer
This permit to switch to a specific apparmor profile when starting a daemon. This will result in a non operation if apparmor is disabled. It also add a new build requirement on libapparmor for using this feature.
2014-02-21build-sys: Fix compilation of nspawn when seccomp is not enabledMichael Scherer
2014-02-21core: add new ConditionArchitecture() that checks the architecture returned ↵Lennart Poettering
by uname()'s machine field.
2014-02-20bootctl: add bash completionThomas Hindoe Paaboel Andersen
2014-02-20networkd: netdev - allow filtering on kernel cmdline, host and virtTom Gundersen
2014-02-20condition: split out most of condition handling into libsystemd-shardTom Gundersen
The parts that require linknig to libcap, libselinux and friends stays in libsystemd-core.
2014-02-20macro: introduce nice macro for disabling -Wmissing-prototypes warnigsLennart Poettering
2014-02-20readd journald.so install hooks under libsystemd.soDave Reisner
Inadvertently removed in add00dfd1f05.
2014-02-20build-sys: missing EXTRA_DISTsystemd/v209Lennart Poettering
2014-02-20build-sys: install compat .pc fileLennart Poettering
2014-02-20build-sys: add linkwarning.h to tarballLennart Poettering
2014-02-19udev: net-config - allow interface names to be set from the hwdbTom Gundersen
2014-02-19build-sys: enable compat-libs for distcheckKay Sievers
2014-02-19build-sys: export experimental symbols only with --enable-kdbusKay Sievers
2014-02-19build-sys: add gcrypt CFLAGSKay Sievers
2014-02-19build-sys: merge libsystemd-journal into libsystemdKay Sievers
2014-02-19busctl: install bash completionThomas Hindoe Paaboel Andersen
2014-02-18build-sys: fixups for libsystemd-daemon mergeZbigniew Jędrzejewski-Szmek
2014-02-19build-sys: install headers with --enable-kdbusKay Sievers
2014-02-19build-sys: merge libsystemd-daemon into libsystemdKay Sievers
2014-02-18delta: add bash completionThomas Hindoe Paaboel Andersen
2014-02-18seccomp: add helper call to add all secondary archs to a seccomp filterLennart Poettering
And make use of it where appropriate for executing services and for nspawn.
2014-02-18machinectl: add bash completionThomas Hindoe Paaboel Andersen
2014-02-18fix SECCOMP_CFLAGS usageCristian Rodríguez
SECCOMP_CFLAGS must be in the global CFLAGS as <seccomp.h> is included in core/execute.h. when seccomp.h is not in the standard path.(i.e openSUSE has it in /usr/include/pkg/libseccomp/, precisely to catch this kind of bugs) compiling systemd fails.
2014-02-14build-sys: fix for "recipe for target 'dbus1-generator-install-hook' failed"Simon Peeters
2014-02-13nspawn: make socket(AF_NETLINK, *, NETLINK_AUDIT) fail with EAFNOTSUPPORT in ↵Lennart Poettering
containers The kernel still doesn't support audit in containers, so let's make use of seccomp and simply turn it off entirely. We can get rid of this big as soon as the kernel is fixed again.
2014-02-13nspawn: check with udev before we take possession of an interfaceLennart Poettering
2014-02-13core: add SystemCallArchitectures= unit setting to allow disabling of non-nativeLennart Poettering
architecture support for system calls Also, turn system call filter bus properties into complex types instead of concatenated strings.
2014-02-12syscallfilter: port to libseccompRonny Chevalier
2014-02-12build-sys: add less-variables.xml to EXTRA_DISTZbigniew Jędrzejewski-Szmek
2014-02-12man: use xinclude to de-deduplicate common textZbigniew Jędrzejewski-Szmek
I only tested with python-lxml. I'm not sure if xml.etree should be deprecated.