summaryrefslogtreecommitdiff
path: root/TODO
AgeCommit message (Collapse)Author
2012-04-13service: place control command in subcgroup control/Lennart Poettering
Previously, we were brutally and onconditionally killing all processes in a service's cgroup before starting the service anew, in order to ensure that StartPre lines cannot be misused to spawn long-running processes. On logind-less systems this has the effect that restarting sshd necessarily calls all active ssh sessions, which is usually not desirable. With this patch control processes for a service are placed in a sub-cgroup called "control/". When starting a service anew we simply kill this cgroup, but not the main cgroup, in order to avoid killing any long-running non-control processes from previous runs. https://bugzilla.redhat.com/show_bug.cgi?id=805942
2012-04-13polkit: spawn agent in --fallback modeLennart Poettering
2012-04-12One can specify in which cgroup hierarchies a systemd-nspawn container will ↵Léo Gillot-Lamure
appear
2012-04-11update TODOLennart Poettering
2012-04-11units: exclude gettys from isolate requestsLennart Poettering
gettys are nowadays mostly autospawned and hence usually subject to being shut down on isolate requests, since they are no dependency of any other unit. This is a bad idea if the user isolates between multi-user.graphical and graphical.target, hence exclude them from the isolation. This has the effect that gettys no longer cleaned up when emergency.target is isolated, which might actualy be considered a feature, even though it is a change from previous behaviour... Note that the one getty that really matters (the one on tty1) is still removed when isolating to emergency.target since it conflicts with emergency.service.
2012-04-11main: disarm watchdog when preparing for reexecutionLennart Poettering
2012-04-11main: drop container/initrd env vars from inherited setLennart Poettering
Leave the env vars used in the container/initrd logic set for PID1, but don't inherit them to any children.
2012-04-10update TODOKay Sievers
2012-04-09update TODOKay Sievers
2012-04-09udev: remove RUN+="socket:.." and udev_monitor_new_from_netlink()Kay Sievers
2012-04-08udev: fix test-udev binaryKay Sievers
2012-04-08udev: remove support for /lib/udev/devices/; tmpfiles should be usedKay Sievers
2012-04-08udev: switch to systemd logging functionsKay Sievers
2012-04-05systemd: add hardware watchdog supportLennart Poettering
This adds minimal hardware watchdog support to PID 1. The idea is that PID 1 supervises and watchdogs system services, while the hardware watchdog is used to supervise PID 1. This adds two hardware watchdog configuration options, for the runtime watchdog and for a shutdown watchdog. The former is active during normal operation, the latter only at reboots to ensure that if a clean reboot times out we reboot nonetheless. If the runtime watchdog is enabled PID 1 will automatically wake up at half the configured interval and write to the watchdog daemon. By default we enable the shutdown watchdog, but leave the runtime watchdog disabled in order not to break independent hardware watchdog daemons people might be using. This is only the most basic hookup. If necessary we can later on hook up the watchdog ping more closely with services deemed crucial.
2012-04-04update TODOKay Sievers
2012-04-04move imported udev into placeKay Sievers
2012-04-03logind: log with AUTH facilityLennart Poettering
2012-04-03systemctl: make -f short for both --follow and --forceLennart Poettering
2012-04-03update TODOLennart Poettering
2012-04-02update TODOLennart Poettering
2012-04-02journal: implicitly add code location to all messages logged with the native ↵Lennart Poettering
interface This logic can be turned off by defining SD_JOURNAL_SUPPRESS_LOCATION before including sd-journal.h. This also saves/restores errno in all logging functions, in order to be useful as logging calls without side-effects. This also adds a couple of __unlikely__ around the early checks in the logging calls, in order to minimize the runtime impact.
2012-04-02journal: decrease default mmap window size to allow a bigger number of ↵Lennart Poettering
journals to be traversed in parallel
2012-03-30rename /etc/systemd/systemd-{login,journal}d.conf to {login,journal}d.confKay Sievers
2012-03-27units: don't mount tmpfs on /media anymoreLennart Poettering
udisks2 doesn't use /media anymore, instead mounts removable media in a user-private directory beneath /run. /media is hence mostly obsolete and hence it makes little sense to continue to mount a tmpfs to it. Distributions should consider dropping the mount point entirely since nothing uses it anymore.
2012-03-27journalctl: add --local switchLennart Poettering
2012-03-26journalctl,loginctl: drop systemd- prefix in binary namesLennart Poettering
Let's make things a bit easier to type, drop the systemd- prefix for journalctl and loginctl, but provide the old names for compat. All systemd binaries are hence now prefixed with "systemd-" with the exception of the three primary user interface binaries: systemctl loginctl journalctl For those three we do provide systemd-xyz names as well, via symlinks: systemd-systemctl → systemctl systemd-loginctl → loginctl systemd-journalctl → journalctl We do this only for the *primary* user tools, in order to avoid unnecessary namespace problems. That means tools like systemd-notify stay the way they are.
2012-03-22update TODOLennart Poettering
2012-03-20man: fix parameter name for sd_uid_xxx()Lennart Poettering
2012-03-16man: make sure we ship HTML versions of the man pages in the tarballLennart Poettering
2012-03-16man: document journal features of systemctl(1)Lennart Poettering
2012-03-15update TODOKay Sievers
2012-03-15journald: increase max file size to 128MBLennart Poettering
2012-03-15virt: the pidns controller does not exist anymoreLennart Poettering
2012-03-14update TODOLennart Poettering
2012-03-14update TODOLennart Poettering
2012-03-14update TODOLennart Poettering
2012-03-14socket: if we fail to create an instantiated service for a socket, don't put ↵Lennart Poettering
the socket in failure mode An incoming connection that is immediately terminated might result in getpeername() or a similar call failing. Hence it is quite possible that while we are setting up an instantiated service for a socket we might get an error and we shouldn't take this as hint to take the listening socket down. https://bugs.freedesktop.org/show_bug.cgi?id=45297 https://bugzilla.novell.com/show_bug.cgi?id=741590
2012-03-13update TODOLennart Poettering
2012-03-13socket: add option for SO_PASSECLennart Poettering
https://bugzilla.redhat.com/show_bug.cgi?id=798760 (Note that this work is not complete yet, as the kernel seems to send us useless data with SCM_SECURITY enabled)
2012-03-12conf: enforce UTF8 validty everywhereLennart Poettering
we need to make sure that configuration data we expose via the bus ends up in using getting an assert(). Even though configuration data is only parsed from trusted sources we should be more careful with what we read.
2012-03-12update TODOLennart Poettering
2012-03-06update TODOLennart Poettering
2012-03-06update TODOLennart Poettering
2012-03-06update TODOLennart Poettering
2012-03-06umount: don't try to umount /usr, if we are running from itLennart Poettering
2012-03-05update TODOLennart Poettering
2012-03-05update TODOLennart Poettering
2012-02-20update TODOLennart Poettering
2012-02-20update TODOLennart Poettering
2012-02-15systemctl: introduce systemctl reboot -ffLennart Poettering