Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-08-17 | journal: rework terminology | Lennart Poettering | |
Let's clean up our terminology a bit. New terminology: FSS = Forward Secure Sealing FSPRG = Forward Secure Pseudo-Random Generator FSS is the combination of FSPRG and a HMAC. Sealing = process of adding authentication tags to the journal. Verification = process of checking authentication tags to the journal. Sealing Key = The key used for adding authentication tags to the journal. Verification Key = The key used for checking authentication tags of the journal. Key pair = The pair of Sealing Key and Verification Key Internally, the Sealing Key is the combination of the FSPRG State plus change interval/start time. Internally, the Verification Key is the combination of the FSPRG Seed plus change interval/start time. | |||
2012-08-16 | journal: add FSPRG journal authentication | Lennart Poettering | |
2012-08-16 | journal: parse fsprg seed | Lennart Poettering | |
2012-08-16 | journal: count number of entry arrays in header | Lennart Poettering | |
2012-08-16 | journal: rename 'mmap' to 'mmap_cache' to appease gcc | Zbigniew Jędrzejewski-Szmek | |
warning: declaration of 'mmap' shadows a global declaration [-Wshadow] | |||
2012-08-16 | journal: verify hashes only during actual verification, not all the time | Lennart Poettering | |
2012-08-16 | journal: split up journal-file.c | Lennart Poettering | |
2012-08-16 | journal: add superficial structure verifier | Lennart Poettering | |
2012-08-16 | journal: implement basic journal file verification logic | Lennart Poettering | |
2012-08-16 | journal: implement generic sharable mmap caching logic | Lennart Poettering | |
instead of having one simple per-file cache implement an more comprehensive one that works for multiple files and can actually maintain multiple maps per file and per object type. | |||
2012-08-13 | journal: include tag object header in hmac | Lennart Poettering | |
2012-08-13 | journal: add all objects we add to HMAC | Lennart Poettering | |
2012-08-13 | journald: initial version of FSPRG hookup | Lennart Poettering | |
This adds forward-secure authentication of journal files. This patch includes key generation as well as tagging of journal files, Verification of journal files will be added in a later patch. | |||
2012-08-08 | fix a couple of issues found with llvm-analyze | Lennart Poettering | |
2012-07-19 | journal: rotate busy files away when we try to write to them | Lennart Poettering | |
2012-07-18 | journal: when we suggest a rotation, explain why | Lennart Poettering | |
2012-07-18 | journal: estimate data hash table size a bit larger by default | Lennart Poettering | |
2012-07-17 | journal: actually set archived files to archived state | Lennart Poettering | |
2012-07-17 | journalctl: decode more header files in --header | Lennart Poettering | |
2012-07-17 | journal: size journal data hash table based on maximum file size metrics | Lennart Poettering | |
The default of 2047 hash table entries turned out to result in way too many collisions for bigger files, hence scale the hash table size by the estimated maximum file size. | |||
2012-07-17 | journal: immediately rotate when the journal was previously not closed properly | Lennart Poettering | |
2012-07-17 | journal: automatically rotate journal files if the data hash table is full > 75% | Lennart Poettering | |
Previously, when the main data hash table grows too full the performance simply started to decrease drastically. Instead, now simply rotate to a new journal file as the hash table gets to full, so that we can start with a new fresh empty hash table. | |||
2012-07-16 | journal: use tail/head timestamps from header for cutoff logic | Lennart Poettering | |
We have them, they are faster to use them, so use them... | |||
2012-07-16 | journald: don't enforce monotonicity of realtime clocks when copying entries | Lennart Poettering | |
After all the point of the realtime clock (in contrast to the monotonic clock) is that it does not have to be strictly monotonic, hence don't enforce this when flushing the journal from /run to /var. | |||
2012-07-13 | journal: beef up journal matches considerably | Lennart Poettering | |
we now can take multiple matches, and they will apply as AND if they apply to different fields and OR if they apply to the same fields. Also, terms of this kind can be combined with an overreaching OR. | |||
2012-07-13 | journal: fix seeking by realtime/seqnum | Lennart Poettering | |
2012-07-13 | journal: fix bad memory access | Lennart Poettering | |
2012-07-13 | journal: fix bisection logic for first entry | Lennart Poettering | |
2012-06-17 | journal: fix monotonic seeking | Lennart Poettering | |
2012-06-17 | journal: expose and make use of cutoff times of journal | Lennart Poettering | |
This helps explaining when the log output of "systemctl status" is incomplete because the logs got rotated since the service was started. | |||
2012-06-17 | journal: correct list link up on hash collisions | Lennart Poettering | |
2012-06-17 | journal: add basic object definition for signatures | Lennart Poettering | |
2012-06-17 | journal: replace arena offset by header size | Lennart Poettering | |
2012-06-12 | journal-file: fix mmap leak | Michal Schmidt | |
https://bugzilla.redhat.com/show_bug.cgi?id=831132 | |||
2012-05-22 | Fixed handling of posix_fallocate() returned value | Guillermo Vidal | |
According to the man pages of posix_fallocate, it returns zero on success or an error number on failure; however, errno is not set on failure. If the kernel or a library other than glibc does not support the function for example, EOPNOTSUPP will be returned and the error will not be handled properly with original code. | |||
2012-04-13 | fix a couple of things found with the llvm static analyzer | Lennart Poettering | |
2012-04-12 | relicense to LGPLv2.1 (with exceptions) | Lennart Poettering | |
We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends. | |||
2012-04-02 | journal: decrease default mmap window size to allow a bigger number of ↵ | Lennart Poettering | |
journals to be traversed in parallel | |||
2012-03-22 | add sparse support to detect endianness bug | Frederic Crozat | |
le16/32/64_t type should be used when storing little-endian value header to integrate with sparse from Josh Triplett <josh@joshtriplett.org> | |||
2012-03-21 | journal: react with immediate rotation to a couple of more errors | Lennart Poettering | |
2012-03-15 | man: document systemd-journald.conf(5) | Lennart Poettering | |
2012-03-15 | journal: only use uint8_t for state | Frederic Crozat | |
2012-03-15 | journald: be a bit more verbose | Lennart Poettering | |
2012-03-15 | journald: fix calculation of disk space | Lennart Poettering | |
2012-03-15 | journald: copy metrics/compression state from template when rotating | Lennart Poettering | |
2012-03-15 | journald: increase max file size to 128MB | Lennart Poettering | |
2012-03-15 | journal: vacuum corrupted files, too | Lennart Poettering | |
2012-03-15 | journal: if we encounter a corrupted file, rotate and go on | Lennart Poettering | |
2012-03-06 | journal: make sure to refresh window position and pointer after we linked up ↵ | Lennart Poettering | |
a data object | |||
2012-03-05 | journal: fix endianness errors | Frederic Crozat | |