summaryrefslogtreecommitdiff
path: root/src/mount-setup.c
AgeCommit message (Collapse)Author
2012-04-10rename basic.la to shared.la and put selinux deps in shared-selinx.laKay Sievers
Only 34 of 74 tools need libselinux linked, and libselinux is a pain with its unconditional library constructor.
2012-03-22systemd: mount the securityfs filesystem at early stageRoberto Sassu
This is an S/MIME signed message The mount of the securityfs filesystem is now performed in the main systemd executable as it is used by IMA to provide the interface for loading custom policies. The unit file 'units/sys-kernel-security.mount' has been removed because it is not longer necessary. Signed-off-by: Roberto Sassu <roberto.sassu@polito.it> Acked-by: Gianluca Ramunno <ramunno@polito.it>
2011-08-30selinux: explicitly relabel /run/initramfs/root-fsck and friendsLennart Poettering
2011-08-30selinux: don't relabel /run/initramfsLennart Poettering
/run/initramfs usually contains the initrd so that we can jump back into it on shutdown. It's usually relatively large and static data, hence we should avoid relabelling of it. On my netbook this saves 6s. (6.6s needed for relabelling /dev and /run goes down to 600ms -- still way too much, but much better).
2011-08-23cgroup: optionally mount a specific cgroup controllers together, and add ↵Lennart Poettering
cpu+cpuacct to the default
2011-07-29selinux: mount /sys, /proc, /dev before we load the SELinux policyLennart Poettering
2011-07-28selinux: use setcon() instead of reexec to apply selinux policyLennart Poettering
2011-06-14mount /run without MS_NOEXECKay Sievers
2011-06-07selinux: selinuxfs can be mounted on /sys/fs/selinuxMichal Schmidt
The kernel now provides the /sys/fs/selinux mountpoint and libselinux prefers it if it's available. systemd currently tests only for /selinux and this leads to an infinite loop of policy reloads in the latest Rawhide. Fix it by checking both possible mountpoints. Also add the new path to ignore_paths[]. /selinux appears also in nspawn.c. I don't think it's necessary to change it there at this point. https://bugzilla.redhat.com/show_bug.cgi?id=711015
2011-04-26mount: failure to mount cgroup hierarchies should not be fatalLennart Poettering
If we cannot open /etc/cgroup, print an error message, but go on, to support cgroup-less builds. https://bugzilla.redhat.com/show_bug.cgi?id=628004
2011-04-23manager: mkdir /run/systemd/system when starting upTollef Fog Heen
2011-04-20mount: Allow creating mount units for /var/lib/nfs/rpc_pipefs and /proc/fs/nfsd.Wulf C. Krueger
Mounting /var/lib/nfs/rpc_pipefs and /proc/fs/nfsd is required by rpcbind and the NFS server respectively. To depend on them being mounted, systemd needs to be allowed to create mount units for both in order to avoid having to implement hacks (mounting in ExecStartPre or using shell scripts).
2011-04-12cgroup: be nice to Ingo MolnarLennart Poettering
https://bugzilla.redhat.com/show_bug.cgi?id=628004
2011-04-10path: optionally, create watched directories in .path unitsLennart Poettering
2011-04-07manager: no need to use randomized generator dir when running as system managerLennart Poettering
2011-04-07don't make up buffer sizes, use standard LINE_MAX insteadLennart Poettering
2011-04-06mount: relabel both before and after a mount, just in caseLennart Poettering
2011-04-04selinux: relabel /run the same way as /dev after loading the policy since ↵Lennart Poettering
they both come pre-filled and unlabelled
2011-03-31mount: also relabel pre-mounted API dirsLennart Poettering
2011-03-28use /run instead of /dev/.runKay Sievers
Instead of the /dev/.run trick we have currently implemented, we decided to move the early-boot runtime dir to /run. An existing /var/run directory is bind-mounted to /run. If /var/run is already a symlink, no action is taken. An existing /var/lock directory is bind-mounted to /run/lock. If /var/lock is already a symlink, no action is taken. To implement the directory vs. symlink logic, we have a: ConditionPathIsDirectory= now, which is used in the mount units. Skipped mount unit in case of symlink: $ systemctl status var-run.mount var-run.mount - Runtime Directory Loaded: loaded (/lib/systemd/system/var-run.mount) Active: inactive (dead) start condition failed at Fri, 25 Mar 2011 04:51:41 +0100; 6min ago Where: /var/run What: /run CGroup: name=systemd:/system/var-run.mount The systemd rpm needs to make sure to add something like: %pre mkdir -p -m0755 /run >/dev/null 2>&1 || : or it needs to be added to filesystem.rpm. Udev -git already uses /run if that exists, and is writable at bootup. Otherwise it falls back to the current /dev/.udev. Dracut and plymouth need to be adopted to switch from /dev/.run to run too. Cheers, Kay
2011-03-09dev: use /dev/.run/systemd as runtime directory, instead of /dev/.systemdLennart Poettering
2011-03-09drop unnecessary suffix NULs as gcc adds them anywayLennart Poettering
2011-03-09mount: use /dev/.run as an early boot alias for /var/runLennart Poettering
During early boot, mount a tmpfs to /dev/.run and then bind mount it to /var/run as soon as /var is available. This makes it possible for programs involved in early boot to put runtime data in /dev/.run which later on will show up in /var/run like any other. This can be used to solve the early-boot D-Bus problem: D-Bus may start up with its socket bound to /dev/.run/dbus/system_bus_socket and after /var it will also be available under the traditional name /var/run/dbus/system_bus_socket. This also is intended to be used as a better place for systemd, mount, mdadm, blkid, plymouth, bootchart and dracut runtime data, which is currently stored in various places in /dev/.xxx.
2011-02-25label: udev might be making changes in /dev while we iterate through itLennart Poettering
Also, there are most likely dead symlinks in there, so let's ignore ENOENT when we relabel. https://bugzilla.redhat.com/show_bug.cgi?id=680169
2011-01-04mount-setup: mount /dev/pts with mode=620,gid=5 by default and make GID ↵Lennart Poettering
overridable via configure switch
2010-12-23mount-setup: drop noexec flag from default mount options for /dev/shmLennart Poettering
We shouldn't break PROT_EXEC which is a valid mmap() flag.
2010-11-24mount: trivial typo fixLennart Poettering
2010-11-22mount_cgroup_controllers: expect 2 items from fscanf()Kay Sievers
2010-11-21mount: do not try to mount disable cgroup controllersLennart Poettering
https://bugzilla.redhat.com/show_bug.cgi?id=655222
2010-11-18mount: trivial optimizationLennart Poettering
2010-11-12mount: don't relabel /dev twice in a rowLennart Poettering
2010-11-11split mount_point_is_api() and mount_point_ignore()Kay Sievers
We should not handle the ignore list as API mounts, as systemd itself never touches them. On Thu, Nov 11, 2010 at 10:34, Andreas Jaeger <aj@novell.com> wrote: > > I noticed for some time that systemd-remount-api-vfs is in the > failed state and found now the following in the log files > > systemd-remount-api-vfs[467]: /bin/mount for /proc/bus/usb exited with exit status 32. > systemd-remount-api-vfs[467]: mount: /proc/bus/usb not mounted already, or bad option > systemd[1]: systemd-remount-api-vfs.service: main process exited, code=exited, status=1 > systemd[1]: Unit systemd-remount-api-vfs.service entered failed state.
2010-11-10selinux: relabel /dev after loading policyLennart Poettering
2010-10-27mounts: automatically create /dev/stderr and friends early on boot so that ↵Lennart Poettering
they are around when we run shell scripts before udevd
2010-09-15mount-setup: fix selinux label after mountingLennart Poettering
rhbz 629268
2010-08-25cgroup: mount cgroup file systems to /sys/fs/cgroup instead of /cgroupLennart Poettering
This requires the /sys/fs/cgroup to exist. Current git kernels have this, released kernels need a backport of a single patch.
2010-08-20remount: add tool that applies /etc/fstab mount options to all api mountsLennart Poettering
2010-08-14emacs: make sure nobody accidently adds tabs to our sourcesLennart Poettering
2010-07-23sshd, tmux and others are broken when /dev/pts is mounted with "-o nodev"Robert "arachnist" Gerus
2010-07-16mount-setup: consider a few file systems API mounts and ignore themLennart Poettering
2010-06-02mounts: reindent tableLennart Poettering
2010-06-02mounts: make /cgroup a tmpfs file systemLennart Poettering
2010-05-18units: replace a few non-essential API mounts with automount unitsLennart Poettering
2010-05-17cgroup: don't require debug cgroup controller anymore, use name hierarchy ↵Lennart Poettering
instead
2010-05-16build-sys: move source files to subdirectoryLennart Poettering