morgan/systemd
1
0
Fork 0
mirror of https://github.com/morgan9e/systemd synced 2026-04-14 16:37:19 +09:00
Code Issues Packages Projects Releases Wiki Activity
Files
db4b4e0cd364ec58db72f3f2fb992b2ce8244b3b
systemd/src
History
Yu Watanabe db4b4e0cd3 core: Make DelegateNamespaces= work for user managers with CAP_SYS_ADMIN (#36771) 
Currently DelegateNamespaces= only works for services spawned by the
system manager. User managers will always unshare the user namespace
first even if they're running with CAP_SYS_ADMIN.

Let's add support for DelegateNamespaces= for user managers if they're
running with CAP_SYS_ADMIN. By default, we'll still delegate all
namespaces
for user managers, but this can now be overridden by explicitly passing
DelegateNamespaces=.

If a user manager is running without CAP_SYS_ADMIN, the user manager is
still always unshared first just like before.
2025-03-20 06:28:18 +09:00
..
ac-power
analyze
analyze-condition: rewrite condition parser
2025-03-18 18:36:55 +09:00
ask-password
backlight
basic
core: Make DelegateNamespaces= work for user managers with CAP_SYS_ADMIN (#36771)
2025-03-20 06:28:18 +09:00
battery-check
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
binfmt
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
bless-boot
boot
boot: always pass an array of PeSectionVector to pe_locate_sections()
2025-03-19 10:40:31 +09:00
bootctl
bootctl: do not print special glyphs to the log
2025-03-15 14:40:52 +01:00
busctl
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
cgls
cgroups-agent
cgtop
tree-wide: drop unnecessary break in default branch
2025-03-06 11:42:20 +01:00
core
core: Make DelegateNamespaces= work for user managers with CAP_SYS_ADMIN (#36771)
2025-03-20 06:28:18 +09:00
coredump
coredump,analyze: use read_full_file() for reading various top-level /proc/ files
2025-03-13 14:18:46 +01:00
creds
cryptenroll
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
cryptsetup
tpm2-util: return better errors if we try to unlock a tpm key on the wrong tpm
2025-03-19 21:27:54 +01:00
debug-generator
delta
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
detect-virt
tree-wide: drop unnecessary break in default branch
2025-03-06 11:42:20 +01:00
dissect
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
environment-d-generator
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
escape
factory-reset
Factory reset followup (#36621)
2025-03-06 17:43:04 +01:00
firstboot
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
fsck
fstab-generator
meson: use install_symlink() where applicable
2025-03-10 02:41:40 +09:00
fundamental
macro: Introduce UTF8() macro to define UTF-8 string literal
2025-03-16 10:15:24 +09:00
fuzz
hostname: support that /etc/hostname contains ??? as wildcards to be replaced by hash value from /etc/machine-id
2025-03-11 18:01:42 +01:00
getty-generator
getty-generator: unify add_serial_getty() and add_container_getty()
2025-03-18 18:25:10 +09:00
gpt-auto-generator
gpt-auto-generator: do not apply image policy on the root fs and /usr/ fs
2025-03-06 09:42:18 +01:00
growfs
basic: introduce our own sys/mount.h implementation
2025-03-04 02:24:49 +09:00
hibernate-resume
hibernate-resume-config: log louder on invalid kernel version/os-release id
2025-03-05 17:18:21 +01:00
home
xattr-util: rework getxattr_at_malloc()
2025-03-18 07:17:10 +01:00
hostname
macro: Introduce UTF8() macro to define UTF-8 string literal
2025-03-16 10:15:24 +09:00
hwdb
id128
import
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
initctl
initctl: fix error handling
2025-03-19 01:44:01 +09:00
integritysetup
journal
journal: fix indentation
2025-03-19 10:41:29 +09:00
journal-remote
journal-remote: added custom headers support
2025-03-15 07:27:38 +09:00
kernel-install
Add a few more bypass environment variables
2025-03-01 16:22:53 +01:00
keyutil
keyutil: support adding content into PKCS#7 signature
2025-03-07 18:36:23 -05:00
libsystemd
core: Make DelegateNamespaces= work for user managers with CAP_SYS_ADMIN (#36771)
2025-03-20 06:28:18 +09:00
libsystemd-network
sd-dhcp-client: use event_reset_time_relative()
2025-03-19 11:41:25 +09:00
libudev
locale
test: drop redundant parentheses in ASSERT_OK() and friends
2025-03-15 09:08:06 +09:00
login
logind-action: use BIT_SET() and SET_BIT()
2025-03-19 10:47:34 +09:00
machine
units: Add systemd-machined.socket
2025-03-19 09:28:12 +01:00
machine-id-setup
measure
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
modules-load
mount
meson: use install_symlink() where applicable
2025-03-10 02:41:40 +09:00
mountfsd
namespace-util: make "setgroups" users property writable via userns_acquire()
2025-03-17 16:03:18 +01:00
network
condition: introduce ConditionVersion=/AssertVersion=
2025-03-18 18:36:59 +09:00
notify
nspawn
Several fixlets for Coverity (#36791)
2025-03-19 22:27:00 +01:00
nsresourced
nsresourced: fix assignment of target_gid
2025-03-18 12:13:38 +00:00
nss-myhostname
basic: move gethostname_full() from basic/hostname-util.c → shared/hostname-setup.c
2025-03-11 17:54:44 +01:00
nss-mymachines
nss-resolve
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
nss-systemd
missing_threads.h: threads.h exists since glibc-2.28
2025-03-04 02:24:49 +09:00
oom
oomd: do not ignore failure in sd_lisen_fds()
2025-03-19 01:47:48 +09:00
path
pcrextend
pcrlock
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
portable
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
pstore
ptyfwd
ptyfwd: rename handler to hangup_handler
2025-03-04 22:58:49 +01:00
quotacheck
random-seed
rc-local-generator
remount-fs
repart
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
reply-password
resolve
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
rfkill
tree-wide: drop unnecessary break in default branch
2025-03-06 11:42:20 +01:00
rpm
run
run: Stop agents before we drop privileges
2025-03-19 10:01:19 +01:00
run-generator
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
sbsign
shared
core: Make DelegateNamespaces= work for user managers with CAP_SYS_ADMIN (#36771)
2025-03-20 06:28:18 +09:00
shutdown
test: wrap assignments in ASSERT_OK() and friends with parentheses
2025-03-13 05:15:28 +09:00
sleep
socket-activate
nspawn,run,machinectl,socket-activate: propagate $COLORTERM + $NO_COLOR
2025-03-17 10:17:54 +01:00
socket-proxy
ssh-generator
meson: use install_symlink() where applicable
2025-03-10 02:41:40 +09:00
stdio-bridge
storagetm
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
sulogin-shell
sysctl
sysext
meson: use install_symlink() where applicable
2025-03-10 02:41:40 +09:00
system-update-generator
systemctl
basic/glyph-util: introduce optional_glyph() to wrap emoji_enabled()
2025-03-15 14:40:52 +01:00
systemd
meson: update C standards table for building header tests
2025-03-16 10:16:18 +09:00
sysupdate
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
sysusers
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
sysv-generator
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
test
Introduce ConditionVersion (#36468)
2025-03-20 06:15:35 +09:00
timedate
basic/linux: import capability.h from kernel 6.14-rc4
2025-03-04 02:24:49 +09:00
timesync
tmpfiles
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00
tpm2-setup
openssl-util: add helper for converting EVP_PKEY to PEM string
2025-03-07 18:13:16 +01:00
tty-ask-password-agent
tty-askpw-agent: react to SIGTERM while waiting for console
2025-03-03 10:47:09 +01:00
udev
condition: introduce ConditionVersion=/AssertVersion=
2025-03-18 18:36:59 +09:00
ukify
Ukify tweaks (#36389)
2025-03-05 11:26:47 +00:00
update-done
update-utmp
user-sessions
userdb
userdb: Add userdb.user.* and userdb.group.* credentials
2025-03-18 22:46:10 +01:00
varlinkctl
vconsole
veritysetup
veritysetup-generator: repeat format string arguments a bit less
2025-03-19 16:32:02 +01:00
version
vmspawn
sd-event: make pidfd copy in event_add_child_pidref()
2025-03-19 18:14:24 +01:00
volatile-root
vpick
xdg-autostart-generator
basic/glyph-util: rename "special glyph" to just "glyph"
2025-03-15 14:40:39 +01:00