morgan/systemd
1
0
Fork 0
mirror of https://github.com/morgan9e/systemd synced 2026-04-15 00:47:10 +09:00
Code Issues Packages Projects Releases Wiki Activity
84,458 Commits 1 Branch 0 Tags
c30e3d729000b06a5709ea79eaf0ea8dd42f4819
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Lennart Poettering c30e3d7290 creds-util: add automatic mode for tpm2 based creds 
This reworkds TPM2 based creds a bit. Instead of mapping the key type
"tpm2" directly to a TPM2 key without PK, let's map it to an "automatic"
key type that either picks PK or doesn't, depending on what's available.
That should make things easier to grok for people, as the nitty gritty
details of PK or not PK are made autmatic. Moreover it gives us more
leverage to change the TPM2 enrollment types later (for example, we
definitely want to start pinning SRK, and hook up pcrlock too, for
creds, which we currently don't).

This hence adds a new _CRED_AUTO_TPM2
pseudo-type we automatically maps to CRED_AES256_GCM_BY_TPM2_HMAC_WITH_PK
or CRED_AES256_GCM_BY_TPM2_HMAC depending if PK as available. Similar,
_CRED_AUTO_HOST_AND_TPM2 is added, which does the same for the
host/nonhost cred type.

This does not introduce any new type on the wire, it just changes how we
select the right key type.

To make the code more readable this also adds some categorization macros
for the keys, instead of repeating the list of key types at multiple
places.
2025-11-02 21:14:35 +01:00
.clusterfuzzlite
.github
build(deps): bump softprops/action-gh-release from 2.2.2 to 2.4.1
2025-11-01 18:12:26 +09:00
.obs
ci: stop triggering suse-specific package build on OBS
2025-08-08 18:46:07 +01:00
.semaphore
semaphore-runner: disable cgroup setup in lxc
2025-03-16 15:30:38 +01:00
catalog
meson: using f-strings in meson
2025-10-03 21:21:52 +02:00
coccinelle
tree-wide: use sd_bus_message_send() instead of sd_bus_send() wherever possible
2025-06-24 23:23:40 +09:00
docs
docs: add comment about requiring the mount hierarchy to be mounted MS_SHARED
2025-11-02 00:19:57 +00:00
factory
meson: drop explicit custom_target names
2025-06-28 17:14:50 +02:00
hwdb.d
hwdb: add support for the Logitech MX Master 4 (#39490)
2025-10-30 20:16:26 +09:00
LICENSES
licensing: update address of FSF
2025-10-07 13:00:12 +01:00
man
creds-util: add automatic mode for tpm2 based creds
2025-11-02 21:14:35 +01:00
mime
mime: add mimetype for luks home dir
2025-03-07 17:27:20 +01:00
mkosi
userdb: Add missing .membership extension to membership files
2025-10-31 08:57:08 +01:00
modprobe.d
network
network/dhcp-server: improvements for saving/loading leases (#37835)
2025-06-17 14:31:22 +02:00
po
po: Translated using Weblate (Portuguese (Brazil))
2025-10-30 11:46:06 +09:00
presets
presets: Disable by default for initrd presets
2025-07-04 16:22:27 +01:00
profile.d
Drop machine-id OSC event field if /etc/machine-id doesn't exist
2025-10-09 09:08:13 +02:00
rules.d
rules.d/60-block.rules: fix typo
2025-11-02 10:56:31 +01:00
shell-completion
run0: Add --empower
2025-10-30 15:28:36 +01:00
src
creds-util: add automatic mode for tpm2 based creds
2025-11-02 21:14:35 +01:00
sysctl.d
meson: drop explicit custom_target names
2025-06-28 17:14:50 +02:00
sysusers.d
meson: drop explicit custom_target names
2025-06-28 17:14:50 +02:00
test
ci: add testcases for recently added stuff
2025-11-01 22:01:35 +01:00
tmpfiles.d
fsck,quotacheck: drop support for traditional /forcefsck, /fastboot, and /forcequotacheck files
2025-07-16 05:47:38 +09:00
tools
tree-wide: drop unused libcap dependencies
2025-10-24 01:52:59 +09:00
units
importd: properly support operation in per-user mode
2025-10-21 23:09:50 +02:00
xorg
.clang-format
clang-format: Add include sorting directives
2025-04-30 09:30:33 +02:00
.clang-tidy
clang-tidy: enable bugprone-argument-comment check
2025-06-04 15:50:00 +02:00
.clangd
clangd: Enable UnusedIncludes feature again
2025-05-24 20:57:05 +02:00
.ctags
.dir-locals.el
.editorconfig
chore: fix editorconfig pattern and add setting for zsh
2025-05-30 14:53:45 +09:00
.gitattributes
.gitignore
gitignore: add aider
2025-10-20 11:39:25 +01:00
.mailmap
mailmap: deduplicate Daan
2025-09-17 12:08:03 +02:00
.packit.yml
mkosi: update fedora commit reference to ea1d871ecd6c2fe063523840c1e4cf9bcf200e32
2025-10-30 14:56:41 +01:00
.pylintrc
.vimrc
.ycm_extra_conf.py
tools: consistently use #!/usr/bin/env python3
2025-07-25 12:33:13 +02:00
CITATION.cff
add CITATION.cff file
2025-06-05 14:39:20 +02:00
LICENSE.GPL2
licensing: update address of FSF
2025-10-07 13:00:12 +01:00
LICENSE.LGPL2.1
licensing: update address of FSF
2025-10-07 13:00:12 +01:00
meson_options.txt
Remove dns0.eu from default DNS servers
2025-10-22 01:39:41 +02:00
meson.build
libcryptsetup: drop several unnecessary checks for existences of functions by libcryptsetyp
2025-11-02 05:49:29 +09:00
meson.version
meson: bump version to 259~devel for next cycle
2025-09-17 13:06:07 +01:00
mypy.ini
NEWS
mount-setup: Add memory_hugetlb_accounting to cgroupfs mount
2025-10-30 22:28:41 +01:00
README
mount-setup: Add memory_hugetlb_accounting to cgroupfs mount
2025-10-30 22:28:41 +01:00
README.md
README: update badges
2025-05-22 01:37:05 +09:00
ruff.toml
ruff: Default to python 3.7 version
2025-07-10 18:09:17 +02:00
TODO
TODO: add that libmicrohttpd2 has openssl support (#39433)
2025-10-24 11:58:19 +01:00

README.md

Systemd

System and Service Manager

OBS Packages Status
Semaphore CI 2.0 Build Status
Coverity Scan Status
OSS-Fuzz Status
CIFuzz
CII Best Practices
Fossies codespell report
Translation status
Coverage Status
Packaging status
OpenSSF Scorecard

Details

Most documentation is available on systemd's web site.

Assorted, older, general information about systemd can be found in the systemd Wiki.

Information about build requirements is provided in the README file.

Consult our NEWS file for information about what's new in the most recent systemd versions.

Please see the Code Map for information about this repository's layout and content.

Please see the Hacking guide for information on how to hack on systemd and test your modifications.

Please see our Contribution Guidelines for more information about filing GitHub Issues and posting GitHub Pull Requests.

When preparing patches for systemd, please follow our Coding Style Guidelines.

If you are looking for support, please contact our mailing list, join our IRC channel #systemd on libera.chat or Matrix channel

Stable branches with backported patches are available in the stable repo.

We have a security bug bounty program sponsored by the Sovereign Tech Fund hosted on YesWeHack

Repositories with distribution packages built from git main are available on OBS

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme Cite this repository 321 MiB
Languages
C 89%
Python 5.1%
Shell 4.5%
Meson 1.2%