41ac16b26f
Define new script to load keys on the IMA keyring (update)
...
This patch supports loading keys either on the _ima keyring or, as of
Linux 3.17, on the trusted .ima keyring. Only certificates signed by
a key on the system keyring can be loaded onto the trusted .ima keyring.
Changelog:
- Update 98integrity/README
10 years ago
396d3cc7ff
Extend evm-enable.sh to load the EVM public key
...
Create the _evm keyring and load the EVM public key on it.
10 years ago
b05ad85b0c
Remove 98integrity's dependency on selinux
...
Loading the EVM key(s) is not dependent on selinux. Remove
the dependency.
10 years ago
4135eea634
90qemu: fixed systemd-detect-virt output parsing
...
redirecting systemd-detect-virt to /dev/null doesn't help with parsing
the output :-/
Also, add "Red Hat" as a vendor.
10 years ago
96d694c0b5
dracut.sh: simplify modalias reading
10 years ago
cce34acace
qemu: add spapr-vscsi kernel module
10 years ago
607ff8204b
Merge pull request #85 from Quarky9/master
...
40network/net-lib.sh: get_ip() Add missing echo to output the result
10 years ago
2082cdf230
crypt: s/allow-discards/discard for crypttab
...
actually the option in crypttab is named "discard" and not
"allow-discards"
https://bugzilla.suse.com/show_bug.cgi?id=932972
10 years ago
c1c96f2c47
Add missing echo to output the result.
...
Only place this function is currently called seems from line 28 in modules.d/95nfs/nfs-lib.sh. Bug fix.
10 years ago
693b7a3283
Cleanup compressor handling
...
If no compressor is specified, try to find a suitable one.
Check if kernel modules can be uncompressed.
10 years ago
f4d64d55ea
dmsquash-generator.sh: increase timeout for checkisomd5
...
if the checkisomd5 takes longer than 3 minutes, the device timeout for
/dev/mapper/live-rw cancels the boot process.
10 years ago
ff55a8939c
Merge pull request #81 from floppym/printf2
...
Replace echo -n with printf in code with a /bin/sh shebang
10 years ago
e50f91e600
use mktemp "-p" instead of "--tmpdir" for busybox
10 years ago
7f2ea02b4a
dracut.spec: add dracut-init.sh
10 years ago
24f32511fc
syncheck: Look for 'echo -n' usage in modules
10 years ago
5899f2f516
Replace echo -n with printf in code with a /bin/sh shebang
...
POSIX does not mandate that echo support the -n parameter.
printf has more well-defined behavior.
10 years ago
e47907cc6b
dracut-systemd/dracut-initqueue: only start service if really needed
...
Only start the dracut-initqueue.service, if the dracut_need_initqueue
command was issued on creation or later on set.
10 years ago
968280e370
crypt: skip crypttab entries with the same device
...
It was only checked, if the name of the crypttab entry matched.
This patch adds checking, if the device matches.
10 years ago
8c7dc032f8
TODO: update
10 years ago
df0bdd5ae9
network: add rd.peerdns=0 parameter
...
Add rd.peerdns=0 parameter to disable DHCP nameserver setting
10 years ago
ee44f62972
dracut.sh: early check for bash version
10 years ago
e8f19bcf26
dracut.sh: remember $0 for --regenerate-all
10 years ago
cb0913db0d
dracut.sh: reduce code
10 years ago
32de4eb5d3
dracut-functions.sh: simplify some for loops
...
continue early, if condition is not met
10 years ago
3721635b2c
guard ${arrays[@]} with ""
10 years ago
694725abf0
dracut.sh: remove pop()
10 years ago
e833e26137
dracut.conf: remove example parameters
10 years ago
5a66d51102
dracut.sh: remove push()
...
can be done with var+=(val)
10 years ago
1cadc26fd4
Add all btrfs devices
...
We have to find them with "btrfs usage", which is cumbersome.
10 years ago
78362bc5fe
network/dhclient-script.sh: remove bashism
10 years ago
7ecb36aef4
TEST-50-MULTINIC/test.sh: correctly call ldconfig
10 years ago
3fa31c3a47
TEST-14-IMSM: remove "rd.auto"
...
otherwise rd.auto auto assembles the device
10 years ago
9ee2f1e235
TEST-04-FULL-SYSTEMD: fixup loadkeys keymap loading
10 years ago
e860ef0e30
dracut-pre-mount.service should run before systemd-fsck-root.service
10 years ago
6c9484f614
ensure pre-mount (and resume) run before root fsck
...
References:
https://bugzilla.suse.com/show_bug.cgi?id=906592
Signed-off-by: Thomas Renninger <trenn@suse.de>
10 years ago
162daf0c97
Use the uncompressed kernel file on arm and aarch to detect kernel version
...
This is due to file cannot read out the kernel version on these.
Many thanks to Alexander Graf finding this in old SUSE mkinitrd code.
Converted by Thomas Renninger.
Signed-off-by: Thomas Renninger <trenn@suse.de>
https://bugzilla.suse.com/show_bug.cgi?id=908454
Signed-off-by: Thomas Renninger <trenn@suse.de>
10 years ago
01e60ca4f6
mkinitrd-suse.sh: Bail out with exit 1 if initrd cannot be generated
...
Signed-off-by: Thomas Renninger <trenn@suse.de>
10 years ago
b8efaa0017
Reset IFS variable
...
Setting and unsetting the IFS variable is tricky. To be on the
safe side we should always reset the IFS variable to its original
value after parsing.
Signed-off-by: Hannes Reinecke <hare@suse.de>
Signed-off-by: Thomas Renninger <trenn@suse.de>
10 years ago
6318baa45f
skipcpio/skipcpio.c: linux kernel only accepts "070701" signature
...
don't bother with other signatures
10 years ago
3d579309cd
dmsquash-live/dmsquash-live-root.sh: fixup checkisomd5 for systemd
...
systemd does not like a leading "-" for unit template filenames anymore.
10 years ago
f621aeba65
Merge pull request #78 from dracut-mailing-devs/20150706073126.GC22559@dhcp-128-51.nay.redhat.com
...
90multipath: add hostonly multipath.conf in case hostonly mode
10 years ago
59815841e9
Merge pull request #77 from dracut-mailing-devs/1435792513-2222-1-git-send-email-crrodriguez@opensuse.org
...
systemd: if kdbus is available, include the kernel module
10 years ago
77403e0032
90multipath: add hostonly multipath.conf in case hostonly mode
...
For large machine, suppose there's a lot of multipath devices, multipath layer
will use a lot of memory. For kdump kernel memory is very limited thus it causes
oom. To avoid oom, we only add necessary multipath devices in kdump kernel
multipath.conf.
This is done by use mpathconf --allow, a new option which is like whitelist.
Signed-off-by: Dave Young <dyoung@redhat.com>
10 years ago
8d09f493a6
network/dhclient-script.sh: fixup lease time
10 years ago
777f2db037
splitup dracut-init.sh from dracut-functions.sh
...
other tools want to source dracut-functions.sh without any mkdir side
effects.
10 years ago
ba665de454
nfs/nfs-lib.sh: add anaconda_nfsv6_to_var()
...
add "nfs:[[2001:0db8:85a3:08d3:1319:8a2e:0370:7344]]/path" style parsing
https://bugzilla.redhat.com/show_bug.cgi?id=1190098
10 years ago
57fb6e67de
dracut-lib.sh:info() output info to stderr
...
otherwise it might collide with stdout redirection
10 years ago
916559e073
dracut.sh: add devices with x-initrd.mount in /etc/fstab to host_devs
...
otherwise dracut might not even be able to mount those.
10 years ago
3639fe543c
lower the log level for dfatal
10 years ago
7cca5efdce
network: don't use "ifup -m"
...
"ifup -m" was thought to be used by humans in the emergency shell.
Using it programatically shows some other flaw in the execution logic.
Also, "ifup -m" was configuring the interface multiple times on "add"
and "change" uevent, because the "$netif.did-setup" test was not
executed.
10 years ago
Mimi Zohar