Re: [systemd-devel] Antw: [EXT] Re: Still confused with socket activation

2021-02-08 Thread Ian Pilcher
On 2/8/21 7:52 AM, Uoti Urpala wrote: This is wrong. Socket units are useful completely independently of whether the unit is started on demand, and it's a good idea to use them even for services that are always started on boot. They allow configuring listening ports in a consistent manner, and

Re: [systemd-devel] journald not associating log messages with service

2020-07-28 Thread Ian Pilcher
On 7/28/20 9:44 AM, Lennart Poettering wrote: Is the service short-lived? There's a race: if a process runs very quickly and logs journald might process the message after the process already exited, i.e. at a time where we can't read the cgroup off the process anymore. It is indeed a very

Re: [systemd-devel] systemd.timer every X days?

2020-07-28 Thread Ian Pilcher
On 7/28/20 11:07 AM, Mantas Mikulėnas wrote: I'd create a single raidcheck.service that runs daily and calls a script that itself determines which device to check, e.g. /dev/md$[dayofyear % 16]. That is the approach that I'm taking, although it means a fair bit of work. I need to parse a

[systemd-devel] systemd.timer every X days?

2020-07-26 Thread Ian Pilcher
My NAS has 16 MD RAID devices. I've created a simple service (raidcheck@.service) that will trigger a check of the RAID device identified by the argument. E.g., 'systemctl start raidcheck@md1' will trigger the check of md1 (after checking that no other array is being checked/synced, no arrays

[systemd-devel] journald not associating log messages with service

2020-07-25 Thread Ian Pilcher
I have a simple (non-forking) one-shot service that logs messages via syslog. These messages are not being "associated" with the service unit. I.e., they don't show up if I use journalctl's -u option (although they are in the journal). UPDATE: I just tried using sd_journal_print, and I'm

Re: [systemd-devel] Child of daemon sending SIGCHLD to systemd

2020-07-01 Thread Ian Pilcher
On 7/1/20 3:47 AM, Mantas Mikulėnas wrote: systemd doesn't explicitly reparent processes; the kernel just always reparents processes to pid 1 when the previous parent no longer exists. Overall, pid 1 is a legitimate recipient of SIGCHLD regardless of which init system is being used. In this

Re: [systemd-devel] Child of daemon sending SIGCHLD to systemd

2020-06-30 Thread Ian Pilcher
On 6/30/20 4:18 AM, Lennart Poettering wrote: Maybe it double forks or forks a child off (callout script?) that double forks somewhere? I don't know your software, it's probably best to ping the authors of it about this, they should know what their software does. LOL! I am the author. So I

Re: [systemd-devel] Child of daemon sending SIGCHLD to systemd

2020-06-29 Thread Ian Pilcher
On 6/29/20 2:00 PM, Vito Caputo wrote: I don't know about freecusd, but if it uses a fire-and-forget approach to launching helpers, as in it double-forks, so it doesn't need to bother with asynchronously reaping zombies, then the second fork becomes a child of init. That results in the second

[systemd-devel] Child of daemon sending SIGCHLD to systemd

2020-06-29 Thread Ian Pilcher
I originally posted a variation of the question on the SELinux mailing list, but the more I look at this the more I realize that it really isn't a SELinux questions. I'm not really sure that it's a systemd question either, but it definitely falls into the area of Linux process management, so I'm

Re: [systemd-devel] [systemd SELinux] system status permission

2019-10-07 Thread Ian Pilcher
he unit file. Looks like this is going to be a dontaudit, since my service has no business looking at the overall system state. -- ======== Ian Pilcher arequip...@gmail.com "I grew

Re: [systemd-devel] org.freedesktop.systemd1.manage-units - which unit?

2019-10-07 Thread Ian Pilcher
. -- Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented frien

[systemd-devel] [systemd SELinux] system status permission

2019-10-07 Thread Ian Pilcher
his denial would be appreciated. Thanks! -- ======== Ian Pilcher arequip...@gmail.com "I grew

Re: [systemd-devel] org.freedesktop.systemd1.manage-units - which unit?

2019-10-02 Thread Ian Pilcher
er (even though it does use JavaScript rules). :( -- ======== Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented friendship" _

[systemd-devel] org.freedesktop.systemd1.manage-units - which unit?

2019-09-26 Thread Ian Pilcher
art/reload). Are there any variables associated with this action that my rule can use? If not, is there any way to give a particular user permission to perform only some actions on only some units? Thanks! -- ======== I

Re: [systemd-devel] systemctl condreload - Is it a thing?

2019-01-30 Thread Ian Pilcher
owly. Well, that's one way to increase mailing list traffic. ;-) Thanks! -- ======== Ian Pilcher arequip...@gmail.com "I grew

[systemd-devel] systemctl condreload - Is it a thing?

2019-01-30 Thread Ian Pilcher
$SUBJECT pretty much says it all. It seems to work, but I can't find any mention of it in the documentation or with my Google searches. Is it deprecated and going away? Thanks! -- Ian Pilcher

Re: [systemd-devel] Requires and After

2019-01-01 Thread Ian Pilcher
. -- Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented friendship" ___ systemd-dev

[systemd-devel] Run service in netns w/ interfaces

2018-05-31 Thread Ian Pilcher
oc/sys/net/ipv4/ip_forward' ExecStart=/usr/sbin/dhcrelay -d -i ovs2.19 192.168.19.1 192.168.19.101 [Install] WantedBy=multi-user.target Needless to say, this doesn't exactly feel elegant or efficient. Is there a better way? -- =========

Re: [systemd-devel] option to wait for pid file to appear

2018-05-18 Thread Ian Pilcher
the service manager should deal IIRC, the Python daemon library does this. -- Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented frien

[systemd-devel] How does systemd-logind know if it is docked?

2017-12-31 Thread Ian Pilcher
? -- Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented frien

Re: [systemd-devel] systemd-networkd not sending DHCP v6 requests

2017-07-12 Thread Ian Pilcher
hop limit 0, Flags [managed, other stateful], pref medium, router lifetime 1800s, reachable time 360ms, retrans time 0ms -- ============ Ian Pilcher arequip...@gmail.com "I

Re: [systemd-devel] systemd-networkd not sending DHCP v6 requests

2017-07-11 Thread Ian Pilcher
). -- Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented frien

[systemd-devel] systemd-networkd not sending DHCP v6 requests

2017-07-10 Thread Ian Pilcher
ry or package that is required for DHCP v6 to work (something that might have slipped by an RPM packager)? Any other ideas? -- ============ Ian Pilcher arequip...@gmail.com "I grew

Re: [systemd-devel] Bouncing interface once chrony is synced

2017-07-10 Thread Ian Pilcher
... -- Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented frien

[systemd-devel] Bouncing interface once chrony is synced

2017-07-05 Thread Ian Pilcher
processes are not running, so the addresses are never renewed. I suspect that systemd may be killing them, because chrony-wait is a oneshot service. Can anyone suggest a way to achieve this? -- Ian Pilcher

Re: [systemd-devel] [networkd] Unable to set MTU with .link file

2017-06-09 Thread Ian Pilcher
On 06/08/2017 11:03 PM, Ian Pilcher wrote: I am tearing my hair out trying to figure out why I an unable to set the MTU of an OVS port with a .link file. Replying to myself for posterity ... As so often seems to be the case, my difficulties were due to that recurring issue, "You're

[systemd-devel] [networkd] Unable to set MTU with .link file

2017-06-08 Thread Ian Pilcher
I've also created a drop-in for systemd-networkd that sets SYSTEMD_LOG_LEVEL=debug. A full boot log with these settings can be found at: http://www.penurio.us/journal.txt Any ideas or debugging techniques very much appreciated. -- ======

[systemd-devel] [networkd] Unable to set MTU with .link file

2017-06-08 Thread Ian Pilcher
I've also created a drop-in for systemd-networkd that sets SYSTEMD_LOG_LEVEL=debug. A full boot log with these settings can be found at: http://www.penurio.us/journal.txt Any ideas or debugging techniques very much appreciated. -- ======

Re: [systemd-devel] Renaming interfaces with systemd.link

2017-03-31 Thread Ian Pilcher
ple trying to figure out why .link files with this sort of name don't work. -- ==== Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented fr

Re: [systemd-devel] Temporarily stopping a service while oneshot is running

2017-03-21 Thread Ian Pilcher
On 03/21/2017 08:09 AM, Mantas Mikulėnas wrote: Didn't NSS switch to sqlite for precisely that reason? Yes they did. Unfortunately, this is a FreeIPA server, which still uses the legacy Berkeley DB format. -- Ian

[systemd-devel] Temporarily stopping a service while oneshot is running

2017-03-21 Thread Ian Pilcher
this.) -- Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented frien

Re: [systemd-devel] SELinux type transition rule not working

2017-03-03 Thread Ian Pilcher
now. sepolicy generate --init -n squoxy /usr/local/bin/squoxy Yet another tool that I've never heard of before. So much outdated info on SELinux out there. :-( -- ==== Ian Pilcher areq

Re: [systemd-devel] SELinux type transition rule not working

2017-03-03 Thread Ian Pilcher
On 03/03/2017 10:45 AM, Simon Sekidde wrote: Ian do you have a copy of this custom policy somewhere? https://github.com/ipilcher/squoxy/blob/master/squoxy.te -- Ian Pilcher arequip

Re: [systemd-devel] SELinux type transition rule not working

2017-03-03 Thread Ian Pilcher
oot? I do so love non-deterministic computers. :-/ -- ============ Ian Pilcher arequip...@gmail.com "I

Re: [systemd-devel] SELinux type transition rule not working

2017-03-03 Thread Ian Pilcher
On 03/02/2017 12:12 AM, Jason Zaman wrote: On Wed, Mar 01, 2017 at 05:51:01PM -0600, Ian Pilcher wrote: On 03/01/2017 05:28 PM, Ian Pilcher wrote: Per Lennart's response, systemd *should* be honoring the file context rules when creating the directory. It's almost as if the directory is being

Re: [systemd-devel] SELinux type transition rule not working

2017-03-01 Thread Ian Pilcher
On 03/01/2017 05:28 PM, Ian Pilcher wrote: Per Lennart's response, systemd *should* be honoring the file context rules when creating the directory. It's almost as if the directory is being created with the proper context, but something is changing it after the fact. I have absolutely no idea

Re: [systemd-devel] SELinux type transition rule not working

2017-03-01 Thread Ian Pilcher
ter the fact. I have absolutely no idea what that might be, though. -- ======== Ian Pilcher arequip...@gmail.com "I grew

[systemd-devel] SELinux type transition rule not working

2017-03-01 Thread Ian Pilcher
uoxy What am I doing wrong? -- ======== Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg inve

Re: [systemd-devel] Non-root service with CAP_NET_RAW

2017-03-01 Thread Ian Pilcher
etcap /sbin/ping" as a fully standalone example, iirc it uses "cap_foo=eip" for this.) Yup. cap_net_raw+ep seems to work by itself. Thanks! -- ======== Ian Pilcher arequip...@g

[systemd-devel] Non-root service with CAP_NET_RAW

2017-02-28 Thread Ian Pilcher
do I need to do? Thanks! -- ======== Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg inve

[systemd-devel] [networkd] Mixing DHCP & static IPs on 1 interface

2017-02-21 Thread Ian Pilcher
Any ideas? -- ======== Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg inve

Re: [systemd-devel] Adding "After=network-online.target" via drop-in

2017-02-19 Thread Ian Pilcher
add at least some level of difficulty for a hypothetical attacker. Always good to remember this counter-intuitive (IMO) behavior. -- Ian Pilcher arequip...@gmail.com "I gr

[systemd-devel] Adding "After=network-online.target" via drop-in

2017-02-18 Thread Ian Pilcher
le contain: After=network.target sshd-keygen.target network-online.target Or is this sufficient? After=network-online.target Thanks! -- ======== Ian Pilcher arequip...@gmail.com

[systemd-devel] [SOLVED] Re: udev rule for GPIO "chip"

2016-12-17 Thread Ian Pilcher
On 12/17/2016 10:59 AM, Ian Pilcher wrote: I am trying to write a udev rule that will match a GPIO "chip" (not a particular GPIO). The device in question is: # udevadm info -q all -p /sys/devices/pci:00/:00:1f.0/gpio_ich.1.auto/gpio/gpiochip195 P: /devices/pci:00/00

[systemd-devel] udev rule for GPIO "chip"

2016-12-17 Thread Ian Pilcher
; with the same lack of success.) What am I doing wrong? -- ============ Ian Pilcher arequip...@gmail.com &qu

[systemd-devel] [SOLVED] Re: [networkd] Set MTU of disconnected OVS bridge

2016-04-09 Thread Ian Pilcher
On 04/01/2016 05:04 AM, Lennart Poettering wrote: On Thu, 24.03.16 09:52, Ian Pilcher (arequip...@gmail.com) wrote: I have a "disconnected" Open vSwitch on my system named ovs1. By "disconnected" I mean that it is not connected to any physical interface, bond, etc.; it e

Re: [systemd-devel] [networkd] Set MTU of disconnected OVS bridge

2016-03-30 Thread Ian Pilcher
/virtual/net/ovs1 (net) ACTION=add DEVPATH=/devices/virtual/net/ovs1 IFINDEX=88 INTERFACE=ovs1 SEQNUM=4240 SUBSYSTEM=net -- Ian Pilcher arequip...@gmail.com "I gr

[systemd-devel] [networkd] Set MTU of disconnected OVS bridge

2016-03-24 Thread Ian Pilcher
[Install] WantedBy=multi-user.target Can anyone think of a better way? -- ======== Ian Pilcher arequip...@gmail.com "I grew up before Mark Zucke

Re: [systemd-devel] Block device shutdown "hook"

2015-10-16 Thread Ian Pilcher
! -- Ian Pilcher arequip...@gmail.com "I grew up before Mark Zuckerberg invented frien

[systemd-devel] Block device shutdown "hook"

2015-10-15 Thread Ian Pilcher
lock device? Thanks! -- ======== Ian Pilcher arequip...@gmail.com "I grew up before Mark Zucke

Re: [systemd-devel] [HEADSUP] nspawn/networkd: moving from iptables to nftables

2015-06-01 Thread Ian Pilcher
Is this going to make nspawn/networkd fundamentally incompatible with distributions that use iptables-based tools (such as firewalld)? -- Ian Pilcher arequip...@gmail.com I

Re: [systemd-devel] How to wait for specific interface/IP?

2015-05-27 Thread Ian Pilcher
On 05/23/2015 11:03 AM, Ian Pilcher wrote: Is there a simple way to make a service require that a specific network interface/IP address be active? I have a manually set up bridge and dnsmasq configuration for my VM traffic, but dnsmasq is getting started before NetworkManager has configured

[systemd-devel] How to wait for specific interface/IP?

2015-05-23 Thread Ian Pilcher
to the bridge's IP address. TIA! -- Ian Pilcher arequip...@gmail.com I grew up before Mark Zuckerberg invented friendship

Re: [systemd-devel] networkd-218 seems to ignore .link files

2015-04-20 Thread Ian Pilcher
? (The systemd.network(5) doesn't list it.) -- Ian Pilcher arequip...@gmail.com I grew up before Mark Zuckerberg invented friendship

Re: [systemd-devel] networkd-218 seems to ignore .link files

2015-04-20 Thread Ian Pilcher
On 04/20/2015 01:06 PM, Lennart Poettering wrote: On Mon, 20.04.15 13:02, Ian Pilcher (arequip...@gmail.com) wrote: I would love to be able to set the MTU of a physical interface in a .network file. Is this possible? (The systemd.network(5) doesn't list it.) Yes, this is supported via MTU

Re: [systemd-devel] systemd-networkd and bonding config

2015-03-05 Thread Ian Pilcher
On 03/05/2015 09:31 AM, Michał Bartoszkiewicz wrote: You can use options bonding max_bonds=0 to disable the creation of bond0. Now there's a poorly documented (and named) module parameter! -- Ian Pilcher

Re: [systemd-devel] systemd-networkd and bonding config

2015-03-04 Thread Ian Pilcher
\ $CMDLINE_OPTS; /usr/sbin/ip link set dev bond0 down; \ /usr/sbin/ifrename -c /dev/null -i bond0 -n FOO /dev/null (Or an equivalent udev rule) -- Ian Pilcher arequip

Re: [systemd-devel] networkd link file not setting MTU

2015-01-25 Thread Ian Pilcher
On 01/21/2015 03:11 PM, Tom Gundersen wrote: On Wed, Jan 21, 2015 at 8:50 PM, Ian Pilcher arequip...@gmail.com wrote: I found my problem: [root@localhost ~]# cat /usr/lib/systemd/network/99-default.link [Link] NamePolicy=kernel database onboard slot path MACAddressPolicy=persistent It looks

Re: [systemd-devel] networkd link file not setting MTU

2015-01-21 Thread Ian Pilcher
/network/98-eth0.link makes it work. -- Ian Pilcher arequip...@gmail.com I grew up before Mark Zuckerberg invented friendship

[systemd-devel] networkd link file not setting MTU

2015-01-20 Thread Ian Pilcher
packets 288 bytes 33908 (33.1 KiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 Any idea what I'm missing? -- Ian Pilcher arequip...@gmail.com I grew up

Re: [systemd-devel] Need help with a systemd/mdadm interaction.

2013-11-12 Thread Ian Pilcher
. -- Ian Pilcher arequip...@gmail.com Sent from the cloud -- where it's already tomorrow

Re: [systemd-devel] Modifying kernel vars through sysctl.d

2013-06-21 Thread Ian Pilcher
. -- Ian Pilcher arequip...@gmail.com Sometimes there's nothing left to do but crash and burn...or die trying. ___ systemd

Re: [systemd-devel] RFC: Predictable Network Interface Names

2013-05-22 Thread Ian Pilcher
.) -- Ian Pilcher arequip...@gmail.com Sometimes there's nothing left to do but crash and burn...or die trying

Re: [systemd-devel] RFC: Predictable Network Interface Names

2013-05-22 Thread Ian Pilcher
and it still created ifcfg- files with the systemd-provided names? -- Ian Pilcher arequip...@gmail.com Sometimes there's nothing left to do but crash and burn...or die trying

Re: [systemd-devel] RFC: Predictable Network Interface Names

2013-05-21 Thread Ian Pilcher
On 01/08/2013 12:27 PM, Lennart Poettering wrote: On Tue, 08.01.13 12:19, Ian Pilcher (arequip...@gmail.com) wrote: Will there still be a way to turn this off from the kernel command line? (I don't see anything on the wiki page.) biosdevname had this, and we have been thinking of adding

Re: [systemd-devel] Trusting systemd vs. trusting daemons

2013-05-17 Thread Ian Pilcher
systemd. It's really: Trusting systemd vs. trusting systemd AND rsync -- Ian Pilcher arequip...@gmail.com Sometimes there's nothing left to do but crash and burn...or die trying

Re: [systemd-devel] [PATCH 1/2] RFC: util: Avoid memory allocations for formatting paths

2013-04-02 Thread Ian Pilcher
-- Ian Pilcher arequip...@gmail.com Sometimes there's nothing left to do but crash and burn...or die trying

Re: [systemd-devel] network/openvswitch dependency loop/deadlock

2013-02-08 Thread Ian Pilcher
. -- Ian Pilcher arequip...@gmail.com Sometimes there's nothing left to do but crash and burn...or die trying

Re: [systemd-devel] network/openvswitch dependency loop/deadlock

2013-02-08 Thread Ian Pilcher
note from last month. So thanks for the cluebat! -- Ian Pilcher arequip...@gmail.com Sometimes there's nothing left to do but crash and burn...or die trying

Re: [systemd-devel] vncserver@.service

2013-01-25 Thread Ian Pilcher
On 01/23/2013 08:59 AM, Reindl Harald wrote: and why do you not use the User= and Group= options? ISTR reading that runuser was added because User= and Group= don't actually log in, which is required by vncserver. -- Ian