Hi,
I have OpenVPN setup to connect to an intranet. The setup scripts push
to systemd-resolved a DNS configuration for the intranet including the
list of routing domains. This makes sure that the names from those
domains are only resolved using nameservers from the intranet.
But when VPN is swit
Hi,
the man page for systemd.exec tells that for EnvironmentFile:
The files listed with this directive will be read shortly before the
process is executed (more specifically, after all processes from a
previous unit state terminated. This means you can generate these
files in one unit state, and
On 7 June 2018 at 10:35, Lennart Poettering wrote:
> Nah, daemon() does not write PID files, you have to do that in your
> own code.
As daemon() calls _exit() (not even exit()) in the parent after the
fork, the only way to synchronize the pid writing is not to use the
daemon() at all and inline d
On 18 May 2018 at 19:37, Lennart Poettering wrote:
> On Do, 17.05.18 22:54, Igor Bukanov (i...@mir2.org) wrote:
> Well, no. The protocol is clear, and what we do is pretty close to
> black magic, and still racy in many ways.
>
> I mean, broken behaviour is still broken behavi
Hi,
I need to log to the journal with custom tags from a service that only
supports logging to syslog without any customization or logging to a
file. I cannot use /dev/stderr as the logging is done from a child
process that the main service process starts with /dev/stderr
redirected. I worked arou
On 17 May 2018 at 19:23, Lennart Poettering wrote:
> So yes, this is a bug in nginx. They really should fix that. And this
> is not only broken when you use systemd, but on sysvinit too, as a
> command like this would likely fail there too: "service nginx start
> service nginx status", as the sta
On 17 May 2018 at 11:58, Mantas Mikulėnas wrote:
> this would be anyways broken because systemd reads the PIDFile once at
> start to dtermine MAINPID and if MAINPID goes away the service fails
This is not true as with PIDFile systemd does pick up the new process
as a new main without restarting t
On 17 May 2018 at 12:07, Michael Chapman wrote:
> It _is_ better for the PID file to be written out before the initial
> process exits, but systemd will handle things correctly even if they
> happen the other way around. Essentially the service won't be considered
> to have completed activation un
On 17 May 2018 at 11:58, Mantas Mikulėnas wrote:
> Have you tried without the PIDFile= setting at all?
As far as I can see that breaks live updates that nginx supports where
it starts a new process and workers and then gracefully terminates the
old main.
Regards, Igor
___
dering the unit ready?
Regards, Igor Bukanov
___
systemd-devel mailing list
systemd-devel@lists.freedesktop.org
https://lists.freedesktop.org/mailman/listinfo/systemd-devel
Lennart Poettering wrote:
> One option could be to add --same-network= or so to nspawn
It seems it would be better to refer to the service unit that executed
nspawn, not the container running in the namespace created with
nspawn. This way I can refer to that unit using a stable name. Another
alt
Hello,
I am trying to see how to implement with systemd-nspawn a version of
docker's pod when a group of very lightweight containers use a
loopback interface or unix sockets to communicate with each other and
a shared network interface to communicate with the outside world.
Otherwise the container
On 22 January 2016 at 10:38, Colin Guthrie wrote:
...
>> On Fri, 15.01.16 10:33, Igor Bukanov (i...@mir2.org) wrote:
>>> I suppose I already can do with service ExecStartPost, ExecStart hooks
>>> for resolved, but this is rather hackish as I do not know if resolved
>&
Hi,
currently if one runs systemd-resolved, then /etc/resolv.conf should
be symlinked to /run/systemd/resolve/resolv.conf . Is it possible
instead to add an option for resolved to bind-mount /etc/resolv.conf
into the real file when it starts?
This way stopping or disabling resolved will not req
Hi,
I have an automount unit that mounts sshfs filesystem via
corresponding mount unit. Without recently introduced TimeoutIdleSec
in [Automount] this works as expected even when ssh cannot connect to
the host.
For example, if I disconnect the network and try to `ls mount-point`,
I get expected:
On 18 November 2015 at 13:23, Lennart Poettering wrote:
> The problem is with actually invoking processes such as the fuse.sshfs
> one as a non-root user.
But in my case there are no non-root processes! uid/gid options is
used just for *ownership of files and directories* under the mount
point, t
On 18 November 2015 at 12:28, Lennart Poettering wrote:
> We don't support that. Invoking user processes from a system context
> is something we generally avoid.
Could you clarify how this is related to an ability to invoke a user
process? For example, I can explicitly pass uid=1000,gid=1000 as a
Hello,
I am trying to translate an autofs map into systemd unit files, but I
could not see how to pass to the mount command an option refering to
the user who accessed the mount dir. For example, the automap
contains:
/mount/dir -fstype=fuse.sshfs,...,id=$UID,gid=$GID remote_user@host:/dir
which
Hello,
forthcoming VirtualBox 5.0 hypervisor (currently at RC1) supports
paravirtualization using Hyper-V or KVM interfaces. When the latter is
used with a linux guest then systemd-detect-virt prints kvm. I suppose
at least the manual page for systemd-detect-virt should be updated to
indicate that
On 17 June 2015 at 15:27, Lennart Poettering wrote:
> To hook up local name service
> clients people should use the "nss-resolve" NSS module, which ensures
> that gethostbyname() and friends use resolved as backend.
I suppose then non-glibc clients should deal with that on its own. I
thought conv
Hello,
perhaps I missed something, but it seems that systemd-resolved cannot
be configured to serve the same role as dnsmasq and be a DNS server
for local machine. I.e. I cannot just have nameserver 127.0.0.1 in
/ertc/resolv.conf and get LLMNR resolution working for progams that
only use nameserv
On 14 June 2015 at 12:22, Andrei Borzenkov wrote:
> So it can be discussed what should be returned in this case, but in any
> case "systemctl is-enabled" is not expected to return "enabled-runtime"
> here.
Indeed, I see that it should not be `enabled-runtime"` as the unit
does not contain [Instal
On 14 June 2015 at 12:10, Andrei Borzenkov wrote:
> Not really. systemctl enable|disable|is-enabled explicitly work on
> links defined by [Install] section only.
This is not true. According to systemctl is-enabled man page for
services without [Install] the command should succeed and print
static
, /usr/lib64, /etc/ /run/), I use the .conf
fragment as there the Wants does not require to specify an absolute
path.
On 14 June 2015 at 11:52, Michael Biebl wrote:
> 2015-06-14 11:17 GMT+02:00 Igor Bukanov :
>> Hello,
>>
>> I noticed that running `systemctl is-enabled f
Hello,
I noticed that running `systemctl is-enabled foo.service` against a
service written by a generator fails with a puzzling error message:
Failed to get unit file state for foo.service: No such file or directory
when I expected that the command succeeds and prints enabled-runtime
as the unit
On 19 May 2015 at 12:08, Lennart Poettering wrote:
> On Tue, 19.05.15 08:22, Igor Bukanov (i...@mir2.org) wrote:
>> In any case, I thought that if I add
>> a dependency like After=my-config-is-ready.target for most default
>> services that can be configured, load a c
On 18 May 2015 at 17:18, Lennart Poettering wrote:
> Well, my recommendation is to avoid daemon-reloads during the normal
> boot process if possible, since there are some unresolved issues:
What is then a canonical way to implement initialization when the
configuration comes from a drive that is
On 18 May 2015 at 05:35, Andrei Borzenkov wrote:
>
>
> What exactly do you mean? It has RefuseManualStart set?
I meant that, for example, A is enabled and contains Requires=B and
this is the only dependency that causes B to run and then B alters or
even disables A and calls systemctl daemon-reloa
Hello,
suppose a unit B runs just because another unit A contains Requires=B and
After=B. When B runs, it changes A like adding new dependencies, altering
Exec command etc and then B calls systemctl daemon-reload. Then the systemd
uses the new definition for A, right?
In particular, if according
activating state indicating that port forwarding is established.
So I need to implement own wait or polling.
On 31 March 2015 at 05:51, Andrei Borzenkov wrote:
> В Mon, 30 Mar 2015 09:48:25 +0200
> Igor Bukanov пишет:
>
> > As I understand, the systemd-run utility returns immedi
As I understand, the systemd-run utility returns immediately even with
--service-type=forking. What is the proper way then to wait using a shell
until the main service process forks the child and exists signaling
initialization?
___
systemd-devel mailing
If during the boot the network is configured with DHCP but later is
configured with a static address with a new .network file, then
systemctl restart networkd still keeps the old address obtained with
DHCP. This is expected according to documentation. Is there a way to
force with networkd to fully
nnected -o "_$status" = "_connected (site only)" ]; then
systemctl start my-service
else
systemctl stop my-service
fi
On 22 January 2015 at 19:42, Dan Williams wrote:
> On Thu, 2015-01-22 at 19:51 +0300, Andrei Borzenkov wrote:
>> В Thu, 22 Jan 2015 16:44:52 +0100
&
It is not clear from the systemd.unit manual page what happens when
foo.service.d/bar.conf sets an option like Service/ExecStartPre that
can be specified multiple times. From experimenting I see that *.conf
files supply additional values to the option and to overwrite or
remove already given values
e becomes "connected", but on that transition from "connected
(site only)" to "connected" the dispatcher script is not called.
What is exactly connected (site only) ?
On 22 January 2015 at 19:42, Dan Williams wrote:
> On Thu, 2015-01-22 at 19:51 +0300, Andrei Borzenko
For a service that should be shutdown when network is not available, I
tried to use Requires=network-online.target . However, on Fedora 21
with NetworkManager that does not work. When I switch off WiFi, the
only connection on my laptop that can configure default IP route and
setup /etc/resolv.conf,
On 5 January 2015 at 15:08, Daniel J Walsh wrote:
> chcon -t bin_t /usr/bin/rsync, should stop SELinux from interfering, or
> set the rsync_client boolean.
>
> http://danwalsh.livejournal.com/61646.html
Yes, that solved the problem. Now, why there were no any error
messages about discarded rsync
tl resumed> , 0x7fff79087a80) = -1 ENOTTY (Inappropriate
ioctl for device)
This ioctl is not present in rsync with PID 4984.
On 5 January 2015 at 13:04, Mantas Mikulėnas wrote:
> On Mon, Jan 5, 2015 at 1:44 PM, Igor Bukanov wrote:
>> On 5 January 2015 at 12:21, Mantas Mikulėna
On 5 January 2015 at 12:21, Mantas Mikulėnas wrote:
> Run it under `strace -D` – the problem may be related to rsync's
> parent being pid1.
Under strace -D the problem disappeared as well. The problem also
disappears if I run rsync like in:
ExecStart=/usr/bin/bash -c 'exec /usr/bin/rsync -vv /et
original /usr/bin/rsync binary, the problem also
disappeares.
Any clues?
On 4 January 2015 at 21:06, Igor Bukanov wrote:
> Hello,
>
> I have a strange case when there is no output in the journal from
> rsync when the command is run from a service. This is on Fedora 21
> w
Hello,
I have a strange case when there is no output in the journal from
rsync when the command is run from a service. This is on Fedora 21
with systemd 217.
Consider the following trivial test unit:
# cat /etc/systemd/system/test.service
[Service]
ExecStart=/usr/bin/rsync -vv /etc/hostname /tmp
Thanks again! I have completely missed this new feature of ssh.
On 2/3/13, Mantas Mikulėnas wrote:
> On Wed, Jan 30, 2013 at 12:52 AM, Igor Bukanov wrote:
>> On 29 January 2013 00:25, Mantas Mikulėnas wrote:
>>> systemd only handles accepting connections, but does not copy an
I would like to forward-on-demand a local port to remote one over ssh.
Currently as a hack I use a socket unit with accept=yes together with
a service template unit that looks like:
[Service]
ExecStart=-/usr/bin/ssh options sever nc localhost port
StandardInput=socket
This works, but rather ineff
43 matches
Mail list logo