| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Apparently, the pager being able to execute commands takes some people
by surprpise, making their poor configuration choices have consequences.
Let's pray for some mercy on their souls with the LESSECURE variable,
which makes less less likely to conduct evil deeds.
Systemd also deals with this, but being systemd they make it as
complicated as possible. We just set it unconditionally, hoping nobody
wanted the extra functionality and they're in only for the scrolling.
If anyone minds they can just set LESSSECURE=0 and we'll leave it alone.
See also: SYSTEMD_PAGERSECURE in systemctl(1) manual.
|
|
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1556
|
|
nm_connectivity_check_start()
In file included from ./src/libnm-std-aux/nm-default-std.h:102,
from ./src/libnm-glib-aux/nm-default-glib.h:11,
from ./src/libnm-glib-aux/nm-default-glib-i18n-prog.h:13,
from ./src/core/nm-default-daemon.h:11,
from src/core/nm-connectivity.c:8:
src/core/nm-connectivity.c: In function ‘nm_connectivity_check_start’:
./src/libnm-std-aux/nm-std-aux.h:180:12: error: ‘reason’ may be used uninitialized in this function [-Werror=maybe-uninitialized]
if (expr) \
^
src/core/nm-connectivity.c:1055:29: note: ‘reason’ was declared here
const char *reason;
^~~~~~
|
|
The compiler may dislike this:
CC src/core/platform/tests/libNetworkManagerTest_la-test-common.lo
In function '_ip_address_add',
inlined from 'nmtstp_ip4_address_add' at ../src/core/platform/tests/test-common.c:1892:5:
../src/core/platform/tests/test-common.c:1807:63: error: array subscript 'NMIPAddr {aka const struct _NMIPAddr}[0]' is partly outside array bounds of 'in_addr_t[1]' {aka 'unsigned int[1]'} [-Werror=array-bounds]
1807 | peer_address->addr4,
| ~~~~~~~~~~~~^~~~~~~
../src/core/platform/tests/test-common.c: In function 'nmtstp_ip4_address_add':
../src/core/platform/tests/test-common.c:1886:36: note: object 'peer_address' of size 4
1886 | in_addr_t peer_address,
| ~~~~~~~~~~~~^~~~~~~~~~~~
...
Fixes: 06aafabf14e6 ('platform/test: add test adding IPv4 addresses that only differ by their peer-address')
|
|
|
|
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1555
|
|
Now the settings in the [global-dns] section are used *in addition* to
connection-specific ones. Only the global domains sections, when
valid, override connection settings. Update the man page to clarify
that.
Fixes: 1f0d1d78d2a2 ('dns-manager: always apply options from [global-dns]')
|
|
The global configuration now can be valid when there are no global
domains defined. The dnsmasq backend must process it and then, if
there is no global default domain, also process the per-connection
settings.
Fixes: 1f0d1d78d2a2 ('dns-manager: always apply options from [global-dns]')
|
|
|
|
git subtree pull --prefix src/c-stdaux git@github.com:c-util/c-stdaux.git main --squash
|
|
699c20de4e81 c-stdaux: workaround warning "-Wunused-value" in c_internal_assume_aligned()
193444c22c09 c-stdaux: workaround compiler error with clang 3.4 and __builtin_assume_aligned()
ed5fee49a3ec build: prepare v1.4.0
615c52daed67 Merge pull request #14 from dvdhrm/pr/load
32462ddc2ea5 c-stdaux: add c_load*() helpers
5878375d81ba c-stdaux: add c_assume_aligned()
git-subtree-dir: src/c-stdaux
git-subtree-split: 699c20de4e81f4b15786cb170340a87f69483f3d
|
|
The link object is no longer valid after the cache gets updated in
nm_platform_link_change().
Fixes: e02fd76d9fce ('platform: support changing link properties')
|
|
https://bugzilla.redhat.com/show_bug.cgi?id=2158328
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1541
|
|
OVS interfaces are special: the kernel link is created only after the
device is attached to the ovs-port, and as with all ports this happens
during stage3(ip-config). That means that the link doesn't exist
during stage2(config); therefore, explicitly update link properties
once the link appears.
|
|
Set link properties during activation and restore the previous values
on deactivation.
|
|
Add support in platform for changing the newly introduced link
properties.
|
|
Introduce a new "link" setting that holds properties that are related
to the kernel link.
|
|
It's another place to change when adding a new setting and it doesn't
seem useful to assert that the number is exactly 54.
|
|
A {bond, bridge, team, ovs-port} port profile should support a "match"
setting.
|
|
There are many functions to replace properties of a link
(link_set_address, link_set_mtu, link_set_name, link_change,
etc.). Eventually, they will be replaced by a function that does
everything and removes all the code duplication.
That function will be named link_change(); rename the current
link_change() to link_change_extra().
|
|
We need to set the ethtool and tc properties for assumed devices,
since they go through a normal activation. External devices should not
be touched by NM.
|
|
We are passing to the plugin only 'sett_flags', which is the bitmask
of flags to change and works together with 'sett_mask'; however,
plugins interpret that value as the new flags value. The result is
that if there is no change needed (0/0), the existing flags are lost.
Simple reproducer:
ip link add dummy1 type dummy
ip link set dummy1 up
ip addr add dev dummy1 fd01::12/64
sleep 1
# now, a external connection is created by NM
echo "BEFORE:"
cat /run/NetworkManager/system-connections/dummy1.nmconnection | grep "nm-generated\|volatile\|external"
# just add a new address to the interface to make it lose
# the external flag
ip addr add dev dummy1 172.25.42.1/24
sleep 1
echo "AFTER:"
cat /run/NetworkManager/system-connections/dummy1.nmconnection | grep "nm-generated\|volatile\|external"
Output:
BEFORE:
nm-generated=true
volatile=true
external=true
AFTER:
Fixes: d35d3c468a30 ('settings: rework tracking settings connections and settings plugins')
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1548
|
|
Fixes: 5afb323ed8d4 ('platform/tests: add test for nm_platform_link_set_bridge_info()')
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1552
|
|
nmcli: add WPA-EAP-SUITE-B-192 to SECURITY when ap is wpa-eap-suite-b-192
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1527
|
|
|
|
|
|
This commit changes setting values of said attributes from writing string to
sysfs to sending Netlink message.
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1499
|
|
The annotation is wrong. However, we don't generate
gtk-doc/introspection data for such internal code, so it doesn't really
matter.
|
|
|
|
|
|
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1545
|
|
|
|
Add overrides for properties constants of new objects to allow to match them with their
object type as it was the case for former objects.
Specify the types of properties with element-types.
Namespace Attributes so that they are logically sorted.
Remove several skips to allow to use the entirety of the visible methods.
|
|
Allows to use this function in GObject introspected languages.
Also workaround a current issue with the gtk-doc parser not taking nested
element-type into account.
|
|
Bindings compiling to C need to know which main header to include.
|
|
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1543
|
|
This will be used also for IPv4 addresses. Rename and make the function
more generally useful.
|
|
Request the extack_msg for nm_platform_ip_route_add() call. Note that we (currently)
don't do anything with it, however requesting it has no downsides. That is, the
message already is heap allocated in the lower layers, so this only affects whether
it will be returned up to nm_platform_ip_route_sync().
|
|
|
|
It is not clear how that information is relevant. Since it is also
only logged when building with a non-default configure option, this
doesn't seem useful. Drop it.
|
|
- unindent the code by "continue" the loop for the irrelevant case.
- fix indentation of comments.
- avoid unnecessary g_strdup() call if the extack message is NULL.
|
|
The extack can also be returned on success. In that case,
they are warnings. Log them, it might be useful.
|
|
Consistently name those variables and parameters "extack_msg".
The previous term "errmsg"/"msg" was not used consistently, and it
is also not clear what message this really is. For netlink, it
is well understood what Extended ACK means.
|
|
strlcpy()/g_strlcpy() has a well understood behavior. nla_strlcpy()
did not behave like that. Instead, it also used to always wipe the
remainder of the string, similar to what strncpy() would do.
True, if we do
nla_strlcpy(obj->link.name, tb[IFLA_IFNAME], IFNAMSIZ);
then we might want to clear the remainder and don't care about the
overhead of writing up to 14 bytes unnecessarily... However, actually
all callers of nla_strlcpy() either operate on a buffer that is already
pre-inialized with zero, or they really don't care about the
uninitialized memory after the string. So this was nowhere the desired
behavior.
Change nla_strlcpy() to not wipe the remainder of the buffer, so it behaves
mostly like strlcpy()/g_strlcpy() and as one would expect.
Add nla_strlcpy_wipe(), which on top of it also clears the remaining
buffer. In that aspect, it bears some similarities with strncpy(), but it
differs in other regards from strncpy (always NUL terminating and
returning the srclen). Yes, the name nla_strlcpy_wipe() is maybe
unfamiliar to the user, but it really is like nla_strlcpy() with the
addition to clear the buffer. That seems simple enough to understand
based on the name.
Note that all existing callers of nla_strlcpy() do not care about
clearing the memory, and the change in behavior is fine for them.
|
|
|
|
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/1549
|
|
Fixes: 766349879ed2 ('platform/trivial: add code comments for NMPGlobalTracker')
|
|
Fixes: 1cc3d00cb76b ('libnm/doc: list route attributes in `man nm-settings-nmcli`')
|
|
It was always a private typedef. Not meant to be used. This was left
over since commit e46d484fae9e ('libnm: hide NMSetting types from public
headers')
|
|
No need to do a deep clone. The strv array is not ever modified and we
pack it together in one memory allocation.
|
