about summary refs log tree commit diff
Commit message (Collapse)AuthorAgeFilesLines
* zzz.8: ZZZ_MODE can be 'hibernate' too. HEAD 20231124 masterRoberto Ricci2023-11-051-1/+13
| | | | Also mention ZZZ_HIBERNATE_MODE
* core-services/99-cleanup.sh: also create lastlogLeah Neukirchen2023-06-161-0/+3
|
* shutdown.d/90-kexec.sh: check for +x bit on noexec mounts properlyLeah Neukirchen2023-06-151-1/+4
| | | | | | | | The fix in 79675bcb1a was insufficient, as test -x doesn't work on noexec mount (which /run often is), due to using access(X_OK) and not checking the actual stat. Use find instead. Found and fixed by feranur.
* functions: inform user that encrypted volume was successfully closed 20230413wolfboxpen2023-04-131-1/+1
| | | | | effectively informs user that encryption key(s) have been securely erased prior to potentially rebooting which would leave memory energized
* Makefile: create /etc/runit/shutdown.dclassabbyamp2023-04-131-0/+1
| | | | oops
* Makefile: install shutdown.d/*.shclassabbyamp2023-04-131-0/+1
|
* crypt.awk: enable dm-crypt perf-* optionslemmi2023-04-131-0/+4
| | | | | | | | | This enables handling of the following options: * perf-same_cpu_crypt * perf-submit_from_crypt_cpus * perf-no_read_workqueue * perf-no_write_workqueue
* shutdown.d/90-kexec.sh: only try to run kexec on rebootPhilipp David2023-04-131-1/+1
|
* core-services/01-static-devnodes: simplify parsingclassabbyamp2023-04-131-1/+1
| | | | fixes #82
* rc.local, rc.shutdown: add shebang.Leah Neukirchen2023-02-082-0/+2
|
* Split run-level 3 script into separate files.Bas Ploeger2023-01-0910-48/+45
|
* functions: fix indentationCameron Nemo2022-12-291-17/+17
|
* cryptsetup,crypttab - Optional performance enhacement for fast ssdswolfboxpen2022-12-141-0/+2
| | | | | Reference: https://wiki.archlinux.org/title/Dm-crypt/Specialties#Disable_workqueue_for_increased_solid_state_drive_(SSD)_performance adds no-read-workqueue,no-write-workqueue options.
* seedrng: incorporate various improvementsJason A. Donenfeld2022-04-241-73/+120
| | | | | | There have been a number of subtle improvements and cleanups to seedrng, including using openat and locking the directory fd instead of a separate lock file. Also various stylistic cleanups.
* functions/detect_virt: use container env variable 20220329Cameron Nemo2022-03-291-5/+2
| | | | Fixes #6
* seedrng: fix up exit path and styleJason A. Donenfeld2022-03-291-6/+8
| | | | A few days of cooking have yielded a few trivial cleanups.
* Activate mdadm arrays on bootAntonio Gurgel2022-03-271-0/+5
|
* Print message when seeding RNGJason A. Donenfeld2022-03-262-0/+2
|
* core-services/00-pseudofs: mount /sys/firmware/efi/efivars when appropriateLeah Neukirchen2022-03-251-0/+4
|
* Use seedrng for seeding the random number generatorJason A. Donenfeld2022-03-256-4/+446
| | | | | | | | | | | | The RNG can't actually be seeded from a shell script, due to the reliance on ioctls. For this reason, the seedrng project provides a basic script meant to be copy and pasted into projects like void-runit and tweaked as needed: <https://git.zx2c4.com/seedrng/about/>. This commit imports it into void-runit and wires up the init scripts to call it. This also is a significant improvement over the current init script, which fails to remove seed files that have already been used, or to ratchet them forward.
* Fix missing dashTristan2021-08-141-1/+1
| | | Fixes #77
* Support pure v2 cgroup mounts 20210314ap4y2021-03-132-4/+37
| | | | | | | | | | | | | Some of the tooling that rely on cgroups (notably podman, runc and crun) enable cgroup2 mode only if /sys/fs/cgroup has a v2 magic number. This commit introduces configuration option that controls the way cgroup is mounted, 3 modes are supported: - hybrid: current mode with v1 and v2 mounted - unified: v2 only mode - legacy: v1 only mode This is modeled after OpenRC: https://github.com/OpenRC/openrc/blob/72df51e17ba0e1a0f94451b4bbfb338288c4625c/init.d/cgroups.in#L121-L129
* vlogger: behave like logger(1) if argv[0] is "logger"Duncan Overbruck2021-03-132-8/+17
|
* vlogger: pass empty tag to /etc/vlogger if tag is NULLDuncan Overbruck2021-03-131-1/+1
|
* halt: switch __progname tests to use strncmpColin Booth2021-03-101-3/+3
| | | | | | | | | | | | | The pending change to allow for alternate init power controls requires that the halt binary provided here be somewhat less strict in its argv[0] matching in order to allow for halt, reboot, and poweroff to still function in situations where the binary has been renamed. This switches from strcmp(__progname, "string") to strncmp(__progname, "string", len), where len is the name of the power command sans any suffix. Signed-off-by: Colin Booth <colin@heliocat.net>
* core-services/03-filesystems.sh: respect auto_activation_volume_listAndrew Benson2021-02-121-2/+2
| | | | Closes #64.
* vlogger: default to daemon.notice if linked as runit log serviceDuncan Overbruck2021-02-122-1/+7
|
* services/agetty-generic: use chpst -P instead of setsidColin Booth2021-02-121-1/+1
| | | | | | | | | | | | | The setsid program has a surprise gotcha of backgrounding a process if it already happens to be the session leader. This is ok for runit which never sets the service as a session leader but does not work with other supervisors which might. chpst provides the same setsid(2) functionality without also having the gotcha. Be aware that chpst has issues around gidlist squashing when using the -u or -U options without explicit passing. This behavior is not triggered in this case since chpst is being run as root and not being asked to drop privileges.
* Use global substitution on commas in modules-loadneeshy2021-01-171-1/+1
| | | | Without this only the first occurrence is replaced
* core-services/03-filesystems.sh: load keys as necessary when mountingAndrew J. Hesford2021-01-031-1/+1
|
* zzz: suspend is S1Leah Neukirchen2020-10-012-2/+2
|
* rc.conf: add note recommending /etc/localtimeÉrico Rolim2020-07-281-1/+7
| | | | | Recommend users to symlink their timezone to /etc/localtime instead of setting TZ in /etc/rc.conf. List disadvantages of setting it in rc.conf.
* ctrlaltdel: trigger a reboot properly. 20200720Érico Rolim2020-07-201-1/+4
| | | | | | | /run/runit/{stopit,reboot} should have their perms set to 100 by ctrlaltdel, before runit signals itself with SIGCONT, in order to trigger a reboot. This script can be changed by a user to perform different actions. The comments in it explain what each file is for.
* 3: remove /run/runit/reboot handling.Érico Rolim2020-07-201-4/+0
| | | | | | | | runit uses the permissions in the /etc/runit/reboot file to determine whether it's going to perform a halt or reboot action. This conditional in 3 meant that touching the reboot file, even with 000 perms, would lead to a reboot, which goes agains what is expected according to the runit documentation.
* 1: only create /run/runit directory.Érico Rolim2020-07-201-2/+4
| | | | | | | | | | The 100 permission in /run/runit/stopit made it so that signaling runit with SIGCONT would shut the system down. To achieve the correct behavior, we should create the stopit and reboot files with 000 perms, and allow their permissions to be set correctly by calls to `init 0` or `init 6` or by /etc/runit/ctrlaltdel. 1
* core-services/03-filesystems.sh: initialize ZFS even with no cachefileAndrew J. Hesford2020-07-171-3/+8
|
* crypt.awk: support PARTUUID in /etc/crypttabAndrew J. Hesford2020-07-141-1/+1
|
* core-services/00-pseudofs.sh: mount cgroup v2 unified file systemAndrew J. Hesford2020-07-121-0/+4
|
* vlogger.8: fix typojacereda2020-01-231-1/+1
|
* Merge pull request #13 from josephg5/patch-3Juan RP2019-12-281-1/+1
|\ | | | | Update README.md
| * Update README.mdJoseph George2018-11-111-1/+1
| | | | | | list not the link, but inside the linked dir.
* | Merge pull request #26 from Duncaen/vlogger-loggerJuan RP2019-12-282-19/+45
|\ \ | | | | | | Vlogger
| * | vlogger: force to use syslog if message arguments are givenDuncan Overbruck2019-08-252-11/+32
| | |
| * | vlogger.8: fix -f descriptionDuncan Overbruck2019-08-251-1/+3
| | |
| * | vlogger: no need to duplicate the tag name from service pathDuncan Overbruck2019-08-251-1/+1
| | |
| * | vlogger: fix uninitialized value warnings found with clang scan-buildDuncan Overbruck2019-08-251-1/+1
| | |
| * | vlogger: use the same defaults as logger(1)Duncan Overbruck2019-08-252-5/+8
| | |
* | | Merge pull request #30 from CameronNemo/urandomJuan RP2019-12-281-1/+0
|\ \ \ | | | | | | | | fix(urandom): avoid uninitialized read during boot
| * | | fix(urandom): avoid uninitialized read during bootCameron Nemo2019-10-031-1/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Regenerating the stored seed was an attempt to prevent hard shutdowns from leading to seed reuse. Unfortunately, this practice depletes any entropy that was added by the seed. Furthermore on newer kernels which do not credit entropy added from userspace, the operation is often an uninitialized read of urandom.
* | | | Merge pull request #31 from CameronNemo/sysctloctJuan RP2019-12-281-5/+9
|\ \ \ \ | | | | | | | | | | fix(sysctl): behave more like sysctl --system