07f0549ffe network: do not send ipv6 token to kernel
9d34e79ae8 systemd-mount: don't check for non-normalized WHAT for network FS
5af677680c core: set fs.file-max sysctl to LONG_MAX rather than ULONG_MAX (bsc#1142099)
29dda7597a random-util: eat up bad RDRAND values seen on AMD CPUs
eb6c17c178 util-lib: fix a typo in rdrand
829c20dc8e random-util: rename "err" to "success"
5442366fbf man: rework the description of Aliases and .wants/.requires directories
ae71c6f634 docs: typo in arg name replace-irreversible -> replace-irreversibly
09774a5fcb meson: make nologin path build time configurable
69ffeeb0b1 man: add note about systemctl stop return value
4cf14b5513 shared/conf-parser: say "key name" not "lvalue", add dot
4481ca7f86 shared/conf-parser: emit a nicer warning for something like "======"
46f3db894b shared/conf-parser: be nice and ignore lines without "="
7d928995f7 nspawn: fix memleak in argument parsing
7727e6c0ae resolve: fix memleak
7f32a81976 journal: properly read unaligned le64 integers
fa419099e5 activate: move array allocation to heap
815a9fef2a systemctl: print non-elapsing timers as "n/a" not "(null)"
a4fc3c88f1 factory: include pam_keyinit.so in PAM factory configuration
a453d63315 factory: add comment to PAM file, explaining that the defaults are not useful
d9a5a70a59 factory: tighten PAM configuration
5e2d3bf80b test: make sure colors don't confuse our test
5fe3be1334 wait-online: change log level
c49b6959d5 systemctl: emit warning when we get an invalid process entry from pid1 and continue
3c9f43eb03 systemctl: do not suggest passing --all if the user passed --state=
5964d1474e man: offline-updates: make dependence on system-update.target explicit
a04dd26e03 alloc-util: drop _alloc_ decorator from memdup_suffix0()
7c46a694ca man: add example for setting multiple properties at once
1d72789271 man: CPUShares= is so 2015
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1065
7e58b89136 udevd: change the default value of udev.children-max (again) (bsc#1107617)
- Add 0001-rc-local-generator-deprecate-halt.local-support.patch
/etc/init.d/halt.local support will removed from the next systemd
version (v243) so for now on warn (hopefully the few) users who rely
on this script so they have a chance to switch to systemd-shutdown
interface.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1064
All remaining packages have been fixed so they don't rely on the
insser-generator to generate proper deps. So let's drop it as all
services should carry the proper dependencies itself.
- Drop debug-only-remove-new-policies.patch
The new DBUS methods have been reviewed by the security team.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1063
f2459bf373 random-util: eat up bad RDRAND values seen on AMD CPUs
c90a2e9793 util-lib: fix a typo in rdrand
4db1cc9d46 random-util: rename "err" to "success"
981a62a102 random-util: hash AT_RANDOM getauxval() value before using it
64a9c3d918 random-util: use gcc's bit_RDRND definition if it exists
c5d6ecfdca random-util: rename RANDOM_DONT_DRAIN → RANDOM_MAY_FAIL
298d13df7e network: remove redunant link name in message
77cbde31f2 hwdb: Align airplane mode toggle key mapping for all Acer series
460f03794e Revert "hwdb: Apply Acer mappings to all Gateway and Packard Bell models"
fe9271ad84 test: return a non-zero return code when 'nobody' user doesn't exist
29d355e755 fstab-generator: Prevent double free of reused FILE*
f30f1adc11 meson: make source files including nspawn-settings.h depend on libseccomp
84bab914b8 alloc-util: don't use malloc_usable_size() to determine allocated size
5240972d8d units: drop reference to sushell man page
0a26de5e33 codespell: fix spelling errors
582de105c8 nspawn-expose-ports: fix a typo in error message
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1062
A temporary patch to suppress the new DBUS methods introduced by
v242 until they are reviewed and whitelisted by the secteam.
- Add a comment explaining why static enablement symlinks in /etc are suppressed
Also remove any /etc/systemd/system/*.requires/ symlinks for the
same reason.
- preset remote-cryptsetup.target during package installation
This target is supposed to be part of the targets that should be
enabled (or not depending on the presets) at package installation.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1060
430877e794 pam-systemd: use secure_getenv() rather than getenv() (bsc#1132348 CVE-2019-3842)
3cff2e6514 man: document that if the main process exits after SIGTERM we go directly to SIGKILL
26c4f7191c bus: fix memleak on invalid message
- systemd-coredump: generate a stack trace of all core dumps (bsc#1128832)
This stack trace is logged to the journal.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1058
7af53e005b sd-bus: if we receive an invalid dbus message, ignore and proceeed
92dcbfdd7f bus: move BUS_DONT_DESTROY calls after asserts
a83e7b3b43 automount: don't pass non-blocking pipe to kernel.
726127ea1d units: make sure initrd-cleanup.service terminates before switching to rootfs (bsc#1123333)
a6347a3cb6 core: Fix use after free case in load_from_path() (bsc#1121563)
22e2550222 strv: rework FOREACH_STRING() macro (bsc#1121563)
2ddd38f41a test,systemctl,nspawn: use "const char*" instead of "char*" as iterator for FOREACH_STRING()
c2c8333e0b strv: add new macro STARTSWITH_SET()
1db243a601 Update systemd-system.conf.xml (bsc#1122000)
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1051
Import a bunch of fixes from stable/v239-stable:
c8293f5af4 Revert "network: set DynamicUser= to systemd-networkd.service"
7f605592e6 Revert "resolve: enable DynamicUser= for systemd-resolved.service"
5a48e92e06 test: Fix networkd test for an already running service
36eae1688b Revert "timesyncd: enable DynamicUser="
3a11f24cf0 Revert "unit: drop After=systemd-sysusers.service from timesyncd"
23cfd15ce9 machinectl: fix verbosity of import-raw or friends
ba037daf29 Make bzip2 an optional dependency for systemd-importd
fb609d2721 pull: initialize libgcrypt before calling any functions provided by libgcrypt
c50857bc6b hwdb: remove stray 'i' in hwdb match string for the HP Spectre (#9571)
9a12fd17f5 man: Mention that paths in unit files must be fully normalized.
76fc2ab4a6 tree-wide: use instead of #ifdef for HAVE_*
fcc699c093 network: update log message
a4f497b2cd Use #if instead of #ifdef for ENABLE_GSHADOW
121c662eb8 man: add missing option for system.conf
564341146e core: add missing option and drop nonexistent option in system.conf
7082a3599f journal: add missing option in journald.conf
3c15efa9c1 basic: add missing comma in raw_clone assembly for sparc
4c210b6dce cryptsetup: Add dependency on loopback setup to generated units
c777fbbe3e journal-gateway: use localStorage["cursor"] only when it has valid value
c5b1bef639 journal-gateway: explicitly declare local variables
2361522ca6 analyze: actually select longest activated-time of services
3e810d92d9 sd-bus: fix implicit downcast of bitfield reported by LGTM
aef660a4cf resolvconf: fixes for the compatibility interface
06b3f54f50 install: fix error handling in is_symlink_with_known_name()
f70ab9a468 portable: fix error handling
d2c40d4e80 resolve: fix return value type of dns_answer_has_dname_for_cname()
6f684e0670 resolve: dns_scope_network_good() does not returns negative errno
15d83e1138 bus-util: fix error handling
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1050
89a9721a47 Revert "logind: become the controlling terminal process before restoring VT" (bsc#1120836)
c3a8dc821b pam_systemd: reword message about not creating a session
0ba0f5b3ef pam_systemd: suppress LOG_DEBUG log messages if debugging is off
- Import commit a3b059a8c60622e4ec30aabda93c6b41d0953dc4
9dbe9f12ec journal-remote: set a limit on the number of fields in a message (CVE-2018-16865 bsc#1120323)
61d569ab1b journal-remote: verify entry length from header
a08760b26c µhttpd: use a cleanup function to call MHD_destroy_response
43f46a1a3d journal-gateway: use _cleanup_ attribute to stop microhttpd daemon
437b0b2d01 journald: lower the maximum entry size limit to ½ for non-sealed fds
ac9e209710 journald: when processing a native message, bail more quickly on overbig messages
ce103705b9 journald: set a limit on the number of fields (1k) (CVE-2018-16865 bsc#1120323)
35538171c2 coredump: fix message when we fail to save a journald coredump
cfe247b555 basic/process-util: limit command line lengths to _SC_ARG_MAX
9d59e6f6ee journald: do not store the iovec entry for process commandline on stack (CVE-2018-16864 bsc#1120323)
8d650a68d4 journald: remove unnecessary {}
b608f532a4 coredump: remove duplicate MESSAGE= prefix from message
0dbb2dc066 vconsole-setup: fonts copy will fail if the current terminal is in graphical mode (bsc#1114933)
e501d65540 Revert "systemctl: when removing enablement or mask symlinks, cover both /run and /etc"
d3ea69961f fs-util: rename safe_transition() into unsafe_transition()
338470fdc9 tmpfiles: use CHASE_WARN in addition to CHASE_SAFE
d9ae1b30da fs-util: make chase_symlink() returns -ENOLINK when unsafe transitions are met
8b76594d1f fs-util: add new CHASE_WARN flag to chase_symlinks()
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1049
4474878178 udev-builtin-kmod: adjust logging
805534aff5 core: use the generic module_load() function
ac7e902530 shared/module-util: fix preexisting mixup with errno sign
415aa40793 udev-builtin-kmod: use the generic module_load() function
8a36b4bac6 Move module-util.h to src/shared/ and load_module() to libshared
999b910752 core/kmod-setup: restore comments
1f2b822a21 logind: stop managing VT switches if no sessions are registered on that VT
5ad8d374c5 terminal-util: introduce vt_release() helper
145d492490 logind: become the controlling terminal process before restoring VT (bsc#1101591)
d4b5dbc033 terminal-util: introduce vt_restore() helper
2e8af185f0 logind: make session_restore_vt() static
ff3048364f udev: downgrade message when we fail to set inotify watch up (bsc#1005023)
- Fix the test for figuring out if /etc/machine-id is writable in %post (bsc#1117063)
"test -w" always returns true for root user even if the writable
mode bits are not set. Fix this by testing the file mode bit value
instead.
- Move systemd-sysv-convert from /usr/sbin to /usr/lib/systemd
This tool is not supposed to be run by users.
- Import commit 8ae56af7802ef8f91fac64fa244d62a4468fbbd5
4474878178 udev-builtin-kmod: adjust logging
805534aff5 core: use the generic module_load() function
ac7e902530 shared/module-util: fix preexisting mixup with errno sign
415aa40793 udev-builtin-kmod: use the generic module_load() function
8a36b4bac6 Move module-util.h to src/shared/ and load_module() to libshared
999b910752 core/kmod-setup: restore comments
1f2b822a21 logind: stop managing VT switches if no sessions are registered on that VT
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1048
We have to keep support for UserTasksMax= for a while before
dropping it. This patch is supposed to do that and also to make
users aware of this change. It also hints how to configure that
differently.
- Import commit f39674d6d114d999c50672c7bea8cad21e1eaed9
7d1e04e85 units: use =yes rather than =true everywhere
185ce0d34 units: assign user-runtime-dir@.service to user-%i.slice
a051f5e41 units: make sure user-runtime-dir@.service is Type=oneshot
30c6842c3 units: set StopWhenUnneeded= for the user slice units too
e74de046e login: fix typo in log message
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1045
This was incorrectly dropped during the split of the SUSE specific
configurations.
- Drop a Conflicts: in systemd-coredump
It not needed anymore since the mini variant of systemd-coredump is
not built anymore.
- Import commit b54f5d7a8b41898ce98f43cd1a6cc92c0071806d
5def29d24 coredump: only install coredump.conf when ENABLED_COREDUMP=true
9133e2d6e dhcp6: make sure we have enough space for the DHCP6 option header (bsc#1113632 CVE-2018-15688)
ebc3fa418 dhcp6: split assert_return() to be more debuggable when hit
51eefb6ac chown-recursive: let's rework the recursive logic to use O_PATH (bsc#1113666 CVE-2018-15687)
e1e1aa237 core: skip unit deserialization and move to the next one when unit_deserialize() fails
1c726c87d core: when deserializing state always use read_line(…, LONG_LINE_MAX, …) (bsc#1113665 CVE-2018-15686)
4cd7d11ac core: don't create Requires for workdir if "missing ok" (bsc#1113083)
- Make systemd-coredump sub-package optional
and don't build the mini variant.
- Drop duplicated %{?mini} suffix for systemd-{container,coredump} subpackages
"-mini" is already part of the name of the main package so there's
no need to append it again for those sub packages. It's only needed
when the name of a subpackage is completely redefined, IOW when '-n'
option is used with the %package directive.
- Dont ship /usr/sbin/resolvconf symlink for now
It conflicts with the bin shipped by openresolv and provides
limited compat only.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1044
This script was part of systemd-sysvinit sub-package but it was
wrong since systemd-sysv-install is a script used to redirect
enable/disable operations to chkconfig when the unit targets are
sysv init scripts. Therefore it's never been a SySV init tool.
While at it, don't ship this script (as well as
systemd-sysv-convert) when sysvcompat is not defined.
- Import commit 19b3868d32af20f1ecc86fe3c997144ff456fd65
06c2284d64 core: introduce systemd.early_core_pattern= kernel cmdline option
479b002083 core: add missing 'continue' statement
c7fbccc62e journald: don't ship systemd-journald-audit.socket (bsc#1109252)
f17a6c790c detect-virt: do not try to read all of /proc/cpuinfo (bsc#1109197)
5a1aa84544 compat-rules: generate more compat by-id symlinks for NVMe devices (bsc#1095096)
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1041
f8457adf9d emergency: make sure console password agents don't interfere with the emergency shell
b8bbb50634 man: document that 'nofail' also has an effect on ordering
a5410b2229 journald: take leading spaces into account in syslog_parse_identifier
b793c312c7 journal: do not remove multiple spaces after identifier in syslog message
f9595f0481 syslog: fix segfault in syslog_parse_priority()
d464f06934 journal: fix syslog_parse_identifier()
e70422883a socket-util: attempt SO_RCVBUFFORCE/SO_SNDBUFFORCE only if SO_RCVBUF/SO_SNDBUF fails (bsc#991901)
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1040
962b38aaf user@.service: don't kill user manager at runlevel switch (bsc#1091677)
3986c4d82 units: make sure user@.service runs with dbus still up
5e68aa0f2 Revert "udevd: increase maximum number of children" (bsc#1107617)
099138fd9 fix race between daemon-reload and other commands (v237) (bsc#1105031)
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1038
8983bd246 core: don't include libmount.h in a header file (#8580)
3e4156a8f tmpfiles: don't adjust qgroups on existing subvolumes
42edc93ac core/service: rework the hold-off time over message
- Enable regexp matching support
Currently only used by "journalctl --grep=xxx".
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1035
fbf43a697 core: don't freeze OnCalendar= timer units when the clock goes back a lot (bsc#1090944)
4134ba8b6 man: SystemMaxUse= clarification in journald.conf(5) (bnc#1101040)
78bb2a0c4 socket-util: fix getpeergroups() assert(fd) (#8080) (bsc#1096516)
1753d0420 systemctl: mask always reports the same unit names when different unknown units are passed (bsc#1095973)
50ebf79d7 scsi_id: Fixup prefix for pre-SPC inquiry reply (bsc#1039099)
570f7655b locale-util: on overlayfs FTW_MOUNT causes nftw(3) to not list *any* files
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1034
Otherwise systemd pulls in tools to generate the initrd even in
container/chroot installations that don't have a kernel anyways.
For environments where initrd matters, dracut should be pulled via a
pattern.
- Drop runtime dependency on dracut (bsc#1098569)
Otherwise systemd pulls in tools to generate the initrd even in
container/chroot installations that don't have a kernel anyways.
For environments where initrd matters, dracut should be pulled via a
pattern.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1033
621b247f3 device: skip deserialization of device units when udevd is not running
a7da5bdbc device: make sure to always retroactively start device dependencies (bsc#1088052)
303624f6f systemd-udevd: limit children-max by available memory (#8668) (bsc#1086785 bsc#1066422)
76acf3ae9 tmpfiles: fix directory removal with force symlink (#8619)
- Ship 99-sysctl.conf instead of creating it during package installation/update (bsc#1088769)
Previously this symlink was created in /etc/sysctl.d during %post
which made the symlink not owned and more importantly it was created
only if /etc/sysctl.conf is already installed which is not always
the case during the installation process it seems.
So ship the symlink unconditionally and put it in /usr/lib/sysctl.d
instead since it's a distro default behavior that might be overriden
by sysadmin later.
- Be consistent in 60-io-scheduler.rules
And use "?*" when checking for the non empty string (instead of "*?").
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1027
* Set optimal blk-mq schedulers (bfq and mq-deadline for HDD and
SSD respectively)
* Explicitly set CFQ for rotational disks when no `elevator`
is specified
* Verbose comments explaining what is going on
* Rename the rules file since it is not ssd-only anymore
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1026
Now we directly ship the completion scripts from the main package as
we already do for zsh. I couldn't see any advantages in this split.
- Be more accurate when specifiying the tools version we provide
- Make sure rpm won't expand %autopatch even if it's commented
- stat(1) as well as systemctl are not use in %post section of udev
So remove stat(1) from the list of dep and move systemctl to the
requirements of %postun since it's called from there.
- Be more accurate when specifiying the tools version we provide
- Make sure rpm won't expand %autopatch even if it's commented
- stat(1) as well as systemctl are not use in %post section of udev
So remove stat(1) from the list of dep and move systemctl to the
requirements of %postun since it's called from there.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1024
e0a8285e2 pid1: when creating service directories, don't chown existing files (#8181) (boo#1085971)
fb25886b1 Fix format-truncation compile failure by typecasting USB IDs (#8250) (bsc#1084638)
5a6e9c92e sysusers: make sure to reset errno before calling fget*ent()
c2e1ee488 sysusers: also add support for NIS entries in /etc/shadow
51cb94fa1 sysusers: do not append entries after the NIS ones (bsc#1085062 bsc#1045092)
783f3d368 basic/macros: rename noreturn into _noreturn_ (#8456)
- Drop 0001-basic-macros-rename-noreturn-into-_noreturn_.patch
It's been merged in the git repo.
- Rename the tarball
So it's clear that it contains some additional patches on top of the
upstream version. Use the commit hash in the name so the exact
version can easily be identified.
Provide _service file which can be used to retrieve the tarball from
the git repo (with "osc service disabledrun").
- Split systemd-coredump sub-package off (bsc#1083849)
- Don't ship machines.target in systemd-container but in systemd main package
machines.target is supposed to be a standard target for
starting/stopping all containers. systemd-nspawn is the main user of
it but other container managers could also make use of it.
- Build a mini variant of systemd-container
So we don't have to manually track and remove all files that should
be shipped by systemd-container in the case of a bootstrap build.
- Run migrate-sysconfig-i18n.sh also during package installation (bsc#1086164)
This is needed when we upgrade from SLE11.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1023
During its installation pam-config seems to overwrite the defaults
shipped by "pam" for "some" reasons (see bsc#1084924)
No idea why but since pam_systemd is not part of the "pam-config"
defaults, we need to restore pam_systemd in common-session
manually...
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1021
Upstream now enables "memory" and "pids" controllers only which
should have a very limited impact on performance compare to the
"cpu" controller.
- Import commit 46d6bc9c4f1c05f3b4fcfca754cc59963bd86ce3
2a79f4e78 units: delegate "memory" instead of "cpu" by default for user instances (#8320) (bsc#954765 bnc#953241 fate#320421)
88174ae85 compat-rules: fix syntax errors spotted by test/rule-syntax-check.py
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1020
This seems wrong but that's how the SUSE BS works.
- Upgrade to v237 (commit 78221ca750a9c266f9f8497dda59d7ee44000a6c)
Udev rules 60-ssd-scheduler.rules and 80-hotplug-cpu-mem.rules have
been removed from the git repo and are now maintained at the package
level. Those rules have been rejected by upstream and are defining
some defaults which should maintain by the kernel folks.
- Don't call "pam-config --systemd"
pam_systemd.so has been integrated directly in the PAM stack since
bsc#812462. So there's no need to call pam-config.
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1017
found conflict of systemd-234-33.1.x86_64 with systemd-container-234-33.1.x86_64:
- /usr/share/man/man5/systemd.nspawn.5.gz
- /usr/share/man/man1/systemd-nspawn.1.gz
found conflict of systemd-container-234-33.1.x86_64 with systemd-mini-container-234-33.1.x86_64:
- /usr/bin/systemd-nspawn
- /usr/lib/systemd/system/systemd-nspawn@.service
- /usr/lib/tmpfiles.d/systemd-nspawn.conf
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1016