# # spec file # # Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via https://bugs.opensuse.org/ # %global flavor @BUILD_FLAVOR@%{nil} %define min_kernel_version 4.5 %define archive_version +suse.31.g07aa29e394 %define _testsuitedir /usr/lib/systemd/tests %define xinitconfdir %{?_distconfdir}%{!?_distconfdir:%{_sysconfdir}}/X11/xinit # Similar to %%with but returns true/false. The 'true' value can be redefined # when a second parameter is passed. %define __when_1() %{expand:%%{?with_%{1}:true}%%{!?with_%{1}:false}} %define __when_2() %{expand:%%{?with_%{1}:%{2}}%%{!?with_%{1}:false}} %define when() %{expand:%%__when_%# %{*}} %define __when_not_1() %{expand:%%{?with_%{1}:false}%%{!?with_%{1}:true}} %define __when_not_2() %{expand:%%{?with_%{1}:false}%%{!?with_%{1}:%{2}}} %define when_not() %{expand:%%__when_not_%# %{*}} %if "%{flavor}" == "mini" %define mini -mini %bcond_without bootstrap %bcond_with coredump %bcond_with importd %bcond_with journal_remote %bcond_with machined %bcond_with networkd %bcond_with portabled %bcond_with resolved %bcond_with sd_boot %bcond_with sysvcompat %bcond_with experimental %bcond_with testsuite %else %define mini %nil %bcond_with bootstrap %bcond_without coredump %bcond_without importd %bcond_without journal_remote %bcond_without machined %bcond_without networkd %bcond_without portabled %bcond_without resolved %ifarch %{ix86} x86_64 aarch64 %bcond_without sd_boot %else %bcond_with sd_boot %endif %bcond_without sysvcompat %bcond_without experimental %bcond_without testsuite %endif # Kept to ease migrations toward SLE %bcond_with split_usr Name: systemd%{?mini} URL: http://www.freedesktop.org/wiki/Software/systemd Version: 251.5 Release: 0 Summary: A System and Session Manager License: LGPL-2.1-or-later BuildRoot: %{_tmppath}/%{name}-%{version}-build %if %{without bootstrap} BuildRequires: bpftool BuildRequires: clang BuildRequires: docbook-xsl-stylesheets BuildRequires: kbd BuildRequires: libapparmor-devel BuildRequires: libgcrypt-devel BuildRequires: libxslt-tools BuildRequires: polkit # python is only required for generating systemd.directives.xml BuildRequires: python3-base BuildRequires: python3-lxml BuildRequires: pkgconfig(audit) BuildRequires: pkgconfig(libbpf) BuildRequires: pkgconfig(libdw) BuildRequires: pkgconfig(libiptc) BuildRequires: pkgconfig(liblz4) BuildRequires: pkgconfig(liblzma) BuildRequires: pkgconfig(libpcre2-8) BuildRequires: pkgconfig(libqrencode) BuildRequires: pkgconfig(libseccomp) >= 2.3.1 BuildRequires: pkgconfig(libselinux) >= 2.1.9 BuildRequires: pkgconfig(libzstd) %endif BuildRequires: fdupes BuildRequires: gperf BuildRequires: libacl-devel BuildRequires: libcap-devel BuildRequires: libmount-devel >= 2.27.1 BuildRequires: meson >= 0.43 BuildRequires: pam-devel BuildRequires: python3-jinja2 # regenerate_initrd_post macro is expanded during build, hence this # BR. Also this macro was introduced since version 12.4. BuildRequires: suse-module-tools >= 12.4 BuildRequires: systemd-rpm-macros BuildRequires: pkgconfig(blkid) >= 2.26 BuildRequires: pkgconfig(libpci) >= 3 %if %{with bootstrap} #!BuildIgnore: dbus-1 Provides: systemd = %{version}-%{release} Conflicts: systemd # Don't consider the mini flavors when building kiwi medias. This conflict is # automatically inherited by sub-packages requiring systemd (such as udev). Conflicts: kiwi # This dependency is used to ensure that the mini flavors are selected only # inside OBS builds (where this dependency is ignored) and don't get installed # on real systems. Requires: this-is-only-for-build-envs %else # the buildignore is important for bootstrapping #!BuildIgnore: udev Requires: aaa_base >= 13.2 Requires: dbus-1 >= 1.4.0 Requires: kbd Requires: netcfg >= 11.5 Requires: systemd-default-settings-branding Requires: systemd-presets-branding Requires: util-linux >= 2.27.1 Requires: group(lock) # This Recommends because some symbols of libpcre2 are dlopen()ed by journalctl Recommends: libpcre2-8-0 Recommends: libbpf0 Requires(post): coreutils Requires(post): findutils Requires(post): systemd-presets-branding Requires(post): pam-config >= 0.79-5 %endif Conflicts: filesystem < 11.5 Conflicts: mkinitrd < 2.7.0 Provides: sbin_init Provides: sysvinit:/sbin/init Conflicts: sbin_init Conflicts: sysvinit Obsoletes: nss-systemd < %{version}-%{release} Provides: nss-systemd = %{version}-%{release} Obsoletes: nss-myhostname < %{version}-%{release} Provides: nss-myhostname = %{version}-%{release} Provides: systemd-logger = %{version}-%{release} Obsoletes: systemd-logger < %{version}-%{release} Provides: systemd-sysvinit = %{version}-%{release} Obsoletes: systemd-sysvinit < %{version}-%{release} Provides: systemd-analyze = %{version}-%{release} Obsoletes: pm-utils <= 1.4.1 Obsoletes: suspend <= 1.0 Obsoletes: systemd-analyze < 201 Source0: systemd-v%{version}%{archive_version}.tar.xz Source1: systemd-rpmlintrc Source2: systemd-user %if %{with sysvcompat} Source4: systemd-sysv-install %endif Source5: tmpfiles-suse.conf Source6: baselibs.conf Source11: after-local.service Source14: kbd-model-map.legacy Source100: scripts-systemd-fix-machines-btrfs-subvol.sh Source101: scripts-systemd-upgrade-from-pre-210.sh Source102: scripts-systemd-migrate-sysconfig-i18n.sh Source200: files.systemd Source201: files.udev Source202: files.container Source203: files.network Source204: files.devel Source205: files.sysvcompat Source206: files.uefi-boot Source207: files.experimental # # All changes backported from upstream are tracked by the git repository, which # can be found at: https://github.com/openSUSE/systemd. # # Patches listed below are openSUSE specific and should be kept at its # minimum. We try hard to push our changes to upstream but sometimes they are # only relevant for SUSE distros. Special rewards for those who will manage to # get rid of one of them ! # Patch1: 0001-restore-var-run-and-var-lock-bind-mount-if-they-aren.patch Patch2: 0002-rc-local-fix-ordering-startup-for-etc-init.d-boot.lo.patch Patch3: 0003-strip-the-domain-part-from-etc-hostname-when-setting.patch Patch5: 0005-udev-create-default-symlinks-for-primary-cd_dvd-driv.patch %if %{with sysvcompat} Patch8: 0008-sysv-generator-translate-Required-Start-into-a-Wants.patch %endif Patch10: 0001-conf-parser-introduce-early-drop-ins.patch Patch12: 0009-pid1-handle-console-specificities-weirdness-for-s390.patch # Temporary workaround until bsc#1197178 is addressed. Patch1000: 1000-Revert-getty-Pass-tty-to-use-by-agetty-via-stdin.patch # Patches listed below are put in quarantine. Normally all changes # must go to upstream first and then are cherry-picked in the SUSE git # repository. But in very few cases, some stuff might be broken in # upstream and need an urgent fix. Even in this case, the patches are # temporary and should be removed as soon as a fix is merged by # upstream. %description Systemd is a system and service manager, compatible with SysV and LSB init scripts for Linux. systemd provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux cgroups, supports snapshotting and restoring of the system state, maintains mount and automount points and implements an elaborate transactional dependency-based service control logic. It can work as a drop-in replacement for sysvinit. %package doc Summary: HTML documentation for systemd License: LGPL-2.1-or-later %if %{with bootstrap} Conflicts: systemd-doc Requires: this-is-only-for-build-envs %else Supplements: (systemd and patterns-base-documentation) %endif %description doc The HTML documentation for systemd. %package devel Summary: Development files for libsystemd and libudev License: LGPL-2.1-or-later Requires: libsystemd0%{?mini} = %{version}-%{release} Requires: libudev%{?mini}1 = %{version}-%{release} Requires: systemd-rpm-macros Provides: libudev%{?mini}-devel = %{version}-%{release} Obsoletes: libudev%{?mini}-devel < %{version}-%{release} %if %{with bootstrap} Provides: systemd-devel = %{version}-%{release} Conflicts: systemd-devel Provides: libudev-devel = %{version}-%{release} Conflicts: libudev-devel %endif %description devel Development headers and files for libsystemd and libudev libraries for developing and building applications linking to these libraries. %if %{with sysvcompat} %package sysvcompat Summary: SySV and LSB init script support for systemd (deprecated) License: LGPL-2.1-or-later Requires: %{name} = %{version}-%{release} Provides: systemd-sysvinit:%{_sbindir}/runlevel Provides: systemd-sysvinit:%{_sbindir}/telinit %description sysvcompat This package ships the necessary files that enable minimal SysV and LSB init scripts support in systemd. It also contains the obsolete SysV init tools telinit(8) and runlevel(8). You should consider using systemctl(1) instead. Unless you have a 3rd party application installed on your system that still relies on such scripts, this package should not be needed at all. Please note that the content of this package is considered as deprecated. %endif %package -n libsystemd0%{?mini} Summary: Component library for systemd License: LGPL-2.1-or-later %if %{with bootstrap} Conflicts: kiwi Conflicts: libsystemd0 Provides: libsystemd0 = %{version}-%{release} Requires: this-is-only-for-build-envs %endif %description -n libsystemd0%{?mini} This library provides several of the systemd C APIs: * sd-bus implements an alternative D-Bus client library that is relatively easy to use, very efficient and supports both classic D-Bus as well as kdbus as transport backend. * sd-daemon(3): for system services (daemons) to report their status to systemd and to make easy use of socket-based activation logic * sd-event is a generic event loop abstraction that is built around Linux epoll, but adds features such as event prioritization or efficient timer handling. * sd-id128(3): generation and processing of 128-bit IDs * sd-journal(3): API to submit and query journal log entries * sd-login(3): APIs to introspect and monitor seat, login session and user status information on the local system. %package -n udev%{?mini} Summary: A rule-based device node and kernel event manager License: GPL-2.0-only URL: http://www.kernel.org/pub/linux/utils/kernel/hotplug/udev.html %if %{with sd_boot} BuildRequires: gnu-efi BuildRequires: pesign-obs-integration %endif Requires: %{name} = %{version}-%{release} %systemd_requires Requires: filesystem Requires: kmod Requires: system-group-hardware Requires: group(kvm) Requires(post): sed Requires(post): coreutils Requires(postun):coreutils %if %{without bootstrap} BuildRequires: pkgconfig(libcryptsetup) >= 1.6.0 BuildRequires: pkgconfig(libkmod) >= 15 # Enable fido2 and tpm supports in systemd-cryptsetup, systemd-enroll. However # these tools are not linked against the libs directly but instead are # dlopen()ed at runtime to avoid hard dependencies. Hence the use of soft # dependencies. BuildRequires: pkgconfig(libfido2) BuildRequires: pkgconfig(tss2-esys) BuildRequires: pkgconfig(tss2-mu) BuildRequires: pkgconfig(tss2-rc) Recommends: libfido2 Recommends: libtss2-esys0 Recommends: libtss2-mu0 Recommends: libtss2-rc0 %endif Conflicts: ConsoleKit < 0.4.1 Conflicts: dracut < 044.1 Conflicts: filesystem < 11.5 Conflicts: mkinitrd < 2.7.0 Conflicts: util-linux < 2.16 %if %{with bootstrap} Conflicts: udev Provides: udev = %{version}-%{release} %endif %description -n udev%{?mini} Udev creates and removes device nodes in /dev for devices discovered or removed from the system. It receives events via kernel netlink messages and dispatches them according to rules in %{_udevrulesdir}/. Matching rules may name a device node, create additional symlinks to the node, call tools to initialize a device, or load needed kernel modules. %package -n libudev%{?mini}1 Summary: Dynamic library to access udev device information License: LGPL-2.1-or-later %if %{with bootstrap} Conflicts: kiwi Conflicts: libudev1 Provides: libudev1 = %{version}-%{release} Requires: this-is-only-for-build-envs %endif %description -n libudev%{?mini}1 This package contains the dynamic library libudev, which provides access to udev device information %if %{with coredump} %package coredump Summary: Systemd tools for coredump management License: LGPL-2.1-or-later Requires: %{name} = %{version}-%{release} %systemd_requires Provides: systemd:%{_bindir}/coredumpctl %description coredump Systemd tools to store and manage coredumps. This package contains systemd-coredump, coredumpctl. %endif %package container Summary: Systemd tools for container management License: LGPL-2.1-or-later %if %{with importd} BuildRequires: pkgconfig(bzip2) BuildRequires: pkgconfig(libcurl) BuildRequires: pkgconfig(zlib) %endif Requires: %{name} = %{version}-%{release} # import-tar needs tar and gpg Requires: /usr/bin/tar Requires: /usr/bin/gpg %systemd_requires Obsoletes: nss-mymachines < %{version}-%{release} Provides: nss-mymachines = %{version}-%{release} Provides: systemd-container = %{version}-%{release} Provides: systemd:%{_bindir}/systemd-nspawn %if %{with bootstrap} Conflicts: systemd-container Provides: systemd-container = %{version}-%{release} %endif %description container Systemd tools to spawn and manage containers and virtual machines. In addition, it also contains a plugin for the Name Service Switch (NSS), providing host name resolution for all local containers and virtual machines using network namespacing and registered with systemd-machined. It also maps UID/GIDs ranges used by containers to useful names. To activate this NSS module, you will need to include it in /etc/nsswitch.conf, see nss-mymachines(8) manpage for more details. %if %{with networkd} || %{with resolved} %package network Summary: systemd network and Network Name Resolution managers License: LGPL-2.1-or-later Requires: %{name} = %{version}-%{release} %systemd_requires # This Recommends because some symbols of libidn2 are dlopen()ed by resolved Recommends: pkgconfig(libidn2) BuildRequires: pkgconfig(libidn2) BuildRequires: pkgconfig(openssl) Obsoletes: nss-resolve < %{version}-%{release} Provides: nss-resolve = %{version}-%{release} Provides: systemd:/usr/lib/systemd/systemd-networkd Provides: systemd:/usr/lib/systemd/systemd-resolved %description network systemd-networkd is a system service that manages networks. It detects and configures network devices as they appear, as well as manages network addresses and routes for any link for which it finds a .network file, see systemd.network(5). It can also create virtual network devices based on their description given by systemd.netdev(5) files. It may be controlle by networkctl(1). systemd-resolved is a system service that provides network name resolution to local applications. It implements a caching and validating DNS/DNSSEC stub resolver, as well as an LLMNR and MulticastDNS resolver and responder. It may be controlled by resolvectl(1). Addtionally, this package also contains a plug-in module for the Name Service Switch (NSS), which enables hostname resolutions by contacting systemd-resolved(8). It replaces the nss-dns plug-in module that traditionally resolves hostnames via DNS. To activate this NSS module, you will need to include it in /etc/nsswitch.conf, see nss-resolve(8) manpage for more details. %endif %if %{with portabled} %package portable Summary: Systemd tools for portable services License: LGPL-2.1-or-later Requires: %{name} = %{version}-%{release} %systemd_requires %description portable Systemd tools to manage portable services. The feature is still considered experimental so the package might change or vanish. Use at own risk. More information can be found online: http://0pointer.net/blog/walkthrough-for-portable-services.html https://systemd.io/PORTABLE_SERVICES %endif %if %{with journal_remote} %package journal-remote Summary: Gateway for serving journal events over the network using HTTP License: LGPL-2.1-or-later BuildRequires: pkgconfig(libcurl) BuildRequires: pkgconfig(libmicrohttpd) >= 0.9.33 Requires: %{name} = %{version}-%{release} %systemd_requires %description journal-remote This extends the journal functionality to keep a copy of logs on a remote server by providing programs to forward journal entries over the network, using encrypted HTTP, and to write journal files from serialized journal contents. This package contains systemd-journal-gatewayd, systemd-journal-remote, and systemd-journal-upload. %endif %if %{with testsuite} %package testsuite Summary: Testsuite for systemd # Unit tests dependencies License: LGPL-2.1-or-later Recommends: python3 Recommends: python3-colorama # Optional dep for mkfs.vfat needed by test-loop-block (otherwise skipped) Recommends: dosfstools # The following deps on libs are for test-dlopen-so whereas the # pkgconfig ones are used by test-funtions to find the libs on the # host and install them in the image, see install_missing_libraries() # for details. %if %{with resolved} Requires: libidn2 Requires: pkgconfig(libidn2) %endif %if %{with experimental} Requires: libpwquality1 Requires: libqrencode4 Requires: pkgconfig(libqrencode) Requires: pkgconfig(pwquality) %endif Requires: %{name} = %{version}-%{release} Requires: attr Requires: binutils Requires: busybox-static Requires: cryptsetup Requires: dosfstools Requires: libcap-progs Requires: libfido2 Requires: libtss2-esys0 Requires: libtss2-mu0 Requires: libtss2-rc0 Requires: lz4 Requires: make Requires: netcat Requires: python3-pexpect Requires: qemu-kvm Requires: quota Requires: socat Requires: squashfs Requires: systemd-container Requires: pkgconfig(libfido2) Requires: pkgconfig(tss2-esys) Requires: pkgconfig(tss2-mu) Requires: pkgconfig(tss2-rc) %if %{with coredump} Requires: systemd-coredump %endif %if %{with experimental} Requires: systemd-experimental %endif %if %{with journal_remote} Requires: systemd-journal-remote %endif %if %{with networkd} Requires: systemd-network %endif %if %{with portabled} Requires: systemd-portable %endif Requires: xz %description testsuite This package contains the unit tests as well as the extended testsuite. The unit tests are used to check various internal functions used by systemd whereas the extended testsuite is used to test various functionalities of systemd and all its components. Note that the extended testsuite only works with UID=0. Run the following python script to run all unit tests at once: $ %{_testsuitedir}/run-unit-tests.py To run the full extended testsuite do the following: $ NO_BUILD=1 %{_testsuitedir}/test/run-integration-tests.sh Or to run one specific integration test: $ NO_BUILD=1 make -C %{_testsuitedir}/test/TEST-01-BASIC clean setup run For more details on the available options to run the extended testsuite, please refer to %{_testsuitedir}/test/README.testsuite. %endif %if %{with experimental} %package experimental Summary: Experimental systemd features License: LGPL-2.1-or-later Requires: %{name} = %{version}-%{release} %systemd_requires # These Recommends because some symbols of these libs are dlopen()ed by home stuff Recommends: libfido2 Recommends: libpwquality1 Recommends: libqrencode4 # libfido2, libpwquality1 and libqrencode4 are build requirements for home stuff BuildRequires: pkgconfig(libfido2) BuildRequires: pkgconfig(libqrencode) BuildRequires: pkgconfig(pwquality) # fdisk and openssl are build requirements for home stuff and repart BuildRequires: pkgconfig(fdisk) BuildRequires: pkgconfig(openssl) %description experimental This package contains optional extra services that are considered as previews and are provided so users can do early experiments with the new features or technologies without waiting for them to be fully supported by either upstream and openSUSE. Please note that all services should be considered in development phase and as such their behaviors details, unit files, option names, etc... are subject to change without the usual backwards-compatibility promises. Components that turn out to be stable and considered as fully supported will be merged into the main package or moved into a dedicated package. Currently this package contains: homed, repart, userdbd, oomd. In case you want to create a user with systemd-homed quickly, here are the steps you can follow: - Make sure the nss-systemd package is installed and added into /etc/nsswitch.conf, see nss-systemd(8) man page for details - Integrate pam_systemd_home.so in your PAM stack. You can do that either by following the instructions in pam_systemd_home(8) man page or by executing `pam-config --add --systemd_home` command - Enable and start systemd-homed with `systemctl enable --now systemd-homed` - Create a user with `homectl create ` - Verify the previous steps with `getent passwd ` Have fun (at your own risk). %endif %if %{without bootstrap} %lang_package %endif %prep %autosetup -p1 -n systemd-v%{version}%{archive_version} %build %meson \ -Dmode=release \ -Dversion-tag=%{version}%{archive_version} \ -Ddocdir=%{_docdir}/systemd \ %if %{with split_usr} -Drootprefix=/usr \ -Dsplit-usr=true \ %endif -Dsplit-bin=true \ -Dsystem-uid-max=499 \ -Dsystem-gid-max=499 \ -Dclock-valid-range-usec-max=946728000000000 \ -Dadm-group=false \ -Dwheel-group=false \ -Ddefault-hierarchy=unified \ -Ddefault-kill-user-processes=false \ -Dpamconfdir=no \ -Dpamlibdir=%{_pam_moduledir} \ -Dxinitrcdir=%{xinitconfdir}/xinitrc.d \ -Drpmmacrosdir=no \ -Dcertificate-root=%{_sysconfdir}/pki/systemd \ %if %{with bootstrap} -Dbashcompletiondir=no \ -Dzshcompletiondir=no \ %endif %if %{without sysvcompat} -Dsysvinit-path= \ -Dsysvrcnd-path= \ %endif -Drc-local=/etc/init.d/boot.local \ -Dcreate-log-dirs=false \ -Ddebug-shell=/bin/bash \ \ -Dbump-proc-sys-fs-nr-open=false \ -Dgshadow=false \ -Dima=false \ -Dldconfig=false \ -Dsmack=false \ \ -Dpstore=true \ \ -Dapparmor=%{when_not bootstrap} \ -Dbpf-framework=%{when_not bootstrap} \ -Defi=%{when_not bootstrap} \ -Delfutils=%{when_not bootstrap} \ -Dhtml=%{when_not bootstrap} \ -Dlibcryptsetup-plugins=%{when_not bootstrap} \ -Dman=%{when_not bootstrap} \ -Dnss-myhostname=%{when_not bootstrap} \ -Dnss-systemd=%{when_not bootstrap} \ -Dseccomp=%{when_not bootstrap} \ -Dselinux=%{when_not bootstrap} \ -Dtpm=%{when_not bootstrap} \ -Dtpm2=%{when_not bootstrap} \ -Dtranslations=%{when_not bootstrap} \ \ -Dcoredump=%{when coredump} \ -Dimportd=%{when importd} \ -Dmachined=%{when machined} \ -Dnetworkd=%{when networkd} \ -Dportabled=%{when portabled} \ -Dremote=%{when journal_remote} \ \ -Dgnu-efi=%{when sd_boot} \ -Dkernel-install=%{when sd_boot} \ \ -Dsbat-distro="%{?sbat_distro}" \ -Dsbat-distro-summary="%{?sbat_distro_summary}" \ -Dsbat-distro-url="%{?sbat_distro_url}" \ \ -Dsbat-distro-pkgname="%{name}" \ -Dsbat-distro-version="%{version}-%{release}" \ \ -Ddefault-dnssec=no \ -Ddns-servers='' \ -Ddns-over-tls=%{when resolved openssl} \ -Dresolve=%{when resolved} \ \ -Dhomed=%{when experimental} \ -Doomd=%{when experimental} \ -Drepart=%{when experimental} \ -Dsysupdate=%{when experimental} \ -Duserdb=%{when experimental} \ \ -Dtests=%{when testsuite unsafe} \ -Dinstall-tests=%{when testsuite} %meson_build %install %meson_install %if %{with sd_boot} %ifarch x86_64 export BRP_PESIGN_FILES="/usr/lib/systemd/boot/efi/systemd-bootx64.efi" %endif %endif # Don't ship resolvconf symlink for now as it conflicts with the # binary shipped by openresolv and provides limited compatibility # only %if %{with resolved} rm %{buildroot}%{_sbindir}/resolvconf rm %{buildroot}%{_mandir}/man1/resolvconf.1* %endif %if %{with sysvcompat} install -m0755 -D %{SOURCE4} %{buildroot}/%{_systemd_util_dir}/systemd-sysv-install %endif mkdir -p % %{buildroot}%{_sysconfdir}/systemd/network mkdir -p % %{buildroot}%{_sysconfdir}/systemd/nspawn # Package the scripts used to fix all packaging issues. Also drop the # "scripts-{systemd/udev}" prefix which is used because osc doesn't # allow directories in the workspace... %if %{with machined} install -m0755 -D %{SOURCE100} %{buildroot}%{_systemd_util_dir}/scripts/fix-machines-btrfs-subvol.sh %endif install -m0755 -D %{SOURCE101} %{buildroot}%{_systemd_util_dir}/scripts/upgrade-from-pre-210.sh install -m0755 -D %{SOURCE102} %{buildroot}%{_systemd_util_dir}/scripts/migrate-sysconfig-i18n.sh %if %{with split_usr} mkdir -p %{buildroot}/{bin,sbin} # Legacy paths ln -s ../usr/bin/udevadm %{buildroot}/sbin/ ln -s ../usr/bin/systemctl %{buildroot}/bin/ ln -s ../usr/lib/systemd/systemd %{buildroot}/sbin/init ln -s ../usr/bin/systemctl %{buildroot}/sbin/reboot ln -s ../usr/bin/systemctl %{buildroot}/sbin/halt ln -s ../usr/bin/systemctl %{buildroot}/sbin/shutdown ln -s ../usr/bin/systemctl %{buildroot}/sbin/poweroff # Legacy sysvinit tools %if %{with sysvcompat} ln -s ../usr/bin/systemctl %{buildroot}/sbin/telinit ln -s ../usr/bin/systemctl %{buildroot}/sbin/runlevel %endif %endif # Make sure we don't ship static enablement symlinks in /etc during # installation, presets should be honoured instead. rm -rf %{buildroot}/etc/systemd/system/*.target.{requires,wants} rm -f %{buildroot}/etc/systemd/system/default.target # Replace upstream systemd-user with the openSUSE one. install -m0644 -D --target-directory=%{buildroot}%{_pam_vendordir} %{SOURCE2} # kmod keeps insisting on using /lib on SLE. if [ "$(realpath %{_modprobedir})" != /usr/lib/modprobe.d ]; then mkdir -p %{buildroot}%{_modprobedir} mv %{buildroot}/usr/lib/modprobe.d/* %{buildroot}%{_modprobedir}/ fi # don't enable wall ask password service, it spams every console (bnc#747783) rm %{buildroot}%{_unitdir}/multi-user.target.wants/systemd-ask-password-wall.path # do not ship sysctl defaults in systemd package, will be part of # aaa_base (in procps for now) rm -f %{buildroot}%{_sysctldir}/50-default.conf rm -f %{buildroot}%{_sysctldir}/50-pid-max.conf # Make sure systemd-network polkit rules file starts with a suitable # number prefix so it takes precedence over our polkit-default-privs. %if %{with networkd} mv %{buildroot}%{_datadir}/polkit-1/rules.d/systemd-networkd.rules \ %{buildroot}%{_datadir}/polkit-1/rules.d/60-systemd-networkd.rules %endif # since v207 /etc/sysctl.conf is no longer parsed (commit # 04bf3c1a60d82791), however backward compatibility is provided by # /usr/lib/sysctl.d/99-sysctl.conf. ln -s ../../../etc/sysctl.conf %{buildroot}%{_sysctldir}/99-sysctl.conf # The definitions of the basic users/groups are given by system-user package on # SUSE (bsc#1006978). rm -f %{buildroot}%{_sysusersdir}/basic.conf # Remove README file in init.d as (SUSE) rpm requires executable files # in this directory... oh well. rm -f %{buildroot}/etc/init.d/README # This dir must be owned (and thus created) by systemd otherwise the # build system will complain. This is odd since we simply own a ghost # file in it... mkdir -p %{buildroot}%{_sysconfdir}/X11/xorg.conf.d # Make sure directories in /var exist mkdir -p %{buildroot}%{_localstatedir}/lib/systemd/coredump mkdir -p %{buildroot}%{_localstatedir}/lib/systemd/catalog # Make sure the NTP units dir exists mkdir -p %{buildroot}%{_ntpunitsdir} # Make sure the shutdown/sleep drop-in dirs exist mkdir -p %{buildroot}%{_prefix}/lib/systemd/system-shutdown/ mkdir -p %{buildroot}%{_prefix}/lib/systemd/system-sleep/ # Make sure these directories are properly owned mkdir -p %{buildroot}%{_unitdir}/basic.target.wants mkdir -p %{buildroot}%{_unitdir}/default.target.wants mkdir -p %{buildroot}%{_unitdir}/dbus.target.wants mkdir -p %{buildroot}%{_unitdir}/graphical.target.wants mkdir -p %{buildroot}%{_unitdir}/halt.target.wants mkdir -p %{buildroot}%{_unitdir}/initrd-root-device.target.wants mkdir -p %{buildroot}%{_unitdir}/initrd-root-fs.target.wants mkdir -p %{buildroot}%{_unitdir}/kexec.target.wants mkdir -p %{buildroot}%{_unitdir}/poweroff.target.wants mkdir -p %{buildroot}%{_unitdir}/reboot.target.wants mkdir -p %{buildroot}%{_unitdir}/remote-fs.target.wants mkdir -p %{buildroot}%{_unitdir}/rescue.target.wants mkdir -p %{buildroot}%{_unitdir}/shutdown.target.wants # Make sure the generator directories are created and properly owned. mkdir -p %{buildroot}%{_systemdgeneratordir} mkdir -p %{buildroot}%{_systemdusergeneratordir} mkdir -p %{buildroot}%{_presetdir} mkdir -p %{buildroot}%{_userpresetdir} mkdir -p %{buildroot}%{_systemd_system_env_generator_dir} mkdir -p %{buildroot}%{_systemd_user_env_generator_dir} # ensure after.local wrapper is called install -m 644 %{SOURCE11} %{buildroot}%{_unitdir}/ ln -s ../after-local.service %{buildroot}%{_unitdir}/multi-user.target.wants/ # ghost directories with default permissions. mkdir -p %{buildroot}%{_localstatedir}/lib/systemd/backlight # ghost files with default permisssions. touch %{buildroot}%{_sysconfdir}/X11/xorg.conf.d/00-keyboard.conf touch %{buildroot}%{_sysconfdir}/vconsole.conf touch %{buildroot}%{_sysconfdir}/locale.conf touch %{buildroot}%{_sysconfdir}/machine-info touch %{buildroot}%{_localstatedir}/lib/systemd/catalog/database touch %{buildroot}%{_localstatedir}/lib/systemd/i18n-migrated %fdupes -s %{buildroot}%{_mandir} # Make sure to disable all services by default. The Suse branding # presets package takes care of defining the right policies. rm -f %{buildroot}%{_presetdir}/*.preset echo 'disable *' >%{buildroot}%{_presetdir}/99-default.preset echo 'disable *' >%{buildroot}%{_userpresetdir}/99-default.preset # The tmpfiles dealing with the generic paths is pretty messy # currently because: # # 1. filesystem package wants to define the generic paths and some of them # conflict with the definition given by systemd in var.conf, see # bsc#1078466. # # 2. /tmp and /var/tmp are not cleaned by default on SUSE distros (fate#314974) # which conflict with tmp.conf. # # 3. There're also legacy.conf which defines various legacy paths which either # don't match the SUSE defaults or don't look needed at all. # # 4. We don't want the part in etc.conf which imports default upstream files in # empty /etc, see below. # # To keep things simple, we remove all these tmpfiles config files but still # keep the remaining paths that still don't have a better home in suse.conf. rm -f %{buildroot}%{_tmpfilesdir}/{etc,home,legacy,tmp,var}.conf install -m 644 %{SOURCE5} %{buildroot}%{_tmpfilesdir}/suse.conf # The content of the files shipped by systemd doesn't match the # defaults used by SUSE. Don't ship those files but leave the decision # to use the mechanism to the individual packages that actually # consume those configs (like glibc or pam), see bsc#1170146. rm -fr %{buildroot}%{_datadir}/factory/* # Add entries for xkeyboard-config converted keymaps; mappings, which # already exist in original systemd mapping table are being ignored # though, i.e. not overwritten; needed as long as YaST uses console # keymaps internally and calls localectl to convert from vconsole to # X11 keymaps. Ideally YaST should switch to X11 layout names (the # mapping table wouldn't be needed since each X11 keymap has a # generated xkbd keymap) and let localectl initialize # /etc/vconsole.conf and /etc/X11/xorg.conf.d/00-keyboard.conf # (FATE#319454). if [ -f /usr/share/systemd/kbd-model-map.xkb-generated ]; then cat /usr/share/systemd/kbd-model-map.xkb-generated \ >>%{buildroot}%{_datarootdir}/systemd/kbd-model-map fi # kbd-model-map.legacy is used to provide mapping for legacy keymaps, # which may still be used by yast. cat %{SOURCE14} >>%{buildroot}%{_datarootdir}/systemd/kbd-model-map # Don't ship systemd-journald-audit.socket as there's no other way for # us to prevent journald from recording audit messages in the journal # by default (bsc#1109252). rm -f %{buildroot}%{_unitdir}/systemd-journald-audit.socket rm -f %{buildroot}%{_unitdir}/sockets.target.wants/systemd-journald-audit.socket %if %{with testsuite} cp -a test %{buildroot}%{_testsuitedir}/ # When the tests are installed, the effective testdata directory is in # %{_testsuitedir}, the other one, which is actually a symlink, is # only useful when the tests are run directly from the source. rm %{buildroot}%{_testsuitedir}/test/testdata # kbd-model-map became a dangling symlink, drop it. rm %{buildroot}%{_testsuitedir}/test/test-keymap-util/kbd-model-map find %{buildroot}%{_testsuitedir}/ -name .git\* -exec rm -fr {} \; %endif %if %{without bootstrap} %find_lang systemd %endif # Build of installation images uses a hard coded list of packages with # a %%pre that needs to be run during the build. systemd is one of them # so keep the section even if it's empty. %pre : %post # Make /etc/machine-id an empty file during package installation. On # the first boot, machine-id is initialized and either committed (if # /etc/ is writable) or the system/image runs with a transient machine # ID, that changes on each boot (if the image is read-only). This is # especially important for appliance builds to avoid an identical # machine ID in all images. if [ $1 -eq 1 ]; then touch %{_sysconfdir}/machine-id chmod 444 %{_sysconfdir}/machine-id fi # /etc/machine-id might have been created writeable incorrectly # (boo#1092269). if [ "$(stat -c%a %{_sysconfdir}/machine-id)" != 444 ]; then echo "Incorrect file mode bits for /etc/machine-id which should be 0444, fixing..." chmod 444 %{_sysconfdir}/machine-id fi %if %{without bootstrap} pam-config --add --systemd || : # Run ldconfig for nss-systemd and nss-myhostname NSS modules. %ldconfig %endif # systemd-sysusers is not available in %pre so this needs to be done # in %%post. However this shouldn't be an issue since all files the # main package ships are owned by root. %sysusers_create systemd-journal.conf %sysusers_create systemd-timesync.conf systemctl daemon-reexec || : # Reexecute user manager instances (if any). It is asynchronous but it # shouldn't be a problem in practice: a problem would arise only if # the new version of a user service has a brand new option that is # only understood by the latest version of the user manager and the # user service is started before the user manager get reexecuted. But # this case is very unlikely especially since we don't restart any # user service for now. # # Before doing this, we unfortunately have to wait until users will # reexec their user manager (by either rebooting or restarting their # session) to a version that supports SIGRTMIN+25 otherwise sending # the signal to an old version will kill the manager which means # tearing down the user session. # # systemctl kill --kill-who=main --signal=SIGRTMIN+25 "user@*.service" || : if [ "$1" -eq 1 ]; then # Persistent journal is the default mkdir -p %{_localstatedir}/log/journal fi %journal_catalog_update %tmpfiles_create # Create default config in /etc at first install. # Later package updates should not overwrite these settings. %systemd_post getty@.service %systemd_post machines.target %systemd_post remote-fs.target %systemd_post systemd-timesyncd.service # v228 wrongly set world writable suid root permissions on timestamp # files used by permanent timers. Fix the timestamps that might have # been created by the affected versions of systemd (bsc#1020601). for stamp in $(ls /var/lib/systemd/timers/stamp-*.timer 2>/dev/null); do chmod 0644 $stamp done # Same for user lingering created by logind. for username in $(ls /var/lib/systemd/linger/* 2>/dev/null); do chmod 0644 $username done # Due to the fact that DynamicUser= was turned ON during v235 and then # switched back to off in v240, /var/lib/systemd/timesync might be a # symlink pointing to /var/lib/private/systemd/timesync, which is # inaccessible for systemd-timesync user as /var/lib/private is 0700 # root:root, see https://github.com/systemd/systemd/issues/11329 for # details. Note: only TW users might be affected by this bug. if [ -L %{_localstatedir}/lib/systemd/timesync ]; then rm %{_localstatedir}/lib/systemd/timesync mv %{_localstatedir}/lib/private/systemd/timesync %{_localstatedir}/lib/systemd/timesync fi # This includes all hacks needed when upgrading from SysV. %{_prefix}/lib/systemd/scripts/upgrade-from-pre-210.sh || : # Migrate old i18n settings previously configured in /etc/sysconfig to # the new locations used by systemd (/etc/locale.conf, # /etc/vconsole.conf, ...). Recent versions of systemd parse the new # locations only. # # This is needed both at package updates and package installations # because we might be upgrading from a system which was running SysV # init (systemd package is being installed). # # It's run only once. %{_prefix}/lib/systemd/scripts/migrate-sysconfig-i18n.sh || : %postun # daemon-reload is implied by systemd_postun_with_restart %systemd_postun_with_restart systemd-journald.service %systemd_postun_with_restart systemd-timesyncd.service # Avoid restarting logind until fixed upstream (issue #1163) %pre -n udev%{?mini} %systemd_pre remote-cryptsetup.target %systemd_pre systemd-pstore.service # New installations uses the last compat symlink generation number # (currently at 2), which basically disables all compat symlinks. On # old systems, the file doesn't exist. This is equivalent to # generation #1, which enables the creation of all compat symlinks. if [ $1 -eq 1 ]; then echo "COMPAT_SYMLINK_GENERATION=2" >/usr/lib/udev/compat-symlink-generation fi %post -n udev%{?mini} %regenerate_initrd_post %udev_hwdb_update %tmpfiles_create systemd-pstore.conf %systemd_post remote-cryptsetup.target %systemd_post systemd-pstore.service # add KERNEL name match to existing persistent net rules sed -ri '/KERNEL/ ! { s/NAME="(eth|wlan|ath)([0-9]+)"/KERNEL=="\1*", NAME="\1\2"/}' \ /etc/udev/rules.d/70-persistent-net.rules 2>/dev/null || : # cleanup old stuff rm -f /etc/sysconfig/udev rm -f /etc/udev/rules.d/{20,55,65}-cdrom.rules %preun -n udev%{?mini} %systemd_preun systemd-udevd.service systemd-udevd-{control,kernel}.socket %systemd_preun systemd-pstore.service %postun -n udev%{?mini} %regenerate_initrd_post # The order of the units being restarted is important here because there's currently no # way to queue multiple jobs into a single transaction atomically. Therefore systemctl # will create 3 restart jobs that can be handled by PID1 separately and if the jobs for # the sockets are being handled first then starting them again will fail as the service # is still active hence the sockets held by udevd. However if the restart job for udevd # is handled first, there should be enough time to queue the socket jobs before the stop # job for udevd is processed. Hence PID1 will automatically sort the restart jobs # correctly by stopping the service then the sockets and then by starting the sockets and # the unit. # # Note that when systemd-udevd is restarted, there will always be a short time # frame where no socket will be listening to the events sent by the kernel, no # matter if the socket unit is restarted in first or not. %systemd_postun_with_restart systemd-udevd.service systemd-udevd-{control,kernel}.socket %systemd_postun systemd-pstore.service %posttrans -n udev%{?mini} %regenerate_initrd_posttrans %post -n libudev%{?mini}1 -p %ldconfig %post -n libsystemd0%{?mini} -p %ldconfig %postun -n libudev%{?mini}1 -p %ldconfig %postun -n libsystemd0%{?mini} -p %ldconfig %post container %tmpfiles_create systemd-nspawn.conf %if %{with machined} %ldconfig if [ $1 -gt 1 ]; then # Convert /var/lib/machines subvolume to make it suitable for # rollbacks, if needed. See bsc#992573. The installer has been fixed # to create it at installation time. # # The convertion might only be problematic for openSUSE distros # (TW/Factory) where previous versions had already created the # subvolume at the wrong place (via tmpfiles for example) and user # started to populate and use it. In this case we'll let the user fix # it manually. # # For SLE12 this subvolume was only introduced during the upgrade from # v210 to v228 when we added this workaround. Note that the subvolume # is still created at the wrong place due to the call to # tmpfiles_create macro previously however it's empty so there # shouldn't be any issues. %{_prefix}/lib/systemd/scripts/fix-machines-btrfs-subvol.sh || : fi %postun container %ldconfig %endif %if %{with coredump} %post coredump %sysusers_create systemd-coredump.conf %endif %if %{with journal_remote} %pre journal-remote %service_add_pre systemd-journal-gatewayd.socket systemd-journal-gatewayd.service %service_add_pre systemd-journal-remote.socket systemd-journal-remote.service %service_add_pre systemd-journal-upload.service %post journal-remote # Assume that all files shipped by systemd-journal-remove are owned by root. %sysusers_create systemd-remote.conf %service_add_post systemd-journal-gatewayd.socket systemd-journal-gatewayd.service %service_add_post systemd-journal-remote.socket systemd-journal-remote.service %service_add_post systemd-journal-upload.service %preun journal-remote %service_del_preun systemd-journal-gatewayd.socket systemd-journal-gatewayd.service %service_del_preun systemd-journal-remote.socket systemd-journal-remote.service %service_del_preun systemd-journal-upload.service %postun journal-remote %service_del_postun systemd-journal-gatewayd.socket systemd-journal-gatewayd.service %service_del_postun systemd-journal-remote.socket systemd-journal-remote.service %service_del_postun systemd-journal-upload.service %endif %if %{with networkd} || %{with resolved} %pre network %if %{with networkd} %service_add_pre systemd-networkd.service %service_add_pre systemd-networkd-wait-online.service %endif %if %{with resolved} %service_add_pre systemd-resolved.service %endif %post network %if %{with networkd} %sysusers_create systemd-network.conf %tmpfiles_create systemd-network.conf %service_add_post systemd-networkd.service %service_add_post systemd-networkd-wait-online.service %endif %if %{with resolved} %ldconfig %sysusers_create systemd-resolve.conf %service_add_post systemd-resolved.service %endif %preun network %if %{with networkd} %service_del_preun systemd-networkd.service %service_del_preun systemd-networkd-wait-online.service %endif %if %{with resolved} %service_del_preun systemd-resolved.service %endif %postun network %if %{with networkd} %service_del_postun systemd-networkd.service %service_del_postun systemd-networkd-wait-online.service %endif %if %{with resolved} %ldconfig %service_del_postun systemd-resolved.service %endif %endif %if %{with portabled} %pre portable %service_add_pre systemd-portabled.service %post portable %tmpfiles_create portables.conf %service_add_post systemd-portabled.service %preun portable %service_del_preun systemd-portabled.service %postun portable %service_del_postun systemd-portabled.service %endif %if %{with experimental} %pre experimental %service_add_pre systemd-homed.service %service_add_pre systemd-oomd.service systemd-oomd.socket %service_add_pre systemd-userdbd.service systemd-userdbd.socket %post experimental %sysusers_create systemd-oom.conf %service_add_post systemd-homed.service %service_add_post systemd-oomd.service systemd-oomd.socket %service_add_post systemd-userdbd.service systemd-userdbd.socket %preun experimental %service_del_preun systemd-homed.service %service_del_preun systemd-oomd.service systemd-oomd.socket %service_del_preun systemd-userdbd.service systemd-userdbd.socket %postun experimental %service_del_postun systemd-homed.service %service_del_postun systemd-oomd.service systemd-oomd.socket %service_del_postun systemd-userdbd.service systemd-userdbd.socket %endif %files %defattr(-,root,root) %include %{SOURCE200} %files -n udev%{?mini} %defattr(-,root,root) %include %{SOURCE201} %include %{SOURCE206} %files container %defattr(-,root,root) %include %{SOURCE202} %if %{with networkd} || %{with resolved} %files network %defattr(-,root,root) %include %{SOURCE203} %endif %files doc %defattr(-,root,root,-) %{_docdir}/systemd/ %files devel %defattr(-,root,root,-) %license LICENSE.LGPL2.1 %include %{SOURCE204} %if %{with sysvcompat} %files sysvcompat %defattr(-,root,root,-) %include %{SOURCE205} %endif %files -n libsystemd0%{?mini} %defattr(-,root,root) %license LICENSE.LGPL2.1 %{_libdir}/libsystemd.so.0 %{_libdir}/libsystemd.so.0.34.0 %files -n libudev%{?mini}1 %defattr(-,root,root) %license LICENSE.LGPL2.1 %{_libdir}/libudev.so.1 %{_libdir}/libudev.so.1.7.4 %if %{with coredump} %files coredump %defattr(-,root,root) %{_bindir}/coredumpctl %{_prefix}/lib/systemd/systemd-coredump %{_unitdir}/systemd-coredump* %{_unitdir}/sockets.target.wants/systemd-coredump.socket %{_sysctldir}/50-coredump.conf %{_sysusersdir}/systemd-coredump.conf %config(noreplace) %{_sysconfdir}/systemd/coredump.conf %dir %{_localstatedir}/lib/systemd/coredump %if %{without bootstrap} %{_datadir}/bash-completion/completions/coredumpctl %{_datadir}/zsh/site-functions/_coredumpctl %{_mandir}/man1/coredumpctl* %{_mandir}/man5/coredump.conf* %{_mandir}/man8/systemd-coredump* %endif %endif %if %{without bootstrap} %files lang -f systemd.lang %endif %if %{with journal_remote} %files journal-remote %defattr(-, root, root) %config(noreplace) %{_sysconfdir}/systemd/journal-remote.conf %config(noreplace) %{_sysconfdir}/systemd/journal-upload.conf %{_unitdir}/systemd-journal-gatewayd.* %{_unitdir}/systemd-journal-remote.* %{_unitdir}/systemd-journal-upload.* %{_prefix}/lib/systemd/systemd-journal-gatewayd %{_prefix}/lib/systemd/systemd-journal-remote %{_prefix}/lib/systemd/systemd-journal-upload %{_sysusersdir}/systemd-remote.conf %{_mandir}/man5/journal-remote.conf* %{_mandir}/man5/journal-upload.conf* %{_mandir}/man8/systemd-journal-gatewayd.* %{_mandir}/man8/systemd-journal-remote.* %{_mandir}/man8/systemd-journal-upload.* %{_datadir}/systemd/gatewayd %ghost %dir %{_localstatedir}/log/journal/remote %endif %if %{with portabled} %files portable %defattr(-,root,root) %{_bindir}/portablectl %{_prefix}/lib/systemd/systemd-portabled %{_prefix}/lib/systemd/portable %{_unitdir}/systemd-portabled.service %{_unitdir}/dbus-org.freedesktop.portable1.service %{_datadir}/dbus-1/system.d/org.freedesktop.portable1.conf %{_datadir}/dbus-1/system-services/org.freedesktop.portable1.service %{_datadir}/polkit-1/actions/org.freedesktop.portable1.policy %{_tmpfilesdir}/portables.conf %{_mandir}/man*/portablectl* %{_mandir}/man*/systemd-portabled* %endif %if %{with testsuite} %files testsuite %defattr(-,root,root) %doc %{_testsuitedir}/test/README.testsuite %{_testsuitedir} %endif %if %{with experimental} %files experimental %defattr(-,root,root) %include %{SOURCE207} %endif %changelog