- Import commit 3bece8a25ae11e8ec132cdecc7e72a00ee790994
89a9721a47 Revert "logind: become the controlling terminal process before restoring VT" (bsc#1120836)
c3a8dc821b pam_systemd: reword message about not creating a session
0ba0f5b3ef pam_systemd: suppress LOG_DEBUG log messages if debugging is off
- Import commit a3b059a8c60622e4ec30aabda93c6b41d0953dc4
9dbe9f12ec journal-remote: set a limit on the number of fields in a message (CVE-2018-16865 bsc#1120323)
61d569ab1b journal-remote: verify entry length from header
a08760b26c µhttpd: use a cleanup function to call MHD_destroy_response
43f46a1a3d journal-gateway: use _cleanup_ attribute to stop microhttpd daemon
437b0b2d01 journald: lower the maximum entry size limit to ½ for non-sealed fds
ac9e209710 journald: when processing a native message, bail more quickly on overbig messages
ce103705b9 journald: set a limit on the number of fields (1k) (CVE-2018-16865 bsc#1120323)
35538171c2 coredump: fix message when we fail to save a journald coredump
cfe247b555 basic/process-util: limit command line lengths to _SC_ARG_MAX
9d59e6f6ee journald: do not store the iovec entry for process commandline on stack (CVE-2018-16864 bsc#1120323)
8d650a68d4 journald: remove unnecessary {}
b608f532a4 coredump: remove duplicate MESSAGE= prefix from message
0dbb2dc066 vconsole-setup: fonts copy will fail if the current terminal is in graphical mode (bsc#1114933)
e501d65540 Revert "systemctl: when removing enablement or mask symlinks, cover both /run and /etc"
d3ea69961f fs-util: rename safe_transition() into unsafe_transition()
338470fdc9 tmpfiles: use CHASE_WARN in addition to CHASE_SAFE
d9ae1b30da fs-util: make chase_symlink() returns -ENOLINK when unsafe transitions are met
8b76594d1f fs-util: add new CHASE_WARN flag to chase_symlinks()
OBS-URL: https://build.opensuse.org/request/show/664420
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1049
- Import commit 8ae56af7802ef8f91fac64fa244d62a4468fbbd5
4474878178 udev-builtin-kmod: adjust logging
805534aff5 core: use the generic module_load() function
ac7e902530 shared/module-util: fix preexisting mixup with errno sign
415aa40793 udev-builtin-kmod: use the generic module_load() function
8a36b4bac6 Move module-util.h to src/shared/ and load_module() to libshared
999b910752 core/kmod-setup: restore comments
1f2b822a21 logind: stop managing VT switches if no sessions are registered on that VT
5ad8d374c5 terminal-util: introduce vt_release() helper
145d492490 logind: become the controlling terminal process before restoring VT (bsc#1101591)
d4b5dbc033 terminal-util: introduce vt_restore() helper
2e8af185f0 logind: make session_restore_vt() static
ff3048364f udev: downgrade message when we fail to set inotify watch up (bsc#1005023)
- Fix the test for figuring out if /etc/machine-id is writable in %post (bsc#1117063)
"test -w" always returns true for root user even if the writable
mode bits are not set. Fix this by testing the file mode bit value
instead.
- Move systemd-sysv-convert from /usr/sbin to /usr/lib/systemd
This tool is not supposed to be run by users.
- Import commit 8ae56af7802ef8f91fac64fa244d62a4468fbbd5
4474878178 udev-builtin-kmod: adjust logging
805534aff5 core: use the generic module_load() function
ac7e902530 shared/module-util: fix preexisting mixup with errno sign
415aa40793 udev-builtin-kmod: use the generic module_load() function
8a36b4bac6 Move module-util.h to src/shared/ and load_module() to libshared
999b910752 core/kmod-setup: restore comments
1f2b822a21 logind: stop managing VT switches if no sessions are registered on that VT
OBS-URL: https://build.opensuse.org/request/show/653864
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1048
- Add 0001-logind-keep-backward-compatibility-with-UserTasksMax.patch
We have to keep support for UserTasksMax= for a while before
dropping it. This patch is supposed to do that and also to make
users aware of this change. It also hints how to configure that
differently.
- Import commit f39674d6d114d999c50672c7bea8cad21e1eaed9
7d1e04e85 units: use =yes rather than =true everywhere
185ce0d34 units: assign user-runtime-dir@.service to user-%i.slice
a051f5e41 units: make sure user-runtime-dir@.service is Type=oneshot
30c6842c3 units: set StopWhenUnneeded= for the user slice units too
e74de046e login: fix typo in log message
OBS-URL: https://build.opensuse.org/request/show/646968
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1045
- Own %{_libexecdir}/modules-load.d (again)
This was incorrectly dropped during the split of the SUSE specific
configurations.
- Drop a Conflicts: in systemd-coredump
It not needed anymore since the mini variant of systemd-coredump is
not built anymore.
- Import commit b54f5d7a8b41898ce98f43cd1a6cc92c0071806d
5def29d24 coredump: only install coredump.conf when ENABLED_COREDUMP=true
9133e2d6e dhcp6: make sure we have enough space for the DHCP6 option header (bsc#1113632 CVE-2018-15688)
ebc3fa418 dhcp6: split assert_return() to be more debuggable when hit
51eefb6ac chown-recursive: let's rework the recursive logic to use O_PATH (bsc#1113666 CVE-2018-15687)
e1e1aa237 core: skip unit deserialization and move to the next one when unit_deserialize() fails
1c726c87d core: when deserializing state always use read_line(…, LONG_LINE_MAX, …) (bsc#1113665 CVE-2018-15686)
4cd7d11ac core: don't create Requires for workdir if "missing ok" (bsc#1113083)
- Make systemd-coredump sub-package optional
and don't build the mini variant.
- Drop duplicated %{?mini} suffix for systemd-{container,coredump} subpackages
"-mini" is already part of the name of the main package so there's
no need to append it again for those sub packages. It's only needed
when the name of a subpackage is completely redefined, IOW when '-n'
option is used with the %package directive.
- Dont ship /usr/sbin/resolvconf symlink for now
It conflicts with the bin shipped by openresolv and provides
limited compat only.
OBS-URL: https://build.opensuse.org/request/show/646424
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1044
- Ship systemd-sysv-install helper via the main package
This script was part of systemd-sysvinit sub-package but it was
wrong since systemd-sysv-install is a script used to redirect
enable/disable operations to chkconfig when the unit targets are
sysv init scripts. Therefore it's never been a SySV init tool.
While at it, don't ship this script (as well as
systemd-sysv-convert) when sysvcompat is not defined.
- Import commit 19b3868d32af20f1ecc86fe3c997144ff456fd65
06c2284d64 core: introduce systemd.early_core_pattern= kernel cmdline option
479b002083 core: add missing 'continue' statement
c7fbccc62e journald: don't ship systemd-journald-audit.socket (bsc#1109252)
f17a6c790c detect-virt: do not try to read all of /proc/cpuinfo (bsc#1109197)
5a1aa84544 compat-rules: generate more compat by-id symlinks for NVMe devices (bsc#1095096)
OBS-URL: https://build.opensuse.org/request/show/642103
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1041
- Import commit a67b516d49115a5be0f2ac27a2874cee6c59a7ae
f8457adf9d emergency: make sure console password agents don't interfere with the emergency shell
b8bbb50634 man: document that 'nofail' also has an effect on ordering
a5410b2229 journald: take leading spaces into account in syslog_parse_identifier
b793c312c7 journal: do not remove multiple spaces after identifier in syslog message
f9595f0481 syslog: fix segfault in syslog_parse_priority()
d464f06934 journal: fix syslog_parse_identifier()
e70422883a socket-util: attempt SO_RCVBUFFORCE/SO_SNDBUFFORCE only if SO_RCVBUF/SO_SNDBUF fails (bsc#991901)
OBS-URL: https://build.opensuse.org/request/show/638970
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1040
- Import commit cc55f1ea9e1c1ccab5b9fb97e10e08830d02b282
962b38aaf user@.service: don't kill user manager at runlevel switch (bsc#1091677)
3986c4d82 units: make sure user@.service runs with dbus still up
5e68aa0f2 Revert "udevd: increase maximum number of children" (bsc#1107617)
099138fd9 fix race between daemon-reload and other commands (v237) (bsc#1105031)
OBS-URL: https://build.opensuse.org/request/show/635662
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1038
- Import commit 0350f62a8cf7f151951b6b78337fe3c198b8bf6a
fbf43a697 core: don't freeze OnCalendar= timer units when the clock goes back a lot (bsc#1090944)
4134ba8b6 man: SystemMaxUse= clarification in journald.conf(5) (bnc#1101040)
78bb2a0c4 socket-util: fix getpeergroups() assert(fd) (#8080) (bsc#1096516)
1753d0420 systemctl: mask always reports the same unit names when different unknown units are passed (bsc#1095973)
50ebf79d7 scsi_id: Fixup prefix for pre-SPC inquiry reply (bsc#1039099)
570f7655b locale-util: on overlayfs FTW_MOUNT causes nftw(3) to not list *any* files
OBS-URL: https://build.opensuse.org/request/show/625754
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1034
- Drop runtime dependency on dracut (bsc#1098569)
Otherwise systemd pulls in tools to generate the initrd even in
container/chroot installations that don't have a kernel anyways.
For environments where initrd matters, dracut should be pulled via a
pattern.
- Drop runtime dependency on dracut (bsc#1098569)
Otherwise systemd pulls in tools to generate the initrd even in
container/chroot installations that don't have a kernel anyways.
For environments where initrd matters, dracut should be pulled via a
pattern.
OBS-URL: https://build.opensuse.org/request/show/618913
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1033
- Import commit d8196805089566ecd846b7c627ff2f3c42588c50
621b247f3 device: skip deserialization of device units when udevd is not running
a7da5bdbc device: make sure to always retroactively start device dependencies (bsc#1088052)
303624f6f systemd-udevd: limit children-max by available memory (#8668) (bsc#1086785 bsc#1066422)
76acf3ae9 tmpfiles: fix directory removal with force symlink (#8619)
- Ship 99-sysctl.conf instead of creating it during package installation/update (bsc#1088769)
Previously this symlink was created in /etc/sysctl.d during %post
which made the symlink not owned and more importantly it was created
only if /etc/sysctl.conf is already installed which is not always
the case during the installation process it seems.
So ship the symlink unconditionally and put it in /usr/lib/sysctl.d
instead since it's a distro default behavior that might be overriden
by sysadmin later.
- Be consistent in 60-io-scheduler.rules
And use "?*" when checking for the non empty string (instead of "*?").
OBS-URL: https://build.opensuse.org/request/show/599905
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1027
- Drop systemd-bash-completion sub-package
Now we directly ship the completion scripts from the main package as
we already do for zsh. I couldn't see any advantages in this split.
- Be more accurate when specifiying the tools version we provide
- Make sure rpm won't expand %autopatch even if it's commented
- stat(1) as well as systemctl are not use in %post section of udev
So remove stat(1) from the list of dep and move systemctl to the
requirements of %postun since it's called from there.
- Be more accurate when specifiying the tools version we provide
- Make sure rpm won't expand %autopatch even if it's commented
- stat(1) as well as systemctl are not use in %post section of udev
So remove stat(1) from the list of dep and move systemctl to the
requirements of %postun since it's called from there.
OBS-URL: https://build.opensuse.org/request/show/592079
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1024
- Import commit 14b3e00c3ccb8c1c82c8a2e99a9534750880a09e
e0a8285e2 pid1: when creating service directories, don't chown existing files (#8181) (boo#1085971)
fb25886b1 Fix format-truncation compile failure by typecasting USB IDs (#8250) (bsc#1084638)
5a6e9c92e sysusers: make sure to reset errno before calling fget*ent()
c2e1ee488 sysusers: also add support for NIS entries in /etc/shadow
51cb94fa1 sysusers: do not append entries after the NIS ones (bsc#1085062 bsc#1045092)
783f3d368 basic/macros: rename noreturn into _noreturn_ (#8456)
- Drop 0001-basic-macros-rename-noreturn-into-_noreturn_.patch
It's been merged in the git repo.
- Rename the tarball
So it's clear that it contains some additional patches on top of the
upstream version. Use the commit hash in the name so the exact
version can easily be identified.
Provide _service file which can be used to retrieve the tarball from
the git repo (with "osc service disabledrun").
- Split systemd-coredump sub-package off (bsc#1083849)
- Don't ship machines.target in systemd-container but in systemd main package
machines.target is supposed to be a standard target for
starting/stopping all containers. systemd-nspawn is the main user of
it but other container managers could also make use of it.
- Build a mini variant of systemd-container
So we don't have to manually track and remove all files that should
be shipped by systemd-container in the case of a bootstrap build.
- Run migrate-sysconfig-i18n.sh also during package installation (bsc#1086164)
This is needed when we upgrade from SLE11.
OBS-URL: https://build.opensuse.org/request/show/592039
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1023
- Remove dropin that was used to turn delegation off for user instances
Upstream now enables "memory" and "pids" controllers only which
should have a very limited impact on performance compare to the
"cpu" controller.
- Import commit 46d6bc9c4f1c05f3b4fcfca754cc59963bd86ce3
2a79f4e78 units: delegate "memory" instead of "cpu" by default for user instances (#8320) (bsc#954765 bnc#953241 fate#320421)
88174ae85 compat-rules: fix syntax errors spotted by test/rule-syntax-check.py
OBS-URL: https://build.opensuse.org/request/show/584654
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1020
- BS forces us to own %{_prefix}/lib/modprobe.d
This seems wrong but that's how the SUSE BS works.
- Upgrade to v237 (commit 78221ca750a9c266f9f8497dda59d7ee44000a6c)
Udev rules 60-ssd-scheduler.rules and 80-hotplug-cpu-mem.rules have
been removed from the git repo and are now maintained at the package
level. Those rules have been rejected by upstream and are defining
some defaults which should maintain by the kernel folks.
- Don't call "pam-config --systemd"
pam_systemd.so has been integrated directly in the PAM stack since
bsc#812462. So there's no need to call pam-config.
OBS-URL: https://build.opensuse.org/request/show/581724
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1017
- Fix build errors due to the split-off of systemd-containe:
found conflict of systemd-234-33.1.x86_64 with systemd-container-234-33.1.x86_64:
- /usr/share/man/man5/systemd.nspawn.5.gz
- /usr/share/man/man1/systemd-nspawn.1.gz
found conflict of systemd-container-234-33.1.x86_64 with systemd-mini-container-234-33.1.x86_64:
- /usr/bin/systemd-nspawn
- /usr/lib/systemd/system/systemd-nspawn@.service
- /usr/lib/tmpfiles.d/systemd-nspawn.conf
OBS-URL: https://build.opensuse.org/request/show/580181
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1016
- Import commit 295ead0f396beb2b5199abd99a17e274c2581f95
f4f94ab2e meson: install rules/80-hotplug-cpu-mem.rules
2901aa9b9 meson: install rules/60-ssd-scheduler.rules
1293c0056 core: use id unit when retrieving unit file state (#8038) (bsc#1075801)
596b2b241 Revert "vconsole-setup: add SUSE specific settings for font/keyboard in sysconfig"
0b595da04 Revert "locale-setup: handle locale at boot time well"
- Re-enable systemd-firstboot
It's used by the installer and also by JeOS.
OBS-URL: https://build.opensuse.org/request/show/578063
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1013
- Use %systemd_post in %post
- Own /usr/lib/systemd/system-environment-generators directory
- More systemd rpm macro usages
- Disable systemd-firstboot
I don't think there's any use case for it currently.
- Use systemd rpm macros in paths defined in the specfile
- Stop importing i18n settings from /etc/sysconfig (fate#319454)
Bits taken from SLE15.
- Make systemd-timesyncd use the openSUSE NTP servers by default
Previously systemd-timesyncd used the Google Public NTP servers
time{1..4}.google.com
- Use %systemd_post in %post
- Own /usr/lib/systemd/system-environment-generators directory
- More systemd rpm macro usages
- Disable systemd-firstboot
I don't think there's any use case for it currently.
- Use systemd rpm macros in paths defined in the specfile
- Stop importing i18n settings from /etc/sysconfig (fate#319454)
OBS-URL: https://build.opensuse.org/request/show/577997
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1012
- Switch to Meson build system
Some rearrangement in the file list was also needed. That was
probably due to the upgrade of rpm.
- Import commit 0a5600eb7f8263c7c79fec0d85cc159d54aba636
2a181fc6f insserv-generator: make it build with meson
7b0401da4 build-sys: don't build networkctl if networkd is disabled
- Don't build-require selinux for the mini package
- Drop libgcrypt.m4
The mini package builds fine without it so it doesn't seem necessary
anymore.
- Import commit 846d838c37865da60eba48090e570e959291399f
b1e0a348d fileio: include sys/mman.h
f1fa784cb meson: update header file to detect memfd_create()
8838ba7ec meson: define _GNU_SOURCE to detect copy_file_range() (#7734)
531a00c84 Restore "restore /var/run and /var/lock bind mount if they aren't symlink""
(the 3 first commits make systemd build against glibc 2.27)
- Import commit 3f421e4fbf6fcb31d74caf729435868ba8824483
7fb9ea39a Revert "restore /var/run and /var/lock bind mount if they aren't symlink"
23ce1207a meson.build: make docdir configurable (#8068)
- Import commit 0a5600eb7f8263c7c79fec0d85cc159d54aba636
OBS-URL: https://build.opensuse.org/request/show/573381
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1009
- Import commit 8ec9f58d334c76e736957812d9e57151502a6f63
07c6ee3eb compat-rules: get rid of scsi_id when generating compat symlinks for NVMe devices (bsc#1051465)
261a4ef38 compat-rules: generate compat by-id symlinks with 'nvme' prefix missing (bsc#1063249)
- Drop 0001-compat-rules-get-rid-of-scsi_id-when-generating-comp.patch
It's been imported in branch "compats/udev-compat-symlinks" which
has been merged in branch "openSUSE-Factory" in its turn.
- Import commit c516268845b0fd0683cef2e491b84077371e8f01
37da1facb core: disable session keyring per system sevice entirely for now (bnc#1045886)
8a1ae0449 strv: fix buffer size calculation in strv_join_quoted()
- Drop 0001-core-disable-session-keyring-per-system-sevice-entir.patch
It's been merged in branch "SUSE/v234".
OBS-URL: https://build.opensuse.org/request/show/571921
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1008
- Import commit cc94ce8513221061898c83f57862544b16021f0e
aa3eba828 delta: don't ignore PREFIX when the given argument is PREFIX/SUFFIX
b1ea0173a delta: extend skip logic to work on full directory paths (prefix+suffix) (bsc#1070428)
77c5065f9 delta: check if a prefix needs to be skipped only once
db32866d1 Fix parsing of features in detect_vm_xen_dom0 (#7890) (bsc#1048510)
11d40461a sd-bus: use -- when passing arguments to ssh (#6706)
1148d99f6 tmpfiles: consider /etc uninitialized also when /etc/machine-id is present but empty (#7849) (bsc#1075179)
3a95f69bf tmpfiles: downgrade warning about duplicate line
- Edit scripts-systemd-fix-machines-btrfs-subvol.sh
We shouldn't be creating a /var/lib/machines subvolume if /var is
already a seperate partition or subvolume. /var/lib/machines will
already be excluded from snapper & similar tooling in this case.
OBS-URL: https://build.opensuse.org/request/show/566368
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1004
- Import commit 82dbe8a2ae56649231111eaadd4c302a2d2175ee
8c7f0c449 service: Don't stop unneeded units needed by restarted service (bsc#1066156)
869be64ce sysctl: use raw file descriptor in sysctl_write (#7753)
0c2400810 sysctl: disable buffer while writing to /proc (bsc#1071558)
9eb1f30b8 Use read_line() and LONG_LINE_MAX to read values configuration files. (bsc#1071558)
4dbea654f def: add new constant LONG_LINE_MAX
48f14cd71 fileio: add new helper call read_line() as bounded getline() replacement
861e1a222 build-sys: udevadm should have LOG_REALM=LOG_REALM_UDEV
8ed5cf3fb meson: libudev_core and udevadm should have LOG_REALM=LOG_REALM_UDEV (#7666)
a9f93f1d0 virt: use XENFEAT_dom0 to detect the hardware domain (#6442, #6662) (#7581) (bsc#1048510)
fe56abdf9 seccomp: arm64/x32 do not have _sysctl
c9194fe37 seccomp: arm64 does not have mmap2
31d9b3c32 fs-util: small tweak in chase_symlinks()
9dd0bc7a3 meson: do not include man/meson.build if xsltproc not found
7e29e2b07 analyze: replace --no-man with --man=no in the man page (bsc#1068251)
OBS-URL: https://build.opensuse.org/request/show/563316
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=1002
- Import commit e30f1b10e276fb18db10ea2463fbd7146ae778f6
63481b24b firstboot: do not write vconsole.conf when arg_keymap is empty (bsc#1070124)
- Add 0001-compat-rules-get-rid-of-scsi_id-when-generating-comp.patch (bsc#1051465)
This patch is not yet merged in the 'compats/udev-compat-symlinks'
branch: we asked to upstream if it would be possible to introduce a
new specifier that wouldn't strip trailing whitespaces , see
https://github.com/systemd/systemd/issues/7462
Also this allows to give the patch more testing before merging it in
the git repo.
OBS-URL: https://build.opensuse.org/request/show/546398
OBS-URL: https://build.opensuse.org/package/show/Base:System/systemd?expand=0&rev=999