summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Lennart Poettering [Fri, 19 Oct 2018 10:12:33 +0000 (12:12 +0200)]
dhcp6: make sure we have enough space for the DHCP6 option header
Fixes a vulnerability originally discovered by Felix Wilhelm from
Google.
CVE-2018-15688
LP: #
1795921
https://bugzilla.redhat.com/show_bug.cgi?id=
1639067
(cherry picked from commit
4dac5eaba4e419b29c97da38a8b1f82336c2c892)
Gbp-Pq: Name dhcp6-make-sure-we-have-enough-space-for-the-DHCP6-option.patch
Zbigniew Jędrzejewski-Szmek [Sun, 19 Aug 2018 17:11:30 +0000 (19:11 +0200)]
meson: rename -Ddebug to -Ddebug-extra
Meson added -Doptimization and -Ddebug options, which obviously causes
a conflict with our -Ddebug options. Let's rename it.
Fixes #9883.
(cherry picked from commit
8f6b442a78d0b485f044742ad90b2e8271b4e68e)
Gbp-Pq: Name meson-rename-Ddebug-to-Ddebug-extra.patch
Filipe Brandenburger [Wed, 12 Sep 2018 07:23:40 +0000 (00:23 -0700)]
test: use ${builddir}/systemd-runtest.env for $SYSTEMD_CATALOG_DIR
This makes it so that tests no longer need to know the absolute paths to the
source and build dirs, instead using the systemd-runtest.env file to get these
paths when running from the build tree.
Confirmed that test-catalog works on `ninja test`, when called standalone and
also when the environment file is not present, in which case it will use the
installed location under /usr/lib/systemd/catalog.
The location can now also be overridden for this test by setting the
$SYSTEMD_CATALOG_DIR environment variable.
(cherry picked from commit
49cdae63d168b2fe0e19f9f090b90d79de3c39bb)
Gbp-Pq: Name test-use-builddir-systemd-runtest.env-for-SYSTEMD_CATALOG.patch
Filipe Brandenburger [Wed, 12 Sep 2018 06:55:02 +0000 (23:55 -0700)]
test: use ${builddir}/systemd-runtest.env to set $SYSTEMD_TEST_DATA
This simplifies get_testdata_dir() to simply checking for an environment
variable, with an additional function to locate a systemd-runtest.env file in
the same directory as the test binary and reading environment variable
assignments from that file if it exists.
This makes it possible to:
- Run `ninja test` from the build dir and have it use ${srcdir}/test for
test unit definitions.
- Run a test directly, such as `build/test-execute` and have it locate
them correctly.
- Run installed tests (from systemd-tests package) and locate the test
units in the installed location (/usr/lib/systemd/tests/testdata), in
which case the absence of the systemd-runtest.env file will have
get_testdata_dir() use the installed location hardcoded into the
binaries.
Explicit setting of $SYSTEMD_TEST_DATA still overrides the contents of
systemd-runtest.env.
(cherry picked from commit
e2d413707fc68ed033a83e10a055ca638a1e1e18)
Gbp-Pq: Name test-use-builddir-systemd-runtest.env-to-set-SYSTEMD_TEST.patch
Filipe Brandenburger [Wed, 12 Sep 2018 06:15:09 +0000 (23:15 -0700)]
test: remove support for suffix in get_testdata_dir()
Instead, use path_join() in callers wherever needed.
(cherry picked from commit
55890a40c3ec0c061c04d1395a38c26313132d12)
Gbp-Pq: Name test-remove-support-for-suffix-in-get_testdata_dir.patch
Yu Watanabe [Tue, 11 Sep 2018 00:18:33 +0000 (09:18 +0900)]
test: make test-catalog relocatable
Fixes #10045.
(cherry picked from commit
d9b6baa69968132d33e4ad8627c7fe0bd527c859)
Gbp-Pq: Name test-make-test-catalog-relocatable.patch
Yu Watanabe [Tue, 11 Sep 2018 00:17:22 +0000 (09:17 +0900)]
test: introduce test_is_running_from_builddir()
(cherry picked from commit
8cb10a4f4dabc508a04f76ea55f23ef517881b61)
Gbp-Pq: Name test-introduce-test_is_running_from_builddir.patch
Yu Watanabe [Thu, 26 Jul 2018 02:42:54 +0000 (11:42 +0900)]
core: fix gid when DynamicUser=yes with static User=
When DynamicUser=yes and static User= are set, and the user has
different uid and gid, then as the storage socket for the dynamic
user does not contains gid, we need to obtain gid.
Follow-up for
9ec655cbbd7505ef465e0444da0622e46099ce42.
Fixes #9702.
(cherry picked from commit
25a1df7c652d180eb716412885c3ce3fcc1bbded)
Gbp-Pq: Name core-fix-gid-when-DynamicUser-yes-with-static-User.patch
Alan Jenkins [Mon, 3 Sep 2018 10:10:24 +0000 (11:10 +0100)]
user-runtime-dir: fix selinux regression
Fix #9993. When this code was split out to user-runtime-dir, it forgot to
include the call to mac_selinux_init(). So mkdir_label() stopped working.
Fixes: a9f0f5e50104 ("logind: split %t directory creation to a helper
unit")
(cherry picked from commit
81375d802672f34205bef9f301c58854af5fc568)
Gbp-Pq: Name user-runtime-dir-fix-selinux-regression.patch
Yu Watanabe [Sun, 22 Jul 2018 14:10:02 +0000 (23:10 +0900)]
timedate: defer the property changed signal until job of starting/stopping NTP service is finished
Before this, the property changed signal is emitted immediately after
StartUnit/StopUnit method is called. So, the running state of the NTP
client service may not updated.
This makes the timing of emitting property changed signal is deferred
until job of starting/stopping NTP client service is completed.
Fixes #9672.
(cherry picked from commit
3af0a96c0fcc623bd16649fc3640396a657cf9ef)
Gbp-Pq: Name timedate-defer-the-property-changed-signal-until-job-of-s.patch
Yu Watanabe [Sat, 21 Jul 2018 14:07:53 +0000 (23:07 +0900)]
timedate: increment reference count of sd_bus_message
The commit
5d280742b645a69a19e7f9131adc0c95f5c7fa07 introduces a
barrier to suppress calling context_update_ntp_status() multiple times.
However, it just stores the address of sd_bus_message object. So,
when an address is reused on the subsequent message, then the status
of NTP clients are not updated.
This makes the stored message object is referenced by the context
object. So, the subsequent message is on cirtainly different address.
(cherry picked from commit
2770af85ac04fd14af2f6bcdf4d3967ed6f2e36f)
Gbp-Pq: Name timedate-increment-reference-count-of-sd_bus_message.patch
Michael Biebl [Fri, 13 Jul 2018 21:36:13 +0000 (23:36 +0200)]
Do not apply uaccess tag for /dev/kvm if mode is 0666
(cherry picked from commit
ace5e3111c0b8d8bfd84b32f2c689b0a4d92c061)
Gbp-Pq: Name Do-not-apply-uaccess-tag-for-dev-kvm-if-mode-is-0666.patch
Michael Biebl [Tue, 10 Jul 2018 12:47:58 +0000 (14:47 +0200)]
Re-add uaccess tag for /dev/kvm
If --dev-kvm-mode is set to something different then 0666, which we
explicitly support, it makes sense to still apply the uaccess tag to
/dev/kvm. For distros which opt to use the default 0666, this change is
a nop.
This partially reverts commit
b8fd3d82205f632ce001fade74fed287e1564a1a.
(cherry picked from commit
fa53e24130af3a389573acb9585eadbf7192955f)
Gbp-Pq: Name Re-add-uaccess-tag-for-dev-kvm.patch
Dave Reisner [Sat, 7 Jul 2018 09:39:01 +0000 (05:39 -0400)]
network/link: Fix logic error in matching devices by MAC
Prior to this commit, a .link file with a [Match] section containing
MACAddress= would match any device without a MAC. This restores the
matching logic prior to
e90d037.
(cherry picked from commit
25ea58d37385af27301b7ad25e985eb15f421614)
Gbp-Pq: Name network-link-Fix-logic-error-in-matching-devices-by-MAC.patch
Michael Biebl [Mon, 16 Jul 2018 09:27:44 +0000 (11:27 +0200)]
test: Drop SKIP_INITRD for QEMU-based tests
Not all distros support booting without an initrd. E.g. the Debian
kernel builds ext4 as a module and so relies on an initrd to
successfully start the QEMU-based images.
(cherry picked from commit
c2d4da002095fe6f86f89a508a81e48fb6d3196f)
Gbp-Pq: Name test-Drop-SKIP_INITRD-for-QEMU-based-tests.patch
Yu Watanabe [Sun, 15 Jul 2018 13:31:37 +0000 (22:31 +0900)]
sysusers,tmpfiles: re-create systemd-network, systemd-resolve and systemd-timesync
This partially reverts
d4e9e574ea0b5d23598a317e68399584d229568b,
0187368cadea183e18c6d575a9d6b7f491a402af, and
4240cb02fda90ba11dfc0114201e42691132c6a9.
The services systemd-networkd, systemd-resolved, and systemd-timesyncd
enable DynamicUsers= and have bus interfaces. Unfortunately, these
has many problems now. Let us create the relevant users, at least,
tentatively.
Fixes #9503.
(cherry picked from commit
5b5d82615011b9827466b7cd5756da35627a1608)
Gbp-Pq: Name sysusers-tmpfiles-re-create-systemd-network-systemd-resol.patch
Martin Pitt [Mon, 2 Jul 2018 20:26:31 +0000 (22:26 +0200)]
test: fix networkd-test.py rate limiting and dynamic user
- Reset systemd-networkd.service before each test run, to avoid running
into restart limits.
- Our networkd-test-router.service unit needs to run as root and thus
can't use `User=`; but networkd still insists on the
`systemd-network` system user to exist, so create it.
(cherry picked from commit
c44c1b8ab5274c7cdb93d9a80c79bcddb503c235)
Gbp-Pq: Name test-fix-networkd-test.py-rate-limiting-and-dynamic-user.patch
Yu Watanabe [Mon, 25 Jun 2018 05:56:49 +0000 (14:56 +0900)]
tmpfiles: specify access mode for /run/systemd/netif
This partially reverts
2af767729489f6baa98a2641b2007acab44ed353.
As the directories are certainly readable and not-writable by
non-privileged users.
(cherry picked from commit
400d8461381c5748a97fccb8a022a20f40063a7d)
Gbp-Pq: Name tmpfiles-specify-access-mode-for-run-systemd-netif.patch
Yu Watanabe [Wed, 27 Jun 2018 12:20:55 +0000 (21:20 +0900)]
bus-util: make log level lower in request_name_destroy_callback()
Fixes #9442.
(cherry picked from commit
04e075b572b168a183cde29480dbb30d027d4fe7)
Gbp-Pq: Name bus-util-make-log-level-lower-in-request_name_destroy_cal.patch
Mike Gilbert [Wed, 27 Jun 2018 14:36:50 +0000 (10:36 -0400)]
basic: add missing comma in raw_clone assembly for sparc
Fixes: 96f64eb5741b157f26a9089816fdd992e959792e
Closes: https://github.com/systemd/systemd/issues/9444
(cherry picked from commit
358248caa3eca525751694de7c34b16bb46d5a9c)
Gbp-Pq: Name basic-add-missing-comma-in-raw_clone-assembly-for-sparc.patch
Filipe Brandenburger [Wed, 27 Jun 2018 16:19:33 +0000 (09:19 -0700)]
sleep: fix one more printf format of a fiemap field
Use PRIu64 constant to get the format right on LP-64 architectures,
cast to (uint64_t) to solve incompatibility of __u64.
This was missed in
ad4bc3352285f467f4ffa03c3171b19fa0a8758d, so fix it
with this follow up.
(cherry picked from commit
d7af62d52cd3b58c5fe7d410e907e01fed71c02e)
Gbp-Pq: Name sleep-fix-one-more-printf-format-of-a-fiemap-field.patch
Yu Watanabe [Sat, 23 Jun 2018 00:41:55 +0000 (09:41 +0900)]
timesync: changes type of drift_freq to int64_t
drift_freq is used for storing timex.freq, and is a 64bit integer.
To support x32 ABI, this changes the type of drift_freq to int64_t.
Fixes #9387.
(cherry picked from commit
75ca1621db4647a4d62d7873cd6715e28fe0f9fa)
Gbp-Pq: Name timesync-changes-type-of-drift_freq-to-int64_t.patch
Filipe Brandenburger [Tue, 26 Jun 2018 16:43:49 +0000 (09:43 -0700)]
sleep: fix printf format of fiemap fields
Use PRIu64 and PRIu32 constants to also get the format right on LP-64
architectures.
For the 64-bit fields, we need a cast to (uint64_t), since __u64 is
defined as a `long long unsigned` and PRIu64 expects a `long unsigned`.
In practice, both are the same, so the cast should be OK.
(cherry picked from commit
ad4bc3352285f467f4ffa03c3171b19fa0a8758d)
Gbp-Pq: Name sleep-fix-printf-format-of-fiemap-fields.patch
Michael Biebl [Tue, 20 Nov 2018 18:44:39 +0000 (18:44 +0000)]
systemd (239-13) unstable; urgency=medium
* autopktest: Add e2fsprogs dependency to upstream test.
Some of the upstream tests require mkfs.ext4. (Closes: #887250)
* systemctl: Tell update-rc.d to skip creating any systemd symlinks.
When calling update-rc.d via systemd-sysv-install, tell it to skip
creating any systemd symlinks as we want to handle those directly in
systemctl. Older update-rc.d versions will ignore that request, but
that's ok. This means we don't need a versioned dependency against
init-system-helpers. (Closes: #743217)
* pam_systemd: Suppress LOG_DEBUG log messages if debugging is off
(Closes: #825949)
* Drop cgroup-don-t-trim-cgroup-trees-created-by-someone-el.patch.
The patch is no longer necessary as lxc.service now uses Delegate=yes.
* Remove obsolete Replaces from pre-jessie
[dgit import unpatched systemd 239-13]
Michael Biebl [Tue, 20 Nov 2018 18:44:39 +0000 (18:44 +0000)]
Import systemd_239-13.debian.tar.xz
[dgit import tarball systemd 239-13 systemd_239-13.debian.tar.xz]
Michael Biebl [Fri, 22 Jun 2018 22:18:08 +0000 (23:18 +0100)]
Import systemd_239.orig.tar.gz
[dgit import orig systemd_239.orig.tar.gz]
projects / systemd.git / log