1
1
mirror of https://github.com/systemd/systemd-stable.git synced 2024-12-22 13:33:56 +03:00
Commit Graph

62479 Commits

Author SHA1 Message Date
Yu Watanabe
6dafcad55c loop-util: fix error condition and return value
Fixes a bug introduced by da4fd28871.

(cherry picked from commit 2421dd7267)
2023-03-03 09:57:08 +01:00
Winterhuman
ec6c1fbf7d Correct journal misspell
(cherry picked from commit 1ec9b72258)
2023-03-03 09:56:49 +01:00
Yu Watanabe
6b6df9a845 cryptsetup: check the existence of salt by salt_size > 0
Follow-up for 504d0acf61.

The function may be called with non-NULL salt and salt_size == 0.

(cherry picked from commit 8c2264abb9)
2023-03-03 09:52:23 +01:00
Jan Janssen
cd5de2811a boot: Fix assertion failure
The TPM code expects a description unless the PCR index indicates that
no measurements have to take place. The assert was preempting this
check from happening.

Fixes: #26428
(cherry picked from commit f92428eae5)
2023-03-03 09:50:12 +01:00
Lennart Poettering
01b90e1588 pid1: generate compat warning for SystemCallArchitectures= if seccomp is off
(cherry picked from commit 6aa2c55522)
2023-03-03 09:48:30 +01:00
Yu Watanabe
a3177cbe54 core/mount: fix default target for /sysusr/usr and its child
Follow-up for 29a24ab28e.

(cherry picked from commit dbfc096095)
2023-03-03 09:48:11 +01:00
Luca Boccassi
3168bda640 mkosi: configure multiarch libdir in debian/ubuntu builds
Debian/Ubuntu use /usr/lib/<triplet> instead of /usr/lib64, so configure it
accordingly. This is especially important for cryptsetup token plugins,
as cryptsetup comes from the distro and is configured to look into those
directories.

(cherry picked from commit bbb40c4e6f)
2023-03-03 09:43:10 +01:00
Dan Streetman
51b7acfcef tpm2: fix build failure without openssl
(cherry picked from commit 0d7009d35d)
2023-03-03 09:41:39 +01:00
Joan Bruguera
a88e35bf95 resolved: Fall back to TCP if UDP is blocked
If UDP is blocked on the system (e.g. by iptables or BPF), the kernel will
return EPERM on some or all of the system calls (connect, sendmsg, etc.).
In this case, try to fall back to TCP, which hopefully will not be blocked.

(cherry picked from commit 3dd6336ad0)
2023-03-03 09:35:50 +01:00
Luca Boccassi
477fdc5afe NEWS: finalize 2023-02-15 19:11:52 +00:00
Luca Boccassi
3c145b7d04
Merge pull request #26427 from bluca/hwdb
Update news and hwdb
2023-02-15 19:08:36 +00:00
Luca Boccassi
0c1f5d50be hwdb: update 2023-02-15 18:05:43 +00:00
Luca Boccassi
1233a7cf1b NEWS: update contributors list 2023-02-15 18:03:15 +00:00
Luca Boccassi
504d0acf61 cryptsetup: do not assert when unsealing token without salt
Salt was added in v253. We are not checking whether it was actually found
(non-zero size), so when an old tpm+pin enrollment is opened things go boom.
For good measure, check both the buffer and the size in both places.

Assertion 'saltlen > 0' failed at src/shared/tpm2-util.c:2490, function tpm2_util_pbkdf2_hmac_sha256(). Aborting.
2023-02-15 18:01:28 +00:00
Yu Watanabe
c126c8ac81 ukify: fix padding length 2023-02-15 18:01:02 +00:00
Luca Boccassi
9ecf865433
Merge pull request #26417 from yuwata/sysusers-root-group
sysusers: also create root group
2023-02-15 17:03:59 +00:00
Yu Watanabe
fff1edc9f9
Merge pull request #26424 from ldv-alt/fix-typos
Fix a few typos in NEWS, docs and comments
2023-02-16 00:10:18 +09:00
Raul Tambre
6b4dc4d2f8 man/tc: Fix hexadecimals being with an O 2023-02-15 16:03:28 +01:00
Dmitry V. Levin
30fd9a2dab treewide: fix a few typos in NEWS, docs and comments 2023-02-15 10:41:03 +00:00
Yu Watanabe
729045ffae NEWS: mention that the default mDNS mode is now "yes"
C.f. issue #25252, PR #25255, and
RHBZ#2169786 (https://bugzilla.redhat.com/show_bug.cgi?id=2169786).
2023-02-15 10:41:03 +00:00
Dmitry V. Levin
8d3473f01d src: fix several typos in log messages 2023-02-15 10:41:03 +00:00
Yu Watanabe
6f31095105 test-sysusers: add test for basic.conf 2023-02-15 10:54:25 +09:00
Yu Watanabe
9361a712f8 sysusers: also add root group
Follow-up for 49bb7fe5f8.

Fixes an issue reported at
https://github.com/systemd/systemd/pull/26270#issuecomment-1428945403.
2023-02-15 10:29:10 +09:00
Jean-Tiare Le Bigot
112f81a547 hwdb: Add HP ENVY x360 2-in-1
Since #26144, RFKILL events are disabled for HP ENVY x360 Convertible.
This commit adds a variation of the name.
2023-02-15 10:25:37 +09:00
Mike Gilbert
7cd137e647 bootctl: avoid using __WORDSIZE macro
__WORDSIZE does not seem to be documented anywhere, and is probably
meant to be used internally by glibc headers.

In systemd, it was only being used in warning messages. We can avoid
using it by rewording the messages slightly.

Fixes a build error with musl libc.

Bug: https://bugs.gentoo.org/894430
2023-02-15 10:24:25 +09:00
Yu Watanabe
f0353cf2e9 core/execute: fix comment 2023-02-15 10:10:13 +09:00
Yu Watanabe
0b75493da0 tree-wide: fix typo and comment style update 2023-02-15 10:08:16 +09:00
Daan De Meyer
0da4cc97b4 test-boot-timestamp: Handle ERANGE error
Timestampfs from sysfs files can be zero in which case ERANGE will
be returned so let's make sure we catch that.
2023-02-13 22:00:33 +01:00
Jan Janssen
ec96dad2f4 boot: Ensure raise() is not dropped by LTO 2023-02-12 22:23:22 +01:00
Daan De Meyer
1d362bdf0f mkosi: Stop installing kernel headers to /usr
The selftests automatically pick up the headers from the kernel
build directory so we don't have to install them to /usr ourselves.
2023-02-12 18:41:27 +01:00
Yu Watanabe
939835cebb
Merge pull request #26400 from ml-/fix-directory-and-typos
Fix directory for user home bind mounts in log error and man page
2023-02-12 17:33:41 +09:00
ml
6ebfecd073 man: fix typos 2023-02-12 00:54:07 +01:00
ml
f39d7d00a3 man: fix directory for user home bind mounts 2023-02-12 00:48:25 +01:00
ml
7b03b44ed9 nspawn: fix directory in logged error 2023-02-12 00:22:52 +01:00
Jan Macku
96893d0937 ci(labeler): fix missing emoji in dont-merge label 2023-02-11 20:23:46 +09:00
Jan Macku
f8b7d483f5 ci(labeler): fix missing emoji in quick-review label 2023-02-11 20:23:46 +09:00
Luca Boccassi
fa8cf1e54d NEWS: update date 2023-02-10 17:12:31 +00:00
Zbigniew Jędrzejewski-Szmek
10387e833c
Merge pull request #26392 from bluca/news
Update hwdb and news
2023-02-10 18:05:17 +01:00
Lennart Poettering
c12a0d6dcf dissect-image: unknown/unsupported diskseq is indicated by 0, not by UINT64_MAX
At almost all places if diskseq is not supported we encode this as
diskseq zero. But in two places we got the check for that wrong,
assuming it was UINT64_MAX.

Fix that.
2023-02-10 18:03:21 +01:00
Luca Boccassi
a7073ede83 hwdb: update database 2023-02-10 16:17:35 +00:00
Luca Boccassi
4142ea8d79 NEWS: update contributors list 2023-02-10 16:14:06 +00:00
Lennart Poettering
32d6707dd1 core: when isolating to a unit, also keep units running that are triggered by units we keep running
Inspired by: #26364

(this might even "fix" #26364, but without debug logs it's hard to make
such claims)

Fixes: #23055
2023-02-10 16:09:35 +00:00
Samuel Cabrero
edd5ec2373 userdb: Use json_dispatch_user_group_name() to parse GetMembership fields
It allows to relax the checks and allow characters like '\', used by
windows to split the domain name and user name.

For reference, discussion in the systemd-devel mailing list:
https://lists.freedesktop.org/archives/systemd-devel/2023-February/048804.html

Signed-off-by: Samuel Cabrero <scabrero@suse.de>
2023-02-10 15:09:45 +00:00
Daan De Meyer
39a6a5169b mkosi: Use globs instead of prepare script to install extra packages
This allows us to install everything in the same dnf command instead
of having to use a prepare script to run dnf from within the image.

This is a hack until mkosi supports release specific dropin files.
2023-02-10 16:05:32 +01:00
Luca Boccassi
a4d7819d15
Merge pull request #26387 from bluca/swapon_util_linux
README/NEWS: note that we now explicitly require util-linux's swapon due to new option
2023-02-10 14:23:16 +00:00
Luca Boccassi
f5ebd2ef16 NEWS: note that we require a swapon that supports --fixpgsz 2023-02-10 13:57:49 +00:00
Luca Boccassi
164070e497 README: explicitly note that util-linux's mount/swap are required
These are the most visible and hard requirements, as we use options that
busybox does not provide, so list them explicitly to avoid surprises
2023-02-10 13:24:51 +00:00
Yu Watanabe
645063d1bb cryptenroll: drop deadcode
Follow-up for b0fc23fae5.

After the commit, 'signature_path' is now always non-NULL, hence the
condition can be dropped.

Fixes CID#1504492.
2023-02-10 10:45:19 +00:00
Daan De Meyer
c9853672a0 mkosi: Update to latest
Let's make sure we're testing unprivileged builds properly. Usage
of SourceFileTransfer= and SourceFileTransferFinal= are removed as
they were dropped by mkosi. SourceFileTransfer=mount is now the
default in mkosi so behavior for the build script is unchanged. We
stop copying sources in the final image until mkosi adds support
for virtiofs.
2023-02-10 18:16:54 +09:00
Jan Janssen
5983306474 boot: Fix undefined reference to raise() on arm
This is just a workaround. Once we drop gnu-efi, the arm build system
for EFI binaries should be changed to use the arm-none-eabi toolchain,
which should not exhibit this behavior.
2023-02-09 21:55:40 +00:00