systemd-container-234-lp152.31.40.1<>,da Ը/=„ ?3J}miSѕa)"2b7r_[,NG!6ahq A@~%A!Rd4FVj!9;uJ҂E`hC4S'^Kg$vc2_ u-M1`WѶ+z / iCW| 0U׌b[ZK)@T?Dd & M* COX     X      <  \  ,,,( 8(9:87>6F>GP H IP XpY|\ ]$ ^ bmc+deflu vXwX x yXcz@Csystemd-container234lp152.31.40.1Systemd tools for container managementSystemd tools to spawn and manage containers and virtual machines. This package contains systemd-nspawn, machinectl, systemd-machined, and systemd-importd.a goat11 DopenSUSE Leap 15.2openSUSELGPL-2.1-or-laterhttp://bugs.opensuse.orgSystem/Basehttp://www.freedesktop.org/wiki/Software/systemdlinuxi586 [ -z "${TRANSACTIONAL_UPDATE}" -a -x /usr/bin/systemd-tmpfiles ] && /usr/bin/systemd-tmpfiles --create systemd-nspawn.conf || : if [ $1 -gt 1 ]; then # Convert /var/lib/machines subvolume to make it suitable for # rollbacks, if needed. See bsc#992573. The installer has been fixed # to create it at installation time. # # The convertion might only be problematic for openSUSE distros # (TW/Factory) where previous versions had already created the # subvolume at the wrong place (via tmpfiles for example) and user # started to populate and use it. In this case we'll let the user fix # it manually. # # For SLE12 this subvolume was only introduced during the upgrade from # v210 to v228 when we added this workaround. Note that the subvolume # is still created at the wrong place due to the call to # tmpfiles_create macro previously however it's empty so there # shouldn't be any issues. /usr/lib/systemd/scripts/fix-machines-btrfs-subvol.sh || : fi &5%O8U'423M􁤁큤A큤a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a 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-importd.servicesystemd-machined.service../var-lib-machines.mount../var-lib-machines.mountrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootsystemd-234-lp152.31.40.1.src.rpmsystemd-containersystemd-container(x86-32)systemd:/usr/bin/systemd-nspawn@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    /bin/bash/bin/shlibacl.so.1libacl.so.1(ACL_1.0)libbz2.so.1libc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.1)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.11)libc.so.6(GLIBC_2.14)libc.so.6(GLIBC_2.2)libc.so.6(GLIBC_2.2.1)libc.so.6(GLIBC_2.3)libc.so.6(GLIBC_2.3.2)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libc.so.6(GLIBC_2.6)libc.so.6(GLIBC_2.7)libc.so.6(GLIBC_2.8)libc.so.6(GLIBC_2.9)libcurl.so.4libgcrypt.so.20libgcrypt.so.20(GCRYPT_1.6)liblzma.so.5liblzma.so.5(XZ_5.0)libpthread.so.0libpthread.so.0(GLIBC_2.0)libpthread.so.0(GLIBC_2.1)libpthread.so.0(GLIBC_2.2)libseccomp.so.2libselinux.so.1libsystemd-shared-234.solibz.so.1rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)systemdsystemdsystemdsystemdsystemd3.0.4-14.6.0-14.0-15.2-1234-lp152.31.40.14.14.1a5abababawan@aA@a;Ha2@a@`t```̊`̊```O@`+`+`lM@`H`Gc@`8`-@`-@``U`2@__"_@____}_w@_a@__[@_'@_'@^^@@^^?@^@^@^r @^g@^`^`^`^`^K^J@^J@^9\^8 @^8 @]}@]@]@]X]@]@]]]m]c]@]\\g\@\@\}\B@\@\k\eX@\eX@\\\Z@\=@\73\5@\5@[[@[ٙ@[[@[[-[~[>@[0@[0@Z@Z@ZnZz@ZZZ@Z3@Z3@ZԐ@ZZZZ2@Z2@ZZ`@Zw@Z%ZZ@Z@Z@Z@Z@ZZ}@Z}@Z}@ZyZyZyZxG@ZxG@ZtRZtRZtRZtRZk@Zk@Zhu@Z]@ZX@ZWQZV@ZDZ7Z3@Z3@Z'Z@Z@Z@Z@Z@Z@Z@YY@YYp@Yp@YY@YA@YA@YA@Yo@Yo@Yo@Yo@Yo@Yo@Yo@YYW@Ym@Y{'@Y{'@YyYx@Yx@Yx@YqY_wY^&@Y^&@Y\YK@YK@YC@Y7Y%uY;@Y;@YR@YtYtYtYtYtYtYtXXXsXg@X@XXZX@XYX@Xe@XpXXX@X@X@X@X@XtXoXn5@Xn5@XWXQ4@XIK@XF@X=mX43@X.@X)@X$a@X$a@X$a@X$a@XXX X X X XX`@XXXXXXXXXXX@X@X@X@X@X@Ww@Ww@WW@W@W@WSW@W@W@W W Wv@WWWίW@W:W@WE@WPW@Ws@We7W)@WKWVyVVVVVaVՄ@V=@V@VS@VwVwVhV`.V\:@VLh@VEVD@VA@V'~@V@V@V@VV@V@VV @V7@V@V@U|@U|@U|@UUoŬUUUȒ@U@U@U@UU@U@Uy@U@U@U@U>U@U@U@UUUUU@Uyx@Uyx@UmUY@UY@UTE@T@T~T~TTTTTC@TTTTp@TTT@T@T@T@TxcTw@Tto@To)@TmTmTl@Tl@Tk4Tk4Td@Td@Td@Td@Ta@T`T`T`T\@TWn@TWn@TR(@TJ?@THTG@TFJTD@T>aT>aT=@T=@T=@T=@T=@T=@Franck Bui Franck Bui Franck Bui Martin Wilck Franck Bui Franck Bui Franck Bui Martin Wilck Franck Bui Franck Bui Franck Bui Franck Bui Andreas Herrmann Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Antonio Larrosa Franck Bui Franck Bui Franck Bui Franck Bui Andreas Herrmann Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Andreas Herrmann Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Martin Vidner Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Michal Suchanek Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Franck Bui Lee, Chun-Yi Franck Bui Franck Bui fbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comjlee@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comThomas.Blume@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comrbrown@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comkukuk@suse.defbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comjengelh@inai.defbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comkukuk@suse.defbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.commeissner@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comtbechtold@suse.comdimstar@opensuse.orgfbui@suse.commeissner@suse.comjengelh@inai.dejengelh@inai.dedevelop7@develop7.infoasarai@suse.comarvidjaar@gmail.comThomas.Blume@suse.comschwab@suse.dewerner@suse.dejengelh@inai.defbui@suse.comfbui@suse.comfbui@suse.comfbui@suse.comwerner@suse.dewerner@suse.delnussel@suse.deafaerber@suse.deolaf@aepfle.defbui@suse.comjengelh@inai.decrrodriguez@opensuse.orgtchvatal@suse.comthomas.blume@suse.comjengelh@inai.desor.alexei@meowr.ruwerner@suse.deschwab@suse.dedmueller@suse.comfbui@suse.comjengelh@inai.dewerner@suse.defbui@suse.comfbui@suse.comfbui@suse.comwerner@suse.dejengelh@inai.dewerner@suse.dejengelh@inai.dewerner@suse.dewerner@suse.defbui@suse.comwerner@suse.defbui@suse.comfbui@suse.comwerner@suse.dejengelh@inai.dejengelh@inai.desndirsch@suse.commeissner@suse.comwerner@suse.dejengelh@inai.decrrodriguez@opensuse.orgjengelh@inai.dehrvoje.senjan@gmail.comwerner@suse.dejengelh@inai.decrrodriguez@opensuse.orgcrrodriguez@opensuse.orgsbrabec@suse.comcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgcrrodriguez@opensuse.orghrvoje.senjan@gmail.commpluskal@suse.comjengelh@inai.dewerner@suse.dewerner@suse.depwieczorkiewicz@suse.comwerner@suse.dejengelh@inai.dewerner@suse.dejengelh@inai.dejengelh@inai.demeissner@suse.comcrrodriguez@opensuse.orgjengelh@inai.dejengelh@inai.dejengelh@inai.demeissner@suse.comwerner@suse.dejengelh@inai.dearvidjaar@gmail.comwerner@suse.dethomas.blume@suse.comthomas.blume@suse.comwerner@suse.dewerner@suse.dethomas.blume@suse.comwerner@suse.dewerner@suse.dermilasan@suse.comrmilasan@suse.comrmilasan@suse.comwerner@suse.dewerner@suse.dewerner@suse.degber@opensuse.orgLed werner@suse.dewerner@suse.dermilasan@suse.comwerner@suse.dermilasan@suse.comthomas.blume@suse.comgber@opensuse.orgwerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.dewerner@suse.de- Import commit d38785e9adcf79c9729b94ef9f21185dd5a6d35f e1e30f53f2 Revert "core: rework how we connect to the bus" (bsc#1193521 bsc#1193481) 3463e3178c sleep-config: partitions can't be deleted, only files can e9e021b3b9 shared/sleep-config: exclude zram devices from hibernation candidates - Drop 0001-core-prevent-bus_init_api-from-being-called-recursiv.patch This patch is no more needed since it was a follow-up for "core: rework how we connect to the bus", which has been reverted.- Add 0001-core-prevent-bus_init_api-from-being-called-recursiv.patch- Import commit 43e57122ef9856db4ec4a8a2758bc8f73d2d1835 1a6747aa01 umount: show correct error message e4b8a01ca5 core/umount: fix unitialized fields in MountPoint in dm_list_get()- Fix IO scheduler udev rules * 60-io-scheduler.rules: don't use BFQ for real multiqueue devices (jsc#SLE-21032, bsc#1192161) * 60-io-scheduler.rules: use "none" for multipath components (bsc#1192161)- Import commit d126915ede24b052216ca940155ea5531970aa95 f2cf0ac034 busctl: use usec granularity for the timestamp printed by the busctl monitor command (jsc#SLE-21862 jsc#SLE-18102 jsc#SLE-18103)- Import commit 5acd9826521306d7b312826135afe491bd889a29 df05d5b906 shutdown: Reduce log level of unmounts (bsc#1191252) 31f2b51c18 umount: Don't bother remounting api and ro filesystems read-only 4914963481 umount: Provide the same mount flags too when remounting read-only 04463997a7 umount: Decide whether to remount read-only earlier 143aed644f umount: Add more asserts and remove some unused arguments 09c7ad555d umount: Fix memory leak 1899743f50 shutdown: explicitly set a log target in shutdown.c a66287c2fe test: add tests for mount_option_mangle() 036077c2a0 mount-util: add mount_option_mangle() e90a30bc86 dissect: automatically mark partitions read-only that have a read-only file system b09a5f1835 build-sys: require libmount >= 2.30 (#6795) 2679668b86 systemd-shutdown: use log_set_prohibit_ipc(true) 32625253bc rationalize interface for opening/closing logging 46774b1d21 pid1: when we can't log to journal, remember our fallback log target cd994c1e81 log: remove LOG_TARGET_SAFE pseudo log target 8d4ec9ec2e log: add brief comment for log_set_open_when_needed() and log_set_always_reopen_console() a914dd2003 pid1: make use of new "prohibit_ipc" logging flag in PID 1 (bsc#1189803) 496668c670 log: add new "prohibit_ipc" flag to logging system 9df8261e38 log: make log_set_upgrade_syslog_to_journal() take effect immediately 15b3fcf953 mount-util: fix fd_is_mount_point() when both the parent and directory are network fs (bsc#1190984) 1898f668dd core: rework how we connect to the bus (bsc#1190325) 22a4287477 dbus: split up bus_done() into seperate functions 42ce096d80 machine-id-setup: generate machine-id from DMI product ID on Amazon EC2 39ea02b718 virt: detect Amazon EC2 Nitro instance (bsc#1190440) ef0253c6e5 virt: if we detect Xen by DMI, trust that over CPUID- Import commit dc982a577e6d3eea8832083f470e48f6fbf227cc ddc6c90310 basic/unit-name: adjust comments 390bc4e04f basic/unit-name: do not use strdupa() on a path (bsc#1188063 CVE-2021-33910) b83b235cac unit-name: generate a clear error code when converting an overly long fs path to a unit name 4fd60931a5 unit-name: tighten checks for building valid unit names 513c103faf manager: reexecute on SIGRTMIN+25, user instances only ff761f71a9 logind: terminate cleanly on SIGTERM/SIGINT (bsc#1188018) b236f23d9d units: make fsck/grows/makefs/makeswap units conflict against shutdown.target - Dropped 1001-unit-name-tighten-checks-for-building-valid-unit-nam.patch Dropped 1002-unit-name-generate-a-clear-error-code-when-convertin.patch Dropped 1003-basic-unit-name-do-not-use-strdupa-on-a-path.patch Dropped 1004-basic-unit-name-adjust-comments.patch These patches have been merged in branch SUSE/v234.- Update 60-io-scheduler.rules (jsc#SLE-21032, bsc#1134353) * rules weren't applied to dm devices (multipath), fix it (bsc#1188713) * ignore obsolete "elevator" kernel parameter (bsc#1184994, bsc#1190234) ("elevator" did falsely overide settings even for blk-mq, fixed).- Make sure the versions of both udev and systemd packages are always the same (bsc#1189480)- Avoid the error message when udev is updated due to udev being already active when the sockets are started again (bsc#1188291)- Allow the systemd sysusers config files to be overriden during system installation (bsc#1171962). - While at it, add a comment to explain why we don't use %sysusers_create in %pre and why it should be safe in %post.- Added patches to fix CVE-2021-33910 (bsc#1188063) Added 1001-unit-name-tighten-checks-for-building-valid-unit-nam.patch Added 1002-unit-name-generate-a-clear-error-code-when-convertin.patch Added 1003-basic-unit-name-do-not-use-strdupa-on-a-path.patch Added 1004-basic-unit-name-adjust-comments.patch These patches will be moved to the git repo once the bug will become public.- Added fix for bsc#1184994 to skip udev rules if 'elevator=' is used- Create /run/lock/subsys again (bsc#1187292) The creation of this directory was mistakenly dropped when 'filesystem' package took the initialization of the generic paths over. Paths under /run/lock are still managed by systemd for lack of better place.- Import commit f6f87c1cb4119c41f6fb93702e03cec794829b7c d7ed4af259 mount-util: shorten the loop a bit (#7545) cdf9cbb509 mount-util: do not use the official MAX_HANDLE_SZ (#7523) bbcc63a032 mount-util: tape over name_to_handle_at() flakiness (#7517) (bsc#1184761) d44adc63ab test: fix test-mount-util when handling duplicate mounts on the same location 7c74260899 mount-util: fix bad indenting c4ef3248e2 mount-util: EOVERFLOW might have other causes than buffer size issues 3f3eb23ccb mount-util: fix error propagation in fd_fdinfo_mnt_id() 9f170ee221 mount-util: drop exponential buffer growing in name_to_handle_at_loop() 5c709e7b31 udev: port udev_has_devtmpfs() to use path_get_mnt_id() ac57cefcb9 mount-util: add new path_get_mnt_id() call that queries the mnt ID of a path e49d88b898 mount-util: add name_to_handle_at_loop() wrapper around name_to_handle_at() 060b1db043 core: fix output (logging) for mount units (#7603) (bsc#1187400)- Import commit 93910b81b809729afa7ff9529b45b1e67f229232 c289e1e5ae sysusers: use the usual comment style f11535886f test/TEST-21-SYSUSERS: add tests for new functionality 2f2bfa731c sysusers: allow admin/runtime overrides to command-line config dbd190cd3b basic/strv: add function to insert items at position 3c7b4c67fa sysusers: allow the shell to be specified f316974ebe man: reformat table in sysusers.d(5) 24113b7f00 sysusers: take configuration as positional arguments 8232e059d8 sysusers: emit a bit more info at debug level when locking fails 461356cfe9 sysusers: allow force reusing existing user/group IDs (#8037) dd9349e71a sysusers: ensure GID in uid:gid syntax exists 5e0ab33e59 sysusers: make ADD_GROUP always create a group 0dd4a69687 test: add TEST-21-SYSUSERS test 4dea8a2774 sysuser: use OrderedHashmap de09744500 sysusers: allow uid:gid in sysusers.conf files 9271c17657 meson: "conf.get(condition)" fails if condition was not defined These commits implement the option '--replace' for systemd-sysusers so %sysusers_create_package can be introduced in SLE and packages can rely on this rpm macro without wondering whether the macro is available on the different target the package is submitted to.- udev requires systemd in its %post (bsc#1185958) udevadm, called in udev's %post, requires libsystemd-shared-xxx.so.- Expect 644 permissions for /usr/lib/udev/compat-symlink-generation (bsc#1185807)- Import commit ca070cf0125f3b83fb3d7300ef4f524af47c49a3 3daea193a1 cgroup: Parse infinity properly for memory protections (bsc#1167471) a3f4d2980e cgroup: Make empty assignments reset to default (bsc#1167471) 72bbd3928c cgroup: Support 0-value for memory protection directives (bsc#1167471) 9c192a00a4 core/cgroup: accepts MemorySwapMax=0 (#8366) (bsc#1154935) d64f691eb7 bus-unit-util: add proper MemorySwapMax= serialization 98af04a71c core: accept MemorySwapMax= properties that are scaled, too d4528bcaa3 execute: make sure to call into PAM after initializing resource limits (bsc#1184967) 7fb1ab4f38 rlimit-util: introduce setrlimit_closest_all() c0d1ae3086 system-conf: drop reference to ShutdownWatchdogUsec= 9f66f43082 core: rename ShutdownWatchdogSec to RebootWatchdogSec (bsc#1185331) 82a5f215a3 Return -EAGAIN instead of -EALREADY from unit_reload (bsc#1185046) - Drop 0010-core-accept-MemorySwapMax-properties-that-are-scaled.patch Drop 0011-bus-unit-util-add-proper-MemorySwapMax-serialization.patch Drop 0012-core-cgroup-accepts-MemorySwapMax-0-8366.patch Drop 0013-cgroup-Support-0-value-for-memory-protection-directi.patch Drop 0014-cgroup-Make-empty-assignments-reset-to-default.patch Drop 0015-cgroup-Parse-infinity-properly-for-memory-protection.patch These patches have been merged in SUSE/v234 branch.- Import commit bb23f007799c0ad2b14a6da7f74ee242e10b00b9 611376f830 rules: don't ignore Xen virtual interfaces anymore (bsc#1178561) 65f4fa852e write_net_rules: set execute bits (bsc#1178561) f60153e565 udev: rework network device renaming df31eb968a Revert "Revert "udev: network device renaming - immediately give up if the target name isn't available""- Import commit a9d8f7b4aa917ad28bc8c2622e77cb10c78b6b64 1130a2a712 shutdown: bump kmsg log level to LOG_WARNING only 188fb8b6ed shutdown: rework bump_sysctl_printk_log_level() to use sysctl_writef() 8f718ea1ea sysctl: add sysctl_writef() helper cfaa3afb20 shutdown: use "int" for log level type 112b8553dc killall: bump log message about unkilled processes to LOG_WARNING 5a9628e4d9 core/killall: Log the process names not killed after 10s 26a073c9cf shutdown: Bump sysctl kernel.printk log level in order to see info msg a72f23faaa core/killall: Propagate errors and return the number of process left 13092aa300 shutdown: always pass errno to logging functions 62f0cbad46 umount: beef up logging when umount/remount child processes fail c04232cd6c umount: Try unmounting even if remounting read-only failed 9cf5376ff5 core: Implement sync_with_progress() (bsc#1178219) 160ef4200a core: Implement timeout based umount/remount limit (bsc#1178219) 4a38837448 core: remove "misuse" of getpgid() in systemd-shutdown 6427ab4adf core: systemd-shutdown: avoid confusingly redundant messages c069ee55de core: systemd-shutdown: add missing check for umount_changed d28bde105a umount: always use MNT_FORCE in umount_all() (#7213) 2c592670f0 signal-util: use a slightly less likely to conflict variable name instead of 't' b7e22d4712 meson: rename -Ddebug to -Ddebug-extra 063f26c13b meson: drop misplaced -Wl,--undefined argument A bunch of commits which should improve the logs emitted by systemd-shutdown during the shutdown process when some badly written applications cannot be stopped properly and prevents some mount points to be unmounted properly. See bsc#1178219 for an example of such case.- fix-machines-btrfs-subvol.sh is only shipped when machined is built- Don't use shell redirections when calling a rpm macro (bsc#1183094) It's broken since the redirection is expanded where the parameters of the macro are, which can be anywhere in the body of macro.- systemd requires aaa_base >= 13.2 This dependency is required because 'systemctl {is-enabled,enable,disable} [initscript]" ends up calling systemd-sysv-install which in its turn calls "chkconfig - -no-systemctl". aaa_base package has a weird versioning but the '--no-systemctl' option has been introduced starting from SLE12-SP2-GA, which shipped version "13.2+git20140911.61c1681". Spotted in bsc#1180083.- Import commit 05690b706a7c93e595280789f7b066afc1e3dcc4 963377e674 PATCH] Always free deserialized_subscribed on reload (bsc#1180020) c77d75305a core: Fix edge case when processing /proc/self/mountinfo (#7811) (bsc#1180596) 07a5ede612 cgroup: actually reset the cgroup invalidation mask after we made our changes (bsc#1178775) - Drop 0001-cgroup-actually-reset-the-cgroup-invalidation-mask-a.patch This patch have been imported in SUSE/v234 branch- Drop most of the tmpfiles that deal with generic paths (bsc#1078466 bsc#1181831) They are problematic because some of them conflict with SUSE defaults. Therefore it seems better to let the revelant packages owning these paths to provide their own definitions instead.- Create and own /usr/lib/systemd/system-environment-generators just like /usr/lib/systemd/user-environment-generators.- Add 0001-cgroup-actually-reset-the-cgroup-invalidation-mask-a.patch (bsc#1178775) It's been added in quarantine for now on.- Import commit c720c4d784b85feab124eae39919bec59e061ff5 bd6bedd353 udev: create /dev/disk/by-label symlink for LUKS2 (#8998) (bsc#1180885)- Import commit 080062ed5f90b8a4085a89f2ad30ee320fab27c9 80e37dcacc busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225) 2ee6877bb3 core: make sure to restore the control command id, too d1b9949337 scope: on unified, make sure to unwatch all PIDs once they've been moved to the cgroup scope af5945c2f4 fileio: tweak write_string_stream_ts() to write out trailing \n in one go even if buffering is off a28c165efa fileio: write_string_stream_ts: check for file errors immediately dc122eb771 fileio: write_string_stream_ts: return errors from fputs and fputc 14c89b1424 fileio: make write_string_stream() accept flags parameter 2959e7dfe6 journal: do not trigger assertion when journal_file_close() get NULL (bsc#1179824) 08db1ac361 cgroup: drastically simplify caching of cgroups members mask (bsc#1175458) bb59042ab4 cgroup: extend comment on what unit_release_cgroup() is for ead2955f65 cgroup: document what the various masks variables are used for 805fe8ecdf cgroup: extend cg_mask_supported() comment a bit 305806da38 cgroup: tweak log message, so that it doesn't claim we always enable controllers when we actually disable them d02ce63463 cgroup-util: disable buffering for cg_enable_everywhere() when writing to cgroup attributes b4e9893f5d cgroup-util: fix enabling of controllers (#8816) e7dd277c1b cgroup: propagate errors when we cannot open cgroup.subtree_control 7c8f19714f cgroup-util: optimization — open subtree_control file only once for all controllers 7999763781 cgroup: add explanatory comment 2829342e7a cgroup: units that aren't loaded properly should not result in cgroup controllers being pulled in 48a0d85047 cgroup: make unit_get_needs_bpf_firewall() static too 888dc39134 cgroup: make some functions static 6c0efa2f01 cgroup: suffix settings with "=" in log messages where appropriate e69d9927c6 cgroup: use structured initialization 5174fb9622 core: fix message about detected memory hierarchy 3b6443e1ee core: use safe_fclose() where we can 906dcf1f6b udev: Fix sound.target dependency (bsc#1179363) 2c9866d55a rules: enable hardware-related targets also for user instances 127e546608 sd-event: fix delays assert brain-o (#17790) b98b6d230c core: serialize u->pids until the processes have been moved to the scope cgroup (bsc#1174436) 2f50b9ecf1 time-util: treat /etc/localtime missing as UTC (bsc#1141597)- Import commit cff0063e30f8cd06995810a4725bfb042191c472 33f68e8062 build-sys: optionnally disable support of journal over the network (bsc#1177458) 34d79e6216 ask-password: prevent buffer overrow when reading from keyring (bsc#1177510) 36e567dc68 ask-password: add extra paranoid overflow check 5dd29e9219 More polite passphrase prompt f922299b3c mount: don't propagate errors from mount_setup_unit() further up - Rework the enablement of 'journal_remote' support to rely on the new build option --disable-remote. This allows to drop the workaround that consisted in cleaning journal-upload files and {sysusers.d,tmpfiles.d}/systemd-remote.conf manually when 'journal_remote' support was disabled.- Remove mq-deadline selection from 60-io-scheduler.rules (bsc#1177490)- Move journal-{remote,upload}.conf.5.gz man pages into systemd-journal_remote sub package- Make sure {sysusers.d,tmpfiles.d}/systemd-remote.conf are not shipped with --without=journal_remote (bsc#1177458) These files were incorrectly packaged in the main package when systemd-journal_remote was disabled (autools build only affected).- Make use of %{_unitdir} and %{_sysusersdir}- Import commit ff3ecd97a4ef0f973d5e97f959ce042f12fab969 2794bdf836 seccomp: shm{get,at,dt} now have their own numbers everywhere (bsc#1173422) 99eff504a1 test-seccomp: log function names 2355b45978 test-seccomp: add log messages when skipping tests 0246b221d1 add false option for tests (#7778) 2fba565329 basic/virt: Detect PowerVM hypervisor (bsc#1176800) 3c43c83144 fs-util: suppress world-writable warnings if we read /dev/null - Drop 0001-test-seccomp-add-log-messages-when-skipping-tests.patch Drop 0002-test-seccomp-log-function-names.patch Drop 0003-seccomp-shm-get-at-dt-now-have-their-own-numbers-eve.patch These patches have been imported in SUSE/v234 branch- Import commit e72f953aa84be08beb97cb4a7630e51e01639377 da944a39f8 udevadm: rename option '--log-priority' into '--log-level' 64b89364ee udev: rename kernel option 'log_priority' into 'log_level' 46d1536437 fstab-generator: add 'nofail' when NFS 'bg' option is used (bsc#1176513)- Fix bsc#1167471 bsc#1154935 Add 0010-core-accept-MemorySwapMax-properties-that-are-scaled.patch Add 0011-bus-unit-util-add-proper-MemorySwapMax-serialization.patch Add 0012-core-cgroup-accepts-MemorySwapMax-0-8366.patch Add 0013-cgroup-Support-0-value-for-memory-protection-directi.patch Add 0014-cgroup-Make-empty-assignments-reset-to-default.patch Add 0015-cgroup-Parse-infinity-properly-for-memory-protection.patch- Import commit 859d8235c2c2f0a2d160a0e9778f7e54d304a596 (bsc#1104902 bsc#1165502) It contains a patchset that backports user-runtime-dir@.service, which is improves latency and reliability when users log in/out repeatedly and quickly during a relative short period of time.- Import commit 8bd880f8097b9bfc7e73262c18fbbac03b12e60f 0509116a5d pid1: improve message when setting up namespace fails 40510f1a7a execute: let's close glibc syslog channels too e22977f3b2 execute: normalize logging in execute.c ed52035555 execute: fix typo in error message (#6881) 7f2feba719 execute: drop explicit log_open()/log_close() now that it is unnecessary dbc8525a68 execute: make use of the new logging mode in execute.c 89d456e4c7 log: add a mode where we open the log fds for every single log message 32cdae2fe6 log: let's make use of the fact that our functions return the negative error code for log_oom() too 30a5b8d428 execute: downgrade a log message ERR → WARNING, since we proceed ignoring its result f52bed2823 execute: rework logging in setup_keyring() to include unit info 91cbb68dec execute: improve and augment execution log messages These are simple commits that improve logging when PID1 fails at setting a namespace up when spawning a command specified by 'Exec*='. This should help us track a hard to reproduce bug which prevent apache from reloading (bsc#1172824, bsc#1142733)- Import commit 7525132a61f00e16566c9eb6ee7e139fcb7050cc 85561b1819 vconsole-setup: downgrade log message when setting font fails on dummy console (bsc#1172195 bsc#1173539) 0138e54629 cryptsetup: fix infinite timeout (#6486) (bsc#1158336) b2aa39af7d bpf: mount bpffs by default on boot (bsc#1146991) 5adfe116ed man: explain precedence for options which take a list (#7010) 392e0bb83f man: unify titling, fix description of precedence in sysusers.d(5) c45abe3a2f udev-event: fix timeout log messages- Fix bsc#1173422 Add 0001-test-seccomp-add-log-messages-when-skipping-tests.patch Add 0002-test-seccomp-log-function-names.patch Add 0003-seccomp-shm-get-at-dt-now-have-their-own-numbers-eve.patch- migrate-sysconfig-i18n.sh: fix marker handling (bsc#1173229) The marker is used to make sure the script is run only once. Instead of storing it in /usr, use /var which is more appropriate for such file. Also make it owned by systemd package.- Fix inconsistent file modes for some ghost files (bsc#1173227) Ghost files are assumed by rpm to have mode 000 by default which is not consistent with file permissions set at runtime. Also /var/lib/systemd/random-seed was tracked wrongly as a directory. Also don't track (ghost) /etc/systemd/system/runlevel*.target aliases since we're not supposed to track units or aliases user might define/override.- Import commit dca9b964628d1527a25d633f7728fe979f422358 8c875b2d97 units: starting suspend.target should not fail when suspend is successful (#6678) (bsc#1172072) b7d5310937 core/mount: do not add Before=local-fs.target or remote-fs.target if nofail mount option is set 2a0e7062ff mount: let mount_add_extras() take care of remote-fs.target deps (bsc#1169488) 29c6b6b725 mount: set up local-fs.target/remote-fs.target deps in mount_add_default_dependencies() too 20a35f0bf0 udev: rename the persistent link for ATA devices (bsc#1164538) 7dea560956 shared/install: try harder to find enablement symlinks when disabling a unit (bsc#1157315) 5a660c1d53 tmpfiles: remove unnecessary assert (bsc#1171145) 2f86bc54bd test-engine: manager_free() was called too early cc5170fcef pid1: by default make user units inherit their umask from the user manager (bsc#1162698)- Split off networkd and resolved into separate subpackage "network" Although resolved is still not built by default.- Import commit ac52edce0f820ffefa5110b6fc4b03e35bf68d61 96a7639970 udev/net-id: Fix check for address to keep interface names stable (#8458) (bsc#1168076) ce5953a877 login: use free_and_replace() and TAKE_PTR() e5190b4b51 logind: remove manager_start_slice() cdeb8d1a48 logind: use free_and_replace in one spot 109aac4b67 logind: drop unnecessary braces 9194610e7e systemd-mount: don't check for non-normalized WHAT for network FS (bsc#1165011) 12b63cb73a systemd-mount: allow to specify an arbitrary string for arg_mount_what when vfs is used (bsc#1165011)- Import commit 7c246f16a6358516a586629091375ee5d45739ec 2205963ee2 manager: fix job mode when signalled to shutdown etc (bsc#1161262) e9b76da147 manager: remove fallback for user/exit.target fa4a1155e7 man: dbus method Manager.Exit() does not start exit.target dc0ec526f2 units: do not install rescue.target for alt-↑ e3ba383bf8 Add %j/%J unit specifiers- Replace 60-ssd-scheduler.rules with 60-io-scheduler.rules from TW This adds support for I/O scheduler selection with blk-mq (bsc#1165579, bsc#1164717).- Add 60-ssd-scheduler.rules This rules file which select the default IO scheduler for SSDs is being moved out from the git repo since this is not related to systemd or udev at all and is maintained by the kernel team.- Import commit 7e52d0c21a0c895d4f0ae2319f1eb4f2246147ba eedd149d6c core: coldplug possible nop_job (bsc#1139459) 09405f8eee Revert "udev: use 'deadline' IO scheduler for SSD disks" 57cab4a328 Fix typo in function name f846231c1a polkit: when authorizing via PK let's re-resolve callback/userdata instead of caching it (bsc#1162108 CVE-2020-1712) f799fd5371 sd-bus: introduce API for re-enqueuing incoming messages 8a0214f61d polkit: on async pk requests, re-validate action/details- Drop 0001-core-coldplug-possible-nop_job.patch It's been imported in SUSE/v234 branch.- Drop 0001-polkit-on-async-pk-requests-re-validate-action-detai.patch Drop 0002-sd-bus-introduce-API-for-re-enqueuing-incoming-messa.patch Drop 0003-polkit-when-authorizing-via-PK-let-s-re-resolve-call.patch They have been imported in SUSE/v234 branch.- Remove TasksMax limit for both user and system slices (jsc#SLE-10123)- Import commit 4695ebe0b91ec6a23ba9ea238e61a7348474fbc5 Backport support of dash-truncated dropins. The new mechanism is used (since v239) to configure TasksMax limit for user slices and therefore is used to replace UserTasksMax= option in logind.conf as it's more flexible. The old option is still supported thanks to a generator that creates a dash-truncated dropin at boot. It also warns about the use of the old option. This will hopefully allow us to remove the support of UserTasksMax option in the next major version of SLE. ec0bddf1f4 logind: keep backward compatibility with UserTasksMax= in logind.conf 7804fb95bd logind: move two functions to logind_core utility lib fb99d7bc4c login: fix typo in log message 15a8ffa5cc Use a dash-truncated drop-in for user-%j.slice configuration c5bf60565e man: document the new dash truncation drop-in directories 38fb5d11cb test: add test for prefix unit loading 7669c783e8 dropin: when looking for dropins for a unit, also look within "-" prefix unit dirs de1d19b8fb systemctl: fix indentation in output of "systemcl status" if there are multiple drop-in dirs 5da4984f6f unit-name: add new unit_name_build_from_type() helper 278643dc78 tests: skip tests when cg_pid_get_path fails (#7033) a77203d893 shared/dropin: improve error message- Import commit d2826c2ca2eab2b9f6fc08ff2010faafd4c1b9f9 Backport IP filtering feature (jsc#SLE-7743) e6b00a63dc main: when bumping RLIMIT_MEMLOCK, save the previous value to pass to children (bsc#1160595) b7b5a3ba5d main: introduce a define HIGH_RLIMIT_MEMLOCK similar to HIGH_RLIMIT_NOFILE 61d77e2bda def: add a "high" limit for RLIMIT_NOFILE 51a8b7fe9b core: bump mlock ulimit to 64Mb 4a53ff678c Move warning about unsupported BPF firewall right before the firewall would be created f26201d72c core: refactor bpf firewall support into a pseudo-controller 3c6af31da6 core: rename cgroup_queue → cgroup_realize_queue 12ac94d9d4 cgroup: improve cg_mask_to_string a bit, and add tests for it 6e049a2f46 unit: initialize bpf cgroup realization state properly cfbb2dfb1b cgroup: always invalidate "cpu" and "cpuacct" together 55a0d5a690 main: bump RLIMIT_MEMLOCK for the root user substantially 3c0ec7c460 bpf-firewall: always use log_unit_xyz() insteadof log_xyz() f8e7b8530a core: fix the check if CONFIG_CGROUP_BPF is on a3950086e4 tree-wide: avoid assignment of r just to use in a comparison 92ad831159 Fix three uses of bogus errno value in logs (and returned value in one case) 8f9b4436fa bpf: reset "extra" IP accounting counters when turning off IP accounting for a unit 4edd970f68 bpf: rework how we keep track and attach cgroup bpf programs b6152deaa1 bpf-program: make bpf_program_load_kernel() idempotent 49fa5c4f73 bpf: use BPF_F_ALLOW_MULTI flag if it is available 089bac557e bpf-program: optionally take fd of program to detach aed6959d28 bpf: beef up bpf detection, check if BPF_F_ALLOW_MULTI is supported c548f48cb2 bpf: add new bpf.h header copy from 4.15 kernel 54cc371347 bpf-firewall: fix warning text c08bb273ac ip-address-access: let's exit the loop after invalidating our entry a (#7803) 3dc5591f72 bpf-firewall: actually invoke BPF_PROG_ATTACH to check whether cgroup/bpf is available c5f34b169e cgroup: drop unused parameter from function b519973b49 core: only warn about BPF/cgroup missing once per runtime (#7319) cbeb2f95ac run: also show IP traffic accounting data on "systemd-run --wait" 3ff2299ccb core: improve dbus-cgroup error message 2f0c48782e bpf-firewall: properly handle kernels where BPF cgroup is disabled but TRIE maps are enabled (#7298) 867a8bf0d7 fix compile error on musl 8d3314daf3 bpf: set BPF_F_ALLOW_OVERRIDE when attaching a cgroup program if Delegate=yes is set c6a029bcc0 cgroup: refuse to return accounting data if accounting isn't turned on 33ef892f4b core: when coming back from reload/reexec, reapply all cgroup properties 4bb809e720 core: serialize/deserialize IP accounting across daemon reload/reexec ec63d2a10c core: when creating the socket fds for a socket unit, join socket's cgroup first 5efe9d8b24 socket-label: let's use IN_SET, so that we have to call socket_address_family() only once 35bf6b235f core: warn loudly if IP firewalling is configured but not in effect e62a2ae266 Add test for eBPF firewall code d936dbdb8c ip-address-access: minimize IP address lists df69bcd8d5 core: support IP firewalling to be configured for transient units c03104bf21 cgroup: dump the newly added IP settings in the cgroup context 693934ae53 man: document the new ip accounting and filting directives 7a7b7f97d8 systemctl: report accounted network traffic in "systemctl status" 3079fcd21c manager: hook up IP accounting defaults 44e2578544 cgroup, unit, fragment parser: make use of new firewall functions 61cff5ed0c Add firewall eBPF compiler 3fabe4de90 cgroup: add fields to accommodate eBPF related details 031f1b27f4 Add IP address address ACL representation and parser 7f9545d053 Add abstraction model for BPF programs d44583412a build-sys: add new kernel bpf.h drop-in 80842fbc20 in-addr-util: add new helper call in_addr_prefix_from_string_auto() f5909b1007 in-addr-util: prefix return parameters with ret_ 4de91e22b7 in-addr-util: be more systematic with naming our functions 877cc03ac4 tests: when running a manager object in a test, migrate to private cgroup subroot first (#6576)- Fix bsc#1162108 CVE-2020-1712 Add 0001-polkit-on-async-pk-requests-re-validate-action-detai.patch Add 0002-sd-bus-introduce-API-for-re-enqueuing-incoming-messa.patch Add 0003-polkit-when-authorizing-via-PK-let-s-re-resolve-call.patch- Use suse.pool.ntp.org server pool on SLE distros (jsc#SLE-7683)- Import commit 938b0a2f966d2606cbb20f4bcce7509995aaa7dc 1d7de5e8c2 libblkid: open device in nonblock mode. (bsc#1084671) 87d18b8209 udev/cdrom_id: Do not open CD-rom in exclusive mode. (bsc#1154256) 277ab600b0 bus_open leak sd_event_source when udevadm trigger。 (bsc#1161436 CVE-2019-20386) 6558c318fc fileio: introduce read_full_virtual_file() for reading virtual files in sysfs, procfs (bsc#1133495 bsc#1159814) 0c6fb31abb fileio: initialize errno to zero before we do fread() 0baf4768d3 fileio: try to read one byte too much in read_full_stream() 3226d763f7 logind: consider "greeter" sessions suitable as "display" sessions of a user (bsc#1158485) 5aa70da60d logind: never elect a session that is stopping as display- Import commit be5eeb6c7d0bbb8147ff894227140d3d21639aeb 24fc1e1ff6 journal: include kmsg lines from the systemd process which exec()d us (#8078) b213992a3d udevd: don't use monitor after manager_exit() 28998ada7d udevd: capitalize log messages in on_sigchld() 6065eee5f8 udevd: merge conditions to decrease indentation d727a42d46 Revert "udevd: fix crash when workers time out after exit is signal caught" 0e6ff3b3d1 core: fragments of masked units ought not be considered for NeedDaemonReload (#7060) (bsc#1156482) 3523d5a0c8 udevd: fix crash when workers time out after exit is signal caught 787b2f859f udevd: wait for workers to finish when exiting (bsc#1106383)- Import commit 71778a1423b0f599ede9faa96d20add61d24db36 98c082a6ca shell-completion: systemctl: do not list template units in {re,}start 816d6111fc shell-completion: systemctl: pass current word to all list_unit* e8b40b6b10 bash-completion: systemctl: pass current partial unit to list-unit* (bsc#1155207) 7cdab60839 bash-completion: systemctl: use systemctl --no-pager 8844419dc8 bash-completion: also suggest template unit files 6f0e7ca3d1 bash-completion: systemctl: add missing options and verbs 4f4d2d4c1b bash-completion: use the first argument instead of the global variable (#6457) A bunch of commits which improves bash completion support. It only touches the shell completion and hence is pretty safe.- Import commit cff9adac2f06cc0876dc905d5642d271b69e755d 3f5a84b97c networkd: VXLan Make group and remote variable separate (bsc#1156213) 9c4571d6b2 networkd: vxlan require Remote= to be a non multicast address (#8117) (bsc#1156213) 7f1b579fc6 fs-util: let's avoid unnecessary strerror() 49e51f69b5 fs-util: introduce inotify_add_watch_and_warn() helper 454c094294 ask-password: improve log message when inotify limit is reached (bsc#1155574) 012115b8dd shared/install: failing with -ELOOP can be due to the use of an alias in install_error() (bsc#1151377) caa9e284af man: alias names can't be used with enable command (bsc#1151377)- No need to daemon-reexec at package installation time. During package installation PID1 is obviously not being run.- Add 0001-mount-swap-cryptsetup-introduce-an-option-to-prevent.patch (jsc#SLE-7689)- Add 0001-core-coldplug-possible-nop_job.patch This likely fixes bsc#1139459 but it's not been confirmed yet. That's the reason why it's been put in the quarantine area so we can mark this patch as a fix once it will be verified before merging it in our git repo. See https://github.com/systemd/systemd/pull/13124 for a reproducer and the fix. In any cases it fixes a real bug that could be easily reproduced and the fix verified.- Import commit 1b9a7a16f19285e04646b879a7ee932d677a13a6 (jsc#SLE-7687) 2833eac013 man: add a note about _netdev usage 61b562b76f units: replace remote-cryptsetup-pre.target with remote-fs-pre.target 3731059465 units: add [Install] section to remote-cryptsetup.target 06a3b90ac0 cryptsetup: ignore _netdev, since it is used in generator (#7282) 52ff0e4815 cryptsetup-generator: use remote-cryptsetup.target when _netdev is present (jsc#SLE-7687) 1fd79aece7 cryptsetup-generator: add a helper utility to create symlinks 850cfa58c9 units: add remote-cryptsetup.target and remote-cryptsetup-pre.target a17ff04b54 man: add an explicit description of _netdev to systemd.mount(5) 2cf21cc2af man: order fields alphabetically in crypttab(5) 166efe2295 man: make crypttab(5) a bit easier to read 2228e044f9 units: order cryptsetup-pre.target before cryptsetup.target 853d13eb3c Fix reporting of enabled-runtime units- Import commit 76231a9c1f76ab1e2b4b4a60a3333685f0c05793 801458cee2 sd-bus: deal with cookie overruns (bsc#1150595) 39d50c7395 rules: Add by-id symlinks for persistent memory (bsc#1140631)- Allow YaST to select Iranian (Persian, Farsi) keyboard layout (bsc#1092920)- Buildrequire polkit so /usr/share/polkit-1/rules.d subdir can be only owned by polkit (boo#1145023) Otherwise we need to own the directory (or rpmlink checking would complain that the dir has no owners) and make sure that the perms are in sync with the ones defined by polkit.- Import commit 097c4e66dc457e3406fbf914bcf1966da93dcbb9 76e278fe1f conf-parse: remove 4K line length limit (bsc#1137053) 8538cad002 udevd: change the default value of udev.children-max (again) (bsc#1107617) 2bb79d8bb5 meson: stop creating enablement symlinks in /etc during installation (sequel)- Fix build for Leap 15+- Make sure we don't ship any static enablement symlinks in /etc Those symlinks must only be created by the presets. There are no changes in practice since systemd/udev doesn't ship such symlinks in /etc but let's make sure no future changes will introduce new ones by mistake. It's been done in Factory since a while now.- Import commit 835729c9d137d8c79e575d61b0d1a1c67cc54e59 62bdc40549 units: turn on RestrictSUIDSGID= in most of our long-running daemons 276401ea84 seccomp: rework how the S[UG]ID filter is installed 4b616cb995 test-seccomp: fix compilation on arm64 5a07cdd48a core: fix build failure if seccomp is disabled 0512aa6ea8 core: imply NNP and SUID/SGID restriction for DynamicUser=yes service (bsc#1133506 bsc#1133509 CVE-2019-3843 CVE-2019-3844) d377ee5360 man: document the new RestrictSUIDSGID= setting afcbed619f man: note that `systemctl show` does not overridden value 89982813ca core: expose SUID/SGID restriction as new unit setting RestrictSUIDSGID= 0da1ea2aed test: add test case for restrict_suid_sgid() 898c724e6c seccomp: introduce seccomp_restrict_suid_sgid() for blocking chmod() for suid/sgid files 4b56b9e8d7 meson: stop creating enablement symlinks in /etc during installation d1ee97533e networkd: do not install the socket when networkd is not enabled 972d0a0bdf udevd: notify when max number value of children is reached only once per batch of events (bsc#1132400) 7dd4d8ff02 sd-bus: bump message queue size again (bsc#1132721)- systemd-coredump: generate a stack trace of all core dumps (jsc#SLE-5933) Stack traces are logged into the journal.- Drop "BuildRequires: -post-build-checks" from the specfile (bsc#1130230) The syntax of this directive is obsolete and should be replaced by "#!BuildIgnore: post-build-checks". However there's no reasons to disable these SUSE extra checks especially since the package still builds fine with them turned ON. So simply drop the line from the spec file.- Import commit ecb92848f361fa2b2baebb61a37d861213756ad0 fdafcf8151 pam-systemd: use secure_getenv() rather than getenv() (bsc#1132348 CVE-2019-3842) a9793105c6 bus: fix memleak on invalid message a90e01ef50 logind: fix killing of scopes (bsc#1125604) a9c0babb8b namespace: make MountFlags=shared work again (bsc#1124122) 7a776a1518 man: document the new PrivateMounts= setting ae2abcb517 rules: load drivers only on "add" events (bsc#1126056) a50d2c6c33 Allocate temporary strings to hold dbus paths on the heap (bsc#1125352 CVE-2019-6454) a8d74361ff Refuse dbus message paths longer than BUS_PATH_SIZE_MAX limit. (bsc#1125352 CVE-2019-6454) 78a06c1a87 sysctl: Don't pass null directive argument to '%s' (bsc#1121563)- Drop sg.conf, it's been taking over by suse-module-tools See bsc#1036463 for details.- Do not automagically online memory on s390x (bsc#1127557) On s390 memory that is not online is typically 'reserve' memory that should be only activated by the system administrator. There is no way to detect reserve memory from information provided by the kernel so the state of the art is to not activate memory automagically if the platform is s390.- Drop 0001-systemd-PID1-crash-with-specially-crafted-D-Bus-mess.patch Its upstream counterparts have been imported in SUSE/v234- Add 0001-systemd-PID1-crash-with-specially-crafted-D-Bus-mess.patch (bsc#1125352 CVE-2019-6454)- Import commit 98de7a2368c96c3914bca239b35d5b1de6bffcc2 434d2010d0 sd-bus: if we receive an invalid dbus message, ignore and proceeed 0cbdb75339 automount: don't pass non-blocking pipe to kernel.- Import commit 7902374f4046d3515973c2292fe764967cfc2309 b808bd8f67 units: make sure initrd-cleanup.service terminates before switching to rootfs (bsc#1123333) 58a5ac4cca logind: fix bad error propagation fb118b996e login: log session state "closing" (as well as New/Removed) e0065eec98 logind: fix borked r check 4a978123cd login: don't remove all devices from PID1 when only one was removed c7af85fa55 login: we only allow opening character devices d21d3f32d1 login: correct comment in session_device_free() a5c15fde73 login: remember that fds received from PID1 need to be removed eventually 12ed3e765a login: fix FDNAME in call to sd_pid_notify_with_fds() d16ea1c77a logind: fd 0 is a valid fd 06546129b3 logind: rework sd_eviocrevoke() 5b40830fcb logind: check file is device node before using .st_rdev 5d69862a26 logind: use the new FDSTOREREMOVE=1 sd_notify() message (bsc#1124153) 6b10a71597 core: add a new sd_notify() message for removing fds from the FD store again 767e6baa0e logind: make sure we don't trip up on half-initialized session devices (bsc#1123727) 95828c00c4 fd-util: accept that kcmp might fail with EPERM/EACCES c1448fc331 core: Fix use after free case in load_from_path() (bsc#1121563)- Import commit 72e2d92e01b6e4686e6ac0b9cea391eb2ad4bc02 fc4e41ca9e core: include Found state in device dumps 8f795776b1 device: fix serialization and deserialization of DeviceFound 2af4971594 fix path in btrfs rule (#6844) f8ac04cffb assemble multidevice btrfs volumes without external tools (#6607) (bsc#1117025) c96249b50c Update systemd-system.conf.xml (bsc#1122000) 37245007a7 units: inform user that the default target is started after exiting from rescue or emergency mode- Import commit 9874ecb0457fd43cdde01085a878acdf2fa5af36 96313ee86a pull: initialize libgcrypt before calling any functions provided by libgcrypt 08870024dc hwdb: remove stray 'i' in hwdb match string for the HP Spectre (#9571) f09d3f3648 cryptsetup: Add dependency on loopback setup to generated units 3dfe6375a9 journal-gateway: use localStorage["cursor"] only when it has valid value 44af6bc697 journal-gateway: explicitly declare local variables a780ac41ce analyze: actually select longest activated-time of services f57d448ff8 sd-bus: fix implicit downcast of bitfield reported by LGTM 02e8443486 install: fix error handling in is_symlink_with_known_name() 5d4d445912 resolve: fix return value type of dns_answer_has_dname_for_cname() 4bfb5d31d5 resolve: dns_scope_network_good() does not returns negative errno c7028bd00a core: free lines after reading them (bsc#1123892) 63b4e1c44b pam_systemd: reword message about not creating a session (boo#1111498) 7811bf8e80 pam_systemd: suppress LOG_DEBUG log messages if debugging is off (boo#1111498)- Import commit b3fe3bed57dbf0a8c280caa4b45323e689f683e2 e3666c6e3e journal-remote: set a limit on the number of fields in a message (CVE-2018-16865 bsc#1120323) a6d9216e7a journal-remote: verify entry length from header 6d319eb61e journald: set a limit on the number of fields (1k) (CVE-2018-16865 bsc#1120323) f9c666991a coredump: fix message when we fail to save a journald coredump 2ad2d953c7 journald: do not store the iovec entry for process commandline on stack (bsc#1120323 CVE-2018-16864) 10f19f0bbf journald: remove unnecessary {} eec4fdb05c coredump: remove duplicate MESSAGE= prefix from message- Import commit 8f7529bfb001e99ebaab8f50d611ab750b96917d (CVE-2018-6954 bsc#1080919) 61043b6fd3 Add macro for checking if some flags are set c15f0a33a2 test: Run qemu/nspawn tests with "set -e" 2c818c539a test: Factorize common integration test functions (#6540) aa07d4eef4 test: Write state and log files into $BUILD_DIR 0207cea661 tmpfiles: fold five lines into two 9b622de3ad tmpfiles: "e" takes globs 2f1f321b26 tmpfiles: don't adjust qgroups on existing subvolumes (bsc#1093753) 32bc657d2b tmpfiles: use fd_get_path() even less excessively c0a4ee798f test: make TEST-22 easier to debug, by outputting to /dev/console 4e6c4d3147 test: don't use "nobody:nogroup" for tests 1c22e03b53 tmpfiles: return correct error variable after fd_reopen() 3147f8b81b tmpfiles: reindent one comment less weirdly 52c5e3dcce tmpfiles: use correct error variable 34395ac640 tmpfiles: clarify that we ignore file attribute setting errors 2e68b99078 tmpfiles: add log message where we previously failed silently 4b4025ebf4 tmpfiles: use fd_get_path() less excessively f004d24b2a tmpfiles: add more tests a516490b24 test: don't send image building output to /dev/null (#8886) d827068b53 tmpfiles: don't follow unsafe transitions in path_set_*() f38c092871 fs-util: add new CHASE_NOFOLLOW flag to chase_symlinks() 0fd2349ec9 tmpfiles: make create_fifo() safe 0c40e5f0fd fs-util: introduce mkfifoat_atomic() helper cfaa792ef9 fileio: make tempfn_random_child() accept empty string as path 842dcb66f7 tmpfiles: introduce create_fifo() 37aac5922d tmpfiles: introduce empty_directory() a3ee4deb69 tmpfiles: introduce create_directory() and create_subvolume() and make them safe c46af42ca2 basic/stat-util: introduce is_dir_fd() 15c9a82bce btrfs-util: unfuck tmpfiles' subvol creation 56728ebf2c btrfs-util: introduce btrfs_subvol_make_fd() 6c125e3be7 basic/label: introduce mkdirat_label()/mkdirat_errno_wrapper() helpers 18fe67c959 selinux: introduce mac_selinux_create_file_prepare_at() 1b711db4b6 path-util: introduce new safe_getcwd() wrapper d770b8db30 smack: introduce mac_smack_fix_at() 0ffb1013bc smack: make mac_smack_fix() deal somewhat sensible with non-absolute paths 55e7a0cd2a Fix compilation w/o smack (#8593) 84e8ac537b label: rework label_fix() implementations (#8583) 3686673f0a tmpfiles: introduce create_directory_or_subvolume() 1a2573fadf tmpfiles: make create_device() safe 5c9a660957 tmpfiles: introduce create_device() c177df34c8 tmpfiles: make copy_files() safe 06a5290c63 tmpfiles: introduce copy_files() routine 6d641c23a8 tmpfiles: make write_one_file() safe 1782e90f3d tmpfiles: make truncate_file() safe 5101dfbff7 tmpfiles: introduce truncate_file() which deals with 'F' exclusively 1886d7636f tmpfiles: introduce create_file() which deals with 'f'/'F' exclusively c7f0d990b5 tmpfiles: make the stat struct parameter in fd_set_*() optional 04ce630755 tmpfiles: stat file in item_do() rather than in its callers 04883c43b7 tmpfiles: set only default acls to folders #9545 (#9599) e6720dda59 tree-wide: some O_NDELAY → O_NONBLOCK fixes 8f2444bccd tmpfiles: fix up and complain paths referring to /var/run (instead of /run) automatically 92cafeb3ab tmpfiles: 'e' is supposed to accept shell-style globs 0ad95b0f9a tmpfiles: 'e' is supposed to operate on directory only a1ba1e298b fs-util: introduce fchmod_opath() 6774858c3e tmpfiles: remove spurious curly braces in create_item() ff7b2a2149 tmpfiles: create parent directories if they are missing for more line types 4d225f603f fd-util: introduce fd_reopen() helper for reopening an fd bcec6544d6 test: add tests for systemd-tmpfiles 281d06a8fa tmpfiles: don't resolve pathnames when traversing recursively through directory trees 69a3a957d4 tmpfiles: fstat() works with fd opened with O_PATH since Linux 3.6 5e2146a435 tmpfiles: make hardlink_vulnerable() argument constant f871a58fe7 tmpfiles: make "f" lines behaviour match what the documentation says 3583d83776 tmpfiles: shortcut path_set_perms() if there's nothing to do 465416b058 tmpfiles: fix check for figuring out whether to call chmod() baf3ea541c tmpfiles: avoid using wrong type for strlen() result a8d6590e17 basic/fs-util: remove logically dead code 3768f894ed fs-util: add new CHASE_STEP flag to chase_symlinks() cd09a3129d macro: introduce new TAKE_FD() macro 0feee55455 macro: introduce TAKE_PTR() macro 58987f02cb fs-util: add shortcut for chase_symlinks() when it is called like open(O_PATH) 662fe953fb fs-util: chase_symlinks(): support empty root accfcc9d5c fs-util: refuse taking a relative path to chase if "root" is specified and CHASE_PREFIX_ROOT is set 6caab72812 fs-util: extra chase_symlink() safety check on "path" parameter 996c2c2fa6 fs-util: extra safety checks on chase_symlinks() root parameter 1252ee00da fs-util: remove comment about non-existing function b42e2bb5f9 nspawn: make sure we don't leak the fd in chase_symlinks_and_update 41fff37ee3 fs-util: add new chase_symlinks() flag CHASE_OPEN 67f388cc93 user-util: add UID_NOBODY defines that resolve to (uid_t) 65534 4b036c36a1 fs-util: use _cleanup_close_ attribute 0390eb2077 fs-util: chase_symlinks(): prevent double free 4c495215e3 fs-util: add new CHASE_SAFE flag to chase_symlinks() 9242f48c29 fs-util: chase_symlinks(): remove unnecessary slash at the head 17ae72b9b0 Move mkdir_label() to mkdir-label.c 581192d868 Move selinux-related stuff from btrfs-util.c to label.c 008a35deb6 Add mkdir_errno_wrapper() and use instead of mkdir() in various places fa77d89b43 mkdir: introduce follow_symlink flag to mkdir_safe{,_label}() b8c314823d mkdir: chmod_and_chown() returns errors as "return -errno", not in errno itself e9231b19eb tmpfiles: check if not too many symbolic links. (#7423) 48a7365e7f tmpfiles: with "e" don't attempt to set permissions when file doesn't exist (#6682) ad2c7f6a04 basic/macros: add STRLEN() to get length of string literal as constant expression- Import commit c7f08cbe22b95d97a0eea4832991c8390cc86866 c152c950d4 vconsole-setup: fonts copy will fail if the current terminal is in graphical mode (bsc#1114933) 827dc868bd 6647 - use path_startswith("/dev") in cryptsetup (#6732) (bsc#1119971) 5d1e170e05 logind: stop managing VT switches if no sessions are registered on that VT (bsc#1101591) 07fc858f25 terminal-util: introduce vt_release() helper eee33c6e5d terminal-util: introduce vt_restore() helper a133c368a4 terminal: unify code for resetting kbd utf8 mode a bit (#6692) 2a487a79ea terminal reset should honour default_utf8 kernel setting (#6606) a33d12fd73 logind: make session_restore_vt() static ef799fb7ec udev/net-id: check all snprintf return values 46343b3248 core: don't include libmount.h in a header file (#8580) 2763be9d36 udev: downgrade message when we fail to set inotify watch up (bsc#1005023) f66ba2d179 namespace: always use a root directory when setting up namespace (bsc#1045723) 98d173e12e core: ReadWritePaths= and friends assume '+' prefix when BindPaths= or freinds are set 5d581cee2f namespace: properly handle bind mounts from the host 7b0b2e418b namespace: create /dev, /proc, /sys when needed 84736215a4 coredump: only install coredump.conf when ENABLED_COREDUMP=true- Fix the test for figuring out if /etc/machine-id is writable in %post (bsc#1117063) "test -w" always returns true for root user even if the writable mode bits are not set. Fix this by testing the file mode bit value instead.- udev: ignore the exit code of systemd-detect-virt for memory hot-add (bsc#1076696) In 80-hotplug-cpu-mem.rules on SLE12-SP3, there have a memory hot-add rule uses systemd-detect-virt to detect non-zvm environment. The systemd-detect-virt returns exit failure code when it detected _none_ state. The exit failure code causes that the hot-add memory block can not be set to online. See: https://www.spinics.net/lists/systemd-devel/msg00341.html- Import commit ceefdbf8afbc95dc2728999ce0cd7493411357e4 43b790123 dhcp6: make sure we have enough space for the DHCP6 option header (bsc#1113632 CVE-2018-15688) 96eba195c dhcp6: split assert_return() to be more debuggable when hit 38c94b4bf core: skip unit deserialization and move to the next one when unit_deserialize() fails ef058a4f9 core: when deserializing state always use read_line(…, LONG_LINE_MAX, …) (bsc#1113665 CVE-2018-15686) 5581cd610 core: properly handle deserialization of unknown unit types (#6476) e2933aa92 core: don't create Requires for workdir if "missing ok" (bsc#1113083) 794443b1c logind: use manager_get_user_by_pid() where appropriate 986d63b00 logind: rework manager_get_{user|session}_by_pid() a bit 83d0f831e login: fix user@.service case, so we don't allow nested sessions (#8051) (bsc#1112024) f2a73744c core: be more defensive if we can't determine per-connection socket peer (#7329) fc9172ff8 core: introduce systemd.early_core_pattern= kernel cmdline option cd2ed8f59 core: add missing 'continue' statement c6c6cc19c core/mount: fstype may be NULL 1da4c5dd4 journald: don't ship systemd-journald-audit.socket (bsc#1109252) 7bb6768b3 core: make "tmpfs" dependencies on swapfs a "default" dep, not an "implicit" (bsc#1110445) 5aa2ccd69 mount: make sure we unmount tmpfs mounts before we deactivate swaps (#7076) 57cc22fef detect-virt: do not try to read all of /proc/cpuinfo (bsc#1109197) 3c4503ec6 emergency: make sure console password agents don't interfere with the emergency shell 7a1eb19d7 man: document that 'nofail' also has an effect on ordering e0326fc41 journald: take leading spaces into account in syslog_parse_identifier a09b1acab journal: do not remove multiple spaces after identifier in syslog message e7a85abe6 syslog: fix segfault in syslog_parse_priority() 6d66aca0f journal: fix syslog_parse_identifier() be15909f3 install: drop left-over debug message (#6913)- Ship systemd-sysv-install helper via the main package This script was part of systemd-sysvinit sub-package but it was wrong since systemd-sysv-install is a script used to redirect enable/disable operations to chkconfig when the unit targets are sysv init scripts. Therefore it's never been a SySV init tool.- Import commit 5da416950ebe9c4d834ffb8382b0dcaee1941aa8 9d0d3c2bb tmpfiles: don't adjust qgroups on existing subvolumes (bsc#1093753) 828198433 socket-util: attempt SO_RCVBUFFORCE/SO_SNDBUFFORCE only if SO_RCVBUF/SO_SNDBUF fails (bsc#991901) 043f75c0d user@.service: don't kill user manager at runlevel switch (bsc#1091677) 21eae45f7 units: make sure user@.service runs with dbus still up 27f607ce7 fix race between daemon-reload and other commands (v234) (bsc#1105031) 83126307c nspawn: always use mode 555 for /sys (bsc#1107640) 8a77eed0a cryptsetup: do not define arg_sector_size if libgcrypt is v1.x (#9990) 7ebb0643c cryptsetup: add support for sector-size= option (#9936) (fate#325697)- Enable or disable machines.target according to the presets (bsc#1107941) Enable or disable machines.target according to the distro's presets.- Import commit f26a4b03baf10f479951bdffa0f70eff6b5451c1 5af898dfe core/service: rework the hold-off time over message a4aa80162 systemctl: load unit if needed in "systemctl is-active" (bsc#1102908) 72f8ae153 core: don't freeze OnCalendar= timer units when the clock goes back a lot (bsc#1090944) ed49f225e man: SystemMaxUse= clarification in journald.conf(5) (bnc#1101040) c47c1fd5e core: in --user mode, report READY=1 as soon as basic.target is reached (#7102) ee9d1567c sd-bus: extend D-Bus authentication timeout considerably (#6813)- Add 0002-udev-optionally-disable-the-generation-of-the-partla.patch (bsc#1089761) This patch adds "udev.no-partlabel-links" kernel command-line option that can be used to disable the generation of the by-partlabel symlinks regardless of the name used. This might be useful to prevent the generation of such symlinks on big setups where it could have a bad impact on the performance of the boot process. This will allow user to workaround bsc#1089761 whatever the partlabel used for disks (previous patch was only dealing with "primary" and "logical" names). DISCLAIMER: this new option must be used to workaround the previous bug *only* as it will be dropped as soon as the udev perf issue will be addressed.- Import commit 2bf8d0f79760dd75bc221f9e91d294e4957e6c95 181ae456a udev: use MAC address match only for ibmveth/ibmvnic/mlx4 (bsc#1095096) 5a1aa8454 compat-rules: generate more compat by-id symlinks for NVMe devices (bsc#1095096)- Import commit 455f9b8841be896cb9a46a76f441a68a54187b29 be5d72795 systemctl: mask always reports the same unit names when different unknown units are passed (bsc#1095973) d484e8167 systemctl: check existence of all units, not just the first one b33745be7 scsi_id: Fixup prefix for pre-SPC inquiry reply (bsc#1039099) f141e98a0 device: make sure to always retroactively start device dependencies (take #2) (bsc#1088052) cc7cfdc06 locale-util: on overlayfs FTW_MOUNT causes nftw(3) to not list *any* files c10206dad Fix pattern to detect distribution 7b8f97e93 basic/macros: rename noreturn into _noreturn_ (#8456) f4836f05a install: "user" and "global" scopes are equivalent for user presets (boo#1093851) 8f3fb5638 install: search preset files in /run (#7715) e871d6192 install: consider globally enabled units as "enabled" for the user (bsc#1093851) a25169127 install: consider non-Alias=/non-DefaultInstance= symlinks as "indirect" enablement c4635e551 install: only consider names in Alias= as "enabling" 1b78301a5 install: move and rename to lowercase two functions e79156aee udev: whitelist mlx4_core locally-administered MAC addresses in the persistent rule generator (bsc#1083158) 6c565351b man: updated systemd-analyze blame description for service-units with Type=simple (#8834) (bsc#1091265) 380e80633 fileio.c: fix incorrect mtime 0ae375c66 fileio: support writing atomic files with timestamp- Drop runtime dependency on dracut (bsc#1098569) Otherwise systemd pulls in tools to generate the initrd even in container/chroot installations that don't have a kernel anyways. For environments where initrd matters, dracut should be pulled via a pattern.- Import commit d5dfab21f033c8af518e169a4cc79365a26974e2 e79156aee udev: whitelist mlx4_core locally-administered MAC addresses in the persistent rule generator (bsc#1083158)- Disable user services by default (bsc#1090785)- Add 0001-udev-don-t-create-by-partlabel-primary-and-.-logical.patch (bsc#1089761)- Make sure /etc/machine-id has correct permissions (boo#1092269) This should be only needed for those who keep a Beta/RC installations.- Move 80-container-v[ez].network in systemd-container sub-package - Move 80-container-host0.network from udev to systemd- Import commit d5dfab21f033c8af518e169a4cc79365a26974e2 92bf37b0a device: skip deserialization of device units when udevd is not running 0a8984996 device: make sure to always retroactively start device dependencies (bsc#1088052) 88df88129 cryptsetup-generator: do not bind to the decrypted device unit (#6538) (bsc#1089693)- Ship 99-sysctl.conf instead of creating it during package installation/update (bsc#1088769) Previously this symlink was created in /etc/sysctl.d during %post which made the symlink not owned and more importantly it was created only if /etc/sysctl.conf is already installed which is not always the case during the installation process it seems. So ship the symlink unconditionally and put it in /usr/lib/sysctl.d instead since it's a distro default behavior that might be overriden by sysadmin later.- Import commit 9c35953dd19e90e4bfb03ad41380f3a5f9ae3ce7 a374ad328 Drop busname unit type (bsc#1089376) 85a01da56 shared/dissect-image: adapt to LUKS2 format a0ac1823c dissect: add a bit of debug logging if dm-crypt fails on us 386ae68a0 cryptsetup: support LUKS2 on-disk format (bsc#1083571) 5f3b66fdb systemd-udevd: limit children-max by available memory (#8668) (bsc#1086785 bsc#1066422) 54833e3ab tmpfiles: fix directory removal with force symlink (#8619) 04ef8e535 rules: fix syntax inconsistency in 75-persistent-net-generator.rules spotted by rule syntax checker- Drop dangling symlinks when systemd-container is not installed (bsc#1089376) - /usr/lib/systemd/system/remote-fs.target.wants/var-lib-machines.mount symlink is now part of systemd-container. - Dangling org.freedesktop.*.busname symlinks have been dropped completely and the support of busname has been removed from the git repo since it was dead code (kdbus was rejected).- systemd: add offline environmental condition to 80-acpi-container-hotplug.rules (bsc#1082485) Add the offline event environmental condition to restrict the rule that is can only be triggered when the change event is received with the "offline" environmental data. The 27664c581 "ACPI / scan: Send change uevent with offine environmental data" kernel patch changed the corresponding code in kernel. This change prevents the udev rules for acpi container be triggered by "udevadm trigger" from user space.- Split systemd-coredump sub-package off (bsc#1083849)- Rename the tarball to reflect the exact version used (bsc#1087323) So it's clear that it contains some additional patches on top of the upstream version. Use the commit hash in the name so the exact version can easily be identified. Provide _service file which can be used to retrieve the tarball from the git repo (with "osc service disabledrun").- Import commit b83c42d5d91a5ace2b4aa7420e83c98292e6f9e3 a59988ee5 sysusers: make sure to reset errno before calling fget*ent() 98ddbf6b3 sysusers: also add support for NIS entries in /etc/shadow 586c08f63 sysusers: do not append entries after the NIS ones (bsc#1085062 bsc#1045092) 3993df26a compat-rules: fix error detected by the rule syntax checker- Don't ship machines.target in systemd-container but in systemd main package machines.target is supposed to be a standard target for starting/stopping all containers. systemd-nspawn is the main user of it but other container managers could also make use of it.- Create systemd-container-mini package So we don't have to manually track and remove all files that should be shipped by systemd-container in the case of a bootstrap build.- Run migrate-sysconfig-i18n.sh also during package installation (bsc#1086164) This is needed when we upgrade from SLE11.- Split systemd-container sub-package off (fate#325469) This split off has been in Factory/TW since a couple of weeks now without any reported problems and I think it makes also sense to have it in SLE.- Import commit 6efb938f152b60c905b8496980697400b13e02a7 06d5d0701 rules: maintain 80-hotplug-cpu-mem.rules in the package 01db63eeb rule-syntax-check: allow commas inside quoted strings 8247f6155 rule-syntax-check: add support for escaped double quotes a6354c05b rule-syntax-check: values can contain escaped double quotes 5c8d9a358 rule-syntax-check: PROGRAM is not supposed to get value assigned 88174ae85 compat-rules: fix syntax errors spotted by test/rule-syntax-check.py f4f94ab2e meson: install rules/80-hotplug-cpu-mem.rules 2901aa9b9 meson: install rules/60-ssd-scheduler.rules db1d8eacd compat-rules: make path_id_compat build with meson- Fix hotplug memory in 80-hotplug-cpu-mem.rules Drop broken script udev-remount-tmpfs. When new memory was hotplugged, the rule was supposed to call the external script (udev-remount-tmpfs) to remount all tmpfs. However the script was broken since its introduction (commit rev=715, 14/07/2014) and had no effects... this makes me wonder if we shouldn't get rid of this... The logic is now embedded in the rule file.- Add basic user space support for suspend to idle (fate#323814) Add 99-wakeup-from-idle.rules Currently this only covers the power button and usb/AT keyboards as wakeup devices. It is planned to make that configurable in the future.- Add dmi conditions to 80-acpi-container-hotplug.rules (bsc#1078358, bsc#1081170, bsc#1075743) Patch sent by Lee, Chun-Yi to @systemd-maintainers. http://mailman.suse.de/mailman/private/systemd-maintainers/2018-February/032177.html Commit message: Add dmi/id conditions to 80-acpi-container-hotplug.rules to restrict the rule that it can only be triggered on Huawei Kunlun 9008, 9016 and 9032 machines. (bsc#1078358, bsc#1081170, bsc#1075743)- Re-enable systemd-firstboot It's used by the installer and also by JeOS.- Import commit 0987985db5a5797db8dc708e67166d329fa74858 1293c0056 core: use id unit when retrieving unit file state (#8038) (bsc#1075801) 596b2b241 Revert "vconsole-setup: add SUSE specific settings for font/keyboard in sysconfig" 0b595da04 Revert "locale-setup: handle locale at boot time well" 2a181fc6f insserv-generator: make it build with meson 7b0401da4 build-sys: don't build networkctl if networkd is disabled b1e0a348d fileio: include sys/mman.h f1fa784cb meson: update header file to detect memfd_create() 8838ba7ec meson: define _GNU_SOURCE to detect copy_file_range() (#7734)- Disable systemd-firstboot I don't think there's any use case for it currently.- Drop unused code dealing with tmp.mount Commit "Don't ship /usr/lib/systemd/system/tmp.mnt at all (bsc#1071224)" forgot to delete this chunk of code which is no more needed.- Make systemd-timesyncd use the openSUSE NTP servers by default Previously systemd-timesyncd used the Google Public NTP servers time{1..4}.google.com- Drop 0001-Revert-locale-setup-handle-locale-at-boot-time-well.patch 0002-Revert-vconsole-setup-add-SUSE-specific-settings-for.patch These 2 patches have been merged in branch "SUSE/v234"- Don't ship /usr/lib/systemd/system/tmp.mnt at all (bsc#1071224) But we still ship a copy in /usr/share/systemd. Users who want to use tmpfs on /tmp are supposed to add a symlink in /etc/ pointing to the copy shipped in /usr/share. To support the update path we automatically create the symlink if tmp.mount in use is located in /usr/lib.- Enable systemd-networkd on Leap distros only (bsc#1071311)- Don't build seccomp support in the mini package- Don't build-require selinux for the mini package- Drop libgcrypt.m4 The mini package builds fine without it so it doesn't seem necessary anymore.- Import commit d5a5df298ccf490eb1da5cd671922dcda5ec17e1 531a00c84 Restore "restore /var/run and /var/lock bind mount if they aren't symlink""- Import commit fd4e9389d87901c420a5a05dd016a002bc9e85b2 7fb9ea39a Revert "restore /var/run and /var/lock bind mount if they aren't symlink" 23ce1207a meson.build: make docdir configurable (#8068)- Import commit 08eebc34ac22b2175321f3a8814ed0aca3bc88bb 07c6ee3eb compat-rules: get rid of scsi_id when generating compat symlinks for NVMe devices (bsc#1051465)- Drop 0001-compat-rules-get-rid-of-scsi_id-when-generating-comp.patch It's been merged in branch "compats/udev-compat-symlinks" which was merged in branch "SLE15" in its turn.- Import commit b4e4c090b2238e80f4d82b11739bc428d3f0e00f 37da1facb core: disable session keyring per system sevice entirely for now (bnc#1045886) 8a1ae0449 strv: fix buffer size calculation in strv_join_quoted() 2b8971b8a tmpfiles: refuse to chown()/chmod() files which are hardlinked, unless protected_hardlinks sysctl is on (bsc#1077925 CVE-2017-18078) 8c2bcac25 tmpfiles: change ownership of symlinks too- Drop 0001-core-disable-session-keyring-per-system-sevice-entir.patch It's been merged in branch "SUSE/v234".- Import commit b8dab767c4df0fba4766f1e2b9977a2cd329b20e 3d60486f7 core/timer: Prevent timer looping when unit cannot start (bsc#1068588) 54c0add7c logind: store a timestamp when the ACPI power button is pressed (bsc#981830 bsc#888612 bsc#1072933) 460bd0cd6 Revert "handle SYSTEMCTL_OPTIONS environment variable" (fate#323393)- Drop 0001-Revert-handle-SYSTEMCTL_OPTIONS-environment-variable.patch The patch has been merged in SUSE/v234 since its counterpart in YaST has been accepted in Factory and SLE15.- Drop 0001-logind-store-a-timestamp-when-the-ACPI-power-button-.patch The patch has been verified on Beta5 and hence has been merged in "SLE15" branch.- Import commit c2ed2c6dc3aed4b3c22cfcd4b8fd28da01f6471e aa3eba828 delta: don't ignore PREFIX when the given argument is PREFIX/SUFFIX b1ea0173a delta: extend skip logic to work on full directory paths (prefix+suffix) (bsc#1070428) 77c5065f9 delta: check if a prefix needs to be skipped only once db32866d1 Fix parsing of features in detect_vm_xen_dom0 (#7890) (bsc#1048510) 11d40461a sd-bus: use -- when passing arguments to ssh (#6706)- Edit scripts-systemd-fix-machines-btrfs-subvol.sh We shouldn't be creating a /var/lib/machines subvolume if /var is already a seperate partition or subvolume. /var/lib/machines will already be excluded from snapper & similar tooling in this case.- Import commit 290129a57006338211f8c139a52402cb1ccebbf7 1148d99f6 tmpfiles: consider /etc uninitialized also when /etc/machine-id is present but empty (#7849) (bsc#1075179) 3a95f69bf tmpfiles: downgrade warning about duplicate line- Import commit e1f3d0784798d2a31e7492a26ce660fda2b0ddb8 8c7f0c449 service: Don't stop unneeded units needed by restarted service (bsc#1066156) 869be64ce sysctl: use raw file descriptor in sysctl_write (#7753) 0c2400810 sysctl: disable buffer while writing to /proc (bsc#1071558) 9eb1f30b8 Use read_line() and LONG_LINE_MAX to read values configuration files. (bsc#1071558) 4dbea654f def: add new constant LONG_LINE_MAX 48f14cd71 fileio: add new helper call read_line() as bounded getline() replacement- Add 0001-Revert-handle-SYSTEMCTL_OPTIONS-environment-variable.patch Patch has been quarantined. The only user of SYSTEMCTL_OPTIONS was yast2-installation and its usage has been removed in SLE15 (the changes are still pending for Factory).- Import commit d4267fb7c1c6718015309275d303e652155705f8 861e1a222 build-sys: udevadm should have LOG_REALM=LOG_REALM_UDEV 8ed5cf3fb meson: libudev_core and udevadm should have LOG_REALM=LOG_REALM_UDEV (#7666) a9f93f1d0 virt: use XENFEAT_dom0 to detect the hardware domain (#6442, #6662) (#7581) (bsc#1048510) fe56abdf9 seccomp: arm64/x32 do not have _sysctl (bsc#1069239) c9194fe37 seccomp: arm64 does not have mmap2 (bsc#1069239) 31d9b3c32 fs-util: small tweak in chase_symlinks() 9dd0bc7a3 meson: do not include man/meson.build if xsltproc not found 7e29e2b07 analyze: replace --no-man with --man=no in the man page (bsc#1068251)- Add missing /etc/systemd/network directory backported from Factory- Add (back) 0001-logind-store-a-timestamp-when-the-ACPI-power-button-.patch (bsc#1072933) Patch added in the quarantine area. Once tested it could be moved to the SLE15 branch.- Stop importing i18n settings from /etc/sysconfig (fate#319454) Add the 2 following patches in the quarantine area: 0001-Revert-locale-setup-handle-locale-at-boot-time-well.patch 0002-Revert-vconsole-setup-add-SUSE-specific-settings-for.patch- Import commit 00dc7ae09282e074a16b37a7329296371cb9efda 63481b24b firstboot: do not write vconsole.conf when arg_keymap is empty (bsc#1070124)- Add 0001-compat-rules-get-rid-of-scsi_id-when-generating-comp.patch (bsc#1051465) This patch is not yet merged in the 'compats/udev-compat-symlinks' branch: we asked to upstream if it would be possible to introduce a new specifier that wouldn't strip trailing whitespaces , see https://github.com/systemd/systemd/issues/7462 Also this allows to give the patch more testing before merging it in the git repo.- Drop a useless rm(1) from the specfile- Add 80-acpi-container-hotplug.rules (bsc#1040800) A "temporary" rule file that is maintained by the kernel team until a proper solution is found in the kernel. It doesn't belong to udev normally but for convenience purpose we welcome this homeless rule.- Remove requires for pwdutils, we don't need the shadow tools anymore [bsc#1069150]- Drop 0001-systemd-firstboot-add-vconsole-keymap-support.patch It's not needed since it's been merged in the git repo (see commit 86804326f).- Import commit 79ede6be5b01b6031637e3ac95248a9bf392ce7c 22dcb1d04 tmpfiles: when /etc is not fully initialized, some specifiers are expected to be unresolvable (#6860) (bsc#1055664) 216beb768 tmpfiles: Allow create symlink on directories (#6039) baf85eb79 udev: net_setup_link: don't error out when we couldn't apply link config (#7328) 86804326f systemd-firstboot: add vconsole keymap support (#7035) (bsc#1046436) - Remove stderr redirection to /dev/null when calling %tmpfiles_create since it's not needed anymore due to commit 22dcb1d04. Indeed the messages are no more emitted at LOG_WARN but LOG_NOTICE.- Fork Factory and create a dedicated project for SLE15. It will contain all SLE15 dedicated bits: - forward port all SLE dedicated patches - merge compats/persistent-nic-names (bsc#1061883) - update with compats/udev-compat-symlinks - update with SUSE/v234 - disble networkd, resolved, journal-remote - Import commit 0053b83a1d913954f0d2eb22bb2a0df2ef252e19 9b64225e9 (origin/SUSE/v234, SUSE/v234) resolved: fix loop on packets with pseudo dns types (bsc#1065276 CVE-2017-15908) 261a4ef38 (origin/compats/udev-compat-symlinks, compats/udev-compat-symlinks) compat-rules: generate compat by-id symlinks with 'nvme' prefix missing (bsc#1063249) 9707249bc udev: add option to generate old 'buggy' SCSI serials 52cf64d2b journald: turn ForwardToSyslog= on by default (bsc#1065301) e2f3cf5f2 logind: disable RemoveIPC by default 7a2a3b134 (origin/compats/persistent-nic-names, compats/persistent-nic-names) udev: add a persistent rule for ibmvnic devices 74b2d3b88 udev: disable predictable network interface names by default ef9f437a0 udev: Revert the use of -DNET_IFNAME=1 to use persistent name by default e61a078ed udev: move persistent net rule generator to SCRIPTS 9c95cc9ac udev: rework KVM persistent rules generatior (again) 760a6f70d udev: fix persistent netrule generator for KVM 9d173534c udev: better checks in write_net_rules() in persistent net rule generator 5540a0b7c udev: fix duplicated rules with layer3 interfaces in persistent net rule generator d87359c59 udev: re-enable dev_id conditionally in persistent net rule generator 5a0c34683 udev: disable usage of dev_id in persistent net rule generator 73fa44a85 udev: re-add persistent net rule generator a7d25354d Revert "udev: network device renaming - immediately give up if the target name isn't available"- Import commit e44237e76f6e133e62ff6c681d3fd06ebf12f66d a4e02c099 udev-rules: all values can contain escaped double quotes now (#6890) d2b767a76 tmpfiles: remove old ICE and X11 sockets at boot (#6979)- Add 0001-systemd-firstboot-add-vconsole-keymap-support.patch (bsc#1046436) Temporary patch until it's been merged by upstream, see https://github.com/systemd/systemd/pull/7035- Damn forgot to drop 0001-Revert-core-device-Use-JobRunningTimeoutSec-for-devi.patch in the spec file- Import commit 6dea894131d78b20b9e0482f75afa6ee4dec8627 1cdd944b0 unit: when JobTimeoutSec= is turned off, implicitly turn off JobRunningTimeoutSec= too (bsc#1004995) This make 0001-Revert-core-device-Use-JobRunningTimeoutSec-for-devi.patch not needed anymore.- Import commit 93688f8e53b4e482a55a7d4aba2d927ddedebdde c53522be3 compat-rules: allow to specify the generation number through the kernel cmdline- Import commit c1e8af7d1e8b09c2878a5b17f513bfc41ae46dc6 982754275 build-sys: make sure 61-persitent-storage-compat.rules is installed with meson 9ac2e8b9b udev: proc_cmdline_get_key() FTW! (#6925)- Import commit 9e0985dc330b1cf04bc44049962343bdf4ba851a 4fd7cd041 pam_logind: skip leading /dev/ from PAM_TTY field before passing it on dd6312828 logind: make sure we don't process the same method call twice (#6583)- Update scripts-systemd-upgrade-from-pre-210.sh script - drop dependency on awk - fallback to runlevel #3 if something goes wrong Note: I'm not sure how this is supposed to work as /etc/inittab is likely to be missing in my understanding. Indeed this file is part of the aaa_base package which might be upgraded before systemd is installed...- Drop macros.systemd.upstream as it's not used- Import commit 58ea3c819cca1639ef8c922505c573ba5e262b3d 334945091 shutdown: fix incorrect fscanf() result check (#6806) 027202892 shutdown: don't remount,ro network filesystems. (#6588) (bsc#1035386) bc77b53a5 shutdown: don't be fooled when detaching DM devices with BTRFS (boo#1055641) d9d293847 util: make get_block_device() available 421ce7382 tmpfiles: silently ignore any path that passes through autofs (#6506) (bsc#1045472) ca8f90e62 device: make sure to remove all device units sharing the same sysfs path (#6679)- Make use of "%tmpfiles_create" in %post of the logger subpackage- Add scripts-udev-convert-lib-udev-path.sh (bsc#1050152) This script takes care of converting /lib/udev into a symlink pointing to /usr/lib/udev when upgrading a distro using an old version of udev.- Make use of "%make_build" rpm macro- Renumber scripts to start at index 100- Introduce scripts-systemd-upgrade-from-pre-210.sh It collects all existing hacks done in %post to fix old/deprecated settings in systemd older than 210. This includes hacks needed to fix system that are migrating from SysV. There shouldn't be any functional changes.- Move scripts for packaging workaround/fixes in /usr/lib/systemd/scripts It also renames fix-machines-subvol-for-rollbacks.sh into scripts-systemd-fix-machines-btrfs-subvol.sh Note that the "scripts-systemd-" prefix is used for those scripts so we can gather them. Why not using a directory instead ? because osc doesn't allow that.- Add 0001-Revert-core-device-Use-JobRunningTimeoutSec-for-devi.patch (bsc#1048605) It's a temporary but urgent fix for a regression discovered in bug 1048605. The fix is still under discussion with upstream but we need to make progress here and limit the number of affected users. Consequently this fix reintroduces bsc#1004995 (the bug report has been re-opened) but this one is far less critical and a workaround was provided. The final solution will fix both bugs.- Import commit 2bed4bf99cf7f24eafda490f778ed5e109f8d7f1 7a4935268 compat-rules: drop the boggus 'import everything' rule (bsc#1046268)- %regenerate_initrd_post is suppsed to be used in %post (not %pre) section- Import commit 6887cc21f23e33ac37801a01d76176e5c16fd8ea 9dcc6c04e pid1: forward port console specificities handling for s390 arch to v234- Import commit 986e98fd5a75470ba17e21fea12d7d4e966c1ecc 4706ebc62 call chase_symlinks without the /sysroot prefix (#6411) (boo#1051172)- Remove the unneeded hack forcing systemd-crypsetup binary to be linked against the just built libudev I don't remember why it was added but it looks unnecessary: most of all systemd components are linked againt libsystemd-shared.so which includes all the just built symbols. Also I don't see why it was done only for systemd-cryptsetup since all other binaries should have had suffered from the same issue.- Import commit c5705e01800bdadd6a4fa7dc50d47b13eb697211 8ea065d44 compat-rules: don't rely on ID_SERIAL when generating 'by-id' symlinks for NVMe devices (bsc#1048679)- Import commit 06bed720274d9436405a7c27c8238d7d1aefca2b 66fffdf12 build-sys: don't hook var-lib-machined.mount to remote-fs.target when machined is disabled 96c232066 Revert "core: don't load dropin data multiple times for the same unit (#5139)"- Drop support of compression from the mini package Hence remove the relevant build-requires from the mini package.- Upgrade to v234 (commit 78af11131da1b2760778206806c0ebe8616a5284) - package /etc/systemd/system/dbus-org.freedesktop.network1.service - /usr/lib/systemd/resolv.conf is not installed if resolved is disabled- Edit pkgconfig(liblz4) dependency: liblz4 now uses 1.x *again*- Added 0001-core-disable-session-keyring-per-system-sevice-entir.patch (bnc#1045886) Temporary patch to disable the session keyring stuff as it's currently broken and may introduce some security holes.- Import commit 21827ea0875ff197e16e72003b2bfaa1c6e8daad 1ad06735f core: fail when syntactically invalid values for User=/Group= fields are detected (bsc#1047023) d563972e2 timesyncd: don't use compiled-in list if FallbackNTP has been configured explicitly f4e0c16f5 gpt-auto-generator: fix the handling of the value returned by fstab_has_fstype() in add_swap() (#6280) e1345aac5 fix add_esp() in the gpt-auto-generator.c (#6251) c591ece9a automount: don't lstat(2) upon umount request (#6086) (bsc#1040968) 643ab2eea gpt-auto-generator: disable gpt auto logic for swaps if at least one is defined in fstab f07d2022f fstab-util: introduce fstab_has_fstype() helper bf735bb35 fstab-util: don't eat up errors in fstab_is_mount_point() a4b40fbed resolved: simplify alloc size calculation (bsc#1045290 CVE-2017-9445) 8b960bec0 only check signature job error if signature job exists (#6118) (boo#1043758) 1418bfb5b job: Ensure JobRunningTimeoutSec= survives serialization (#6128) (bsc#1004995) 19b6d5f08 udev: turn off -Wformat-nonliteral for one safe case 717ace439 udev: net_id add support for platform bus (ACPI, mostly arm64) devices (#5933) a3bf2e6b5 core/mount: pass "-c" flag to /bin/umount (#6093)- Add minimal support for boot.d/* scripts in systemd-sysv-convert (boo#1046750) While at it, the handling of the symlink priorities is also removed since it doesn't appear to be used at all.- Don't try to restart networkd/resolved if they're disabled (boo#1045521) "systemctl try-restart/preset" wants the unit files exist.- Stop shipping /usr/lib/sysusers.d/basic.conf (bsc#1006978) Ok looks like the previous change was the right thing to do and we continue to follow this path by relying on the new user/group scheme Therefore the basic system user/group are now managed and created by system-sysusers and udev also relies on this for the groups it uses in its rule files. Ideally we should have listed all of the groups in the deps (with "Requires: group(disk)" but the list of the groups is rather long and the risk for those groups to be re-organized is probably low, so currently we simply use "Requires: system-group-hardware" as a shortcut.- Make sure "lock" group is created On SUSE distros, /run/lock must be owned by "lock" group (see boo#733523). This group was previously created by another package but since a recent changes it doesn't seem to be true anymore or at least this package isn't pulled in anymore when building the rescue system. For now make systemd creates the group by adding "Requires: group(lock)". I'm currently not sure why we don't use sysusers.d stuff for that purpose and if the "lock" group on /run/lock is still mandatory. This should be revisited later.- Make sure dracut (if installed) will embed the new compat rule The new compat rule must be embedded in the initramfs so make sure that the installed dracut supports it.- Upgrade to v233 (commit 330b55d5e28d17f361062dba66426e46fb7d7857) - package new systemd-umount binary - package new environment generator stuff - drop /dev/root symlink support - /etc/pam.d/systemd-user is not patched anymore but we ship a dedicated file for SUSE now. - manage compat symlink generation in a dedicated branch (bsc#1040153)- Fix systemd-sysv-convert when a package starts shipping service units (bsc#982303) The database might be missing when upgrading a package which was shipping no sysv init scripts nor unit files (at the time --save was called) but the new version start shipping unit files.- Fix indentation in systemd-sysv-convert While at it, strip trailing whitespaces. No functional changes.- Disable group shadow support (bsc#1029516) The new configure option will be imported during the next tarball update.- Ship /var/log/README Unfortunately it's not possible to also ship /etc/init.d/README because of rpm "sanity" checks that prevent executable in /etc/init.d- Drop systemd-{journalctl,loginctl} legacy symlinks.- Drop %preun section Currently the only use of this section is to remove the symlinks enabling systemd services on package removal. Those symlinks were initially installed by the systemd package installation but could have been overriden by the sysadmin later. If so the symlinks shouldn't be uninstalled. Also in a near futur disabling services will install a symlink to /dev/null.- Import commit 9e33c2ae69fbb705e8ad143536e419a231e93020 04ef0eab8 importd: support SUSE style checksums supplementary (#5800) fb601ad9a importd: support SUSE style checksums (#5206) (fate#322054) b76b27c76 hwdb: fix warning "atkbd serio0: Unknown key pressed" (#5772) (boo#1010220) cb0d991f6 loginctl: fix typo causing ignoring multiple session IDs (#5732)- Make use of %systemd_postun()- Restart a couple of systemd services on package update Those services (most notably journald) should support restarting these days. However logind still doesn't but that should be fixed pretty soon, well I hope :)- Don't buildrequire pam-config, it's not used at this step. Also drop the use of it in %postun as it can't realistically happen...- Don't call /sbin/ldconfig in %post of the main package systemd main package doesn't ship any shared libs so there's no point in calling ldconfig in %post/%postun- Silent %tmpfiles_create in %post (bsc#1034938) Due to bsc#1024740, we stopped generating /etc/machine-id during systemd package installation making the specifier '%m' unavailable in the tmpfiles.d configuration files at this time. Make it simple for now and silent %tmpfiles_create, after all that's how the macro was implemented originally.- Import commit f0325620d23a247682c629d28883a364e4a7a8c4 327814841 core: when a unit's SourcePath points to API VFS pretend we are never out-of-date (#5487) f4b9fb58e units: move Before deps for quota services to remote-fs.target (#5627) (bsc#1028263) 44b9d27f8 udev: net_id - support predictable ifnames on vio buses (#5675) (bnc#1029183) 64f4761c9 units: apply plymouth warning fix to in rescue mode as well (#5615) 77607b887 units: do not throw a warning in emergency mode if plymouth is not installed (#5528) (bsc#1025398) 336d6016c core: downgrade "Time has been changed" to debug (#4906) (bsc#1028610)- Consider chroot updates in fix-machines-subvol-for-rollbacks.sh (bsc#1030290)- Initialize /etc/machine-id during the first boot (bsc#1024740) Previously that was done at package installation but it didn't fit well for appliance builds.- Import commit 68fc0a749a83d16d4cde8471d5030bc6254ffd96 76d4d05fb udev: fix variable assignment 473df8cc4 udev-rules: perform whitespace replacement for symlink subst values (bsc#1025886) d6c3ff647 udev-event: add replace_whitespace param to udev_event_apply_format 30ad15f7c libudev-util: change util_replace_whitespace to return number of chars in dest- Import commit 103259b3226251d06f79ca627f7b0ba0bd49f4bc 0ee7890dd automount: if an automount unit is masked, don't react to activation anymore (#5445) 99865a181 core: make sure to destroy all name watching bus slots when we are kicked off the bus (#5294) (bsc#1006687) f34234c54 build-sys: add check for gperf lookup function signature (#5055) 44e39538f sd-event: "when exiting no signal event are pending" is a wrong assertion (#5271) (boo#995936 bsc#1022014) 471b26807 sd-event: when an event source fails, don't assume the type of it is still set- Don't ship systemd-resolved for now (bsc#1024897) If resolved is enabled , systemd-tmpfiles creates a wrong symlink in /etc/resolv.conf which confuses the network manager actually used.- More indentation cleanup (no functional changes)- Remove obsolete insserv requirements for udev again [bsc#999841]- Import commit cd97d5d5fef79ab9d957bf6504d085c0faca6bfc e587b6ce0 disable RestrictAddressFamilies on all architectures but x86_64 one (bsc#1023460) c8ae05632 journald: don't flush to /var/log/journal before we get asked to (bsc#1004094) 7261eaf3e sd-event: fix sd_event_source_get_priority() (#4712)- Move fix for permission set on /var/lib/systemd/linger/* (no functional changes) Move that part after the fix on timer timestamp files otherwise the comment doesn't make sense.- Import commit 028fd9b60580976dffb09b3576a2b652ee35137c cc2ca55ff build-sys: do not install ctrl-alt-del.target symlink twice ececae77a device: Avoid calling unit_free(NULL) in device setup logic (#4748)- Ship systemd-resolved but it's disabled by default (bsc#1018387) The NSS plugin will also be disabled, users need to enable it manually.- Don't ship ldconfig.service anymore This service was introduced to support stateless systems that support offline /usr updates properly. AFAIK we don't support any such system for now, so disable it. If it's wrong it's easy enough to restore it back. Related to bsc#1019470.- Be more consistent with indentation (*no* functional changes) Indentation should use 8 spaces now (no tabs).- Import commit 2559bc0c076b58f0a649056e79ca90fe5f1d556c 9c4a759ab systemctl: 'show' don't exit with a failure status if the requested property does not exist [SUSE] (bsc#1021062) f9194193b systemctl: remove duplicate entries showed by list-dependencies (#5049) (bsc#1012266) 2a6653335 rule: don't automatically online standby memory on s390x (bsc#997682)- Fix permission set on /var/lib/systemd/linger/* Those files are created by logind which run with umask(0022), so they are not world writable and shouldn't be affected by bsc#1020601. But it's cleaner to not let files forever with their setuid bit set for no good reason.- Fix permissions set on permanent timer timestamp files (bsc#1020601) (CVE-2016-10156) This change makes sure to fix the permissions of the timestamp files which could have been created by an affected version of systemd. Local unprivileged users could have run arbitrary code as root if systemd previously created world writable suid root files such as permanent timer stamp files.- Import commit 3edb876e3b80437a95502aa5d31d454606ea94bd 27b544224 core: make sure to not call device_is_bound_by_mounts() when dev is null (#5033) (bsc#1018399)- Use the %{resolved} build conditional for the nss-resolve subpackage- /usr/bin/systemd-resolve was missing from the filelist- Silent warnings emitted when udev socket units are restarted during package upgrade (bsc#1018214)- Upgrade to v232, commit de62e96da6a62ac61a7dea45cc558f5fa4342032 - a4dff165d nspawn: resolv.conf might not be created initially (#4799) - b543fe907 nspawn: fix condition for mounting resolv.conf (#4622) - 1aed89e55 core: make mount units from /proc/self/mountinfo possibly bind to a device (#4515) (boo#909418 bsc#912715 bsc#945340) - bfb54ecdc coredumpctl: let gdb handle the SIGINT signal (#4901) (bsc#1012591)- Really include legacy kbd maps in kbd-model-map (bsc#1015515) Instead of fix-machines-subvol-for-rollbacks.sh...- Enable lz4 (which becomes the default) It's much faster than xz and thus should be more appropriate to compress journals and coredumps. The LZ4 logic is now officially supported and no longer considered experimental. The new frame api was released in v125.- Good by compatlibs support There's no longer need for enabling/disabling the support for the compatlibs as it's been dropped from the source code.- Drop /usr/lib/systemd/libsystemd-shared-%{version}.so from the 32bit package This shared library is not for public use, and is neither API nor ABI stable, but is likely to change with every new released update. Only systemd binaries are supposed to link against it. This also prevents from the 32bit package to conflit with the 64bit one if this lib was installed by both packages.- Upgrade to v232, commit c5c3445825981e2a5c3ed71214127d5b1b9de802: - Dropped backported commits which has been merged - Forward-port Suse specific patches - Added --disable-lto option to ./configure - Added systemd-mount - Removed in %file /usr/lib/systemd/user/*.socket: since 798c486fbcdce3346cd86 units/systemd-bus-proxyd.socket has been removed. - Removed in %file %{_sysconfdir}/systemd/bootchart.conf since commit 232c84b2d22f2d96982b3c bootchart is not part of systemd anymore. - Backward compat libs have been disabled since it's been dropped from the source code. - Added /usr/bin/systemd-socket-activate in %file - Added --without-kill-user-processes ./configure option - Bump libseccomp build require (>= 2.3.1) as described in README - Specifiy version of libmount as required in the README- libudev-devel 32bit is needed for building 32bit wine now.- specfile: conflict systemd-bash-completion and systemd-mini-bash-completion Otherwise the build system detects that systemd-bash-completion and its mini variant are conflicting at files level even though those packages can't be installed on the same system.- specfile: clean up nss-* plugins descriptions and drop nss-myhostname-config script for now. Currently /etc/nsswitch.conf is supposed to be edited by the sysadmin to enable the modules. However for some reasons only nss-myhostname is removed from the conf file when the corresponding package is uninstalled. This is inconsistent so let's remove it. Actually I'm wondering if we shouldn't make those NSS plugins part of the main package and get rid of all those sub-packages...- specfile: remove old comments and unneeded sed command- specfile: no need to create systemd-update-utmp-runlevel.service symlinks anymore The symlinks in /usr/lib/systemd/system/.target.wants/systemd-update-utmp-runlevel.service are created in Makefile.am since commit d5d8429a12c4b1. 'reboot' and 'poweroff' targets initially had the symlinks but there's not point since the latter conflicts shutdown.target whereas the 2 targets pull it in. See: https://github.com/systemd/systemd/pull/4429- specfile: remove the following warnings: [ 256s] warning: File listed twice: /usr/lib/systemd/system/dbus.target.wants [ 256s] warning: File listed twice: /usr/lib/systemd/system/default.target.wants- Own a couple of directories even if they don't belong to systemd otherwise the build system will complain. Some directories (owned by others packages) are simply used by systemd to ship some scripts or config files to customize others * optional* components. Since thos components are not build required by systemd those directories are not owned by any packages and the BS complains...- Import commit 15ea716 journal-remote: change owner of /var/log/journal/remote and create /var/lib/systemd/journal-upload (bsc#1006372)- %sysusers_create and %tmpfiles_create must be called in %post Calling %pre is broken since the respective conf files are not yet installed.- %{_libexecdir}/{tmpfiles.d,sysusers.d}/systemd-remote.conf are part of systemd-journal-remote package (only).- systemd-journal-{gatewayd,remote,upload} units are only part of "systemd-journal-remote" package. So exclude them from the main package.- Import commit a1c145e6ad6588555dca64402f9103fb1e02b1a0 7f34037 man: explain that *KeyIgnoreInhibited only apply to a subset of locks df5798b Revert "logind: really handle *KeyIgnoreInhibited options in logind.conf" (bsc#1001790 bsc#1005404) f79fee7 Revert "kbd-model-map: add more mappings offered by Yast" 3760c10 manager: tighten incoming notification message checks d6efd71 core: only warn on short reads on signal fd 6eebd91 manager: be stricter with incomining notifications, warn properly about too large ones fdf2dc3 manager: don't ever busy loop when we get a notification message we can't process- Rename kbd-model-map-extra into kbd-model-map.legacy- Remove tcpd-devel build requirement. tcpwrap support has been removed since v212, see commit 7f8aa67131cfc03ddcbd31c0420754864fc122f0- remove all dummy "aliases" to /etc/init.d (as it was already done by factory more than 1 year ago). Even if a sysvinit script is still requiring one of those dummy symlinks this should not be an issue since this is requirement is translated into a weak dependency.- specfile: - do not own /usr/share/zsh directory - do not own /etc/dbus-1 and /etc/dbus-1/system.d dirs - do not own /usr/share/dbus-1 dir- specfile: %{_prefix}/lib/systemd/system-preset was mentioned twice in %files section.- Specfile cleanup: - use curly braces with rpm macros- Specfile cleanup: - %ghost files doesn't need (anymore) to be created in %builroot - do not own /etc/X11/xorg.conf.d and /etc/X11/xinit- Specfile cleanup: no need to protect the manpages with %bootstrap condition in nss-myhostname package since the package itself is already protected.- fix nss-resolve sub package: - add a %files section - add a package description - libnss_resolve.so.2 is now part of this subpackage - add %post and %postun sections- Specfile cleanup: - reorganize some files in %files by types - some config files were missing the "noreplace" attribute- Use %config(noreplace) for %{_sysconfdir}/pam.d/systemd-user- Rework systemd-gatewayd package: - some gateway's files were still in the main package - it now includes all progs dealing with remote journals - it can be turned off (SP2 does that currently) - it's been renamed systemd-journal-remote to reflect that- Specfile cleanup: - only specify once %{_prefix}/lib/systemd/system-shutdown in %file - no need to list the content of %{_prefix}/lib/systemd/user-generators in %file - machined is not built when %bootstrap = 1- Specfile cleanup: - There's no point in listing all generators in %file explicitly. The default is to include all of them and if for some reason one must be excluded then it should be done explicitly.- Specfile cleanup: - remove explicit call to make for building man pages. This is not needed and was maybe useful when generated doc was pre-built and shipped in the tarball.- Specfile cleanup: - break overly long and unreadable line using mkdir - gather directory creations- Stop providing udevd.8 systemd-udevd has replaced udevd for some time already and usage of udevd should be avoided. Therefore don't encourage this and stop documenting it.- Import from factory: - Thu Feb 4 11:05:37 UTC 2016 - lnussel@suse.de - curl also causes building of journal-upload. That one has rather unusal certificate usage, set it's ca root to /etc/pki/systemd instead of the built-in default /etc/ssl as journal-remote and journal-upload think they can put stuff in /etc/ssl/certs then but that directory is managed by p11-kit and doesn't serve the purpose those programs think.- Package rootsymlink-generator helper. It was forgotten when switching to the git repo but re-added back. That said this thing should be removed as it's broken as soon as there's no direct link between the root fs and its backend device node (i.e. BTRFS).- Add kbd-model-map-extra file which contains the additional legacy keymaps needed by yast. This was previously directly patched in the systemd source code.- Imported e251b8d7fb5c801fdfa3a023257ba0e4d514f3b0 - Re-add back /dev/root symlink generation (although this must be deprecated and finally removed).- Migrating to the Suse Systemd git repo: Third step: - Re-enable networkd (disabled by default in SLE12)- Migrating to the Suse Systemd git repo: Second step: - Import the specfile - Import the tarball generated from the git repo - Import lastest changes for the different scripts- Migrating to the Suse Systemd git repo: First step: drop all patches and drop the tar ball. The dropped patches are: fix-support-for-boot-prefixed-initscript-bnc-746506.patch set-and-use-default-logconsole.patch ensure-ask-password-wall-starts-after-getty-tty1.patch 0001-rules-block-add-support-for-pmem-devices-3683.patch Fix-run-lock-directories-permissions-to-follow-openSUSE-po.patch 1007-physical-hotplug-cpu-and-memory.patch 1066-udev-add-compatibility-links-for-truncated-by-id-links.patch watch_resolv.conf_for_become_changed.patch 0019-make-completion-smart-to-be-able-to-redirect.patch systemd-add-user-keep.patch 0001-core-re-sync-bus-name-list-after-deserializing-durin.patch systemd-228-nspawn-make-journal-linking-non-fatal-in-try-and-auto.diff avoid-random-hangs-on-timeouts-due-lost-cwd.patch 1037-udev-exclude-cd-dvd-from-block-device.patch 0001-add-network-device-after-NFS-mount-units.patch journald-advice-about-use-of-memory.patch 1011-64-btrfs.rules-skip-btrfs-check-if-devices-are-not-r.patch 1006-udev-always-rename-network.patch handle-numlock-value-in-etc-sysconfig-keyboard.patch use-rndaddentropy-ioctl-to-load-random-seed.patch 0001-pid1-don-t-return-any-error-in-manager_dispatch_noti.patch 0001-add-hdflush-for-reboot-or-hddown-for-poweroff.patch 0001-pam_systemd_do_override_XDG_RUNTIME_DIR_of_the_original_user.patch 0001-bnc888612-logind-polkit-acpi.patch avoid-divide-by-zero-sigtrap.patch 1035-99-systemd.rules-Ignore-devices-with-SYSTEMD_READY-0.patch suse-sysv-bootd-support.diff ensure-shortname-is-set-as-hostname-bnc-820213.patch parse-crypttab-for-noauto-option.patch tty-ask-password-agent-on-console.patch 0001-pid1-process-zero-length-notification-messages-again.patch handle-root_uses_lang-value-in-etc-sysconfig-language.patch 0001-core-exclude-.slice-units-from-systemctl-isolate.patch vhangup-on-all-consoles.patch 0001-systemctl-pid1-do-not-warn-about-missing-install-inf.patch apply-ACL-for-nvidia-device-nodes.patch make-emergency.service-conflict-with-syslog.socket.patch 0001-journal-warn-when-we-fail-to-append-a-tag-to-a-journ.patch 1096-new-udev-root-symlink-generator.patch 1099-Add-default-rules-for-valve-steam-controller-to-work.patch 0001-journal-set-STATE_ARCHIVED-as-part-of-offlining-2740.patch systemd-install-compat_pkgconfig-always.patch 1012-Skip-persistent-device-link-creation-on-multipath-de.patch 0001-avoid-abort-due-timeout-at-user-service.patch insserv-generator.patch apply-ACL-for-nvidia-uvm-device-node.patch restore-var-run-and-var-lock-bind-mount-if-they-aren-t-sym.patch systemd-pam_config.patch systemd-dbus-system-bus-address.patch let-linker-find-libudev-for-libdevmapper.patch 1098-systemd-networkd-alias-network-service.patch 0001-let-systemctl-completion-ignore-at-names.patch boot-local-start.patch 1095-set-ssd-disk-to-use-deadline-scheduler.patch tomcat6-var-lock-subsys-legacy.patch let-vconsole-setup-get-properties-only-once-to-copy-them.patch plymouth-quit-and-wait-for-emergency-service.patch respect-nfs-bg-option.patch 0001-If-the-notification-message-length-is-0-ignore-the-m.patch 1062-rules-set-default-permissions-for-GenWQE-devices.patch rescue-emergency-target-conflicts.patch Correct_assert_on_unexpected_error_code.patch 1097-udevd-increase-maximum-number-of-children.patch 0001-core-fix-bus-name-synchronization-after-daemon-reloa.patch 1005-create-default-links-for-primary-cd_dvd-drive.patch allow-multiple-sulogin-to-be-started.patch systemd-230-cgroup2-use-new-fstype-for-unified-hierarchy.patch 0010-do-not-install-sulogin-unit-with-poweroff.patch 1003-udev-netlink-null-rules.patch 1002-rules-create-by-id-scsi-links-for-ATA-devices.patch 0001-nss-mymachines-do-not-allow-overlong-machine-names.patch shut-up-rpmlint-on-var-log-journal.patch systemd-tmp-safe-defaults.patch portmap-wants-rpcbind-socket.patch hostname-NULL.patch 0001-pid1-more-informative-error-message-for-ignored-noti.patch 0001-journal-fix-HMAC-calculation-when-appending-a-data-o.patch handle-disable_caplock-and-compose_table-and-kbd_rate.patch kbd-model-map.patch systemctl-set-default-target.patch 0014-journald-with-journaling-FS.patch 0001-On_s390_con3270_disable_ANSI_colour_esc.patch- Import a better fix from upstream for bsc#1001765 - Added: 0001-pid1-more-informative-error-message-for-ignored-noti.patch 0001-pid1-process-zero-length-notification-messages-again.patch - Updated (no code changes, only patch metadata) 0001-If-the-notification-message-length-is-0-ignore-the-m.patch 0001-pid1-don-t-return-any-error-in-manager_dispatch_noti.patch- Re add back "udev: don't require nsserv and fillup" Did this in the wrong project... it was a complicated day today ;)- Added 2 patches to fix bsc#1001765 0001-If-the-notification-message-length-is-0-ignore-the-m.patch 0001-pid1-don-t-return-any-error-in-manager_dispatch_noti.patch- Revert "udev: don't require nsserv and fillup" It's been judged too late for being part of SLE12 final release. Nevertheless it's part of Factory and will be reintroduced after the final release is out (ie through an update).- systemd-sysv-convert: make sure that /var/lib/systemd/sysv-convert/database is always initialized (bsc#982211) If "--save" command was used and the sysv init script wasn't enabled at all the database file wasn't created at all. This makes the subsequent call to "--apply" fail even though this should not considered as an error.- Added patches to fix journal with FSS protection enabled (bsc#1000435) 0001-journal-fix-HMAC-calculation-when-appending-a-data-o.patch 0001-journal-set-STATE_ARCHIVED-as-part-of-offlining-2740.patch 0001-journal-warn-when-we-fail-to-append-a-tag-to-a-journ.patch- udev: don't require nsserv and fillup (bsc#999841) udev has no LSB init scripts nor fillup templates anymore.- Build require python and python-lxml in order to generate systemd.directives man page (bsc#986952)- Add rules: block: add support for pmem devices (#3683) (bsc#988119) 0001-rules-block-add-support-for-pmem-devices-3683.patch- Fix is-enabled check in systemd-sysv-install (bsc#997268)- Only BuildRequire gnu-efi when building the 'real' systemd package.- Add a script to fix /var/lib/machines to make it suitable for rollbacks (bsc#992573)- reverted the systemctl split-off on request of Franck Bui.- Add sysusers to the new split "systemctl" subpackage- Split systemctl and tmpfiles into a separate package- Fix 1099-Add-default-rules-for-valve-steam-controller-to-work.patch to enable missing functionality of Steam Controller- Backport unified_cgroup_hierarchy fix for Linux >= 4.4. boo#989276 + systemd-230-cgroup2-use-new-fstype-for-unified-hierarchy.patch- drop 1060-udev-use-device-mapper-target-name-for-btrfs-device-ready.patch it breaks btrfs on multiple device-mapper devices (boo#984516). The problem it tried to fix is already fixed in rule shipped with btrfsprogs (see boo#912170).- fix warning about missing install info during preset (boo#970293) 0001-systemctl-pid1-do-not-warn-about-missing-install-inf.patch- Avoid bootstrap cycle with sg3_utils- Fix patch patch handle-numlock-value-in-etc-sysconfig-keyboard.patch that is do not close a file descriptor twice (boo#973907)- Add two patches which address logind/networkd disappearing from dbus (and busctl) even while the units and processes continue running. 0001-core-fix-bus-name-synchronization-after-daemon-reloa.patch 0001-core-re-sync-bus-name-list-after-deserializing-durin.patch- drop all compiler/linker option customizations: - -pipe option is used by default since day 0 - get rid of cflags() function which is not needed - --hash-size has no impact specially in runtime IOW, use the default options for the compiler and the linker, there's no point in making systemd different from other package in this regards.- use %make_build instead of 'make %{?_smp_mflags}'- be more strict on own lib version requirements- systemd should require udev with the exact same version- Modify patch handle-numlock-value-in-etc-sysconfig-keyboard.patch to allow that open, seek, and read of /dev/mem may fail e.g. on XEN based virtual guests (bsc#961120)- Add upstream patch 0001-core-exclude-.slice-units-from-systemctl-isolate.patch this fixes forced logouts on isolate target aka changing runlevel (boo#966535)- require curl and bzip2 to build importd - curl also causes building of journal-upload. That one has rather unusal certificate usage, set it's ca root to /etc/pki/systemd instead of the built-in default /etc/ssl as journal-remote and journal-upload think they kan put stuff in /etc/ssl/certs then but that directory is managed by p11-kit and doesn't serve the purpose those programs think. - /var/lib/systemd/random-seed is a file - own /var/lib/machines - add systemd-228-nspawn-make-journal-linking-non-fatal-in-try-and-auto.diff- systemd-sysv-install: Fix chkconfig argument for disable op- Create groups adm,input,tape in fixed order (boo#944660)- Make sure we don't use tmpfs on /tmp by default (bsc#940522)- Avoid enabling readahead services; they have been removed. - In %install, only process kbd-model-map.xkb-generated if it exists. Resolves a build failure in 13.2/42.1.- spec: update minimum kernel version to 3.11 - Update minimum util-linux version to 2.27.1- Add patch to enable working steam controller: * 1099-Add-default-rules-for-valve-steam-controller-to-work.patch- fix CVE-2015-7510: Stack overflow in nss-mymachines (boo#956712) Add 0001-nss-mymachines-do-not-allow-overlong-machine-names.patch- Update to new upstream release 228 * The various memory-related resource limit settings (such as LimitAS=) now understand the usual K, M, G, ... suffixes to the base of 1024 (IEC). Similar, the time-related settings understand the usual min, h, day, ... suffixes now. * CPUAffinity= now takes CPU index ranges in addition to just individual indexes. * A number of properties previously only settable in unit files are now also available as properties to set when creating transient units programmatically via the bus. - Remove 0001-Make-sure-the-mount-units-pulled-by-RequiresMountsFo.patch (merged upstream)- Update to 227. - Rebase systemd-pam_config.patch, handle-root_uses_lang-value-in-etc-sysconfig-language.patch, 0001-add-hdflush-for-reboot-or-hddown-for-poweroff.patch, 0001-On_s390_con3270_disable_ANSI_colour_esc.patch, 0014-journald-with-journaling-FS.patch, 0019-make-completion-smart-to-be-able-to-redirect.patch, avoid-divide-by-zero-sigtrap.patch, systemd-add-user-keep.patch, set-and-use-default-logconsole.patch, tty-ask-password-agent-on-console.patch, 0001-bnc888612-logind-polkit-acpi.patch, watch_resolv.conf_for_become_changed.patch, 1097-udevd-increase-maximum-number-of-children.patch. - Remove 0002-units-enable-waiting-for-unit-termination-in-certain.patch, 1001-re-enable-by_path-links-for-ata-devices.patch, rules-add-lid-switch-of-ARM-based-Chromebook-as-a-power-sw.patch: fixed upstream.- Modify patch handle-root_uses_lang-value-in-etc-sysconfig-language.patch to handle locale at boot time well (boo#927250) - Be able to use build service environments several times- 1096-new-udev-root-symlink-generator.patch: fix substitution in ExecStart value- enable seccomp for aarch64 (fate#318444)- Fix again UEFI for mini package- Drop one more undesirable Obsoletes/Provides. This should have been a Conflicts. (There was already a Conflicts, and since Conflicts go both ways, we won't need a second one.)- No UEFI for systemd-mini- Add 2 upstream patches to fix boo#949574 and bsc#932284 0001-Make-sure-the-mount-units-pulled-by-RequiresMountsFo.patch 0002-units-enable-waiting-for-unit-termination-in-certain.patch- Disable systemd-boot on aarch64 since it fails to build. Error while compiling src/boot/efi/util.o is: usr/include/efi/aarch64/efibind.h:2:20: fatal error: stdint.h: No such file or directory- Fix UEFI detection logic: basically we let configure.ac figure out if UEFI is supported by the current build environment. No need to clutter the spec file with a new conditionnal %has_efi. - Provide systemd-bootx64.efi (aka gummiboot)- Modify patch tty-ask-password-agent-on-console.patch to reflect the changes done for pull request 1432- Undo Obsoletes/Provides (from Aug 11), creates too big a cycle. - Provide systemd-sysv-install program/link [bnc#948353]- Fix patch tty-ask-password-agent-on-console.patch not to crash away but enable it to ask on all devices of /dev/console- Avoid "file not found /etc/udev/rules.d/70-persistent-net.rules" waring occurring in %post- Add patch let-vconsole-setup-get-properties-only-once-to-copy-them.patch to avoid broken virtual console mapping due stressed ioctl API for the virtual consoles (boo#904214)- Fix last change that is use the new name for udev packages in %pretrans.- restore usage of LUA in %pretrans.- Try to generate the systemd users and groups always in same order to avoid republish other packages (boo#944660)- cleanup specfile by removing commands that were dealing with systemd pre-generated files: we're now using systemd tarball generated directly from the git repo which doesn't contain any of these files. - there's no point in using LUA in %pretrans- Drop 0009-make-xsltproc-use-correct-ROFF-links.patch This patch was initialy added to workaround bsc#842844. But it appears that man(1) was fixed (included since 13.2 at least) to handle manual pages that consist only of a .so directive such as '.so '.- Change use-rndaddentropy-ioctl-to-load-random-seed.patch to make it work on big endian- Use Obsolete/Provides strategy from windows:mingw:mingw64/mingw64-cross-gcc to do the bootstrap cycle and kick out -mini afterwards.- Update to new upstream release 224 * systemd-networkd gained a number of new configuration options for DHCP, tunnels and bridges * systemd-efi-boot-generator functionality was merged into systemd-gpt-auto-generator.- /usr/share/systemd/kbd-model-map: added entries for xkeyboard-config converted keymaps; mappings, which already exist in original systemd mapping table are being ignored though, i.e. not overwritten; needs kbd in buildrequires (FATE#318426)- hostname-NULL.patch: Work around a crash on XEN hosts in OBS. /etc/hostname is not present and systemd then does strchr(hostname,soemthing) with hostname NULL.- Add Correct_assert_on_unexpected_error_code.patch to work around a problem of an assert on ENODEV for closing fd on an input event device (boo#939571)- Remove udev-generate-rules.sh, apparently not used by anything in the systemd nor udev-persistent-ifnames package.- Systemd v222, bugfix release. - Drop upstream patches 0006-pam_systemd-Properly-check-kdbus-availability.patch 0023-core-fix-reversed-dependency-check-in-unit_check_unn.patch 0031-install-fix-bad-memory-access.patch 1032-ata_id-unbotch-format-specifier.patch - Drop SUSE patch 1013-no-runtime-PM-for-IBM-consoles.patch udev does no longer enable USB HID power management at all. - The udev accelerometer helper was removed, obsoleted by iio-sensor-proxy package. - networkd gained a new configuration option IPv6PrivacyExtensions. - udev does not longer support the WAIT_FOR_SYSFS= key in udev rules. There are no known issues with current sysfs, and udev does not need or should be used to work around such bugs.- Avoid restarting logind [bnc#934901] - Do not suppress errors in any case, even if they are ignored- Fix devel package requires (both mini and real required real libsystemd0)- Rework patch tty-ask-password-agent-on-console.patch to fit the requisition of https://bugs.freedesktop.org/show_bug.cgi?id=82004- Rework "-mini" package logic to not conflict with itself and then add libsystemd0 to mini.- remove SysVStartPriority= from after-local.service, unsupported since v218. Note that this option was only parsed and that's it. the logic to give "start priority" was never implemented.- change the default fallback ntp servers to the opensuse pool.ntp.org vendor zone. - We still need to run systemd-sysctl.service after local-fs.target otherwise it works only when /boot is in the root filesystem but not when it is a separate partition.- Obsolete pm-utils and suspend (boo#925873). - Remove pm-utils support (remove Forward-suspend-hibernate-calls-to-pm-utils.patch).- remove patch sysctl-handle-boot-sysctl.conf-kernel_release.patch from the filelist.- libpcre, glib2 and libusb are not used by systemd, remove from buildrequires.- 1032-ata_id-unbotch-format-specifier.patch: fix udev ata_id output. - 0023-core-fix-reversed-dependency-check-in-unit_check_unn.patch fix StopWhenUnneeded=true in combination with a Requisite= dependency. - 0031-install-fix-bad-memory-access.patch: Fix Bad memory access - 0006-pam_systemd-Properly-check-kdbus-availability.patch: if kdbus is enabled (i.e boot with kdbus=1) DBUS_SESSION_BUS_ADDRESS must not be exported. - spec: add a min_kernel_version macro to ensure the package conflicts with kernel versions in which systemd cannot run.- sysctl-handle-boot-sysctl.conf-kernel_release.patch dropped, replaced by a tmpfiles.d snippet "current-kernel-sysctl.conf" (feature implemented in v220 just for our usecase)- fix build when resolved is enabled - remove fsck -l test in spec file, systemd requires util-linux 2.26 or later where this feature is already available.- Fix bootstrap build by guarding filelists (man pages don't get built in bootstrap mode) - Drop commented sections from baselibs.conf, allows format_spec_file to have a successful run- Install 50-coredump.conf as coredumpctl is now installed by default and does not use journal anymore as default storage- Update to new upstream release 221 * From 220: * libgudev was moved into a package of its own * Runlevels 2, 3 and 4 are no longer distinct, they all map to multi-user.target. * The EFI System Partition mounted to /boot will be unmounted 2 minutes after boot. * systemd does not support direct live-upgrades (via `systemctl daemon-reexec`) from versions older than v44 anymore. * systemd-nspawn may now be called as part of a shell pipeline. * systemd-shutdownd has been removed. This service was previously responsible for implementing scheduled shutdowns as exposed in /usr/bin/shutdown's time parameter. This functionality has now been moved into systemd-logind and is accessible via a bus interface. * udev will no longer call blkid and create symlinks for all block devices, but merely those from a whitelist (cf. 60-persistent-storage.rules). * /usr/lib/os-release gained a new optional field VARIANT= * Details at http://lists.freedesktop.org/archives/systemd-devel/2015-May/032147.html * From 221: * New sd-bus and sd-event APIs in libsystemd * If there is both a systemd unit and a SysV init script for the same service name, and `systemctl enable` or other operation is run, both will now be enabled (or execute the related operation on both), not just the unit. - Split libsystemd0 to support systemd-less nspawn containers - Redo manpage file lists without %exclude, tends to hide unpackaged files. - hwdb belongs to udev - Resolve memory leak and add missing _cleanup_free_ to 0001-On_s390_con3270_disable_ANSI_colour_esc.patch - Remove systemd-powerd-initctl-support.patch (no longer builds because shutdownd is gone) - Remove quilt-patches/0001-core-rework-device-state-logic.patch, 0001-Let-some-boolean-survive-a-daemon-reload.patch (merged upstream), 0001-Let-some-boolean-survive-a-daemon-reload.patch (obsolete)- Remove libudev0 from baselibs.conf- Drop 1055-let-9719859c07aa13539ed2cd4b31972cd30f678543-apply.patch as now upstream code - Add 0001-Let-some-boolean-survive-a-daemon-reload.patch to fix bsc#933365 and boo#934077- Add 1098-systemd-networkd-alias-network-service.patch to alias network.service the same way NetworkManager and wicked does. This is needed by yast2 and other parts of the system. boo#933092- Modify patch 1021-udev-re-add-persistent-net-rules.patch to use the new return values of proc_cmdline() in enable_name_policy() this should fix boo#931165- Drop 1021-udev-re-add-persistent-net-rules.patch, 1036-rules-disable-usage-of-dev_id-in-persistent-rules.patch, 1040-re-enable-dev_id-conditionally-in-persistent-rules.patch, 1046-fix-duplicated-rules-with-layer3-interfaces.patch, 1050-only-rename-SRIOV-VF-devices-when-name-starts-with-eth.patch, 1051-check-if-NAME-has-a-value.patch, 1053-better-checks-in-write_net_rules.patch, 1088-drop-renaming-of-virtual-interfaces-in-guest.patch. 1021 originally broke parsing of net.ifnames=0 [bnc#931165], and given that neither the kernel command line needs to be touched nor the source be patched to reach the unpredictable naming setup for SLE, all these parts are moved to a separate package.- Add upstream patch 0001-core-don-t-change-removed-devices-to-state-tentative.patch to fix the fix of the last backport (bsc#921898)- Reenable networkd which was silently disabled on Feb 18- Add 0001-core-rework-device-state-logic.patch to fix spurious automated umount after mount.- mark more subpackages as !bootstrap for systemd-mini usage.- spec : remove --with-firmware-path, firmware loader was removed in v217 - spec: remove --disable-multi-seat-x, gone.(fixed in xorg) - spec: Do not enable systemd-readahead-collect.service and systemd-readahead-replay.service as these do not exist anymore. - spec: drop timedate-add-support-for-openSUSE-version-of-etc-sysconfig.patch Yast was fixed to write all timezone changes exactly how timedated expects things to be done. - spec: remove handle-etc-HOSTNAME.patch, since late 2014 the netcfg package handles the migration from /etc/HOSTNAME to /etc/hostname and owns both files. -spec: remove boot.udev and systemd-journald.init as they currently serve no purpose. - suse-sysv-bootd-support.diff: Remove HAVE_SYSVINIT conditions, we are in sysvcompat-only codepath, also remove the code targetting other distributions, never compiled as the TARGET_$DISTRO macros are never defined. - systemd-powerd-initctl-support.patch guard with HAVE_SYSV_COMPAT - set-and-use-default-logconsole.patch: fix HAVE_SYSV_COMPAT guards - insserv-generator.patch: Only build when sysvcompat is enabled - vhangup-on-all-consoles.patch add a comment indicating this is a workaround for a kernel bug. - spec: Add option to allow disabling sysvinit compat at build time. - spec: Add option to enable resolved at build time. - spec: Remove all %ifs for !factory products, current systemd releases can neither be built nor installed in older products without upgrading several components of the base system. (removed: 1008-add-msft-compability-rules.patch was only for =< 13.1) - spec: remove all dummy "aliases" to /etc/init.d, that made sense only when those init scripts still existed. (dummy localfs.service source: gone) - systemd-sleep-grub: moved to the grub2 package where it belongs as a suspend/resume hook (SR#286533) (drops prepare-suspend-to-disk.patch) - remove LFS_CFLAGS from CFLAGS, never needed in systemd as it force feds config.h everywhere in the preprocessor cmdline.- Update to new upstream release 219 * systemd units can now be "unsupported" (like, for example, .device in a containers), similar to the "skipped" state in SUSE's prior sysvinit scripts. * tmpfiles gained the 'v' type for creating btrfs subvolumes. * tmpfiles gained the 'a' type for setting ACLs. * systemd-nspawn gained new switches: --ephemeral, --template * The /var/lib/containers location is deprecated and replaced by /var/lib/machines. * machinectl gained the copy-from and copy-to commands. * machinectl now knows a "bind" command (for use with nspawn) * new "systemd-importd" daemon to download container images and run them as nspawn containers. * networkd collects LLDP network announcements, if available, and so shown in networkctl. * The fallback terminal type was changed from "vt102" to "vt220", allowing PgUp/PgDn keys to work. * Pressing Ctrl-Alt-Del 7x in 2 seconds forces a umount+reboot now, useful should the regular shutdown hang. * Removing storage will cause systemd to unmount the associated mountpoints so that they don't linger around.- Add suse-sysv-bootd-support.diff (reinstate old Revert-service-drop-support-for-SysV-scripts-for-the-early.patch)- Update to systemd v218-1050-g38ab096 - Remove patches use-usr-sbin-sulogin-for-emergency-service.patch (upstream fixed it) - Reinstate and improve (remove huge indents from) tty-ask-password-agent-on-console.patch, 0014-journald-with-journaling-FS.patch, rootsymlink_generator.- disable systemd-resolved for now as it interacts not well with our methods and security has concerns regarding spoofing. bsc#917781- Add patch kbd-model-map.patch to add missed keyboard layouts which are offered by YaST2 (bsc#910643 and boo#897803)- Update to new upstream release 218 * New utilities: systemd-timesyncd (SNTP client), systemd-resolved, systemd-networkd, networkctl, systemd-sysusers * machinectl gained a "poweroff" command for clean container shutdown * The udev hwdb now contains DPI information for mice. * Userspace firmware loading support has been removed and the minimum supported kernel version is thus bumped to 3.7. - Remove patches: G=gone locally, is upstream; D=dropped: no longer needed; N=no longer applies to source nor is it deemed needed; K=killed: no longer applicable and too complex to resolve: - --- G 0002-rfkill-rework-how-we-generate-file-names-from-rfkill.patch G avoid-assertion-if-invalid-address-familily-is-passed-to-g.patch K service-flags-sysv-service-with-detected-pid-as-RemainAfte.patch K remain_after_exit-initscript-heuristic-and-add-new-LSB-hea.patch K handle-SYSTEMCTL_OPTIONS-environment-variable.patch K 0018-Make-LSB-Skripts-know-about-Required-and-Should.patch K log-target-null-instead-kmsg.patch K tty-ask-password-agent-on-console.patch K 513-nspawn-veth.patch K 1087-infinit-timeout-for-kmod-loaded-modules.patch D module-load-handle-SUSE-etc-sysconfig-kernel-module-list.patch D avoid-leaking-socket-descriptors.patch D 0001-make-fortify-happy-with-ppoll.patch N fix-owner-of-var-log-btmp.patch N disable-nss-myhostname-warning-bnc-783841.patch N Revert-service-drop-support-for-SysV-scripts-for-the-early.patch N 0001-make-209-working-on-older-dist.patch N 0001-Don-t-snprintf-a-potentially-NULL-pointer.patch N tmpfiles-do-not-clean-for-mandb-index-files.patch G 0001-sd-bus-don-t-look-for-a-64bit-value-when-we-only-hav.patch G avoid-assertion-if-invalid-address-familily-is-passed-to-g.patc G optionally-warn-if-nss-myhostname-is-called.patch G 0001-units-systemd-sysctl.service.in-run-after-load-modul.patch G 0004-getty-generator-properly-escape-instance-names.patch G rules-add-lid-switch-of-ARM-based-Chromebook-as-a-power-sw.patch G 0008-Reset-signal-mask-on-re-exec-to-init.patch G 0001-login-fix-pos-array-allocation.patch G 0002-login-set-pos-slot-to-fallback-on-pos-eviction.patch G 0003-login-Allow-calling-org.freedesktop.login1.Seat.Swit.patch G 0004-fix-typo-in-iDRAC-network-interface-name-irdac-idrac.patch G 0005-Replace-var-run-with-run-in-remaining-places.patch G 0006-Revert-back-to-var-run-at-a-couple-of-problems.patch G 0007-README-document-that-var-run-must-be-a-symlink-run.patch G 0008-Use-var-run-dbus-system_bus_socket-for-the-D-Bus-soc.patch G 0009-mount-don-t-send-out-PropertiesChanged-message-if-ac.patch G 0010-mount-don-t-fire-PropertiesChanged-signals-for-mount.patch G 0011-logs-show-fix-corrupt-output-with-empty-messages.patch G 0012-journalctl-refuse-extra-arguments-with-verify-and-si.patch G 0014-nspawn-fix-detection-of-missing-proc-self-loginuid.patch G 0001-Fix-systemd-stdio-bridge-symlink.patch G 0002-execute-free-directory-path-if-we-fail-to-remove-it-.patch G 0003-Do-not-print-invalid-UTF-8-in-error-messages.patch G 0004-man-document-missing-options-of-systemd-run.patch G 0005-systemd-run-add-some-extra-safety-checks.patch G 0006-journal-assume-that-next-entry-is-after-previous-ent.patch G 0007-journal-forget-file-after-encountering-an-error.patch G 0008-core-correctly-unregister-PIDs-from-PID-hashtables.patch G 0009-logind-fix-reference-to-systemd-user-sessions.servic.patch G 0010-man-update-link-to-LSB.patch G 0011-man-systemd-bootchart-fix-spacing-in-command.patch G 0012-man-add-missing-comma.patch G 0013-units-Do-not-unescape-instance-name-in-systemd-backl.patch G 0001-core-busname-add-lookup-string-for-BUSNAME_FAILURE_S.patch G 0002-manager-flush-memory-stream-before-using-the-buffer.patch G 0003-busname-don-t-drop-service-from-the-result-string.patch G 0004-fix-off-by-one-error-in-array-index-assertion.patch G 0005-logind-fix-policykit-checks.patch G 0006-rules-mark-loop-device-as-SYSTEMD_READY-0-if-no-file.patch G 0008-man-multiple-sleep-modes-are-to-be-separated-by-whit.patch G 0001-gpt-auto-generator-don-t-return-OOM-on-parentless-de.patch G 0002-bus-fix-memory-leak-when-kdbus-is-not-enabled.patch G 0006-Do-not-return-1-EINVAL-on-allocation-error.patch G 0007-networkd-fix-typo.patch G 0008-sd-bus-don-t-access-invalid-memory-if-a-signal-match.patch G 0009-sd-bus-don-t-choke-if-somebody-sends-us-a-message-wi.patch G 0012-journald-remove-stray-reset-of-error-return-value.patch G 0013-core-libsystemd-systemd-timedate-udev-spelling-fixes.patch G 0001-cgroup-it-s-not-OK-to-invoke-alloca-in-loops.patch G 0002-machined-fix-Kill-bus-call-on-machine-objects-when-w.patch G 0003-sd-bus-don-t-use-assert_return-to-check-for-disconne.patch G 0004-core-don-t-try-to-relabel-mounts-before-we-loaded-th.patch G 0005-sd-daemon-fix-incorrect-variable-access.patch G 0006-sd-event-initialization-perturbation-value-right-bef.patch G 0007-sd-event-don-t-accidentally-turn-of-watchdog-timer-e.patch G 0008-systemctl-kill-mode-is-long-long-gone-don-t-mention-.patch G 0009-ask-password-when-the-user-types-a-overly-long-passw.patch G 0001-journal-fix-export-of-messages-containing-newlines.patch G 0002-systemctl-update-NAME-to-PATTERN-in-help.patch G 0003-tty-ask-password-agent-return-negative-errno.patch G 0004-systemd-python-use-.hex-instead-of-.get_hex.patch G 0005-systemd-python-fix-failing-assert.patch G 0007-dbus-suppress-duplicate-and-misleading-messages.patch G 0001-reduce-the-amount-of-messages-logged-to-dev-kmsg-whe.patch G 0001-bash-completion-fix-__get_startable_units.patch G 0002-sysctl-replaces-some-slashes-with-dots.patch G 0003-delta-do-not-use-unicode-chars-in-C-locale.patch G 0004-implement-a-union-to-pad-out-file_handle.patch G shut-up-annoying-assertion-monotonic-clock-message.patch G 0001-sd-rtnl-message-append-fix-uninitialized-memory.patch G 0001-tmpfiles-fix-permissions-on-new-journal-files.patch G 0001-errno-make-sure-to-handle-the-3-errnos-that-are-alia.patch G 0003-analyze-fix-plot-with-bad-y-size.patch G 0004-job-add-waiting-jobs-to-run-queue-in-unit_coldplug.patch G 0005-job-always-add-waiting-jobs-to-run-queue-during-cold.patch G 0001-backlight-Avoid-restoring-brightness-to-an-unreadabl.patch G 0002-backlight-do-nothing-if-max_brightness-is-0.patch G 0003-backlight-unify-error-messages.patch G 0004-backlight-warn-if-kernel-exposes-backlight-device-wi.patch G 0005-backlight-handle-saved-brightness-exceeding-max-brig.patch G 0001-replace-more-dup-by-F_DUPFD_CLOEXEC.patch G 0002-pam_systemd-use-F_DUPFD_CLOEXEC-when-dupping-session.patch G 0001-core-close-socket-fds-asynchronously.patch G 0002-logind-bring-polkit-policy-for-hibernate-in-line-wit.patch G 0003-core-make-sure-to-serialize-jobs-for-all-units.patch G 0001-logind-ignore-lid-switch-if-more-than-1-display-is-c.patch G 0002-logind-fix-printf-format.patch G 0003-logind-ignore-lid-switch-events-for-30s-after-each-s.patch G 0004-logind-Do-not-fail-display-count-if-a-device-has-no-.patch G 0005-logind-move-lid-switch-handling-from-logind-main-to-.patch G 0006-man-clarify-that-the-ExecReload-command-should-be-sy.patch G 0007-man-readahead-fix-cmdline-switch-inconsistency-betwe.patch G 0008-man-update-journald-rate-limit-defaults.patch G 0009-nspawn-properly-format-container_uuid-in-UUID-format.patch G 0010-logind-allow-suspending-if-there-are-no-displays.patch G 0001-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0002-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0003-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0004-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0005-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0001-conf-parser-silently-ignore-sections-starting-with-X.patch G 0002-man-note-that-entire-sections-can-now-be-ignored.patch G 0004-machined-make-sure-GetMachineAddresses-is-available-.patch G 0005-core-Filter-by-state-behind-the-D-Bus-API-not-in-the.patch G 0006-login-add-mir-to-the-list-of-session-types.patch G 0007-logind-fix-Display-property-of-user-objects.patch G 0001-hwdb-update.patch G 0002-hwdb-update.patch G 0003-hwdb-PCI-include-primary-model-string-in-subsystem-m.patch G 0004-hwdb-update.patch G 0005-hwdb-update.patch G 0001-journal-cleanup-up-error-handling-in-update_catalog.patch G 0002-journal-properly-detect-language-specified-in-line.patch G 0003-man-mention-XDG_CONFIG_HOME-in-systemd.unit.patch G 0001-keymap-Add-Lenovo-Enhanced-USB-Keyboard.patch G 0002-keymap-Asus-EeePC-touchpad-toggle-key.patch G 0001-nspawn-allow-to-bind-mount-journal-on-top-of-a-non-e.patch G 0002-nspawn-restore-journal-directory-is-empty-check.patch G 0003-core-never-consider-failure-when-reading-drop-ins-fa.patch G 0004-socket-properly-handle-if-our-service-vanished-durin.patch G 0001-Do-not-unescape-unit-names-in-Install-section.patch G 0002-analyze-run-use-bus_open_transport_systemd-instead-o.patch G 0001-virt-rework-container-detection-logic.patch G 0002-fsck-include-device-name-in-the-message-about-missin.patch G 0003-units-use-KillMode-mixed-for-systemd-nspawn-.service.patch G 0004-util-ignore_file-should-not-allow-files-ending-with.patch G 0006-tty-ask-password-agent-Do-tell-what-directory-we-fai.patch G 0007-keyboard-add-Plantronics-.Audio-mute-button.patch G 0001-build-sys-use-glibc-s-xattr-support-instead-of-requi.patch G 0001-hwdb-fix-case-sensitive-match.patch G 0001-sd-event-restore-correct-timeout-behaviour.patch G 0002-bus-make-use-of-sd_bus_try_close-in-exit-on-idle-ser.patch G 0001-umount-modernizations.patch G 0002-namespace-when-setting-up-an-inaccessible-mount-poin.patch G 0003-core-allow-transient-mount-units.patch G 0004-systemd-detect-virt-only-discover-Xen-domU.patch G 0005-backlight-Do-not-clamp-brightness-for-LEDs.patch G 0006-log-honour-the-kernel-s-quiet-cmdline-argument.patch G 0001-core-fix-invalid-free-in-killall.patch G 0003-install-fix-invalid-free-in-unit_file_mask.patch G 0001-systemd-detect-virt-detect-s390-virtualization.patch G 0001-core-sysvcompat-network-should-be-equivalent-to-netw.patch G 0002-units-add-missing-caps-so-that-GetAddresses-can-work.patch G 0003-units-order-systemd-tmpfiles-clean.service-after-tim.patch G 0005-po-add-Greek-translation.patch G 0006-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0007-po-add-German-translation.patch G 0009-core-clean-up-signal-reset-logic-when-reexec.patch G 0010-util-treat-fuse.sshfs-as-a-network-filesystem.patch G 0011-build-sys-add-pthread-flag-for-libsystemd-shared.patch G 0012-core-transaction-avoid-misleading-error-message-when.patch G 0001-vconsole-also-copy-character-maps-not-just-fonts-fro.patch G 0002-core-make-sure-Environment-fields-passed-in-for-tran.patch G 0003-core-You-can-not-put-the-cached-result-of-use_smack-.patch G 0004-cryptsetup-don-t-add-unit-dependency-on-dev-null-dev.patch G 0005-man-fix-path-in-crypttab-5.patch G 0001-units-order-network-online.target-after-network.targ.patch G 0001-core-use-correct-format-string-for-UIDs.patch G 0002-core-transaction-fix-cycle-break-attempts-outside-tr.patch G 0003-fsck-consider-a-fsck-implementation-linked-to-bin-tr.patch G 0001-main-uid_to_name-might-fail-due-to-OOM-protect-again.patch G 0002-journald-make-MaxFileSec-really-default-to-1month.patch G 0003-units-remove-RefuseManualStart-from-units-which-are-.patch G 0004-util-refuse-considering-UID-0xFFFF-and-0xFFFFFFFF-va.patch G 0005-nspawn-block-open_by_handle_at-and-others-via-seccom.patch G 0006-tmpfiles-don-t-do-automatic-cleanup-in-XDG_RUNTIME_D.patch G 0007-units-skip-mounting-tmp-if-it-is-a-symlink.patch G 0001-parse_uid-return-ENXIO-for-1-uids.patch G 0002-util-when-unescaping-strings-don-t-allow-smuggling-i.patch G 0003-localed-consider-an-unset-model-as-a-wildcard.patch G 0004-sd-bus-when-an-event-loop-terminates-explicitly-clos.patch G 0005-bus-close-a-bus-that-failed-to-connect.patch G 0006-hwdb-update.patch G 0007-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0001-architecture-Add-tilegx.patch G 0002-architecture-Add-cris.patch G 0003-arch-add-crisv32-to-uname-check.patch G 0004-architecture-remove-cris-from-uname-list.patch G 0003-namespace-make-sure-tmp-var-tmp-and-dev-are-writable.patch G 0002-namespace-fix-uninitialized-memory-access.patch G 0001-machine-don-t-return-uninitialized-variable.patch G 0002-vconsole-setup-run-setfont-before-loadkeys.patch G 0001-util-consider-0x7F-a-control-chracter-which-it-is-DE.patch G 0002-util-don-t-consider-tabs-special-in-string_has_cc-an.patch G 0003-architecture-add-string-table-entries-for-mips-le-ar.patch G 0004-core-Added-support-for-ERRNO-NOTIFY_SOCKET-message-p.patch G 0005-service-don-t-accept-negative-ERRNO-notification-mes.patch G 0006-systemctl-show-StatusErrno-value-in-systemctl-status.patch G 0007-service-flush-status-text-and-errno-values-each-time.patch G 0001-journal-compress-return-early-in-uncompress_startswi.patch G 0002-journal-compress-improve-xz-compression-performance.patch G 0001-logind-allow-switching-to-unused-VTs-via-SwitchTo.patch G 0002-hostnamed-add-a-new-chassis-type-for-watches.patch G 0001-units-make-ExecStopPost-action-part-of-ExecStart.patch G 0001-event-pull-in-sd-event.h-from-event-util.h.patch G 0002-util-fix-has-cc-check-and-add-test.patch G 0003-sd-event-always-call-epoll_ctl-on-mask-updates-if-ed.patch G 0004-fileio-quote-more-shell-characters-in-envfiles.patch G 0001-Clear-up-confusion-wrt.-ENTRY_SIZE_MAX-and-DATA_SIZE.patch G 0002-units-serial-getty-.service-use-the-default-RestartS.patch G 0001-po-add-Ukrainian-translation.patch G 0002-man-document-yearly-and-annually-in-systemd.time-7.patch G 0003-core-nicer-message-when-inotify-watches-are-exhauste.patch G 0001-detect-virt-Fix-Xen-domU-discovery.patch G 0002-Be-more-verbose-when-bind-or-listen-fails.patch G 0003-Add-quotes-to-warning-message.patch G 0004-systemd-return-the-first-error-from-manager_startup.patch G 0001-bash-completion-p-option-for-journalctl.patch G 0002-journalctl-man-allow-only-between-terms.patch G 0003-systemd-use-pager-for-test-and-help.patch G 0001-bus-proxyd-fix-incorrect-comparison.patch G 0002-shell-completion-prevent-mangling-unit-names.patch G 0003-Always-check-asprintf-return-code.patch G 0004-bash-completion-use-list-unit-files-to-get-all-units.patch G 0005-core-only-set-the-kernel-s-timezone-when-the-RTC-run.patch G 0006-parse_boolean-require-exact-matches.patch G 0007-drop_duplicates-copy-full-BindMount-struct.patch G 0008-shell-completion-prevent-mangling-unit-names-bash.patch G 0009-journald-always-add-syslog-facility-for-messages-com.patch G 0001-sysv-order-initscripts-which-provide-network-before-.patch G 0002-keymap-Add-microphone-mute-keymap-for-Dell-Latitude.patch G 0003-keymap-Annotate-all-micmute-workarounds.patch G 0007-hwdb-update.patch G 0001-nspawn-fix-truncation-of-machine-names-in-interface-.patch G 0002-switch-root-umount-the-old-root-correctly.patch G 0003-bootchart-it-s-not-OK-to-return-1-from-a-main-progra.patch G 0004-login-set_controller-should-fail-if-prepare_vt-fails.patch G 0005-sd-resolve-fix-allocation-if-query-ids-never-reuse-t.patch G 0006-login-share-VT-signal-handler-between-sessions.patch G 0007-journald-also-increase-the-SendBuffer-of-dev-log-to-.patch G 0008-mount-setup-fix-counting-of-early-mounts-without-SMA.patch G 0009-journald-Fix-off-by-one-error-in-Missed-X-kernel-mes.patch G 0010-machine_kill-Don-t-kill-the-unit-when-killing-the-le.patch G 0011-units-fix-BindsTo-logic-when-applied-relative-to-ser.patch G 0012-util-try-to-be-a-bit-more-NFS-compatible-when-checki.patch G 0001-hwdb-keymaps-for-Samsung-900X3E-900X3F.patch G 0002-Add-hwdb-entry-for-Samsung-Series-7-Ultra.patch G 0003-keymap-Fix-HP-Pavillon-DV7.patch G 0004-hwdb-update-format-description-and-document-reloadin.patch G 0008-hwdb-update.patch G 0001-systemctl-Correct-error-message-printed-when-bus_pro.patch G 0002-units-order-systemd-fsck-.service-after-local-fs-pre.patch G 0003-keymap-Adjust-for-more-Samsung-900X4-series.patch G 0001-login-fix-memory-leak-on-DropController.patch G 0002-util-fix-minimal-race-where-we-might-miss-SIGTERMs-w.patch G 0003-sd-journal-properly-convert-object-size-on-big-endia.patch G 0004-sd-journal-verify-that-object-start-with-the-field-n.patch G 0001-nspawn-fix-network-interface.patch G 0001-completion-filter-templates-from-restartable-units.patch G 0002-systemd-fix-error-message.patch G 0003-Quote-unit-names-in-suggested-systemctl-commandlines.patch G 0004-config-parser-fix-mem-leak.patch G 0005-login-fix-mem-leak.patch G 0001-login-simplify-controller-handling.patch G 0001-initrd-parse-etc.service-ignore-return-code-of-daemo.patch G 0008-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0009-hwdb-update.patch G 0001-systemctl-allow-to-change-the-default-target-without.patch G 0001-activate-fix-fd-leak-in-do_accept.patch G 0002-analyze-avoid-a-null-dereference.patch G 0003-analyze-fix-mem-leak.patch G 0004-backlight-Avoid-error-when-state-restore-is-disabled.patch G 0005-bus-avoid-using-m-kdbus-after-freeing-it.patch G 0006-bus-unref-buscreds-on-failure.patch G 0007-core-fix-a-potential-mem-leak.patch G 0008-core-smack-setup-Actually-allow-for-succesfully-load.patch G 0009-journal-do-not-leak-mmaps-on-OOM.patch G 0010-manager-use-correct-cleanup-function.patch G 0001-core-fix-resource-leak-in-manager_environment_add.patch G 0002-util-remove-a-unnecessary-check.patch G 0003-udev-event-explicitly-don-t-read-from-invalid-fd.patch G 0004-shared-conf-parser.patch G 0005-logind-fix-typo.patch G 0006-systemctl-fix-resource-leak-CID-1237747.patch G 0007-libudev-monitor-warn-if-we-fail-to-request-SO_PASSCR.patch G 0008-shared-conf-parser-don-t-leak-memory-on-error-in-DEF.patch G 0009-bus-fix-bus_print_property-to-use-int-for-booleans.patch G 0001-journal-Do-not-count-on-the-compiler-initializing-fo.patch G 0002-include-fcntl.h-rather-than-sys-fcntl.h.patch G 0003-mount-order-options-before-other-arguments-to-mount.patch G 0004-shared-wtmp-utmp-don-t-clear-store_wtmp-in-utmp_put_.patch G 0005-shared-label.h-add-missing-stdio.h-include.patch G 0006-shared-sparse-endian.h-add-missing-byteswap.h-includ.patch G 0001-login-pause-devices-before-acknowledging-VT-switches.patch G 0001-nspawn-don-t-try-to-create-veth-link-with-too-long-i.patch G 0001-socket-introduce-SELinuxContextFromNet-option.patch G 0002-util-avoid-non-portable-__WORDSIZE.patch G 0001-Fix-warning-about-unused-variable-with-SELINUX.patch G 0002-bus-remove-unused-check.patch G 0001-systemd-tmpfiles-Fix-IGNORE_DIRECTORY_PATH-age-handl.patch G 0001-logind-add-support-for-Triton2-Power-Button.patch G 0002-logind-add-support-for-TPS65217-Power-Button.patch G 0001-shutdownd-clean-up-initialization-of-struct.patch G 0003-bootchart-parse-userinput-with-safe_atoi.patch G 0004-bootchart-check-return-of-strftime.patch G 0005-bootchart-Do-not-try-to-access-data-for-non-existing.patch G 0001-journalctl-do-not-output-reboot-markers-when-running.patch G 0002-udev-hwdb-New-Entry-for-Dell-XPS12-9Q33-keyboard.patch G 0001-core-swap-only-make-configured-units-part-of-swap.ta.patch G 0009-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0001-virt-detect-that-we-are-running-inside-the-docker-co.patch G 0002-bootchart-use-n-a-if-PRETTY_NAME-is-not-found.patch G 0003-fileio-label-return-error-when-writing-fails.patch G 0001-sd-event-don-t-require-a-signal-event-source-to-be-e.patch G 0004-sd-event-check-the-value-of-received-signal.patch G 0005-sd-id128-do-stricter-checking-of-random-boot-id.patch G 0001-keymap-Fix-touchpad-toggle-on-Toshiba-Satellite-P75-.patch G 0001-units-introduce-network-pre.target-as-place-to-hook-.patch G 0002-keymap-Fix-touchpad-toggle-key-on-Asus-laptops.patch G 0003-sd-bus-check-return-value-of-vasprintf.patch G 0004-core-map-the-rescue-argument-to-rescue.target.patch G 0005-util-avoid-double-close-of-fd.patch G 0001-systemctl-when-mangle-unit-names-for-the-isolate-suf.patch G 0001-tmpfiles-compare-return-against-correct-errno.patch G 0001-shell-completion-fix-completion-of-inactive-units.patch G 0002-shell-completion-propose-templates-for-disable-re-en.patch G 0003-man-we-don-t-have-Wanted-dependency.patch G 0004-selinux-fix-potential-double-free-crash-in-child-pro.patch G 0001-systemd-continue-switch-root-even-if-umount-fails.patch G 0002-systemd-try-harder-to-bind-to-notify-socket.patch G 0001-strv-add-an-additional-overflow-check-when-enlarging.patch G 0002-hwdb-Add-mapping-for-special-keys-on-compaq-ku-0133-.patch G 0003-journald-add-CAP_MAC_OVERRIDE-in-journald-for-SMACK-.patch G 0004-journal-do-server_vacuum-for-sigusr1.patch G 0005-cryptsetup-fix-an-OOM-check.patch G 0002-shutdown-pass-own-argv-to-run-initramfs-shutdown.patch G 0001-manager-Linux-on-hppa-has-fewer-rtsigs-hence-avoid-u.patch G 0002-time-also-support-infinity-syntax-in-parse_nsec.patch G 0003-time-earlier-exit-from-format_timestamp_relative-on-.patch G 0004-sd-bus-if-we-don-t-manage-to-properly-allocate-the-e.patch G 0005-journalctl-correct-help-text-for-until.patch G 0006-calendarspec-fix-typo-in-annually.patch G 0007-systemctl-do-not-ignore-errors-in-symlink-removal.patch G 0008-util-introduce-sethostname_idempotent.patch G 0009-util-fix-copy-paste-error-and-actually-set-the-new-h.patch G 0010-shutdown-do-final-unmounting-only-if-not-running-ins.patch G 0011-selinux-make-sure-we-do-not-try-to-print-missing-fie.patch G 0012-manager-do-not-print-anything-while-passwords-are-be.patch G 0001-sd-bus-properly-handle-removals-of-non-existing-matc.patch G 0002-keymap-Ignore-brightness-keys-on-Dell-Inspiron-1520-.patch G 0001-core-don-t-allow-enabling-if-unit-is-masked.patch G 0002-snapshot-return-error-when-snapshot-exists.patch G 0003-shared-install-avoid-prematurely-rejecting-missing-u.patch G 0004-Raise-level-of-Found-dependency.-lines.patch G 0005-units-order-sd-journal-flush-after-sd-remount-fs.patch G 0006-journald-fix-minor-memory-leak.patch G 0007-journald-also-check-journal-file-size-to-deduce-if-i.patch G 0008-journald-fix-memory-leak-on-error-path.patch G 0009-units-make-systemd-journald.service-Type-notify.patch G 0010-hwdb-Update-database-of-Bluetooth-company-identifier.patch G 0001-login-rerun-vconsole-setup-when-switching-from-vgaco.patch G 0002-shutdown-fix-arguments-to-run-initramfs-shutdown.patch G 0003-utf8-when-looking-at-the-next-unichar-honour-the-siz.patch G 0001-keymap-Add-support-for-IBM-ThinkPad-X41-Tablet.patch G 0002-keymap-Fix-special-keys-on-ThinkPad-X60-X61-Tablet.patch G 0001-systemctl-let-list-units-unit-files-honour-type.patch G 0002-systemctl-obey-state-in-list-unit-files.patch G 0002-core-watchdog-bus-properties-cannot-be-both-writable.patch G 0003-sd-bus-refuse-properties-that-claim-to-be-both-writa.patch G 0001-units-make-sure-rfkill-service-is-bount-to-the-actua.patch G 0001-selinux-access-fix-broken-ternary-operator.patch G 0002-systemctl-show-BindsTo-BoundBy-in-list-dependencies.patch G 0003-cryptsetup-default-to-no-hash-when-keyfile-is-specif.patch G 0004-core-fix-transaction-destructiveness-check-once-more.patch G 0001-units-tmpfiles-setup-dev-allow-unsafe-file-creation-.patch G 0002-man-tmpfiles.d-recommend-using-b-and-c.patch G 1009-cdrom_id-use-the-old-MMC-fallback.patch G 1010-udev-increase-result-size-for-programs.patch G 1014-udev-update-net_id-comments.patch G 1015-udev-persistent-naming-we-cannot-use-virtio-numbers-.patch G 1016-udev-warn-when-name_to_handle_at-is-not-implemented.patch G 1017-udev-serialize-synchronize-block-device-event-handli.patch G 1018-udev-do-not-skip-the-execution-of-RUN-when-renaming-.patch G 1019-udev-avoid-use-of-uninitialized-err.patch G 1020-udev-keyboard-also-hook-into-change-events.patch G 1022-udev-remove-seqnum-API-and-all-assumptions-about-seq.patch G 1023-udev-builtin-keyboard-do-tell-on-which-device-EVIOCS.patch G 1024-udev-always-close-lock-file-descriptor.patch G 1025-udev-exclude-device-mapper-from-block-device-ownersh.patch G 1026-udevd-inotify-modernizations.patch G 1027-udev-synthesize-change-events-for-partitions-when-to.patch G 1028-udev-link-config-fix-mem-leak.patch G 1029-udev-try-first-re-reading-the-partition-table.patch G 1030-udev-guard-REREADP-logic-with-open-O_ECXL.patch G 1031-udev-make-sure-we-always-get-change-for-the-disk.patch G 1032-udev-guard-REREADPT-by-exclusive-lock-instead-of-O_E.patch G 1033-udev-really-exclude-device-mapper-from-block-device.patch G 1034-udev-check-the-return-value-from-udev_enumerate_scan.patch G 1038-udev-fix-invalid-free-in-enable_name_policy.patch G 1039-udevadm-settle-fixed-return-code-for-empty-queue.patch G 1041-libudev-fix-udev_queue_get_queue_is_empty-logic.patch G 1042-libudev-queue-provide-file-descriptor-to-watch-busy-.patch G 1043-libudev-queue-watch-entire-directory-to-allow-the-re.patch G 1044-rules-update-qemu-hid-rules.patch G 1045-rules-don-t-enable-usb-pm-for-Avocent-devices.patch G 1047-udev-net_setup_link-builtin-should-print-the-reason-.patch G 1048-udev-net_setup_link-add-a-bit-more-logging.patch G 1049-udev-link_config-ignore-errors-due-to-missing-MAC-ad.patch G 1052-rules-uaccess-add-ID_SOFTWARE_RADIO.patch G 1054-udev-exclude-MD-from-block-device-ownership-event-lo.patch G 1056-udevd-add-event-timeout-commandline-option.patch G 1057-udev-unify-event-timeout-handling.patch G 1058-udev-unify-event-timeout-handling.patch G 1059-udev-fixup-commit-dd5eddd28a74a49607a8fffcaf960040db.patch G 1061-rules-allow-systemd-to-manage-loop-device-partitions.patch G 1063-udev-path_id-suppress-ID_PATH-for-devices-with-an-un.patch G 1064-udev-hwdb-do-not-look-at-usb_device-parents.patch G 1065-udev-bump-event-timeout-to-60-seconds.patch G 1067-udev-always-resolve-correctly-database-names-on-chan.patch G 1068-udev-net_setup_link-export-the-.link-filename-applie.patch G 1069-rules-net-setup-link-preserve-ID_NET_LINK_FILE-and-I.patch G 1070-rules-net-setup-link-remove-stray-linebreak.patch G 1071-udev-import-the-full-db-on-MOVE-events-for-devices-w.patch G 1072-udev-netif_rename-don-t-log-to-kmsg.patch G 1073-udev-drop-print_kmsg.patch G 1074-udev-fix-copy-paste-error-in-log-message.patch G 1075-udev-timeout-increase-timeout.patch G 1076-udev-timeout-warn-after-a-third-of-the-timeout-befor.patch G 1077-udev-timeout-warn-after-a-third-of-the-timeout-befor.patch G 1078-udev-remove-userspace-firmware-loading-support.patch G 1079-udev-remove-userspace-firmware-loading-support.patch G 1080-udevd-parse_argv-warn-if-argumens-are-invalid.patch G 1081-udevd-check-return-of-various-functions.patch G 1082-udevadm-hwdb-check-return-value-of-fseeko.patch G 1083-udev-node-warn-if-chmod-chown-fails.patch G 1084-udev-ctrl-log-if-setting-SO_PASSCRED-fails.patch G 1085-udev-fix-typos.patch G 1086-udevd-don-t-fail-if-run-udev-exists.patch G 1089-fix-cgroup-device-controller.patch G 1090-udev-path_id-set-supported_parent-for-well-known-SCS.patch G 1091-udev-path_id-update-comments.patch G 1092-libudev-do-not-accept-invalid-log-levels.patch G 1093-udev-Fix-parsing-of-udev.event-timeout-kernel-parame.patch G 1094-udev-avoid-magic-constants-in-kernel-cmdline-parsers.patch G 1098-udev-link_setup-respect-kernel-name-assign-policy.patch- update set-and-use-default-logconsole.patch - fix comparison of console log facility that caused journald to skip output to console (boo#912030)- Use Robert's latest patch 1098-udev-link_setup-respect-kernel-name-assign-policy.patch which drops NAMEPOLICY_KERNEL as this breaks all on current systems out there- remove 0022-systemd-tmpfiles-ownerkeep.patch since this is now implemented into the systemd-tmpfiles binary - add user based ignore statements in tmpfiles removal directives (bnc#903009) add systemd-add-user-keep.patch- use --boot option in systemd-tmpfiles-setup-dev.service (bnc#908476) add upstream patches: 0001-units-tmpfiles-setup-dev-allow-unsafe-file-creation-.patch 0002-man-tmpfiles.d-recommend-using-b-and-c.patch (adapted)- Update patch 1098-udev-link_setup-respect-kernel-name-assign-policy.patch to Robert's version- Add upstream patches 0001-selinux-access-fix-broken-ternary-operator.patch 0002-systemctl-show-BindsTo-BoundBy-in-list-dependencies.patch 0003-cryptsetup-default-to-no-hash-when-keyfile-is-specif.patch 0004-core-fix-transaction-destructiveness-check-once-more.patch - Avoid old net devices naming scheme on openSUSE 13.2 and less maybe caused by patch 1098-udev-link_setup-respect-kernel-name-assign-policy.patch- fix systemd-nspawn network-veth support (bnc#906709) add 513-nspawn-veth.patch- Add upstream patch 1098-udev-link_setup-respect-kernel-name-assign-policy.patch which may solve bsc#907318- Add upstream patches 0001-units-make-sure-rfkill-service-is-bount-to-the-actua.patch 0002-rfkill-rework-how-we-generate-file-names-from-rfkill.patch- Change the maximum number of children from CPU_COUNT * 256 to CPU_COUNT * 64. Update 1097-udevd-increase-maximum-number-of-children.patch- Increase number of children/workers to CPU_COUNT * 256 to avoid 'maximum number of children reached' (bnc#907393). Add 1097-udevd-increase-maximum-number-of-children.patch- Fix error return in rootsymlink_generator.c Update 1096-new-udev-root-symlink-generator.patch- Remove upstream patch 0001-systemd-logind.service-set-Type-notify.patch as systemd-logind.service is already from DBus type, compare with upstream commit eab459bc0639b81b32735f36d3e929e4bfa2cb4b- Add upstream patches 0001-systemd-logind.service-set-Type-notify.patch 0002-core-watchdog-bus-properties-cannot-be-both-writable.patch 0003-sd-bus-refuse-properties-that-claim-to-be-both-writa.patch- Re-add directory /usr/lib/systemd/system/basic.target.wants- remove pm-utils-hooks-compat.sh again, pm-utils built-in hooks partially duplicate hooks run by systemd which may potentially lead to problems, instead temporarily re-enable Forward-suspend-hibernate-calls-to-pm-utils.patch until boo#904828 can be addressed properly- fix bashisms in write_net_rules script - update patches: * 1053-better-checks-in-write_net_rules.patch- Add upstream patches 0001-systemctl-let-list-units-unit-files-honour-type.patch 0002-systemctl-obey-state-in-list-unit-files.patch which allows to use --type in the systemctl command list-units and list-unit-files.- Add upstream patches 0001-keymap-Add-support-for-IBM-ThinkPad-X41-Tablet.patch 0002-keymap-Fix-special-keys-on-ThinkPad-X60-X61-Tablet.patch- New root symlink rule generator Add 1096-new-udev-root-symlink-generator.patch - Remove write_dev_root_rule and systemd-udev-root-symlink- Change patch 0001-add-hdflush-for-reboot-or-hddown-for-poweroff.patch to skip hdflush as well as hddown but only use halt as fallback for poweroff as well as synch in systemctl before any reboot command (compare with commit 4a3ad39957399c4a30fc472a804e72907ecaa4f9)- Create rule to set I/O scheduler to deadline if device attribute 'rotational' equals 0, usually SSDs (bnc#904517). Add 1095-set-ssd-disk-to-use-deadline-scheduler.patch- fix systemd-fstab-generator crypttab parsing (bnc#903963)- Add pm-utils-hooks-compat.sh in order to run pm-utils sleep hooks from systemd (boo#904828)- Add upstream patches 0001-login-rerun-vconsole-setup-when-switching-from-vgaco.patch 0002-shutdown-fix-arguments-to-run-initramfs-shutdown.patch 0003-utf8-when-looking-at-the-next-unichar-honour-the-siz.patch- Add upstream patches 0001-core-don-t-allow-enabling-if-unit-is-masked.patch 0002-snapshot-return-error-when-snapshot-exists.patch 0003-shared-install-avoid-prematurely-rejecting-missing-u.patch 0004-Raise-level-of-Found-dependency.-lines.patch 0005-units-order-sd-journal-flush-after-sd-remount-fs.patch 0006-journald-fix-minor-memory-leak.patch 0007-journald-also-check-journal-file-size-to-deduce-if-i.patch 0008-journald-fix-memory-leak-on-error-path.patch 0009-units-make-systemd-journald.service-Type-notify.patch 0010-hwdb-Update-database-of-Bluetooth-company-identifier.patch- Add upstream patches 1092-libudev-do-not-accept-invalid-log-levels.patch 1093-udev-Fix-parsing-of-udev.event-timeout-kernel-parame.patch 1094-udev-avoid-magic-constants-in-kernel-cmdline-parsers.patch- Add patch watch_resolv.conf_for_become_changed.patch to add an inotify watch on /etc/resolv.conf which enables the reload of a changed resolver configuration on the fly (bsc#902901) - Do not apply patch 0022-systemd-tmpfiles-ownerkeep.patch in case if the script /usr/bin/systemd-tmpfiles-keep is missed- Add upstream patches 0001-sd-bus-properly-handle-removals-of-non-existing-matc.patch 0002-keymap-Ignore-brightness-keys-on-Dell-Inspiron-1520-.patch- Add upstream patches 1090-udev-path_id-set-supported_parent-for-well-known-SCS.patch 1091-udev-path_id-update-comments.patch which will be applied if patch 1090-udev-path_id-set-supported_parent-for-well-known-SCS.patch is applied a this may fix the trouble with iSCSI (bnc#898233)- Add upstream patches 0001-manager-Linux-on-hppa-has-fewer-rtsigs-hence-avoid-u.patch 0002-time-also-support-infinity-syntax-in-parse_nsec.patch 0003-time-earlier-exit-from-format_timestamp_relative-on-.patch 0004-sd-bus-if-we-don-t-manage-to-properly-allocate-the-e.patch 0005-journalctl-correct-help-text-for-until.patch 0006-calendarspec-fix-typo-in-annually.patch 0007-systemctl-do-not-ignore-errors-in-symlink-removal.patch 0008-util-introduce-sethostname_idempotent.patch 0009-util-fix-copy-paste-error-and-actually-set-the-new-h.patch 0010-shutdown-do-final-unmounting-only-if-not-running-ins.patch 0011-selinux-make-sure-we-do-not-try-to-print-missing-fie.patch - Replace patch keep-crypt-password-prompt.patch as this with upstream patch 0012-manager-do-not-print-anything-while-passwords-are-be.patch- Add upstream patch 0002-shutdown-pass-own-argv-to-run-initramfs-shutdown.patch - Add patch journald-advice-about-use-of-memory.patch to use mmap() flags as well as madvise(2) for journal files.- Add upstream patches 0001-strv-add-an-additional-overflow-check-when-enlarging.patch 0002-hwdb-Add-mapping-for-special-keys-on-compaq-ku-0133-.patch 0003-journald-add-CAP_MAC_OVERRIDE-in-journald-for-SMACK-.patch 0004-journal-do-server_vacuum-for-sigusr1.patch 0005-cryptsetup-fix-an-OOM-check.patch- Add upstream patch 1089-fix-cgroup-device-controller.patch to avoid trouble on existing /dev/console with nspawn (bsc#902240)- Modify patch avoid-leaking-socket-descriptors.patch to close file descriptors for incomming connections in pam module in case of short memory.- Add upstream patches 0001-systemd-continue-switch-root-even-if-umount-fails.patch 0002-systemd-try-harder-to-bind-to-notify-socket.patch - Add patch avoid-leaking-socket-descriptors.patch to close file descriptors if an incomming connection can not be handled due e.g. short memory. Could be related to bsc #901481- Add upstream patches 0001-shell-completion-fix-completion-of-inactive-units.patch 0002-shell-completion-propose-templates-for-disable-re-en.patch 0003-man-we-don-t-have-Wanted-dependency.patch 0004-selinux-fix-potential-double-free-crash-in-child-pro.patch- Adapt patch rules-add-lid-switch-of-ARM-based-Chromebook-as-a-power-sw.patch to make it work even with patch #438 and #439- Add upstream patches 0001-systemctl-when-mangle-unit-names-for-the-isolate-suf.patch 0001-tmpfiles-compare-return-against-correct-errno.patch- Add upstream patches 0001-keymap-Fix-touchpad-toggle-on-Toshiba-Satellite-P75-.patch 0001-units-introduce-network-pre.target-as-place-to-hook-.patch 0002-keymap-Fix-touchpad-toggle-key-on-Asus-laptops.patch 0003-sd-bus-check-return-value-of-vasprintf.patch 0004-core-map-the-rescue-argument-to-rescue.target.patch 0005-util-avoid-double-close-of-fd.patch- Add upstream patches 0001-virt-detect-that-we-are-running-inside-the-docker-co.patch 0002-bootchart-use-n-a-if-PRETTY_NAME-is-not-found.patch 0003-fileio-label-return-error-when-writing-fails.patch 0001-sd-event-don-t-require-a-signal-event-source-to-be-e.patch 0004-sd-event-check-the-value-of-received-signal.patch 0005-sd-id128-do-stricter-checking-of-random-boot-id.patch- Add upstream patches 0001-core-swap-only-make-configured-units-part-of-swap.ta.patch 0009-hwdb-Update-database-of-Bluetooth-company-identifier.patch- Add upstream patches 0001-journalctl-do-not-output-reboot-markers-when-running.patch 0002-udev-hwdb-New-Entry-for-Dell-XPS12-9Q33-keyboard.patch- Add upstream patches 0001-logind-add-support-for-Triton2-Power-Button.patch 0002-logind-add-support-for-TPS65217-Power-Button.patch - Add upstream patches 0001-shutdownd-clean-up-initialization-of-struct.patch 0003-bootchart-parse-userinput-with-safe_atoi.patch 0004-bootchart-check-return-of-strftime.patch 0005-bootchart-Do-not-try-to-access-data-for-non-existing.patch/bin/shgoat11 1640107476  !234-lp152.31.40.1234-lp152.31.40.1 org.freedesktop.import1.conforg.freedesktop.machine1.confmachinectlsystemd-nspawnimport-pubring.gpgfix-machines-btrfs-subvol.shdbus-org.freedesktop.import1.servicedbus-org.freedesktop.machine1.servicemachine.slicemachines.target.wantsvar-lib-machines.mountvar-lib-machines.mountsystemd-importd.servicesystemd-machined.servicesystemd-nspawn@.servicevar-lib-machines.mountsystemd-importsystemd-importdsystemd-machinedsystemd-pullsystemd-nspawn.conforg.freedesktop.import1.serviceorg.freedesktop.machine1.servicemachinectl.1.gzsystemd-nspawn.1.gzsystemd.nspawn.5.gzsystemd-importd.8.gzsystemd-importd.service.8.gzsystemd-machined.8.gzsystemd-machined.service.8.gzorg.freedesktop.import1.policyorg.freedesktop.machine1.policy/etc/dbus-1/system.d//usr/bin//usr/lib/systemd//usr/lib/systemd/scripts//usr/lib/systemd/system//usr/lib/systemd/system/machines.target.wants//usr/lib/systemd/system/remote-fs.target.wants//usr/lib/tmpfiles.d//usr/share/dbus-1/system-services//usr/share/man/man1//usr/share/man/man5//usr/share/man/man8//usr/share/polkit-1/actions/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:17298/openSUSE_Leap_15.2_Update/7a8e6eb35d28cc18d1d5271d17cd9fbb-systemd.openSUSE_Leap_15.2_Updatedrpmxz5i586-suse-linux  XML 1.0 document, ASCII textELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux.so.2, BuildID[sha1]=e8d86fba6bd09f217c41af013ae000fe22d19ae5, for GNU/Linux 3.2.0, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux.so.2, BuildID[sha1]=4cbc4e519b9d70e2098f05c20bfbb2ceaf5d9e79, for GNU/Linux 3.2.0, strippedBourne-Again shell script, ASCII text executableASCII textdirectoryELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux.so.2, BuildID[sha1]=08f5e56d67c77c5981935037198fa89321ec0d3b, for GNU/Linux 3.2.0, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux.so.2, BuildID[sha1]=9ba98eacc502490b4dd73468094765c4edeb826d, for GNU/Linux 3.2.0, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux.so.2, BuildID[sha1]=5cbfbde71f98adb0e0ea499dcbeda00feeb09d53, for GNU/Linux 3.2.0, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux.so.2, BuildID[sha1]=cd3d936a79421b4a93254abb8164a5480bf10c62, for GNU/Linux 3.2.0, strippedtroff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix)troff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)XML 1.0 document, UTF-8 Unicode text !1<K  RRRR RRRRRR!RRRR R RR RRRR RRRRRR!RRR RRRRR R RRRRRRRR!RR"RRRR RRRRRRRR!RRRRR R RR RRR RRRR!RRRRRRRRRR RRRRRR RRR!RRR"RRRR噃D} Eutf-8954210369f9a9d20e364ae65b4be36baf4f96f275a8a99e63ff055a31238d60b?7zXZ !t/]"k%: Vd14:-yw$i=hP{\G*cʖ1ǩ͏!# _{ۙ)یgٷ>ݖUx?72EF+Hl#lZl;t hӈaa  r՗Mˊu5Lв!OH\7DW&eZvjVκ̒c0鸗ӴR Փd mf6q'9_ڤV1lߍZ<9Ձt_]ڴJ(kwm\UcELPS7&fy}1F:Fksk 016M(D؎ăhS"xQ!ʈv.-%㙊1"H'g17Nd1OfFD5oƨ< <) R6&bfqOI(̎c[%v>+?#IRND V0Rq $/)kGGL(qI5od&_ @^k,Zy󘘽<ǰ.9,g$yfEyҞEB;+dLZB'J cghN`Ov S]8mCfEALt#[ BtpWm"a ^;*UB;$i!w?WIU8Cb_3D x<籞’#>ВpI~Zc{1C#dM8aS`a +OcT\hOȆ-4{P[/ZK*;tAj!KjV&o$WAF1uC<& 0>64C] o$4sGU({юbL%3VbNɭFq2FN޻KcX6ƣ|~OYo4j.AXv)|߼u nI(ѡܘy6t02FY@@o ^Q,9tfL*1 p0FFAeeJZDPk2.Z*.Q,>`B1ddH}饓 S*b#yH=q.a([a 7baF0[Ψ ^,fճ,T@6L6 S@{ ZGm 1 YZ