~snappy-dev/snapd/+git/snapd-pawel:preseed/system-key-helpers

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

ed098db... by Samuele Pedroni on 2020-07-20

interfaces: tiny naming and doc adjustments for new system key helpers

55a7528... by Samuele Pedroni on 2020-07-20

Merge remote-tracking branch 'upstream/master' into preseed/system-key-helpers

579d4f3... by Samuele Pedroni on 2020-07-20

cmd/snap-seccomp/syscalls: add faccessat2

Merge pull request #9034 from bboozzoo/bboozzoo/seccomp-syscalls-update-2

The libseccomp upstream updated the syscalls list with what 5.8-rc5 kernels support, see seccomp/libseccomp@5696c89 for details.

afecf78... by Samuele Pedroni on 2020-07-20

tests: adjust xdg-open after launcher changes

Merge pull request #9037 from zyga/fix/xdg-open

Commit 31045a8 removed the code path
where userd launcher resolved the pid of the calling process to a snap
name - something that currently only works with cgroup v1, without
properly adjusting the test. Without this code the launcher is no longer
sensitive to cgroup v1 vs v2 and the expectation in the test is no
longer upheld.

This change was merged in #9022
but apparently, since it was a cherry pick from a security release, the
review was hasty and the fact this broke master was unnoticed.

c332e60... by Maciej Borzecki on 2020-07-20

interfaces/seccomp: add faccessat2 to the base seccomp template

The 5.8 Linux kernel introduces new faccessat2 syscall [1]. Add the syscall to the
list of permitted syscalls in the base seccomp template.

1. https://lwn.net/Articles/820410/

Signed-off-by: Maciej Borzecki <email address hidden>

1dba6d6... by Maciej Borzecki on 2020-07-20

Merge remote-tracking branch 'upstream/master' into bboozzoo/seccomp-syscalls-update-2

687feda... by Sergio Cazzolato on 2020-07-17

Merge pull request #8903 from sergiocazzolato/tests-new-core-config-helper

tests: new core config helper

626e842... by Zygmunt Krynicki on 2020-07-17

tests: adjust xdg-open after launcher changes

Commit 31045a8c0dc15e3ca9d12bdaeb90fbf7cf266692 removed the code path
where userd launcher resolved the pid of the calling process to a snap
name - something that currently only works with cgroup v1, without
properly adjusting the test. Without this code the launcher is no longer
sensitive to cgroup v1 vs v2 and the expectation in the test is no
longer upheld.

This change was merged in https://github.com/snapcore/snapd/pull/9022
but apparently, since it was a cherry pick from a security release, the
review was hasty and the fact this broke master was unnoticed.

Signed-off-by: Zygmunt Krynicki <email address hidden>

7c828d8... by Paweł Stołowski on 2020-07-17

Share read logic between RecordedSystemKey and SystemKeyMismatch (thanks mvo).

518bbc7... by Paweł Stołowski on 2020-07-17

Test case for identical keys.