ubuntu/+source/systemd:ubuntu/yakkety

Last commit made on 2016-10-02
Get this branch:
git clone -b ubuntu/yakkety https://git.launchpad.net/ubuntu/+source/systemd
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/yakkety
Repository:
lp:ubuntu/+source/systemd

Recent commits

5b2e26b... by Martin Pitt on 2016-10-02

Import patches-unapplied version 231-9git1 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 3f15bf597a7dadeb9f0bcd09595fe87dc517f64f

New changelog entries:
  * systemctl: Add --wait option to wait until started units terminate again.
    This is a prerequisite for using systemd for graphical sessions without
    ugly polling.
  * nss-resolve: return NOTFOUND instead of UNAVAIL on resolution errors.
    This makes it possible to configure a fallback to "dns" without breaking
    DNSSEC, with "resolve [!UNAVAIL=return] dns".
  * libnss-resolve.postinst: Skip dns fallback if resolve is present.
    Only fall back to "dns" if nss-resolve is not installed (for the
    architecture of the calling program). Once it is, we never want to fall
    back to "dns" as that breaks enforcing DNSSEC verification and also
    pointlessly retries NXDOMAIN failures. (LP: #1624071)

3f15bf5... by Martin Pitt on 2016-09-29

Import patches-unapplied version 231-9 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 4f22a0cdaa0661ec56d88d30483c13a0c910138f

New changelog entries:
  * pid1: process zero-length notification messages again.
    Just remove the assertion, the "n" value was not used anyway. This fixes
    a local DoS due to unprocessed/unclosed fds which got introduced by the
    previous fix. (Closes: #839171) (LP: #1628687)
  * pid1: Robustify manager_dispatch_notify_fd()
  * test/networkd-test.py: Add missing writeConfig() helper function.
  [ Martin Pitt ]
  * Replace remaining systemctl --failed with --state=failed
    "--failed" is deprecated in favor of --state.
  * debian/shlibs.local.in: More precisely define version of internal shared
    lib.
  * debian/tests/upstream: Drop blacklisting
    These tests now work fine without qemu.
  * debian/tests/storage: Avoid rmmod scsi_debug (LP: #1626737)
  * upstream build system: Install libudev, libsystemd, and nss modules to
    ${rootlibdir}. Drop downstream workaround from debian/rules.
  * Ubuntu: Disable resolved's DNSSEC for the final 16.10 release.
    Resolved's DNSSEC support is still not mature enough, and upstream
    recommends to disable it in stable distro releases still.
  * Fix abort/DoS on zero-length notify message triggers (LP: #1628687)
  * resolved: don't query domain-limited DNS servers for other domains
    (LP: #1588230)
  [ Antonio Ospite ]
  * Update systemd-user pam config to require pam_limits.so.
    (Closes: #838191)

4f22a0c... by Martin Pitt on 2016-09-20

Import patches-unapplied version 231-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0080abfdd58477886552b0ceca535989c9ee205f

New changelog entries:
  [ Michael Biebl ]
  * fsckd: Do not exit on idle timeout if there are still clients connected
    (Closes: #788050, LP: #1547844)
  [ Martin Pitt ]
  * 73-usb-net-by-mac.rules: Split kernel command line import line.
    Reportedly this makes the rule actually work on some platforms. Thanks Alp
    Toker! (LP: #1593379)
  * debian/tests/boot-smoke: Only run 5 iterations
  * systemd.postinst: Drop obsolete setcap call for systemd-detect-virt.
    Drop corresponding libcap2-bin dependency.
  * debian/tests/systemd-fsckd: Robustify check for "unit was running"
    (LP: #1624406)
  * debian/extra/set-cpufreq: Use powersave with intel_pstate.
    This is what we did on xenial, and apparently powersave is still actually
    better than performance. Thanks to Doug Smythies for the measurements!
    (LP: #1579278)
  * Ubuntu: Move ondemand.service from static to runtime enablement.
    This makes it easier to keep performance, by disabling ondemand.service.
    Side issue in LP: #1579278
  * Revert "networkd: remove route if carrier is lost"
    This causes networkd to drop addresses from unmanaged interfaces in some
    cases. (Closes: #837759)
  * debian/tests/storage: Avoid stderr output of stopping systemd-cryptsetup@.service
  * libnss-*.prerm: Remove possible [key=value] options from NSS modules as well.
    (LP: #1625584)

0080abf... by Martin Pitt on 2016-09-11

Import patches-unapplied version 231-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b0a5179809bea6ddbfa87746f23edf30084cdaaf

New changelog entries:
  [ Martin Pitt ]
  * Add alternative iptables-dev build dependencies
    libiptc-dev is very new and not yet present in stable Debian/Ubuntu releases.
    Add it as a fallback build dependency for backports and upstream tests.
  * Detect if seccomp is enabled but seccomp filtering is disabled
    (Closes: #832713)
  * resolved: recognize DNS names with more than one trailing dot as invalid
    (LP: #1600000)
  * debian/tests/smoke: Store udev db dump artifact on failure
  * networkd: limit the number of routes to the kernel limit
  * systemctl: consider service running only when it is in active or reloading state
  * networkd: remove route if carrier is lost
  * Add Ref()/Unref() bus calls for units
  [ Felipe Sateler ]
  * git-cherry-pick: always recreate the patch-queue branch.
  [ Dimitri John Ledkov ]
  * Use idiomatic variables from dpkg include.

b0a5179... by Martin Pitt on 2016-08-26

Import patches-unapplied version 231-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 1a19e49a147056692322dd5f1a4074ef26c176dc

New changelog entries:
  [ Iain Lane ]
  * Let graphical-session-pre.target be manually started (LP: #1615341)
  [ Felipe Sateler ]
  * Add basic version of git-cherry-pick
  * Replace Revert-units-add-a-basic-SystemCallFilter-3471.patch with upstream
    patch
  * sysv-generator: better error reporting. (Closes: #830257)
  [ Martin Pitt ]
  * 73-usb-net-by-mac.rules: Test for disabling 80-net-setup-link.rules more
    efficiently. Stop calling readlink at all and just test if
    /etc/udev/rules.d/80-net-setup-link.rules exists -- a common way to
    disable an udev rule is to just "touch" it in /etc/udev/rule.d/ (i. e.
    empty file), and if the rule is customized we cannot really predict anyway
    if the user wants MAC-based USB net names or not. (LP: #1615021)
  * Ship kernel-install (Closes: #744301)
  * Add debian/extra/kernel-install.d/60-initrd.install.
    This kernel-install drop-in copies the initrd of the selected kernel to
    the EFI partition.
  * bootctl: Automatically detect ESP partition.
    This makes bootctl work with Debian's /boot/efi/ mountpoint without having
    to explicitly specify --path.
    Patches cherry-picked from upstream master.
  * systemd.NEWS: Point out that alternatively rcS scripts can be moved to
    rc[2-5]. Thanks to Petter Reinholdtsen for the suggestion!
  [ Michael Biebl ]
  * Enable iptables support (Closes: #787480)
  * Revert "logind: really handle *KeyIgnoreInhibited options in logind.conf"
    The special 'key handling' inhibitors should always work regardless of
    any *IgnoreInhibited settings – otherwise they're nearly useless.
    Update man pages to clarify that *KeyIgnoreInhibited only apply to a
    subset of locks (Closes: #834148)

1a19e49... by Martin Pitt on 2016-08-18

Import patches-unapplied version 231-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 71ca4bf41dd2d6e3debb4e0b22b24c79dbe97ff5

New changelog entries:
  * Revert "pid1: reconnect to the console before being re-executed"
    This unbreaks consoles after "daemon-reexec". (Closes: #834367)

71ca4bf... by Martin Pitt on 2016-08-15

Import patches-unapplied version 231-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d18de72cddbdec0f7d477850ffd7c51851582b4d

New changelog entries:
  * resolved resolvconf integration: Run resolvconf without privilege restrictions.
    On some architectures (at least ppc64el), running resolvconf does not work with
    MemoryDenyWriteExecute=yes. (LP: #1609740)
  * Revert unit usage of MemoryDenyWriteExecute=yes. This is implemented
    through seccomp as well. (Closes: #832713)

d18de72... by Martin Pitt on 2016-08-14

Import patches-unapplied version 231-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: efafcb018c107d5eb7c32b398d6dacdc54f7e610

New changelog entries:
  [ Martin Pitt ]
  * debian/rules: Fix UPSTREAM_VERSION for upstream master builds
  * Limit "link against /usr" check to some critical binaries only and add generators
  * debian/rules: Put back cleanup of *.busname (Closes: #833487)
  * debian/tests/localed-x11-keymap: Robustify cleanup
  * debian/tests/localed-x11-keymap: Check that localed works without /etc/default/keyboard.
    This reproduces #833849.
  * Revert "units: add a basic SystemCallFilter (#3471)"
    This causes fatal failures on kernels that don't have seccomp enabled. This can
    be reactivated once https://github.com/systemd/systemd/issues/3882 is fixed.
    (Closes: #832713, #832893)
  [ Simon McVittie ]
  * localed: tolerate absence of /etc/default/keyboard.
    The debian-specific patch to read Debian config files was not tolerating
    the absence of /etc/default/keyboard. This causes systemd-localed to
    fail to start on systems where that file isn't populated (like embedded
    systems without keyboards). (Closes: #833849)

efafcb0... by Martin Pitt on 2016-07-26

Import patches-unapplied version 231-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 624873b2eeec30eb4bb1cbabd14999000f20bc83

New changelog entries:
  [ Martin Pitt ]
  * New upstream release 231:
    - Fix "Failed to create directory /str/sys/fs/selinux: Read-only file
      system" warning. (Closes: #830693)
  * systemd.postinst: Remove systemd-networkd-resolvconf-update.path removal
    leftover. (Closes: #830778)
  * Drop support for rcS.d SysV init scripts.
    These are prone to cause dependency loops, and almost all packages with
    rcS scripts now ship a native systemd service.
  * networkd: Handle router advertisements in userspace again.
    Drop Revert-Revert-networkd-ndisc-revert-to-letting-the-k.patch.
    Bug #814566/#815586 got fixed in 230, and #815884 and #815884 and #815793
    are unreproducible and need more reporter feedback.
  * debian/gbp.conf: Enable dch options "full" and "multimaint-merge"
  * systemd-sysv: Add Conflicts: systemd-shim.
    To avoid shim trying to claim the D-Bus interfaces.
  * Add graphical-session.target user unit.
  * Add graphical-session-pre.target user unit
  * Add debian/extra/units-ubuntu/user@.service.d/timeout.conf.
    This avoids long hangs during shutdown if user services fail/hang due to
    X.org going away too early. This is mostly a workaround, so only install
    for Ubuntu for now.
  * Dynamically add upstream version to debian/shlibs.local
  * Set Debian/Ubuntu downstream support URL in journal catalogs
    (Closes: #769187)
  [ Michael Biebl ]
  * Restrict Conflicts: openrc to << 0.20.4-2.1.
    Newer versions of openrc no longer ship conflicting implementations of
    update-rc.d/invoke-rc.d.
  * Add Depends: dbus to systemd-container.
    This is required for systemd-machined and systemd-nspawn to work
    properly. (Closes: #830575)
  * Drop insserv.conf generator.
    We no longer parse /etc/insserv.conf and /etc/insserv.conf.d/* and
    augment services with that dependency information via runtime drop-in
    files. Services which want to provide certain system facilities need to
    pull in the corresponding targets themselves. Either directly in the
    native service unit or by shipping a drop-in snippet for SysV init
    scripts. (Closes: #825858)
  * getty-static.service: Only start if we have a working VC subsystem.
    Use ConditionPathExists=/dev/tty0, the same check as in getty@.service,
    to determine whether we have a functional VC subsystem and we should
    start any gettys. (Closes: #824779)
  * Stop mentioning snapshot and restore in the package description.
    Support for the .snapshot unit type has been removed upstream.
  * Drop sigpwr-container-shutdown.service.
    This is no longer necessary as lxc-stop has been fixed to use SIGRTMIN+3
    to shut down systemd based LXC containers.
    https://github.com/lxc/lxc/pull/1086
    https://www.freedesktop.org/wiki/Software/systemd/ContainerInterface/
  [ Felipe Sateler ]
  * Add versioned breaks for packages shipping rcS init scripts

624873b... by Michael Biebl on 2016-07-08

Import patches-unapplied version 230-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: f852bb14e0dfe0f4100e9cbee8e5881c6bd843cc

New changelog entries:
  * Tell dh_shlibdeps to look in the systemd package for libraries. Otherwise
    dpkg-shlibdeps fails to find libsystemd-shared as we no longer create a
    shlibs file for it.
  * Add Build-Depends-Package to libudev1.symbols and libsystemd0.symbols.
    This ensures proper dependencies when a package has a Build-Depends on a
    higher version of libudev-dev or libsystemd-dev then what it gets from the
    used symbols.