[ubuntu/noble-proposed] systemd 255.2-3ubuntu1 (Accepted)
Nick Rosbrook
enr0n at ubuntu.com
Wed Jan 3 22:47:12 UTC 2024
systemd (255.2-3ubuntu1) noble; urgency=medium
* Merge with Debian unstable. Remaining changes:
- debian/tests/upstream{,-1,-2}: split upstream tests into two parts
- debian/tests/tests-in-lxd: run some autopkgtests in LXD too
- debian/tests/storage: skip tests if scsi_debug module is not available
- debian/tests/boot-and-services:
+ skip test_syslog on s390x
+ skip coredump tests on s390x
+ skip apparmor tests on armhf
+ consume stderr in systemctl status call in test_service
+ drop test_no_failed
- debian/systemd.postinst:
+ skip daemon-reexec and try-restarts during shutdown
+ manually call systemd-tmpfiles --create in postinst
- debian/systemd-resolved.postinst: copy existing /etc/resolv.conf to
/run/systemd/resolve/stub-resolv.conf
- debian/rules:
+ Set default user path
+ Disable LLMNR by default
+ Remove unneeded efi artifacts on i386 to avoid debugedit errors
- debian/rules,debian/control,debian/tests/control:
+ Do not build with tpm libraries on i386
+ Do not build with libqrencode on i386
- debian/gbp.conf,debian/extra/wrap_cl.py:
Use a customization script to add LP commit links to changelog
- debian/extra/systemd-oomd-defaults/-.slice.d/10-oomd-root-slice-defaults.conf:
Set ManagedOOMSwap=auto, disabling swap kill by default
- debian/extra/start-udev: Set scsi_mod scan=sync even if it's builtin
to the kernel (we previously only set it in modprobe.d)
- debian/control:
+ Add Recommends: networkd-dispatcher systemd-resolved to systemd package
+ Provide upgrade path (Replaces:) for Jammy's systemd-repart
+ Give systemd-resolved Priority: important
+ Add Recommends: systemd-hwe-hwdb to udev package
+ Add Breaks: systemd (<< ${binary:Version}) to udev package so that
systemd is upgraded as well when upgrading udev
+ Make systemd-sysv Depends: on matching version of systemd
+ Drop Recommends: libnss-myhostname libnss-resolve from systemd-resolved
- d/p/debian/Ubuntu-UseDomains-by-default.patch:
Enable UseDomains by default on Ubuntu.
- d/p/debian/UBUNTU-Add-AssumedApparmorLabel-unconfined-to-timedate1-dbus.patch:
Set AssumedAppArmorLabel=unconfined in timedate1 dbus service file
- d/p/debian/UBUNTU-test-test-functions-launch-qemu-with-vga-none.patch:
Launch QEMU with -vga none in test-functions
- d/p/debian/UBUNTU-resolved-default-no-negative-caching.patch:
Default to Cache=no-negative in systemd-resolved
- d/p/Revert-network-if-sys-is-rw-then-udev-should-be-around.patch:
Revert "network: if /sys is rw, then udev should be around" upstream
commit
- d/p/lp1861941-dont-generate-disk-byuuid-for-bcache-uuid.patch:
skip disk/by-uuid for bcache devices
- d/p/debian/UBUNTU-Don-t-override-Ubuntu-s-default-sysctl-values-LP-1962038.patch:
Don't override Ubuntu's default sysctl values
- debian/patches/debian/UBUNTU-read-only-etc-hacks.patch:
Workaround Ubuntu core's read-only etc
- d/p/test-drop-etc-default-locale-handling-from-TEST-74-AUX-UT.patch
- d/p/meson.build-disable-Wformat-overflow-on-gcc-with-O3.patch:
Disable -Wformat-overflow on gcc with -O3
- test: ensure SYSVINIT_PATH exists in TEST-26-SYSTEMCTL.
On Ubuntu, we hit the case where SYSVINIT_PATH falls back to
/etc/init.d, but nothing guarantees that the path is created for the
test.
- test: deny-list TEST-08-INITRD.
Upstream already disables this: https://github.com/systemd/systemd/pull/28813.
It makes sense for us to as well, because we don't run systemd in the
initrd.
- debian/systemd.install: do not install pcrlock.d on i386.
We don't build this stuff on i386.
- debian/extra: use a dropin to configure Nice=-1 on systemd-journald.service.
It is preferred that we override units with dropins like this, rather
than patching the original. This has no functional change.
- test: skip failing test-execute tests in LXC.
These are hopefully temporary workarounds so that we can figure out the
root cause in either upstream systemd or LXC.
* Dropped changes, fixed upstream:
- Drop test-install-all-necessary-units-generators-for-LVM-on-De.patch.
Applied upstream: https://github.com/systemd/systemd-stable/commit/b1dba6bcaa
- Drop firstboot-remove-etc-localtime-on-reset.patch.
Applied upstream: https://github.com/systemd/systemd-stable/commit/1d1b1fa25b
* Dropped changes, replaced with new approach:
- d/p/test-increase-QEMU_MEM-for-some-tests.patch:
Increase QEMU_MEM for some tests to improve success rate
* Dropped changes, included in Debian:
- debian/tests/control: add Depends: mdadm lvm2 for TEST-64-UDEV-STORAGE
- debian/tests/upstream: drop blacklist support.
- test-skip-tests-for-unsupported-localectl-features.patch:
skip tests for unsupported localectl features
* New changes:
- debian/tests/upstream: export QEMU_MEM="1024M" for all tests
- Revert "Drop debian/UBUNTU-src-test-test-execute.c-Skip-parts-of-test-execute-in-con.patch"
- debian/systemd.links: mask systemd-gpt-auto-generator by default (LP: #2046459)
Re-ship the generator so that it can be used if needed, but mask the
generator so that it remains disabled by default.
- debian/systemd.install: exclude files that are not built for i386
- debian/systemd.manpages: do not ship sd-bsod manpages on i386
- debian/tests/control: only install systemd-boot-efi for supported arches
systemd (255.2-3) sid; urgency=medium
* Cherry-pick fixes for upstream integration tests.
Fixes TEST-07-PID1, TEST-08-INITRD (skip), TEST-26-SYSTEMCTL and
TEST-75-RESOLVED.
* Add explicit Build-Depends on debhelper (>= 13.11.6)
This ensures we have a recent enough version of dh_installsystemd that
supports service files in /usr/lib/.
* test: deny-list TEST-13-NSPAWN.
The default ram size of 1024M for qemu virt is not sufficient
to make the test pass reliably on Debian sid/trixie.
Disable the test for now until this has been addressed in debci:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059840
systemd (255.2-2) unstable; urgency=medium
* udev: mips does not install dmi_memory_id and its rules
systemd (255.2-1) unstable; urgency=medium
* New upstream version 255.2
* Drop resolved-actually-check-authenticated-flag-of-SOA-transac.patch,
merged upstream
systemd (255.1-3) unstable; urgency=medium
* Upload to unstable
* Fix installation of dmi_memory_id on i386 and x32
* Explicitly disable bootloader for stage1 build.
This ensures that the stage1 build is not broken in a tainted build
environment.
* Mark missing man pages from stage1 build
systemd (255.1-2) experimental; urgency=medium
[ Michael Biebl ]
* Upgrade the Breaks to Conflicts for the systemd-ukify package split.
This avoids potential loss of the /usr/lib/systemd/ukify compat symlink
for upgrades from bookworm-backports.
* Update package description of libnss-myhostname to use the correct IPv4
address (Closes: #1057953)
* resolved: actually check authenticated flag of SOA transaction.
Patch cherry-picked from upstream Git.
(CVE-2023-7008, Closes: #1059278)
* Explicitly disable ukify for stage1 builds
* Enable dh-exec for systemd.manpages and udev.install.
This enables files to be installed specific to certain architectures or
build profiles. Unfortunately for systemd.manpages this requires to add a
debian/tmp/ prefix to all files.
See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053834#46
* Restrict pcr/tpm2 related files to UEFI architectures.
Mirrors the python3-pyelftools [amd64 i386 arm64 armhf riscv64]
Build-Depends.
* Install dmi_memory_id and its udev rules file only on dmi architectures.
* Fix stage1 profile build
[ Helmut Grohne ]
* Restore diverted symlinks in systemd-sysv.postinst that may have been lost
due to /usr-merge (Closes: #1057220)
systemd (255.1-1) experimental; urgency=medium
[ Luca Boccassi ]
* Drop pkgconfig-keep-unmerged-paths-for-udevdir.patch, no longer needed
* New upstream version 255.1
* Refresh patches
[ Michael Biebl ]
* autopkgtest: install systemd-boot-efi for upstream suite.
TEST-70-TPM2 (specifically test/units/testsuite-70.pcrlock.sh) requires
the EFI stub files from /usr/lib/systemd/boot/efi/.
* test: skip tests for unsupported localectl features.
Update the upstream test suite to skip tests for unsupported localectl
features in Debian. Fixes TEST-73-LOCALE.
Thanks to Nick Rosbrook
* Update symbol versions for the final 255 release
* Install systemd and udev files explicitly without duplicates.
Stop making systemd and udev "catch-all" packages and removing duplicate
files in debian/rules by compiling a list of files that are installed by
other systemd binary packages. This approach no longer works reliably
if we have arch "all" binary packages and we do a partial type "any" build.
Instead, list all files that are installed in systemd and udev
explicitly in .install and .manpages.
* Mark usr/lib/sysctl.d/50-pid-max.conf as arch specific.
It's only installed by Meson if cc.sizeof('long') > 4.
See https://wiki.debian.org/ArchitectureSpecificsMemo
* Fix arch "all" builds.
Files handled by debian/rules and dh-exec are not understood by
dh_missing. So mark those as not-installed.
See man dh_missing and
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=831786
* Install standalone binaries using dh-exec
* Print empty directories
dh_missing will not fail on uninstalled (empty) directories.
So show them during build as it makes it easier to spot if all of them
are handled.
* Split ukify into a separate package named systemd-ukify.
The main motivation for splitting the tool (and its kernel-install
integration) into a separate package is the dependency on python3 and
python3-pefile, which are not suitable dependencies for the main systemd
package. (Closes: #1051981)
* Make the Conflicts against bfh-container and progress-linux-container
versioned
[ Nick Rosbrook ]
* debian/tests/control: add Depends: mdadm lvm2 for TEST-64-UDEV-STORAGE.
This ensures that testcase_mdadm_lvm in TEST-64-UDEV-STORAGE will run.
* debian/tests/upstream: drop blacklist support.
Upstream has been using deny-list-ubuntu-ci, rather than
blacklist-ubuntu-ci, for a while now. In Ubuntu, we use the
deny-list-upstream-ci convention too. Hence, it seems we can drop
support for the blacklist version.
Date: Wed, 03 Jan 2024 17:34:00 -0500
Changed-By: Nick Rosbrook <enr0n at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/systemd/255.2-3ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 03 Jan 2024 17:34:00 -0500
Source: systemd
Built-For-Profiles: noudeb
Architecture: source
Version: 255.2-3ubuntu1
Distribution: noble
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Nick Rosbrook <enr0n at ubuntu.com>
Closes: 1051981 1057220 1057953 1059278
Launchpad-Bugs-Fixed: 2046459
Changes:
systemd (255.2-3ubuntu1) noble; urgency=medium
.
* Merge with Debian unstable. Remaining changes:
- debian/tests/upstream{,-1,-2}: split upstream tests into two parts
- debian/tests/tests-in-lxd: run some autopkgtests in LXD too
- debian/tests/storage: skip tests if scsi_debug module is not available
- debian/tests/boot-and-services:
+ skip test_syslog on s390x
+ skip coredump tests on s390x
+ skip apparmor tests on armhf
+ consume stderr in systemctl status call in test_service
+ drop test_no_failed
- debian/systemd.postinst:
+ skip daemon-reexec and try-restarts during shutdown
+ manually call systemd-tmpfiles --create in postinst
- debian/systemd-resolved.postinst: copy existing /etc/resolv.conf to
/run/systemd/resolve/stub-resolv.conf
- debian/rules:
+ Set default user path
+ Disable LLMNR by default
+ Remove unneeded efi artifacts on i386 to avoid debugedit errors
- debian/rules,debian/control,debian/tests/control:
+ Do not build with tpm libraries on i386
+ Do not build with libqrencode on i386
- debian/gbp.conf,debian/extra/wrap_cl.py:
Use a customization script to add LP commit links to changelog
- debian/extra/systemd-oomd-defaults/-.slice.d/10-oomd-root-slice-defaults.conf:
Set ManagedOOMSwap=auto, disabling swap kill by default
- debian/extra/start-udev: Set scsi_mod scan=sync even if it's builtin
to the kernel (we previously only set it in modprobe.d)
- debian/control:
+ Add Recommends: networkd-dispatcher systemd-resolved to systemd package
+ Provide upgrade path (Replaces:) for Jammy's systemd-repart
+ Give systemd-resolved Priority: important
+ Add Recommends: systemd-hwe-hwdb to udev package
+ Add Breaks: systemd (<< ${binary:Version}) to udev package so that
systemd is upgraded as well when upgrading udev
+ Make systemd-sysv Depends: on matching version of systemd
+ Drop Recommends: libnss-myhostname libnss-resolve from systemd-resolved
- d/p/debian/Ubuntu-UseDomains-by-default.patch:
Enable UseDomains by default on Ubuntu.
- d/p/debian/UBUNTU-Add-AssumedApparmorLabel-unconfined-to-timedate1-dbus.patch:
Set AssumedAppArmorLabel=unconfined in timedate1 dbus service file
- d/p/debian/UBUNTU-test-test-functions-launch-qemu-with-vga-none.patch:
Launch QEMU with -vga none in test-functions
- d/p/debian/UBUNTU-resolved-default-no-negative-caching.patch:
Default to Cache=no-negative in systemd-resolved
- d/p/Revert-network-if-sys-is-rw-then-udev-should-be-around.patch:
Revert "network: if /sys is rw, then udev should be around" upstream
commit
- d/p/lp1861941-dont-generate-disk-byuuid-for-bcache-uuid.patch:
skip disk/by-uuid for bcache devices
- d/p/debian/UBUNTU-Don-t-override-Ubuntu-s-default-sysctl-values-LP-1962038.patch:
Don't override Ubuntu's default sysctl values
- debian/patches/debian/UBUNTU-read-only-etc-hacks.patch:
Workaround Ubuntu core's read-only etc
- d/p/test-drop-etc-default-locale-handling-from-TEST-74-AUX-UT.patch
- d/p/meson.build-disable-Wformat-overflow-on-gcc-with-O3.patch:
Disable -Wformat-overflow on gcc with -O3
- test: ensure SYSVINIT_PATH exists in TEST-26-SYSTEMCTL.
On Ubuntu, we hit the case where SYSVINIT_PATH falls back to
/etc/init.d, but nothing guarantees that the path is created for the
test.
- test: deny-list TEST-08-INITRD.
Upstream already disables this: https://github.com/systemd/systemd/pull/28813.
It makes sense for us to as well, because we don't run systemd in the
initrd.
- debian/systemd.install: do not install pcrlock.d on i386.
We don't build this stuff on i386.
- debian/extra: use a dropin to configure Nice=-1 on systemd-journald.service.
It is preferred that we override units with dropins like this, rather
than patching the original. This has no functional change.
- test: skip failing test-execute tests in LXC.
These are hopefully temporary workarounds so that we can figure out the
root cause in either upstream systemd or LXC.
* Dropped changes, fixed upstream:
- Drop test-install-all-necessary-units-generators-for-LVM-on-De.patch.
Applied upstream: https://github.com/systemd/systemd-stable/commit/b1dba6bcaa
- Drop firstboot-remove-etc-localtime-on-reset.patch.
Applied upstream: https://github.com/systemd/systemd-stable/commit/1d1b1fa25b
* Dropped changes, replaced with new approach:
- d/p/test-increase-QEMU_MEM-for-some-tests.patch:
Increase QEMU_MEM for some tests to improve success rate
* Dropped changes, included in Debian:
- debian/tests/control: add Depends: mdadm lvm2 for TEST-64-UDEV-STORAGE
- debian/tests/upstream: drop blacklist support.
- test-skip-tests-for-unsupported-localectl-features.patch:
skip tests for unsupported localectl features
* New changes:
- debian/tests/upstream: export QEMU_MEM="1024M" for all tests
- Revert "Drop debian/UBUNTU-src-test-test-execute.c-Skip-parts-of-test-execute-in-con.patch"
- debian/systemd.links: mask systemd-gpt-auto-generator by default (LP: #2046459)
Re-ship the generator so that it can be used if needed, but mask the
generator so that it remains disabled by default.
- debian/systemd.install: exclude files that are not built for i386
- debian/systemd.manpages: do not ship sd-bsod manpages on i386
- debian/tests/control: only install systemd-boot-efi for supported arches
.
systemd (255.2-3) sid; urgency=medium
.
* Cherry-pick fixes for upstream integration tests.
Fixes TEST-07-PID1, TEST-08-INITRD (skip), TEST-26-SYSTEMCTL and
TEST-75-RESOLVED.
* Add explicit Build-Depends on debhelper (>= 13.11.6)
This ensures we have a recent enough version of dh_installsystemd that
supports service files in /usr/lib/.
* test: deny-list TEST-13-NSPAWN.
The default ram size of 1024M for qemu virt is not sufficient
to make the test pass reliably on Debian sid/trixie.
Disable the test for now until this has been addressed in debci:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059840
.
systemd (255.2-2) unstable; urgency=medium
.
* udev: mips does not install dmi_memory_id and its rules
.
systemd (255.2-1) unstable; urgency=medium
.
* New upstream version 255.2
* Drop resolved-actually-check-authenticated-flag-of-SOA-transac.patch,
merged upstream
.
systemd (255.1-3) unstable; urgency=medium
.
* Upload to unstable
* Fix installation of dmi_memory_id on i386 and x32
* Explicitly disable bootloader for stage1 build.
This ensures that the stage1 build is not broken in a tainted build
environment.
* Mark missing man pages from stage1 build
.
systemd (255.1-2) experimental; urgency=medium
.
[ Michael Biebl ]
* Upgrade the Breaks to Conflicts for the systemd-ukify package split.
This avoids potential loss of the /usr/lib/systemd/ukify compat symlink
for upgrades from bookworm-backports.
* Update package description of libnss-myhostname to use the correct IPv4
address (Closes: #1057953)
* resolved: actually check authenticated flag of SOA transaction.
Patch cherry-picked from upstream Git.
(CVE-2023-7008, Closes: #1059278)
* Explicitly disable ukify for stage1 builds
* Enable dh-exec for systemd.manpages and udev.install.
This enables files to be installed specific to certain architectures or
build profiles. Unfortunately for systemd.manpages this requires to add a
debian/tmp/ prefix to all files.
See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053834#46
* Restrict pcr/tpm2 related files to UEFI architectures.
Mirrors the python3-pyelftools [amd64 i386 arm64 armhf riscv64]
Build-Depends.
* Install dmi_memory_id and its udev rules file only on dmi architectures.
* Fix stage1 profile build
.
[ Helmut Grohne ]
* Restore diverted symlinks in systemd-sysv.postinst that may have been lost
due to /usr-merge (Closes: #1057220)
.
systemd (255.1-1) experimental; urgency=medium
.
[ Luca Boccassi ]
* Drop pkgconfig-keep-unmerged-paths-for-udevdir.patch, no longer needed
* New upstream version 255.1
* Refresh patches
.
[ Michael Biebl ]
* autopkgtest: install systemd-boot-efi for upstream suite.
TEST-70-TPM2 (specifically test/units/testsuite-70.pcrlock.sh) requires
the EFI stub files from /usr/lib/systemd/boot/efi/.
* test: skip tests for unsupported localectl features.
Update the upstream test suite to skip tests for unsupported localectl
features in Debian. Fixes TEST-73-LOCALE.
Thanks to Nick Rosbrook
* Update symbol versions for the final 255 release
* Install systemd and udev files explicitly without duplicates.
Stop making systemd and udev "catch-all" packages and removing duplicate
files in debian/rules by compiling a list of files that are installed by
other systemd binary packages. This approach no longer works reliably
if we have arch "all" binary packages and we do a partial type "any" build.
Instead, list all files that are installed in systemd and udev
explicitly in .install and .manpages.
* Mark usr/lib/sysctl.d/50-pid-max.conf as arch specific.
It's only installed by Meson if cc.sizeof('long') > 4.
See https://wiki.debian.org/ArchitectureSpecificsMemo
* Fix arch "all" builds.
Files handled by debian/rules and dh-exec are not understood by
dh_missing. So mark those as not-installed.
See man dh_missing and
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=831786
* Install standalone binaries using dh-exec
* Print empty directories
dh_missing will not fail on uninstalled (empty) directories.
So show them during build as it makes it easier to spot if all of them
are handled.
* Split ukify into a separate package named systemd-ukify.
The main motivation for splitting the tool (and its kernel-install
integration) into a separate package is the dependency on python3 and
python3-pefile, which are not suitable dependencies for the main systemd
package. (Closes: #1051981)
* Make the Conflicts against bfh-container and progress-linux-container
versioned
.
[ Nick Rosbrook ]
* debian/tests/control: add Depends: mdadm lvm2 for TEST-64-UDEV-STORAGE.
This ensures that testcase_mdadm_lvm in TEST-64-UDEV-STORAGE will run.
* debian/tests/upstream: drop blacklist support.
Upstream has been using deny-list-ubuntu-ci, rather than
blacklist-ubuntu-ci, for a while now. In Ubuntu, we use the
deny-list-upstream-ci convention too. Hence, it seems we can drop
support for the blacklist version.
Checksums-Sha1:
9d63e9bfb8a7a5591de3145655461cdd3b07c385 7186 systemd_255.2-3ubuntu1.dsc
f41e23a7982a2b3b8c94e1d05a59204ba5cde677 14864388 systemd_255.2.orig.tar.gz
38f75cbce05061b318628732aeba1917e11ec99f 227188 systemd_255.2-3ubuntu1.debian.tar.xz
2aed23d964cfef8e9f954b36289a1117abeb7c26 12280 systemd_255.2-3ubuntu1_source.buildinfo
Checksums-Sha256:
0c81498a897f99b8cc6ebcaf11462ae0ebcfdcc1db681762e317dadd3229ccdf 7186 systemd_255.2-3ubuntu1.dsc
ba7354a742dc9a8bb7dbeaa40cbf7cf2ca84f506d5b7ae5ab8d14c8eecb7aca0 14864388 systemd_255.2.orig.tar.gz
d41fcfc4a99b08138282d12ddcfc419031ac4cc49940e526a9a488def71b1be9 227188 systemd_255.2-3ubuntu1.debian.tar.xz
5bb535484774a0ef871ac447d910918e637a07c0bead101aa56329f8779fc50a 12280 systemd_255.2-3ubuntu1_source.buildinfo
Files:
e9fb426c783f5fd577761bdbd22f3edf 7186 admin optional systemd_255.2-3ubuntu1.dsc
44b4a5e344b8deadaf4396556c6cf6da 14864388 admin optional systemd_255.2.orig.tar.gz
e78a2243648895c82221e05b1ecf5f25 227188 admin optional systemd_255.2-3ubuntu1.debian.tar.xz
27b86a09b0c9c7e845cbf74dfc30fb08 12280 admin optional systemd_255.2-3ubuntu1_source.buildinfo
Original-Maintainer: Debian systemd Maintainers <pkg-systemd-maintainers at lists.alioth.debian.org>
More information about the noble-changes
mailing list