Luca Boccassi
67dfbe021c
util: add keyring_describe helper and move to basic
...
So that it can be used from libsystemd. No external dependencies.
2024-06-06 11:39:56 +01:00
Luca Boccassi
0bec281d29
Merge pull request #33198 from keszybz/update-distro-hash
...
Add helper script to update distro packaging hashes
2024-06-06 10:22:15 +01:00
Zbigniew Jędrzejewski-Szmek
531e0f5481
mkosi: update fedora commit reference
...
* 1f94b56cee Partially backport PR #33016 to fix crashes in KDE 6.3.0
2024-06-06 10:02:23 +02:00
Zbigniew Jędrzejewski-Szmek
7d3cc45a53
mkosi: update debian commit reference
...
* 5b9607385d debian/tests/storage: without scsi_debug, skip test
* 8a195a6327 debian/extra: use a dropin to configure Nice=-1 on systemd-journald.service
* 5436d49288 debian/extra: use a drop-in resolved.conf to configure Cache=no-negative
* 596a99d2d3 debian/extra: set ManagedOOMSwap=auto on -.slice
* 07ba81b14d LimitCORE: restore default hard limit to infinity
* df3a9a91e8 Restart managers on libc-upgrade dpkg trigger
2024-06-06 10:02:23 +02:00
Zbigniew Jędrzejewski-Szmek
2f3ae702a1
mkosi: set -o nounset for scripts
...
Those scripts are written with the expectation that all input variables are set
and will not behave correctly if something is ommitted. In particular, the
non-chrooted scripts (mkosi.clean, mkosi.sync) might wreak havoc if called
without the full environment.
2024-06-06 10:02:23 +02:00
Zbigniew Jędrzejewski-Szmek
35f6e5c327
tools/update-distro-hash: add a helper script to sync submodule
2024-06-06 10:02:23 +02:00
hanjinpeng
8f1bf5613d
po: update and correction translation (Chinese (Traditional) (zh_TW))
2024-06-06 09:55:26 +09:00
Daan De Meyer
60a20eff80
Revert "mkosi: Don't install wireguard-tools on Debian"
...
wireguard-tools was added back to debian testing.
This reverts commit 8c335463d9
2024-06-05 19:36:05 +02:00
Daan De Meyer
a743cacd7b
mkosi: Disable scratch device by default
...
We include scratch space in the rootfs image itself so we don't have
need for the scratch device so let's disable it by default.
2024-06-05 18:59:41 +02:00
Luca Boccassi
e5058834cf
Merge pull request #33197 from poettering/cryptsetup-fallback-tweak
...
cryptsetup: unset an unlock path on each unlock retry
2024-06-05 17:41:55 +01:00
Daan De Meyer
1a48d8549f
core: Fix CPUQuotaPerSecUSec unit file serialization
...
CPUQuota= can deal with float percentages perfectly fine these days
(up to two places after the dot), so let's take that into account
when serializing the value to the transient unit file so we don't lose
precision when specifying e.g. "CPUQuota=0.5%".
2024-06-05 16:50:36 +02:00
Kamil Szczęk
80313c5577
json: use secure un{base64,hex}mem for sensitive variants
...
While tracing a LUKS code path in homework, I've noticed that we don't
erase buffers when doing unbase64 or unhex on JSON variants, even if the
variant is marked as sensitive.
2024-06-05 14:44:58 +01:00
Yu Watanabe
8b439af2c0
network/route: fix condition in route_can_update()
...
An existing route with lifetime can be always updated with a new
finite lifetime. As the comment in the code says, we cannot disable the
lifetime. So, the condition must be '==', rather than '!='.
Fixes #33210 .
2024-06-05 13:04:52 +01:00
hanjinpeng
3523d28b97
po: Translated using Weblate (Chinese (Simplified) (zh_CN))
...
Currently translated at 100.0% (233 of 233 strings)
Co-authored-by: hanjinpeng <hanjinpeng127@gmail.com>
Translate-URL: https://translate.fedoraproject.org/projects/systemd/main/zh_CN/
Translation: systemd/main
2024-06-05 18:04:45 +09:00
Luca Boccassi
d494d6688d
cryptsetup: check keyring cache passphrase at least once
...
The first try will be on the TPM2, so in practice this was always skipped
as it happens only on the first try. Use a different bool to track this.
2024-06-04 23:18:13 +01:00
Lennart Poettering
64f2e1ff05
cryptsetup: unset an unlock path on each unlock retry
...
If we couldn't unlock a device with the chosen unlock path, let's not
fall back to the lowest one right away, but only flush out one path, and
try the next.
Fixes : #30425
Follow-up-for: #30185
Alternative-to: #33183
2024-06-04 20:42:19 +01:00
David Seifert
80159df741
libpasswdqc: add missing #include "dlfcn-util.h"
2024-06-04 18:29:12 +01:00
Luca Boccassi
35c562a049
Merge pull request #33199 from DaanDeMeyer/optimization
...
mkosi: Build with -O0 by default
2024-06-04 16:37:53 +01:00
Edson Juliano Drosdeck
3cffbd37c0
Fix key toggle touchpad and programmable buttom for Positivo N14AP7
2024-06-04 15:23:30 +01:00
Daan De Meyer
0c639a9010
mkosi: Stop sourcing /etc/makepkg.conf
...
We don't need this anymore since we now just do delayed evaluation
of $CFLAGS in /etc/makepkg.conf and it imports $CFLAGS into the
script environment which messes everything up.
2024-06-04 16:03:45 +02:00
Daan De Meyer
f57cd0afbf
mkosi: Build with -O0 by default
...
This was accidentally removed in https://github.com/systemd/systemd/pull/33193
2024-06-04 15:53:06 +02:00
Luca Boccassi
0af5114534
Merge pull request #33193 from DaanDeMeyer/fortify
...
mkosi: Disable FORTIFY_SOURCE when building without optimizations or with sanitizers
2024-06-04 13:38:00 +01:00
Luca Boccassi
b1213ef738
Merge pull request #33192 from DaanDeMeyer/packaging
...
mkosi: Various opensuse improvements
2024-06-04 11:32:27 +01:00
Daan De Meyer
d56cf40dd7
mkosi: Build Arch Linux image with -D_FORTIFY_SOURCE=3
...
_FORTIFY_SOURCE requires optimizations to be enabled so we set -O2
as well.
2024-06-04 12:27:29 +02:00
Daan De Meyer
cbbffa8355
mkosi: Drop $OPTIMIZATION variable
...
Let's instead just use $CFLAGS to override the optimization level.
2024-06-04 12:20:19 +02:00
Daan De Meyer
98a0e73b45
mkosi: Use __meson_verbose in opensuse build script
...
OpenSUSE Tumbleweed now ships meson 1.4.0 which ships the new
__meson_verbose macro.
2024-06-04 11:04:46 +02:00
Daan De Meyer
a16c186667
mkosi: Use meson_extra_configure_options for opensuse
...
This is now available so let's use it.
2024-06-04 11:00:53 +02:00
Daan De Meyer
21b338de4c
mkosi: Update opensuse commit to latest
2024-06-04 11:00:38 +02:00
Luna Jernberg
e1c3ac1f67
po: Translated using Weblate (Swedish)
...
Currently translated at 100.0% (233 of 233 strings)
Co-authored-by: Luna Jernberg <bittin@reimu.nl>
Translate-URL: https://translate.fedoraproject.org/projects/systemd/main/sv/
Translation: systemd/main
2024-06-04 16:11:56 +09:00
Pierre GRASSER
32aaf60e83
po: Translated using Weblate (French)
...
Currently translated at 100.0% (233 of 233 strings)
Co-authored-by: Pierre GRASSER <pierre.grasser@proton.me>
Translate-URL: https://translate.fedoraproject.org/projects/systemd/main/fr/
Translation: systemd/main
2024-06-04 16:11:56 +09:00
Luca Boccassi
64531ad1ac
Merge pull request #33173 from yuwata/test-network
...
test-network: several cleanups
2024-06-03 22:48:11 +01:00
Yu Watanabe
dadf2bd4f4
test-network: introduce a .network file to protect existing interfaces
2024-06-03 18:41:26 +01:00
Yu Watanabe
653c38b3eb
test-network: show PID and Invocation ID of networkd
...
Then, we can easily find relevant journal entry on failure.
This is especially useful when the test is running with --no-journal.
2024-06-03 18:41:26 +01:00
Yu Watanabe
6fec598290
test-network: flush stream buffer and journals before/after running test
2024-06-03 18:41:26 +01:00
Yu Watanabe
22fa8f6724
test-network: generate debugging logs of networkd-persistent-storage.service
2024-06-03 18:41:26 +01:00
Luca Boccassi
80a3eb5ab5
test: disable TEST-21-DFUZZER in mkosi, as it is very flacky
...
Can be re-enabled once https://github.com/systemd/systemd/issues/33156
is solved
2024-06-03 19:37:17 +02:00
Luca Boccassi
d6243ebedd
journald: enable persistent FD Store to fix logging during soft-reboot
...
A unit with StandardOutput=journal (the default) will get its stdout/stderr sockets
disconnected when journald stops, as the file descriptors on journald's side are
not preserved (it works on restart, as the FD Store keeps them open during restarts).
Set FileDescriptorStorePreserve=yes so that the journal FD's stay open during a soft
reboot, and applications don't get broken stdout/stderr.
2024-06-03 16:30:54 +01:00
Heran Yang
4762cf0b55
docs: fix escaped $ in CGroup Interface
2024-06-03 16:30:06 +01:00
Luca Boccassi
88c2ef1f75
Revert "test: Run end.sh when running integration tests with mkosi"
...
It seems this introduced a regression in the CentOS CI;
14:25:58 FAILED TASKS:14:25:58 -------------
14:25:58 TEST-03-JOBS
14:25:58 TEST-52-HONORFIRSTSHUTDOWN
14:25:58 TEST-63-PATH
Revert for now.
This reverts commit da3c6fc553
2024-06-03 16:29:23 +01:00
Daan De Meyer
954019d211
Merge pull request #33146 from DaanDeMeyer/clang
...
mkosi: Add support for building with LLVM
2024-06-03 15:43:31 +02:00
Daan De Meyer
c45ce65f2f
mkosi: Allow using $MESON_VERBOSE to enable verbose meson output
2024-06-03 14:06:19 +02:00
Daan De Meyer
9ee96e7382
mkosi: Build Fedora Rawhide sanitizers job with LLVM
...
More coverage and clang tends to be better at sanitizers than gcc.
2024-06-03 13:47:37 +02:00
Daan De Meyer
aacf9527d6
mkosi: Build with --werror in CI
2024-06-03 13:47:37 +02:00
Daan De Meyer
05895728e6
mkosi: Allow clearing meson cache with WIPE=1
...
meson does not support changing compilation flags on the fly, when
doing so, the entire build directory has to be cleared explicitly, so
let's add a way to do that by setting WIPE=1.
Let's also allow developers to specify their own meson options via
$MESON_OPTIONS.
2024-06-03 13:47:33 +02:00
dependabot[bot]
988b837df8
build(deps): bump redhat-plumbers-in-action/differential-shellcheck
...
Bumps [redhat-plumbers-in-action/differential-shellcheck](https://github.com/redhat-plumbers-in-action/differential-shellcheck ) from 5.1.2 to 5.3.0.
- [Release notes](https://github.com/redhat-plumbers-in-action/differential-shellcheck/releases )
- [Changelog](https://github.com/redhat-plumbers-in-action/differential-shellcheck/blob/main/docs/CHANGELOG.md )
- [Commits](52bab0caa5...60c9f2b924
2024-06-03 13:07:26 +02:00
dependabot[bot]
de5772c21d
build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.3.1 to 2.3.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](0864cf1902...dc50aa9510
2024-06-03 13:06:57 +02:00
dependabot[bot]
91c7d68d30
build(deps): bump softprops/action-gh-release from 2.0.4 to 2.0.5
...
Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release ) from 2.0.4 to 2.0.5.
- [Release notes](https://github.com/softprops/action-gh-release/releases )
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md )
- [Commits](9d7c94cfd0...69320dbe05
2024-06-03 13:06:03 +02:00
dependabot[bot]
89b49c16ef
build(deps): bump actions/checkout from 4.1.2 to 4.1.6
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.2 to 4.1.6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](9bb56186c3...a5ac7e51b4
2024-06-03 13:04:50 +02:00
Daan De Meyer
51ce4c7864
mkosi: Allow setting custom CFLAGS and LDFLAGS
2024-06-03 12:58:16 +02:00
Daan De Meyer
0ccbd22f04
mkosi: Fix comment
2024-06-03 12:58:16 +02:00
