system/systemd
system/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd synced 2024-10-15 12:34:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
55784 commits 3 branches 390 tags 586 MiB
Commit graph

171 commits

Author SHA1 Message Date
Frantisek Sumsal ab9760b846 github: point to "tags" instead of "releases" in systemd-stable 
since we don't do releases there.

Mentioned in https://github.com/systemd/systemd/issues/22230#issue-1111991271.
 2022-01-24 06:53:43 +09:00
Evgeny Vereshchagin 881b152660 ci: point mkosi to commit where "testing" is fixed 
https://github.com/systemd/mkosi/pull/886
 2022-01-18 10:30:33 +00:00
Evgeny Vereshchagin cd7b60a7ed
Merge pull request #22142 from evverx/libxkbcommon-dev 
ci: get Coverity and CodeQL to analyze the "libxkbcommon" part
 2022-01-18 00:15:56 +03:00
dependabot[bot] a68b244399 build(deps): bump github/codeql-action from 1.0.26 to 1.0.27 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1.0.26 to 1.0.27.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](5f53256358...cd783c8a29)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-01-17 09:12:55 +03:00
Evgeny Vereshchagin 992d7f341f ci: trigger CodeQL on PRs when its dependencies change 2022-01-17 01:59:55 +00:00
Evgeny Vereshchagin 54ed8884d3 ci: get Coverity and CodeQL to analyze the "libxkbcommon" part 
By analogy with https://github.com/systemd/systemd/pull/22138, to get
the static analyzers to analyze that part of code that package should
be installed there as well.
 2022-01-16 15:33:07 +00:00
Evgeny Vereshchagin e8f93a60a2 ci: install libbpf-dev in the unit_tests workflow 
Those dependencies are also used by Coverity and Codeql so
it should be installed there to get them to analyze that code.

Judging by https://github.com/systemd/systemd/pull/22137 it seems
to be working.
 2022-01-16 13:13:34 +00:00
Evgeny Vereshchagin 9e360c6bf1 ci: switch to requirements.txt in the unit tests workflow 2022-01-14 10:29:23 +00:00
Evgeny Vereshchagin 007721e939 ci: turn meson warnings into errors 2022-01-14 01:53:37 +03:00
Evgeny Vereshchagin 4e1ab496ae {build|unit}-test: show meson-log.txt when meson fails 
to make it easier to figure out why it fails.

For example in https://github.com/systemd/systemd/runs/4799774735?check_suite_focus=true
it failed with
```

meson.build:1003:8: ERROR: Command "/usr/bin/clang -print-targets" failed with status 1.

A full log can be found at /home/runner/work/systemd/systemd/build/meson-logs/meson-log.txt
Error: Process completed with exit code 1.
```
and it wasn't clear what exactly happened there.
 2022-01-13 20:27:25 +09:00
Luca Boccassi c9b1efdf14
Merge pull request #21990 from keszybz/indentation-and-comments 
Indentation and comments
 2022-01-04 00:18:10 +00:00
Zbigniew Jędrzejewski-Szmek b36c5e9587 various: fix three spelling issues found by fossies 2022-01-03 21:16:06 +01:00
Frantisek Sumsal 3fd864aea7 ci: bump mkosi to v12 with libsolv workaround 
Replaces: https://github.com/systemd/systemd/pull/21574
Related:
    * https://github.com/systemd/mkosi/issues/861
    * https://github.com/systemd/mkosi/pull/878
 2022-01-03 15:56:22 +03:00
Jan Janssen bbbf1c3d32 ci: Test efi binaries for section table gaps 2022-01-02 20:05:58 +01:00
dependabot[bot] b774de1883 build(deps): bump meson from 0.60.2 to 0.60.3 in /.github/workflows 
Bumps [meson](https://github.com/mesonbuild/meson) from 0.60.2 to 0.60.3.
- [Release notes](https://github.com/mesonbuild/meson/releases)
- [Commits](https://github.com/mesonbuild/meson/compare/0.60.2...0.60.3)

---
updated-dependencies:
- dependency-name: meson
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-01-01 17:40:39 +03:00
dependabot[bot] 987202b2c1 build(deps): bump github/super-linter from 4.8.4 to 4.8.5 
Bumps [github/super-linter](https://github.com/github/super-linter) from 4.8.4 to 4.8.5.
- [Release notes](https://github.com/github/super-linter/releases)
- [Changelog](https://github.com/github/super-linter/blob/main/docs/release-process.md)
- [Commits](563be7dc55...b8641364ca)

---
updated-dependencies:
- dependency-name: github/super-linter
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-12-27 12:33:34 +03:00
Evgeny Vereshchagin bfa6bd1be0 ci: replace apt-key with signed-by 
to limit the scope of the key to apt.llvm.org only.

This is mostly inspired by https://blog.cloudflare.com/dont-use-apt-key/
 2021-12-26 15:38:42 +00:00
Frantisek Sumsal 298cff6171 ci: test build with supported cryptolibs to some degree 
Let's assign a specific -Dcryptolib= value to each job to have at least
some coverage for all supported cryptolibs without unnecessarily
multiplying the test matrix.

Should provide coverage for #21880.
 2021-12-24 16:24:16 +01:00
Frantisek Sumsal 7b55f29797 ci: drop build test with -O2, since it's covered by -O3 tests 2021-12-24 16:24:16 +01:00
dependabot[bot] 219c1dc780 build(deps): bump actions/upload-artifact from 2.3.0 to 2.3.1 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](da838ae959...82c141cc51)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-12-20 13:14:23 +03:00
dependabot[bot] fdae4504c7 build(deps): bump actions/upload-artifact from 2.2.4 to 2.3.0 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2.2.4 to 2.3.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](27121b0bdf...da838ae959)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-12-13 14:45:19 +03:00
Luca Boccassi a0630d46a5
Merge pull request #21749 from nabijaczleweli/bashpsko 
Shebang bash via env
 2021-12-13 11:11:39 +00:00
dependabot[bot] 1805759ea0 build(deps): bump github/codeql-action from 1.0.25 to 1.0.26 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1.0.25 to 1.0.26.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](546b30f35a...5f53256358)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-12-13 13:18:55 +03:00
наб f1e6f93372
Change all fixed-path bash shebangs to /u/b/env bash outside test/ 2021-12-12 21:13:50 +01:00
Jan Janssen aa22e69856 ci: Build test with different linkers 2021-12-11 11:03:29 +01:00
Frantisek Sumsal f7e3951d41 ci: run mkosi in a wrapper 
So we can mitigate (to some degree) the reoccurring "dissect timeout"
issue:

```
Run sudo python3 -m mkosi boot systemd.unit=mkosi-check-and-shutdown.service !quiet systemd.log_level=debug systemd.log_target=console udev.log_level=info systemd.default_standard_output=journal+console
Failed to dissect image '/home/runner/work/systemd/systemd/image.raw': Connection timed out
Error: Process completed with exit code 1.
```
 2021-12-10 10:25:45 +01:00
Frantisek Sumsal 24acd4064e ci: check for failed services after boot 
This should, hopefully, catch issues like systemd/systemd#21671
automagically.
 2021-12-10 10:25:43 +01:00
Frantisek Sumsal efea45f19c ci: ignore FIXME alerts in the CodeQL Action 
We already track them in LGTM and it unnecessarily clutters the Security
page.
 2021-12-08 12:42:28 +00:00
Frantisek Sumsal 72af88f231 github: mention the systemd-devel ML in the new issue tab 2021-12-07 16:28:56 +01:00
Frantisek Sumsal a3f0533ffc ci: pack-ify our custom CodeQL queries and enable them in Actions 
Unlike LGTM, the CodeQL Action requires the custom queries to have their
own qlpack.yml file, so let's provide one.
 2021-12-07 14:57:09 +01:00
Frantisek Sumsal a6319961c9 ci: run the CodeQL action also when its configuration changes 
Just to make sure we didn't break anything.
 2021-12-07 14:45:06 +01:00
Frantisek Sumsal 64f625a212 ci: sync the list of CodeQL queries with LGTM 2021-12-07 14:45:04 +01:00
Evgeny Vereshchagin 4997d1b965 ci: pin python dependencies and let Dependabot keep track of them 2021-12-07 09:08:26 +00:00
dependabot[bot] 7285145dfc build(deps): bump github/codeql-action from 1.0.24 to 1.0.25 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1.0.24 to 1.0.25.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](e095058bfa...546b30f35a)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-12-07 02:20:53 +03:00
Frantisek Sumsal ab9e3bfef6 ci: consider cryptolib in the group identifier 
otherwise we end up with more than one job with the same identifier in
one run, causing some of them to get cancelled unexpectedly.

A quick follow-up to 85bd394df5.
 2021-12-03 20:25:06 +00:00
Frantisek Sumsal 9371d44afe ci: install libbpf 2021-12-03 16:30:56 +01:00
Zbigniew Jędrzejewski-Szmek 85bd394df5 ci: expand the test framework to cover openssl 2021-12-02 11:31:20 +01:00
dependabot[bot] 68181cf8a7 build(deps): bump github/codeql-action from 1.0.23 to 1.0.24 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1.0.23 to 1.0.24.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](a627e9fa50...e095058bfa)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-25 05:13:11 +03:00
dependabot[bot] d59d6cc154 build(deps): bump github/codeql-action from 1.0.22 to 1.0.23 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1.0.22 to 1.0.23.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](5581e08a65...a627e9fa50)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-18 01:17:19 +03:00
Evgeny Vereshchagin 0da6973c17 ci: switch to weekly dependabot updates 
Apparently some dependencies get updated much more often
than I would have exepected.

It can always be triggered manually at https://github.com/systemd/systemd/network/dependencies
if there are any urgent updates
 2021-11-17 12:16:57 +00:00
dependabot[bot] eb37ed701b build(deps): bump github/super-linter from 4.8.3 to 4.8.4 
Bumps [github/super-linter](https://github.com/github/super-linter) from 4.8.3 to 4.8.4.
- [Release notes](https://github.com/github/super-linter/releases)
- [Changelog](https://github.com/github/super-linter/blob/main/docs/release-process.md)
- [Commits](7d5dc989c5...563be7dc55)

---
updated-dependencies:
- dependency-name: github/super-linter
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-17 10:59:41 +00:00
Evgeny Vereshchagin 7e7e31521a ci: run codeql on PRs from Dependabot 
To make sure PRs like https://github.com/systemd/systemd/pull/21409
don't break anything.
 2021-11-17 10:14:33 +00:00
Evgeny Vereshchagin e6ace91eb7 ci: pin mkosi to SHAs as well 2021-11-15 20:52:51 +00:00
dependabot[bot] f356ad7cf8 build(deps): bump github/super-linter from 4.8.1 to 4.8.3 
Bumps [github/super-linter](https://github.com/github/super-linter) from 4.8.1 to 4.8.3.
- [Release notes](https://github.com/github/super-linter/releases)
- [Changelog](https://github.com/github/super-linter/blob/main/docs/release-process.md)
- [Commits](fd9c4286d3...7d5dc989c5)

---
updated-dependencies:
- dependency-name: github/super-linter
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-15 18:20:56 +00:00
Evgeny Vereshchagin 510afa460a ci: tighten codeql and labeler even more 
by moving the read permissions to the top level and
granting additional permissions to the specific jobs.
It should help to prevent new jobs that could be added
there eventually from having write access to resources they
most likely would never need.
 2021-11-14 10:51:07 +00:00
Evgeny Vereshchagin b3a1fb795a ci: LGPLv2+ify dependapot config and codeql action 2021-11-14 09:48:22 +00:00
Evgeny Vereshchagin e44a47d186 ci: pin the codeql action to SHAs 
It's a follow-up to https://github.com/systemd/systemd/pull/21316.

Judging by https://github.com/evverx/systemd/pull/36, Dependabot
supports their release cycle
 2021-11-14 10:42:04 +00:00
Evgeny Vereshchagin e7a966915d ci: mimic the "restricted" mode 
Judging by https://docs.github.com/en/actions/security-guides/automatic-token-authentication#permissions-for-the-github_token
it should be enough to grant the "read contents" permission to
most of our actions. The "read metadata" permission is set impliciclty
somewhere and can't be set via the "permissions" setting:
```
The workflow is not valid. .github/workflows/linter.yml (Line: 14, Col: 3): Unexpected value 'metadata'
```
 2021-11-14 10:41:06 +00:00
Evgeny Vereshchagin 311956ccd9 ci: tighten several GHActions a bit more 
with https://docs.github.com/en/actions/learn-github-actions/workflow-syntax-for-github-actions#permissions
 2021-11-13 22:17:21 +03:00
dependabot[bot] 5ae4964028 build(deps): bump actions/checkout from 2 to 2.4.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 2.4.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...ec3a7ce113134d7a93b817d10a8272cb61118579)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-13 16:45:32 +03:00