-
-
Notifications
You must be signed in to change notification settings - Fork 104
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
V254 stable batch #315
V254 stable batch #315
Commits on Sep 6, 2023
-
vconsole: support KEYMAP=kernel for preserving kernel keymap
Follow-up for #26089 and #28505 Currently, if default-keymap is not empty, there's no way to ask vconsole-setup to retain the kernel keymap. Let's accept a special value "kernel" for that purpose. Addresses the problem mentioned in systemd/systemd#28505 (comment) (cherry picked from commit ef7f5ba)
Configuration menu - View commit details
-
Copy full SHA for 699666e - Browse repository at this point
Copy the full SHA 699666eView commit details -
tree-wide: Fix -Wmaybe-uninitialized compilation warnings
(cherry picked from commit 7e48f3b)
Configuration menu - View commit details
-
Copy full SHA for 550cd14 - Browse repository at this point
Copy the full SHA 550cd14View commit details -
bootctl: don't advertise systemd-efi-options in --help/man anymore
The command is deprecated, as per NEWS of 254. Let's go one step further and remove it from the help text and man page, so that people are not inspired to use it at this time anymore. This is how we usually have done this before: remove it from visibility, but support it for a while still. (cherry picked from commit 0de0ed6)
Configuration menu - View commit details
-
Copy full SHA for 9ab0cc6 - Browse repository at this point
Copy the full SHA 9ab0cc6View commit details -
man: let's tone down the recommendation to use Type=exec a bit
This is a follow-up for #28596. I think the suggestion to use Type=exec uses too strong wording: Type=exec has non-trivial drawbacks over Type=simple, and they deserve to be mentioned. Hence drop the <emphasis> and turn this around so that Type=exec is *recommended*, but Type=simple is not expressly discouraged, because there are plenty reasons to use it. Add a brief discussion where Type=simple might be preferable. Also, fix the outright unruth that Type=exec was the "simplest and fastest", because it certainly is a lot, but not that. (cherry picked from commit e5e900e)
Configuration menu - View commit details
-
Copy full SHA for 045ff3b - Browse repository at this point
Copy the full SHA 045ff3bView commit details -
test: testsuite-35.sh needs manual/test-session-properties to be inst…
…alled on SUSE (cherry picked from commit 372d40f)
Configuration menu - View commit details
-
Copy full SHA for 9f0efc2 - Browse repository at this point
Copy the full SHA 9f0efc2View commit details -
coredump: explicitly document that in order to process a coredump we …
…have to write it to disk first Prompted by: #28740 (cherry picked from commit 85ec1b6)
Configuration menu - View commit details
-
Copy full SHA for a5d9940 - Browse repository at this point
Copy the full SHA a5d9940View commit details -
file-io: let's use offsetof() rather than sizeof() for determining EF…
…I_FILE_INFO prefix size The gnu-efi definition of the struct uses [1], our local one [0] to size the filename array. Let's avoid an ambiguity and use offsetof() so that this difference doesn't matter. Also, doing it this way makes very clear to the read what happens here: it's a structure with a variable size suffix. (cherry picked from commit 490b448)
Configuration menu - View commit details
-
Copy full SHA for 5f72468 - Browse repository at this point
Copy the full SHA 5f72468View commit details -
We must go through finish, to undo the destruction of the final elements of the iovw properly. (cherry picked from commit 946dc7c)
Configuration menu - View commit details
-
Copy full SHA for 10304c2 - Browse repository at this point
Copy the full SHA 10304c2View commit details -
vconsole-setup: use "@kernel" rather than "kernel" as special string …
…to leave keymap untouched This is a magic string, and we should avoid stepping into the territory of normal keymap names with that, given that users can pick names otherwise freely. Hence, prefix the name with a special char to avoid any namespace issues. Follow-up for: #28660 (cherry picked from commit bf77d59)
Configuration menu - View commit details
-
Copy full SHA for 470be7a - Browse repository at this point
Copy the full SHA 470be7aView commit details -
test-mountpoint-util: /root might be mounted
On openSUSE with BTRFS, /root has to be mounted as dedicated subvolume to avoid restoring it when a rollback of the system happens. (cherry picked from commit 487ae08)
Configuration menu - View commit details
-
Copy full SHA for 5c3fa0c - Browse repository at this point
Copy the full SHA 5c3fa0cView commit details -
file-io: Fix copying sparse files
This change makes sure a data copy using copy_bytes() does not exceed the max_bytes value when using COPY_HOLES and max_bytes stops before the next data section. (cherry picked from commit c2dfcbd)
Configuration menu - View commit details
-
Copy full SHA for 7bfe3c6 - Browse repository at this point
Copy the full SHA 7bfe3c6View commit details -
man: don't claim BindPaths= file systems would remain "in memory", th…
Configuration menu - View commit details
-
Copy full SHA for 9d87299 - Browse repository at this point
Copy the full SHA 9d87299View commit details -
Configuration menu - View commit details
-
Copy full SHA for dbda800 - Browse repository at this point
Copy the full SHA dbda800View commit details -
units: introduce systemd-tmpfiles-setup-dev-early.service
This makes tmpfiles, sysusers, and udevd invoked in the following order: 1. systemd-tmpfiles-setup-dev-early.service Create device nodes gracefully, that is, create device nodes anyway by ignoring unknown users and groups. 2. systemd-sysusers.service Create users and groups, to make later invocations of tmpfiles and udevd can resolve necessary users and groups. 3. systemd-tmpfiles-setup-dev.service Adjust owners of previously created device nodes. 4. systemd-udevd.service Process all devices. Especially to make block devices active and can be mountable. 5. systemd-tmpfiles-setup.service Setup basic filesystem. Follow-up for b42482a. Fixes #28653. Replaces #28681 and #28732. (cherry picked from commit bb7f485)
Configuration menu - View commit details
-
Copy full SHA for 4e639ca - Browse repository at this point
Copy the full SHA 4e639caView commit details -
Configuration menu - View commit details
-
Copy full SHA for 9d0b12e - Browse repository at this point
Copy the full SHA 9d0b12eView commit details -
man: kernel-install(8) add uki.conf in FILES & add ukify(1) in SEE ALSO
Signed-off-by: Rahil Bhimjiani <rahil3108@gmail.com> (cherry picked from commit f5263dd)
Configuration menu - View commit details
-
Copy full SHA for 0baa486 - Browse repository at this point
Copy the full SHA 0baa486View commit details -
Configuration menu - View commit details
-
Copy full SHA for f2fad15 - Browse repository at this point
Copy the full SHA f2fad15View commit details -
dissect-image: Fix mount_point_is_available()
We call dir_is_empty() to check if the directory is empty but don't take the result into account when returning from the function. (cherry picked from commit e36c621)
Configuration menu - View commit details
-
Copy full SHA for fcf1ecf - Browse repository at this point
Copy the full SHA fcf1ecfView commit details -
sysupdate: Use sector size for partition size calculations
(cherry picked from commit eeee486)
Configuration menu - View commit details
-
Copy full SHA for e624bc4 - Browse repository at this point
Copy the full SHA e624bc4View commit details -
p11kit: check the flags associated with the slot instead of flags ass…
…ociated with the token The logic around checking PKCS11 tokens (used by systemd-cryptenroll) contains a bug. The code is checking the flags field of a pkcs11 token_info structure against a set of flags defined for the pkcs11 slot_info structure. This PR changes the check so that the correct structure's flag field is being checked. (Reference to the PKCS#11 spec:http://docs.oasis-open.org/pkcs11/pkcs11-base/v2.40/os/pkcs11-base-v2.40-os.html, section CK_SLOT_INFO). (cherry picked from commit 5007942)
Configuration menu - View commit details
-
Copy full SHA for 117fa69 - Browse repository at this point
Copy the full SHA 117fa69View commit details -
core: stage /run/host/os-release with a symlink to avoid possible rac…
…e condition If someone reads /run/host/os-release at the exact same time it is being updated, and it is large enough, they might read a half-written file. This is very unlikely as os-release is typically small and very rarely changes, but it is not impossible. Bind mount a staging directory instead of the file, and symlink the file into into, so that we can do atomic file updates and close this gap. Atomic replacement creates a new inode, so existing bind mounts would continue to see the old file, and only new services would see the new file. The indirection via the directory allows to work around this, as the directory is fixed and never changes so the bind mount is always valid, and its content is shared with all existing services. Fixes systemd/systemd#28794 Follow-up for 3f37a82 (cherry picked from commit 663e275)
Configuration menu - View commit details
-
Copy full SHA for 6f28774 - Browse repository at this point
Copy the full SHA 6f28774View commit details -
manager: fix error handling after failure to set up child
exec_child() is supposed to set *exit_status when returning failure. Unfortunately, we didn't do that in two cases. The result would be: - a bogus error message "Failed at step SUCCESS spawning foo: …", - a bogus success exit status. Bugs introduced in 3909020 and ad21e54. The code is reworked to add some asserts and not set exit_status in the caller so that it's clearer (also to the compiler) that it needs to be set. (cherry picked from commit 5fa01ac)
Configuration menu - View commit details
-
Copy full SHA for 063d67f - Browse repository at this point
Copy the full SHA 063d67fView commit details -
repart: Default to swap format for swap partitions
(cherry picked from commit 973d6be)
Configuration menu - View commit details
-
Copy full SHA for 63b1a8f - Browse repository at this point
Copy the full SHA 63b1a8fView commit details -
systemd-stub: ignore EFI shell unauthenticated kernel command line if…
… we are in confidential vms (cherry picked from commit fab0eeb)
Configuration menu - View commit details
-
Copy full SHA for 154b83b - Browse repository at this point
Copy the full SHA 154b83bView commit details -
polkit: move asserts up, so that they cover all reply codepaths
(cherry picked from commit c1b2e1a)
Configuration menu - View commit details
-
Copy full SHA for 7ddbacb - Browse repository at this point
Copy the full SHA 7ddbacbView commit details -
bus-polkit: don't propagate error from polkit
An error reply from polkit is a valid case and should not be propagated as failure of async_polkit_callback(). It should only be saved here. It'll be returned by bus_verify_polkit_async() later, when it's called for the same method again. Follow-up for #26365. (cherry picked from commit 45b1c01)
Configuration menu - View commit details
-
Copy full SHA for 3f5e2f8 - Browse repository at this point
Copy the full SHA 3f5e2f8View commit details -
hostname: Make sure we pass error to bus_verify_polkit_async()
Fixes #28943 (cherry picked from commit b56ee69)
Configuration menu - View commit details
-
Copy full SHA for d38ba62 - Browse repository at this point
Copy the full SHA d38ba62View commit details -
meson: Use rsync to copy test data directories
install_subdir() does not copy symlinks but copies the file they point to. We also get a very ugly warning in the meson install output: """ Warning: trying to copy a symlink that points to a file. This will copy the file, but this will be changed in a future version of Meson to copy the symlink as is. Please update your build definitions so that it will not break when the change happens. """ Let's fix both problems at once by using rsync which does the right thing. Verified by running systemd-dissect --mtree on both the install output before and after and all the symlinks are now correctly preserved. (cherry picked from commit cc2a0d8)
Configuration menu - View commit details
-
Copy full SHA for 9a95e81 - Browse repository at this point
Copy the full SHA 9a95e81View commit details -
Revert "mount: check right before invoking /bin/umount if it makes se…
…nse" This reverts commit 1483892. As the commit says, it does not solve the race. Moreover, it introduces an regression #28410. Also, checking by `path_is_mount_point()` may trigger automount. From statx(2), > AT_NO_AUTOMOUNT > Don't automount the terminal ("basename") component of pathname > if it is a directory that is an automount point. Similar statements can be found in fstatat(2), which is used in the fallback call for statx() in glibc, and name_to_handle_at(2), which is used as the fallback when statx() failed. So, `path_is_mount_point()` may _do_ trigger automount for parent paths. That should be avoided especially on shutdown. The original issue #25527 that is 'fixed' by the commit is not serious, and should be fixed by making umount command handle path gracefully: util-linux/util-linux#2132 Fixes #28410. (cherry picked from commit e323d2e)
Configuration menu - View commit details
-
Copy full SHA for 918f6a4 - Browse repository at this point
Copy the full SHA 918f6a4View commit details -
core/mount: disable timer event source when USEC_INFINITY
Setting USEC_INFINITY to timer event source should not cause any problem. But, disabling timer event source should be preferable. [zjs: simplify the call to sd_event_source_set_enabled()] (cherry picked from commit 57d2b6a)
Configuration menu - View commit details
-
Copy full SHA for 6b1346f - Browse repository at this point
Copy the full SHA 6b1346fView commit details -
path-util: Add path_simplify_full()
Sometimes its useful to keep a trailing slash in the path so let's add path_simplify_full() and a flag to do just that. (cherry picked from commit 4541d04)
Configuration menu - View commit details
-
Copy full SHA for ff45789 - Browse repository at this point
Copy the full SHA ff45789View commit details -
parse-helpers: Add PATH_KEEP_TRAILING_SLASH
(cherry picked from commit ce60b3a)
Configuration menu - View commit details
-
Copy full SHA for 979b2ab - Browse repository at this point
Copy the full SHA 979b2abView commit details -
repart: Make sure we keep trailing slashes in ExcludeFiles=
We conditionalize behavior based on whether these paths have trailing slashes or not, so let's make sure we keep them intact. (cherry picked from commit d10eccb)
Configuration menu - View commit details
-
Copy full SHA for 562a7fd - Browse repository at this point
Copy the full SHA 562a7fdView commit details -
Configuration menu - View commit details
-
Copy full SHA for 01b7520 - Browse repository at this point
Copy the full SHA 01b7520View commit details -
tpm2-util: give PCR 6 a name too
The specs call this TCG PC Client Platform Firmware Profile Specification says this PCR is owned by the Host Platform Manufacturer, at various places. Hence let's give it that name. (cherry picked from commit b060b9a)
Configuration menu - View commit details
-
Copy full SHA for 93b886f - Browse repository at this point
Copy the full SHA 93b886fView commit details -
install: Drop install_info_may_process() from unit_file_get_default()
This currently makes unit_file_get_default() fail if the default target is transient which shouldn't make us fail to get the default unit. (cherry picked from commit 3c1c52f)
Configuration menu - View commit details
-
Copy full SHA for a6bd20e - Browse repository at this point
Copy the full SHA a6bd20eView commit details -
man: mention two more things logind does
Prompted by: #28902 (cherry picked from commit 1126841)
Configuration menu - View commit details
-
Copy full SHA for bec4bb9 - Browse repository at this point
Copy the full SHA bec4bb9View commit details -
boot: explain why we refuse to edit kernel cmdline when we do so
(cherry picked from commit c4d281f)
Configuration menu - View commit details
-
Copy full SHA for 5f09b13 - Browse repository at this point
Copy the full SHA 5f09b13View commit details -
man: Fix typo in config file example for ukify
or else it would output 'Unknown config setting [UKI] SecureBootCerificate=' or just an error outright if not overrode. (cherry picked from commit c766e05)
Configuration menu - View commit details
-
Copy full SHA for cd66aed - Browse repository at this point
Copy the full SHA cd66aedView commit details -
mkfs-util: Set FORK_REOPEN_LOG
We set FORK_CLOSE_ALL_FDS, so we should also set FORK_REOPEN_LOG to reopen the log in the child process so we don't miss any logging messages. (cherry picked from commit fbc6a75)
Configuration menu - View commit details
-
Copy full SHA for ce7dda2 - Browse repository at this point
Copy the full SHA ce7dda2View commit details -
Limit rlim_max in rlimit_nofile_safe() to nr_open
We might inherit a max rlim value that's larger than the kernel's maximum (nr_open). This will cause setrlimit() to fail as the given maximum is larger than the kernel's maximum. To get around this, let's limit the max rlim we pass to rlimit() to the value of nr_open. Should fix #28965 (cherry picked from commit f470daf)
Configuration menu - View commit details
-
Copy full SHA for a980b83 - Browse repository at this point
Copy the full SHA a980b83View commit details -
man/gpt-auto-generator: avoid saying "negative" for boolean
Fixes #28928. (cherry picked from commit 7abb0ee)
Configuration menu - View commit details
-
Copy full SHA for 9d43d9e - Browse repository at this point
Copy the full SHA 9d43d9eView commit details -
See documentation at: https://manpages.debian.org/testing/pkgconf/pkg.m4.7.en.html Without this the macro was not always correctly resolved so the correct command was not used in the rest of the snippet. (cherry picked from commit c91d636)
Configuration menu - View commit details
-
Copy full SHA for 01841ae - Browse repository at this point
Copy the full SHA 01841aeView commit details -
99-systemd.rules.in: tag PTP devices with systemd
Chronyd and similar time services, when using PTP devices, may need the BindsTo/After directives to ensure the devices are available before starting. Tag PTP devices with systemd to allow for wider adoption. Signed-off-by: Chris Patterson <cpatterson@microsoft.com> (cherry picked from commit 23cbe90)
Configuration menu - View commit details
-
Copy full SHA for e3a69bd - Browse repository at this point
Copy the full SHA e3a69bdView commit details -
login: Properly handle -EIO in session_leave_vt
session_leave_vt may be called after the VT device was hung up, which will cause vt_release to fail with -EIO. This is known to cause an issue with GNOME 44 on Fedora where gdm-session-worker sometimes freezes when trying to switch to VT 1 after a `loginctl terminate-user` operation. Fix this by reopening the VT in session_leave_vt if we get an -EIO. (cherry picked from commit 99d4ad7)
Configuration menu - View commit details
-
Copy full SHA for 1bfe066 - Browse repository at this point
Copy the full SHA 1bfe066View commit details -
Configuration menu - View commit details
-
Copy full SHA for df0d4a3 - Browse repository at this point
Copy the full SHA df0d4a3View commit details -
ukify: fail if the config file was not read
Inspired by systemd/systemd#28997. Noticed by Alvin Alvarado <alvin@striczkof.io>. (cherry picked from commit 594e27b)
Configuration menu - View commit details
-
Copy full SHA for d4e6957 - Browse repository at this point
Copy the full SHA d4e6957View commit details -
sd-login: Fix sd_pidfd_* function signature parameter types
The type of a file descriptor is `int`, not `pid_t`. This should not have any effects on API consumers as `pid_t` is already typedef'd as `int` on all glibc-based systems. (cherry picked from commit 904b8bb)
Configuration menu - View commit details
-
Copy full SHA for 6f83ab7 - Browse repository at this point
Copy the full SHA 6f83ab7View commit details -
oomd: avoid unnecessary wake-ups for ManagedOOMSwap
If there are no "ManagedOOMSwap" entries to monitor, then the event source can be completely disabled. This scenario appears to be common and avoiding the wake-ups can save idle energy consumption. This was discovered while using Sysprof for various GNOME 45 performance tuning. systemd-oomd goes from waking up a few times a second to no wake-ups helping keep a laptop in deep(er) sleep. Signed-off-by: Christian Hergert <chergert@redhat.com> (cherry picked from commit b63beb4)
Configuration menu - View commit details
-
Copy full SHA for 08d0b94 - Browse repository at this point
Copy the full SHA 08d0b94View commit details -
journal: Don't write to journal files without the new boot ID update …
…behavior guarantee With the old boot ID update behavior there's no way to compare the boot ID of a new entry to be written with the boot ID of the last entry in the journal in a performant manner, and therefore no way to determine if monotonic clock value consistency checking is needed. Refuse to open journal files without the new boot ID update behavior guarantee to simplify consistency checking. (cherry picked from commit 2f766ac)
Configuration menu - View commit details
-
Copy full SHA for 6fa3690 - Browse repository at this point
Copy the full SHA 6fa3690View commit details -
journal: Relax boot ID and monotonic clock consistency checks
The monotonic clock value consistency should only be checked if the boot ID is the same as the last journal entry, and requiring that the current boot ID be the same as the boot ID of the last entry is not necessary for ensuring deterministic bisection as we already enforce strict ordering of the real time clock value in a single journal file. This fixes an issue where a new journal file is unnecessarily created every boot, potentially wasting storage space. (cherry picked from commit addcecf)
Configuration menu - View commit details
-
Copy full SHA for f82786c - Browse repository at this point
Copy the full SHA f82786cView commit details -
shell-completions: code cleanup
(cherry picked from commit 05ebcbd)
Configuration menu - View commit details
-
Copy full SHA for 307a5e8 - Browse repository at this point
Copy the full SHA 307a5e8View commit details -
shell-completions: add missing systemctl verbs/options
Resolves: #29048 (cherry picked from commit 97e2785)
Configuration menu - View commit details
-
Copy full SHA for ae5445a - Browse repository at this point
Copy the full SHA ae5445aView commit details -
sd-ndisc,sd-radv: fix use of uninitialized value
When icmp6_receive() fails, then the source address is not initialized yet. (cherry picked from commit 4674f40)
Configuration menu - View commit details
-
Copy full SHA for 9dec95c - Browse repository at this point
Copy the full SHA 9dec95cView commit details -
icmp6-util: several cleanups for icmp6_receive()
- Rename the argument for storing the sender address, - allow to call it with NULL for ret_xyz, - reduce needless copy of timestamp when the message does not have timestamp. (cherry picked from commit 5121163)
Configuration menu - View commit details
-
Copy full SHA for 811edce - Browse repository at this point
Copy the full SHA 811edceView commit details -
icmp6-util: make icmp6_receive() accept the null source address
Fixes #29050. (cherry picked from commit 4961f56)
Configuration menu - View commit details
-
Copy full SHA for fabdb28 - Browse repository at this point
Copy the full SHA fabdb28View commit details -
logind: give better error messages when failing to attach devices to …
…seats When the user tries to attach a device lacking ID_FOR_SEAT they currently get a very cryptic error message. Let's improve the situation a bit. Still a bit cryptic maybe, but much less so. Inspired-by: https://lists.freedesktop.org/archives/systemd-devel/2023-September/049469.html Inspired-by: https://lists.freedesktop.org/archives/systemd-devel/2023-September/049484.html Also-see: https://lists.freedesktop.org/archives/systemd-devel/2023-September/049470.html Also-see: https://lists.freedesktop.org/archives/systemd-devel/2023-September/049489.html (cherry picked from commit 08237f0)
Configuration menu - View commit details
-
Copy full SHA for 3126a5a - Browse repository at this point
Copy the full SHA 3126a5aView commit details -
dissect: add 'f2fs' to allow-listed filesystems
f2fs is actively maintained upstream, and popular in certain device categories (phones, embedded), so allow-list by default. Fixes systemd/systemd#29026 (cherry picked from commit ee6cf8e)
Configuration menu - View commit details
-
Copy full SHA for f38b883 - Browse repository at this point
Copy the full SHA f38b883View commit details -
debug-generator: Use generator_add_symlink()
(cherry picked from commit bd6c95c)
Configuration menu - View commit details
-
Copy full SHA for 0d1198a - Browse repository at this point
Copy the full SHA 0d1198aView commit details -
execute: Chown credentials files and directories to service group
For a userns root user to be able to access the credentials, both the uid and gid of the credentials directory have to be mapped into the userns. Currently, the credentials directory group is root, which we obviously do not want to map in to a userns, so let's make sure that the credentials directory and files are owned by the service group instead, which can generally be safely mapped into the userns. Since we use permissions mode 0600, this shouldn't cause any change in who is able to access the credentials. Fixes #28747 (cherry picked from commit 3a78b0e)
Configuration menu - View commit details
-
Copy full SHA for 88292ef - Browse repository at this point
Copy the full SHA 88292efView commit details -
tree-wide: Always include <net/if.h> before related linux headers
Otherwise, we get redefinition errors if <net/if.h> is included later on by another header. (cherry picked from commit 2af02e6)
Configuration menu - View commit details
-
Copy full SHA for 49a3ecd - Browse repository at this point
Copy the full SHA 49a3ecdView commit details -
fd-util: Use /proc/pid/fd instead of /proc/self/fd
Currently, we mount via file descriptors using /proc/self/fd. This works, but it means that in /proc/mounts and various other files, the source of the mount will be listed as /proc/self/fd/xxx. For other software that parses these files, /proc/self/fd/xxx doesn't mean anything, or worse, it means the completely wrong thing, as it will refer to one of their own file descriptors instead. Let's improve the situation by using /proc/pid/fd instead. This allows processes parsing /proc/mounts to do the right thing more often than not. One scenario where even this doesn't work if when containers are involved, as with the pid namespace unshared, even /proc/pid/fd will mean the wrong thing, but it's no worse than /proc/self/fd which will always means the wrong thing. This also doesn't work if we mount via file descriptor and then exit, as the pid will be gone, but it does work as long as the process that did the mount is alive, which makes it useful for systemd-dissect --with for example if the program we run in the image wants to parse /proc/mounts. (cherry picked from commit 4419735)
Configuration menu - View commit details
-
Copy full SHA for 8046167 - Browse repository at this point
Copy the full SHA 8046167View commit details -
Configuration menu - View commit details
-
Copy full SHA for a3d7809 - Browse repository at this point
Copy the full SHA a3d7809View commit details -
core: allow to run generators without sandboxing on qemu-user
When running on non-native userland architecture via systemd-nspawn and qemu-user-static QEMU-emulator, clone() with CLONE_NEWNS fails with EINVAL. Fixes #28901. [zjs: add a comment in the code] (cherry picked from commit 4680187)
Configuration menu - View commit details
-
Copy full SHA for 0e25a21 - Browse repository at this point
Copy the full SHA 0e25a21View commit details -
mkosi: Re-enable arch but disable keyring checking
No need to disable arch completely, let's just disable keyring checking to get CI working again for now. (cherry picked from commit 16173ab)
Configuration menu - View commit details
-
Copy full SHA for 93bb992 - Browse repository at this point
Copy the full SHA 93bb992View commit details