systemd (234-2.2) unstable; urgency=high
* Non-maintainer upload.
* Switch to gcc-6 on all architectures, working around an FTBFS on mips64el,
apparently due to a gcc-7 bug (See: #871514):
- Add gcc-6 to Build-Depends in debian/control
- Export CC = gcc-6 in debian/rules
systemd (234-2.1) unstable; urgency=high
* Non-maintainer upload.
* Fix missing 60-input-id.rules in udev-udeb, which breaks the graphical
version of the Debian Installer, as no key presses or mouse events get
processed (Closes: #872598).
Environment=LANG= LANGUAGE= LC_CTYPE= ... as used in the getty units is
not unsetting the variables but instead sets it to an empty var. Passing
that environment to login messes up the system locale settings and
breaks programs like gpg-agent.
This reverts commit db6aedab9292678918f15807a0d835be35511667.
Closes: #868695
This group is not universally available and as a result generates a
warning during boot:
systemd-udevd: Specified group 'kvm' unknown
As kvm is only really useful if the qemu package is installed and this
package already takes care of setting up the proper permissions for
/dev/kvm, drop this rule from 50-udev-default.rules.
See https://github.com/systemd/systemd/issues/6360
The test tries to setup inotify watches for /run/systemd/netif/links
which fails in a buildd environment where systemd is not active.
See https://github.com/systemd/systemd/issues/6353
Otherwise meson will be pretty unhappy when trying to process files with
unicode characters. Use C.UTF-8 as this locale is pretty much guaranteed
to be available everywhere.
- 01-mac-for-usb.link got replaced with 73-usb-net-by-mac.rules
- /etc/systemd/network/50-virtio-kernel-names.link is an upgrade
transition for VMs with virtio
- Describe *.link files as a simpler/less error prone (but also less
flexible) way of customizing interface names.
Closes: #868002
Use /proc/sys/fs/nr_open to find the current limit of open files
compiled into the kernel instead of using a hard-coded value of 65536
for RLIMIT_NOFILE.
Closes: #865449
This ensures /lib/udev/hwdb.bin gets the correct SELinux context. Having
double slashes in the path makes selabel_lookup_raw() return the wrong
context.
Closes: #851933
This fixes a bug which allowed a remote DoS (daemon crash) via a crafted
DNS response with an empty question section.
Closes: #863277
Fixes: CVE-2017-9217
Drop --with autoreconf and --parallel as those are now enabled by
default.
The systemd sequence is now also enabled by default. We don't strictly
need the additional complexity that comes with init-system-helpers, as
we can just rely on systemctl being available. So use --without systemd
for the time being.
Gbp-Dch: Short
The internet is broken, and debugging the internet with Ubuntu is not
helpful. Too many websites are incorrectly signed with dnssec, and there are
many outstanding bugs upstream and newly reported in Ubuntu as soon as artful
landed with dnssec re-enabled. Ubuntu devel releases are used on day to day
basis and are not experimental enough to break developers'
networking. Re-enabling dnssec should only be considered once existing upstream
and launchpad dnssec bugs are resolved.
LP: #1690605
Gbp-Dch: Short
With this, what we test will be much closer to what we will actually
merge. It also avoids older PRs to now suddenly fail because they are
based against an older HEAD without the meson patches.
systemctl daemon-reload is a quite a heavy operation, it will re-parse
all configuration and re-run all generators. This should only be done
when strictly needed.
The init-function helpers try to cope with an lsb init script being
called *before* the sysv generator has run. Unfortunately that always got
triggered when other script sourced the helpers as there won't be a
service matching them.
Resolve this by only potentially reloading the daemon when preparing to
redirect.
Closes: #861158
