commit systemd.15660 for openSUSE:Leap:15.2:Update
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package systemd.15660 for openSUSE:Leap:15.2:Update checked in at 2021-01-30 20:11:53 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2:Update/systemd.15660 (Old) and /work/SRC/openSUSE:Leap:15.2:Update/.systemd.15660.new.28504 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "systemd.15660" Sat Jan 30 20:11:53 2021 rev:1 rq:867264 version:234 Changes: -------- New Changes file: --- /dev/null 2021-01-11 18:20:20.070723563 +0100 +++ /work/SRC/openSUSE:Leap:15.2:Update/.systemd.15660.new.28504/systemd-mini.changes 2021-01-30 20:11:53.851536406 +0100 @@ -0,0 +1,10114 @@ +------------------------------------------------------------------- +Wed Jan 13 09:07:00 UTC 2021 - Franck Bui <fbui@suse.com> + +- Import commit 080062ed5f90b8a4085a89f2ad30ee320fab27c9 + + 80e37dcacc busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225) + 2ee6877bb3 core: make sure to restore the control command id, too + d1b9949337 scope: on unified, make sure to unwatch all PIDs once they've been moved to the cgroup scope + af5945c2f4 fileio: tweak write_string_stream_ts() to write out trailing \n in one go even if buffering is off + a28c165efa fileio: write_string_stream_ts: check for file errors immediately + dc122eb771 fileio: write_string_stream_ts: return errors from fputs and fputc + 14c89b1424 fileio: make write_string_stream() accept flags parameter + 2959e7dfe6 journal: do not trigger assertion when journal_file_close() get NULL (bsc#1179824) + 08db1ac361 cgroup: drastically simplify caching of cgroups members mask (bsc#1175458) + bb59042ab4 cgroup: extend comment on what unit_release_cgroup() is for + ead2955f65 cgroup: document what the various masks variables are used for + 805fe8ecdf cgroup: extend cg_mask_supported() comment a bit + 305806da38 cgroup: tweak log message, so that it doesn't claim we always enable controllers when we actually disable them + d02ce63463 cgroup-util: disable buffering for cg_enable_everywhere() when writing to cgroup attributes + b4e9893f5d cgroup-util: fix enabling of controllers (#8816) + e7dd277c1b cgroup: propagate errors when we cannot open cgroup.subtree_control + 7c8f19714f cgroup-util: optimization ��� open subtree_control file only once for all controllers + 7999763781 cgroup: add explanatory comment + 2829342e7a cgroup: units that aren't loaded properly should not result in cgroup controllers being pulled in + 48a0d85047 cgroup: make unit_get_needs_bpf_firewall() static too + 888dc39134 cgroup: make some functions static + 6c0efa2f01 cgroup: suffix settings with "=" in log messages where appropriate + e69d9927c6 cgroup: use structured initialization + 5174fb9622 core: fix message about detected memory hierarchy + 3b6443e1ee core: use safe_fclose() where we can + 906dcf1f6b udev: Fix sound.target dependency (bsc#1179363) + 2c9866d55a rules: enable hardware-related targets also for user instances + 127e546608 sd-event: fix delays assert brain-o (#17790) + b98b6d230c core: serialize u->pids until the processes have been moved to the scope cgroup (bsc#1174436) + 2f50b9ecf1 time-util: treat /etc/localtime missing as UTC (bsc#1141597) + +------------------------------------------------------------------- +Wed Oct 21 09:41:53 UTC 2020 - Franck Bui <fbui@suse.com> + +- Import commit cff0063e30f8cd06995810a4725bfb042191c472 + + 33f68e8062 build-sys: optionnally disable support of journal over the network (bsc#1177458) + 34d79e6216 ask-password: prevent buffer overrow when reading from keyring (bsc#1177510) + 36e567dc68 ask-password: add extra paranoid overflow check + 5dd29e9219 More polite passphrase prompt + f922299b3c mount: don't propagate errors from mount_setup_unit() further up + +- Rework the enablement of 'journal_remote' support to rely on the new + build option --disable-remote. This allows to drop the workaround + that consisted in cleaning journal-upload files and + {sysusers.d,tmpfiles.d}/systemd-remote.conf manually when + 'journal_remote' support was disabled. + +------------------------------------------------------------------- +Tue Oct 20 08:42:31 UTC 2020 - Andreas Herrmann <aherrmann@suse.com> + +- Remove mq-deadline selection from 60-io-scheduler.rules (bsc#1177490) + +------------------------------------------------------------------- +Mon Oct 19 20:32:19 UTC 2020 - Franck Bui <fbui@suse.com> + +- Move journal-{remote,upload}.conf.5.gz man pages into systemd-journal_remote sub package + +------------------------------------------------------------------- +Mon Oct 19 20:13:48 UTC 2020 - Franck Bui <fbui@suse.com> + +- Make sure {sysusers.d,tmpfiles.d}/systemd-remote.conf are not + shipped with --without=journal_remote (bsc#1177458) + + These files were incorrectly packaged in the main package when + systemd-journal_remote was disabled (autools build only affected). + +------------------------------------------------------------------- +Mon Oct 19 16:53:54 UTC 2020 - Franck Bui <fbui@suse.com> + +- Make use of %{_unitdir} and %{_sysusersdir} + +------------------------------------------------------------------- +Wed Oct 7 08:42:14 UTC 2020 - Franck Bui <fbui@suse.com> + +- Import commit ff3ecd97a4ef0f973d5e97f959ce042f12fab969 + + 2794bdf836 seccomp: shm{get,at,dt} now have their own numbers everywhere (bsc#1173422) + 99eff504a1 test-seccomp: log function names + 2355b45978 test-seccomp: add log messages when skipping tests + 0246b221d1 add false option for tests (#7778) + 2fba565329 basic/virt: Detect PowerVM hypervisor (bsc#1176800) + 3c43c83144 fs-util: suppress world-writable warnings if we read /dev/null + +- Drop 0001-test-seccomp-add-log-messages-when-skipping-tests.patch + Drop 0002-test-seccomp-log-function-names.patch + Drop 0003-seccomp-shm-get-at-dt-now-have-their-own-numbers-eve.patch + + These patches have been imported in SUSE/v234 branch + +------------------------------------------------------------------- +Fri Oct 2 11:41:20 UTC 2020 - Franck Bui <fbui@suse.com> + +- Import commit e72f953aa84be08beb97cb4a7630e51e01639377 + + da944a39f8 udevadm: rename option '--log-priority' into '--log-level' + 64b89364ee udev: rename kernel option 'log_priority' into 'log_level' + 46d1536437 fstab-generator: add 'nofail' when NFS 'bg' option is used (bsc#1176513) + +------------------------------------------------------------------- +Wed Sep 16 09:47:26 UTC 2020 - Franck Bui <fbui@suse.com> + +- Fix bsc#1167471 bsc#1154935 + + Add 0010-core-accept-MemorySwapMax-properties-that-are-scaled.patch + Add 0011-bus-unit-util-add-proper-MemorySwapMax-serialization.patch + Add 0012-core-cgroup-accepts-MemorySwapMax-0-8366.patch + Add 0013-cgroup-Support-0-value-for-memory-protection-directi.patch + Add 0014-cgroup-Make-empty-assignments-reset-to-default.patch + Add 0015-cgroup-Parse-infinity-properly-for-memory-protection.patch + +------------------------------------------------------------------- +Mon Sep 14 15:11:05 UTC 2020 - Franck Bui <fbui@suse.com> + +- Import commit 859d8235c2c2f0a2d160a0e9778f7e54d304a596 (bsc#1104902 bsc#1165502) + + It contains a patchset that backports user-runtime-dir@.service, + which is improves latency and reliability when users log in/out + repeatedly and quickly during a relative short period of time. + +------------------------------------------------------------------- +Mon Aug 3 14:27:28 UTC 2020 - Franck Bui <fbui@suse.com> + +- Import commit 8bd880f8097b9bfc7e73262c18fbbac03b12e60f + + 0509116a5d pid1: improve message when setting up namespace fails + 40510f1a7a execute: let's close glibc syslog channels too + e22977f3b2 execute: normalize logging in execute.c + ed52035555 execute: fix typo in error message (#6881) + 7f2feba719 execute: drop explicit log_open()/log_close() now that it is unnecessary + dbc8525a68 execute: make use of the new logging mode in execute.c + 89d456e4c7 log: add a mode where we open the log fds for every single log message + 32cdae2fe6 log: let's make use of the fact that our functions return the negative error code for log_oom() too + 30a5b8d428 execute: downgrade a log message ERR ��� WARNING, since we proceed ignoring its result + f52bed2823 execute: rework logging in setup_keyring() to include unit info + 91cbb68dec execute: improve and augment execution log messages + + These are simple commits that improve logging when PID1 fails at + setting a namespace up when spawning a command specified by + 'Exec*='. This should help us track a hard to reproduce bug which + prevent apache from reloading (bsc#1172824, bsc#1142733) + +------------------------------------------------------------------- +Mon Aug 3 13:57:38 UTC 2020 - Franck Bui <fbui@suse.com> + +- Import commit 7525132a61f00e16566c9eb6ee7e139fcb7050cc + + 85561b1819 vconsole-setup: downgrade log message when setting font fails on dummy console (bsc#1172195 bsc#1173539) + 0138e54629 cryptsetup: fix infinite timeout (#6486) (bsc#1158336) + b2aa39af7d bpf: mount bpffs by default on boot (bsc#1146991) + 5adfe116ed man: explain precedence for options which take a list (#7010) + 392e0bb83f man: unify titling, fix description of precedence in sysusers.d(5) + c45abe3a2f udev-event: fix timeout log messages + +------------------------------------------------------------------- +Mon Jun 29 14:58:54 UTC 2020 - Franck Bui <fbui@suse.com> + +- Fix bsc#1173422 + + Add 0001-test-seccomp-add-log-messages-when-skipping-tests.patch + Add 0002-test-seccomp-log-function-names.patch + Add 0003-seccomp-shm-get-at-dt-now-have-their-own-numbers-eve.patch + +------------------------------------------------------------------- +Wed Jun 24 11:58:29 UTC 2020 - Franck Bui <fbui@suse.com> + +- migrate-sysconfig-i18n.sh: fix marker handling (bsc#1173229) + + The marker is used to make sure the script is run only once. Instead + of storing it in /usr, use /var which is more appropriate for such + file. + + Also make it owned by systemd package. + +------------------------------------------------------------------- +Tue Jun 23 14:09:30 UTC 2020 - Franck Bui <fbui@suse.com> + +- Fix inconsistent file modes for some ghost files (bsc#1173227) + + Ghost files are assumed by rpm to have mode 000 by default which is + not consistent with file permissions set at runtime. + + Also /var/lib/systemd/random-seed was tracked wrongly as a + directory. + + Also don't track (ghost) /etc/systemd/system/runlevel*.target + aliases since we're not supposed to track units or aliases user + might define/override. + +------------------------------------------------------------------- +Tue Jun 2 13:01:18 UTC 2020 - Franck Bui <fbui@suse.com> + ++++ 9917 more lines (skipped) ++++ between /dev/null ++++ and /work/SRC/openSUSE:Leap:15.2:Update/.systemd.15660.new.28504/systemd-mini.changes New Changes file: systemd.changes: same change New: ---- 0001-mount-swap-cryptsetup-introduce-an-option-to-prevent.patch 0001-udev-don-t-create-by-partlabel-primary-and-.-logical.patch 0002-udev-optionally-disable-the-generation-of-the-partla.patch 0010-core-accept-MemorySwapMax-properties-that-are-scaled.patch 0011-bus-unit-util-add-proper-MemorySwapMax-serialization.patch 0012-core-cgroup-accepts-MemorySwapMax-0-8366.patch 0013-cgroup-Support-0-value-for-memory-protection-directi.patch 0014-cgroup-Make-empty-assignments-reset-to-default.patch 0015-cgroup-Parse-infinity-properly-for-memory-protection.patch 60-io-scheduler.rules 80-acpi-container-hotplug.rules 80-hotplug-cpu-mem.rules 99-wakeup-from-idle.rules _service after-local.service baselibs.conf kbd-model-map.legacy pre_checkin.sh scripts-systemd-fix-machines-btrfs-subvol.sh scripts-systemd-migrate-sysconfig-i18n.sh scripts-systemd-upgrade-from-pre-210.sh scripts-udev-convert-lib-udev-path.sh systemd-mini-rpmlintrc systemd-mini.changes systemd-mini.spec systemd-rpmlintrc systemd-sysv-convert systemd-sysv-install systemd-user systemd-v234+suse.669.g080062ed5f.tar.xz systemd.changes systemd.spec ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ systemd-mini.spec ++++++ ++++ 1486 lines (skipped) systemd.spec: same change ++++++ 0001-mount-swap-cryptsetup-introduce-an-option-to-prevent.patch ++++++ From c61c3e2ac903e6c8a53d0e70ec04eb0fe3a58fd6 Mon Sep 17 00:00:00 2001 From: Franck Bui <fbui@suse.com> Date: Thu, 31 Oct 2019 18:32:08 +0100 Subject: [PATCH 1/1] mount/swap/cryptsetup: introduce an option to prevent systemd from making a unit wanted by its device unit systemd introduced a behavior that consisted in activating automatically a unit generated by either fstab-generator or cryptsetup-generator each time its device unit is entering in plugged state and regardless of whether it happened during the boot process or much later. This behavior is confusing for a lot of users and interacts badly with tools which are operating on block devices. Fortunately this feature has been removed by upstream since v242 for both mount and swap units, with commits 142b8142d7bb84f07ac33fc00527a4d48ac8ef9f and 9b88bb5023dfa3cea406c14fdaa3d8e3e320907a respectively. However for backward compatibility reasons we can't simply drop it, therefore this patch introduces a new (but temporary) kernel command line option named 'systemd.device_wants_unit' so one can choose to prevent systemd from starting automagically a unit which was generated by {cryptsetup,fstab}-generator by setting it to 'off'. The default value for this option is 'on' so no behavior change will happen by default but please note that next major versions of SLE will permanently switch it to 'off' without any possibilities to change it. With this option enabled, it's now possible to prevent all swap units to be activated by masking the swap target. [fbui: fixes jsc#SLE-7689] --- src/basic/proc-cmdline.c | 15 +++++++++++++++ src/basic/proc-cmdline.h | 2 ++ src/core/unit.c | 3 ++- src/cryptsetup/cryptsetup-generator.c | 8 +++++--- 4 files changed, 24 insertions(+), 4 deletions(-) diff --git a/src/basic/proc-cmdline.c b/src/basic/proc-cmdline.c index 8592a428d5..3936e809b6 100644 --- a/src/basic/proc-cmdline.c +++ b/src/basic/proc-cmdline.c @@ -247,6 +247,21 @@ int shall_restore_state(void) { return r > 0 ? ret : true; } +bool shall_device_want_unit(void) { + static int device_wants_unit = -1; + + if (device_wants_unit < 0) { + bool ret; + + if (proc_cmdline_get_bool("systemd.device_wants_unit", &ret) > 0) + device_wants_unit = ret; + else + device_wants_unit = true; + } + + return device_wants_unit; +} + static const char * const rlmap[] = { "emergency", SPECIAL_EMERGENCY_TARGET, "-b", SPECIAL_EMERGENCY_TARGET, diff --git a/src/basic/proc-cmdline.h b/src/basic/proc-cmdline.h index ebfed355e9..bb4ebe5ee7 100644 --- a/src/basic/proc-cmdline.h +++ b/src/basic/proc-cmdline.h @@ -52,3 +52,5 @@ static inline bool proc_cmdline_value_missing(const char *key, const char *value return false; } + +bool shall_device_want_unit(void); diff --git a/src/core/unit.c b/src/core/unit.c index febce9d242..736863e48c 100644 --- a/src/core/unit.c +++ b/src/core/unit.c @@ -46,6 +46,7 @@ #include "mkdir.h" #include "parse-util.h" #include "path-util.h" +#include "proc-cmdline.h" #include "process-util.h" #include "set.h" #include "signal-util.h" @@ -3172,7 +3173,7 @@ int unit_add_node_link(Unit *u, const char *what, bool wants, UnitDependency dep if (r < 0) return r; - if (wants) { + if (wants && shall_device_want_unit()) { r = unit_add_dependency(device, UNIT_WANTS, u, false); if (r < 0) return r; diff --git a/src/cryptsetup/cryptsetup-generator.c b/src/cryptsetup/cryptsetup-generator.c index 312cdf3d1f..ce47f9f0da 100644 --- a/src/cryptsetup/cryptsetup-generator.c +++ b/src/cryptsetup/cryptsetup-generator.c @@ -195,9 +195,11 @@ static int create_disk( return log_error_errno(r, "Failed to write file %s: %m", p); if (!noauto) { - r = generator_add_symlink(arg_dest, d, "wants", n); - if (r < 0) - return r; + if (shall_device_want_unit()) { + r = generator_add_symlink(arg_dest, d, "wants", n); + if (r < 0) + return r; + } r = generator_add_symlink(arg_dest, netdev ? "remote-cryptsetup.target" : "cryptsetup.target", -- 2.16.4 ++++++ 0001-udev-don-t-create-by-partlabel-primary-and-.-logical.patch ++++++ From 34f38aa61d5189a0258982efd976da7d249a11d3 Mon Sep 17 00:00:00 2001 From: Martin Wilck <mwilck@suse.com> Date: Mon, 16 Apr 2018 23:03:27 +0200 Subject: [PATCH 1/2] udev: don't create by-partlabel/primary and .../logical symlinks These links are created by libstorage / parted by default. They are ambiguous and may be present hundred- or thousandfold on large systems. They are meaningless for device identification and may slow down udev processing. They aren't used anywhere. Don't create them. A service has been added to detect at boot cases that likely need to be fixed: a warning is thrown at both the console and syslog to encourage sysadmin to consult the relevant TID explaining how to permanently fix the issue. [fbui: added the detection part] [fbui: fixes bsc#1089761] --- Makefile.am | 2 ++ rules/60-persistent-storage.rules | 2 +- units/detect-part-label-duplicates.service | 16 ++++++++++++++++ 3 files changed, 19 insertions(+), 1 deletion(-) create mode 100644 units/detect-part-label-duplicates.service diff --git a/Makefile.am b/Makefile.am index 240d193eb..84563d4a9 100644 --- a/Makefile.am +++ b/Makefile.am @@ -489,6 +489,7 @@ dist_sysctl_DATA = \ sysctl.d/50-default.conf dist_systemunit_DATA = \ + units/detect-part-label-duplicates.service \ units/graphical.target \ units/multi-user.target \ units/emergency.target \ @@ -6586,6 +6587,7 @@ MULTI_USER_TARGET_WANTS += \ systemd-ask-password-wall.path SYSINIT_TARGET_WANTS += \ + detect-part-label-duplicates.service \ dev-hugepages.mount \ dev-mqueue.mount \ sys-kernel-config.mount \ diff --git a/rules/60-persistent-storage.rules b/rules/60-persistent-storage.rules index d2745f65f..5e803d639 100644 --- a/rules/60-persistent-storage.rules +++ b/rules/60-persistent-storage.rules @@ -92,6 +92,6 @@ ENV{DEVTYPE}=="partition", ENV{ID_WWN_WITH_EXTENSION}=="?*", SYMLINK+="disk/by-i # by-partlabel/by-partuuid links (partition metadata) ENV{ID_PART_ENTRY_UUID}=="?*", SYMLINK+="disk/by-partuuid/$env{ID_PART_ENTRY_UUID}" -ENV{ID_PART_ENTRY_SCHEME}=="gpt", ENV{ID_PART_ENTRY_NAME}=="?*", SYMLINK+="disk/by-partlabel/$env{ID_PART_ENTRY_NAME}" +ENV{ID_PART_ENTRY_SCHEME}=="gpt", ENV{ID_PART_ENTRY_NAME}=="?*", ENV{ID_PART_ENTRY_NAME}!="primary|logical", SYMLINK+="disk/by-partlabel/$env{ID_PART_ENTRY_NAME}" LABEL="persistent_storage_end" diff --git a/units/detect-part-label-duplicates.service b/units/detect-part-label-duplicates.service new file mode 100644 index 000000000..1fbca2114 --- /dev/null +++ b/units/detect-part-label-duplicates.service @@ -0,0 +1,16 @@ +[Unit] +Description=Detect if the system suffers from bsc#1089761 +ConditionDirectoryNotEmpty=/run/udev/data + +[Service] +RemainAfterExit=true +StandardOutput=syslog+console +SyslogLevel=warning +ExecStart=/bin/sh -c " \ + if [ $(grep -r "E:ID_PART_ENTRY_NAME=primary" /run/udev/data | wc -l) -ge 100 ]; then \ + echo 'Warning: a high number of partitions uses \"primary\" or \"logical\" as'; \ + echo 'partition label name, which may cause slow-down in the boot process.'; \ + echo 'To prevent it, a workaround is temporarly in place but we recommend to'; \ + echo 'refer to TID #7023057 in order to permanently fix this issue (as the'; \ + echo 'workaround will be dropped in the future).'; \ + fi" -- 2.18.0 ++++++ 0002-udev-optionally-disable-the-generation-of-the-partla.patch ++++++ From 749f0c9b1431470dbc3f36cc507e86f9894d65bc Mon Sep 17 00:00:00 2001 From: Franck Bui <fbui@suse.com> Date: Tue, 21 Aug 2018 16:21:53 +0200 Subject: [PATCH 2/2] udev: optionally disable the generation of the 'partlabel' symlinks We already addressed bsc#1089761 to prevent the generation of "primary" or "logical". But it wasn't enough: some users could also have used their own name other than "primary" and "logical" of course... For them, we introduce "udev.no-partlabel-links" kernel command-line option to prevent the generation of all by-partlabel symlinks regardless of the name which was choosen. This option should be *only* used to address performance issue related to bsc#1089761 because it will be removed as soon as the udev performance issue will be addressed. [fbui: fixes bsc#1089761] --- rules/60-persistent-storage.rules | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/rules/60-persistent-storage.rules b/rules/60-persistent-storage.rules index 5e803d639..eefa28f7d 100644 --- a/rules/60-persistent-storage.rules +++ b/rules/60-persistent-storage.rules @@ -92,6 +92,8 @@ ENV{DEVTYPE}=="partition", ENV{ID_WWN_WITH_EXTENSION}=="?*", SYMLINK+="disk/by-i # by-partlabel/by-partuuid links (partition metadata) ENV{ID_PART_ENTRY_UUID}=="?*", SYMLINK+="disk/by-partuuid/$env{ID_PART_ENTRY_UUID}" -ENV{ID_PART_ENTRY_SCHEME}=="gpt", ENV{ID_PART_ENTRY_NAME}=="?*", ENV{ID_PART_ENTRY_NAME}!="primary|logical", SYMLINK+="disk/by-partlabel/$env{ID_PART_ENTRY_NAME}" + +IMPORT{cmdline}="udev.no-partlabel-links" +ENV{ID_PART_ENTRY_SCHEME}=="gpt", ENV{ID_PART_ENTRY_NAME}=="?*", ENV{ID_PART_ENTRY_NAME}!="primary|logical", ENV{udev.no-partlabel-links}!="?*", SYMLINK+="disk/by-partlabel/$env{ID_PART_ENTRY_NAME}" LABEL="persistent_storage_end" -- 2.18.0 ++++++ 0010-core-accept-MemorySwapMax-properties-that-are-scaled.patch ++++++ From ad2694f396380624e60fa4cdb81584171a7ccb90 Mon Sep 17 00:00:00 2001 From: Lennart Poettering <lennart@poettering.net> Date: Thu, 9 Jul 2020 19:28:10 +0200 Subject: [PATCH 10/15] core: accept MemorySwapMax= properties that are scaled, too Let's do what we already do for MemoryMax= and friends for MemorySwapMax= too. (cherry picked from commit 66a892ae3d5ebaa82298c40012b95534ba34cfb1) [mkoutny: adjust context] [mkoutny: add MemorySwapMaxScale parsing fixup that silently appeared in 13ec20d42a7b7abfbcbca5c6f1ec487fd3e3def8] --- src/core/dbus-cgroup.c | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/src/core/dbus-cgroup.c b/src/core/dbus-cgroup.c index f299eab49e..6d05c337a1 100644 --- a/src/core/dbus-cgroup.c +++ b/src/core/dbus-cgroup.c @@ -962,7 +962,7 @@ int bus_cgroup_set_property( return 1; - } else if (STR_IN_SET(name, "MemoryLowScale", "MemoryHighScale", "MemoryMaxScale")) { + } else if (STR_IN_SET(name, "MemoryLowScale", "MemoryHighScale", "MemoryMaxScale", "MemorySwapMaxScale")) { uint32_t raw; uint64_t v; @@ -985,7 +985,9 @@ int bus_cgroup_set_property( c->memory_low = v; else if (streq(name, "MemoryHigh")) c->memory_high = v; - else + else if (streq(name, "MemorySwapMax")) + c->memory_swap_max = v; + else /* MemoryMax */ c->memory_max = v; unit_invalidate_cgroup(u, CGROUP_MASK_MEMORY); @@ -1008,7 +1010,7 @@ int bus_cgroup_set_property( c->memory_limit = limit; unit_invalidate_cgroup(u, CGROUP_MASK_MEMORY); - if (limit == (uint64_t) -1) + if (limit == CGROUP_LIMIT_MAX) unit_write_drop_in_private(u, mode, name, "MemoryLimit=infinity"); else unit_write_drop_in_private_format(u, mode, name, "MemoryLimit=%" PRIu64, limit); -- 2.26.2 ++++++ 0011-bus-unit-util-add-proper-MemorySwapMax-serialization.patch ++++++ From 093a1b702f0b2f0a66f5efdd1205f29aee1b1057 Mon Sep 17 00:00:00 2001 From: Lennart Poettering <lennart@poettering.net> Date: Thu, 9 Jul 2020 19:28:11 +0200 Subject: [PATCH 11/15] bus-unit-util: add proper MemorySwapMax= serialization Fixes: #7505 (cherry picked from commit 147fe484c178b6e4d60ee7c6982345dd51bf434d) [mkoutny: adjusted context] --- src/shared/bus-unit-util.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/shared/bus-unit-util.c b/src/shared/bus-unit-util.c index 7117c5dacc..b3b76bfb17 100644 --- a/src/shared/bus-unit-util.c +++ b/src/shared/bus-unit-util.c @@ -151,7 +151,7 @@ int bus_append_unit_property_assignment(sd_bus_message *m, const char *assignmen r = sd_bus_message_append(m, "sv", n, "t", t); goto finish; - } else if (STR_IN_SET(field, "MemoryLow", "MemoryHigh", "MemoryMax", "MemoryLimit")) { + } else if (STR_IN_SET(field, "MemoryLow", "MemoryHigh", "MemoryMax", "MemorySwapMax", "MemoryLimit")) { uint64_t bytes; if (isempty(eq) || streq(eq, "infinity")) -- 2.26.2 ++++++ 0012-core-cgroup-accepts-MemorySwapMax-0-8366.patch ++++++ From f701e657ed04d9309134f5b0c2c55f7fe5591a59 Mon Sep 17 00:00:00 2001 From: Yu Watanabe <watanabe.yu+github@gmail.com> Date: Thu, 9 Jul 2020 19:28:12 +0200 Subject: [PATCH 12/15] core/cgroup: accepts MemorySwapMax=0 (#8366) Also, this moves two macros from dbus-util.h to dbus-cgroup.c, as they are only used in dbus-cgroup.c. Fixes #8363. (cherry picked from commit 906bdbf5e79870f6997fc0925348f9412f3c5f3e) [mkoutny: simplify range condition, we don't have 681ae88e06 ("dbus-cgroup: simplify bus_cgroup_set_property()") v237~157^2] [fbui: fixes bsc#1154935] --- src/core/dbus-cgroup.c | 4 ++-- src/core/load-fragment.c | 3 ++- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/src/core/dbus-cgroup.c b/src/core/dbus-cgroup.c index 6d05c337a1..a90887c8a0 100644 --- a/src/core/dbus-cgroup.c +++ b/src/core/dbus-cgroup.c @@ -939,7 +939,7 @@ int bus_cgroup_set_property( r = sd_bus_message_read(message, "t", &v); if (r < 0) return r; - if (v <= 0) + if (v <= 0 && !streq(name, "MemorySwapMax")) return sd_bus_error_set_errnof(error, EINVAL, "%s= is too small", name); if (mode != UNIT_CHECK) { @@ -971,7 +971,7 @@ int bus_cgroup_set_property( return r; v = physical_memory_scale(raw, UINT32_MAX); - if (v <= 0 || v == UINT64_MAX) + if ((v <= 0 && !streq(name, "MemorySwapMaxScale")) || v == UINT64_MAX) return sd_bus_error_set_errnof(error, EINVAL, "%s= is out of range", name); if (mode != UNIT_CHECK) { diff --git a/src/core/load-fragment.c b/src/core/load-fragment.c index b115027222..1844c5c3d7 100644 --- a/src/core/load-fragment.c +++ b/src/core/load-fragment.c @@ -3055,7 +3055,8 @@ int config_parse_memory_limit( } else bytes = physical_memory_scale(r, 100U); - if (bytes <= 0 || bytes >= UINT64_MAX) { + if (bytes >= UINT64_MAX || + (bytes <= 0 && !streq(lvalue, "MemorySwapMax"))) { log_syntax(unit, LOG_ERR, filename, line, 0, "Memory limit '%s' out of range. Ignoring.", rvalue); return 0; } -- 2.26.2 ++++++ 0013-cgroup-Support-0-value-for-memory-protection-directi.patch ++++++ From a800431e4add2685a7c3855fea290eff7468b58b Mon Sep 17 00:00:00 2001 From: Chris Down <chris@chrisdown.name> Date: Thu, 9 Jul 2020 19:28:13 +0200 Subject: [PATCH 13/15] cgroup: Support 0-value for memory protection directives These make sense to be explicitly set at 0 (which has a different effect than the default, since it can affect processing of `DefaultMemoryXXX`). Without this, it's not easily possible to relinquish memory protection for a subtree, which is not great. (cherry picked from commit 22bf131be278b95a4a204514d37a4344cf6365c6) [mkoutny: implemented inside range condition, we don't have 681ae88e06 ("dbus-cgroup: simplify bus_cgroup_set_property()") v237~157^2] [mkoutny: fixes bsc#1167471] --- src/core/dbus-cgroup.c | 4 ++-- src/core/load-fragment.c | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/src/core/dbus-cgroup.c b/src/core/dbus-cgroup.c index a90887c8a0..5e35d74f0d 100644 --- a/src/core/dbus-cgroup.c +++ b/src/core/dbus-cgroup.c @@ -939,7 +939,7 @@ int bus_cgroup_set_property( r = sd_bus_message_read(message, "t", &v); if (r < 0) return r; - if (v <= 0 && !streq(name, "MemorySwapMax")) + if (v <= 0 && !STR_IN_SET(name, "MemoryLow", "MemorySwapMax")) return sd_bus_error_set_errnof(error, EINVAL, "%s= is too small", name); if (mode != UNIT_CHECK) { @@ -971,7 +971,7 @@ int bus_cgroup_set_property( return r; v = physical_memory_scale(raw, UINT32_MAX); - if ((v <= 0 && !streq(name, "MemorySwapMaxScale")) || v == UINT64_MAX) + if ((v <= 0 && !STR_IN_SET(name, "MemoryLowScale", "MemorySwapMaxScale")) || v == UINT64_MAX) return sd_bus_error_set_errnof(error, EINVAL, "%s= is out of range", name); if (mode != UNIT_CHECK) { diff --git a/src/core/load-fragment.c b/src/core/load-fragment.c index 1844c5c3d7..213404ee31 100644 --- a/src/core/load-fragment.c +++ b/src/core/load-fragment.c @@ -3056,7 +3056,7 @@ int config_parse_memory_limit( bytes = physical_memory_scale(r, 100U); if (bytes >= UINT64_MAX || - (bytes <= 0 && !streq(lvalue, "MemorySwapMax"))) { + (bytes <= 0 && !STR_IN_SET(lvalue, "MemorySwapMax", "MemoryLow"))) { log_syntax(unit, LOG_ERR, filename, line, 0, "Memory limit '%s' out of range. Ignoring.", rvalue); return 0; } -- 2.26.2 ++++++ 0014-cgroup-Make-empty-assignments-reset-to-default.patch ++++++ From e9ed79fd155789850e4cf0921cdb0d26a71057fa Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Michal=20Koutn=C3=BD?= <mkoutny@suse.com> Date: Thu, 9 Jul 2020 19:28:14 +0200 Subject: [PATCH 14/15] cgroup: Make empty assignments reset to default When MemoryLow= or MemoryMin= is set, it is interpretted as setting the values to infinity. This is inconsistent with the default initialization to 0. It'd be nice to interpret the empty assignment as fallback to DefaultMemory* of parent slice, however, current DBus API cannot convey such a NULL value, so stick to simply interpretting that as hard-wired default. (cherry picked from commit db2b8d2e2895010f3443a589c9c1f1dfb25256a6) [mkoutny: fixes bsc#1167471] [mkoutny: adjusted to v234 dbus properties setting dropped parts for MemoryMin,DefaultMemory{Min,Low} which we don't have] --- src/core/load-fragment.c | 3 +++ src/shared/bus-unit-util.c | 4 +++- 2 files changed, 6 insertions(+), 1 deletion(-) diff --git a/src/core/load-fragment.c b/src/core/load-fragment.c index 213404ee31..dea1f10c69 100644 --- a/src/core/load-fragment.c +++ b/src/core/load-fragment.c @@ -3043,6 +3043,9 @@ int config_parse_memory_limit( uint64_t bytes = CGROUP_LIMIT_MAX; int r; + if (STR_IN_SET(lvalue, "MemoryLow")) + bytes = CGROUP_LIMIT_MIN; + if (!isempty(rvalue) && !streq(rvalue, "infinity")) { r = parse_percent(rvalue); diff --git a/src/shared/bus-unit-util.c b/src/shared/bus-unit-util.c index b3b76bfb17..e459dd248d 100644 --- a/src/shared/bus-unit-util.c +++ b/src/shared/bus-unit-util.c @@ -154,8 +154,10 @@ int bus_append_unit_property_assignment(sd_bus_message *m, const char *assignmen } else if (STR_IN_SET(field, "MemoryLow", "MemoryHigh", "MemoryMax", "MemorySwapMax", "MemoryLimit")) { uint64_t bytes; - if (isempty(eq) || streq(eq, "infinity")) + if (streq(eq, "infinity")) bytes = CGROUP_LIMIT_MAX; + else if (isempty(eq)) + bytes = streq(field, "MemoryLow") ? CGROUP_LIMIT_MIN : CGROUP_LIMIT_MAX; else { r = parse_percent(eq); if (r >= 0) { -- 2.26.2 ++++++ 0015-cgroup-Parse-infinity-properly-for-memory-protection.patch ++++++ From aacbbb51c5991f06934ee6029146007fb802a26c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Michal=20Koutn=C3=BD?= <mkoutny@suse.com> Date: Thu, 9 Jul 2020 19:28:15 +0200 Subject: [PATCH 15/15] cgroup: Parse infinity properly for memory protections This fixes commit db2b8d2e2895010f3443a589c9c1f1dfb25256a6 that rectified parsing empty values but broke parsing explicit infinity. Intended parsing semantics will be captured in a testcase in a follow up commit. Ref: #16248 (cherry picked from commit 67e2baff6be8052f48dfdb2258fb68d63c95fe01) [mkoutny: fixes bsc#1167471] [mkoutny: dropped parts for MemoryMin,DefaultMemory{Min,Low}] --- src/core/load-fragment.c | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/src/core/load-fragment.c b/src/core/load-fragment.c index dea1f10c69..a5e1b0eec9 100644 --- a/src/core/load-fragment.c +++ b/src/core/load-fragment.c @@ -3043,10 +3043,9 @@ int config_parse_memory_limit( uint64_t bytes = CGROUP_LIMIT_MAX; int r; - if (STR_IN_SET(lvalue, "MemoryLow")) + if (isempty(rvalue) && STR_IN_SET(lvalue, "MemoryLow")) bytes = CGROUP_LIMIT_MIN; - - if (!isempty(rvalue) && !streq(rvalue, "infinity")) { + else if (!isempty(rvalue) && !streq(rvalue, "infinity")) { r = parse_percent(rvalue); if (r < 0) { -- 2.26.2 ++++++ 60-io-scheduler.rules ++++++ # Set optimal IO schedulers for HDD and SSD ACTION!="add", GOTO="scheduler_end" SUBSYSTEM!="block", GOTO="scheduler_end" # Do not change scheduler if `elevator` cmdline parameter is set IMPORT{cmdline}="elevator" ENV{elevator}=="?*", GOTO="scheduler_end" # Determine if BLK-MQ is enabled TEST=="%S%p/mq", ENV{.IS_MQ}="1" # MQ: BFQ scheduler for HDD ENV{.IS_MQ}=="1", ATTR{queue/rotational}!="0", ATTR{queue/scheduler}="bfq" # Non-MQ: CFQ scheduler for HDD ENV{.IS_MQ}!="1", ATTR{queue/rotational}!="0", ATTR{queue/scheduler}="cfq" # Non-MQ: deadline scheduler for SSD ENV{.IS_MQ}!="1", ATTR{queue/rotational}=="0", ATTR{queue/scheduler}="deadline" LABEL="scheduler_end" ++++++ 80-acpi-container-hotplug.rules ++++++ # ACPI0004 container offline for Huawei Kunlun # do not edit this file, it will be overwritten on update SUBSYSTEM=="container", ACTION=="change", ENV{EVENT}=="offline", ATTR{online}=="1", ATTR{[dmi/id]sys_vendor}=="Huawei", ATTR{[dmi/id]product_name}=="9008|9016|9032", DEVPATH=="*/ACPI0004:??", \ RUN+="/usr/bin/sh -c ' \ /usr/bin/find -L /sys/$env{DEVPATH}/firmware_node/*/physical_node* -maxdepth 1 -name online | \ while read line; do \ if [ $(/usr/bin/cat $line) -eq 1 ]; then \ /usr/bin/echo 0 > $line; \ fi \ done; \ /usr/bin/echo 0 > /sys/$env{DEVPATH}/online; '" ++++++ 80-hotplug-cpu-mem.rules ++++++ # do not edit this file, it will be overwritten on update # # Hotplug physical CPU # SUBSYSTEM=="cpu", ACTION=="add", TEST=="online", ATTR{online}=="0", ATTR{online}="1" # # Hotplug physical memory. Instances of tmpfs are remounted so their # size are recalculated. This might be needed if some sizes were # specified relative to the total amount of memory (boo#869603). For # now make it simple and remount all tmpfs regardless of how their # size are specified. It should be handled by the kernel as it has a # lot of shortcomings anyways (tmpfs mounted by other processes, mount # namespaces, ...) # SUBSYSTEM=="memory", ACTION=="add", PROGRAM=="/usr/bin/uname -m", RESULT!="s390x", ATTR{state}=="offline", \ ATTR{state}="online", \ RUN+="/bin/sh -c ' \ while read src dst fs opts unused; do \ case $fs in \ tmpfs) mount -o remount \"$dst\" ;; \ esac \ done </proc/self/mounts" ++++++ 99-wakeup-from-idle.rules ++++++ # enable usb and standard AT Keyboards as wakeup sources for suspend-to-idle (S2I) fate#323814 ACTION=="add", ATTR{power/wakeup}=="disabled", SUBSYSTEM=="serio", ATTR{description}=="i8042 KBD port", ATTR{power/wakeup}="enabled" ACTION=="add", ATTR{power/wakeup}=="disabled", SUBSYSTEM=="hid", ATTRS{bInterfaceProtocol}=="01", ATTR{power/wakeup}="enabled" ++++++ _service ++++++ <!-- See https://en.opensuse.org/openSUSE:Build_Service_Concept_SourceService --> <!-- for more details on the syntax --> <services> <service name="tar_scm" mode="disabled"> <param name="scm">git</param> <param name="url">https://github.com/openSUSE/systemd.git</param> <param name="filename">systemd</param> <param name="versionformat">@PARENT_TAG@+suse.@TAG_OFFSET@.g%h</param> <param name="revision">SLE15</param> </service> <service name="recompress" mode="disabled"> <param name="file">*systemd-v234+suse.*.tar</param> <param name="compression">xz</param> </service> </services> ++++++ after-local.service ++++++ # This file is part of systemd. # # systemd is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. [Unit] Description=/etc/init.d/after.local Compatibility ConditionFileIsExecutable=/etc/init.d/after.local After=getty.target [Service] Type=idle ExecStart=/etc/init.d/after.local TimeoutSec=0 RemainAfterExit=yes ++++++ baselibs.conf ++++++ # # https://en.opensuse.org/openSUSE:Build_Service_baselibs.conf#Quickstart # systemd supplements "packageand(systemd:pam-<targettype>)" -/lib/systemd/system/ -/usr/lib/systemd/libsystemd-shared.*\.so post "<prefix>%{_sbindir}/pam-config -a --systemd || :" libsystemd0 libudev1 libudev-devel nss-myhostname nss-mymachines ++++++ kbd-model-map.legacy ++++++ # Additional layouts offered by YaST Pl02 pl pc105 - terminate:ctrl_alt_bksp arabic ara,us pc105 - terminate:ctrl_alt_bksp,grp:shift_toggle cn-latin1 ca pc105 multix terminate:ctrl_alt_bksp cz-lat2-us cz,us pc105 qwerty,basic terminate:ctrl_alt_bksp,grp:shift_toggle es-cp850 es pc105 - terminate:ctrl_alt_bksp ir ir pc105 - terminate:ctrl_alt_bksp korean kr pc105 - terminate:ctrl_alt_bksp lt.std lt pc105 std terminate:ctrl_alt_bksp no-latin1 no pc105 - terminate:ctrl_alt_bksp ruwin_alt-UTF-8 us,ru pc105 ,winkeys terminate:ctrl_alt_bksp,grp:ctrl_shift_toggle,grp_led:scroll ++++++ pre_checkin.sh ++++++ #!/bin/sh # This script is based on libcdio_spec-prepare.sh (thanks to sbrabec@suse.cz) # create a -mini spec for systemd for bootstrapping ORIG_SPEC=systemd EDIT_WARNING="##### WARNING: please do not edit this auto generated spec file. Use the ${ORIG_SPEC}.spec! #####\n" sed "s/^%define bootstrap .*$/${EDIT_WARNING}%define bootstrap 1/; s/^%define mini .*$/${EDIT_WARNING}%define mini -mini/; s/^Name:.*/&-mini/ " < ${ORIG_SPEC}.spec > ${ORIG_SPEC}-mini.spec cp ${ORIG_SPEC}.changes ${ORIG_SPEC}-mini.changes cp ${ORIG_SPEC}-rpmlintrc ${ORIG_SPEC}-mini-rpmlintrc osc service localrun format_spec_file ++++++ scripts-systemd-fix-machines-btrfs-subvol.sh ++++++ #! /bin/bash # # This is used to initially create /var/lib/machines subvolume in case # the system we're running on is using BTRFS with the specific layout # used by snapper to perform snapshots, rollbacks, etc... # # Unfortunately some distros (TW) already shipped versions with # systemd creating a plain subvolume which breaks snapper. # # If /var/lib/machines is already populated then it's going to be # pretty ugly to convert the old subvolume into a new one specially # since it can be in use. # # Hopefully not a lot of users are using machinectl to import # container/VM images. So in most of the cases this directory should # be empty and we can then simple delete the subvolume and create a # new one respecting the snapper layout. # # In the rare case where /var/lib/machines is populated, we will warn # the user and let him fix it manually. # # In order to avoid ugly dependencies added in systemd package, this # script should only be called during package updates when # mksubvolume(8) is available. During installation, /var/lib/machines # is supposed to be created by the installer now. # # See bsc#992573 # warn() { echo >&2 "warning: $@" } is_btrfs_subvolume() { # On btrfs subvolumes always have the inode 256 test $(stat --format=%i "$1") -eq 256 } # This assumes the directory/subvol is emptied by the caller. rm_subvolume_or_directory() { is_btrfs_subvolume "$1" && { btrfs subvolume delete "$1" return } rmdir "$1" } on_exit() { # Simply print a common error message in case something went # wrong. if test $? -ne 0; then warn "Please fix /var/lib/machines manually." # FIXME: point to a documentation explaining how to do # that. exit 1 fi } # # If there's already an entry in fstab for /var/lib/machines, it # means that: # # - the installer initialized /var/lib/machines correctly (default) # - we already fixed it # - the sysadmin added it manually # # In any cases we should exit. # # Note: we can't simply check if /var/lib/machines has been mounted # because an update through a chroot might be in progress (see # bsc#1030290). # if mount --fake /var/lib/machines 2>/dev/null; then exit fi # # If there is already an entry in fstab for /var, it means that: # # - the system has a seperate /var subvolume (default from Feb 2018) # - the system has a seperate /var partition # # In any case we should exit # if mount --fake /var 2>/dev/null; then exit fi # # If something is already mounted don't try to fix anything, it's been # done manually by the sysadmin. # if mountpoint -q /var/lib/machines; then exit fi # # Let's try to figure out if the current filesystem uses a Snapper # BTRFS specific layout. Note that TW uses a different layout than # SLE... # # FIXME: not sure if it's correct, reliable or optimal. # case $(findmnt -nr -t btrfs -o FSROOT / 2>/dev/null) in *.snapshots/*/snapshot*) ;; *) exit 0 esac trap on_exit EXIT if test -d /var/lib/machines; then # # Ok, we're on a system supporting rollbacks and # /var/lib/machines is not a subvolume remotely mounted so it # cannot be suitable for systems supporting rollback. Fix it. # echo "Making /var/lib/machines suitable for rollbacks..." type mksubvolume >/dev/null 2>&1 || { warn "mksubvolume(8) is not installed, aborting." exit 1 } test "$(ls -A /var/lib/machines/)" && { warn "/var/lib/machines is not empty, aborting." exit 1 } echo "Deleting empty /var/lib/machines directory/subvolume" rm_subvolume_or_directory /var/lib/machines || { warn "fail to delete /var/lib/machines" exit 1 } fi # At this point /var/lib/machines shouldn't exist. echo "Creating /var/lib/machines subvolume suitable for rollbacks." mksubvolume /var/lib/machines ++++++ scripts-systemd-migrate-sysconfig-i18n.sh ++++++ #! /bin/bash # /etc/sysconfig/console | /etc/vconsole.conf # -------------------------+--------------------- # CONSOLE_FONT | FONT # CONSOLE_SCREENMAP | FONT_MAP # CONSOLE_UNICODEMAP | FONT_UNIMAP migrate_locale () { local migrated="" if ! test -f /etc/sysconfig/console; then return fi source /etc/sysconfig/console || return if test -f /etc/vconsole.conf; then source /etc/vconsole.conf || return fi if test -n "$CONSOLE_FONT" && test -z "$FONT"; then echo "FONT=$CONSOLE_FONT" >>/etc/vconsole.conf migrated+="CONSOLE_FONT " fi if test -n "$CONSOLE_SCREENMAP" && test -z "$FONT_MAP"; then echo "FONT_MAP=$CONSOLE_SCREENMAP" >>/etc/vconsole.conf migrated+="CONSOLE_SCREENMAP " fi if test -n "$CONSOLE_UNICODEMAP" && test -z "$FONT_UNIMAP"; then echo "FONT_UNIMAP=$CONSOLE_UNICODEMAP" >>/etc/vconsole.conf migrated+="CONSOLE_UNICODEMAP " fi if test -n "$migrated"; then echo >&2 "The following variables from /etc/sysconfig/console have been migrated" echo >&2 "into /etc/vconsole.conf:" echo >&2 for v in $migrated; do echo " - $v=${!v}"; done echo >&2 echo >&2 "Please edit /etc/vconsole.conf if you need to tune these settings" echo >&2 "as /etc/sysconfig/console won't be considered anymore." echo >&2 fi } # /etc/sysconfig/keyboard | /etc/vconsole.conf # -------------------------+--------------------- # KEYTABLE | KEYMAP migrate_keyboard () { local migrated="" if ! test -f /etc/sysconfig/keyboard; then return fi source /etc/sysconfig/keyboard || return if test -f /etc/vconsole.conf; then source /etc/vconsole.conf || return fi if test -n "$KEYTABLE" && test -z "$KEYMAP"; then echo "KEYMAP=$KEYTABLE" >>/etc/vconsole.conf migrated+="KEYTABLE " fi if test -n "$migrated"; then echo >&2 "The following variables from /etc/sysconfig/keyboard have been migrated" echo >&2 "into /etc/vconsole.conf:" echo >&2 for v in $migrated; do echo " - $v=${!v}"; done echo >&2 echo >&2 "Please use localectl(1) if you need to tune these settings since" echo >&2 "/etc/sysconfig/keyboard won't be considered anymore." echo >&2 fi } # According to # https://www.suse.com/documentation/sles-12/book_sle_admin/data/sec_suse_l10n..., # variables in /etc/sysconfig/language are supposed to be passed to # the users' shell *only*. However it seems that there has been some # confusion and they ended up configuring the system-wide locale as # well. The logic followed by systemd was implemented in commit # 01c4b6f4f0d951d17f6873f68156ecd7763429c6, which was reverted. The # code below follows the same logic to migrate content of # /etc/sysconfig/language into locale.conf. migrate_language () { local lang= local migrated=false if ! test -f /etc/sysconfig/language; then return fi source /etc/sysconfig/language || return lang=$(grep ^LANG= /etc/locale.conf 2>/dev/null) lang=${lang#LANG=} case "$ROOT_USES_LANG" in yes) if test -z "$lang" && test -n "$RC_LANG"; then echo "LANG=$RC_LANG" >>/etc/locale.conf migrated=true fi ;; ctype) if ! grep -q ^LC_CTYPE= /etc/locale.conf 2>/dev/null; then : ${lc_ctype:="$lang"} : ${lc_ctype:="$RC_LC_CTYPE"} : ${lc_ctype:="$RC_LANG"} if test -n "$lc_ctype"; then echo "LC_CTYPE=$lc_ctype" >>/etc/locale.conf migrated=true fi fi ;; esac if $migrated; then echo >&2 "The content of /etc/sysconfig/language has been migrated into" echo >&2 "/etc/locale.conf. The former file is now only used for setting" echo >&2 "the locale used by user's shells. The system-wide locale is" echo >&2 "only read from /etc/locale.conf since now." echo >&2 echo >&2 "Please only use localectl(1) or YaST if you need to change the" echo >&2 "settings of the *system-wide* locale from now." fi } # The marker could have been incorrectly put in /usr/lib. In this case # move it to its new place. mv /usr/lib/systemd/scripts/.migrate-sysconfig-i18n.sh~done \ /var/lib/systemd/i18n-migrated &>/dev/null if ! test -e /var/lib/systemd/i18n-migrated; then declare -i rv=0 migrate_locale; rv+=$? migrate_keyboard; rv+=$? migrate_language; rv+=$? test $rv -eq 0 && touch /var/lib/systemd/i18n-migrated fi ++++++ scripts-systemd-upgrade-from-pre-210.sh ++++++ #! /bin/bash # # This script is supposed to be executed from the %post section. It # contains all hacks needed to update a system which was running # systemd < v210. This also includes systems migrating from SysV. # # All hacks can potentially break the admin settings since they work # in /etc... # Try to read default runlevel from the old inittab if it exists. If # it fails fallback to runlevel 3 which should still be better than # the rescue shell. # # Note: /etc/inittab was part of the aaa_base package which can be # upgraded before systemd is. Therefore this file is likely to be # missing. if [ ! -e /etc/systemd/system/default.target -a -e /etc/inittab ]; then runlevel=$(sed -n -r "s/^id:([[:digit:]]):initdefault:/\1/p" /etc/inittab) : ${runlevel:=3} echo "Initializing default.target to runlevel${runlevel}.target" ln -s /usr/lib/systemd/system/runlevel${runlevel}.target /etc/systemd/system/default.target fi # migrate any symlink which may refer to the old path for f in $(find /etc/systemd/system -type l -xtype l); do new_target="/usr$(readlink $f)" [ -f "$new_target" ] && ln -s -f $new_target $f done ++++++ scripts-udev-convert-lib-udev-path.sh ++++++ #! /bin/bash # # When upgrading from systems predating systemd (SLE11, openSUSE # 12.x), udev libexec directory was changed from /lib/udev to # /usr/lib/udev. Some customer scripts might still rely on the old # path, therefore try to create a symlink that preserves the old path # (see bsc#1050152). # # This script is supposed to be called from the %posttrans scection of # the udev package. # convert_lib_udev_path () { local failed=/bin/false # Sanity check: /usr/lib/udev must exist at that point since # the new udev package should have been installed. if ! test -d /usr/lib/udev; then echo >&2 "/usr/lib/udev does not exist, refusing to create" echo >&2 "/lib/udev compat symlink." return 1 fi # If the symlink is missing it probably means that we're # upgrading and the old /lib/udev path was removed as it was # empty at the time the old version of udev was uninstalled. if ! test -e /lib/udev; then echo "Creating /lib/udev -> /usr/lib/udev symlink." ln -s /usr/lib/udev /lib/udev return fi # If a symlink already exists, simply assume that we already # did the job. IOW we're just doing a simple update of # systemd/udev (not upgrading). if test -L /lib/udev; then return fi # Sanity check: refuse to deal with anything but a directory. if ! test -d /lib/udev; then echo >&2 "/lib/udev is not either a directory nor a symlink !" echo >&2 "It won't be converted into a symlink to /usr/lib/udev." echo >&2 "Please create it manually." return 1 fi # /lib/udev exists and is still a directory (probably not # empty otherwise it would have been removed when the old # version of udev was uninstalled), we try to merge its # content with the new location and if it fails we warn the # user and let him sort this out. shopt -s globstar for f in /lib/udev/**; do if test -d "$f"; then continue fi if test -e /usr/"$f"; then echo >&2 "Failed to migrate '$f' to /usr/lib/udev because it already exists." failed=/bin/true continue fi echo "Migrating '$f' in /usr/lib/udev" if ! cp -a --parents "$f" /usr; then echo >&2 "Failed to move '$f' in /usr/lib/udev." failed=/bin/true continue fi rm "$f" done shopt -u globstar if ! $failed; then rm -fr /lib/udev && ln -s ../usr/lib/udev /lib/udev && echo "The content of /lib/udev has been moved in /usr/lib/udev successfully" && echo "and /lib/udev is now a symlink pointing to /usr/lib/udev." && echo "Please note /lib/udev is deprecated and shouldn't be used by" && echo "new scripts/applications anymore." || failed=/bin/true fi if $failed; then echo >&2 "Converting /lib/udev into a symlink pointing to /usr/lib/udev was not" echo >&2 "possible due to previous error(s)." echo >&2 "Please fix them and then create the symlink with:" echo >&2 " 'ln -s ../usr/lib/udev /lib/udev'." return 1 fi } convert_lib_udev_path ++++++ systemd-mini-rpmlintrc ++++++ addFilter("invalid-pkgconfig-file") addFilter(".*dangling-symlink /sbin/(halt|init|poweroff|telinit|shutdown|runlevel|reboot).*") addFilter(".*dangling-symlink .* /dev/null.*") addFilter(".*files-duplicate .*/reboot\.8.*") addFilter(".*files-duplicate .*/sd_is_socket\.3.*") addFilter("non-conffile-in-etc /etc/bash_completion.d/systemd-bash-completion\.sh") addFilter("non-conffile-in-etc /etc/rpm/macros\.systemd") addFilter(".*dbus-policy-allow-receive") addFilter(".*dangling-symlink /lib/udev/devices/std(in|out|err).*") addFilter(".*dangling-symlink /lib/udev/devices/core.*") addFilter(".*dangling-symlink /lib/udev/devices/fd.*") addFilter(".*incoherent-init-script-name boot\.udev.*") addFilter(".init-script-without-%stop_on_removal-preun /etc/init\.d/boot\.udev") addFilter(".init-script-without-%restart_on_update-postun /etc/init\.d/boot\.udev") addFilter(".*devel-file-in-non-devel-package.*udev.pc.*") addFilter(".*libgudev-.*shlib-fixed-dependency.*") addFilter(".*suse-filelist-forbidden-systemd-userdirs.*") addFilter("libudev-mini.*shlib-policy-name-error.*") addFilter("nss-systemd.*shlib-policy-name-error.*") addFilter("nss-myhostname.*shlib-policy-name-error.*") addFilter("nss-mymachines.*shlib-policy-name-error.*") addFilter("nss-resolve.*shlib-policy-name-error.*") addFilter("systemd-logger.*useless-provides sysvinit(syslog).*") addFilter("devel-file-in-non-devel-package.*/usr/share/pkgconfig/(udev|systemd)\.pc.*") addFilter(".*script-without-shebang.*/usr/lib/udev/rule_generator.functions.*") addFilter(".*files-duplicate.*/systemd-logger.*") addFilter(".*missing-call-to-setgroups-before-setuid.*") addFilter(".*missing-call-to-chdir-with-chroot.*") addFilter(".*systemd-service-without-service.*") addFilter(".*shlib-policy-missing-suffix.*") addFilter(".*suse-missing-rclink.*") ++++++ systemd-rpmlintrc ++++++ addFilter("invalid-pkgconfig-file") addFilter(".*dangling-symlink /sbin/(halt|init|poweroff|telinit|shutdown|runlevel|reboot).*") addFilter(".*dangling-symlink .* /dev/null.*") addFilter(".*files-duplicate .*/reboot\.8.*") addFilter(".*files-duplicate .*/sd_is_socket\.3.*") addFilter("non-conffile-in-etc /etc/bash_completion.d/systemd-bash-completion\.sh") addFilter("non-conffile-in-etc /etc/rpm/macros\.systemd") addFilter(".*dbus-policy-allow-receive") addFilter(".*dangling-symlink /lib/udev/devices/std(in|out|err).*") addFilter(".*dangling-symlink /lib/udev/devices/core.*") addFilter(".*dangling-symlink /lib/udev/devices/fd.*") addFilter(".*incoherent-init-script-name boot\.udev.*") addFilter(".init-script-without-%stop_on_removal-preun /etc/init\.d/boot\.udev") addFilter(".init-script-without-%restart_on_update-postun /etc/init\.d/boot\.udev") addFilter(".*devel-file-in-non-devel-package.*udev.pc.*") addFilter(".*libgudev-.*shlib-fixed-dependency.*") addFilter(".*suse-filelist-forbidden-systemd-userdirs.*") addFilter("libudev-mini.*shlib-policy-name-error.*") addFilter("nss-systemd.*shlib-policy-name-error.*") addFilter("nss-myhostname.*shlib-policy-name-error.*") addFilter("nss-mymachines.*shlib-policy-name-error.*") addFilter("nss-resolve.*shlib-policy-name-error.*") addFilter("systemd-logger.*useless-provides sysvinit(syslog).*") addFilter("devel-file-in-non-devel-package.*/usr/share/pkgconfig/(udev|systemd)\.pc.*") addFilter(".*script-without-shebang.*/usr/lib/udev/rule_generator.functions.*") addFilter(".*files-duplicate.*/systemd-logger.*") addFilter(".*missing-call-to-setgroups-before-setuid.*") addFilter(".*missing-call-to-chdir-with-chroot.*") addFilter(".*systemd-service-without-service.*") addFilter(".*shlib-policy-missing-suffix.*") addFilter(".*suse-missing-rclink.*") ++++++ systemd-sysv-convert ++++++ #!/bin/bash if [ "$UID" != "0" ]; then echo Need to be root. exit 1 fi declare -A results_target usage() { cat << EOF usage: systemd-sysv-convert [-h] [--save] [--show] [--apply] SERVICE [SERVICE ...] EOF } help() { usage cat << EOF Save and Restore SysV Service Runlevel Information positional arguments: SERVICE Service names optional arguments: -h, --help show this help message and exit --save Save SysV runlevel information for one or more services --show Show saved SysV runlevel information for one or more services --apply Apply saved SysV runlevel information for one or more services to systemd counterparts EOF } find_service() { local service=$1 local rcnd=$2 case $rcnd in boot.d) [ -L /etc/rc.d/$rcnd/S??boot.$service ] ;; *) [ -L /etc/rc.d/$rcnd/S??$service ] esac } lookup_database() { local services=$@ local service local runlevel local priority # 'priority' field is not used but is kept for backward compat # reason. while read service runlevel priority; do for s in $services ; do if [ $s == $service ]; then results_target[$service]+=" runlevel$runlevel.target" break fi done done < /var/lib/systemd/sysv-convert/database } declare -i fail=0 case "$1" in -h|--help) help exit 0 ;; --save) shift for service in $@ ; do if [ ! -r /etc/init.d/$service ] && [ ! -r /etc/init.d/boot.$service ]; then echo "SysV service $service does not exist, skipping" continue fi for rcnd in rc2.d rc3.d rc4.d rc5.d boot.d; do case $rcnd in rc*.d) runlevel=${rcnd:2:1} ;; boot.d) runlevel=3 ;; esac # Write a dumb priority as it is not used. find_service $service $rcnd && echo "$service $runlevel 50" >>/var/lib/systemd/sysv-convert/database done done ;; --show) shift services=$@ lookup_database $services for service in $services; do if [ -z "${results_target[$service]}" ]; then echo "No information about service $service found." >/dev/stderr let fail++ continue fi for target in ${results_target[$service]}; do echo "SysV service '$service' is pulled by $target" done done ;; --apply) shift services=$@ for service in $services; do if [ ! -f "/lib/systemd/system/$service.service" -a ! -f "/usr/lib/systemd/system/$service.service" ]; then echo systemd service $service.service does not exist. >/dev/stderr exit 1 fi done # # The database might no have been created by a previous --save # call. This can happen when: # # - we're upgrading a package which initially didn't # have any unit file nor sysv init script and now # start shipping one or more unit files (bsc#982303). # # - the sysv init service wasn't enabled at all before # being migrated to a native unit file (bsc#982211). # if [ -e /var/lib/systemd/sysv-convert/database ]; then lookup_database $services for service in $services; do [ -f "/lib/systemd/system/$service.service" ] && unit="/lib/systemd/system/$service.service" [ -f "/usr/lib/systemd/system/$service.service" ] && unit="/usr/lib/systemd/system/$service.service" # If $service is not present in the database, # then it simply means that the sysv init # service was not enabled at all. for target in ${results_target[$service]}; do echo ln -sf $unit /etc/systemd/system/$target.wants/$service.service >/dev/stderr mkdir -p "/etc/systemd/system/$target.wants" /bin/ln -sf $unit /etc/systemd/system/$target.wants/$service.service done done fi ;; *) usage let fail=2 ;; esac exit $fail ++++++ systemd-sysv-install ++++++ #!/bin/sh # This script is called by "systemctl enable/disable" when the given unit is a # SysV init.d script. It needs to call the distribution's mechanism for # enabling/disabling those, such as chkconfig, update-rc.d, or similar. This # can optionally take a --root argument for enabling a SysV init script # in a chroot or similar. set -e usage() { echo "Usage: $0 [--root=path] enable|disable|is-enabled <sysv script name>" >&2 exit 1 } # parse options eval set -- "$(getopt -o r: --long root: -- "$@")" while true; do case "$1" in -r|--root) ROOT="$2" shift 2 ;; --) shift ; break ;; *) usage ;; esac done NAME="$2" [ -n "$NAME" ] || usage case "$1" in enable) chkconfig $ROOT --no-systemctl -s "$NAME" on ;; disable) chkconfig $ROOT --no-systemctl -s "$NAME" off ;; is-enabled) chkconfig $ROOT --no-systemctl -c "$NAME" ;; *) usage ;; esac ++++++ systemd-user ++++++ # This file is part of systemd. # # Used by systemd --user instances. account include common-account session required pam_selinux.so close session required pam_selinux.so nottys open session include common-session
participants (1)
-
Source-Sync