From a92b30d3f45eaf383ff3f7587a0bcf391988d3c6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Thu, 14 Nov 2024 11:21:39 +0100 Subject: [PATCH 01/17] Disable freezing of user sessions ... (rhbz#2321268) --- systemd.spec | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/systemd.spec b/systemd.spec index b06d182..5fa75af 100644 --- a/systemd.spec +++ b/systemd.spec @@ -1022,6 +1022,15 @@ mv %{buildroot}/usr/lib/tmpfiles.d/20-systemd-userdb.conf{,.example} install -m 0644 -t %{buildroot}%{_prefix}/lib/pam.d/ %{SOURCE26} +# Disable freezing of user sessions while we're working out the details. +mkdir -p %{buildroot}/usr/lib/systemd/system/service.d/ +cat >>%{buildroot}/usr/lib/systemd/system/service.d/50-keep-warm.conf < Date: Thu, 14 Nov 2024 19:47:25 +0100 Subject: [PATCH 02/17] Version 256.8 - Improvements to logging, documentation, systemd, systemd-repart, systemd-networkd, systemd-network-generator, systemd-nspawn, systemd-resolved, systemd-run, systemd-dissect, systemd-pcrlock, systemd-logind, systemd-bsod, udev, ukify - Resolves #2323323: system will boot to cgroup v2 automatically unless overriden - Resolves #2321268: freezing of user processes is disabled - Hardware database is updated --- sources | 2 +- systemd.spec | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sources b/sources index db248bb..83e8884 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (systemd-256.7.tar.gz) = 2ff3805a7d97780a716b23ddeea3722a85aba6326ecee527e53e9d35510a0ffa5ec0bf0cdbf8f3409bb9c6832406916f63eb7e8305db5f67c284e5590c642422 +SHA512 (systemd-256.8.tar.gz) = 0cdd41274b79177705f6999194ea2698e8bccd123d983733972e0fba4ece5467eddefec419a992d1646e93adda7b811810deec163a15f2c9347473caefe2ce09 diff --git a/systemd.spec b/systemd.spec index 5fa75af..845d1b1 100644 --- a/systemd.spec +++ b/systemd.spec @@ -47,7 +47,7 @@ Name: systemd Url: https://systemd.io # Allow users to specify the version and release when building the rpm by # setting the %%version_override and %%release_override macros. -Version: %{?version_override}%{!?version_override:256.7} +Version: %{?version_override}%{!?version_override:256.8} Release: %autorelease %global stable %(c="%version"; [ "$c" = "${c#*.*}" ]; echo $?) From c3994a98c6289f8d85c38a98745cc602682ab7e0 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Tue, 19 Nov 2024 13:16:16 +0100 Subject: [PATCH 03/17] Pull in qemu from systemd-container Based on https://gitlab.archlinux.org/archlinux/packaging/packages/systemd/-/issues/27. (cherry picked from commit 37c10f5b0337af1efeaa33296b31a8c1a6bdc2b1) --- systemd.spec | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/systemd.spec b/systemd.spec index 845d1b1..95e3cfa 100644 --- a/systemd.spec +++ b/systemd.spec @@ -543,7 +543,11 @@ Requires: %{name}%{_isa} = %{version}-%{release} Requires(post): systemd%{_isa} = %{version}-%{release} Requires(preun): systemd%{_isa} = %{version}-%{release} Requires(postun): systemd%{_isa} = %{version}-%{release} -# obsolete parent package so that dnf will install new subpackage on upgrade (#1260394) +# For systemd-vmspawn which uses qemu: +Recommends: qemu-kvm +Recommends: qemu-device-display-virtio-gpu +Recommends: qemu-device-display-virtio-vga +# Obsolete parent package so that dnf will install new subpackage on upgrade (#1260394) Obsoletes: %{name} < 229-5 # Bias the system towards libcurl-minimal if nothing pulls in full libcurl (#1997040) Suggests: libcurl-minimal From 3f6fc0ca22c24c9a201bb43f9005d5f320af68c2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Fri, 29 Nov 2024 14:54:20 +0100 Subject: [PATCH 04/17] Version 256.9 - Resolves rhbz#2329211 --- sources | 2 +- systemd.spec | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sources b/sources index 83e8884..93e7a3a 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (systemd-256.8.tar.gz) = 0cdd41274b79177705f6999194ea2698e8bccd123d983733972e0fba4ece5467eddefec419a992d1646e93adda7b811810deec163a15f2c9347473caefe2ce09 +SHA512 (systemd-256.9.tar.gz) = aba7a0f7149fe3d28d9f930f244d5b997c28721e93e6f0768b0f0f1c918c87a0e8b7b347cffb2faa4740ca3ee3b04984454e85757365090a2cf32aba09f70681 diff --git a/systemd.spec b/systemd.spec index 95e3cfa..3db46cb 100644 --- a/systemd.spec +++ b/systemd.spec @@ -47,7 +47,7 @@ Name: systemd Url: https://systemd.io # Allow users to specify the version and release when building the rpm by # setting the %%version_override and %%release_override macros. -Version: %{?version_override}%{!?version_override:256.8} +Version: %{?version_override}%{!?version_override:256.9} Release: %autorelease %global stable %(c="%version"; [ "$c" = "${c#*.*}" ]; echo $?) From 3ceacb33df4ec0569436d851f585767f1bcf96a8 Mon Sep 17 00:00:00 2001 From: David Tardon Date: Thu, 24 Oct 2024 09:24:58 +0200 Subject: [PATCH 05/17] Use %systemd_preun in systemd-resolved With that, systemd-resolved.service is not only disabled but also stopped on package uninstall. ... (rhbz#2305391) (cherry picked from commit 009c64d6a2bfc60153d1c418f384cf527bccb2a0) --- systemd.spec | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/systemd.spec b/systemd.spec index 3db46cb..1a524b1 100644 --- a/systemd.spec +++ b/systemd.spec @@ -1198,10 +1198,8 @@ fi %systemd_post systemd-resolved.service %preun resolved +%systemd_preun systemd-resolved.service if [ $1 -eq 0 ] ; then - systemctl disable --quiet \ - systemd-resolved.service \ - >/dev/null || : if [ -L /etc/resolv.conf ] && \ realpath /etc/resolv.conf | grep ^/run/systemd/resolve/; then rm -f /etc/resolv.conf # no longer useful From 4eb922626db12a4e1863e637bfce0aee2fc670f6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Tue, 3 Dec 2024 14:11:24 +0100 Subject: [PATCH 06/17] Recommend qemu-kvm-core instead of qemu-kvm ... (rhbz#2329979) (cherry picked from commit 8dc31eaf041f4ec6e0aa75a3c45d993f49f6c9c3) --- systemd.spec | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/systemd.spec b/systemd.spec index 1a524b1..7061f16 100644 --- a/systemd.spec +++ b/systemd.spec @@ -544,7 +544,7 @@ Requires(post): systemd%{_isa} = %{version}-%{release} Requires(preun): systemd%{_isa} = %{version}-%{release} Requires(postun): systemd%{_isa} = %{version}-%{release} # For systemd-vmspawn which uses qemu: -Recommends: qemu-kvm +Recommends: qemu-kvm-core Recommends: qemu-device-display-virtio-gpu Recommends: qemu-device-display-virtio-vga # Obsolete parent package so that dnf will install new subpackage on upgrade (#1260394) From ee26ea473bd3c66683c86996378a507f3af4c9dd Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Sat, 21 Dec 2024 10:45:52 +0100 Subject: [PATCH 07/17] Version 256.10 - Fixes for man pages, shell completion, logging, systemd-networkd, systemd-resolved, systemctl edit. --- sources | 2 +- systemd.spec | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sources b/sources index 93e7a3a..e67585d 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (systemd-256.9.tar.gz) = aba7a0f7149fe3d28d9f930f244d5b997c28721e93e6f0768b0f0f1c918c87a0e8b7b347cffb2faa4740ca3ee3b04984454e85757365090a2cf32aba09f70681 +SHA512 (systemd-256.10.tar.gz) = 4ae25a40a473984c4caefd63e69af12c8965184c1c55539086b04050a457bb0175f15adf87b3a86b476357ccb402abc72844033e40e2dc4f9abb6cc3bb65e22c diff --git a/systemd.spec b/systemd.spec index 7061f16..45346b2 100644 --- a/systemd.spec +++ b/systemd.spec @@ -47,7 +47,7 @@ Name: systemd Url: https://systemd.io # Allow users to specify the version and release when building the rpm by # setting the %%version_override and %%release_override macros. -Version: %{?version_override}%{!?version_override:256.9} +Version: %{?version_override}%{!?version_override:256.10} Release: %autorelease %global stable %(c="%version"; [ "$c" = "${c#*.*}" ]; echo $?) From 41b48d4660731f4e48324a9a081364883f1de197 Mon Sep 17 00:00:00 2001 From: Orion Poplawski Date: Sat, 4 Jan 2025 12:16:21 -0700 Subject: [PATCH 08/17] Disable unmerged-bin taint for F41 (rhbz#2334525) --- systemd-unmerged-bin.patch | 16 ++++++++++++++++ systemd.spec | 3 +++ 2 files changed, 19 insertions(+) create mode 100644 systemd-unmerged-bin.patch diff --git a/systemd-unmerged-bin.patch b/systemd-unmerged-bin.patch new file mode 100644 index 0000000..01558d9 --- /dev/null +++ b/systemd-unmerged-bin.patch @@ -0,0 +1,16 @@ +diff -up systemd-256.10/src/core/taint.c.unmerged-bin systemd-256.10/src/core/taint.c +--- systemd-256.10/src/core/taint.c.unmerged-bin 2024-12-20 12:47:26.000000000 -0700 ++++ systemd-256.10/src/core/taint.c 2025-01-04 12:12:51.478892350 -0700 +@@ -45,10 +45,10 @@ char* taint_string(void) { + stage[n++] = "unmerged-usr"; + + /* Note that the check is different from default_PATH(), as we want to taint on uncanonical symlinks +- * too. */ ++ * too. + if (readlink_malloc("/usr/sbin", &usr_sbin) < 0 || !PATH_IN_SET(usr_sbin, "bin", "/usr/bin")) + stage[n++] = "unmerged-bin"; +- ++ */ + if (readlink_malloc("/var/run", &var_run) < 0 || !PATH_IN_SET(var_run, "../run", "/run")) + stage[n++] = "var-run-bad"; + diff --git a/systemd.spec b/systemd.spec index 45346b2..c954f64 100644 --- a/systemd.spec +++ b/systemd.spec @@ -124,6 +124,9 @@ Patch0491: https://github.com/systemd/systemd/pull/30846.patch # Soft-disable tmpfiles --purge until a good use case comes up. Patch0492: 0001-tmpfiles-make-purge-hard-to-mis-use.patch +# Remove the unmerged-bin taint for F41, this will be done in F42 +Patch0500: systemd-unmerged-bin.patch + %ifarch %{ix86} x86_64 aarch64 riscv64 %global want_bootloader 1 %endif From 40f67b2223068c2d28024716e119b4f22d4a1a2b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Wed, 8 Jan 2025 12:43:11 +0100 Subject: [PATCH 09/17] Version 256.11 - Fixes for assertion crashes and memory access issues in pid1 and systemd-machined, and other fixes for systemd-repart, systemd-resolved, systemd-stdio-bridge, sd-device, hibernation, and the hardware database. --- sources | 2 +- systemd.spec | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sources b/sources index e67585d..33003ea 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (systemd-256.10.tar.gz) = 4ae25a40a473984c4caefd63e69af12c8965184c1c55539086b04050a457bb0175f15adf87b3a86b476357ccb402abc72844033e40e2dc4f9abb6cc3bb65e22c +SHA512 (systemd-256.11.tar.gz) = e0045963f0614dc3019f23d55e792ae1e5837cc1622f0ab73524ef65521f9ebf12ae57b7215712d84f555f506683ef3bc0429dc90a3bfd5f904b50cc016b9baa diff --git a/systemd.spec b/systemd.spec index c954f64..b5a4cfa 100644 --- a/systemd.spec +++ b/systemd.spec @@ -47,7 +47,7 @@ Name: systemd Url: https://systemd.io # Allow users to specify the version and release when building the rpm by # setting the %%version_override and %%release_override macros. -Version: %{?version_override}%{!?version_override:256.10} +Version: %{?version_override}%{!?version_override:256.11} Release: %autorelease %global stable %(c="%version"; [ "$c" = "${c#*.*}" ]; echo $?) From 72ca4d6761b9f4bf0332e1edad5f256c33f2876c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Thu, 13 Feb 2025 20:56:21 +0100 Subject: [PATCH 10/17] Move some files into subpackages - systemd-ac-power is moved to systemd-udev - portablectl and importctl are moved to systemd-container (rhbz#2345551) ac-power clearly is only useful for real hardware. portablectl and importctl are niche tools that don't need to be in the main package (even though they could theoretically be used not for containers). Also split up some nested patterns into separate lines for readability. (cherry picked from commit 49ec9f3286e6c18e48f3ee3a08da950d0113f853) (cherry picked from commit 3671a5cc790f4aa82cbf1a179a15e11a96b76438) --- split-files.py | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/split-files.py b/split-files.py index 51400fd..8fe6244 100644 --- a/split-files.py +++ b/split-files.py @@ -137,10 +137,20 @@ for file in files(buildroot): elif re.search(r'''mymachines| machinectl| + importctl| + portablectl| systemd-nspawn| + systemd\.nspawn| systemd-vmspawn| + systemd-dissect| import-pubring.gpg| - systemd-(machined|import|pull)| + systemd-machined| + systemd-import| + systemd-export| + systemd-pull| + systemd-mountfsd| + systemd-mountwork| + systemd-nsresource| /machine.slice| /machines.target| var-lib-machines.mount| @@ -173,6 +183,7 @@ for file in files(buildroot): elif re.search(r'''udev(?!\.pc)| hwdb| + ac-power| bootctl| boot-update| bless-boot| From a40f4198a4505b24634483f443a223d7f1b5a108 Mon Sep 17 00:00:00 2001 From: Daan De Meyer Date: Tue, 25 Feb 2025 13:18:40 +0100 Subject: [PATCH 11/17] List the fallback Source0 first packit will only rewrite the first Source0 that it finds, so we list the Source0 that gets used if neither %branch nor %commit are defined first. (cherry picked from commit 5671cf6132e2a1b915b39fe5a46a1fe9b6fa50bf) [skip changelog] --- systemd.spec | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/systemd.spec b/systemd.spec index b5a4cfa..b30f939 100644 --- a/systemd.spec +++ b/systemd.spec @@ -57,12 +57,14 @@ License: LGPL-2.1-or-later AND MIT AND GPL-2.0-or-later Summary: System and Service Manager # download tarballs with "spectool -g systemd.spec" -%if %{defined branch} +# packit will always rewrite the first Source0 it finds, ignoring any conditionals so list +# the fallback source that's used if neither %%branch nor %%commit are defined first. +%if %{undefined branch} && %{undefined commit} +Source0: https://github.com/systemd/systemd/archive/v%{version_no_tilde}/%{name}-%{version_no_tilde}.tar.gz +%elif %{defined branch} Source0: https://github.com/systemd/systemd/archive/refs/heads/%{branch}.tar.gz %elif %{defined commit} Source0: https://github.com/systemd/systemd/archive/%{commit}/%{name}-%{shortcommit}.tar.gz -%else -Source0: https://github.com/systemd/systemd/archive/v%{version_no_tilde}/%{name}-%{version_no_tilde}.tar.gz %endif # This file must be available before %%prep. # It is generated during systemd build and can be found in build/src/core/. From ee233650c64451c90bcf9c6cad441be1dab13faa Mon Sep 17 00:00:00 2001 From: Daan De Meyer Date: Mon, 3 Mar 2025 21:46:20 +0100 Subject: [PATCH 12/17] Make sure we pull in libbpf >= 2:1.4.7 if libbpf is installed libbpf 1.4.0 + systemd 257 + a newer kernel results in segmentation faults in libbpf 1.4.0, so let's explicitly pull in libbpf 1.5.0 or newer to avoid this issue. Fixes https://pagure.io/centos-sig-hyperscale/package-bugs/issue/22 (cherry picked from commit 8230f501b6cc6e47f2073a388f0f61c1c204013c) Include epoch in versioned libbpf dependency """ $ rpmdev-vercmp '2:1.4.6-1.fc42' '1.5.0' 2:1.4.6-1.fc42 > 1.5.0 $ rpmdev-vercmp '2:1.4.6-1.fc42' '2:1.5.0' 2:1.4.6-1.fc42 < 2:1.5.0 """ (cherry picked from commit 0d95af264fda2c8b3ecfedf9cc45ee450c933753) Drop libbpf versioned dependency version to 1.4.7 We don't need 1.5.0 to avoid the libbpf crash, the latest libbpf 1.4 patch release (1.4.7) also has the necessary fixes, so relax the requirement a little to allow builds on Fedora 41 to succeed. (cherry picked from commit ec182495e7ffaffa5d85feb2e25d1f6dd3ca47ae) --- systemd.spec | 1 + 1 file changed, 1 insertion(+) diff --git a/systemd.spec b/systemd.spec index b30f939..9ca8336 100644 --- a/systemd.spec +++ b/systemd.spec @@ -256,6 +256,7 @@ Requires: %{name}-libs%{_isa} = %{version}-%{release} %{?fedora:Recommends: %{name}-resolved = %{version}-%{release}} Recommends: diffutils Requires: (util-linux-core or util-linux) +Requires: (libbpf >= 2:1.4.7 if libbpf) Provides: /bin/systemctl Provides: /sbin/shutdown Provides: syslog From 5b3339107b02e1de1274c8c52e7becc287723697 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Fri, 7 Mar 2025 10:10:47 +0100 Subject: [PATCH 13/17] Version 256.12 - Fixes for systemd itself, sd-boot, systemd-resolved, systemd-id128, systemd-networkd, systemd-logind, systemd-tmpfiles, systemd-vmspawn, systemd-userdb, udev, ukify, systemctl, homectl, fido2 code, virtualization detection, internal shared library, shell completions, documentation. - Hardware database is updated - Adds new DNSSEC anchor key for systemd-resolved - Adds new Fedora keys for systemd-importd - Adds a Georgian mapping to the keymap list --- sources | 2 +- systemd.spec | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/sources b/sources index 33003ea..88551fc 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (systemd-256.11.tar.gz) = e0045963f0614dc3019f23d55e792ae1e5837cc1622f0ab73524ef65521f9ebf12ae57b7215712d84f555f506683ef3bc0429dc90a3bfd5f904b50cc016b9baa +SHA512 (systemd-256.12.tar.gz) = 7c0f22e4eb562f028cbec8ddfcc7bbb7272c41b91b9578a61b95d895b746653d36a17b52b78e9297b9dd09049c72bfe6be073319a00629f263f2a9f9b1e5cba4 diff --git a/systemd.spec b/systemd.spec index 9ca8336..ef0d20c 100644 --- a/systemd.spec +++ b/systemd.spec @@ -47,7 +47,7 @@ Name: systemd Url: https://systemd.io # Allow users to specify the version and release when building the rpm by # setting the %%version_override and %%release_override macros. -Version: %{?version_override}%{!?version_override:256.11} +Version: %{?version_override}%{!?version_override:256.12} Release: %autorelease %global stable %(c="%version"; [ "$c" = "${c#*.*}" ]; echo $?) @@ -498,7 +498,7 @@ Requires: (systemd-boot if %{shrink:( )}) Requires: python3dist(pefile) %if 0%{?fedora} -Requires: python3dist(zstd) +Requires: python3dist(zstandard) %endif Requires: python3dist(cryptography) %if 0%{?fedora} From 5a92c6fd4ce980e808cf135cd353bb1d99c38b90 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Thu, 15 May 2025 10:39:49 +0200 Subject: [PATCH 14/17] Version 256.13 - Various small fixes in multiple components --- sources | 2 +- systemd.spec | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sources b/sources index 88551fc..7b30062 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (systemd-256.12.tar.gz) = 7c0f22e4eb562f028cbec8ddfcc7bbb7272c41b91b9578a61b95d895b746653d36a17b52b78e9297b9dd09049c72bfe6be073319a00629f263f2a9f9b1e5cba4 +SHA512 (systemd-256.13.tar.gz) = e25b3e5bce42211918058320789ab154282ecb264803ddcb9e0fb3afbb53417eeea29dcd183b68dd758e39f28cab2e1ba3267766e589f5129e213e12f109017e diff --git a/systemd.spec b/systemd.spec index ef0d20c..31368d4 100644 --- a/systemd.spec +++ b/systemd.spec @@ -47,7 +47,7 @@ Name: systemd Url: https://systemd.io # Allow users to specify the version and release when building the rpm by # setting the %%version_override and %%release_override macros. -Version: %{?version_override}%{!?version_override:256.12} +Version: %{?version_override}%{!?version_override:256.13} Release: %autorelease %global stable %(c="%version"; [ "$c" = "${c#*.*}" ]; echo $?) From 0c6358fb6dc81b6fa23e929429736bb3456ab457 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Thu, 29 May 2025 19:59:09 +0200 Subject: [PATCH 15/17] Version 257.6 - Fix for local information disclosure in systemd-coredump (CVE-2025-4598) - Various other fixes --- sources | 2 +- systemd.spec | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sources b/sources index 7b30062..0af6036 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (systemd-256.13.tar.gz) = e25b3e5bce42211918058320789ab154282ecb264803ddcb9e0fb3afbb53417eeea29dcd183b68dd758e39f28cab2e1ba3267766e589f5129e213e12f109017e +SHA512 (systemd-256.15.tar.gz) = 90afb493ab6ef1b432c0867e251c090e65e0bfe5da885d1a423ab4693d72d5f2b53c9cc427a8d3ce2e7a9086a8d8b0e88219eaffa92a1df61a8b8101e40e5af9 diff --git a/systemd.spec b/systemd.spec index 31368d4..22ca36b 100644 --- a/systemd.spec +++ b/systemd.spec @@ -47,7 +47,7 @@ Name: systemd Url: https://systemd.io # Allow users to specify the version and release when building the rpm by # setting the %%version_override and %%release_override macros. -Version: %{?version_override}%{!?version_override:256.13} +Version: %{?version_override}%{!?version_override:256.15} Release: %autorelease %global stable %(c="%version"; [ "$c" = "${c#*.*}" ]; echo $?) From 904dcda39199225742f60fb642ad17e886f5e509 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Fri, 27 Jun 2025 11:37:40 +0200 Subject: [PATCH 16/17] Fix version confusion in %changelog --- changelog | 131 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 131 insertions(+) diff --git a/changelog b/changelog index fb6584d..2b4d090 100644 --- a/changelog +++ b/changelog @@ -1,3 +1,134 @@ +* Thu May 29 2025 Zbigniew Jędrzejewski-Szmek - 256.15-1 +- Version 256.15 +- Fix for local information disclosure in systemd-coredump (CVE-2025-4598) +- Various other fixes + +* Thu May 15 2025 Zbigniew Jędrzejewski-Szmek - 256.13-1 +- Version 256.13 +- Various small fixes in multiple components + +* Fri Mar 07 2025 Zbigniew Jędrzejewski-Szmek - 256.12-1 +- Version 256.12 +- Fixes for systemd itself, sd-boot, systemd-resolved, systemd-id128, + systemd-networkd, systemd-logind, systemd-tmpfiles, systemd-vmspawn, + systemd-userdb, udev, ukify, systemctl, homectl, fido2 code, + virtualization detection, internal shared library, shell completions, + documentation. +- Hardware database is updated +- Adds new DNSSEC anchor key for systemd-resolved +- Adds new Fedora keys for systemd-importd +- Adds a Georgian mapping to the keymap list + +* Fri Mar 07 2025 Daan De Meyer - 256.11-4 +- Make sure we pull in libbpf >= 2:1.4.7 if libbpf is installed + +* Fri Mar 07 2025 Zbigniew Jędrzejewski-Szmek - 256.11-2 +- Move some files into subpackages +- systemd-ac-power is moved to systemd-udev +- portablectl and importctl are moved to systemd-container (rhbz#2345551) + +* Wed Jan 08 2025 Zbigniew Jędrzejewski-Szmek - 256.11-1 +- Version 256.11 +- Fixes for assertion crashes and memory access issues in pid1 and systemd- + machined, and other fixes for systemd-repart, systemd-resolved, systemd- + stdio-bridge, sd-device, hibernation, and the hardware database. + +* Sat Jan 04 2025 Orion Poplawski - 256.10-2 +- Disable unmerged-bin taint for F41 (rhbz#2334525) + +* Sat Dec 21 2024 Zbigniew Jędrzejewski-Szmek - 256.10-1 +- Version 256.10 +- Fixes for man pages, shell completion, logging, systemd-networkd, + systemd-resolved, systemctl edit. + +* Tue Dec 03 2024 Zbigniew Jędrzejewski-Szmek - 256.9-3 +- Recommend qemu-kvm-core instead of qemu-kvm (rhbz#2329979) + +* Fri Nov 29 2024 David Tardon - 256.9-2 +- Use %%systemd_preun in systemd-resolved + +* Fri Nov 29 2024 Zbigniew Jędrzejewski-Szmek - 256.9-1 +- Version 256.9 +- Resolves rhbz#2329211 + +* Tue Nov 19 2024 Zbigniew Jędrzejewski-Szmek - 256.8-2 +- Pull in qemu from systemd-container + +* Thu Nov 14 2024 Zbigniew Jędrzejewski-Szmek - 256.8-1 +- Version 256.8 +- Improvements to logging, documentation, systemd, systemd-repart, systemd- + networkd, systemd-network-generator, systemd-nspawn, systemd-resolved, + systemd-run, systemd-dissect, systemd-pcrlock, systemd-logind, systemd- + bsod, udev, ukify +- Resolves #2323323: system will boot to cgroup v2 automatically unless + overriden +- Resolves #2321268: freezing of user processes is disabled +- Hardware database is updated + +* Thu Nov 14 2024 Zbigniew Jędrzejewski-Szmek - 256.7-2 +- Disable freezing of user sessions (rhbz#2321268) + +* Fri Oct 11 2024 Zbigniew Jędrzejewski-Szmek - 256.7-1 +- Version 256.7 +- Various small fixes in many components +- Documentation updates + +* Tue Sep 24 2024 Zbigniew Jędrzejewski-Szmek - 256.6-3 +- Move yum/dnf protection removal config file under /usr + +* Thu Sep 12 2024 Matteo Croce - 256.6-1 +- Version 256.6 + +* Thu Aug 29 2024 Daan De Meyer - 256.5-6 +- Always build ukify package + +* Wed Aug 28 2024 Daan De Meyer - 256.5-5 +- Do not use patch to modify systemd-user pam config file + +* Wed Aug 28 2024 Daan De Meyer - 256.5-4 +- Drop %%upstream conditionalization for patches + +* Tue Aug 27 2024 Daan De Meyer - 256.5-3 +- Only make python3-pillow Recommends on Fedora + +* Sat Aug 24 2024 Davide Cavalca - 256.5-2 +- Do not require grubby on CentOS Stream 9 + +* Tue Aug 20 2024 Zbigniew Jędrzejewski-Szmek - 256.5-1 +- Version 256.5 +- Includes the patches for the kernel change with kernel threads in leaf + cgroups (https://github.com/systemd/systemd/pull/33885) +- Various smaller fixes + +* Tue Aug 20 2024 Zbigniew Jędrzejewski-Szmek - 256.4-4 +- Disable integration of userdb in sshd + +* Mon Jul 29 2024 Daan De Meyer - 256.4-3 +- Backport patch to only read /proc/cmdline when not in container + +* Mon Jul 29 2024 Daan De Meyer - 256.4-2 +- Backport upstream patch to try more initrd variants in + 90-loaderentry.install + +* Thu Jul 25 2024 Zbigniew Jędrzejewski-Szmek - 256.4-1 +- Version 256.4 +- Hardware db update +- Minor fixes for systemd-udevd and varlink protocol + +* Tue Jul 23 2024 Daan De Meyer - 256.3-3 +- Update tmpfiles --destroy-data patch + +* Tue Jul 23 2024 Zbigniew Jędrzejewski-Szmek - 256.3-1 +- Version 256.3 +- A bunch of fixes for systemd (pid1) +- Various upgrades related to running tests in mkosi + +* Sat Jul 20 2024 Daan De Meyer - 256.2-17 +- Simplify BFQ scheduler enablement + +* Sat Jul 20 2024 Fedora Release Engineering - 256.2-16 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild + * Wed Jul 17 2024 Zbigniew Jędrzejewski-Szmek - 256.2-9 - Backport udma buffer access patch (rhbz#2298422) From 14e219556ae093f2d04ec85683b3cbb390891953 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Fri, 27 Jun 2025 11:44:47 +0200 Subject: [PATCH 17/17] Version 256.17 - Fixes for systemd itself, systemd-networkd, systemd-ssh-generator, systemd-fstab-generator, bootctl, systemd-repart, systemd-vmspawn, the shared library code, udev rules, resolvectl, shell completions, documentation - Update of the hardware database --- sources | 2 +- systemd.spec | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sources b/sources index 0af6036..d345cd3 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (systemd-256.15.tar.gz) = 90afb493ab6ef1b432c0867e251c090e65e0bfe5da885d1a423ab4693d72d5f2b53c9cc427a8d3ce2e7a9086a8d8b0e88219eaffa92a1df61a8b8101e40e5af9 +SHA512 (systemd-256.17.tar.gz) = c0f5d82f1220c69e8dc136e796ed9594bd9357450320c077a4c36151585508dfef58e16452ee64af7c32b90861a22996e9d567d76d71c15ce2136f96194f2be2 diff --git a/systemd.spec b/systemd.spec index 22ca36b..2e6a0f4 100644 --- a/systemd.spec +++ b/systemd.spec @@ -47,7 +47,7 @@ Name: systemd Url: https://systemd.io # Allow users to specify the version and release when building the rpm by # setting the %%version_override and %%release_override macros. -Version: %{?version_override}%{!?version_override:256.15} +Version: %{?version_override}%{!?version_override:256.17} Release: %autorelease %global stable %(c="%version"; [ "$c" = "${c#*.*}" ]; echo $?)