-
Notifications
You must be signed in to change notification settings - Fork 485
/
systemd.spec
702 lines (550 loc) · 26.9 KB
/
systemd.spec
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
Summary: Systemd-250
Name: systemd
Version: 250.3
Release: 20%{?dist}
License: LGPLv2+ AND GPLv2+ AND MIT
Vendor: Microsoft Corporation
Distribution: Mariner
Group: System Environment/Security
URL: https://www.freedesktop.org/wiki/Software/systemd/
Source0: https://github.com/%{name}/%{name}-stable/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
Source1: 50-security-hardening.conf
Source2: systemd.cfg
Source3: 99-dhcp-en.network
Source4: 99-mariner.preset
Patch0: fix-journald-audit-logging.patch
# Patch1 can be removed once we update systemd to a version containing the following commit:
# https://github.com/systemd/systemd/commit/19193b489841a7bcccda7122ac0849cf6efe59fd
Patch1: add-fsync-sysusers-passwd.patch
# Patch2 can be removed once we update systemd to a version containing the following commit:
# https://github.com/systemd/systemd/commit/d5cb053cd93d516f516e0b748271b55f9dfb3a29
Patch2: gpt-auto-devno-not-determined.patch
# Patch3 can be removed once we update to major version 251 or higher:
Patch3: CVE-2022-3821.patch
# Patch4 can be removed once we update to version 252
Patch4: CVE-2022-45873.patch
Patch5: backport-helper-util-macros.patch
Patch6: CVE-2022-4415.patch
Patch7: serve-stale-0001-resolved-added-serve-stale-feature-implementation-of.patch
Patch8: serve-stale-0002-resolved-Initialize-until_valid-while-storing-negati.patch
# Patch9 and Patch10 should be dropped for mariner 3
Patch9: mariner-2-do-not-default-zstd-journal-files-for-backwards-compatibility.patch
Patch10: mariner-2-force-use-of-lz4-for-coredump.patch
BuildRequires: audit-devel
BuildRequires: cryptsetup-devel
BuildRequires: docbook-dtd-xml
BuildRequires: docbook-style-xsl
BuildRequires: gettext
BuildRequires: glib-devel
BuildRequires: gperf
BuildRequires: intltool
BuildRequires: kbd
BuildRequires: kmod-devel
BuildRequires: libcap-devel
BuildRequires: libgcrypt-devel
BuildRequires: libselinux-devel
BuildRequires: libxslt
BuildRequires: lz4-devel
BuildRequires: meson
BuildRequires: pam-devel
BuildRequires: perl-XML-Parser
BuildRequires: python3-jinja2
BuildRequires: tpm2-tss-devel
BuildRequires: util-linux-devel
BuildRequires: xz-devel
BuildRequires: zstd-devel
Requires: %{name}-rpm-macros = %{version}-%{release}
Requires: glib
Requires: kmod
Requires: libcap
Requires: libgcrypt
Requires: lz4
Requires: pam
Requires: xz
Requires: zstd-libs
Requires(post): audit-libs
Requires(post): pam
Requires(post): util-linux-libs
Obsoletes: systemd-bootstrap
Provides: systemd-units = %{version}-%{release}
Provides: systemd-sysv = %{version}-%{release}
Provides: systemd-udev = %{version}-%{release}
Provides: udev = %{version}-%{release}
Provides: nss-myhostname = 0.4
Provides: nss-myhostname%{_isa} = 0.4
Provides: system-setup-keyboard = 0.9
%description
Systemd is an init replacement with better process control and security
%package rpm-macros
Summary: Macros that define paths and scriptlets related to systemd
BuildArch: noarch
%description rpm-macros
Just the definitions of rpm macros.
%package devel
Summary: Development headers for systemd
Requires: %{name} = %{version}-%{release}
Requires: glib-devel
Obsoletes: systemd-bootstrap-devel
Provides: systemd-libs = %{version}-%{release}
Provides: libudev-devel = %{version}-%{release}
Provides: libudev-devel%{?_isa} = %{version}-%{release}
%description devel
Development headers for developing applications linking to libsystemd
%package lang
Summary: Language pack for systemd
Requires: %{name} = %{version}-%{release}
%description lang
Language pack for systemd
%prep
%autosetup -p1 -n systemd-stable-%{version}
cat > config.cache << "EOF"
KILL=/bin/kill
HAVE_BLKID=1
BLKID_LIBS="-lblkid"
BLKID_CFLAGS="-I/usr/include/blkid"
cc_cv_CFLAGS__flto=no
EOF
sed -i "s#\#DefaultTasksMax=512#DefaultTasksMax=infinity#g" src/core/system.conf.in
%build
export LANG=en_US.UTF-8
export LC_ALL=en_US.UTF-8
CFLAGS="%{build_cflags} -Wno-error=format-overflow=" \
meson --prefix %{_prefix} \
--sysconfdir %{_sysconfdir} \
--localstatedir %{_var} \
-Dblkid=true \
-Dmode=release \
-Ddefault-dnssec=no \
-Dfirstboot=false \
-Dinstall-tests=false \
-Dldconfig=false \
-Drootprefix= \
-Drootlibdir=/lib \
-Dsplit-usr=false \
-Dsysusers=true \
-Dpam=true \
-Dhomed=false \
-Dlibcurl=false \
-Dpolkit=true \
-Dlibcryptsetup=true \
-Dgcrypt=true \
-Dlz4=true \
-Dzstd=true \
-Ddbuspolicydir=%{_sysconfdir}/dbus-1/system.d \
-Ddbussessionservicedir=%{_datadir}/dbus-1/services \
-Ddbussystemservicedir=%{_datadir}/dbus-1/system-services \
-Dsysvinit-path=%{_sysconfdir}/rc.d/init.d \
-Drc-local=%{_sysconfdir}/rc.d/rc.local \
-Dselinux=true \
-Daudit=true \
$PWD build &&
cd build &&
%ninja_build
%install
cd build && %ninja_install
install -vdm 755 %{buildroot}/sbin
for tool in runlevel reboot shutdown poweroff halt telinit; do
ln -sfv ../bin/systemctl %{buildroot}/sbin/${tool}
done
ln -sfv ../lib/systemd/systemd %{buildroot}/sbin/init
sed -i '/srv/d' %{buildroot}%{_libdir}/tmpfiles.d/home.conf
sed -i "s:0775 root lock:0755 root root:g" %{buildroot}%{_libdir}/tmpfiles.d/legacy.conf
sed -i "s:NamePolicy=kernel database onboard slot path:NamePolicy=kernel database:g" %{buildroot}%{_libdir}/systemd/network/99-default.link
sed -i "s:#LLMNR=yes:LLMNR=false:g" %{buildroot}%{_sysconfdir}/systemd/resolved.conf
sed -i "s:#NTP=:NTP=time.windows.com:g" %{buildroot}%{_sysconfdir}/systemd/timesyncd.conf
rm -f %{buildroot}%{_var}/log/README
rm -f %{buildroot}/%{_libdir}/modprobe.d/README
rm -f %{buildroot}/lib/systemd/network/80-wifi-ap.network.example
rm -f %{buildroot}/lib/systemd/network/80-wifi-station.network.example
mkdir -p %{buildroot}%{_localstatedir}/log/journal
find %{buildroot} -type f -name "*.la" -delete -print
install -m 0644 %{SOURCE1} %{buildroot}%{_sysconfdir}/sysctl.d
install -dm 0700 %{buildroot}/boot/
install -m 0600 %{SOURCE2} %{buildroot}/boot/
rm %{buildroot}%{_libdir}/systemd/system/default.target
ln -sfv multi-user.target %{buildroot}%{_libdir}/systemd/system/default.target
install -dm 0755 %{buildroot}/%{_sysconfdir}/systemd/network
install -m 0644 %{SOURCE3} %{buildroot}/%{_sysconfdir}/systemd/network
install -D -m 0644 %{SOURCE4} %{buildroot}%{_libdir}/systemd/system-preset/99-mariner.preset
%find_lang %{name} ../%{name}.lang
%check
meson test -C build
# Enable default systemd units.
%post
/sbin/ldconfig
# Only force the presets to default values when first installing systemd ($1 = # of currently installed pacakges,
# $1 >= 2 for upgrades). This will resolve issues where systemd may be installed after a package that enables a service
# during the same transaction, leaving the service disabled unexpectedly. Once systemd is installed all future attempts
# to enable/disable services should succeed.
if [ $1 -eq 1 ]; then
systemctl preset-all
fi
%postun -p /sbin/ldconfig
%files
%defattr(-,root,root)
%license LICENSE.GPL2
%dir %{_sysconfdir}/systemd
%dir %{_sysconfdir}/systemd/system
%dir %{_sysconfdir}/systemd/user
%dir %{_sysconfdir}/systemd/network
%dir %{_sysconfdir}/tmpfiles.d
%dir %{_sysconfdir}/sysctl.d
%dir %{_sysconfdir}/modules-load.d
%dir %{_sysconfdir}/binfmt.d
%{_sysconfdir}/X11/xinit/xinitrc.d/50-systemd-user.sh
%{_sysconfdir}/sysctl.d/50-security-hardening.conf
%{_sysconfdir}/xdg/systemd
%{_sysconfdir}/rc.d/init.d/README
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.systemd1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.hostname1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.login1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.locale1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.timedate1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.resolve1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.network1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.machine1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.portable1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.timesync1.conf
%config(noreplace) %{_sysconfdir}/dbus-1/system.d/org.freedesktop.oom1.conf
%config(noreplace) %{_sysconfdir}/systemd/system.conf
%config(noreplace) %{_sysconfdir}/systemd/user.conf
%config(noreplace) %{_sysconfdir}/systemd/logind.conf
%config(noreplace) %{_sysconfdir}/systemd/journald.conf
%config(noreplace) %{_sysconfdir}/systemd/resolved.conf
%config(noreplace) %{_sysconfdir}/systemd/coredump.conf
%config(noreplace) %{_sysconfdir}/systemd/timesyncd.conf
%config(noreplace) %{_sysconfdir}/systemd/networkd.conf
%config(noreplace) %{_sysconfdir}/systemd/oomd.conf
%config(noreplace) %{_sysconfdir}/systemd/pstore.conf
%config(noreplace) %{_sysconfdir}/systemd/sleep.conf
%{_libdir}/pam.d/systemd-user
%config(noreplace) %{_sysconfdir}/systemd/network/99-dhcp-en.network
%dir %{_sysconfdir}/udev
%dir %{_sysconfdir}/udev/rules.d
%dir %{_sysconfdir}/udev/hwdb.d
%config(noreplace) %{_sysconfdir}/udev/udev.conf
%config(noreplace) /boot/systemd.cfg
%{_libdir}/udev/*
%{_libdir}/systemd/*
%{_libdir}/systemd/system-preset/99-mariner.preset
%{_libdir}/environment.d/99-environment.conf
%exclude %{_libdir}/debug
%exclude %{_datadir}/locale
%{_libdir}/binfmt.d
%{_libdir}/kernel
%{_libdir}/modules-load.d
/lib/security
%{_libdir}/sysctl.d
%{_libdir}/tmpfiles.d
/lib/*.so*
/lib/cryptsetup/libcryptsetup-token-systemd-tpm2.so
%{_libdir}/modprobe.d/systemd.conf
%{_libdir}/sysusers.d/*
%{_bindir}/*
%{_sbindir}/*
/sbin/*
%{_datadir}/bash-completion/*
%{_datadir}/factory/*
%{_datadir}/dbus-1
%{_docdir}/*
%{_datadir}/polkit-1
%{_datadir}/systemd
%{_datadir}/zsh/*
%dir %{_localstatedir}/log/journal
%files rpm-macros
%{_libdir}/rpm
%files devel
%dir %{_includedir}/systemd
/lib/libudev.so
/lib/libsystemd.so
%{_includedir}/systemd/*.h
%{_includedir}/libudev.h
%{_libdir}/pkgconfig/libudev.pc
%{_libdir}/pkgconfig/libsystemd.pc
%{_datadir}/pkgconfig/systemd.pc
%{_datadir}/pkgconfig/udev.pc
%files lang -f %{name}.lang
%changelog
* Thu Mar 14 2024 Dan Streetman <ddstreet@microsoft.com> - 250.3-20
- force use of lz4 for coredump
* Thu Nov 02 2023 Chris Co <chrco@microsoft.com> - 250.3-19
- Add zstd-libs as a requires to ensure libzstd.so.1 is present
* Thu Oct 19 2023 Dan Streetman <ddstreet@ieee.org> - 250.3-18
- Enable zstd support for journalctl, but force journald to not use zstd to keep backwards compatibility
* Fri Jul 07 2023 Dan Streetman <ddstreet@ieee.org> - 250.3-17
- Add support to systemd-resolved to serve stale dns data
* Tue Jun 20 2023 Chris Gunn <chrisgun@microsoft.com> - 250.3-16
- Enable audit integration
* Fri Mar 03 2023 Dan Streetman <ddstreet@microsoft.com> - 250.3-15
- Build with libtss to enable tpm2 support
* Wed Jan 25 2023 Adit Jha <aditjha@microsoft.com> - 250.3-14
- Add 99-mariner.preset to disable systemd-oomd by default
* Mon Jan 23 2023 Cameron Baird <cameronbaird@microsoft.com> - 250.3-13
- Add patch for CVE-2022-4415
- Add patch backport-helper-util-macros.patch to backport needed macros for CVE-2022-4415.patch
* Wed Dec 14 2022 CBL-Mariner Servicing Account <cblmargh@microsoft.com> - 250.3-12
- Add patch for CVE-2022-45873
* Wed Nov 29 2022 Daniel McIlvaney <damcilva@microsoft.com> - 250.3-11
- Conditionally run systemctl preset-all only when first installing systemd, not on upgrades
* Thu Nov 17 2022 Sam Meluch <sammeluch@microsoft.com> - 250.3-10
- Add patch for CVE-2022-3821
* Tue Oct 04 2022 Pawel Winogrodzki <pawelwi@microsoft.com> - 250.3-9
- Fixing default log location.
* Tue Sep 27 2022 Avram Lubkin <avramlubkin@microsoft.com> - 250.3-8
- Add patch to improve fs detection in gpt-auto (systemd #22506)
* Tue Aug 16 2022 Avram Lubkin <avramlubkin@microsoft.com> - 250.3-7
- Add patch to fsync passwd file (systemd #24324)
* Wed May 04 2022 Jon Slobodzian <joslobo@microsoft.com> - 250.3-6
- Change build mode from "development" (default) to "release"
* Mon May 02 2022 Sriram Nambakam <snambakam@microsoft.com> - 250.3-5
- Change Requires(post) to depend on util-linux-libs
* Wed Apr 13 2022 Cameron Baird <cameronbaird@microsoft.com> - 250.3-4
- Bring in an upstream change as patch fix-journald-audit-logging.patch
- to prevent many-fielded audit messages from crashing systemd-journal
* Thu Mar 24 2022 Andrew Phelps <anphel@microsoft.com> - 250.3-3
- Add Requires(post) on audit-libs, pam and util-linux-devel
* Thu Mar 17 2022 Andrew Phelps <anphel@microsoft.com> - 250.3-2
- Disable zstd configuration to ensure lz4 compression is used for journal files and coredumps
* Mon Jan 24 2022 Henry Beberman <henry.beberman@microsoft.com> - 250.3-1
- Update to systemd-stable version 250.3
- Explicitly disable systemd-homed
* Thu Dec 16 2021 Pawel Winogrodzki <pawelwi@microsoft.com> - 249.7-3
- Removing the explicit %%clean stage.
* Wed Dec 08 2021 Henry Beberman <henry.beberman@microsoft.com> 249.7-2
- Update systemd boot args to force cgroups V1 with systemd.unified_cgroup_hierarchy=0
- Update 99-dhcp-en.network with SendRelease=false so DHCP leases arent released on reboot
* Wed Dec 01 2021 Henry Beberman <henry.beberman@microsoft.com> 249.7-1
- Update to systemd-stable version 249.7
- Remove all patches, most have been merged upstream.
- Add 'systemctl preset-all' to post section to enact presets in '/usr/lib/systemd/system-preset'
* Sat Oct 02 2021 Pawel Winogrodzki <pawelwi@microsoft.com> - 239-42
- Adding 'Obsoletes: systemd-bootstrap-devel' for the 'devel' subpackage.
- Making 'systemd' obsolete 'systemd-bootstrap' regardless of version and release.
* Wed Aug 18 2021 Jon Slobodzian <joslobo@microsoft.com> - 239-41
- Merge from 1.0 to dev branch
- nehaagarwal@microsoft.com, 2.39-38: CVE-2021-33910 fix
* Wed Jul 28 2021 Henry Li <lihl@microsoft.com> - 239-40
- Enable building systemd-sysusers
- Ship systemd-sysusers and related conf files from systemd package
* Fri May 14 2021 Thomas Crain <thcrain@microsoft.com> - 239-39
- Merge the following releases from 1.0 to dev branch
- niontive@microsoft.com, 2.39-33: Use autosetup
- Fix CVE-2019-3842
- Fix CVE-2019-3843
- Fix CVE-2019-3844
- Fix CVE-2019-6454
- Fix CVE-2019-20386
- Fix CVE-2020-1712
- Fix CVE-2020-13776
- niontive@microsoft.com, 2.39-34: Fix CVE-2019-6454, CVE-2020-1712 patches. Add upstream patch info.
- henry.beberman@microsoft.com, 2.39-35: Enable LZ4 so journalctl can read logs from the container host.
- chrco@microsoft.com, 2.39-36: Disallow unprivileged BPF scripts by default. Additional mitigation for CVE-2021-20194
* Mon Apr 26 2021 Henry Li <lihl@microsoft.com> - 239-38
- Provides system-setup-keyboard.
* Tue Mar 23 2021 Daniel Burgener <daburgen@microsoft.com> 239-37 (on 1.0 branch)
- Enable SELinux support
- Remove unused BuildRequires shadow-utils
* Fri Feb 05 2021 Joe Schmitt <joschmit@microsoft.com> - 239-37
- Replace incorrect %%{_lib} usage with %%{_libdir}
* Thu Feb 04 2021 Joe Schmitt <joschmit@microsoft.com> - 239-36
- Provide nss-myhostname.
* Fri Jan 08 2021 Ruying Chen <v-ruyche@microsoft.com> - 239-35
- Provide systemd-udev and libudev-devel.
* Tue Nov 10 2020 Ruying Chen <v-ruyche@microsoft.com> - 239-34
- Configure to support merged /usr.
* Wed Nov 04 2020 Joe Schmitt <joschmit@microsoft.com> - 239-33
- Provide systemd-libs, systemd-units, and systemd-sysv.
- Subpackage rpm-macros.
* Wed Sep 23 2020 Suresh Babu Chalamalasetty <schalam@microsoft.com> 239-32
- Portablectl patches for --now --enable and --no-block flags support
* Mon Aug 24 2020 Leandro Pereira <leperei@microsoft.com> 239-31
- Use time.windows.com as the default NTP server in timesyncd.
* Tue Aug 11 2020 Mateusz Malisz <mamalisz@microsoft.com> 239-30
- Reduce kptr_restrict to 1
* Fri May 29 2020 Nicolas Ontiveros <niontive@microsoft.com> 239-29
- Include cryptsetup to build cryptsetup generator.
* Wed May 27 2020 Chris Co <chrco@microsoft.com> 239-28
- Disable IPv6 router advertisements by default
* Wed May 20 2020 Emre Girgin <mrgirgin@microsoft.com> 239-27
- Change /boot directory permissions to 600.
* Wed May 20 2020 Joe Schmitt <joschmit@microsoft.com> 239-26
- Remove 99-vmware-hotplug.rules.
* Sat May 09 2020 Nick Samson <nisamson@microsoft.com> - 239-25
- Added %%license line automatically
* Wed May 06 2020 Emre Girgin <mrgirgin@microsoft.com> 239-24
- Renaming docbook-xsl to docbook-style-xsl
* Wed May 06 2020 Emre Girgin <mrgirgin@microsoft.com> 239-23
- Renaming docbook-xml to docbook-dtd-xml
* Wed May 06 2020 Emre Girgin <mrgirgin@microsoft.com> 239-22
- Renaming Linux-PAM to pam
* Wed May 06 2020 Emre Girgin <mrgirgin@microsoft.com> 239-21
- Renaming XML-Parser to perl-XML-Parser
* Tue May 05 2020 Joe Schmitt <joschmit@microsoft.com> 239-20
- Remove unused rdrand-rng after kernel update.
* Thu Apr 23 2020 Emre Girgin <mrgirgin@microsoft.com> 239-19
- Ignore CVE-2018-21029.
* Fri Apr 17 2020 Emre Girgin <mrgirgin@microsoft.com> 239-18
- Rename shadow to shadow-utils.
* Thu Apr 16 2020 Emre Girgin <mrgirgin@microsoft.com> 239-17
- Resolve build issues arising from upgrading meson to 0.49.2.
* Thu Apr 09 2020 Henry Beberman <henry.beberman@microsoft.com> 239-16
- Add patch to disable arguments to mount_cgroup_controllers as in upstream latest.
* Tue Apr 07 2020 Paul Monson <paulmon@microsoft.com> 239-15
- Update Source0 link. License verified.
* Tue Mar 31 2020 Henry Beberman <henry.beberman@microsoft.com> 239-14
- Backport upstream fix for FOREACH_STRING macro.
* Tue Mar 24 2020 Henry Beberman <henry.beberman@microsoft.com> 239-13
- Add -Wno-error=format-overflow= to fix gcc9 build.
* Thu Feb 27 2020 Henry Beberman <hebeberm@microsoft.com> 239-12
- Disable libcurl auto-configure
* Tue Sep 03 2019 Mateusz Malisz <mamalisz@microsoft.com> 239-11
- Initial CBL-Mariner import from Photon (license: Apache2).
* Thu Jan 10 2019 Anish Swaminathan <anishs@vmware.com> 239-10
- Fix CVE-2018-16864, CVE-2018-16865, CVE-2018-16866
* Wed Jan 09 2019 Keerthana K <keerthanak@vmware.com> 239-9
- Seting default values for tcp_timestamps, tcp_challenge_ack_limit and ip_forward.
* Wed Jan 02 2019 Anish Swaminathan <anishs@vmware.com> 239-8
- Fix CVE-2018-15686, CVE-2018-15687
* Sun Nov 11 2018 Tapas Kundu <tkundu@vmware.com> 239-7
- Fix CVE-2018-15688
* Fri Oct 26 2018 Srivatsa S. Bhat (VMware) <srivatsa@csail.mit.edu> 239-6
- Auto-load rdrand-rng kernel module only on x86.
* Fri Oct 26 2018 Anish Swaminathan <anishs@vmware.com> 239-5
- Revert the commit that causes GCE networkd timeout
- https://github.com/systemd/systemd/commit/44b598a1c9d11c23420a5ef45ff11bcb0ed195eb
* Mon Oct 08 2018 Srinidhi Rao <srinidhir@vmware.com> 239-4
- Add glib-devel as a Requirement to systemd-devel
* Fri Sep 21 2018 Alexey Makhalov <amakhalov@vmware.com> 239-3
- Fix compilation issue against glibc-2.28
* Tue Sep 18 2018 Srivatsa S. Bhat <srivatsa@csail.mit.edu> 239-2
- Automatically load rdrand-rng kernel module on every boot.
* Tue Aug 28 2018 Anish Swaminathan <anishs@vmware.com> 239-1
- Update systemd to 239
* Wed Apr 11 2018 Xiaolin Li <xiaolinl@vmware.com> 236-3
- Build systemd with util-linux 2.32.
* Wed Jan 17 2018 Divya Thaluru <dthaluru@vmware.com> 236-2
- Fixed the log file directory structure
* Fri Dec 29 2017 Anish Swaminathan <anishs@vmware.com> 236-1
- Update systemd to 236
* Thu Nov 09 2017 Vinay Kulkarni <kulkarniv@vmware.com> 233-11
- Fix CVE-2017-15908 dns packet loop fix.
* Tue Nov 07 2017 Vinay Kulkarni <kulkarniv@vmware.com> 233-10
- Fix nullptr access during link disable.
* Mon Sep 18 2017 Anish Swaminathan <anishs@vmware.com> 233-9
- Backport router solicitation backoff from systemd 234
* Fri Sep 15 2017 Anish Swaminathan <anishs@vmware.com> 233-8
- Move network file to systemd package
* Tue Aug 15 2017 Alexey Makhalov <amakhalov@vmware.com> 233-7
- Fix compilation issue for glibc-2.26
* Fri Jul 21 2017 Vinay Kulkarni <kulkarniv@vmware.com> 233-6
- Fix for CVE-2017-1000082.
* Fri Jul 07 2017 Vinay Kulkarni <kulkarniv@vmware.com> 233-5
- Fix default-dns-from-env patch.
* Wed Jul 05 2017 Xiaolin Li <xiaolinl@vmware.com> 233-4
- Add kmod-devel to BuildRequires
* Thu Jun 29 2017 Vinay Kulkarni <kulkarniv@vmware.com> 233-3
- Fix for CVE-2017-9445.
* Tue Jun 20 2017 Anish Swaminathan <anishs@vmware.com> 233-2
- Fix for CVE-2017-9217
* Mon Mar 06 2017 Vinay Kulkarni <kulkarniv@vmware.com> 233-1
- Update systemd to 233
* Tue Jan 3 2017 Alexey Makhalov <amakhalov@vmware.com> 232-5
- Added /boot/systemd.cfg
* Tue Dec 20 2016 Alexey Makhalov <amakhalov@vmware.com> 232-4
- Fix initrd-switch-root issue
* Wed Dec 07 2016 Xiaolin Li <xiaolinl@vmware.com> 232-3
- BuildRequires Linux-PAM-devel
* Thu Dec 01 2016 Xiaolin Li <xiaolinl@vmware.com> 232-2
- disable-elfutils.
* Fri Nov 18 2016 Anish Swaminathan <anishs@vmware.com> 232-1
- Update systemd to 232
* Thu Nov 3 2016 Divya Thaluru <dthaluru@vmware.com> 228-32
- Added logic to reload services incase of rpm upgrade
* Thu Sep 29 2016 Vinay Kulkarni <kulkarniv@vmware.com> 228-31
- Fix a CVE in systemd-notify socket.
* Mon Aug 29 2016 Alexey Makhalov <amakhalov@vmware.com> 228-30
- 02-install-general-aliases.patch to create absolute symlinks
* Fri Aug 26 2016 Anish Swaminathan <anishs@vmware.com> 228-29
- Change config file properties for 99-default.link
* Tue Aug 16 2016 Vinay Kulkarni <kulkarniv@vmware.com> 228-28
- systemd-resolved: Fix DNS_TRANSACTION_PENDING assert.
* Mon Aug 1 2016 Divya Thaluru <dthaluru@vmware.com> 228-27
- Removed packaging of symlinks and will be created during installation
* Tue Jul 12 2016 Vinay Kulkarni <kulkarniv@vmware.com> 228-26
- systemd-resolved: Fix DNS domains resolv.conf search issue for static DNS.
* Mon Jul 11 2016 Vinay Kulkarni <kulkarniv@vmware.com> 228-25
- systemd-networkd: Update DUID/IAID config interface to systemd v230 spec.
* Tue Jun 21 2016 Anish Swaminathan <anishs@vmware.com> 228-24
- Change config file properties
* Fri Jun 17 2016 Vinay Kulkarni <kulkarniv@vmware.com> 228-23
- systemd-resolved: Configure initial DNS servers from environment var.
* Mon Jun 06 2016 Alexey Makhalov <amakhalov@vmware.com> 228-22
- systemd-resolved: disable LLMNR
* Tue May 24 2016 Priyesh Padmavilasom <ppadmavilasom@vmware.com> 228-21
- GA - Bump release of all rpms
* Tue May 17 2016 Anish Swaminathan <anishs@vmware.com> 228-20
- Added patch for letting kernel handle ndisc
* Tue May 17 2016 Divya Thaluru <dthaluru@vmware.com> 228-19
- Updated systemd-user PAM configuration
* Mon May 16 2016 Harish Udaiya Kumar <hudaiyakumar@vmware.com> 228-18
- Updated the MaxTasks to infinity in system.conf file
* Thu Apr 21 2016 Mahmoud Bassiouny <mbassiouny@vmware.com> 228-17
- Set the default.target to the multi-user.target
* Tue Apr 12 2016 Vinay Kulkarni <kulkarniv@vmware.com> 228-16
- Disable network interface renaming.
* Thu Mar 31 2016 Vinay Kulkarni <kulkarniv@vmware.com> 228-15
- Patch to query DHCP DUID, IAID.f
* Wed Mar 30 2016 Vinay Kulkarni <kulkarniv@vmware.com> 228-14
- Update DHCP DUID, IAID configuration patch.
* Wed Mar 30 2016 Kumar Kaushik <kaushikk@vmware.com> 228-13
- Install the security hardening script as part of systemd.
* Tue Mar 29 2016 Kumar Kaushik <kaushikk@vmware.com> 228-12
- Added patch for timedatectl /etc/adjtime PR2749.
* Fri Mar 11 2016 Anish Swaminathan <anishs@vmware.com> 228-11
- Added patch for dhcp preservation via duid iaid configurability
* Fri Mar 11 2016 Anish Swaminathan <anishs@vmware.com> 228-10
- Added patch for swap disconnect order
* Thu Mar 10 2016 XIaolin Li <xiaolinl@vmware.com> 228-9
- Enable manpages.
* Fri Feb 19 2016 Anish Swaminathan <anishs@vmware.com> 228-8
- Added patch to get around systemd-networkd wait online timeout
* Sat Feb 06 2016 Alexey Makhalov <amakhalov@vmware.com> 228-7
- Added patch: fix-reading-routes.
* Wed Feb 03 2016 Anish Swaminathan <anishs@vmware.com> 228-6
- Add hotplug udev rules.
* Tue Jan 12 2016 Anish Swaminathan <anishs@vmware.com> 228-5
- Change config file attributes.
* Wed Jan 06 2016 Anish Swaminathan <anishs@vmware.com> 228-4
- Patches for minor network fixes.
* Wed Dec 16 2015 Anish Swaminathan <anishs@vmware.com> 228-3
- Patch for ostree.
* Wed Dec 16 2015 Anish Swaminathan <anishs@vmware.com> 228-2
- Patch for loopback address.
* Fri Dec 11 2015 Anish Swaminathan <anishs@vmware.com> 228-1
- Upgrade systemd version.
* Mon Nov 30 2015 Mahmoud Bassiouny <mbassiouny@vmware.com> 216-13
- Removing the reference of lock user
* Fri Oct 9 2015 Xiaolin Li <xiaolinl@vmware.com> 216-12
- Removing la files from packages.
* Fri Sep 18 2015 Divya Thaluru <dthaluru@vmware.com> 216-11
- Packaging journal log directory
* Thu Sep 10 2015 Alexey Makhalov <amakhalov@vmware.com> 216-10
- Improve enoX renaming in VMware HV case. Patch is added.
* Tue Aug 25 2015 Alexey Makhalov <amakhalov@vmware.com> 216-9
- Reduce systemd-networkd boot time (exclude if-rename patch).
* Mon Jul 20 2015 Divya Thaluru <dthaluru@vmware.com> 216-8
- Adding sysvinit support
* Mon Jul 06 2015 Kumar Kaushik <kaushikk@vmware.com> 216-7
- Fixing networkd/udev race condition for renaming interface.
* Thu Jun 25 2015 Sharath George <sharathg@vmware.com> 216-6
- Remove debug files.
* Tue Jun 23 2015 Divya Thaluru <dthaluru@vmware.com> 216-5
- Building compat libs
* Mon Jun 1 2015 Alexey Makhalov <amakhalov@vmware.com> 216-4
- gudev support
* Wed May 27 2015 Divya Thaluru <dthaluru@vmware.com> 216-3
- Removing packing of PAM configuration files
* Mon May 18 2015 Touseef Liaqat <tliaqat@vmware.com> 216-2
- Update according to UsrMove.
* Mon Oct 27 2014 Sharath George <sharathg@vmware.com> 216-1
- Initial build. First version