On Tue, 29 Jul 2025 at 11:00, Marc Haber wrote:
>
> Hi,
>
> I have a template service unit which runs a oneshot service that
> generates both high CPU and high I/O load for a couple of minutes. The
> service is templated a couple of times and runs from an, also templated
> timer.
>
> In another us
On Fri, 9 May 2025 at 11:45, Johannes Barthel
wrote:
>
> Hi,
>
> we're using an Ubuntu setup where systemd-coredump is set up as the coredump
> handler. This is fine, coredumps end up in /var/lib/systemd/coredump/. We
> would however like to additionally run our own event handler (for remote
>
On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
> Let's first figure out how all of this works without shim. Then we can
> look at whether we need to and how we can extend the shim/sd-boot
> interface to make that case work as well. Please don't start off
> assuming everyone runs shim in secur
On Fri, 21 Mar 2025 at 08:05, Alexander Graf wrote:
>
>
> On 21.03.25 01:26, Luca Boccassi wrote:
> > On Thu, 20 Mar 2025 at 22:43, Alexander Graf wrote:
> >> Let's first figure out how all of this works without shim. Then we can
> >> look at whether we nee
On Fri, 21 Mar 2025 at 15:30, Lennart Poettering wrote:
>
> On Fr, 21.03.25 07:23, Harry G Coin (hgc...@gmail.com) wrote:
>
> > > I'm afraid we are not aligned on that - shim exists because hardware
> > > exists, non-tech-savvy users exist, and distributions exist, and the
> > > intersection of al
On Fri, 21 Mar 2025 at 14:37, Lennart Poettering wrote:
>
> On Do, 20.03.25 22:36, Luca Boccassi (luca.bocca...@gmail.com) wrote:
>
> > > > so I think your suggestion of adding a new API to shim is the best
> > > > solution. Once a formal API is esta
On Thu, 20 Mar 2025 at 14:46, Alexander Graf wrote:
>
> On 20.03.25 13:08, Luca Boccassi wrote:
> > On Thu, 20 Mar 2025 at 11:00, Mate Kukri wrote:
> >>
> >> Hello,
> >>
> >> A new version of the rhboot secure boot shim was released yesterday
>
On Thu, 20 Mar 2025 at 11:00, Mate Kukri wrote:
>
> Hello,
>
> A new version of the rhboot secure boot shim was released yesterday
> https://github.com/rhboot/shim/releases/tag/16.0.
>
> This version contains an implementation of the
> LoadImage/StartImage/Exit/etc API set, which is exposed both v
On Sat, 8 Feb 2025 at 22:57, Łukasz Niemier wrote:
>
> I am working on Erlang-native implementation of libsystemd-like interface
> (for the integration layer only). And right now I started working on
> integrating `notify-reload`, but I have encountered an issue. When I am
> running `systemctl
On Mon, 25 Nov 2024 at 16:28, Luca Boccassi wrote:
>
> On Thu, 14 Nov 2024 at 18:06, Luca Boccassi wrote:
> >
> > On Fri, 25 Oct 2024 at 19:01, Luca Boccassi wrote:
> > >
> > > Hi,
> > >
> > > We are running a track at FOSDEM 2025 (February
On Thu, 14 Nov 2024 at 18:06, Luca Boccassi wrote:
>
> On Fri, 25 Oct 2024 at 19:01, Luca Boccassi wrote:
> >
> > Hi,
> >
> > We are running a track at FOSDEM 2025 (February 1st and 2nd, Brussels)
> > on Image-Based Linux and Boot Integrity, and the CFP has j
On Fri, 25 Oct 2024 at 19:01, Luca Boccassi wrote:
>
> Hi,
>
> We are running a track at FOSDEM 2025 (February 1st and 2nd, Brussels)
> on Image-Based Linux and Boot Integrity, and the CFP has just opened,
> it will close on Dec 6th:
>
> https://uapi-group.org/docs/confer
covered, I
highly recommend submitting an abstract for a presentation!
--
Kind regards,
Luca Boccassi
On Fri, 25 Oct 2024 at 01:15, Paul Menzel
wrote:
>
> Dear Linux folks,
>
>
> My CMOS battery is empty, so the time is reset to the firmware/BIOS
> date, but the firmware does not allow to set the date/time.
>
> Do you know of a way to set the time on the Linux kernel command line,
> that is passed
Yes addons have to be signed, otherwise it would defeat their purpose.
OSTree should to switch to other mechanisms, like credentials stored
in the ESP ( https://systemd.io/CREDENTIALS/ ), instead of using the
kernel command line.
On Tue, 15 Oct 2024 at 11:45, Srinivas Naik wrote:
>
> Hi All,
> I
On Mon, 2 Sept 2024 at 15:00, Thorsten Kukuk wrote:
>
> Hi,
>
> after some more testing: the problem is the "+" prefix of
> ExecStartPre, this does not work together with RootImage. Is this
> supposed to work? Even if I cannot really imagine a valid use case for
> this, except enhancing existing s
Set up a system group named appropriately, use it for group ownership
of those device nodes, and then use SupplementaryGroups=foo in your
unit
On Fri, 19 Jul 2024 at 08:25, Renjaya Raga Zenta wrote:
>
> Is there another way to allow DynamicUser to access the USB scanner instead
> of setting MODE
On Sat, 29 Jun 2024 at 21:16, Mike Gilbert wrote:
>
> I recently added systemd v256 to Gentoo's ebuild repo. While testing
> the upgrade process from v255, I have run into an issue.
>
> After the upgrade, my KDE Plasma session stopped working, and I was
> unable to execute a reboot from the GUI.
>
On Tue, 18 Jun 2024 at 13:30, Dave Howorth wrote:
>
> On Tue, 18 Jun 2024 11:24:22 +0200
> Benjamin Drung wrote:
> > On Mon, 2024-06-17 at 11:19 -0500, Greg Oliver wrote:
> > > On Mon, Jun 17, 2024 at 10:38 AM Benjamin Drung
> > > wrote:
> > > > On
On Mon, 17 Jun 2024 at 17:45, Benjamin Drung wrote:
>
> On Mon, 2024-06-17 at 14:54 +0100, Luca Boccassi wrote:
> > On Mon, 17 Jun 2024 at 14:45, Benjamin Drung wrote:
> > >
> > > Hi,
> > >
> > > Ubuntu started to implement the ELF package metada
On Mon, 17 Jun 2024 at 14:45, Benjamin Drung wrote:
>
> Hi,
>
> Ubuntu started to implement the ELF package metadata spec. It encodes
> the VERSION_ID from os-release in the osVersion field. Using VERSION_ID
> was objected to because the version is only set in stone once the
> release is done. It
On Mon, 10 Jun 2024 at 13:09, Luca Boccassi wrote:
>
> Hi,
>
> We are organizing or co-organizing two conferences in September - a
> microconf at LPC in Vienna, and ASG in Berlin. The CFPs are open and
> the clock is ticking, especially for ASG, so I encourage anybody who
> h
(deadline 14th June):
https://cfp.all-systems-go.io/orga/event/all-systems-go-2024/
LPC userspace track (deadline July 5th):
https://lpc.events/event/18/contributions/1681/
--
Kind regards,
Luca Boccassi
signature.asc
Description: This is a digitally signed message part
On Fri, 7 Jun 2024 at 13:10, Thorsten Kukuk wrote:
>
> On Fri, Jun 7, 2024 at 12:43 PM Luca Boccassi wrote:
>
> > /run is expected though - if you want that, you need to bind mount it
> > explicitly. You normally don't want all of it, and the default
> > portabl
On Fri, 7 Jun 2024 at 08:17, Thorsten Kukuk wrote:
>
> On Thu, Jun 6, 2024 at 10:45 PM Luca Boccassi wrote:
> >
> > On Thu, 6 Jun 2024 at 09:15, Thorsten Kukuk wrote:
>
> > > The default mounts of portable images goes lost during soft-reboot, too.
> > > If
On Thu, 6 Jun 2024 at 09:15, Thorsten Kukuk wrote:
>
> On Wed, Jun 5, 2024 at 3:58 PM Luca Boccassi wrote:
> >
> > On Wed, 5 Jun 2024 at 14:45, Thorsten Kukuk wrote:
> > >
> > > Hi,
> > >
> > > while playing with soft-reboot and services su
On Thu, 6 Jun 2024 at 09:15, Thorsten Kukuk wrote:
>
> On Wed, Jun 5, 2024 at 3:58 PM Luca Boccassi wrote:
> >
> > On Wed, 5 Jun 2024 at 14:45, Thorsten Kukuk wrote:
> > >
> > > Hi,
> > >
> > > while playing with soft-reboot and services su
On Wed, 5 Jun 2024 at 15:15, Itxaka Serrano Garcia
wrote:
>
> Hey all,
>
> testing a bit the systemd-sysext with verity+signature, running a sample like
> this:
>
> systemd-repart -S -s extension/ /run/extensions/k3sv1.30.0+k3s1.sysext.raw
> --private-key=db.key --certificate=db.pem
>
> This gen
On Wed, 5 Jun 2024 at 14:45, Thorsten Kukuk wrote:
>
> Hi,
>
> while playing with soft-reboot and services surviving this:
> A standard service file works, but if I use a service template (e.g.
> test@.service), the service get's stopped during soft-reboot.
> Reasons is:
> -Slice=system.slice
> +S
Add headless=yes to the crypttab entry for the device you want to
avoid interactive passwords prompt for
On Tue, 4 Jun 2024 at 17:22, Sergio Arroutbi wrote:
>
> Hello Lennart. Thanks for your quick response.
>
> This option will disable all password prompt ... hiding also our calls to
> systemd-
On Wed, 8 May 2024 at 14:22, Thorsten Kukuk wrote:
>
> Hi,
>
> attached is a better reproducer for the "broken pipe" problem, if
> applications write to stderr. This time without buffered glibc
> streams.
> If writing to stderr (fd 2) fails, the error get's logged via
> sd_journal_print().
This h
On Wed, 29 May 2024 at 11:01, Andreas Svensson
wrote:
>
> Hello,
>
> I have a system that should keep the hardware watchdog active while
> rebooting the system. It has worked fine up to systemd version v254.
>
> I noticed that since systemd version v254 my system stops the hardware
> watchdog afte
On Sat, 20 Apr 2024 at 01:45, Cristian Rodríguez
wrote:
>
> On Fri, Apr 19, 2024 at 6:17 AM Thorsten Kukuk wrote:
> >
> > On Fri, Apr 19, 2024 at 11:48 AM Luca Boccassi
> > wrote:
> >
> > > However, logging should work out of the box as long as the jour
On Fri, 19 Apr 2024 at 12:50, Thorsten Kukuk wrote:
>
> On Fri, Apr 19, 2024 at 11:48 AM Luca Boccassi
> wrote:
> > On Fri, 19 Apr 2024 at 10:30, Thorsten Kukuk wrote:
>
> > > And now I started looking into how services can survive the
> > > soft-reboot. I
On Fri, 19 Apr 2024 at 10:30, Thorsten Kukuk wrote:
>
> Hi,
>
> we finished the integration of soft-reboot into openSUSE Tumbleweed
> and MicroOS (transactional-update), and the major problems except
> firewalld+podman are solved. Now we only need to do all the "fine
> tuning".
> Is there meanwhil
No, that's about publishing a new service, not calling into others.
It's probably due to dbus-broker supporting SO_PEERSEC to acquire credentials.
On Fri, 29 Mar 2024 at 21:14, Mantas Mikulėnas wrote:
>
> I don't know, but it might be related to this note:
> https://github.com/systemd/systemd/com
On Wed, 20 Mar 2024 at 02:00, Nils Kattenbeck wrote:
>
> Hello,
>
> I am writing a simple oneshot service which should read access from
> the journal and systemctl status. To restrict the service I was trying
> to enable DynamicUser (and added '
> SupplementaryGroups=systemd-journal'). However, th
On Wed, 13 Mar 2024 at 12:30, Aditya Gupta wrote:
>
> Hello,
>
> I tried systemd-soft-reboot on a RHEL system, and it's amazing in terms
> of it's ability to do a userspace reboot, within fraction of time of a
> full system reboot. For example, for a Power system taking around 50
> seconds to do a
On Tue, 26 Dec 2023 at 02:30, Petr Menšík wrote:
>
> Hello systemd users and developers,
>
> I have experienced something in issue #25676 [1], which has been closed and I
> am not allowed to comment there anymore. But the experience I had there were
> so terrible, I feel a need to comment a litt
On Thu, 21 Dec 2023 at 14:26, Ludwig Nussel wrote:
>
> Hi!
>
> JFYI openSUSE now has a MicroOS (transactional system with read-only /)
> qcow image¹ suitable for use in qemu that uses systemd-boot. The image
> is part of the Tumbleweed development process and automatically released
> (ie potential
On Mon, 11 Dec 2023 at 21:20, Demi Marie Obenour
wrote:
>
> On Mon, Dec 11, 2023 at 08:58:58PM +, Luca Boccassi wrote:
> > On Mon, 11 Dec 2023 at 20:43, Demi Marie Obenour
> > wrote:
> > >
> > > -BEGIN PGP SIGNED MESSAGE-
> > > Hash: SHA
On Mon, 11 Dec 2023 at 20:43, Demi Marie Obenour
wrote:
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA512
>
> On Mon, Dec 11, 2023 at 08:15:27PM +, Luca Boccassi wrote:
> > On Mon, 11 Dec 2023 at 17:30, Demi Marie Obenour
> > wrote:
> > >
> >
On Mon, 11 Dec 2023 at 17:30, Demi Marie Obenour
wrote:
>
> On Mon, Dec 11, 2023 at 10:57:58AM +0100, Lennart Poettering wrote:
> > On Fr, 08.12.23 17:59, Eric Curtin (ecur...@redhat.com) wrote:
> >
> > > Here is the boot sequence with initoverlayfs integrated, the
> > > mini-initramfs contains ju
On Sat, 9 Dec 2023 at 17:58, Eric Curtin wrote:
>
> On Sat, 9 Dec 2023 at 17:46, Luca Boccassi wrote:
> >
> > On Sat, 9 Dec 2023 at 17:25, Eric Curtin wrote:
> > >
> > > On Sat, 9 Dec 2023 at 17:19, Luca Boccassi wrote:
> > > >
> &g
On Sat, 9 Dec 2023 at 17:25, Eric Curtin wrote:
>
> On Sat, 9 Dec 2023 at 17:19, Luca Boccassi wrote:
> >
> > On Sat, 9 Dec 2023 at 15:08, Eric Curtin wrote:
> > >
> > > On Sat, 9 Dec 2023 at 14:56, Andrei Borzenkov wrote:
> > > >
> > &g
On Sat, 9 Dec 2023 at 15:08, Eric Curtin wrote:
>
> On Sat, 9 Dec 2023 at 14:56, Andrei Borzenkov wrote:
> >
> > On 09.12.2023 17:42, Eric Curtin wrote:
> > > On Sat, 9 Dec 2023 at 12:46, Luca Boccassi wrote:
> > >>
> > >> On Fri, 8 Dec 2023 at
On Fri, 8 Dec 2023 at 19:00, Eric Curtin wrote:
>
> We have been working on a new initial filesystem called initoverlayfs.
> It is a new filesystem that provides a more scalable approach to
> initial filesystems as opposed to just using initrds. We are writing
> this RFC to the systemd and dracut
On Wed, 6 Dec 2023 at 16:00, Christopher Wong wrote:
> Hi,
>
> I’m trying to do the following:
>
> root@host:~# systemctl set-environment XDG_RUNTIME_DIR="/run/user/503"
Why are you setting this?
Anyway, enable debug level log and attach the output, otherwise it's hard to say
Applications can use credentials:
https://systemd.io/CREDENTIALS/
On Mon, 4 Dec 2023 at 05:22, VENKAT Nagaraj THOGARU (QUIC)
wrote:
>
> HI @Luca Boccassi,
>
>
>
> We have an application in Linux which need this information.
>
>
>
> Thanks & Regards,
>
Why does the kernel need to know all that?
On Fri, 1 Dec 2023, 06:43 VENKAT Nagaraj THOGARU (QUIC), <
quic_thog...@quicinc.com> wrote:
> HI @Luca Boccassi,
>
> Looks like this addons is to append additional cmd-line parameters with
> static data.
> Our requirement is to
On Tue, 28 Nov 2023 at 10:30, VENKAT Nagaraj THOGARU (QUIC)
wrote:
>
> Hi @systemd-devel@lists.freedesktop.org,
>
>
>
> We have a query on Fixup-support for kernel command line provided from UKI in
> system-stub.
>
>
>
> Just like we have the Fixup support for DTB provided from UKI in
> systemd-
g/software/systemd/man/255/systemd.exec.html
254:
https://www.freedesktop.org/software/systemd/man/254/systemd.exec.html
and so on.
--
Kind regards,
Luca Boccassi
signature.asc
Description: This is a digitally signed message part
On Wed, 8 Nov 2023 at 18:31, František Šumšal wrote:
>
> On 11/8/23 16:21, Luca Boccassi wrote:
> > On Wed, 8 Nov 2023 at 15:00, daechir wrote:
> >>
> >> Hello,
> >> I have been unable to build systemd from around the systemd-executor
> >> commi
On Wed, 8 Nov 2023 at 15:00, daechir wrote:
>
> Hello,
> I have been unable to build systemd from around the systemd-executor commit
> here:
> https://github.com/systemd/systemd/commit/bb5232b6a3b8af075ee06cc87416e5f49a6170d3.
> The error received is very vague and even when using verbose mode
On Wed, 18 Oct 2023 at 03:00, Kenneth Porter wrote:
>
> https://www.phoronix.com/news/Debian-Repeats-Merged-Usr-Block
>
> https://lists.debian.org/debian-devel-announce/2023/10/msg3.html
As it is so very often the case, phoronix is wrong and doesn't
understand what it is reporting about, this
On Fri, 29 Sept 2023 at 12:00, Lewis Gaul wrote:
>
> Hi systemd team,
>
> I've encountered an issue when running systemd inside a container using
> cgroups v2, where if a container exec process is created at the wrong moment
> during early startup then systemd will fail to move all processes int
On Sat, 9 Sept 2023 at 18:58, Jan Hendrik Farr wrote:
>
> > - the cmdline section is actually optional, just like it's optional to
> > pass it on a traditional kexec load, so it should be used if present,
> > but skipped if not
>
> Should be an easy fix.
>
> This should be updated in the UKI docum
On Sat, 9 Sept 2023 at 17:19, Jan Hendrik Farr wrote:
>
> Hello,
>
> this patch implements UKI support for kexec_file_load. It will require support
> in the kexec-tools userspace utility. For testing purposes the following can
> be used:
> https://github.com/Cydox/kexec-test/
>
> There has been d
On Wed, 2 Aug 2023 at 20:00, Giacinto Cifelli wrote:
>
> On Wed, Aug 2, 2023 at 6:44 PM Stephen Hemminger
> wrote:
> >
> > On Wed, 02 Aug 2023 06:39:47 +
> > Stanislav Angelovič wrote:
> >
> > > Hi folks,
> > >
> > > I have a quick question: is there a way to get container size when
> > > d
On Tue, 20 Sept 2022 at 20:18, Luca Boccassi wrote:
>
> Hello,
>
> Following this thread started back in April:
>
> https://lists.freedesktop.org/archives/systemd-devel/2022-April/047673.html
>
> As far as we understand there are no distributions running or
> optiona
mark which issue affects the client side and which
affects the dhcp server side.
Kind regards,
Luca Boccassi
On Mon, 24 Jul 2023 at 17:57, Neal Gompa wrote:
>
> On Mon, Jul 24, 2023 at 11:40 AM Luca Boccassi
> wrote:
> >
> > On Mon, 24 Jul 2023 at 16:30, Neal Gompa wrote:
> > >
> > > On Mon, Jul 24, 2023 at 9:00 AM systemd tag bot
> > > wrote:
> &
On Mon, 24 Jul 2023 at 16:30, Neal Gompa wrote:
>
> On Mon, Jul 24, 2023 at 9:00 AM systemd tag bot
> wrote:
> >
> > * Support for System V service scripts is now deprecated and will be
> > removed in a future release. Please make sure to update your
> > software
> >
On Wed, 19 Jul 2023 at 13:45, Neal Gompa wrote:
>
> On Thu, Jul 21, 2022 at 6:15 AM Lennart Poettering
> wrote:
> >
> > Heya!
> >
> > It's currently a terrible mess having to support both cgroupsv1 and
> > cgroupsv2 in our codebase.
> >
> > cgroupsv2 first entered the kernel in 2014, i.e. *eight*
On Wed, 19 Jul 2023 at 11:46, Lewis Gaul wrote:
>
> Hi Luca,
>
> > All the distributions you quoted above support cgroupv2 to the best of
> > my knowledge, it simply has to be enabled at boot. Why isn't that
> > sufficient?
>
> As I said in my previous email:
>
> > in the case of it being a system
systemd support cgroups v1 a little longer than the end of this year.
>
> Does this make sense as a use-case and motivation for wanting new systemd
> versions to continue supporting cgroups v1? Of course not forever, but until
> there are less hosts out there using cgroups v1.
All the distributions you quoted above support cgroupv2 to the best of
my knowledge, it simply has to be enabled at boot. Why isn't that
sufficient?
Kind regards,
Luca Boccassi
On Wed, 14 Jun 2023 at 20:15, Adrian Vovk wrote:
>
> Hello
>
> I've got a problem in my systemd --user instance that I can't quite
> grok nor can I explain it very well. Essentially I have no idea what
> could possibly be going on. Hoping someone here can help.
>
> Basically, the OS boots and I ca
On Tue, 13 Jun 2023 at 15:52, Richard Purdie
wrote:
>
> On Tue, 2023-06-13 at 15:31 +0100, Luca Boccassi wrote:
> > On Tue, 13 Jun 2023 at 15:15, Richard Purdie
> > wrote:
> > >
> > > On Tue, 2023-06-13 at 11:29 +0100, Luca Boccassi wrote:
> > > &
On Tue, 13 Jun 2023 at 15:15, Richard Purdie
wrote:
>
> On Tue, 2023-06-13 at 11:29 +0100, Luca Boccassi wrote:
> > On Tue, 20 Sept 2022 at 20:18, Luca Boccassi wrote:
> > >
> > > Hello,
> > >
> > > Following this thread started back in April:
&g
On Tue, 20 Sept 2022 at 20:18, Luca Boccassi wrote:
>
> Hello,
>
> Following this thread started back in April:
>
> https://lists.freedesktop.org/archives/systemd-devel/2022-April/047673.html
>
> As far as we understand there are no distributions running or
> optiona
On Thu, 4 May 2023 at 22:00, Chuck Tuffli wrote:
>
> I basically have portable service extensions working, but in the
> process, there are a few questions that came up.
>
> 1. When attaching a service with an extension, the portablectl list
> shows the base image as 'attached' but the extension as
On Mon, 3 Apr 2023 at 01:45, Chuck Tuffli wrote:
>
> I'm experimenting with Portable Services, but the "walkthrough" example [1]
> doesn't seem to work. The error:
> Failed to execute /usr/bin/portable-walkthrough-go: No such file or
> directory
> probably means something fairly fundamental is
On Tue, 27 Dec 2022 at 11:15, Luca Boccassi wrote:
>
> Hi,
>
> This is an advanced notification for an upcoming behaviour change
> being considered w.r.t. user units and sandboxing options.
>
> User units (those run by the per-user session manager) and system
> units shar
On Tue, 11 Apr 2023 at 02:15, Norbert Braun wrote:
>
> Hi all,
>
> I recently ran into a problem on Arch Linux ARM (32 bit) where logging
> in as root on the console would often, but not always, fail (much like
> in https://github.com/systemd/systemd/issues/17266). While investigating
> the proble
On Thu, 30 Mar 2023 at 11:09, Michael Chapman wrote:
>
> On Thu, 30 Mar 2023, Luca Boccassi wrote:
> > On Thu, 30 Mar 2023 at 10:15, Michael Chapman
> > wrote:
> > >
> > > On Thu, 30 Mar 2023, Lennart Poettering wrote:
> > > > On Mi,
On Thu, 30 Mar 2023 at 10:15, Michael Chapman wrote:
>
> On Thu, 30 Mar 2023, Lennart Poettering wrote:
> > On Mi, 29.03.23 13:53, Christoph Anton Mitterer (cales...@scientia.org)
> > wrote:
> >
> > > > > That's a bad idea btw. I'd advise you not to do that: on modern
> > > > > systems you want s
On Wed, 15 Mar 2023 at 12:23, Stephan Bergmann wrote:
>
> On 15/03/2023 13:18, Luca Boccassi wrote:
> > The hard part is adding the note correctly, with the right size,
> > alignment, flags, etc. You can use the linker to add a placeholder
> > value, eg --package-metada
On Wed, 15 Mar 2023 at 10:43, Stephan Bergmann wrote:
>
> On 15/03/2023 11:29, Luca Boccassi wrote:
> > Use the elf metadata spec: https://systemd.io/ELF_PACKAGE_METADATA/
> >
> > I need to update that, as these days it's no longer necessary to use a
> > cust
CKAGE_JSON= field in the journal.
If the json contains fields named 'name' and/or 'version' they will
also be appended independently as COREDUMP_PACKAGE_NAME= and
COREDUMP_PACKAGE_VERSION=
You should be able to add your own identifier in the json and match on
it easily.
Kind regards,
Luca Boccassi
On Fri, 3 Mar 2023 at 09:17, Mike Hearn wrote:
> > > > But of course such an approach requires that services are written in a
> > > > way this is possible
> > >
> > > Right. I think that'd be quite hard to do especially with servers
> > > written in portable languages that don't expose stuff unava
PR that implements this change can be found at:
https://github.com/systemd/systemd/pull/25233
Kind regards,
Luca Boccassi
On Sat, 5 Nov 2022, 10:53 TJ, wrote:
> On 05/11/2022 10:36, Mantas Mikulėnas wrote:
> > On Sat, Nov 5, 2022 at 12:06 PM TJ wrote:
> >
> >> Just seen this announcement in the v252 changelog:
> >>
> >> "We intend to remove support for split-usr (/usr mounted separately
> >> during boot) ..."
> >>
On Wed, 2022-10-26 at 14:40 +0100, Richard Purdie wrote:
> On Wed, 2022-10-26 at 13:21 +0100, Luca Boccassi wrote:
> > > On Wed, 2022-10-26 at 11:39 +0100, Richard Purdie wrote:
> > > > > On Tue, 2022-09-20 at 19:18 +, Luca Boccassi wrote:
> > > > >
On Wed, 2022-10-26 at 11:39 +0100, Richard Purdie wrote:
> On Tue, 2022-09-20 at 19:18 +0000, Luca Boccassi wrote:
> > Hello,
> >
> > Following this thread started back in April:
> >
> > https://lists.freedesktop.org/archives/systemd-devel/2022-April/047673.html
nsion be running, but it seems to work as-is.
>> Time to wait for the next system update and see if it breaks.
>>
>> On Sat, Oct 8, 2022 at 2:02 PM Luca Boccassi wrote:
>>>
>>> On Sat, 8 Oct 2022 at 18:51, Duncan Gibson wrote:
>>> >
>>> >
{"/usr/sbin/tailscaled",
> > "--state=/var/lib/tailscale/tailscaled.state",
> > "--socket=/run/tailscale/tailscaled.sock"}
> > LogID:
> > 0f59ed267a2b19cc28aac9ee7119914000ca478234af8d56893a025ae72cc647
> > logpolicy: using $STATE_DIRECTORY, "/var/lib/tailscale"
> > wgengine.NewUserspaceEngine(tun "tailscale0") ...
> > wgengine.NewUserspaceEngine(tun "tailscale0") error: creating
> > router:
> > could not get iptables version: fork/exec /usr/bin/iptables: no
> > such file
> > or directory flushing log.
> > logger closing down
> > createEngine: creating router: could not get iptables version:
> > fork/exec
> > /usr/bin/iptables: no such file or directory
> >
> > iptables is, in fact, at /usr/bin/iptables, so what am I missing?
> > Before I
> > added the Environment line, I was getting errors that iptables
> > wasn't on
> > the PATH, so I suspect that now tailscaled can *see* iptables, but
> > systemd isn't letting tailscaled run it.
> >
> > Thanks for having a look at this.
> >
> >
> >
--
Kind regards,
Luca Boccassi
signature.asc
Description: This is a digitally signed message part
On Wed, 2022-09-28 at 09:59 +, Branko wrote:
> On Wed, 28 Sep 2022 19:26:58 +1000 (AEST)
> Michael Chapman wrote:
>
> > On Wed, 28 Sep 2022, Branko wrote:
> > [...]
> >
> > No.
> >
> > I've given you a small, self-contained, working example.
> >
> > It's now your turn to give us a small
s
not possible to tell the exact version, but it will be of course
communicated once it becomes clear).
Thanks!
--
Kind regards,
Luca Boccassi
signature.asc
Description: This is a digitally signed message part
On Thu, 2022-08-18 at 16:39 +, Suraj Krishnan wrote:
> Hi all,
>
> I wanted to revive this thread and provide an update on the status of this
> feature/PR.
>
> The feature adds a mechanism for privileged users to monitor DNS resolutions
> on the system, by adding a new varlink interface tha
sn't possible, even
just optionally. Is it possible to find a Gentoo developer who would
like to take this on? It doesn't have to be universal, having it merged
only for installations running systemd would be perfectly fine. As
mentioned in the thread, the scripts to move an installation forward
and back exist and should be pretty generalistic, and require some
adaptations but no major overhaul.
We'd like to chart a path toward full deprecation at some point in the
future, but we want to make sure that everything that can be done is
done to help all the major distributions move forward as well.
--
Kind regards,
Luca Boccassi
signature.asc
Description: This is a digitally signed message part
On Fri, 2022-04-08 at 10:33 +0100, Luca Boccassi wrote:
> On Thu, 2022-04-07 at 10:39 +0100, Luca Boccassi wrote:
> > On Wed, 2022-04-06 at 08:39 -0400, Neal Gompa wrote:
> > > On Wed, Apr 6, 2022 at 8:07 AM Luca Boccassi
> > > wrote:
> > > >
> >
On Sat, 9 Oct 2021 at 19:11, Luca Boccassi wrote:
>
> On Wed, 2021-09-29 at 18:11 +0100, Luca Boccassi wrote:
> > On Wed, 2021-09-15 at 16:06 +0100, Luca Boccassi wrote:
> > > On Tue, 2021-09-14 at 13:36 +0200, Lennart Poettering wrote:
> > > > Heya!
> > >
packages and signs them. It then
> produces "systemd-boot-$EFIARCH" subpackages that are signed that
> people can use.
>
> That second package gets specifically marked to not get autobuilt,
> doesn't have a disttag, and basically goes through the entire
> exception path that shim uses today.
>
> I think this matches what Michael Biebl was talking about for Debian
> that died on the vine.
Yes, this is how the EFI signing process was implemented for all
relevant Debian packages (not just for the sd-boot PoC), in order to
work with the, er, clunky infrastructure we have. More details can be
found here:
https://wiki.debian.org/SecureBoot/Discussion
--
Kind regards,
Luca Boccassi
signature.asc
Description: This is a digitally signed message part
On Wed, 2022-04-27 at 11:48 -0400, Neal Gompa wrote:
> On Wed, Apr 27, 2022 at 11:46 AM Luca Boccassi wrote:
> >
> > On Wed, 2022-04-27 at 11:26 -0400, Neal Gompa wrote:
> > > On Wed, Apr 27, 2022 at 11:13 AM Zbigniew Jędrzejewski-Szmek
> > > wrote:
> >
t;
> > Apart from the constraint who can build official packages, is there
> > anything else? If it's just that, that doesn't seem onerous.
>
> It also means Fedora CI, pull requests from contributors, and
> releng auto-rebuilds will no longer work. Maintainers basi
ib/systemd/boot/efi
Installing src/boot/efi/linuxx64.elf.stub to /tmp/foo/usr/lib/systemd/boot/efi
Installing src/boot/efi/linuxx64.efi.stub to /tmp/foo/usr/lib/systemd/boot/efi
(note 'install --tags' requires
https://github.com/systemd/systemd/pull/23204 )
Would this be a feasible approach?
--
Kind regards,
Luca Boccassi
signature.asc
Description: This is a digitally signed message part
Be very careful about inserting daemon-reload in the boot process,
especially early. At best it will cause slow-downs, at worst lock ups.
On Wed, 2022-04-20 at 13:18 +, Sietse van Zanen wrote:
> Why not add:
>
> ExecStartPost=systemctl daemon-reload
>
> to systemd-networkd-wait-online.servic
On Thu, 2022-04-07 at 10:39 +0100, Luca Boccassi wrote:
> On Wed, 2022-04-06 at 08:39 -0400, Neal Gompa wrote:
> > On Wed, Apr 6, 2022 at 8:07 AM Luca Boccassi
> > wrote:
> > >
> > > On Wed, 2022-04-06 at 06:51 -0400, Neal Gompa wrote:
> > > >
On Wed, 2022-04-06 at 08:39 -0400, Neal Gompa wrote:
> On Wed, Apr 6, 2022 at 8:07 AM Luca Boccassi wrote:
> >
> > On Wed, 2022-04-06 at 06:51 -0400, Neal Gompa wrote:
> > > On Wed, Apr 6, 2022 at 6:45 AM Luca Boccassi
> > > wrote:
> > > >
>
nsition
on the live filesystem, no reinstall required (I think other distros
did the same). You can find the script that does it in this repository:
https://salsa.debian.org/md/usrmerge apart from details about multi-
arch lib directories, it should be adaptable to other distributions.
--
Kind regards,
Luca Boccassi
signature.asc
Description: This is a digitally signed message part
1 - 100 of 139 matches
Mail list logo
