unblock: systemd/215-7

Martin Pitt mpitt at debian.org
Wed Nov 26 15:15:08 GMT 2014 

Package: release.debian.org
Severity: normal
User: release.debian.org at packages.debian.org
Usertags: unblock

systemd 215-6 made it into testing today, so I'd like to ask for
landing another set of small fixes.

Note that I did *not* upload -7 to unstable yet, I'd like to get the
release team's pre-approval to avoid reverting changes and messing up
the package history.

I attach the full debdiff between 215-6 and current git (which is to
become 215-7, modulo the dch -r changes); alternatively you might want
to review the individual changes since the debian/215-6 tag on
http://anonscm.debian.org/cgit/pkg-systemd/systemd.git/log/

Annotated changelog:

|   [ Martin Pitt ]
|   * Add myself to Uploaders.
|   * Add boot-and-services autopkgtest: Check booting with systemd-sysv and
|     that the most crucial services behave as expected.
|   * logind autopkgtest: Fix stderr output in waiting loop for scsi_debug.
|   * Add nspawn test to boot-and-services autopkgtest.

This just affects autopkgtests, thus nothing at runtime. We can't run
them on ci.debian.net yet as they require better isolation than
schroot (so they will continue to be skipped), but we do run them on
Ubuntu and thus can catch regressions efficiently.

|   * Make systemd-nspawn at .service work out of the box: (Closes: #770275)
|     - Pre-create /var/lib/container with a secure mode (0700) via tmpfiles.d.
|     - Add new try-{guest,host} modes for --link-journal to silently skip
|       setting up the guest journal if the host has no persistant journal.
|     - Extend boot-and-services autopkgtest to cover systemd-nspawn at .service.

This is a comparatively big fix in LoC, although conceptually the
patch is quite simple. It is covered by an autopkgtest now (which
reproduces the original problem). I'd say it's low risk since this is
an entirely new feature in jessie compared to wheezy, and it is
currently completely broken with our default install.

|   * Cherry-pick upstream patch to fix SELinux unit access check (regression
|     in 215).

Trivial fix for an obvious typo in the original commit:
http://cgit.freedesktop.org/systemd/systemd/commit/?id=ebcf1f97de4
(Note how it accidentally changes _u->source_path to
_unit->fragment_path, this patch fixes it back). It doesn't affect our
default install, but people who enable SELinux.

|   [ Jon Severinsson]
|   * Add /run/shm -> /dev/shm symlink in debian/tmpfiles.d/debian.conf. This
|     avoids breakage in Jessie for packages which still refer to /run/shm, and
|     while https://wiki.debian.org/ReleaseGoals/RunDirectory is still official.
|     (LP: #1320534, Closes: #674755).

We've had this in Ubuntu for some time, but kind of forgot to apply it
in Debian. Originally the plan was to fix everything in Debian which
refers to /run/shm/ and use the upstream glibc location /dev/shm/
instead, but with the freeze now is not the time any more to do that.
So this is a safety measure to avoid running into regressions like the
one Keith Packard mentioned in libxshmfence in the Debian bug.

There's one more thing which I'd like to land, but didn't commit yet:
the patch set in https://bugs.debian.org/769734 which fixes a
regression under systemd with the "discard" mount option for swap
partitions. The patches are backported from upstream, and Aurelien
Jarno tested them in Debian with our version. Not trimming swap
partitions when you expect it causes quite a noticeable performance
degradation. However, the patches aren't trivial, so I'd rather only
apply them once the RT says they are ok for the freeze.

If this looks fine to you, I'll do the -7 upload to unstable ASAP,
with or without the discard fix above.

Thanks for considering,

Martin

unblock systemd/215-7

-- 
Martin Pitt                        | http://www.piware.de
Ubuntu Developer (www.ubuntu.com)  | Debian Developer  (www.debian.org)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-systemd-maintainers/attachments/20141126/149d8693/attachment.sig>

More information about the Pkg-systemd-maintainers mailing list