{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":184578886,"defaultBranch":"rhel-7.9","name":"systemd-rhel7","ownerLogin":"redhat-plumbers","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2019-05-02T12:41:48.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/84723483?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1721737704.0","currentOid":""},"activityList":{"items":[{"before":"d2d5f303e9062eff40a0a78ffa7dae0a3e9412e0","after":"974821e4feda71436b907d0117cc5b49d035b19c","ref":"refs/heads/rhel-7.9","pushedAt":"2024-07-23T12:25:13.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"lnykryn","name":"Lukáš Nykrýn","path":"/lnykryn","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1889412?s=80&v=4"},"commit":{"message":"pager: make pager secure when under euid is changed or explicitly requested\n\nThe variable is renamed to SYSTEMD_PAGERSECURE (because it's not just about\nless now), and we automatically enable secure mode in certain cases, but not\notherwise.\n\nThis approach is more nuanced, but should provide a better experience for\nusers:\n\n- Previusly we would set LESSSECURE=1 and trust the pager to make use of\n  it. But this has an effect only on less. We need to not start pagers which\n  are insecure when in secure mode. In particular more is like that and is a\n  very popular pager.\n\n- We don't enable secure mode always, which means that those other pagers can\n  reasonably used.\n\n- We do the right thing by default, but the user has ultimate control by\n  setting SYSTEMD_PAGERSECURE.\n\nFixes #5666.\n\nv2:\n- also check $PKEXEC_UID\n\nv3:\n- use 'sd_pid_get_owner_uid() != geteuid()' as the condition\n\nBased on: 0a42426d797406b4b01a0d9c13bb759c2629d108\n\nrhel-only\n\nResolves: RHEL-35665","shortMessageHtmlLink":"pager: make pager secure when under euid is changed or explicitly req…"}},{"before":"ef95891e6267fb2c16adecb35133d6683c0436eb","after":"d2d5f303e9062eff40a0a78ffa7dae0a3e9412e0","ref":"refs/heads/rhel-7.9","pushedAt":"2024-03-04T12:46:10.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"jamacku","name":"Jan Macku","path":"/jamacku","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2879818?s=80&v=4"},"commit":{"message":"ci: add configuration for regression sniffer GA\n\nrhel-only","shortMessageHtmlLink":"ci: add configuration for regression sniffer GA"}},{"before":"91c2ca21e754893c95199fff0862178a6410c95a","after":"ef95891e6267fb2c16adecb35133d6683c0436eb","ref":"refs/heads/rhel-7.9","pushedAt":"2024-02-07T15:04:09.000Z","pushType":"pr_merge","commitsCount":7,"pusher":{"login":"jamacku","name":"Jan Macku","path":"/jamacku","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2879818?s=80&v=4"},"commit":{"message":"test: backport TEST-81-GENERATORS (fstab-generator only)\n\nSome fstab-generator features are not present on RHEL 7 or they behave\ndifferently - in such case there's an inline comment explaining what's\ndifferent with a reference to an upstream commit that introduced the\nchanged behavior.\n\nAlso, RHEL 7 systemd doesn't allow overriding (/sysroot)/etc/fstab or\n/proc/cmdline, so instead of backporting another bunch of potential\nrisky commits, let's temporarily bind-mount a modified copy of necessary\nfiles in place of the expected ones. One exception is\n$SYSTEMD_IN_INITRD, since systemd checks if the mount for / is a tmpfs,\nwhich is a pain to mock, but the patch for that is, thankfully, pretty\nsmall.\n\nRelated: RHEL-17394\n\nrhel-only","shortMessageHtmlLink":"test: backport TEST-81-GENERATORS (fstab-generator only)"}},{"before":"3f4082478351da51d7c4c8907ec691238a384313","after":"91c2ca21e754893c95199fff0862178a6410c95a","ref":"refs/heads/rhel-7.9","pushedAt":"2024-01-16T14:04:45.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"jamacku","name":"Jan Macku","path":"/jamacku","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2879818?s=80&v=4"},"commit":{"message":"ci: enable source-git automation\n\nrhel-only","shortMessageHtmlLink":"ci: enable source-git automation"}},{"before":"a4c51f1bb38f272fb9c3dbaa33f1f383639ce345","after":"3f4082478351da51d7c4c8907ec691238a384313","ref":"refs/heads/rhel-7.9","pushedAt":"2023-11-22T19:49:44.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"lnykryn","name":"Lukáš Nykrýn","path":"/lnykryn","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1889412?s=80&v=4"},"commit":{"message":"Revert \"fstab-generator: Chase symlinks where possible (#6293)\"\n\nThis reverts commit a4c51f1bb38f272fb9c3dbaa33f1f383639ce345.\n\nResolves: RHEL-17164","shortMessageHtmlLink":"Revert \"fstab-generator: Chase symlinks where possible (#6293)\""}},{"before":"b68960a1e67ee101a435e9f31384d1b5c78baa69","after":null,"ref":"refs/heads/cve-fix","pushedAt":"2023-09-26T11:58:12.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"jamacku","name":"Jan Macku","path":"/jamacku","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2879818?s=80&v=4"}},{"before":"cedab11bf07cdb5275ac12104d4dad6debbedce4","after":"a4c51f1bb38f272fb9c3dbaa33f1f383639ce345","ref":"refs/heads/rhel-7.9","pushedAt":"2023-09-25T16:10:09.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"jamacku","name":"Jan Macku","path":"/jamacku","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2879818?s=80&v=4"},"commit":{"message":"fstab-generator: Chase symlinks where possible (#6293)\n\nThis has a long history; see see 5261ba901845c084de5a8fd06500ed09bfb0bd80\nwhich originally introduced the behavior.  Unfortunately that commit\ndoesn't include any rationale, but IIRC the basic issue is that\nsystemd wants to model the real mount state as units, and symlinks\nmake canonicalization much more difficult.\n\nAt the same time, on a RHEL6 system (upstart), one can make e.g. `/home` a\nsymlink, and things work as well as they always did; but one doesn't have\naccess to the sophistication of mount units (dependencies, introspection, etc.)\nSupporting symlinks here will hence make it easier for people to do upgrades to\nRHEL7 and beyond.\n\nThe `/home` as symlink case also appears prominently for OSTree; see\nhttps://ostree.readthedocs.io/en/latest/manual/adapting-existing/\n\nFurther work has landed in the nspawn case for this; see e.g.\nd944dc9553009822deaddec76814f5642a6a8176\n\nA basic limitation with doing this in the fstab generator (and that I hit while\ndoing some testing) is that we obviously can't chase symlinks into mounts,\nsince the generator runs early before mounts. Or at least - doing so would\nrequire multiple passes over the fstab data (as well as looking at existing\nmount units), and potentially doing multi-phase generation. I'm not sure it's\nworth doing that without a real world use case. For now, this will fix at least\nthe OSTree + `/home` <https://bugzilla.redhat.com/show_bug.cgi?id=1382873> case\nmentioned above, and in general anyone who for whatever reason has symlinks in\ntheir `/etc/fstab`.\n\n(cherry picked from commit 634735b56b82bdde3c67193ba7b470bab80fdcbd)\n\nResolves: RHEL-6223","shortMessageHtmlLink":"fstab-generator: Chase symlinks where possible (#6293)"}},{"before":"420ffdb2b6c0d445b2f911cddfbee0a0d94c013d","after":"a4c51f1bb38f272fb9c3dbaa33f1f383639ce345","ref":"refs/heads/master","pushedAt":"2023-09-25T16:03:42.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"jamacku","name":"Jan Macku","path":"/jamacku","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2879818?s=80&v=4"},"commit":{"message":"fstab-generator: Chase symlinks where possible (#6293)\n\nThis has a long history; see see 5261ba901845c084de5a8fd06500ed09bfb0bd80\nwhich originally introduced the behavior.  Unfortunately that commit\ndoesn't include any rationale, but IIRC the basic issue is that\nsystemd wants to model the real mount state as units, and symlinks\nmake canonicalization much more difficult.\n\nAt the same time, on a RHEL6 system (upstart), one can make e.g. `/home` a\nsymlink, and things work as well as they always did; but one doesn't have\naccess to the sophistication of mount units (dependencies, introspection, etc.)\nSupporting symlinks here will hence make it easier for people to do upgrades to\nRHEL7 and beyond.\n\nThe `/home` as symlink case also appears prominently for OSTree; see\nhttps://ostree.readthedocs.io/en/latest/manual/adapting-existing/\n\nFurther work has landed in the nspawn case for this; see e.g.\nd944dc9553009822deaddec76814f5642a6a8176\n\nA basic limitation with doing this in the fstab generator (and that I hit while\ndoing some testing) is that we obviously can't chase symlinks into mounts,\nsince the generator runs early before mounts. Or at least - doing so would\nrequire multiple passes over the fstab data (as well as looking at existing\nmount units), and potentially doing multi-phase generation. I'm not sure it's\nworth doing that without a real world use case. For now, this will fix at least\nthe OSTree + `/home` <https://bugzilla.redhat.com/show_bug.cgi?id=1382873> case\nmentioned above, and in general anyone who for whatever reason has symlinks in\ntheir `/etc/fstab`.\n\n(cherry picked from commit 634735b56b82bdde3c67193ba7b470bab80fdcbd)\n\nResolves: RHEL-6223","shortMessageHtmlLink":"fstab-generator: Chase symlinks where possible (#6293)"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"Y3Vyc29yOnYyOpK7MjAyNC0wNy0yM1QxMjoyNToxMy4wMDAwMDBazwAAAASG0z_j","startCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wNy0yM1QxMjoyNToxMy4wMDAwMDBazwAAAASG0z_j","endCursor":"Y3Vyc29yOnYyOpK7MjAyMy0wOS0yNVQxNjowMzo0Mi4wMDAwMDBazwAAAAOIYl0U"}},"title":"Activity · redhat-plumbers/systemd-rhel7"}