From patchwork Wed Apr 8 15:18:52 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: Adolf Belka X-Patchwork-Id: 9650 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519) (Client CN "mail01.haj.ipfire.org", Issuer "R12" (not verified)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4frRYN61Dvz3wnd for ; Wed, 08 Apr 2026 15:19:04 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519) (Client CN "mail02.haj.ipfire.org", Issuer "E7" (not verified)) by mail01.ipfire.org (Postfix) with ESMTPS id 4frRYN55lsz46Z for ; Wed, 08 Apr 2026 15:19:04 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [IPv6:::1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4frRYN4LH6z2yDM for ; Wed, 08 Apr 2026 15:19:04 +0000 (UTC) X-Original-To: development@lists.ipfire.org Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519 server-signature ECDSA (secp384r1 raw public key) server-digest SHA384 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mail01.haj.ipfire.org", Issuer "R12" (not verified)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4frRYL0PnTz339x for ; Wed, 08 Apr 2026 15:19:02 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4frRYD4t7sz41t; Wed, 08 Apr 2026 15:18:56 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1775661536; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=JdcdIIjeZJWxrZ+1LP95P/bdiKfJuNCHbYks2V5RqDw=; b=2GhjPM6DcN+M2Snat2OeQahdFsDqABFwiX5WDUPbH22gL5aLmSJR4keS9vXgJn/Ew5d4JB Mh1sg9MZDKZV1uDA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1775661536; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=JdcdIIjeZJWxrZ+1LP95P/bdiKfJuNCHbYks2V5RqDw=; b=cc4hPuk8EZGNz5hfkvc5M4+UU8/jfI1k3DFeU9v+HtkDIGJi05LPQH7XDlXPAIoV27koMV kpk5NG8T/O6qWpotVoCmD1cTnC5EVppl6nwqg1u6nDon6A27gmBMW4SEuf/QJXu+Lc181/ JUND//F/hV0s02xwdSnQZpCbsxMTXbsLfLr4al6N1Lob6fzsvy+Rt7KOfKXxRgb7Oe2qMS wbe2eofU68aUXmYBP/11pxTff9O5KJZ6v0mzF38FtvqfbvxzT3JLO8NIKEtP9iENmklicN cW19NDjZv8/a4T52QikQk6He4LFzIUhTx4nSZ5qQbMk+ndMLmrTntXMGPZvFSA== From: Adolf Belka To: development@lists.ipfire.org Cc: Adolf Belka Subject: [PATCH] systemd: Update to version 260.1 Date: Wed, 8 Apr 2026 17:18:52 +0200 Message-ID: <20260408151853.3549026-2-adolf.belka@ipfire.org> In-Reply-To: <20260408151853.3549026-1-adolf.belka@ipfire.org> References: <20260408151853.3549026-1-adolf.belka@ipfire.org> Precedence: list List-Id: List-Subscribe: , List-Unsubscribe: , List-Post: List-Help: Sender: Mail-Followup-To: MIME-Version: 1.0 - Update from version 258 to 260.1 - Update of rootfile - Remove FTBFS patch as this has now been included in the tarball. - Remove the sed line for fixing udev linking as this is now part of the tarball. - Changelog entries only related to udev 260.1 * Support for non-system users and groups in udev rules and systemd-networkd configuration has been restored, but is deprecated and discouraged. systemd-udevd will emits warnings if a non-system user/group is specified in OWNER=/GROUP=. Similarly, systemd-networkd will warn about User=/Group= settings with a non-system user/group specified in .netdev files for Tun/Tap interfaces. This support will be removed in a future release. Device nodes should not be owned by a non-system user/group. It is recommended to check udev rules files with 'udevadm verify' and/or 'udevadm test' commands. * Permissions for /dev/ptp* are now set to 0664 (previously 0660), allowing unprivileged read-only access. This relies on the kernel fix "ptp: Add PHC file mode checks. Allow RO adjtime() without FMODE_WRITE." (commit b4e53b15c04e3852949003752f48f7a14ae39e86 in v6.15, backported to LTS releases in v6.12.68, v6.6.122, v6.1.162, v5.15.199, and v5.10.249), which adds missing PTP ioctl permission checks and keeps clock-modifying operations write-restricted. Systems running stable kernel branches should ensure they are updated to patch levels that include the fix. * Persistent network interface naming has bee extended to MCTP devices with the "mc" prefix. * The minimum backlight brightness value used when restoring backlight levels at boot has been lowered from 5% to 1%. This lower value should be sufficient to avoid blacked-out displays, but allows user environments to use a wider range of values (without lower values being reset during reboot). Note that environments may still set very low brightness values at runtime independently of the systemd clamp which only applies during boot. * A new udev property ID_INTEGRATION= is now exposed on devices that have ID_BUS= defined. This variable can be set to 'internal' when the device is integral part of the system or 'external' otherwise. Internal buses like PCI, I2C, SPI... imply 'internal' and external buses like bluetooth imply 'external'. For USB the 'removable' attribute of the port the device is connected to determines the result: 'fixed' implies 'internal' and 'removable' or 'unknown' implies 'external'. * ID_INPUT_JOYSTICK_INTEGRATION= property has been dropped in favour of ID_INTEGRATION= because it was never used and the new variable covers the idea that variable was intended for better. * A new udev builtin "tpm2_id" is now available which will extract vendor/model identification from connected TPM2 devices as they are probed. This is then used to import data from the udev database, possibly containing quirk and other information about specific TPMs. 259 * systemd-udevd rules gained support for OPTIONS="dump-json" to dump the current event status in JSON format. This generates output similar to "udevadm test --json=short". * The net_id builtin for systemd-udevd now can generate predictable interface names for Wifi devices on DeviceTree systems. * systemd-udevd and systemd-repart will now reread partition tables on block devices in a more graceful, incremental fashion. Specifically, they no longer use the kernel BLKRRPART ioctl() which removes all in-memory partition objects loaded into the kernel and then recreates them as new objects. Instead they will use the BLKPG ioctl() to make minimal changes, and individually add, remove, or grow modified partitions, avoiding removal/re-adding where the partitions were left unmodified on disk. This should greatly improve behaviour on systems that make modifications to partition tables on disk while using them. * A new udev property ID_BLOCK_SUBSYSTEM is now exposed on block devices reporting a short identifier for the subsystem a block device belongs to. This only applies to block devices not connected to a regular bus, i.e. virtual block devices such as loopback, DM, MD, or zram. * systemd-udevd will now generate /dev/gpio/by-id/… symlinks for GPIO devices. Signed-off-by: Adolf Belka --- config/rootfiles/common/systemd | 10 +++++++--- lfs/systemd | 12 +++--------- 2 files changed, 10 insertions(+), 12 deletions(-) diff --git a/config/rootfiles/common/systemd b/config/rootfiles/common/systemd index b3dd31afd..965d2fe3f 100644 --- a/config/rootfiles/common/systemd +++ b/config/rootfiles/common/systemd @@ -27,6 +27,7 @@ usr/bin/udev-hwdb #usr/include/systemd/sd-dhcp6-lease.h #usr/include/systemd/sd-dhcp6-option.h #usr/include/systemd/sd-dhcp6-protocol.h +#usr/include/systemd/sd-dns-resolver.h #usr/include/systemd/sd-event.h #usr/include/systemd/sd-gpt.h #usr/include/systemd/sd-hwdb.h @@ -51,15 +52,14 @@ usr/bin/udev-hwdb #usr/include/systemd/sd-path.h #usr/include/systemd/sd-radv.h #usr/include/systemd/sd-resolve.h -#usr/include/systemd/sd-utf8.h #usr/include/systemd/sd-varlink-idl.h #usr/include/systemd/sd-varlink.h #usr/lib/libsystemd.so usr/lib/libsystemd.so.0 -usr/lib/libsystemd.so.0.41.0 +usr/lib/libsystemd.so.0.43.0 #usr/lib/libudev.so usr/lib/libudev.so.1 -usr/lib/libudev.so.1.7.11 +usr/lib/libudev.so.1.7.13 #usr/lib/pkgconfig/libsystemd.pc #usr/lib/pkgconfig/libudev.pc usr/lib/udev @@ -88,6 +88,7 @@ usr/lib/udev/hwdb.d/60-input-id.hwdb usr/lib/udev/hwdb.d/60-keyboard.hwdb usr/lib/udev/hwdb.d/60-seat.hwdb usr/lib/udev/hwdb.d/60-sensor.hwdb +usr/lib/udev/hwdb.d/60-tpm2.hwdb usr/lib/udev/hwdb.d/70-analyzers.hwdb usr/lib/udev/hwdb.d/70-av-production.hwdb usr/lib/udev/hwdb.d/70-cameras.hwdb @@ -121,6 +122,7 @@ usr/lib/udev/rules.d/60-dmi-id.rules usr/lib/udev/rules.d/60-drm.rules usr/lib/udev/rules.d/60-evdev.rules usr/lib/udev/rules.d/60-fido-id.rules +usr/lib/udev/rules.d/60-gpiochip.rules usr/lib/udev/rules.d/60-infiniband.rules usr/lib/udev/rules.d/60-input-id.rules usr/lib/udev/rules.d/60-net.rules @@ -134,8 +136,10 @@ usr/lib/udev/rules.d/60-persistent-storage.rules usr/lib/udev/rules.d/60-persistent-v4l.rules usr/lib/udev/rules.d/60-sensor.rules usr/lib/udev/rules.d/60-serial.rules +usr/lib/udev/rules.d/60-tpm2-id.rules usr/lib/udev/rules.d/61-extrahd.rules usr/lib/udev/rules.d/64-btrfs.rules +usr/lib/udev/rules.d/65-integration.rules usr/lib/udev/rules.d/70-camera.rules usr/lib/udev/rules.d/70-joystick.rules usr/lib/udev/rules.d/70-memory.rules diff --git a/lfs/systemd b/lfs/systemd index df2b5346c..46f873b04 100644 --- a/lfs/systemd +++ b/lfs/systemd @@ -1,7 +1,7 @@ ############################################################################### # # # IPFire.org - A linux based firewall # -# Copyright (C) 2007-2023 IPFire Team # +# Copyright (C) 2007-2026 IPFire Team # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # @@ -24,7 +24,7 @@ include Config -VER = 258 +VER = 260.1 THISAPP = systemd-$(VER) DL_FILE = $(THISAPP).tar.gz @@ -50,7 +50,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_BLAKE2 = c63bc09bff11ba4cf6e87bef689250a6b354bf8f5bfb5af6d2a173fa1e1838aa457a8a7db66f7aad20dae25b7a0defddcb052d53f18a688a2dd6d5f323d4692a +$(DL_FILE)_BLAKE2 = 072424e7288f8796be1e6952fadc5452c2ab54633b356796a29872609a03b4cc2edbc0cac0df7542bc969b06d265d2cbf52f9174742c5a570a5a3d7a7664cfa8 install : $(TARGET) @@ -91,12 +91,6 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects)) # Remve udev rule which requires a full systemd installation cd $(DIR_APP) && sed '/systemd-sysctl/s/^/#/' -i rules.d/99-systemd.rules.in - # Fix udev linking - cd $(DIR_APP) && \ - sed -i "/udev_dependencies,/a \ 'link_with': udev_link_with," src/udev/meson.build - - cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/systemd-258-FTBFS.patch - # Prepare udev for build. cd $(DIR_APP) && mkdir -pv build cd $(DIR_APP)/build &&meson setup \