~mvo/snapd/+git/snapd-mvo:move-to-latest-secboot

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

Related rock recipes

7706d45... by Michael Vogt on 2023-09-28

WIP

9807656... by Michael Vogt on 2023-10-06

secboot: secboot.sb.NewKeyData() now marhals the handle internally

The old version of secboot.sb.NewKeyData() was expecting a handle
in json encoded form. However the new code is now doing the
marshalling itself.

688b3f7... by Michael Vogt on 2023-09-28

secboot: port the simple API changes

549dec8... by Michael Vogt on 2023-09-21

go.mod: move to latest secboot/go-tpm2/go-efilib

2d35a87... by Oliver Calder on 2023-09-19

usersession/agent: only close session bus if non-nil

On Ubuntu 16.04, ssh sessions may not have a D-Bus session bus,
resulting in the `bus` field of the session agent being nil. If this is
the case, calling `s.bus.Close()` results in a nil pointer exception.
This commit adds a check of `s.bus` (like those found elsewhere in
session_agent.go) before calling `s.bus.Close()` during a session
shutdown.

Discovered-by: Andrew Phelps <email address hidden>
Signed-off-by: Oliver Calder <email address hidden>

d0cfb81... by Samuele Pedroni on 2023-09-20

boot,o/devicestate: protect with a mutex modifying modeeenv and sealing/releasing (#13185)

this should allow to release the global state lock while doing resealing/sealing proper as those are slow operations in fact

* boot: use loadModeenv a bit more consistently and some XXXs

* boot: take a lock around read modeenv/modify(/reaseal) etc

* boot: do not seal without the modeenv associated lock

* boot: do not reseal without the modeenv associated lock

* boot,o/devicestate: introduce Unlocker to unlock global state

have boot.DeviceChange make use of it for a start

* boot: explain a bit more modeenvMu

* overlord: introduce state.Unlocker convenience method

* boot: check that the lock is taken also in bootStateUpdate20.commit

c67974c... by Andrew Phelps <email address hidden> on 2023-09-20

daemon: make tests pass with race detector (#13199)

* daemon: make tests pass with race detector

* daemon: remove need for TearDownTest by using AddCleanup method to reset GlobalRootDir

619489d... by Philip Meulengracht on 2023-09-06

wrappers: support activated services in QueryDisabledServices/ServicesEnableState

1a58d99... by Philip Meulengracht on 2023-09-06

wrappers: honor the disable list for activation units

b133916... by Valentin David on 2023-09-19

cmd/Makefile.am: add warning to all CFLAGS (#13133)

Some target were not having warnings, for instance snap-generator,
because they did not have explicit CFLAGS, and AM_CFLAGS did
not contain CHECK_CFLAGS.