Начало Каталог Помощ
Вход
Qubes
/
core-agent-linux
2
0
Разклонения 0
Файлове Задачи 0 Заявки за сливане 0 Уики
Преглед на файлове

debian: make haveged.service patch less intrusive...

...but installed on all Debian versions. This is mostly required by
vebose file list in debian/qubes-core-agent.install. But also make it
use new options when upstream will set them.

QubesOS/qubes-issues#2161
Marek Marczykowski-Górecki преди 7 години
родител
8e505c5b0e
ревизия
34fa6e7ced
променени са 3 файла, в които са добавени 5 реда и са изтрити 24 реда
Разделен изглед Покажи статистика за разликите
  1. 2 5
      Makefile
  2. 1 0
      debian/qubes-core-agent.install
  3. 2 19
      vm-systemd/haveged.service

+ 2 - 5
Makefile
Целия файл 

@@ -287,11 +287,6 @@ else
 
 	install -m 0644 misc/py2/qubesxdg.py* $(DESTDIR)/$(PYTHON2_SITELIB)/
 
 endif
 
 
-ifneq (,$(filter xenial stretch, $(shell lsb_release -cs)))
 
-	mkdir -p $(DESTDIR)/etc/systemd/system/
 
-	install -m 0644 vm-systemd/haveged.service  $(DESTDIR)/etc/systemd/system/
 
-endif
 
-
 
 	install -d $(DESTDIR)/mnt/removable
 
 
 	install -D -m 0644 misc/xorg-preload-apps.conf $(DESTDIR)/etc/X11/xorg-preload-apps.conf
 
@@ -318,5 +313,7 @@ install-deb: install-common install-systemd install-systemd-dropins
 
 	install -d $(DESTDIR)/etc/needrestart/conf.d
 
 	install -D -m 0644 misc/50_qubes.conf $(DESTDIR)/etc/needrestart/conf.d/50_qubes.conf
 
 
+	mkdir -p $(DESTDIR)/etc/systemd/system/
 
+	install -m 0644 vm-systemd/haveged.service  $(DESTDIR)/etc/systemd/system/
 
 
 install-vm: install-rh install-common

+ 1 - 0
debian/qubes-core-agent.install
Целия файл 

@@ -43,6 +43,7 @@ etc/sudoers.d/qubes
 
 etc/sudoers.d/umask
 
 etc/sysctl.d/20_tcp_timestamps.conf
 
 etc/sysctl.d/80-qubes.conf
 
+etc/systemd/system/haveged.service
 
 etc/tinyproxy/tinyproxy-updates.conf
 
 etc/tinyproxy/updates-blacklist
 
 etc/udev/rules.d/50-qubes-misc.rules

+ 2 - 19
vm-systemd/haveged.service
Целия файл 

@@ -1,22 +1,5 @@
 
-[Unit]
 
-Description=Entropy daemon using the HAVEGE algorithm
 
-Documentation=man:haveged(8) http://www.issihosts.com/haveged/
 
-DefaultDependencies=no
 
-ConditionVirtualization=!container
 
-After=apparmor.service systemd-random-seed.service systemd-tmpfiles-setup.service
 
-
 
-[Service]
 
-EnvironmentFile=/etc/default/haveged
 
-ExecStart=/usr/sbin/haveged --Foreground --verbose=1 $DAEMON_ARGS
 
-SuccessExitStatus=143
 
-SecureBits=noroot-locked
 
-NoNewPrivileges=yes
 
-CapabilityBoundingSet=CAP_SYS_ADMIN
 
-PrivateTmp=yes
 
-PrivateDevices=yes
 
-PrivateNetwork=yes
 
-ProtectSystem=full
 
-ProtectHome=yes
 
+.include /lib/systemd/system/haveged.service
 
 
 [Install]
 
+WantedBy=
 
 WantedBy=multi-user.target