From b2094f0319f83b7e4b82213d291b9f6bcaf97ed6 Mon Sep 17 00:00:00 2001 From: Michael Hudson-Doyle Date: Tue, 1 Feb 2022 16:11:35 +1300 Subject: [PATCH] Disable compression and "hash table hardening" for journald in the live installer environment as these features make the journal unreadable using the systemd libraries from 20.04 that are included in the subiquity snap. --- debian/changelog | 9 +++++++++ .../etc/systemd/journald.conf.d/no-zstd.conf | 4 ++++ .../system/systemd-journald.service.d/no-hardening.conf | 4 ++++ 3 files changed, 17 insertions(+) create mode 100644 live-build/ubuntu-server/includes.chroot.ubuntu-server-minimal.ubuntu-server.installer/etc/systemd/journald.conf.d/no-zstd.conf create mode 100644 live-build/ubuntu-server/includes.chroot.ubuntu-server-minimal.ubuntu-server.installer/etc/systemd/system/systemd-journald.service.d/no-hardening.conf diff --git a/debian/changelog b/debian/changelog index 921e5df5..a808c78e 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +livecd-rootfs (2.753) UNRELEASED; urgency=medium + + * Disable compression and "hash table hardening" for journald in the + live installer environment as these features make the journal unreadable + using the systemd libraries from 20.04 that are included in the subiquity + snap. (LP: #1953744) + + -- Michael Hudson-Doyle Tue, 01 Feb 2022 16:10:28 +1300 + livecd-rootfs (2.752) jammy; urgency=medium * Remove references to archive.canonical.com, which is no longer used and diff --git a/live-build/ubuntu-server/includes.chroot.ubuntu-server-minimal.ubuntu-server.installer/etc/systemd/journald.conf.d/no-zstd.conf b/live-build/ubuntu-server/includes.chroot.ubuntu-server-minimal.ubuntu-server.installer/etc/systemd/journald.conf.d/no-zstd.conf new file mode 100644 index 00000000..060bf85b --- /dev/null +++ b/live-build/ubuntu-server/includes.chroot.ubuntu-server-minimal.ubuntu-server.installer/etc/systemd/journald.conf.d/no-zstd.conf @@ -0,0 +1,4 @@ +# systemd in 22.04+ uses zstd compression by default, which is not understood +# by the systemd libraries from focal used in the subiquity snap. +[Journal] +Compress=false diff --git a/live-build/ubuntu-server/includes.chroot.ubuntu-server-minimal.ubuntu-server.installer/etc/systemd/system/systemd-journald.service.d/no-hardening.conf b/live-build/ubuntu-server/includes.chroot.ubuntu-server-minimal.ubuntu-server.installer/etc/systemd/system/systemd-journald.service.d/no-hardening.conf new file mode 100644 index 00000000..c4262d26 --- /dev/null +++ b/live-build/ubuntu-server/includes.chroot.ubuntu-server-minimal.ubuntu-server.installer/etc/systemd/system/systemd-journald.service.d/no-hardening.conf @@ -0,0 +1,4 @@ +# systemd in 22.04+ uses "hash table hardening" by default which is not +# understood by the systemd libraries from focal used in the subiquity snap. +[Service] +Environment="SYSTEMD_JOURNAL_KEYED_HASH=0"