2019-01-03 01:16:34 +03:00
---
title: Hacking on systemd
2019-12-11 12:49:28 +03:00
category: Contributing
2019-12-11 19:01:46 +03:00
layout: default
2021-09-14 17:05:21 +03:00
SPDX-License-Identifier: LGPL-2.1-or-later
2019-01-03 01:16:34 +03:00
---
2018-10-30 13:28:58 +03:00
# Hacking on systemd
We welcome all contributions to systemd. If you notice a bug or a missing
2021-10-27 12:50:19 +03:00
feature, please feel invited to fix it, and submit your work as a
[GitHub Pull Request (PR) ](https://github.com/systemd/systemd/pull/new ).
2018-10-30 13:28:58 +03:00
2021-05-10 09:35:21 +03:00
Please make sure to follow our [Coding Style ](CODING_STYLE.md ) when submitting
patches. Also have a look at our [Contribution Guidelines ](CONTRIBUTING.md ).
2018-10-30 13:28:58 +03:00
When adding new functionality, tests should be added. For shared functionality
(in `src/basic/` and `src/shared/` ) unit tests should be sufficient. The general
policy is to keep tests in matching files underneath `src/test/` ,
e.g. `src/test/test-path-util.c` contains tests for any functions in
`src/basic/path-util.c` . If adding a new source file, consider adding a matching
test executable. For features at a higher level, tests in `src/test/` are very
2018-11-23 21:01:50 +03:00
strongly recommended. If that is not possible, integration tests in `test/` are
2018-10-30 13:28:58 +03:00
encouraged.
2021-05-10 09:35:21 +03:00
Please also have a look at our list of [code quality tools ](CODE_QUALITY.md ) we
have setup for systemd, to ensure our codebase stays in good shape.
2018-10-30 13:28:58 +03:00
Please always test your work before submitting a PR. For many of the components
2022-03-15 19:04:36 +03:00
of systemd testing is straightforward as you can simply compile systemd and
2018-10-30 13:28:58 +03:00
run the relevant tool from the build directory.
2022-05-11 16:31:07 +03:00
For some components (most importantly, systemd/PID 1 itself) this is not
2018-10-30 13:28:58 +03:00
possible, however. In order to simplify testing for cases like this we provide
2021-10-27 12:50:19 +03:00
a set of `mkosi` build files directly in the source tree.
[mkosi ](https://github.com/systemd/mkosi ) is a tool for building clean OS images
from an upstream distribution in combination with a fresh build of the project
2023-01-24 14:46:41 +03:00
in the local working directory. To make use of this, please install `mkosi` from
2021-10-27 12:50:19 +03:00
the [GitHub repository ](https://github.com/systemd/mkosi ). `mkosi` will build an
2023-01-24 14:46:41 +03:00
image for the host distro by default. Currently, the latest github commit is
required. `mkosi` also requires systemd v253 (unreleased) or newer. If systemd v253
is not available, `mkosi` will automatically use executables from the systemd build
directory if it's executed from the systemd repository root directory. It is
sufficient to type `mkosi` in the systemd project directory to generate a disk image
you can boot either in `systemd-nspawn` or in a UEFI-capable VM:
2018-10-30 13:28:58 +03:00
2021-10-27 14:21:57 +03:00
```sh
2023-02-16 22:05:55 +03:00
$ sudo mkosi boot # nspawn still needs sudo for now
2018-10-30 13:28:58 +03:00
```
or:
2021-10-27 14:21:57 +03:00
```sh
$ mkosi qemu
2018-10-30 13:28:58 +03:00
```
Every time you rerun the `mkosi` command a fresh image is built, incorporating
2021-01-23 15:16:18 +03:00
all current changes you made to the project tree. To save time when rebuilding,
you can use mkosi's incremental mode (`-i`). This instructs mkosi to build a set
of cache images that make future builds a lot faster. Note that the `-i` flag
both instructs mkosi to build cached images if they don't exist yet and to use
cached images if they already exist so make sure to always specify `-i` if you
want mkosi to use the cached images.
If you want to do a local build without mkosi, most distributions also provide
very simple and convenient ways to install all development packages necessary
2021-10-27 13:30:47 +03:00
to build systemd:
2018-10-30 13:28:58 +03:00
2021-10-27 13:30:47 +03:00
```sh
# Fedora
$ sudo dnf builddep systemd
# Debian/Ubuntu
2021-10-27 18:40:35 +03:00
$ sudo apt-get build-dep systemd
2021-10-27 13:30:47 +03:00
# Arch
$ sudo pacman install asp
$ asp checkout systemd
$ cd systemd/trunk
$ makepkg -seoc
2018-10-30 13:28:58 +03:00
```
Putting this all together, here's a series of commands for preparing a patch
2021-10-27 14:08:59 +03:00
for systemd:
2018-10-30 13:28:58 +03:00
```sh
2021-10-27 13:30:47 +03:00
# Install build dependencies (see above)
2023-01-24 14:46:41 +03:00
# Install mkosi from the github repository
2018-10-30 13:28:58 +03:00
$ git clone https://github.com/systemd/systemd.git
$ cd systemd
2022-04-12 13:05:53 +03:00
$ git checkout -b < BRANCH > # where BRANCH is the name of the branch
$ vim src/core/main.c # or wherever you'd like to make your changes
2023-03-23 13:15:29 +03:00
$ meson setup build -Danalyze=true -Drepart=true -Defi=true -Dbootloader=true -Dukify=true # configure the build
2022-04-12 13:05:53 +03:00
$ ninja -C build # build it locally, see if everything compiles fine
$ meson test -C build # run some simple regression tests
2023-01-24 14:46:41 +03:00
$ cd ..
$ git clone https://github.com/systemd/mkosi.git
2023-02-16 22:05:55 +03:00
$ ln -s mkosi/bin/mkosi ~/.local/bin/mkosi # Make sure ~/.local/bin is in $PATH
2023-01-24 14:46:41 +03:00
$ cd systemd
2023-02-16 22:05:55 +03:00
$ mkosi # build the test image
$ mkosi qemu # boot up the test image in qemu
2022-04-12 13:05:53 +03:00
$ git add -p # interactively put together your patch
$ git commit # commit it
$ git push -u < REMOTE > # where REMOTE is your "fork" on GitHub
2018-10-30 13:28:58 +03:00
```
And after that, head over to your repo on GitHub and click "Compare & pull request"
Happy hacking!
2021-05-17 22:32:49 +03:00
## Templating engines in .in files
Some source files are generated during build. We use two templating engines:
* meson's `configure_file()` directive uses syntax with `@VARIABLE@` .
2021-05-19 14:53:41 +03:00
See the
[Meson docs for `configure_file()` ](https://mesonbuild.com/Reference-manual.html#configure_file )
for details.
2021-05-17 22:32:49 +03:00
2021-05-19 14:22:25 +03:00
{% raw %}
2021-05-17 22:32:49 +03:00
* most files are rendered using jinja2, with `{{VARIABLE}}` and `{% if … %}` ,
`{% elif … %}` , `{% else … %}` , `{% endif … %}` blocks. `{# … #}` is a
jinja2 comment, i.e. that block will not be visible in the rendered
2021-05-19 14:22:25 +03:00
output. `{% raw %} … ` {% endraw %}`{{ '{' }}{{ '% endraw %' }}}` creates a block
where jinja2 syntax is not interpreted.
2021-05-17 22:32:49 +03:00
2021-05-19 14:53:41 +03:00
See the
[Jinja Template Designer Documentation ](https://jinja2docs.readthedocs.io/en/stable/templates.html#synopsis )
2021-05-17 22:32:49 +03:00
for details.
Please note that files for both template engines use the `.in` extension.
2018-10-30 13:28:58 +03:00
2020-09-17 10:02:16 +03:00
## Developer and release modes
In the default meson configuration (`-Dmode=developer`), certain checks are
enabled that are suitable when hacking on systemd (such as internal
2021-05-17 22:32:49 +03:00
documentation consistency checks). Those are not useful when compiling for
distribution and can be disabled by setting `-Dmode=release` .
2020-09-17 10:02:16 +03:00
2022-07-15 03:26:52 +03:00
## Sanitizers in mkosi
See [Testing systemd using sanitizers ](TESTING_WITH_SANITIZERS.md ) for more information
on how to build with sanitizers enabled in mkosi.
2018-10-30 13:28:58 +03:00
## Fuzzers
systemd includes fuzzers in `src/fuzz/` that use libFuzzer and are automatically
2020-06-11 19:34:42 +03:00
run by [OSS-Fuzz ](https://github.com/google/oss-fuzz ) with sanitizers.
2019-06-11 09:25:45 +03:00
To add a fuzz target, create a new `src/fuzz/fuzz-foo.c` file with a `LLVMFuzzerTestOneInput`
2018-10-30 13:28:58 +03:00
function and add it to the list in `src/fuzz/meson.build` .
Whenever possible, a seed corpus and a dictionary should also be added with new
fuzz targets. The dictionary should be named `src/fuzz/fuzz-foo.dict` and the seed
corpus should be built and exported as `$OUT/fuzz-foo_seed_corpus.zip` in
`tools/oss-fuzz.sh` .
The fuzzers can be built locally if you have libFuzzer installed by running
2022-05-26 18:22:50 +03:00
`tools/oss-fuzz.sh` . You should also confirm that the fuzzers can be built and
run using
[the OSS-Fuzz toolchain ](https://google.github.io/oss-fuzz/advanced-topics/reproducing/#building-using-docker ):
2018-10-30 13:28:58 +03:00
```
2022-05-26 18:22:50 +03:00
path_to_systemd=...
git clone --depth=1 https://github.com/google/oss-fuzz
cd oss-fuzz
for sanitizer in address undefined memory; do
for engine in libfuzzer afl honggfuzz; do
./infra/helper.py build_fuzzers --sanitizer "$sanitizer" --engine "$engine" \
--clean systemd "$path_to_systemd"
./infra/helper.py check_build --sanitizer "$sanitizer" --engine "$engine" \
-e ALLOWED_BROKEN_TARGETS_PERCENTAGE=0 systemd
done
done
2022-05-29 10:36:33 +03:00
./infra/helper.py build_fuzzers --clean --architecture i386 systemd "$path_to_systemd"
./infra/helper.py check_build --architecture i386 -e ALLOWED_BROKEN_TARGETS_PERCENTAGE=0 systemd
2022-05-26 18:22:50 +03:00
./infra/helper.py build_fuzzers --clean --sanitizer coverage systemd "$path_to_systemd"
./infra/helper.py coverage --no-corpus-download systemd
2018-10-30 13:28:58 +03:00
```
If you find a bug that impacts the security of systemd, please follow the
guidance in [CONTRIBUTING.md ](CONTRIBUTING.md ) on how to report a security vulnerability.
For more details on building fuzzers and integrating with OSS-Fuzz, visit:
2020-02-18 01:23:34 +03:00
- [Setting up a new project - OSS-Fuzz ](https://google.github.io/oss-fuzz/getting-started/new-project-guide/ )
- [Tutorials - OSS-Fuzz ](https://google.github.io/oss-fuzz/reference/useful-links/#tutorials )
2021-01-23 15:17:36 +03:00
2022-08-18 15:38:19 +03:00
## Debugging binaries that need to run as root in vscode
When trying to debug binaries that need to run as root, we need to do some custom configuration in vscode to
have it try to run the applications as root and to ask the user for the root password when trying to start
the binary. To achieve this, we'll use a custom debugger path which points to a script that starts `gdb` as
root using `pkexec` . pkexec will prompt the user for their root password via a graphical interface. This
guide assumes the C/C++ extension is used for debugging.
First, create a file `sgdb` in the root of the systemd repository with the following contents and make it
executable:
```
#!/bin/sh
exec pkexec gdb "$@"
```
Then, open launch.json in vscode, and set `miDebuggerPath` to `${workspaceFolder}/sgdb` for the corresponding
debug configuration. Now, whenever you try to debug the application, vscode will try to start gdb as root via
pkexec which will prompt you for your password via a graphical interface. After entering your password,
vscode should be able to start debugging the application.
For more information on how to set up a debug configuration for C binaries, please refer to the official
vscode documentation [here ](https://code.visualstudio.com/docs/cpp/launch-json-reference )
2021-08-20 21:09:37 +03:00
## Debugging systemd with mkosi + vscode
To simplify debugging systemd when testing changes using mkosi, we're going to show how to attach
2023-03-21 18:06:15 +03:00
[VSCode ](https://code.visualstudio.com/ )'s debugger to an instance of systemd running in a mkosi image using
QEMU.
2021-08-20 21:09:37 +03:00
To allow VSCode's debugger to attach to systemd running in a mkosi image, we have to make sure it can access
2023-03-21 18:06:15 +03:00
the virtual machine spawned by mkosi where systemd is running. mkosi makes this possible via a handy SSH
option that makes the generated image accessible via SSH when booted. Thus you must build the image with
`mkosi --ssh` . The easiest way to set the option is to create a file 20-local.conf in mkosi.conf.d/ (in the
directory you ran mkosi in) and add the following contents:
2021-08-20 21:09:37 +03:00
```
[Host]
Ssh=yes
```
2023-03-21 18:06:15 +03:00
Also make sure that the SSH agent is running on your system and that you've added your SSH key to it with
`ssh-add` .
After rebuilding the image and booting it with `mkosi qemu` , you should now be able to connect to it by
running `mkosi ssh` from the same directory in another terminal window.
2021-08-20 21:09:37 +03:00
Now we need to configure VSCode. First, make sure the C/C++ extension is installed. If you're already using
a different extension for code completion and other IDE features for C in VSCode, make sure to disable the
corresponding parts of the C/C++ extension in your VSCode user settings by adding the following entries:
```json
"C_Cpp.formatting": "Disabled",
"C_Cpp.intelliSenseEngine": "Disabled",
"C_Cpp.enhancedColorization": "Disabled",
"C_Cpp.suggestSnippets": false,
```
With the extension set up, we can create the launch.json file in the .vscode/ directory to tell the VSCode
2022-10-25 17:09:29 +03:00
debugger how to attach to the systemd instance running in our mkosi container/VM. Create the file, and possibly
the directory, and add the following contents:
2021-08-20 21:09:37 +03:00
```json
{
"version": "0.2.0",
"configurations": [
{
"type": "cppdbg",
"program": "/usr/lib/systemd/systemd",
2021-10-18 15:29:15 +03:00
"processId": "${command:pickRemoteProcess}",
2021-08-20 21:09:37 +03:00
"request": "attach",
"name": "systemd",
"pipeTransport": {
"pipeProgram": "mkosi",
"pipeArgs": [
"-C",
"/path/to/systemd/repo/directory/on/host/system/",
"ssh"
],
"debuggerPath": "/usr/bin/gdb"
},
"MIMode": "gdb",
"sourceFileMap": {
2023-03-21 18:06:15 +03:00
"/work/build/../src": {
2021-08-20 21:09:37 +03:00
"editorPath": "${workspaceFolder}",
"useForBreakpoints": false
},
2023-03-21 18:06:15 +03:00
"/work/build/*": {
2021-08-20 21:09:37 +03:00
"editorPath": "${workspaceFolder}/mkosi.builddir",
"useForBreakpoints": false
}
}
}
]
}
```
Now that the debugger knows how to connect to our process in the container/VM and we've set up the necessary
source mappings, go to the "Run and Debug" window and run the "systemd" debug configuration. If everything
goes well, the debugger should now be attached to the systemd instance running in the container/VM. You can
attach breakpoints from the editor and enjoy all the other features of VSCode's debugger.
To debug systemd components other than PID 1, set "program" to the full path of the component you want to
debug and set "processId" to "${command:pickProcess}". Now, when starting the debugger, VSCode will ask you
the PID of the process you want to debug. Run `systemctl show --property MainPID --value <component>` in the
container to figure out the PID and enter it when asked and VSCode will attach to that process instead.
2021-12-19 20:05:44 +03:00
2022-05-17 16:54:46 +03:00
## Debugging systemd-boot
2021-12-19 20:05:44 +03:00
During boot, systemd-boot and the stub loader will output a message like `systemd-boot@0x0A,0x0B` ,
providing the location of the text and data sections. These location can then be used to attach
to a QEMU session (provided it was run with `-s` ) with these gdb commands:
```
(gdb) file build/src/boot/efi/systemd-bootx64.efi
(gdb) add-symbol-file build/src/boot/efi/systemd_boot.so 0x0A -s .data 0x0B
(gdb) set architecture i386:x86-64
(gdb) target remote :1234
```
This process can be automated by using the `debug-sd-boot.sh` script in the tools folder. If run
without arguments it will provide usage information.
If the debugger is too slow to attach to examine an early boot code passage, we can uncomment the
call to `debug_break()` inside of `efi_main()` . As soon as the debugger has control we can then run
`set variable wait = 0` or `return` to continue. Once the debugger has attached, setting breakpoints
will work like usual.
To debug systemd-boot in an IDE such as VSCode we can use a launch configuration like this:
```json
{
"name": "systemd-boot",
"type": "cppdbg",
"request": "launch",
"program": "${workspaceFolder}/build/src/boot/efi/systemd-bootx64.efi",
"cwd": "${workspaceFolder}",
"MIMode": "gdb",
"miDebuggerServerAddress": ":1234",
"setupCommands": [
{ "text": "shell mkfifo /tmp/sdboot.{in,out}" },
{ "text": "shell qemu-system-x86_64 [...] -s -serial pipe:/tmp/sdboot" },
{ "text": "shell ${workspaceFolder}/tools/debug-sd-boot.sh ${workspaceFolder}/build/src/boot/efi/systemd-bootx64.efi /tmp/sdboot.out systemd-boot.gdb" },
{ "text": "source /tmp/systemd-boot.gdb" },
]
}
```
2022-09-09 09:53:37 +03:00
## Hacking on the kernel + systemd
If you're hacking on the kernel in tandem with systemd, you can clone a kernel repository in mkosi.kernel/ in
the systemd repository, and mkosi will automatically build that kernel and install it into the final image.
To prevent the distribution's kernel from being installed (which isn't necessary since we're building our
own kernel), you can add the following snippets to mkosi.default.d/20-local.conf:
(This snippet is for Fedora, the list of packages will need to be changed for other distributions)
```
[Distribution]
CacheInitrd=no
[Content]
BasePackages=conditional
Packages=systemd
util-linux
dracut
```