2021-01-03 16:05:06 +01:00
# SPDX-License-Identifier: LGPL-2.1-or-later
2023-11-28 18:38:22 +01:00
[Config]
2024-09-20 16:14:08 +02:00
MinimumVersion=25~devel
2024-07-12 15:33:49 +02:00
Dependencies=
exitrd
2024-07-16 12:07:38 +02:00
initrd
2024-07-12 15:33:49 +02:00
minimal-base
minimal-0
minimal-1
PassEnvironment=
NO_BUILD
NO_SYNC
WIPE
SANITIZERS
CFLAGS
LDFLAGS
LLVM
MESON_VERBOSE
MESON_OPTIONS
SYSEXT
WITH_DEBUG
2024-10-02 11:27:09 +02:00
ASAN_OPTIONS
2024-06-04 10:54:22 +02:00
COVERAGE
2023-09-09 10:20:01 +02:00
2021-01-03 16:05:06 +01:00
[Output]
2024-07-08 12:59:52 +02:00
RepartDirectories=mkosi.repart
OutputDirectory=build/mkosi.output
2024-10-04 14:22:35 +02:00
[Build]
2024-07-08 12:59:52 +02:00
BuildDirectory=build/mkosi.builddir
CacheDirectory=build/mkosi.cache
2024-10-04 14:22:35 +02:00
BuildSourcesEphemeral=yes
Incremental=yes
2023-07-14 14:52:58 +02:00
2024-10-04 14:22:27 +02:00
[Validation]
2024-10-04 16:46:16 +02:00
SignExpectedPcr=yes
2024-10-04 14:22:27 +02:00
2023-07-14 14:52:58 +02:00
[Content]
2024-07-08 12:59:52 +02:00
ExtraTrees=
2024-11-24 19:19:52 +01:00
mkosi.extra.common
2024-07-08 12:59:52 +02:00
mkosi.crt:/usr/lib/verity.d/mkosi.crt # sysext verification key
2024-07-12 15:33:49 +02:00
%O/minimal-0.root-%a.raw:/usr/share/minimal_0.raw
%O/minimal-0.root-%a-verity.raw:/usr/share/minimal_0.verity
%O/minimal-0.root-%a-verity-sig.raw:/usr/share/minimal_0.verity.sig
%O/minimal-1.root-%a.raw:/usr/share/minimal_1.raw
%O/minimal-1.root-%a-verity.raw:/usr/share/minimal_1.verity
%O/minimal-1.root-%a-verity-sig.raw:/usr/share/minimal_1.verity.sig
%O/minimal-base:/usr/share/TEST-13-NSPAWN-container-template
%O/exitrd:/exitrd
2024-07-08 12:59:52 +02:00
2024-07-16 12:07:38 +02:00
Initrds=%O/initrd
2024-07-09 12:26:11 +02:00
# Disable relabeling by default as it only matters for TEST-06-SELINUX, takes a non-trivial amount of time
# and results in lots of errors when building images as a regular user.
SELinuxRelabel=no
2024-05-31 17:26:01 +02:00
# Adding more kernel command line arguments is likely to hit the kernel command line limit (512 bytes) in
# various scenarios. Consider adding support for a credential instead if possible and using that.
2024-07-18 12:47:51 +02:00
KernelCommandLine=
systemd.crash_shell
systemd.log_level=debug,console:info
systemd.log_ratelimit_kmsg=0
# Disable the kernel's ratelimiting on userspace logging to kmsg.
printk.devkmsg=on
# Make sure /sysroot is mounted rw in the initrd.
rw
# Make sure no LSMs are enabled by default.
selinux=0
systemd.early_core_pattern=/core
systemd.firstboot=no
raid=noautodetect
oops=panic
panic=-1
softlockup_panic=1
2024-12-16 17:13:08 +00:00
# Disabled due to BTRFS issue, waiting for the fix to become available
panic_on_warn=0
2024-07-18 12:47:51 +02:00
psi=1
2024-04-19 13:25:31 +02:00
2024-06-05 18:22:22 +02:00
KernelModulesInitrdExclude=.*
KernelModulesInitrdInclude=default
2024-07-08 12:59:52 +02:00
Packages=
acl
attr
bash-completion
2024-07-14 22:56:43 +02:00
binutils
2024-07-08 12:59:52 +02:00
coreutils
curl
diffutils
dnsmasq
dosfstools
e2fsprogs
findutils
gdb
grep
gzip
jq
kbd
kexec-tools
kmod
less
2024-08-08 21:48:34 +02:00
llvm
2024-07-08 12:59:52 +02:00
lvm2
man
mdadm
mtools
nano
nftables
nvme-cli
opensc
openssl
p11-kit
pciutils
python3
radvd
rsync
sed
socat
strace
tar
tmux
tree
util-linux
valgrind
which
wireguard-tools
xfsprogs
zsh
zstd
2024-12-19 19:51:42 +01:00
[Runtime]
2024-07-31 17:38:12 +02:00
Credentials=
journal.storage=persistent
tty.serial.hvc0.agetty.autologin=root
tty.serial.hvc0.login.noauth=yes
tty.console.agetty.autologin=root
tty.console.login.noauth=yes
2024-07-08 12:59:52 +02:00
RuntimeBuildSources=yes
RuntimeScratch=no
QemuSmp=2
QemuSwtpm=yes
QemuVsock=yes
QemuKvm=yes
2024-11-27 20:20:51 +01:00
[Include]
Include=%D/mkosi.sanitizers
2024-06-04 10:54:22 +02:00
%D/mkosi.coverage