mirror of
https://github.com/systemd/systemd.git
synced 2025-01-05 13:18:06 +03:00
8919f86f57
- Let's set the environment on the kernel command line so it applies to initrd and main system. - Let's add the necessary wrappers that are also added in test-functions. Unlike test-functions we don't use gcc/clang to get the library path as that requires installing gcc/clang in the initrd. - Let's drop the hack to get journald writing to the console and have it write to kmsg instead. We'll get the output either way. - Stop removing libstdc++ and sanitizer libraries from Arch Linux initrds and other images as it's required by the sanitizer libraries. - Add a workaround for specifying extra meson options for opensuse - Add a leak sanitizer suppression file as a workaround for a false positive leak in verify_selinuxmnt() in libselinux. We do a soname match because the stacktrace can't be properly symbolized on Debian.
55 lines
2.0 KiB
Plaintext
55 lines
2.0 KiB
Plaintext
# SPDX-License-Identifier: LGPL-2.1-or-later
|
|
|
|
[Config]
|
|
@Images=system
|
|
MinimumVersion=23~devel
|
|
|
|
[Output]
|
|
@OutputDirectory=build/mkosi.output
|
|
@BuildDirectory=build/mkosi.builddir
|
|
@CacheDirectory=build/mkosi.cache
|
|
|
|
[Content]
|
|
# The kernel versions in CentOS Stream 9 and Ubuntu 22.04 don't support orphan_file, but later
|
|
# versions of mkfs.ext4 enabled it by default, so we disable it explicitly.
|
|
Environment=SYSTEMD_REPART_MKFS_OPTIONS_EXT4="-O ^orphan_file"
|
|
@SELinuxRelabel=no
|
|
BuildSourcesEphemeral=yes
|
|
|
|
# Adding more kernel command line arguments is likely to hit the kernel command line limit (512 bytes) in
|
|
# various scenarios. Consider adding support for a credential instead if possible and using that.
|
|
KernelCommandLine=systemd.crash_shell
|
|
systemd.log_level=debug,console:info
|
|
systemd.log_ratelimit_kmsg=0
|
|
# Disable the kernel's ratelimiting on userspace logging to kmsg.
|
|
printk.devkmsg=on
|
|
# Make sure /sysroot is mounted rw in the initrd.
|
|
rw
|
|
# Lower the default device timeout so we get a shell earlier if the root device does
|
|
# not appear for some reason.
|
|
systemd.default_device_timeout_sec=30
|
|
# Make sure no LSMs are enabled by default.
|
|
apparmor=0
|
|
selinux=0
|
|
enforcing=0
|
|
systemd.early_core_pattern=/core
|
|
systemd.firstboot=no
|
|
raid=noautodetect
|
|
oops=panic
|
|
panic=-1
|
|
softlockup_panic=1
|
|
panic_on_warn=1
|
|
# These don't ship proper units with [Install] directives so we have to mask them instead.
|
|
systemd.mask=isc-dhcp-server.service
|
|
systemd.mask=mdmonitor.service
|
|
|
|
[Host]
|
|
Credentials=journal.storage=persistent
|
|
@Incremental=yes
|
|
@RuntimeBuildSources=yes
|
|
@QemuSmp=2
|
|
@QemuSwtpm=yes
|
|
@QemuVsock=yes
|
|
@QemuKvm=yes
|
|
ToolsTreePackages=virtiofsd
|