* [PATCH v2 0/7] systemd cleanups & trimming
@ 2016-02-10 12:32 Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 1/7] systemd: move bash completion into separate package Maciej Borzecki
` (6 more replies)
0 siblings, 7 replies; 9+ messages in thread
From: Maciej Borzecki @ 2016-02-10 12:32 UTC (permalink / raw)
To: openembedded-core, Enrico Jorns, Roy Li, Khem Raj,
Christopher Larson, Ross Burton, Andreas Müller,
Randy MacLeod, Tanu Kaskinen
Cc: Maciek Borzecki
This is a second iteration of patches aiming at providing more knobs for
configuration of systemd. The default configuration of systemd produces
a package of significant size. By carefully setting the knobs it is
possible to enable/disable functionality that is required for particular
use cases.
The patches attempt to preserve the functionality of currently built
packages. Parties interested in trimming systemd by a couple of MBs need
to override PACKAGECONFIG manually.
By disabling most of flags and skipping systemd-extra-utils package,
depending on the architecture, systemd package should be roughly ~4MB
in size.
The first patch uses bash-completion class for wrapping up bash files.
The second patch is just a small cosmetic change that allows for cleaner
diffs when adding/removing packages.
The third patch is required for the fourth one. The patch provides
handling of a situation when USERADD/GROUPADD/GROUPMEMS are made up of
spaces only. This may happen in a scenarion when the variables are
appended/prepended with spaces, but the content of the append is
conditional. In this case, in the fourth patch, certain users are only
added if specific PACKAGECONFIG flag was set.
The fourth patch adds a number of PACKAGECONFIG flags to systemd.
Patch 5 splits all/most of nonessential binaries into a separate
systemd-extra-utils package. The package is listed in RRECOMMENDS so
that it gets included by default in images. Binaries that get created as
a result of PACKAGECONFIG flags will be included in the main 'systemd'
package to avoid the effect when use has set a flag but the desired
binary is not in the target system.
Patch 6 tightens the user accounts for systemd services: timesyncd and
journal-gateway. The users will be created without separate /home
directory, home set to / and shell set to /bin/nologin.
The last patch renames zsh completion package systemd-zsh to
systemd-zsh-completion to preserve consistency with its bash
counterpart.
If someone wishes to trim down systemd even further, I'd suggest looking
first at generators (~350kB) as these are not essential if one provides
proper unit files in advance. Another potential candidate is
systemd-fsck (~300kB), as it should be possible to skip it completely.
Also systemd-shutdown is large (~150kB), for reasons unclear to me at
the moment. After going through system source code there is a room for
further improvement by splitting the internal static libraries
(libshared, libbase, libsystemd-internal) into shared ones, but I'm
guessing this should be done in agreement with upstream.
Maciej Borzecki (7):
systemd: move bash completion into separate package
systemd: realign packages list
classes/useradd: handle whitespace only USERADD/GROUPADD/GROUPMEMS
systemd: extend PACKAGECONFIG flags
systemd: move some tools into systemd-extra-utils package
systemd: tighten timesyncd and journal-gateway user accounts
systemd: rename systemd-zsh to systemd-zsh-completion
meta/classes/useradd.bbclass | 6 +-
meta/recipes-core/systemd/systemd_228.bb | 131 ++++++++++++++++++++++++++++---
2 files changed, 121 insertions(+), 16 deletions(-)
--
2.5.0
^ permalink raw reply [flat|nested] 9+ messages in thread
* [PATCH v2 1/7] systemd: move bash completion into separate package
2016-02-10 12:32 [PATCH v2 0/7] systemd cleanups & trimming Maciej Borzecki
@ 2016-02-10 12:32 ` Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 2/7] systemd: realign packages list Maciej Borzecki
` (5 subsequent siblings)
6 siblings, 0 replies; 9+ messages in thread
From: Maciej Borzecki @ 2016-02-10 12:32 UTC (permalink / raw)
To: openembedded-core, Enrico Jorns, Roy Li, Khem Raj,
Christopher Larson, Ross Burton, Andreas Müller,
Randy MacLeod, Tanu Kaskinen
Cc: Maciek Borzecki
Inherit bash-completion for automatic systemd-bash-completion package.
Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
---
meta/recipes-core/systemd/systemd_228.bb | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --git a/meta/recipes-core/systemd/systemd_228.bb b/meta/recipes-core/systemd/systemd_228.bb
index a110f0cdeaac7e46b5691a89aea237974e4114b3..cd793d7cba802dbba60a77df49e9d9695c8cf7b7 100644
--- a/meta/recipes-core/systemd/systemd_228.bb
+++ b/meta/recipes-core/systemd/systemd_228.bb
@@ -22,7 +22,7 @@ DEPENDS = "kmod docbook-sgml-dtd-4.1-native intltool-native gperf-native acl rea
SECTION = "base/shell"
-inherit useradd pkgconfig autotools perlnative update-rc.d update-alternatives qemu systemd ptest gettext
+inherit useradd pkgconfig autotools perlnative update-rc.d update-alternatives qemu systemd ptest gettext bash-completion
SRCREV = "dd050decb6ad131ebdeabb71c4f9ecb4733269c0"
@@ -290,13 +290,11 @@ CONFFILES_${PN} = "${sysconfdir}/machine-id \
${sysconfdir}/systemd/user.conf"
FILES_${PN} = " ${base_bindir}/* \
- ${datadir}/bash-completion \
${datadir}/dbus-1/services \
${datadir}/dbus-1/system-services \
${datadir}/polkit-1 \
${datadir}/${BPN} \
${datadir}/factory \
- ${sysconfdir}/bash_completion.d/ \
${sysconfdir}/dbus-1/ \
${sysconfdir}/machine-id \
${sysconfdir}/modules-load.d/ \
--
2.5.0
^ permalink raw reply related [flat|nested] 9+ messages in thread
* [PATCH v2 2/7] systemd: realign packages list
2016-02-10 12:32 [PATCH v2 0/7] systemd cleanups & trimming Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 1/7] systemd: move bash completion into separate package Maciej Borzecki
@ 2016-02-10 12:32 ` Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 3/7] classes/useradd: handle whitespace only USERADD/GROUPADD/GROUPMEMS Maciej Borzecki
` (4 subsequent siblings)
6 siblings, 0 replies; 9+ messages in thread
From: Maciej Borzecki @ 2016-02-10 12:32 UTC (permalink / raw)
To: openembedded-core, Enrico Jorns, Roy Li, Khem Raj,
Christopher Larson, Ross Burton, Andreas Müller,
Randy MacLeod, Tanu Kaskinen
Cc: Maciek Borzecki
Reformat list of built packages to a package per line format. Makes
easier to cope with subsequent changes.
Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
---
meta/recipes-core/systemd/systemd_228.bb | 14 ++++++++++++--
1 file changed, 12 insertions(+), 2 deletions(-)
diff --git a/meta/recipes-core/systemd/systemd_228.bb b/meta/recipes-core/systemd/systemd_228.bb
index cd793d7cba802dbba60a77df49e9d9695c8cf7b7..9d7851e0f285f6c24458e16e0c493c8481236bf6 100644
--- a/meta/recipes-core/systemd/systemd_228.bb
+++ b/meta/recipes-core/systemd/systemd_228.bb
@@ -237,8 +237,18 @@ python populate_packages_prepend (){
}
PACKAGES_DYNAMIC += "^lib(udev|systemd).*"
-PACKAGES =+ "${PN}-gui ${PN}-vconsole-setup ${PN}-initramfs ${PN}-analyze ${PN}-kernel-install \
- ${PN}-rpm-macros ${PN}-binfmt ${PN}-pam ${PN}-zsh ${PN}-xorg-xinitrc"
+PACKAGES =+ "\
+ ${PN}-gui \
+ ${PN}-vconsole-setup \
+ ${PN}-initramfs \
+ ${PN}-analyze \
+ ${PN}-kernel-install \
+ ${PN}-rpm-macros \
+ ${PN}-binfmt \
+ ${PN}-pam \
+ ${PN}-zsh \
+ ${PN}-xorg-xinitrc \
+"
SYSTEMD_PACKAGES = "${PN}-binfmt"
SYSTEMD_SERVICE_${PN}-binfmt = "systemd-binfmt.service"
--
2.5.0
^ permalink raw reply related [flat|nested] 9+ messages in thread
* [PATCH v2 3/7] classes/useradd: handle whitespace only USERADD/GROUPADD/GROUPMEMS
2016-02-10 12:32 [PATCH v2 0/7] systemd cleanups & trimming Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 1/7] systemd: move bash completion into separate package Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 2/7] systemd: realign packages list Maciej Borzecki
@ 2016-02-10 12:32 ` Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 4/7] systemd: extend PACKAGECONFIG flags Maciej Borzecki
` (3 subsequent siblings)
6 siblings, 0 replies; 9+ messages in thread
From: Maciej Borzecki @ 2016-02-10 12:32 UTC (permalink / raw)
To: openembedded-core, Enrico Jorns, Roy Li, Khem Raj,
Christopher Larson, Ross Burton, Andreas Müller,
Randy MacLeod, Tanu Kaskinen
Cc: Maciek Borzecki
Useradd attempts to add users/groups even when
{USERADD,GROUPADD,GROUPMEMS}_PARAM is whitespace only. This scenario is
possible when variables and modified using one of +=, =+ operator, yet
the content being added is conditional (i.e. may depend on PACKAGECONFIG
flags).
Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
---
meta/classes/useradd.bbclass | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/meta/classes/useradd.bbclass b/meta/classes/useradd.bbclass
index 4577e56f5a17940929c555b3f5d18d75e92f1476..c960656f02b3d11e5bb08dca259df3946f96aeaf 100644
--- a/meta/classes/useradd.bbclass
+++ b/meta/classes/useradd.bbclass
@@ -50,7 +50,7 @@ fi
# Perform group additions first, since user additions may depend
# on these groups existing
-if test "x$GROUPADD_PARAM" != "x"; then
+if test "x`echo $GROUPADD_PARAM | tr -d '[:space:]'`" != "x"; then
echo "Running groupadd commands..."
# Invoke multiple instances of groupadd for parameter lists
# separated by ';'
@@ -66,7 +66,7 @@ if test "x$GROUPADD_PARAM" != "x"; then
done
fi
-if test "x$USERADD_PARAM" != "x"; then
+if test "x`echo $USERADD_PARAM | tr -d '[:space:]'`" != "x"; then
echo "Running useradd commands..."
# Invoke multiple instances of useradd for parameter lists
# separated by ';'
@@ -82,7 +82,7 @@ if test "x$USERADD_PARAM" != "x"; then
done
fi
-if test "x$GROUPMEMS_PARAM" != "x"; then
+if test "x`echo $GROUPMEMS_PARAM | tr -d '[:space:]'`" != "x"; then
echo "Running groupmems commands..."
# Invoke multiple instances of groupmems for parameter lists
# separated by ';'
--
2.5.0
^ permalink raw reply related [flat|nested] 9+ messages in thread
* [PATCH v2 4/7] systemd: extend PACKAGECONFIG flags
2016-02-10 12:32 [PATCH v2 0/7] systemd cleanups & trimming Maciej Borzecki
` (2 preceding siblings ...)
2016-02-10 12:32 ` [PATCH v2 3/7] classes/useradd: handle whitespace only USERADD/GROUPADD/GROUPMEMS Maciej Borzecki
@ 2016-02-10 12:32 ` Maciej Borzecki
2016-02-10 17:01 ` Andreas Müller
2016-02-10 12:32 ` [PATCH v2 5/7] systemd: move some tools into systemd-extra-utils package Maciej Borzecki
` (2 subsequent siblings)
6 siblings, 1 reply; 9+ messages in thread
From: Maciej Borzecki @ 2016-02-10 12:32 UTC (permalink / raw)
To: openembedded-core, Enrico Jorns, Roy Li, Khem Raj,
Christopher Larson, Ross Burton, Andreas Müller,
Randy MacLeod, Tanu Kaskinen
Cc: Maciek Borzecki
We currently ship a rather full-blown setup of system. Very few
configuration knobs are actually exposed through PACKAGECONFIG
flags. This patch adds new PACKAGECONFIG flags for some finer tuning of
systemd's functionality. The default setting attempts to preserve all of
the features that were previously auto-enabled.
Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
---
meta/recipes-core/systemd/systemd_228.bb | 64 ++++++++++++++++++++++++++++----
1 file changed, 57 insertions(+), 7 deletions(-)
diff --git a/meta/recipes-core/systemd/systemd_228.bb b/meta/recipes-core/systemd/systemd_228.bb
index 9d7851e0f285f6c24458e16e0c493c8481236bf6..97fc9f4c1333e246f79bc53f61439f5e4cf78352 100644
--- a/meta/recipes-core/systemd/systemd_228.bb
+++ b/meta/recipes-core/systemd/systemd_228.bb
@@ -64,6 +64,28 @@ PACKAGECONFIG ??= "compat xz ldconfig \
${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'pam', '', d)} \
${@bb.utils.contains('DISTRO_FEATURES', 'x11', 'xkbcommon', '', d)} \
${@bb.utils.contains('DISTRO_FEATURES', 'selinux', 'selinux', '', d)} \
+ ${@bb.utils.contains('DISTRO_FEATURES', 'wifi', 'rfkill', '', d)} \
+ ${@bb.utils.contains('MACHINE_FEATURES', 'efi', 'efi', '', d)} \
+ sysusers \
+ binfmt \
+ randomseed \
+ machined \
+ backlight \
+ quotacheck \
+ bootchart \
+ hostnamed \
+ myhostname \
+ hibernate \
+ timedated \
+ timesyncd \
+ localed \
+ kdbus \
+ ima \
+ smack \
+ logind \
+ firstboot \
+ utmp \
+ polkit \
"
PACKAGECONFIG[journal-upload] = "--enable-libcurl,--disable-libcurl,curl"
# Sign the journal for anti-tampering
@@ -76,6 +98,30 @@ PACKAGECONFIG[microhttpd] = "--enable-microhttpd,--disable-microhttpd,libmicroht
PACKAGECONFIG[elfutils] = "--enable-elfutils,--disable-elfutils,elfutils"
PACKAGECONFIG[resolved] = "--enable-resolved,--disable-resolved"
PACKAGECONFIG[networkd] = "--enable-networkd,--disable-networkd"
+PACKAGECONFIG[machined] = "--enable-machined,--disable-machined"
+PACKAGECONFIG[backlight] = "--enable-backlight,--disable-backlight"
+PACKAGECONFIG[quotacheck] = "--enable-quotacheck,--disable-quotacheck"
+PACKAGECONFIG[bootchart] = "--enable-bootchart,--disable-bootchart"
+PACKAGECONFIG[hostnamed] = "--enable-hostnamed,--disable-hostnamed"
+PACKAGECONFIG[myhostname] = "--enable-myhostname,--disable-myhostname"
+PACKAGECONFIG[rfkill] = "--enable-rfkill,--disable-rfkill"
+PACKAGECONFIG[hibernate] = "--enable-hibernate,--disable-hibernate"
+PACKAGECONFIG[timedated] = "--enable-timedated,--disable-timedated"
+PACKAGECONFIG[timesyncd] = "--enable-timesyncd,--disable-timesyncd"
+PACKAGECONFIG[localed] = "--enable-localed,--disable-localed"
+PACKAGECONFIG[efi] = "--enable-efi,--disable-efi"
+PACKAGECONFIG[kdbus] = "--enable-kdbus,--disable-kdbus"
+PACKAGECONFIG[ima] = "--enable-ima,--disable-ima"
+PACKAGECONFIG[smack] = "--enable-smack,--disable-smack"
+# libseccomp is found in meta-security
+PACKAGECONFIG[seccomp] = "--enable-seccomp,--disable-seccomp,libseccomp"
+PACKAGECONFIG[logind] = "--enable-logind,--disable-logind"
+PACKAGECONFIG[sysusers] = "--enable-sysusers,--disable-sysusers"
+PACKAGECONFIG[firstboot] = "--enable-firstboot,--disable-firstboot"
+PACKAGECONFIG[randomseed] = "--enable-randomseed,--disable-randomseed"
+PACKAGECONFIG[binfmt] = "--enable-binfmt,--disable-binfmt"
+PACKAGECONFIG[utmp] = "--enable-utmp,--disable-utmp"
+PACKAGECONFIG[polkit] = "--enable-polkit,--disable-polkit"
# importd requires curl/xz/zlib/bzip2/gcrypt
PACKAGECONFIG[importd] = "--enable-importd,--disable-importd"
PACKAGECONFIG[libidn] = "--enable-libidn,--disable-libidn,libidn"
@@ -186,17 +232,20 @@ do_install() {
# Delete journal README, as log can be symlinked inside volatile.
rm -f ${D}/${localstatedir}/log/README
- # Create symlinks for systemd-update-utmp-runlevel.service
install -d ${D}${systemd_unitdir}/system/graphical.target.wants
install -d ${D}${systemd_unitdir}/system/multi-user.target.wants
install -d ${D}${systemd_unitdir}/system/poweroff.target.wants
install -d ${D}${systemd_unitdir}/system/reboot.target.wants
install -d ${D}${systemd_unitdir}/system/rescue.target.wants
- ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/graphical.target.wants/systemd-update-utmp-runlevel.service
- ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/multi-user.target.wants/systemd-update-utmp-runlevel.service
- ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/poweroff.target.wants/systemd-update-utmp-runlevel.service
- ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/reboot.target.wants/systemd-update-utmp-runlevel.service
- ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/rescue.target.wants/systemd-update-utmp-runlevel.service
+
+ # Create symlinks for systemd-update-utmp-runlevel.service
+ if ${@bb.utils.contains('PACKAGECONFIG', 'utmp', 'true', 'false', d)}; then
+ ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/graphical.target.wants/systemd-update-utmp-runlevel.service
+ ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/multi-user.target.wants/systemd-update-utmp-runlevel.service
+ ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/poweroff.target.wants/systemd-update-utmp-runlevel.service
+ ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/reboot.target.wants/systemd-update-utmp-runlevel.service
+ ln -sf ../systemd-update-utmp-runlevel.service ${D}${systemd_unitdir}/system/rescue.target.wants/systemd-update-utmp-runlevel.service
+ fi
# Enable journal to forward message to syslog daemon
sed -i -e 's/.*ForwardToSyslog.*/ForwardToSyslog=yes/' ${D}${sysconfdir}/systemd/journald.conf
@@ -254,7 +303,8 @@ SYSTEMD_PACKAGES = "${PN}-binfmt"
SYSTEMD_SERVICE_${PN}-binfmt = "systemd-binfmt.service"
USERADD_PACKAGES = "${PN}"
-USERADD_PARAM_${PN} += "--system systemd-journal-gateway; --system systemd-timesync"
+USERADD_PARAM_${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'microhttpd', '--system systemd-journal-gateway;', '', d)}"
+USERADD_PARAM_${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'timesyncd', '--system systemd-timesync;', '', d)}"
GROUPADD_PARAM_${PN} = "-r lock; -r systemd-journal"
FILES_${PN}-analyze = "${bindir}/systemd-analyze"
--
2.5.0
^ permalink raw reply related [flat|nested] 9+ messages in thread
* [PATCH v2 5/7] systemd: move some tools into systemd-extra-utils package
2016-02-10 12:32 [PATCH v2 0/7] systemd cleanups & trimming Maciej Borzecki
` (3 preceding siblings ...)
2016-02-10 12:32 ` [PATCH v2 4/7] systemd: extend PACKAGECONFIG flags Maciej Borzecki
@ 2016-02-10 12:32 ` Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 6/7] systemd: tighten timesyncd and journal-gateway user accounts Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 7/7] systemd: rename systemd-zsh to systemd-zsh-completion Maciej Borzecki
6 siblings, 0 replies; 9+ messages in thread
From: Maciej Borzecki @ 2016-02-10 12:32 UTC (permalink / raw)
To: openembedded-core, Enrico Jorns, Roy Li, Khem Raj,
Christopher Larson, Ross Burton, Andreas Müller,
Randy MacLeod, Tanu Kaskinen
Cc: Maciek Borzecki
This patch attempts to split some of the extra functionality delivered
by systemd utilities from the main package into a separate package. This
allows for trimming the size of a default systemd installation down to
~7MB with all configuration features disabled. The new
systemd-extra-utils package is added to RRECOMMENDS so that by default
it will get installed into the target image.
Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
---
meta/recipes-core/systemd/systemd_228.bb | 47 ++++++++++++++++++++++++++++++++
1 file changed, 47 insertions(+)
diff --git a/meta/recipes-core/systemd/systemd_228.bb b/meta/recipes-core/systemd/systemd_228.bb
index 97fc9f4c1333e246f79bc53f61439f5e4cf78352..4788d8680329d4a43cf8c6749f89422419f20901 100644
--- a/meta/recipes-core/systemd/systemd_228.bb
+++ b/meta/recipes-core/systemd/systemd_228.bb
@@ -297,6 +297,7 @@ PACKAGES =+ "\
${PN}-pam \
${PN}-zsh \
${PN}-xorg-xinitrc \
+ ${PN}-extra-utils \
"
SYSTEMD_PACKAGES = "${PN}-binfmt"
@@ -342,6 +343,51 @@ RRECOMMENDS_${PN}-binfmt = "kernel-module-binfmt-misc"
RRECOMMENDS_${PN}-vconsole-setup = "kbd kbd-consolefonts kbd-keymaps"
+FILES_${PN}-extra-utils = "\
+ ${base_bindir}/systemd-escape \
+ ${base_bindir}/systemd-inhibit \
+ ${bindir}/systemd-detect-virt \
+ ${bindir}/systemd-path \
+ ${bindir}/systemd-run \
+ ${bindir}/systemd-cat \
+ ${bindir}/systemd-delta \
+ ${bindir}/systemd-cgls \
+ ${bindir}/systemd-cgtop \
+ ${bindir}/systemd-stdio-bridge \
+ ${base_bindir}/systemd-ask-password \
+ ${base_bindir}/systemd-tty-ask-password-agent \
+ ${systemd_unitdir}/system/systemd-ask-password-console.path \
+ ${systemd_unitdir}/system/systemd-ask-password-console.service \
+ ${systemd_unitdir}/system/systemd-ask-password-wall.path \
+ ${systemd_unitdir}/system/systemd-ask-password-wall.service \
+ ${systemd_unitdir}/system/sysinit.target.wants/systemd-ask-password-console.path \
+ ${systemd_unitdir}/system/sysinit.target.wants/systemd-ask-password-wall.path \
+ ${systemd_unitdir}/system/multi-user.target.wants/systemd-ask-password-wall.path \
+ ${rootlibexecdir}/systemd/systemd-resolve-host \
+ ${rootlibexecdir}/systemd/systemd-ac-power \
+ ${rootlibexecdir}/systemd/systemd-activate \
+ ${bindir}/systemd-nspawn \
+ ${exec_prefix}/lib/tmpfiles.d/systemd-nspawn.conf \
+ ${systemd_unitdir}/system/systemd-nspawn@.service \
+ ${rootlibexecdir}/systemd/systemd-bus-proxyd \
+ ${systemd_unitdir}/system/systemd-bus-proxyd.service \
+ ${systemd_unitdir}/system/systemd-bus-proxyd.socket \
+ ${rootlibexecdir}/systemd/systemd-socket-proxyd \
+ ${rootlibexecdir}/systemd/systemd-reply-password \
+ ${rootlibexecdir}/systemd/systemd-sleep \
+ ${rootlibexecdir}/systemd/system-sleep \
+ ${systemd_unitdir}/system/systemd-hibernate.service \
+ ${systemd_unitdir}/system/systemd-hybrid-sleep.service \
+ ${systemd_unitdir}/system/systemd-suspend.service \
+ ${systemd_unitdir}/system/sleep.target \
+ ${rootlibexecdir}/systemd/systemd-initctl \
+ ${systemd_unitdir}/system/systemd-initctl.service \
+ ${systemd_unitdir}/system/systemd-initctl.socket \
+ ${systemd_unitdir}/system/sockets.target.wants/systemd-initctl.socket \
+ ${rootlibexecdir}/systemd/system-generators/systemd-gpt-auto-generator \
+ ${rootlibexecdir}/systemd/systemd-cgroups-agent \
+"
+
CONFFILES_${PN} = "${sysconfdir}/machine-id \
${sysconfdir}/systemd/coredump.conf \
${sysconfdir}/systemd/journald.conf \
@@ -396,6 +442,7 @@ RDEPENDS_${PN} += "kmod dbus util-linux-mount udev (= ${EXTENDPKGV})"
RDEPENDS_${PN} += "volatile-binds update-rc.d"
RRECOMMENDS_${PN} += "systemd-serialgetty systemd-vconsole-setup \
+ systemd-extra-utils \
systemd-compat-units udev-hwdb \
util-linux-agetty util-linux-fsck e2fsprogs-e2fsck \
kernel-module-autofs4 kernel-module-unix kernel-module-ipv6 \
--
2.5.0
^ permalink raw reply related [flat|nested] 9+ messages in thread
* [PATCH v2 6/7] systemd: tighten timesyncd and journal-gateway user accounts
2016-02-10 12:32 [PATCH v2 0/7] systemd cleanups & trimming Maciej Borzecki
` (4 preceding siblings ...)
2016-02-10 12:32 ` [PATCH v2 5/7] systemd: move some tools into systemd-extra-utils package Maciej Borzecki
@ 2016-02-10 12:32 ` Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 7/7] systemd: rename systemd-zsh to systemd-zsh-completion Maciej Borzecki
6 siblings, 0 replies; 9+ messages in thread
From: Maciej Borzecki @ 2016-02-10 12:32 UTC (permalink / raw)
To: openembedded-core, Enrico Jorns, Roy Li, Khem Raj,
Christopher Larson, Ross Burton, Andreas Müller,
Randy MacLeod, Tanu Kaskinen
Cc: Maciek Borzecki
Make sure that systemd-timesync and systemd-journal-gateway are created
without dedicated home directories, home set to / and /bin/nologin as
shell. This makes us in sync with what systemd-sysusers sets when
adding users during startup.
Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
---
meta/recipes-core/systemd/systemd_228.bb | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/meta/recipes-core/systemd/systemd_228.bb b/meta/recipes-core/systemd/systemd_228.bb
index 4788d8680329d4a43cf8c6749f89422419f20901..72c7e0db122cf8fca370c76801a80fd6c188f613 100644
--- a/meta/recipes-core/systemd/systemd_228.bb
+++ b/meta/recipes-core/systemd/systemd_228.bb
@@ -304,8 +304,8 @@ SYSTEMD_PACKAGES = "${PN}-binfmt"
SYSTEMD_SERVICE_${PN}-binfmt = "systemd-binfmt.service"
USERADD_PACKAGES = "${PN}"
-USERADD_PARAM_${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'microhttpd', '--system systemd-journal-gateway;', '', d)}"
-USERADD_PARAM_${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'timesyncd', '--system systemd-timesync;', '', d)}"
+USERADD_PARAM_${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'microhttpd', '--system -d / -M --shell /bin/nologin systemd-journal-gateway;', '', d)}"
+USERADD_PARAM_${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'timesyncd', '--system -d / -M --shell /bin/nologin systemd-timesync;', '', d)}"
GROUPADD_PARAM_${PN} = "-r lock; -r systemd-journal"
FILES_${PN}-analyze = "${bindir}/systemd-analyze"
--
2.5.0
^ permalink raw reply related [flat|nested] 9+ messages in thread
* [PATCH v2 7/7] systemd: rename systemd-zsh to systemd-zsh-completion
2016-02-10 12:32 [PATCH v2 0/7] systemd cleanups & trimming Maciej Borzecki
` (5 preceding siblings ...)
2016-02-10 12:32 ` [PATCH v2 6/7] systemd: tighten timesyncd and journal-gateway user accounts Maciej Borzecki
@ 2016-02-10 12:32 ` Maciej Borzecki
6 siblings, 0 replies; 9+ messages in thread
From: Maciej Borzecki @ 2016-02-10 12:32 UTC (permalink / raw)
To: openembedded-core, Enrico Jorns, Roy Li, Khem Raj,
Christopher Larson, Ross Burton, Andreas Müller,
Randy MacLeod, Tanu Kaskinen
Cc: Maciek Borzecki
Try to keep consistent naming with bash-completion package.
Signed-off-by: Maciej Borzecki <maciej.borzecki@open-rnd.pl>
---
meta/recipes-core/systemd/systemd_228.bb | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/meta/recipes-core/systemd/systemd_228.bb b/meta/recipes-core/systemd/systemd_228.bb
index 72c7e0db122cf8fca370c76801a80fd6c188f613..fe2cfb529ffc6f44b7c6b13342d667df026d012f 100644
--- a/meta/recipes-core/systemd/systemd_228.bb
+++ b/meta/recipes-core/systemd/systemd_228.bb
@@ -295,7 +295,7 @@ PACKAGES =+ "\
${PN}-rpm-macros \
${PN}-binfmt \
${PN}-pam \
- ${PN}-zsh \
+ ${PN}-zsh-completion \
${PN}-xorg-xinitrc \
${PN}-extra-utils \
"
@@ -332,7 +332,7 @@ FILES_${PN}-rpm-macros = "${exec_prefix}/lib/rpm \
FILES_${PN}-xorg-xinitrc = "${sysconfdir}/X11/xinit/xinitrc.d/*"
-FILES_${PN}-zsh = "${datadir}/zsh/site-functions"
+FILES_${PN}-zsh-completion = "${datadir}/zsh/site-functions"
FILES_${PN}-binfmt = "${sysconfdir}/binfmt.d/ \
${exec_prefix}/lib/binfmt.d \
--
2.5.0
^ permalink raw reply related [flat|nested] 9+ messages in thread
* Re: [PATCH v2 4/7] systemd: extend PACKAGECONFIG flags
2016-02-10 12:32 ` [PATCH v2 4/7] systemd: extend PACKAGECONFIG flags Maciej Borzecki
@ 2016-02-10 17:01 ` Andreas Müller
0 siblings, 0 replies; 9+ messages in thread
From: Andreas Müller @ 2016-02-10 17:01 UTC (permalink / raw)
To: Maciej Borzecki
Cc: Christopher Larson,
Patches and discussions about the oe-core layer, Maciek Borzecki,
Tanu Kaskinen
On Wed, Feb 10, 2016 at 1:32 PM, Maciej Borzecki
<maciej.borzecki@open-rnd.pl> wrote:
> We currently ship a rather full-blown setup of system. Very few
> configuration knobs are actually exposed through PACKAGECONFIG
> flags. This patch adds new PACKAGECONFIG flags for some finer tuning of
> systemd's functionality. The default setting attempts to preserve all of
> the features that were previously auto-enabled.
Thanks
Andreas
^ permalink raw reply [flat|nested] 9+ messages in thread
end of thread, other threads:[~2016-02-10 17:01 UTC | newest]
Thread overview: 9+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2016-02-10 12:32 [PATCH v2 0/7] systemd cleanups & trimming Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 1/7] systemd: move bash completion into separate package Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 2/7] systemd: realign packages list Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 3/7] classes/useradd: handle whitespace only USERADD/GROUPADD/GROUPMEMS Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 4/7] systemd: extend PACKAGECONFIG flags Maciej Borzecki
2016-02-10 17:01 ` Andreas Müller
2016-02-10 12:32 ` [PATCH v2 5/7] systemd: move some tools into systemd-extra-utils package Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 6/7] systemd: tighten timesyncd and journal-gateway user accounts Maciej Borzecki
2016-02-10 12:32 ` [PATCH v2 7/7] systemd: rename systemd-zsh to systemd-zsh-completion Maciej Borzecki
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.