Project

General

Profile

Feature #9881

Jessie: replace our patches to upstream initscripts with systemd drop-in overrides

Added by intrigeri about 4 years ago. Updated almost 4 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
-
Target version:
Start date:
Due date:
07/15/2015
% Done:

100%

Feature Branch:
Type of work:
Code
Blueprint:
Starter:
Affected tool:

Description

We are currently patching 18 initscripts from Debian when building a Tails ISO. For Tails 2.0 (Jessie), we want to divide this number by at least 2, using systemd drop-in overrides.

Associated revisions

Revision 83bc1b9e (diff)
Added by intrigeri about 4 years ago

Replace patching of the gdomap, i2p, hdparm, tor and ttdnsd initscripts with 'systemctl disable'.

Closes: #9881

History

#2 Updated by intrigeri about 4 years ago

Next step is to check whether systemd in Jessie actually honors drop-in overrides for initscripts.

#4 Updated by intrigeri about 4 years ago

  • Status changed from Confirmed to In Progress
  • % Done changed from 0 to 10

Initial research shows that:

  • one can use systemd drop-in overrides for initscripts: on Jessie, initscripts are turned into "native" systemd units by a unit generator
  • however, one cannot reset dependencies (e.g. After=) to the empty list; one can only add to the list; so e.g. for apparmor.service, the only options we have to replace the dependency on remote-fs.target with one on local-fs.target are:
    • override the full unit file (/run/systemd/generator.late/apparmor.service) by copying it into /etc/systemd/system/ and modifying it;
    • keeping our current patch against the initscript.

#5 Updated by intrigeri about 4 years ago

  • Status changed from In Progress to Resolved
  • % Done changed from 10 to 100

#6 Updated by intrigeri about 4 years ago

  • Target version changed from Tails_1.6 to Tails_2.0

In the end, drop-in overrides were not needed: systemctl disable was enough. And I decided that introducing a complete apparmor.service unit was not worth it, merely to drop a simple patch against the corresponding initscript.

Mission accomplished: we now patch only 8 initscripts on feature/jessie.

Also available in: Atom PDF