mirror of
https://github.com/kata-containers/kata-containers.git
synced 2025-06-29 16:57:18 +00:00
katautils: don't mask systemd units
The systemd units and files that are not needed in Kata Containers, are removed when the image is created, therefore we don't need to mask them. fixes #1704 Signed-off-by: Julio Montes <julio.montes@intel.com>
This commit is contained in:
Julio Montes
parent
10c14bcb38
commit
d66d855e08
@ -37,94 +37,11 @@ var systemdKernelParam = []vc.Param{
|
|||||||
},
|
},
|
||||||
}
|
}
|
||||||
|
|
||||||
// kernel params to improve memory footprint
|
|
||||||
var noTraceKernelParam = []vc.Param{
|
|
||||||
// No logs: agent has its own logging system
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-journald.service",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-journald.socket",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-journal-flush.service",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-journald-dev-log.socket",
|
|
||||||
},
|
|
||||||
// No udev events: agent implements udev events
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-udevd.service",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-udevd.socket",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-udev-trigger.service",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-udevd-kernel.socket",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-udevd-control.socket",
|
|
||||||
},
|
|
||||||
// No timesync: kata is able to setup the time and this service consume network
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-timesyncd.service",
|
|
||||||
},
|
|
||||||
// No update audit logs
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-update-utmp.service",
|
|
||||||
},
|
|
||||||
// No temporal files
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-tmpfiles-setup.service",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-tmpfiles-cleanup.service",
|
|
||||||
},
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-tmpfiles-cleanup.timer",
|
|
||||||
},
|
|
||||||
// No mounts
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "tmp.mount",
|
|
||||||
},
|
|
||||||
// No random seed
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-random-seed.service",
|
|
||||||
},
|
|
||||||
// No coredump
|
|
||||||
{
|
|
||||||
Key: "systemd.mask",
|
|
||||||
Value: "systemd-coredump@.service",
|
|
||||||
},
|
|
||||||
}
|
|
||||||
|
|
||||||
func getKernelParams(needSystemd, trace bool) []vc.Param {
|
func getKernelParams(needSystemd, trace bool) []vc.Param {
|
||||||
p := []vc.Param{}
|
p := []vc.Param{}
|
||||||
|
|
||||||
if needSystemd {
|
if needSystemd {
|
||||||
p = append(p, systemdKernelParam...)
|
p = append(p, systemdKernelParam...)
|
||||||
if !trace {
|
|
||||||
p = append(p, noTraceKernelParam...)
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
|
|
||||||
return p
|
return p
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user