From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id DD877138989 for ; Fri, 1 May 2015 16:21:05 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 3DA84E0831; Fri, 1 May 2015 16:20:57 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 3025FE0829 for ; Fri, 1 May 2015 16:20:56 +0000 (UTC) Received: from mail-ie0-f181.google.com (mail-ie0-f181.google.com [209.85.223.181]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: floppym) by smtp.gentoo.org (Postfix) with ESMTPSA id F3CD4340CF2 for ; Fri, 1 May 2015 16:20:54 +0000 (UTC) Received: by iebrs15 with SMTP id rs15so92361268ieb.3 for ; Fri, 01 May 2015 09:20:50 -0700 (PDT) X-Received: by 10.43.17.74 with SMTP id qb10mr11924730icb.94.1430497250935; Fri, 01 May 2015 09:20:50 -0700 (PDT) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Received: by 10.64.124.229 with HTTP; Fri, 1 May 2015 09:20:30 -0700 (PDT) In-Reply-To: <844A66F8-FFE3-4286-B294-E35679BE5F3B@gmail.com> References: <844A66F8-FFE3-4286-B294-E35679BE5F3B@gmail.com> From: Mike Gilbert Date: Fri, 1 May 2015 12:20:30 -0400 Message-ID: Subject: Re: [gentoo-dev] New basic systemd profile To: Gentoo Dev Content-Type: text/plain; charset=UTF-8 X-Archives-Salt: bcccb606-61c3-42d6-9337-1d1c41353a0d X-Archives-Hash: f9b1dbf10081874fc5690eeba58c0fc0 On Fri, May 1, 2015 at 11:44 AM, Andrew Udvare wrote: > >> On 2015-05-01, at 08:28, Mike Gilbert wrote: >> >> Due to popular demand, I have added a basic systemd profile for amd64: >> >> default/linux/amd64/13.0/systemd >> >> Previously, the systemd profile was only available in combination with >> gnome or kde. This new profile will make it easier for users to switch >> to systemd from an unpacked stage3 tarball. >> >> To avoid an explosion in profiles, I will not be adding this for other >> archs at this time. I'm not opposed to it, but I also don't want to be >> responsible for making repoman that much slower. >> > > I would like to see a hardened version of this. Making a hardened Gentoo kernel (there is no 'systemd' option in hardened-sources menuconfig) and system with systemd is almost entirely undocumented. I managed to do it though. I will leave this to the hardened team to implement a systemd profile if they wish. As for documentation on building a kernel: The systemd ebuild has a list of suggested options in the CONFIG_CHECK variable in pkg_pretend. The systemd ebuild will warn you if your kernel config is missing any options.