Systemd-240

Introduction to systemd

While systemd was installed when building LFS, there are many features provided by the package that were not included in the initial installation because Linux-PAM was not yet installed. The systemd package needs to be rebuilt to provide a working systemd-logind service, which provides many additional features for dependent packages.

This package is known to build and work properly using an LFS-8.4 platform.

Package Information

Additional Downloads

systemd Dependencies

Required

Linux-PAM-1.3.0

Recommended Runtime Dependencies

Optional

cURL-7.64.0, cryptsetup-2.0.6, git-2.20.1, GnuTLS-3.6.6, Iptables-1.8.2, libgcrypt-1.8.4, libidn2-2.1.1, libseccomp-2.3.3, libxkbcommon-0.8.3, make-ca-1.2, qemu-3.1.0, Valgrind-3.14.0, zsh-5.7.1 (for the zsh completions), gnu-efi, kexec-tools, libmicrohttpd, lz4, qrencode, quota-tools and Sphinx

Optional (to rebuild the manual pages)

docbook-xml-4.5, docbook-xsl-1.79.2, libxslt-1.1.33, and lxml-4.3.1 (to build the index of systemd manual pages)

User Notes: http://wiki.linuxfromscratch.org/blfs/wiki/systemd

Installation of systemd

Apply a critical security patch for journald:

patch -Np1 -i ../systemd-240-security_fixes-2.patch

Remove an unneeded group, render, from the default udev rules:

sed -i 's/GROUP="render", //' rules/50-udev-default.rules.in

Rebuild systemd by running the following commands:

mkdir build &&
cd    build &&

meson --prefix=/usr         \
      --sysconfdir=/etc     \
      --localstatedir=/var  \
      -Dblkid=true          \
      -Dbuildtype=release   \
      -Ddefault-dnssec=no   \
      -Dfirstboot=false     \
      -Dinstall-tests=false \
      -Dldconfig=false      \
      -Drootprefix=         \
      -Drootlibdir=/lib     \
      -Dsplit-usr=true      \
      -Dsysusers=false      \
      -Db_lto=false         \
      ..                    &&

ninja
[Note]

Note

For the best test results, make sure you run the testsuite from a system that is booted by the same systemd version you are rebuilding.

To test the results, issue: ninja test.

[Warning]

Warning

Installing the package will overwrite all files installed by systemd in LFS. It is critical that nothing uses either systemd or Udev libraries during the installation. The best way to ensure that these libraries are not being used is to run the installation in rescue mode. To switch to rescue mode, run the following command as the root user (from a TTY):

systemctl start rescue.target

Now, as the root user:

ninja install

If RPM is not installed, remove an unnecessary directory by running the following command as the root user:

rm -rfv /usr/lib/rpm

Configuring systemd

The /etc/pam.d/system-session file needs to be modified and a new file needs to be created in order for systemd-logind to work correctly. Run the following commands as the root user:

cat >> /etc/pam.d/system-session << "EOF"
# Begin Systemd addition
    
session  required    pam_loginuid.so
session  optional    pam_systemd.so

# End Systemd addition
EOF

cat > /etc/pam.d/systemd-user << "EOF"
# Begin /etc/pam.d/systemd-user

account  required    pam_access.so
account  include     system-account

session  required    pam_env.so
session  required    pam_limits.so
session  required    pam_unix.so
session  required    pam_loginuid.so
session  optional    pam_keyinit.so force revoke
session  optional    pam_systemd.so

auth     required    pam_deny.so
password required    pam_deny.so

# End /etc/pam.d/systemd-user
EOF

At this point, you should reload the systemd daemon, and reenter multi-user mode with the following commands (as the root user):

systemctl daemon-reload
systemctl start multi-user.target
[Warning]

Warning

If upgrading from a previous version of systemd and an initrd is used for system boot, you should generate a new initrd before rebooting the system.

Contents

A list of the installed files, along with their short descriptions can be found at ../../../../lfs/view/8.4/chapter06/systemd.html#contents-systemd.

Listed below are the newly installed libraries and directories along with short descriptions.

Installed Programs: None
Installed Libraries: pam_systemd.so (in /lib/security)
Installed Directories: None

Short Descriptions

pam_systemd.so

is a PAM module used to register user sessions with the systemd login manager, systemd-logind.

Last updated on 2019-02-25 07:49:35 -0800