This repository has been archived by the owner on May 12, 2021. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 373
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
The systemd units and files that are not needed in Kata Containers, are removed when the image is created, therefore we don't need to mask them. fixes #1704 Signed-off-by: Julio Montes <[email protected]>
- Loading branch information
Julio Montes
committed
May 17, 2019
1 parent
10c14bc
commit d66d855
Showing
1 changed file
with
0 additions
and
83 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -37,94 +37,11 @@ var systemdKernelParam = []vc.Param{ | |
| }, | ||
| } | ||
|
|
||
| // kernel params to improve memory footprint | ||
| var noTraceKernelParam = []vc.Param{ | ||
| // No logs: agent has its own logging system | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-journald.service", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-journald.socket", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-journal-flush.service", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-journald-dev-log.socket", | ||
| }, | ||
| // No udev events: agent implements udev events | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-udevd.service", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-udevd.socket", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-udev-trigger.service", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-udevd-kernel.socket", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-udevd-control.socket", | ||
| }, | ||
| // No timesync: kata is able to setup the time and this service consume network | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-timesyncd.service", | ||
| }, | ||
| // No update audit logs | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-update-utmp.service", | ||
| }, | ||
| // No temporal files | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-tmpfiles-setup.service", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-tmpfiles-cleanup.service", | ||
| }, | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-tmpfiles-cleanup.timer", | ||
| }, | ||
| // No mounts | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "tmp.mount", | ||
| }, | ||
| // No random seed | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "systemd-random-seed.service", | ||
| }, | ||
| // No coredump | ||
| { | ||
| Key: "systemd.mask", | ||
| Value: "[email protected]", | ||
| }, | ||
| } | ||
|
|
||
| func getKernelParams(needSystemd, trace bool) []vc.Param { | ||
| p := []vc.Param{} | ||
|
|
||
| if needSystemd { | ||
| p = append(p, systemdKernelParam...) | ||
| if !trace { | ||
| p = append(p, noTraceKernelParam...) | ||
| } | ||
| } | ||
|
|
||
| return p | ||
|
|
||