summaryrefslogtreecommitdiff
path: root/configs/talkingparabola/airootfs/etc/systemd
diff options
context:
space:
mode:
Diffstat (limited to 'configs/talkingparabola/airootfs/etc/systemd')
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/journald.conf.d/volatile-storage.conf5
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/logind.conf.d/do-not-suspend.conf7
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/network/20-ethernet.network (renamed from configs/talkingparabola/airootfs/etc/systemd/network/ethernet.network)6
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/network/20-wireless.network (renamed from configs/talkingparabola/airootfs/etc/systemd/network/wireless.network)6
-rwxr-xr-xconfigs/talkingparabola/airootfs/etc/systemd/scripts/choose-mirror26
l---------configs/talkingparabola/airootfs/etc/systemd/system/brltty.service1
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/system/choose-mirror.service5
l---------configs/talkingparabola/airootfs/etc/systemd/system/dbus-org.freedesktop.network1.service1
l---------configs/talkingparabola/airootfs/etc/systemd/system/dbus-org.freedesktop.resolve1.service1
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/system/etc-pacman.d-gnupg.mount3
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/system/getty@tty1.service.d/autologin.conf3
l---------configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/choose-mirror.service1
l---------configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/iwd.service1
l---------configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/pacman-init.service1
l---------configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/reflector.service1
l---------configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/systemd-networkd.service1
l---------configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/systemd-resolved.service1
l---------configs/talkingparabola/airootfs/etc/systemd/system/network-online.target.wants/systemd-networkd-wait-online.service1
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/system/pacman-init.service6
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/system/reflector.service44
l---------configs/talkingparabola/airootfs/etc/systemd/system/sockets.target.wants/systemd-networkd.socket1
-rw-r--r--configs/talkingparabola/airootfs/etc/systemd/system/systemd-networkd-wait-online.service.d/wait-for-only-one-interface.conf6
22 files changed, 95 insertions, 33 deletions
diff --git a/configs/talkingparabola/airootfs/etc/systemd/journald.conf.d/volatile-storage.conf b/configs/talkingparabola/airootfs/etc/systemd/journald.conf.d/volatile-storage.conf
new file mode 100644
index 0000000..3104779
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/journald.conf.d/volatile-storage.conf
@@ -0,0 +1,5 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+[Journal]
+Storage=volatile
diff --git a/configs/talkingparabola/airootfs/etc/systemd/logind.conf.d/do-not-suspend.conf b/configs/talkingparabola/airootfs/etc/systemd/logind.conf.d/do-not-suspend.conf
new file mode 100644
index 0000000..c6b17a4
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/logind.conf.d/do-not-suspend.conf
@@ -0,0 +1,7 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+[Login]
+HandleSuspendKey=ignore
+HandleHibernateKey=ignore
+HandleLidSwitch=ignore
diff --git a/configs/talkingparabola/airootfs/etc/systemd/network/ethernet.network b/configs/talkingparabola/airootfs/etc/systemd/network/20-ethernet.network
index 5e9f0b7..efa309c 100644
--- a/configs/talkingparabola/airootfs/etc/systemd/network/ethernet.network
+++ b/configs/talkingparabola/airootfs/etc/systemd/network/20-ethernet.network
@@ -1,11 +1,13 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
[Match]
Name=en*
Name=eth*
[Network]
-DHCP=ipv4
+DHCP=yes
IPv6PrivacyExtensions=yes
-IPv6AcceptRA=false
[DHCP]
RouteMetric=512
diff --git a/configs/talkingparabola/airootfs/etc/systemd/network/wireless.network b/configs/talkingparabola/airootfs/etc/systemd/network/20-wireless.network
index 5a6da15..bf9ab9d 100644
--- a/configs/talkingparabola/airootfs/etc/systemd/network/wireless.network
+++ b/configs/talkingparabola/airootfs/etc/systemd/network/20-wireless.network
@@ -1,11 +1,13 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
[Match]
Name=wlp*
Name=wlan*
[Network]
-DHCP=ipv4
+DHCP=yes
IPv6PrivacyExtensions=yes
-IPv6AcceptRA=false
[DHCP]
RouteMetric=1024
diff --git a/configs/talkingparabola/airootfs/etc/systemd/scripts/choose-mirror b/configs/talkingparabola/airootfs/etc/systemd/scripts/choose-mirror
deleted file mode 100755
index 13c9f69..0000000
--- a/configs/talkingparabola/airootfs/etc/systemd/scripts/choose-mirror
+++ /dev/null
@@ -1,26 +0,0 @@
-#!/bin/bash
-
-get_cmdline() {
- local param
- for param in $(< /proc/cmdline); do
- case "${param}" in
- $1=*) echo "${param##*=}";
- return 0
- ;;
- esac
- done
-}
-
-mirror=$(get_cmdline mirror)
-[[ $mirror = auto ]] && mirror=$(get_cmdline parabolaiso_http_srv)
-[[ $mirror ]] || exit 0
-
-mv /etc/pacman.d/mirrorlist /etc/pacman.d/mirrorlist.orig
-cat >/etc/pacman.d/mirrorlist << EOF
-#
-# Parabola GNU/Linux-libre repository mirrorlist
-# Generated by parabolaiso
-#
-
-Server = ${mirror%%/}/\$repo/os/\$arch
-EOF
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/brltty.service b/configs/talkingparabola/airootfs/etc/systemd/system/brltty.service
new file mode 120000
index 0000000..f466627
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/brltty.service
@@ -0,0 +1 @@
+/usr/lib/systemd/system/brltty.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/choose-mirror.service b/configs/talkingparabola/airootfs/etc/systemd/system/choose-mirror.service
index 1e4d771..b3e4847 100644
--- a/configs/talkingparabola/airootfs/etc/systemd/system/choose-mirror.service
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/choose-mirror.service
@@ -1,10 +1,13 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
[Unit]
Description=Choose mirror from the kernel command line
ConditionKernelCommandLine=mirror
[Service]
Type=oneshot
-ExecStart=/etc/systemd/scripts/choose-mirror
+ExecStart=/usr/local/bin/choose-mirror
[Install]
WantedBy=multi-user.target
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/dbus-org.freedesktop.network1.service b/configs/talkingparabola/airootfs/etc/systemd/system/dbus-org.freedesktop.network1.service
new file mode 120000
index 0000000..4c158e6
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/dbus-org.freedesktop.network1.service
@@ -0,0 +1 @@
+/usr/lib/systemd/system/systemd-networkd.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/dbus-org.freedesktop.resolve1.service b/configs/talkingparabola/airootfs/etc/systemd/system/dbus-org.freedesktop.resolve1.service
new file mode 120000
index 0000000..4f6ae34
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/dbus-org.freedesktop.resolve1.service
@@ -0,0 +1 @@
+/usr/lib/systemd/system/systemd-resolved.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/etc-pacman.d-gnupg.mount b/configs/talkingparabola/airootfs/etc/systemd/system/etc-pacman.d-gnupg.mount
index 4eab551..f86a91d 100644
--- a/configs/talkingparabola/airootfs/etc/systemd/system/etc-pacman.d-gnupg.mount
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/etc-pacman.d-gnupg.mount
@@ -1,3 +1,6 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
[Unit]
Description=Temporary /etc/pacman.d/gnupg directory
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/getty@tty1.service.d/autologin.conf b/configs/talkingparabola/airootfs/etc/systemd/system/getty@tty1.service.d/autologin.conf
index d1d8474..370735f 100644
--- a/configs/talkingparabola/airootfs/etc/systemd/system/getty@tty1.service.d/autologin.conf
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/getty@tty1.service.d/autologin.conf
@@ -1,3 +1,6 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
[Service]
ExecStart=
ExecStart=-/sbin/agetty --autologin root --noclear %I 38400 linux
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/choose-mirror.service b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/choose-mirror.service
new file mode 120000
index 0000000..2d8d256
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/choose-mirror.service
@@ -0,0 +1 @@
+../choose-mirror.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/iwd.service b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/iwd.service
new file mode 120000
index 0000000..3625abd
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/iwd.service
@@ -0,0 +1 @@
+/usr/lib/systemd/system/iwd.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/pacman-init.service b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/pacman-init.service
new file mode 120000
index 0000000..d09eec6
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/pacman-init.service
@@ -0,0 +1 @@
+../pacman-init.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/reflector.service b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/reflector.service
new file mode 120000
index 0000000..f5071ce
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/reflector.service
@@ -0,0 +1 @@
+../reflector.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/systemd-networkd.service b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/systemd-networkd.service
new file mode 120000
index 0000000..4c158e6
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/systemd-networkd.service
@@ -0,0 +1 @@
+/usr/lib/systemd/system/systemd-networkd.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/systemd-resolved.service b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/systemd-resolved.service
new file mode 120000
index 0000000..4f6ae34
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/multi-user.target.wants/systemd-resolved.service
@@ -0,0 +1 @@
+/usr/lib/systemd/system/systemd-resolved.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/network-online.target.wants/systemd-networkd-wait-online.service b/configs/talkingparabola/airootfs/etc/systemd/system/network-online.target.wants/systemd-networkd-wait-online.service
new file mode 120000
index 0000000..7d6ad92
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/network-online.target.wants/systemd-networkd-wait-online.service
@@ -0,0 +1 @@
+/usr/lib/systemd/system/systemd-networkd-wait-online.service \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/pacman-init.service b/configs/talkingparabola/airootfs/etc/systemd/system/pacman-init.service
index 3414ebc..6e9b84d 100644
--- a/configs/talkingparabola/airootfs/etc/systemd/system/pacman-init.service
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/pacman-init.service
@@ -1,3 +1,6 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
[Unit]
Description=Initializes Pacman keyring
Wants=haveged.service
@@ -9,8 +12,7 @@ After=etc-pacman.d-gnupg.mount
Type=oneshot
RemainAfterExit=yes
ExecStart=/usr/bin/pacman-key --init
-ExecStart=/usr/bin/pacman-key --populate archlinux
-ExecStart=/usr/bin/pacman-key --populate parabola
+ExecStart=/usr/bin/pacman-key --populate parabola archlinux archlinux32
[Install]
WantedBy=multi-user.target
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/reflector.service b/configs/talkingparabola/airootfs/etc/systemd/system/reflector.service
new file mode 100644
index 0000000..4058e36
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/reflector.service
@@ -0,0 +1,44 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+[Unit]
+Description=pacman mirrorlist update
+Wants=network-online.target
+After=network-online.target nss-lookup.target
+ConditionKernelCommandLine=!mirror
+
+[Service]
+Type=oneshot
+ExecStart=/usr/bin/reflector --protocol https --latest 70 --sort rate --save /etc/pacman.d/mirrorlist
+Restart=on-failure
+RestartSec=10
+CacheDirectory=reflector
+CapabilityBoundingSet=~CAP_SETUID CAP_SETGID CAP_SETPCAP CAP_SYS_ADMIN CAP_SYS_PTRACE CAP_CHOWN CAP_FSETID CAP_SETFCAP CAP_DAC_OVERRIDE CAP_DAC_READ_SEARCH CAP_FOWNER CAP_IPC_OWNER CAP_NET_ADMIN CAP_SYS_TIME CAP_AUDIT_CONTROL CAP_AUDIT_READ CAP_AUDIT_WRITE CAP_KILL CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SYS_NICE CAP_SYS_RESOURCE CAP_MAC_ADMIN CAP_MAC_OVERRIDE CAP_SYS_BOOT CAP_LINUX_IMMUTABLE CAP_IPC_LOCK CAP_SYS_CHROOT CAP_BLOCK_SUSPEND CAP_LEASE CAP_SYS_PACCT CAP_SYS_TTY_CONFIG CAP_WAKE_ALARM
+Environment=XDG_CACHE_HOME=/var/cache/reflector
+LockPersonality=true
+MemoryDenyWriteExecute=true
+NoNewPrivileges=true
+PrivateDevices=true
+PrivateTmp=true
+PrivateUsers=true
+ProtectClock=true
+ProtectControlGroups=true
+ProtectHome=true
+ProtectHostname=true
+ProtectKernelTunables=true
+ProtectKernelLogs=true
+ProtectKernelModules=true
+ProtectSystem=strict
+ReadWritePaths=/etc/pacman.d/mirrorlist
+RemoveIPC=true
+RestrictAddressFamilies=~AF_AX25 AF_IPX AF_APPLETALK AF_X25 AF_DECnet AF_KEY AF_NETLINK AF_PACKET AF_RDS AF_PPPOX AF_LLC AF_IB AF_MPLS AF_CAN AF_TIPC AF_BLUETOOTH AF_ALG AF_VSOCK AF_KCM AF_UNIX AF_XDP
+RestrictNamespaces=true
+RestrictRealtime=true
+RestrictSUIDSGID=true
+SystemCallArchitectures=native
+SystemCallFilter=@system-service
+SystemCallFilter=~@resources @privileged
+UMask=177
+
+[Install]
+WantedBy=multi-user.target
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/sockets.target.wants/systemd-networkd.socket b/configs/talkingparabola/airootfs/etc/systemd/system/sockets.target.wants/systemd-networkd.socket
new file mode 120000
index 0000000..51942c8
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/sockets.target.wants/systemd-networkd.socket
@@ -0,0 +1 @@
+/usr/lib/systemd/system/systemd-networkd.socket \ No newline at end of file
diff --git a/configs/talkingparabola/airootfs/etc/systemd/system/systemd-networkd-wait-online.service.d/wait-for-only-one-interface.conf b/configs/talkingparabola/airootfs/etc/systemd/system/systemd-networkd-wait-online.service.d/wait-for-only-one-interface.conf
new file mode 100644
index 0000000..1b4c091
--- /dev/null
+++ b/configs/talkingparabola/airootfs/etc/systemd/system/systemd-networkd-wait-online.service.d/wait-for-only-one-interface.conf
@@ -0,0 +1,6 @@
+#
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+[Service]
+ExecStart=
+ExecStart=/usr/lib/systemd/systemd-networkd-wait-online --any