#systemd v256~rc1 is out! You know the drill, download it, run it, find all the bugs and report them - possibly to somebody else, I'll be at the nearest pub
@bluca@adamw it appears that dracut patches around in /usr/ in the initrd during boot, and that conflicts with the new system-wide ProtectSystem= setting which defaults to on in the initrd and off on the host.
@bluca@pid_eins well, I think there are two problems, but it's the missing kmod library that breaks boot 100% of the time. the problem with dracut's hook directory being read-only is a real thing, I'm pretty sure, but it doesn't seem to prevent boot, at least on a simple VM install (I can certainly imagine it might do so in other cases). edit: I filed https://github.com/systemd/systemd/issues/32511 for the read-only hooks issue.
@adamw@bluca I am pretty sure this one should be fixed in dracut. Either properly by not patching around in /usr/, because that's yuck. Or with a hotfix, by disabling the logic to mount /usr/ read-only in the initrd, there's an easy knob for that in /etc/systemd/system.conf after all.
But there's nothing to fix here in systemd.
Except maybe adding a bigger note about this to NEWS.
Add comment