diff options
author | Lennart Poettering <lennart@poettering.net> | 2020-07-28 17:52:23 +0200 |
---|---|---|
committer | Lennart Poettering <lennart@poettering.net> | 2020-08-05 20:26:25 +0200 |
commit | dd04fb3268691ad847f72c5852eb1e208fc7d627 (patch) | |
tree | 9d24d82b1f11b1c6d7ba8d8c97dc23a0cd0faf1b /man/systemd-tmpfiles.xml | |
parent | analyze: fix 'cat-config systemd/zram-generator.conf' (diff) | |
download | systemd-dd04fb3268691ad847f72c5852eb1e208fc7d627.tar.xz systemd-dd04fb3268691ad847f72c5852eb1e208fc7d627.zip |
tmpfiles: add new switch -E for quickly excluding /proc, /dev, /sys and /run
Diffstat (limited to 'man/systemd-tmpfiles.xml')
-rw-r--r-- | man/systemd-tmpfiles.xml | 17 |
1 files changed, 16 insertions, 1 deletions
diff --git a/man/systemd-tmpfiles.xml b/man/systemd-tmpfiles.xml index 998fd0911b..e3bb1db7c6 100644 --- a/man/systemd-tmpfiles.xml +++ b/man/systemd-tmpfiles.xml @@ -149,6 +149,7 @@ the specified prefix. This option can be specified multiple times.</para></listitem> </varlistentry> + <varlistentry> <term><option>--exclude-prefix=<replaceable>path</replaceable></option></term> <listitem><para>Ignore rules with paths that start with the @@ -157,6 +158,16 @@ </varlistentry> <varlistentry> + <term><option>-E</option></term> + <listitem><para>A shortcut for <literal>--exclude-prefix=/dev --exclude-prefix=/proc + --exclude-prefix=/run --exclude-prefix=/sys</literal>, i.e. exclude the hierarchies typically backed + by virtual or memory file systems. This is useful in combination with <option>--root=</option>, if + the specified directory tree contains an OS tree without these virtual/memory file systems mounted + in, as it is typically not desirable to create any files and directories below these subdirectories + if they are supposed to be overmounted during runtime.</para></listitem> + </varlistentry> + + <varlistentry> <term><option>--root=<replaceable>root</replaceable></option></term> <listitem><para>Takes a directory path as an argument. All paths will be prefixed with the given alternate <replaceable>root</replaceable> path, including config search paths.</para> @@ -164,7 +175,11 @@ <para>When this option is used, the libc Name Service Switch (NSS) is bypassed for resolving users and groups. Instead the files <filename>/etc/passwd</filename> and <filename>/etc/group</filename> inside the alternate root are read directly. This means that users/groups not listed in these files - will not be resolved, i.e. LDAP NIS and other complex databases are not considered.</para></listitem> + will not be resolved, i.e. LDAP NIS and other complex databases are not considered.</para> + + <para>Consider combining this with <option>-E</option> to ensure the invocation does not create files + or directories below mount points in the OS image operated on that are typically overmounted during + runtime.</para></listitem> </varlistentry> <varlistentry> |