From caeeefc99065d118cbe906fc20da9089bfd9555b Mon Sep 17 00:00:00 2001 From: Thien Tran Date: Wed, 25 Oct 2023 16:07:17 -0700 Subject: [PATCH] Mask debug shell Signed-off-by: Thien Tran --- Docker-Compose.ign | 4 ++++ Docker-Compose.yml | 2 ++ Generic.ign | 4 ++++ Generic.yml | 2 ++ UTM.ign | 4 ++++ UTM.yml | 2 ++ 6 files changed, 18 insertions(+) diff --git a/Docker-Compose.ign b/Docker-Compose.ign index 0af40ce..297c022 100644 --- a/Docker-Compose.ign +++ b/Docker-Compose.ign @@ -170,6 +170,10 @@ { "path": "/etc/systemd/system/kdump.service.target", "target": "/dev/null" + }, + { + "path": "/etc/systemd/system/debug-shell.service", + "target": "/dev/null" } ] }, diff --git a/Docker-Compose.yml b/Docker-Compose.yml index f65e93f..55fd51a 100644 --- a/Docker-Compose.yml +++ b/Docker-Compose.yml @@ -314,6 +314,8 @@ storage: target: /usr/lib/systemd/system/tuned.service - path: /etc/systemd/system/kdump.service.target target: /dev/null + - path: /etc/systemd/system/debug-shell.service + target: /dev/null kernel_arguments: should_exist: - spectre_v2=on diff --git a/Generic.ign b/Generic.ign index df79cfc..dc4771c 100644 --- a/Generic.ign +++ b/Generic.ign @@ -163,6 +163,10 @@ { "path": "/etc/systemd/system/kdump.service.target", "target": "/dev/null" + }, + { + "path": "/etc/systemd/system/debug-shell.service", + "target": "/dev/null" } ] }, diff --git a/Generic.yml b/Generic.yml index d043bdf..8ca3aba 100644 --- a/Generic.yml +++ b/Generic.yml @@ -312,6 +312,8 @@ storage: target: /usr/lib/systemd/system/tuned.service - path: /etc/systemd/system/kdump.service.target target: /dev/null + - path: /etc/systemd/system/debug-shell.service + target: /dev/null kernel_arguments: should_exist: - spectre_v2=on diff --git a/UTM.ign b/UTM.ign index 16b325f..ecb36fb 100644 --- a/UTM.ign +++ b/UTM.ign @@ -156,6 +156,10 @@ { "path": "/etc/systemd/system/kdump.service.target", "target": "/dev/null" + }, + { + "path": "/etc/systemd/system/debug-shell.service", + "target": "/dev/null" } ] }, diff --git a/UTM.yml b/UTM.yml index 8e1a4f4..7b3de7a 100644 --- a/UTM.yml +++ b/UTM.yml @@ -207,6 +207,8 @@ storage: target: /usr/lib/systemd/system/tuned.service - path: /etc/systemd/system/kdump.service.target target: /dev/null + - path: /etc/systemd/system/debug-shell.service + target: /dev/null kernel_arguments: should_exist: - spectre_v2=on