if microcodes:
# new .ucode section support?
if (
- systemd_tool_version(context.config, python_binary(context.config, binary=ukify), ukify) >= "256" and
+ systemd_tool_version(
+ python_binary(context.config, binary=ukify),
+ ukify,
+ sandbox=context.sandbox,
+ ) >= "256" and
(version := systemd_stub_version(context, stub)) and
version >= "256"
):
not context.config.find_binary("kernel-install") or
"--version" not in run(["kernel-install", "--help"],
stdout=subprocess.PIPE, sandbox=context.sandbox(binary="kernel-install")).stdout or
- systemd_tool_version(context.config, "kernel-install") < "255.1"
+ systemd_tool_version("kernel-install", sandbox=context.sandbox) < "255.1"
):
return context.config.image_id or context.config.distribution.name
) -> None:
tool = check_tool(config, *tools, reason=reason, hint=hint)
- v = systemd_tool_version(config, tool)
+ v = systemd_tool_version(tool, sandbox=config.sandbox)
if v < version:
die(f"Found '{tool}' with version {v} but version {version} or newer is required to {reason}.",
hint=f"Use ToolsTree=default to get a newer version of '{tools[0]}'.")
) -> None:
ukify = check_tool(config, "ukify", "/usr/lib/systemd/ukify", reason=reason, hint=hint)
- v = systemd_tool_version(config, python_binary(config, binary=ukify), ukify)
+ v = systemd_tool_version(python_binary(config, binary=ukify), ukify, sandbox=config.sandbox)
if v < version:
die(f"Found '{ukify}' with version {v} but version {version} or newer is required to {reason}.",
hint="Use ToolsTree=default to get a newer version of 'ukify'.")
cmdline += ["--split=yes"]
if context.config.sector_size:
cmdline += ["--sector-size", str(context.config.sector_size)]
- if tabs and systemd_tool_version(context.config, "systemd-repart") >= 256:
+ if tabs and systemd_tool_version("systemd-repart", sandbox=context.sandbox) >= 256:
cmdline += [
"--generate-fstab=/etc/fstab",
"--generate-crypttab=/etc/crypttab",
from mkosi.log import ARG_DEBUG, ARG_DEBUG_SHELL, Style, die
from mkosi.pager import page
from mkosi.run import find_binary, run
-from mkosi.sandbox import Mount, sandbox_cmd
+from mkosi.sandbox import Mount, SandboxProtocol, nosandbox, sandbox_cmd
from mkosi.types import PathString, SupportsRead
from mkosi.user import INVOKING_USER
from mkosi.util import (
return setfiles, policy, fc, binpolicy
-def systemd_tool_version(config: Config, *tool: PathString) -> GenericVersion:
+def systemd_tool_version(*tool: PathString, sandbox: SandboxProtocol = nosandbox) -> GenericVersion:
return GenericVersion(
run(
[*tool, "--version"],
stdout=subprocess.PIPE,
- sandbox=config.sandbox(binary=tool[-1]),
+ sandbox=sandbox(binary=tool[-1]),
).stdout.split()[2].strip("()").removeprefix("v")
)
logging.warning("bootctl is not installed, assuming 'unknown' kernel type")
return KernelType.unknown
- if (v := systemd_tool_version(config, "bootctl")) < 253:
+ if (v := systemd_tool_version("bootctl", sandbox=config.sandbox)) < 253:
logging.warning(f"bootctl {v} doesn't know kernel-identify verb, assuming 'unknown' kernel type")
return KernelType.unknown
"--description", description,
"--scope",
"--collect",
- "--expand-environment=no",
+ *(["--expand-environment=no"] if systemd_tool_version("systemd-run") >= 254 else []),
*(["--uid", str(user)] if user is not None else []),
*(["--gid", str(group)] if group is not None else []),
*([f"--property={p}" for p in properties]),
projects / thirdparty / mkosi.git / commitdiff
