You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I've been trying to use mkosi to build an OS image that is read only. When I use mkosi boot to test it, by default it will use a read/write rootfs. To properly test it as a read-only image with mkosi boot, I added this mkosi.nspawn file to my project:
[Files]
ReadOnly=true
This seems to work great, and the image boots with a read-only file system. Of course systemd doesn't work great on a system where everything is read-only, so I want to make /var writable for its state files and logs. Looking at the nspawn documentation, this should be as easy as editing my mkosi.nspawn to be:
[Files]
ReadOnly=true
Bind=/runtime/var:/var
However, when I invoke mkosi boot with this configuration, the Bind= configuration does not appear to be picked up. The system boots as read only, but /var remains read only and is not mounted from the host directory. In fact, any directory I'm trying to bind mount in the host does not appear to work. I've tried changing the location or removing the read only flag.
Am I doing this wrong, or is there a bug here? Is there another way to get a read-only rootfs with writable /var working with mkosi boot? I'm using mkosi 25.3 and Fedora 42.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
I've been trying to use mkosi to build an OS image that is read only. When I use
mkosi bootto test it, by default it will use a read/write rootfs. To properly test it as a read-only image withmkosi boot, I added thismkosi.nspawnfile to my project:This seems to work great, and the image boots with a read-only file system. Of course systemd doesn't work great on a system where everything is read-only, so I want to make
/varwritable for its state files and logs. Looking at the nspawn documentation, this should be as easy as editing mymkosi.nspawnto be:However, when I invoke
mkosi bootwith this configuration, theBind=configuration does not appear to be picked up. The system boots as read only, but/varremains read only and is not mounted from the host directory. In fact, any directory I'm trying to bind mount in the host does not appear to work. I've tried changing the location or removing the read only flag.Am I doing this wrong, or is there a bug here? Is there another way to get a read-only rootfs with writable
/varworking withmkosi boot? I'm using mkosi 25.3 and Fedora 42.Beta Was this translation helpful? Give feedback.
All reactions