systemd

USE flags

• abi_mips_n32 - 64-bit (32-bit pointer) libraries
• abi_mips_n64 - 64-bit libraries
• abi_mips_o32 - 32-bit libraries
• abi_ppc_32 - 32-bit (ppc) libraries
• abi_ppc_64 - 64-bit (ppc64) libraries
• abi_riscv_lp64 - 64-bit (rv64) soft-float libraries
• abi_riscv_lp64d - 64-bit (rv64) double hard-float libraries
• abi_s390_32 - 32-bit (s390) libraries
• abi_s390_64 - 64-bit (s390x) libraries
• abi_x86_32 - 32-bit (x86) libraries
• abi_x86_64 - 64-bit (amd64) libraries
• abi_x86_x32 - x32 ABI libraries
• acl - Add support for Access Control Lists
• apparmor - Enable AppArmor support
• audit - Enable support for sys-process/audit
• bash-completion - Enable bash-completion support
• build - !!internal use only!! DO NOT SET THIS FLAG YOURSELF!, used for creating build images and the first half of bootstrapping [make stage1]
• cgroup-hybrid - Default to hybrid (legacy) cgroup hierarchy instead of unified (modern).
• cryptsetup - Enable cryptsetup tools (includes unit generator for crypttab)
• curl - Enable support for uploading journals
• dns-over-tls - Enable DNS-over-TLS support
• elfutils - Enable coredump stacktraces in the journal
• filecaps - Use Linux file capabilities to control privilege rather than set*id (this is orthogonal to USE=caps which uses capabilities at runtime e.g. libcap)
• gcrypt - Enable sealing of journal files using gcrypt
• gnuefi - Enable EFI boot manager and stub loader (built using sys-boot/gnu-efi)
• gnutls - Prefer net-libs/gnutls as SSL/TLS provider (ineffective with USE=-ssl)
• gtk - Add support for x11-libs/gtk+ (The GIMP Toolkit)
• http - Enable embedded HTTP server in journald
• idn - Enable support for Internationalized Domain Names
• importd - Enable import daemon
• introspection - Add support for GObject based introspection
• kernel_linux - KERNEL setting for system using the Linux kernel
• kmod - Enable kernel module loading via sys-apps/kmod
• lz4 - Enable lz4 compression for the journal
• lzma - Support for LZMA (de)compression algorithm
• nat - Enable support for network address translation in networkd
• pam - Add support for PAM (Pluggable Authentication Modules) - DANGEROUS to arbitrarily flip
• pcre - Add support for Perl Compatible Regular Expressions
• policykit - Enable PolicyKit authentication support
• python - Add optional support/bindings for the Python language
• python_single_target_python2_7 - Build for Python 2.7 only
• python_single_target_python3_2 - Build for Python 3.2 only (deprecated)
• python_single_target_python3_3 - Build for Python 3.3 only
• python_single_target_python3_4 - Build for Python 3.4 only
• python_targets_python2_7 - Build with Python 2.7
• python_targets_python3_2 - Build with Python 3.2 (deprecated)
• python_targets_python3_3 - Build with Python 3.3
• python_targets_python3_4 - Build with Python 3.4
• qrcode - Enable qrcode output support in journal
• resolvconf - Install resolvconf symlink for systemd-resolve
• seccomp - Enable seccomp (secure computing mode) to perform system call filtering at runtime to increase security of programs
• selinux - !!internal use only!! Security Enhanced Linux support, this must be set by the selinux profile or breakage will occur
• split-usr - Enable behavior to support maintaining /bin, /lib*, /sbin and /usr/sbin separately from /usr/bin and /usr/lib*
• ssl - Add support for SSL/TLS connections (Secure Socket Layer / Transport Layer Security)
• static-libs - Build static versions of dynamic libraries as well
• sysv-utils - Install sysvinit compatibility symlinks and manpages for init, telinit, halt, poweroff, reboot, runlevel, and shutdown
• tcpd - Add support for TCP wrappers
• test - Enable dependencies and/or preparations necessary to run tests (usually controlled by FEATURES=test but can be toggled independently)
• vanilla - Disable Gentoo-specific behavior and compatibility quirks
• xattr - Add support for extended attributes (filesystem-stored metadata)
• xkb - Depend on x11-libs/libxkbcommon to allow logind to control the X11 keymap

Security Advisory