systemd

USE flags

• abi_mips_n32 - 64-bit (32-bit pointer) libraries
• abi_mips_n64 - 64-bit libraries
• abi_mips_o32 - 32-bit libraries
• abi_s390_32 - 32-bit (s390) libraries
• abi_s390_64 - 64-bit (s390x) libraries
• abi_x86_32 - 32-bit (x86) libraries
• abi_x86_64 - 64-bit (amd64) libraries
• abi_x86_x32 - x32 ABI libraries
• acl - Add support for Access Control Lists
• apparmor - Enable support for the AppArmor application security system
• audit - Enable support for sys-process/audit
• boot - Enable EFI boot manager and stub loader
• cgroup-hybrid - Default to hybrid (legacy) cgroup hierarchy instead of unified (modern).
• cryptsetup - Enable cryptsetup tools (includes unit generator for crypttab)
• curl - Enable support for uploading journals
• dns-over-tls - Enable DNS-over-TLS support
• elfutils - Enable coredump stacktraces in the journal
• fido2 - Enable FIDO2 support
• gcrypt - Enable use of dev-libs/libgcrypt for various features
• gnuefi - Enable EFI boot manager and stub loader (built using sys-boot/gnu-efi)
• gnutls - Prefer net-libs/gnutls as SSL/TLS provider (ineffective with USE=-ssl)
• homed - Enable portable home directories
• http - Enable embedded HTTP server in journald
• idn - Enable support for Internationalized Domain Names
• importd - Enable import daemon
• iptables - Use libiptc from net-firewall/iptables for NAT support in systemd-networkd; this is used only if the running kernel does not support nftables
• kmod - Enable kernel module loading via sys-apps/kmod
• lz4 - Enable lz4 compression for the journal
• lzma - Support for LZMA (de)compression algorithm
• openssl - Enable use of dev-libs/openssl for various features
• pam - Add support for PAM (Pluggable Authentication Modules) - DANGEROUS to arbitrarily flip
• pcre - Add support for Perl Compatible Regular Expressions
• pkcs11 - Enable PKCS#11 support for cryptsetup and homed
• policykit - Enable PolicyKit (polkit) authentication support
• pwquality - Enable password quality checking in homed
• python_single_target_python3_10 - Build for Python 3.10 only
• python_single_target_python3_11 - Build for Python 3.11 only
• qrcode - Enable qrcode output support in journal
• resolvconf - Install resolvconf symlink for systemd-resolve
• seccomp - Enable seccomp (secure computing mode) to perform system call filtering at runtime to increase security of programs
• secureboot - Automatically sign efi executables using user specified key
• selinux - !!internal use only!! Security Enhanced Linux support, this must be set by the selinux profile or breakage will occur
• split-usr - Enable behavior to support maintaining /bin, /lib*, /sbin and /usr/sbin separately from /usr/bin and /usr/lib*
• sysv-utils - Install sysvinit compatibility symlinks and manpages for init, telinit, halt, poweroff, reboot, runlevel, and shutdown
• test - Enable dependencies and/or preparations necessary to run tests (usually controlled by FEATURES=test but can be toggled independently)
• tpm - Enable TPM support
• vanilla - Disable Gentoo-specific behavior and compatibility quirks
• xkb - Depend on x11-libs/libxkbcommon to allow logind to control the X11 keymap
• zstd - Enable support for ZSTD compression

Security Advisory