feat: allow rescue/emergency boot with grub cmdline args

[bsherman]

This uses a systemd-generator to dyamically write a drop-in config for the rescue and emergency services only when they are requested via the kernel cmdline, which requires console/grub access. This allows use of these modes with the default Fedora state of a password locked root user, but does not auto-allow root access in the case of a failed fsck-check, which can also drop into the emergency shell.

Relates: #470

[bsherman]

@ublue-os/approver please do NOT merge this until we've collected feedback. :-) Thank you.

[bsherman]

Some notes for reference:

• systemd kernel command line - contains the arguments which are valid for triggering rescue and emergency targets
• systemd.generator - details on generators
• sulogin upstream commit shows how sulogin --force functions
• search of coreos which shows how the SYSTEMD_SULOGIN_FORCE=1 gets used in systemd and in coreos' overlay
• upstream systemd sulogin-shell - current repo showing the use of SYSTEMD_SULOGIN_FORCE

[cgwalters]

Looks sane to me. Arguably we could try to put this in systemd upstream too.

[bsherman]

Looks sane to me. Arguably we could try to put this in systemd upstream too.

I'm not sure how easy it is to get merged into different projects. At the least, I figured we'd include it here and I'll PR to CoreOS.

Then we'd have running use cases before pushing further upstream.

[KyleGospo]

Tested well on my end!

[TriMoon]

Not to be nit-picking but....
Title should be "kernel" instead of "grub", as it is not specific to Grub...

Plus it will boot, i guess, in a root shell?
(So mention that also)

[EyeCantCU]

Works over here as well :)

[bsherman]

Arguably we could try to put this in systemd upstream too.

@cgwalters , I had planned to PR this into CoreOS as a replacement for the current static drop-ins. Would prefer I first attempt going upstream to systemd?

[cgwalters]

Landing in FCOS first sounds totally sane to me.