mirror of
https://github.com/AuxXxilium/eudev.git
synced 2024-12-19 04:59:35 +07:00
1070 lines
45 KiB
Plaintext
1070 lines
45 KiB
Plaintext
systemd System and Service Manager
|
|
|
|
CHANGES WITH 194:
|
|
|
|
* If /etc/vconsole.conf is non-existent or empty we will no
|
|
longer load any console font or key map at boot by
|
|
default. Instead the kernel defaults will be left
|
|
intact. This is definitely the right thing to do, as no
|
|
configuration should mean no configuration, and hard-coding
|
|
font names that are different on all archs is probably a bad
|
|
idea. Also, the kernel default key map and font should be
|
|
good enough for most cases anyway, and mostly identical to
|
|
the userspace fonts/key maps we previously overloaded them
|
|
with. If distributions want to continue to default to a
|
|
non-kernel font or key map they should ship a default
|
|
/etc/vconsole.conf with the appropriate contents.
|
|
|
|
Contributions from: Colin Walters, Daniel J Walsh, Dave
|
|
Reisner, Kay Sievers, Lennart Poettering, Lukas Nykryn, Tollef
|
|
Fog Heen, Tom Gundersen, Zbigniew Jędrzejewski-Szmek
|
|
|
|
CHANGES WITH 193:
|
|
|
|
* journalctl gained a new --cursor= switch to show entries
|
|
starting from the specified location in the journal.
|
|
|
|
* We now enforce a size limit on journal entry fields exported
|
|
with "-o json" in journalctl. Fields larger than 4K will be
|
|
assigned null. This can be turned off with --all.
|
|
|
|
* An (optional) journal gateway daemon is now available as
|
|
"systemd-journal-gatewayd.service". This service provides
|
|
access to the journal via HTTP and JSON. This functionality
|
|
will be used to implement live log synchronization in both
|
|
pull and push modes, but has various other users too, such
|
|
as easy log access for debugging of embedded devices. Right
|
|
now it is already useful to retrieve the journal via HTTP:
|
|
|
|
# systemctl start systemd-journal-gatewayd.service
|
|
# wget http://localhost:19531/entries
|
|
|
|
This will download the journal contents in a
|
|
/var/log/messages compatible format. The same as JSON:
|
|
|
|
# curl -H"Accept: application/json" http://localhost:19531/entries
|
|
|
|
This service is also accessible via a web browser where a
|
|
single static HTML5 app is served that uses the JSON logic
|
|
to enable the user to do some basic browsing of the
|
|
journal. This will be extended later on. Here's an example
|
|
screenshot of this app in its current state:
|
|
|
|
http://0pointer.de/public/journal-gatewayd
|
|
|
|
Contributions from: Kay Sievers, Lennart Poettering, Robert
|
|
Milasan, Tom Gundersen
|
|
|
|
CHANGES WITH 192:
|
|
|
|
* The bash completion logic is now available for journalctl
|
|
too.
|
|
|
|
* We don't mount the "cpuset" controller anymore together with
|
|
"cpu" and "cpuacct", as "cpuset" groups generally cannot be
|
|
started if no parameters are assigned to it. "cpuset" hence
|
|
broke code that assumed it it could create "cpu" groups and
|
|
just start them.
|
|
|
|
* journalctl -f will now subscribe to terminal size changes,
|
|
and line break accordingly.
|
|
|
|
Contributions from: Dave Reisner, Kay Sievers, Lennart
|
|
Poettering, Lukas Nykrynm, Mirco Tischler, Václav Pavlín
|
|
|
|
CHANGES WITH 191:
|
|
|
|
* nspawn will now create a symlink /etc/localtime in the
|
|
container environment, copying the host's timezone
|
|
setting. Previously this has been done via a bind mount, but
|
|
since symlinks cannot be bind mounted this has now been
|
|
changed to create/update the appropriate symlink.
|
|
|
|
* journalctl -n's line number argument is now optional, and
|
|
will default to 10 if omitted.
|
|
|
|
* journald will now log the maximum size the journal files may
|
|
take up on disk. This is particularly useful if the default
|
|
built-in logic of determining this parameter from the file
|
|
system size is used. Use "systemctl status
|
|
systemd-journald.service" to see this information.
|
|
|
|
* The multi-seat X wrapper tool has been stripped down. As X
|
|
is now capable of enumerating graphics devices via udev in a
|
|
seat-aware way the wrapper is not strictly necessary
|
|
anymore. A stripped down temporary stop-gap is still shipped
|
|
until the upstream display managers have been updated to
|
|
fully support the new X logic. Expect this wrapper to be
|
|
removed entirely in one of the next releases.
|
|
|
|
* HandleSleepKey= in logind.conf has been split up into
|
|
HandleSuspendKey= and HandleHibernateKey=. The old setting
|
|
is not available anymore. X11 and the kernel are
|
|
distuingishing between these keys and we should too. This
|
|
also means the inhibition lock for these keys has been split
|
|
into two.
|
|
|
|
Contributions from: Dave Airlie, Eelco Dolstra, Lennart
|
|
Poettering, Lukas Nykryn, Václav Pavlín
|
|
|
|
CHANGES WITH 190:
|
|
|
|
* Whenever a unit changes state we'll now log this to the
|
|
journal and show along the unit's own log output in
|
|
"systemctl status".
|
|
|
|
* ConditionPathIsMountPoint= can now properly detect bind
|
|
mount points too. (Previously, a bind mount of one file
|
|
system to another place in the same file system could not be
|
|
detected as mount, since they shared struct stat's st_dev
|
|
field.)
|
|
|
|
* We will now mount the cgroup controllers cpu, cpuacct,
|
|
cpuset and the controllers net_cls, net_prio together by
|
|
default.
|
|
|
|
* nspawn containers will now have a virtualized boot
|
|
ID. (i.e. /proc/sys/kernel/random/boot_id is now mounted
|
|
over with a randomized ID at container initialization). This
|
|
has the effect of making "journalctl -b" do the right thing
|
|
in a container.
|
|
|
|
* The JSON output journal serialization has been updated not
|
|
to generate "endless" list objects anymore, but rather one
|
|
JSON object per line. This is more in line how most JSON
|
|
parsers expect JSON objects. The new output mode
|
|
"json-pretty" has been added to provide similar output, but
|
|
neatly aligned for readability by humans.
|
|
|
|
* We dropped all explicit sync() invocations in the shutdown
|
|
code. The kernel does this implicitly anyway in the kernel
|
|
reboot() syscall. halt(8)'s -n option is now a compatibility
|
|
no-op.
|
|
|
|
* We now support virtualized reboot() in containers, as
|
|
supported by newer kernels. We will fall back to exit() if
|
|
CAP_SYS_REBOOT is not available to the container. Also,
|
|
nspawn makes use of this now and will actually reboot the
|
|
container if the containerized OS asks for that.
|
|
|
|
* journalctl will only show local log output by default
|
|
now. Use --merge (-m) to show remote log output, too.
|
|
|
|
* libsystemd-journal gained the new sd_journal_get_usage()
|
|
call to determine the current disk usage of all journal
|
|
files. This is exposed in the new "journalctl --disk-usage"
|
|
command.
|
|
|
|
* journald gained a new configuration setting SplitMode= in
|
|
journald.conf which may be used to control how user journals
|
|
are split off. See journald.conf(5) for details.
|
|
|
|
* A new condition type ConditionFileNotEmpty= has been added.
|
|
|
|
* tmpfiles' "w" lines now support file globbing, to write
|
|
multiple files at once.
|
|
|
|
* We added Python bindings for the journal submission
|
|
APIs. More Python APIs for a number of selected APIs will
|
|
likely follow. Note that we intend to add native bindings
|
|
only for the Python language, as we consider it common
|
|
enough to deserve bindings shipped within systemd. There are
|
|
various projects outside of systemd that provide bindings
|
|
for languages such as PHP or Lua.
|
|
|
|
* Many conditions will now resolve specifiers such as %i. In
|
|
addition, PathChanged= and related directives of .path units
|
|
now support specifiers as well.
|
|
|
|
* There's now a new RPM macro definition for the system preset
|
|
dir: %_presetdir.
|
|
|
|
* journald will now warn if it can't foward a message to the
|
|
syslog daemon because it's socket is full.
|
|
|
|
* timedated will no longer write or process /etc/timezone,
|
|
except on Debian. As we do not support late mounted /usr
|
|
anymore /etc/localtime always being a symlink is now safe,
|
|
and hence the information in /etc/timezone is not necessary
|
|
anymore.
|
|
|
|
* logind will now always reserve one VT for a text getty (VT6
|
|
by default). Previously if more than 6 X sessions where
|
|
started they took up all the VTs with auto-spawned gettys,
|
|
so that no text gettys were available anymore.
|
|
|
|
* udev will now automatically inform the btrfs kernel logic
|
|
about btrfs RAID components showing up. This should make
|
|
simple hotplug based btrfs RAID assembly work.
|
|
|
|
* PID 1 will now increase its RLIMIT_NOFILE to 64K by default
|
|
(but not for its children which will stay at the kernel
|
|
default). This should allow setups with a lot more listening
|
|
sockets.
|
|
|
|
* systemd will now always pass the configured timezone to the
|
|
kernel at boot. timedated will do the same when the timezone
|
|
is changed.
|
|
|
|
* logind's inhibition logic has been updated. By default,
|
|
logind will now handle the lid switch, the power and sleep
|
|
keys all the time, even in graphical sessions. If DEs want
|
|
to handle these events on their own they should take the new
|
|
handle-power-key, handle-sleep-key and handle-lid-switch
|
|
inhibitors during their runtime. A simple way to achiveve
|
|
that is to invoke the DE wrapped in an invocation of:
|
|
|
|
systemd-inhibit --what=handle-power-key:handle-sleep-key:handle-lid-switch ...
|
|
|
|
* Access to unit operations is now checked via SELinux taking
|
|
the unit file label and client process label into account.
|
|
|
|
* systemd will now notify the administrator in the journal
|
|
when he over-mounts a non-empty directory.
|
|
|
|
* There are new specifiers that are resolved in unit files,
|
|
for the host name (%H), the machine ID (%m) and the boot ID
|
|
(%b).
|
|
|
|
Contributions from: Allin Cottrell, Auke Kok, Brandon Philips,
|
|
Colin Guthrie, Colin Walters, Daniel J Walsh, Dave Reisner,
|
|
Eelco Dolstra, Jan Engelhardt, Kay Sievers, Lennart
|
|
Poettering, Lucas De Marchi, Lukas Nykryn, Mantas Mikulėnas,
|
|
Martin Pitt, Matthias Clasen, Michael Olbrich, Pierre Schmitz,
|
|
Shawn Landden, Thomas Hindoe Paaboel Andersen, Tom Gundersen,
|
|
Václav Pavlín, Yin Kangkai, Zbigniew Jędrzejewski-Szmek
|
|
|
|
CHANGES WITH 189:
|
|
|
|
* Support for reading structured kernel messages from
|
|
/dev/kmsg has now been added and is enabled by default.
|
|
|
|
* Support for reading kernel messages from /proc/kmsg has now
|
|
been removed. If you want kernel messages in the journal
|
|
make sure to run a recent kernel (>= 3.5) that supports
|
|
reading structured messages from /dev/kmsg (see
|
|
above). /proc/kmsg is now exclusive property of classic
|
|
syslog daemons again.
|
|
|
|
* The libudev API gained the new
|
|
udev_device_new_from_device_id() call.
|
|
|
|
* The logic for file system namespace (ReadOnlyDirectory=,
|
|
ReadWriteDirectoy=, PrivateTmp=) has been reworked not to
|
|
require pivot_root() anymore. This means fewer temporary
|
|
directories are created below /tmp for this feature.
|
|
|
|
* nspawn containers will now see and receive all submounts
|
|
made on the host OS below the root file system of the
|
|
container.
|
|
|
|
* Forward Secure Sealing is now supported for Journal files,
|
|
which provide cryptographical sealing of journal files so
|
|
that attackers cannot alter log history anymore without this
|
|
being detectable. Lennart will soon post a blog story about
|
|
this explaining it in more detail.
|
|
|
|
* There are two new service settings RestartPreventExitStatus=
|
|
and SuccessExitStatus= which allow configuration of exit
|
|
status (exit code or signal) which will be excepted from the
|
|
restart logic, resp. consider successful.
|
|
|
|
* journalctl gained the new --verify switch that can be used
|
|
to check the integrity of the structure of journal files and
|
|
(if Forward Secure Sealing is enabled) the contents of
|
|
journal files.
|
|
|
|
* nspawn containers will now be run with /dev/stdin, /dev/fd/
|
|
and similar symlinks pre-created. This makes running shells
|
|
as container init process a lot more fun.
|
|
|
|
* The fstab support can now handle PARTUUID= and PARTLABEL=
|
|
entries.
|
|
|
|
* A new ConditionHost= condition has been added to match
|
|
against the hostname (with globs) and machine ID. This is
|
|
useful for clusters where a single OS image is used to
|
|
provision a large number of hosts which shall run slightly
|
|
different sets of services.
|
|
|
|
* Services which hit the restart limit will now be placed in a
|
|
failure state.
|
|
|
|
Contributions from: Bertram Poettering, Dave Reisner, Huang
|
|
Hang, Kay Sievers, Lennart Poettering, Lukas Nykryn, Martin
|
|
Pitt, Simon Peeters, Zbigniew Jędrzejewski-Szmek
|
|
|
|
CHANGES WITH 188:
|
|
|
|
* When running in --user mode systemd will now become a
|
|
subreaper (PR_SET_CHILD_SUBREAPER). This should make the ps
|
|
tree a lot more organized.
|
|
|
|
* A new PartOf= unit dependency type has been introduced that
|
|
may be used to group services in a natural way.
|
|
|
|
* "systemctl enable" may now be used to enable instances of
|
|
services.
|
|
|
|
* journalctl now prints error log levels in red, and
|
|
warning/notice log levels in bright white. It also supports
|
|
filtering by log level now.
|
|
|
|
* cgtop gained a new -n switch (similar to top), to configure
|
|
the maximum number of iterations to run for. It also gained
|
|
-b, to run in batch mode (accepting no input).
|
|
|
|
* The suffix ".service" may now be ommited on most systemctl
|
|
command lines involving service unit names.
|
|
|
|
* There's a new bus call in logind to lock all sessions, as
|
|
well as a loginctl verb for it "lock-sessions".
|
|
|
|
* libsystemd-logind.so gained a new call sd_journal_perror()
|
|
that works similar to libc perror() but logs to the journal
|
|
and encodes structured information about the error number.
|
|
|
|
* /etc/crypttab entries now understand the new keyfile-size=
|
|
option.
|
|
|
|
* shutdown(8) now can send a (configurable) wall message when
|
|
a shutdown is cancelled.
|
|
|
|
* The mount propagation mode for the root file system will now
|
|
default to "shared", which is useful to make containers work
|
|
nicely out-of-the-box so that they receive new mounts from
|
|
the host. This can be undone locally by running "mount
|
|
--make-rprivate /" if needed.
|
|
|
|
* The prefdm.service file has been removed. Distributions
|
|
should maintain this unit downstream if they intend to keep
|
|
it around. However, we recommend writing normal unit files
|
|
for display managers instead.
|
|
|
|
* Since systemd is a crucial part of the OS we will now
|
|
default to a number of compiler switches that improve
|
|
security (hardening) such as read-only relocations, stack
|
|
protection, and suchlike.
|
|
|
|
* The TimeoutSec= setting for services is now split into
|
|
TimeoutStartSec= and TimeoutStopSec= to allow configuration
|
|
of individual time outs for the start and the stop phase of
|
|
the service.
|
|
|
|
Contributions from: Artur Zaprzala, Arvydas Sidorenko, Auke
|
|
Kok, Bryan Kadzban, Dave Reisner, David Strauss, Harald Hoyer,
|
|
Jim Meyering, Kay Sievers, Lennart Poettering, Mantas
|
|
Mikulėnas, Martin Pitt, Michal Schmidt, Michal Sekletar, Peter
|
|
Alfredsen, Shawn Landden, Simon Peeters, Terence Honles, Tom
|
|
Gundersen, Zbigniew Jędrzejewski-Szmek
|
|
|
|
CHANGES WITH 187:
|
|
|
|
* The journal and id128 C APIs are now fully documented as man
|
|
pages.
|
|
|
|
* Extra safety checks have been added when transitioning from
|
|
the initial RAM disk to the main system to avoid accidental
|
|
data loss.
|
|
|
|
* /etc/crypttab entries now understand the new keyfile-offset=
|
|
option.
|
|
|
|
* systemctl -t can now be used to filter by unit load state.
|
|
|
|
* The journal C API gained the new sd_journal_wait() call to
|
|
make writing synchronous journal clients easier.
|
|
|
|
* journalctl gained the new -D switch to show journals from a
|
|
specific directory.
|
|
|
|
* journalctl now displays a special marker between log
|
|
messages of two different boots.
|
|
|
|
* The journal is now explicitly flushed to /var via a service
|
|
systemd-journal-flush.service, rather than implicitly simply
|
|
by seeing /var/log/journal to be writable.
|
|
|
|
* journalctl (and the journal C APIs) can now match for much
|
|
more complex expressions, with alternatives and
|
|
disjunctions.
|
|
|
|
* When transitioning from the initial RAM disk to the main
|
|
system we will now kill all processes in a killing spree to
|
|
ensure no processes stay around by accident.
|
|
|
|
* Three new specifiers may be used in unit files: %u, %h, %s
|
|
resolve to the user name, user home directory resp. user
|
|
shell. This is useful for running systemd user instances.
|
|
|
|
* We now automatically rotate journal files if their data
|
|
object hash table gets a fill level > 75%. We also size the
|
|
hash table based on the configured maximum file size. This
|
|
together should lower hash collisions drastically and thus
|
|
speed things up a bit.
|
|
|
|
* journalctl gained the new "--header" switch to introspect
|
|
header data of journal files.
|
|
|
|
* A new setting SystemCallFilters= has been added to services
|
|
which may be used to apply blacklists or whitelists to
|
|
system calls. This is based on SECCOMP Mode 2 of Linux 3.5.
|
|
|
|
* nspawn gained a new --link-journal= switch (and quicker: -j)
|
|
to link the container journal with the host. This makes it
|
|
very easy to centralize log viewing on the host for all
|
|
guests while still keeping the journal files separated.
|
|
|
|
* Many bugfixes and optimizations
|
|
|
|
Contributions from: Auke Kok, Eelco Dolstra, Harald Hoyer, Kay
|
|
Sievers, Lennart Poettering, Malte Starostik, Paul Menzel, Rex
|
|
Tsai, Shawn Landden, Tom Gundersen, Ville Skyttä, Zbigniew
|
|
Jędrzejewski-Szmek
|
|
|
|
CHANGES WITH 186:
|
|
|
|
* Several tools now understand kernel command line arguments,
|
|
which are only read when run in an initial RAM disk. They
|
|
usually follow closely their normal counterparts, but are
|
|
prefixed with rd.
|
|
|
|
* There's a new tool to analyze the readahead files that are
|
|
automatically generated at boot. Use:
|
|
|
|
/usr/lib/systemd/systemd-readahead analyze /.readahead
|
|
|
|
* We now provide an early debug shell on tty9 if this enabled. Use:
|
|
|
|
systemctl enable debug-shell.service
|
|
|
|
* All plymouth related units have been moved into the Plymouth
|
|
package. Please make sure to upgrade your Plymouth version
|
|
as well.
|
|
|
|
* systemd-tmpfiles now supports getting passed the basename of
|
|
a configuration file only, in which case it will look for it
|
|
in all appropriate directories automatically.
|
|
|
|
* udevadm info now takes a /dev or /sys path as argument, and
|
|
does the right thing. Example:
|
|
|
|
udevadm info /dev/sda
|
|
udevadm info /sys/class/block/sda
|
|
|
|
* systemctl now prints a warning if a unit is stopped but a
|
|
unit that might trigger it continues to run. Example: a
|
|
service is stopped but the socket that activates it is left
|
|
running.
|
|
|
|
* "systemctl status" will now mention if the log output was
|
|
shortened due to rotation since a service has been started.
|
|
|
|
* The journal API now exposes functions to determine the
|
|
"cutoff" times due to rotation.
|
|
|
|
* journald now understands SIGUSR1 and SIGUSR2 for triggering
|
|
immediately flushing of runtime logs to /var if possible,
|
|
resp. for triggering immediate rotation of the journal
|
|
files.
|
|
|
|
* It is now considered an error if a service is attempted to
|
|
be stopped that is not loaded.
|
|
|
|
* XDG_RUNTIME_DIR now uses numeric UIDs instead of usernames.
|
|
|
|
* systemd-analyze now supports Python 3
|
|
|
|
* tmpfiles now supports cleaning up directories via aging
|
|
where the first level dirs are always kept around but
|
|
directories beneath it automatically aged. This is enabled
|
|
by prefixing the age field with '~'.
|
|
|
|
* Seat objects now expose CanGraphical, CanTTY properties
|
|
which is required to deal with very fast bootups where the
|
|
display manager might be running before the graphics drivers
|
|
completed initialization.
|
|
|
|
* Seat objects now expose a State property.
|
|
|
|
* We now include RPM macros for service enabling/disabling
|
|
based on the preset logic. We recommend RPM based
|
|
distributions to make use of these macros if possible. This
|
|
makes it simpler to reuse RPM spec files across
|
|
distributions.
|
|
|
|
* We now make sure that the collected systemd unit name is
|
|
always valid when services log to the journal via
|
|
STDOUT/STDERR.
|
|
|
|
* There's a new man page kernel-command-line(7) detailing all
|
|
command line options we understand.
|
|
|
|
* The fstab generator may now be disabled at boot by passing
|
|
fstab=0 on the kernel command line.
|
|
|
|
* A new kernel command line option modules-load= is now understood
|
|
to load a specific kernel module statically, early at boot.
|
|
|
|
* Unit names specified on the systemctl command line are now
|
|
automatically escaped as needed. Also, if file system or
|
|
device paths are specified they are automatically turned
|
|
into the appropriate mount or device unit names. Example:
|
|
|
|
systemctl status /home
|
|
systemctl status /dev/sda
|
|
|
|
* The SysVConsole= configuration option has been removed from
|
|
system.conf parsing.
|
|
|
|
* The SysV search path is no longer exported on the D-Bus
|
|
Manager object.
|
|
|
|
* The Names= option is been removed from unit file parsing.
|
|
|
|
* There's a new man page bootup(7) detailing the boot process.
|
|
|
|
* Every unit and every generator we ship with systemd now
|
|
comes with full documentation. The self-explanatory boot is
|
|
complete.
|
|
|
|
* A couple of services gained "systemd-" prefixes in their
|
|
name if they wrap systemd code, rather than only external
|
|
code. Among them fsck@.service which is now
|
|
systemd-fsck@.service.
|
|
|
|
* The HaveWatchdog property has been removed from the D-Bus
|
|
Manager object.
|
|
|
|
* systemd.confirm_spawn= on the kernel command line should now
|
|
work sensibly.
|
|
|
|
* There's a new man page crypttab(5) which details all options
|
|
we actually understand.
|
|
|
|
* systemd-nspawn gained a new --capability= switch to pass
|
|
additional capabilities to the container.
|
|
|
|
* timedated will now read known NTP implementation unit names
|
|
from /usr/lib/systemd/ntp-units.d/*.list,
|
|
systemd-timedated-ntp.target has been removed.
|
|
|
|
* journalctl gained a new switch "-b" that lists log data of
|
|
the current boot only.
|
|
|
|
* The notify socket is in the abstract namespace again, in
|
|
order to support daemons which chroot() at start-up.
|
|
|
|
* There is a new Storage= configuration option for journald
|
|
which allows configuration of where log data should go. This
|
|
also provides a way to disable journal logging entirely, so
|
|
that data collected is only forwarded to the console, the
|
|
kernel log buffer or another syslog implementation.
|
|
|
|
* Many bugfixes and optimizations
|
|
|
|
Contributions from: Auke Kok, Colin Guthrie, Dave Reisner,
|
|
David Strauss, Eelco Dolstra, Kay Sievers, Lennart Poettering,
|
|
Lukas Nykryn, Michal Schmidt, Michal Sekletar, Paul Menzel,
|
|
Shawn Landden, Tom Gundersen
|
|
|
|
CHANGES WITH 185:
|
|
|
|
* "systemctl help <unit>" now shows the man page if one is
|
|
available.
|
|
|
|
* Several new man pages have been added.
|
|
|
|
* MaxLevelStore=, MaxLevelSyslog=, MaxLevelKMsg=,
|
|
MaxLevelConsole= can now be specified in
|
|
journald.conf. These options allow reducing the amount of
|
|
data stored on disk or forwarded by the log level.
|
|
|
|
* TimerSlackNSec= can now be specified in system.conf for
|
|
PID1. This allows system-wide power savings.
|
|
|
|
Contributions from: Dave Reisner, Kay Sievers, Lauri Kasanen,
|
|
Lennart Poettering, Malte Starostik, Marc-Antoine Perennou,
|
|
Matthias Clasen
|
|
|
|
CHANGES WITH 184:
|
|
|
|
* logind is now capable of (optionally) handling power and
|
|
sleep keys as well as the lid switch.
|
|
|
|
* journalctl now understands the syntax "journalctl
|
|
/usr/bin/avahi-daemon" to get all log output of a specific
|
|
daemon.
|
|
|
|
* CapabilityBoundingSet= in system.conf now also influences
|
|
the capability bound set of usermode helpers of the kernel.
|
|
|
|
Contributions from: Daniel Drake, Daniel J. Walsh, Gert
|
|
Michael Kulyk, Harald Hoyer, Jean Delvare, Kay Sievers,
|
|
Lennart Poettering, Matthew Garrett, Matthias Clasen, Paul
|
|
Menzel, Shawn Landden, Tero Roponen, Tom Gundersen
|
|
|
|
CHANGES WITH 183:
|
|
|
|
* Note that we skipped 139 releases here in order to set the
|
|
new version to something that is greater than both udev's
|
|
and systemd's most recent version number.
|
|
|
|
* udev: all udev sources are merged into the systemd source tree now.
|
|
All future udev development will happen in the systemd tree. It
|
|
is still fully supported to use the udev daemon and tools without
|
|
systemd running, like in initramfs or other init systems. Building
|
|
udev though, will require the *build* of the systemd tree, but
|
|
udev can be properly *run* without systemd.
|
|
|
|
* udev: /lib/udev/devices/ are not read anymore; systemd-tmpfiles
|
|
should be used to create dead device nodes as workarounds for broken
|
|
subsystems.
|
|
|
|
* udev: RUN+="socket:..." and udev_monitor_new_from_socket() is
|
|
no longer supported. udev_monitor_new_from_netlink() needs to be
|
|
used to subscribe to events.
|
|
|
|
* udev: when udevd is started by systemd, processes which are left
|
|
behind by forking them off of udev rules, are unconditionally cleaned
|
|
up and killed now after the event handling has finished. Services or
|
|
daemons must be started as systemd services. Services can be
|
|
pulled-in by udev to get started, but they can no longer be directly
|
|
forked by udev rules.
|
|
|
|
* udev: the daemon binary is called systemd-udevd now and installed
|
|
in /usr/lib/systemd/. Standalone builds or non-systemd systems need
|
|
to adapt to that, create symlink, or rename the binary after building
|
|
it.
|
|
|
|
* libudev no longer provides these symbols:
|
|
udev_monitor_from_socket()
|
|
udev_queue_get_failed_list_entry()
|
|
udev_get_{dev,sys,run}_path()
|
|
The versions number was bumped and symbol versioning introduced.
|
|
|
|
* systemd-loginctl and systemd-journalctl have been renamed
|
|
to loginctl and journalctl to match systemctl.
|
|
|
|
* The config files: /etc/systemd/systemd-logind.conf and
|
|
/etc/systemd/systemd-journald.conf have been renamed to
|
|
logind.conf and journald.conf. Package updates should rename
|
|
the files to the new names on upgrade.
|
|
|
|
* For almost all files the license is now LGPL2.1+, changed
|
|
from the previous GPL2.0+. Exceptions are some minor stuff
|
|
of udev (which will be changed to LGPL2.1 eventually, too),
|
|
and the MIT licensed sd-daemon.[ch] library that is suitable
|
|
to be used as drop-in files.
|
|
|
|
* systemd and logind now handle system sleep states, in
|
|
particular suspending and hibernating.
|
|
|
|
* logind now implements a sleep/shutdown/idle inhibiting logic
|
|
suitable for a variety of uses. Soonishly Lennart will blog
|
|
about this in more detail.
|
|
|
|
* var-run.mount and var-lock.mount are no longer provided
|
|
(which prevously bind mounted these directories to their new
|
|
places). Distributions which have not converted these
|
|
directories to symlinks should consider stealing these files
|
|
from git history and add them downstream.
|
|
|
|
* We introduced the Documentation= field for units and added
|
|
this to all our shipped units. This is useful to make it
|
|
easier to explore the boot and the purpose of the various
|
|
units.
|
|
|
|
* All smaller setup units (such as
|
|
systemd-vconsole-setup.service) now detect properly if they
|
|
are run in a container and are skipped when
|
|
appropriate. This guarantees an entirely noise-free boot in
|
|
Linux container environments such as systemd-nspawn.
|
|
|
|
* A framework for implementing offline system updates is now
|
|
integrated, for details see:
|
|
http://freedesktop.org/wiki/Software/systemd/SystemUpdates
|
|
|
|
* A new service type Type=idle is available now which helps us
|
|
avoiding ugly interleaving of getty output and boot status
|
|
messages.
|
|
|
|
* There's now a system-wide CapabilityBoundingSet= option to
|
|
globally reduce the set of capabilities for the
|
|
system. This is useful to drop CAP_SYS_MKNOD, CAP_SYS_RAWIO,
|
|
CAP_NET_RAW, CAP_SYS_MODULE, CAP_SYS_TIME, CAP_SYS_PTRACE or
|
|
even CAP_NET_ADMIN system-wide for secure systems.
|
|
|
|
* There are now system-wide DefaultLimitXXX= options to
|
|
globally change the defaults of the various resource limits
|
|
for all units started by PID 1.
|
|
|
|
* Harald Hoyer's systemd test suite has been integrated into
|
|
systemd which allows easy testing of systemd builds in qemu
|
|
and nspawn. (This is really awesome! Ask us for details!)
|
|
|
|
* The fstab parser is now implemented as generator, not inside
|
|
of PID 1 anymore.
|
|
|
|
* systemctl will now warn you if .mount units generated from
|
|
/etc/fstab are out of date due to changes in fstab that
|
|
haven't been read by systemd yet.
|
|
|
|
* systemd is now suitable for usage in initrds. Dracut has
|
|
already been updated to make use of this. With this in place
|
|
initrds get a slight bit faster but primarily are much
|
|
easier to introspect and debug since "systemctl status" in
|
|
the host system can be used to introspect initrd services,
|
|
and the journal from the initrd is kept around too.
|
|
|
|
* systemd-delta has been added, a tool to explore differences
|
|
between user/admin configuration and vendor defaults.
|
|
|
|
* PrivateTmp= now affects both /tmp and /var/tmp.
|
|
|
|
* Boot time status messages are now much prettier and feature
|
|
proper english language. Booting up systemd has never been
|
|
so sexy.
|
|
|
|
* Read-ahead pack files now include the inode number of all
|
|
files to pre-cache. When the inode changes the pre-caching
|
|
is not attempted. This should be nicer to deal with updated
|
|
packages which might result in changes of read-ahead
|
|
patterns.
|
|
|
|
* We now temporaritly lower the kernel's read_ahead_kb variable
|
|
when collecting read-ahead data to ensure the kernel's
|
|
built-in read-ahead does not add noise to our measurements
|
|
of necessary blocks to pre-cache.
|
|
|
|
* There's now RequiresMountsFor= to add automatic dependencies
|
|
for all mounts necessary for a specific file system path.
|
|
|
|
* MountAuto= and SwapAuto= have been removed from
|
|
system.conf. Mounting file systems at boot has to take place
|
|
in systemd now.
|
|
|
|
* nspawn now learned a new switch --uuid= to set the machine
|
|
ID on the command line.
|
|
|
|
* nspawn now learned the -b switch to automatically search
|
|
for an init system.
|
|
|
|
* vt102 is now the default TERM for serial TTYs, upgraded from
|
|
vt100.
|
|
|
|
* systemd-logind now works on VT-less systems.
|
|
|
|
* The build tree has been reorganized. The individual
|
|
components now have directories of their own.
|
|
|
|
* A new condition type ConditionPathIsReadWrite= is now available.
|
|
|
|
* nspawn learned the new -C switch to create cgroups for the
|
|
container in other hierarchies.
|
|
|
|
* We now have support for hardware watchdogs, configurable in
|
|
system.conf.
|
|
|
|
* The scheduled shutdown logic now has a public API.
|
|
|
|
* We now mount /tmp as tmpfs by default, but this can be
|
|
masked and /etc/fstab can override it.
|
|
|
|
* Since udisks doesn't make use of /media anymore we are not
|
|
mounting a tmpfs on it anymore.
|
|
|
|
* journalctl gained a new --local switch to only interleave
|
|
locally generated journal files.
|
|
|
|
* We can now load the IMA policy at boot automatically.
|
|
|
|
* The GTK tools have been split off into a systemd-ui.
|
|
|
|
Contributions from: Andreas Schwab, Auke Kok, Ayan George,
|
|
Colin Guthrie, Daniel Mack, Dave Reisner, David Ward, Elan
|
|
Ruusamäe, Frederic Crozat, Gergely Nagy, Guillermo Vidal,
|
|
Hannes Reinecke, Harald Hoyer, Javier Jardón, Kay Sievers,
|
|
Lennart Poettering, Lucas De Marchi, Léo Gillot-Lamure,
|
|
Marc-Antoine Perennou, Martin Pitt, Matthew Monaco, Maxim
|
|
A. Mikityanskiy, Michael Biebl, Michael Olbrich, Michal
|
|
Schmidt, Nis Martensen, Patrick McCarty, Roberto Sassu, Shawn
|
|
Landden, Sjoerd Simons, Sven Anders, Tollef Fog Heen, Tom
|
|
Gundersen
|
|
|
|
CHANGES WITH 44:
|
|
|
|
* This is mostly a bugfix release
|
|
|
|
* Support optional initialization of the machine ID from the
|
|
KVM or container configured UUID.
|
|
|
|
* Support immediate reboots with "systemctl reboot -ff"
|
|
|
|
* Show /etc/os-release data in systemd-analyze output
|
|
|
|
* Many bugfixes for the journal, including endianess fixes and
|
|
ensuring that disk space enforcement works
|
|
|
|
* sd-login.h is C++ comptaible again
|
|
|
|
* Extend the /etc/os-release format on request of the Debian
|
|
folks
|
|
|
|
* We now refuse non-UTF8 strings used in various configuration
|
|
and unit files. This is done to ensure we don't pass invalid
|
|
data over D-Bus or expose it elsewhere.
|
|
|
|
* Register Mimo USB Screens as suitable for automatic seat
|
|
configuration
|
|
|
|
* Read SELinux client context from journal clients in a race
|
|
free fashion
|
|
|
|
* Reorder configuration file lookup order. /etc now always
|
|
overrides /run in order to allow the administrator to always
|
|
and unconditionally override vendor supplied or
|
|
automatically generated data.
|
|
|
|
* The various user visible bits of the journal now have man
|
|
pages. We still lack man pages for the journal API calls
|
|
however.
|
|
|
|
* We now ship all man pages in HTML format again in the
|
|
tarball.
|
|
|
|
Contributions from: Dave Reisner, Dirk Eibach, Frederic
|
|
Crozat, Harald Hoyer, Kay Sievers, Lennart Poettering, Marti
|
|
Raudsepp, Michal Schmidt, Shawn Landden, Tero Roponen, Thierry
|
|
Reding
|
|
|
|
CHANGES WITH 43:
|
|
|
|
* This is mostly a bugfix release
|
|
|
|
* systems lacking /etc/os-release are no longer supported.
|
|
|
|
* Various functionality updates to libsystemd-login.so
|
|
|
|
* Track class of PAM logins to distuingish greeters from
|
|
normal user logins.
|
|
|
|
Contributions from: Kay Sievers, Lennart Poettering, Michael
|
|
Biebl
|
|
|
|
CHANGES WITH 42:
|
|
|
|
* This is an important bugfix release for v41.
|
|
|
|
* Building man pages is now optional which should be useful
|
|
for those building systemd from git but unwilling to install
|
|
xsltproc.
|
|
|
|
* Watchdog support for supervising services is now usable. In
|
|
a future release support for hardware watchdogs
|
|
(i.e. /dev/watchdog) will be added building on this.
|
|
|
|
* Service start rate limiting is now configurable and can be
|
|
turned off per service. When a start rate limit is hit a
|
|
reboot can automatically be triggered.
|
|
|
|
* New CanReboot(), CanPowerOff() bus calls in systemd-logind.
|
|
|
|
Contributions from: Benjamin Franzke, Bill Nottingham,
|
|
Frederic Crozat, Lennart Poettering, Michael Olbrich, Michal
|
|
Schmidt, Michał Górny, Piotr Drąg
|
|
|
|
CHANGES WITH 41:
|
|
|
|
* The systemd binary is installed /usr/lib/systemd/systemd now;
|
|
An existing /sbin/init symlink needs to be adapted with the
|
|
package update.
|
|
|
|
* The code that loads kernel modules has been ported to invoke
|
|
libkmod directly, instead of modprobe. This means we do not
|
|
support systems with module-init-tools anymore.
|
|
|
|
* Watchdog support is now already useful, but still not
|
|
complete.
|
|
|
|
* A new kernel command line option systemd.setenv= is
|
|
understood to set system wide environment variables
|
|
dynamically at boot.
|
|
|
|
* We now limit the set of capabilities of systemd-journald.
|
|
|
|
* We now set SIGPIPE to ignore by default, since it only is
|
|
useful in shell pipelines, and has little use in general
|
|
code. This can be disabled with IgnoreSIPIPE=no in unit
|
|
files.
|
|
|
|
Contributions from: Benjamin Franzke, Kay Sievers, Lennart
|
|
Poettering, Michael Olbrich, Michal Schmidt, Tom Gundersen,
|
|
William Douglas
|
|
|
|
CHANGES WITH 40:
|
|
|
|
* This is mostly a bugfix release
|
|
|
|
* We now expose the reason why a service failed in the
|
|
"Result" D-Bus property.
|
|
|
|
* Rudimentary service watchdog support (will be completed over
|
|
the next few releases.)
|
|
|
|
* When systemd forks off in order execute some service we will
|
|
now immediately changes its argv[0] to reflect which process
|
|
it will execute. This is useful to minimize the time window
|
|
with a generic argv[0], which makes bootcharts more useful
|
|
|
|
Contributions from: Alvaro Soliverez, Chris Paulson-Ellis, Kay
|
|
Sievers, Lennart Poettering, Michael Olbrich, Michal Schmidt,
|
|
Mike Kazantsev, Ray Strode
|
|
|
|
CHANGES WITH 39:
|
|
|
|
* This is mostly a test release, but incorporates many
|
|
bugfixes.
|
|
|
|
* New systemd-cgtop tool to show control groups by their
|
|
resource usage.
|
|
|
|
* Linking against libacl for ACLs is optional again. If
|
|
disabled, support tracking device access for active logins
|
|
goes becomes unavailable, and so does access to the user
|
|
journals by the respective users.
|
|
|
|
* If a group "adm" exists, journal files are automatically
|
|
owned by them, thus allow members of this group full access
|
|
to the system journal as well as all user journals.
|
|
|
|
* The journal now stores the SELinux context of the logging
|
|
client for all entries.
|
|
|
|
* Add C++ inclusion guards to all public headers
|
|
|
|
* New output mode "cat" in the journal to print only text
|
|
messages, without any meta data like date or time.
|
|
|
|
* Include tiny X server wrapper as a temporary stop-gap to
|
|
teach XOrg udev display enumeration. This is used by display
|
|
managers such as gdm, and will go away as soon as XOrg
|
|
learned native udev hotplugging for display devices.
|
|
|
|
* Add new systemd-cat tool for executing arbitrary programs
|
|
with STDERR/STDOUT connected to the journal. Can also act as
|
|
BSD logger replacement, and does so by default.
|
|
|
|
* Optionally store all locally generated coredumps in the
|
|
journal along with meta data.
|
|
|
|
* systemd-tmpfiles learnt four new commands: n, L, c, b, for
|
|
writing short strings to files (for usage for /sys), and for
|
|
creating symlinks, character and block device nodes.
|
|
|
|
* New unit file option ControlGroupPersistent= to make cgroups
|
|
persistent, following the mechanisms outlined in
|
|
http://www.freedesktop.org/wiki/Software/systemd/PaxControlGroups
|
|
|
|
* Support multiple local RTCs in a sane way
|
|
|
|
* No longer monopolize IO when replaying readahead data on
|
|
rotating disks, since we might starve non-file-system IO to
|
|
death, since fanotify() will not see accesses done by blkid,
|
|
or fsck.
|
|
|
|
* Don't show kernel threads in systemd-cgls anymore, unless
|
|
requested with new -k switch.
|
|
|
|
Contributions from: Dan Horák, Kay Sievers, Lennart
|
|
Poettering, Michal Schmidt
|
|
|
|
CHANGES WITH 38:
|
|
|
|
* This is mostly a test release, but incorporates many
|
|
bugfixes.
|
|
|
|
* The git repository moved to:
|
|
git://anongit.freedesktop.org/systemd/systemd
|
|
ssh://git.freedesktop.org/git/systemd/systemd
|
|
|
|
* First release with the journal
|
|
http://0pointer.de/blog/projects/the-journal.html
|
|
|
|
* The journal replaces both systemd-kmsg-syslogd and
|
|
systemd-stdout-bridge.
|
|
|
|
* New sd_pid_get_unit() API call in libsystemd-logind
|
|
|
|
* Many systemadm clean-ups
|
|
|
|
* Introduce remote-fs-pre.target which is ordered before all
|
|
remote mounts and may be used to start services before all
|
|
remote mounts.
|
|
|
|
* Added Mageia support
|
|
|
|
* Add bash completion for systemd-loginctl
|
|
|
|
* Actively monitor PID file creation for daemons which exit in
|
|
the parent process before having finished writing the PID
|
|
file in the daemon process. Daemons which do this need to be
|
|
fixed (i.e. PID file creation must have finished before the
|
|
parent exits), but we now react a bit more gracefully to them.
|
|
|
|
* Add colourful boot output, mimicking the well-known output
|
|
of existing distributions.
|
|
|
|
* New option PassCredentials= for socket units, for
|
|
compatibility with a recent kernel ABI breakage.
|
|
|
|
* /etc/rc.local is now hooked in via a generator binary, and
|
|
thus will no longer act as synchronization point during
|
|
boot.
|
|
|
|
* systemctl list-unit-files now supports --root=.
|
|
|
|
* systemd-tmpfiles now understands two new commands: z, Z for
|
|
relabelling files according to the SELinux database. This is
|
|
useful to apply SELinux labels to specific files in /sys,
|
|
among other things.
|
|
|
|
* Output of SysV services is now forwarded to both the console
|
|
and the journal by default, not only just the console.
|
|
|
|
* New man pages for all APIs from libsystemd-login.
|
|
|
|
* The build tree got reorganized and a the build system is a
|
|
lot more modular allowing embedded setups to specifically
|
|
select the components of systemd they are interested in.
|
|
|
|
* Support for Linux systems lacking the kernel VT subsystem is
|
|
restored.
|
|
|
|
* configure's --with-rootdir= got renamed to
|
|
--with-rootprefix= to follow the naming used by udev and
|
|
kmod
|
|
|
|
* Unless specified otherwise we'll now install to /usr instead
|
|
of /usr/local by default.
|
|
|
|
* Processes with '@' in argv[0][0] are now excluded from the
|
|
final shut-down killing spree, following the logic explained
|
|
in:
|
|
http://www.freedesktop.org/wiki/Software/systemd/RootStorageDaemons
|
|
|
|
* All processes remaining in a service cgroup when we enter
|
|
the START or START_PRE states are now killed with
|
|
SIGKILL. That means it is no longer possible to spawn
|
|
background processes from ExecStart= lines (which was never
|
|
supported anyway, and bad style).
|
|
|
|
* New PropagateReloadTo=/PropagateReloadFrom= options to bind
|
|
reloading of units together.
|
|
|
|
Contributions from: Bill Nottingham, Daniel J. Walsh, Dave
|
|
Reisner, Dexter Morgan, Gregs Gregs, Jonathan Nieder, Kay
|
|
Sievers, Lennart Poettering, Michael Biebl, Michal Schmidt,
|
|
Michał Górny, Ran Benita, Thomas Jarosch, Tim Waugh, Tollef
|
|
Fog Heen, Tom Gundersen, Zbigniew Jędrzejewski-Szmek
|