blob: b869c076bcd71a9760bd36940336836f9cacdd0a [file] [log] [blame] [raw]
systemd System and Service Manager
CHANGES WITH 194:
* If /etc/vconsole.conf is non-existent or empty we will no
longer load any console font or key map at boot by
default. Instead the kernel defaults will be left
intact. This is definitely the right thing to do, as no
configuration should mean no configuration, and hard-coding
font names that are different on all archs is probably a bad
idea. Also, the kernel default key map and font should be
good enough for most cases anyway, and mostly identical to
the userspace fonts/key maps we previously overloaded them
with. If distributions want to continue to default to a
non-kernel font or key map they should ship a default
/etc/vconsole.conf with the appropriate contents.
Contributions from: Colin Walters, Daniel J Walsh, Dave
Reisner, Kay Sievers, Lennart Poettering, Lukas Nykryn, Tollef
Fog Heen, Tom Gundersen, Zbigniew Jędrzejewski-Szmek
CHANGES WITH 193:
* journalctl gained a new --cursor= switch to show entries
starting from the specified location in the journal.
* We now enforce a size limit on journal entry fields exported
with "-o json" in journalctl. Fields larger than 4K will be
assigned null. This can be turned off with --all.
* An (optional) journal gateway daemon is now available as
"systemd-journal-gatewayd.service". This service provides
access to the journal via HTTP and JSON. This functionality
will be used to implement live log synchronization in both
pull and push modes, but has various other users too, such
as easy log access for debugging of embedded devices. Right
now it is already useful to retrieve the journal via HTTP:
# systemctl start systemd-journal-gatewayd.service
# wget http://localhost:19531/entries
This will download the journal contents in a
/var/log/messages compatible format. The same as JSON:
# curl -H"Accept: application/json" http://localhost:19531/entries
This service is also accessible via a web browser where a
single static HTML5 app is served that uses the JSON logic
to enable the user to do some basic browsing of the
journal. This will be extended later on. Here's an example
screenshot of this app in its current state:
http://0pointer.de/public/journal-gatewayd
Contributions from: Kay Sievers, Lennart Poettering, Robert
Milasan, Tom Gundersen
CHANGES WITH 192:
* The bash completion logic is now available for journalctl
too.
* We don't mount the "cpuset" controller anymore together with
"cpu" and "cpuacct", as "cpuset" groups generally cannot be
started if no parameters are assigned to it. "cpuset" hence
broke code that assumed it it could create "cpu" groups and
just start them.
* journalctl -f will now subscribe to terminal size changes,
and line break accordingly.
Contributions from: Dave Reisner, Kay Sievers, Lennart
Poettering, Lukas Nykrynm, Mirco Tischler, Václav Pavlín
CHANGES WITH 191:
* nspawn will now create a symlink /etc/localtime in the
container environment, copying the host's timezone
setting. Previously this has been done via a bind mount, but
since symlinks cannot be bind mounted this has now been
changed to create/update the appropriate symlink.
* journalctl -n's line number argument is now optional, and
will default to 10 if omitted.
* journald will now log the maximum size the journal files may
take up on disk. This is particularly useful if the default
built-in logic of determining this parameter from the file
system size is used. Use "systemctl status
systemd-journald.service" to see this information.
* The multi-seat X wrapper tool has been stripped down. As X
is now capable of enumerating graphics devices via udev in a
seat-aware way the wrapper is not strictly necessary
anymore. A stripped down temporary stop-gap is still shipped
until the upstream display managers have been updated to
fully support the new X logic. Expect this wrapper to be
removed entirely in one of the next releases.
* HandleSleepKey= in logind.conf has been split up into
HandleSuspendKey= and HandleHibernateKey=. The old setting
is not available anymore. X11 and the kernel are
distuingishing between these keys and we should too. This
also means the inhibition lock for these keys has been split
into two.
Contributions from: Dave Airlie, Eelco Dolstra, Lennart
Poettering, Lukas Nykryn, Václav Pavlín
CHANGES WITH 190:
* Whenever a unit changes state we'll now log this to the
journal and show along the unit's own log output in
"systemctl status".
* ConditionPathIsMountPoint= can now properly detect bind
mount points too. (Previously, a bind mount of one file
system to another place in the same file system could not be
detected as mount, since they shared struct stat's st_dev
field.)
* We will now mount the cgroup controllers cpu, cpuacct,
cpuset and the controllers net_cls, net_prio together by
default.
* nspawn containers will now have a virtualized boot
ID. (i.e. /proc/sys/kernel/random/boot_id is now mounted
over with a randomized ID at container initialization). This
has the effect of making "journalctl -b" do the right thing
in a container.
* The JSON output journal serialization has been updated not
to generate "endless" list objects anymore, but rather one
JSON object per line. This is more in line how most JSON
parsers expect JSON objects. The new output mode
"json-pretty" has been added to provide similar output, but
neatly aligned for readability by humans.
* We dropped all explicit sync() invocations in the shutdown
code. The kernel does this implicitly anyway in the kernel
reboot() syscall. halt(8)'s -n option is now a compatibility
no-op.
* We now support virtualized reboot() in containers, as
supported by newer kernels. We will fall back to exit() if
CAP_SYS_REBOOT is not available to the container. Also,
nspawn makes use of this now and will actually reboot the
container if the containerized OS asks for that.
* journalctl will only show local log output by default
now. Use --merge (-m) to show remote log output, too.
* libsystemd-journal gained the new sd_journal_get_usage()
call to determine the current disk usage of all journal
files. This is exposed in the new "journalctl --disk-usage"
command.
* journald gained a new configuration setting SplitMode= in
journald.conf which may be used to control how user journals
are split off. See journald.conf(5) for details.
* A new condition type ConditionFileNotEmpty= has been added.
* tmpfiles' "w" lines now support file globbing, to write
multiple files at once.
* We added Python bindings for the journal submission
APIs. More Python APIs for a number of selected APIs will
likely follow. Note that we intend to add native bindings
only for the Python language, as we consider it common
enough to deserve bindings shipped within systemd. There are
various projects outside of systemd that provide bindings
for languages such as PHP or Lua.
* Many conditions will now resolve specifiers such as %i. In
addition, PathChanged= and related directives of .path units
now support specifiers as well.
* There's now a new RPM macro definition for the system preset
dir: %_presetdir.
* journald will now warn if it can't foward a message to the
syslog daemon because it's socket is full.
* timedated will no longer write or process /etc/timezone,
except on Debian. As we do not support late mounted /usr
anymore /etc/localtime always being a symlink is now safe,
and hence the information in /etc/timezone is not necessary
anymore.
* logind will now always reserve one VT for a text getty (VT6
by default). Previously if more than 6 X sessions where
started they took up all the VTs with auto-spawned gettys,
so that no text gettys were available anymore.
* udev will now automatically inform the btrfs kernel logic
about btrfs RAID components showing up. This should make
simple hotplug based btrfs RAID assembly work.
* PID 1 will now increase its RLIMIT_NOFILE to 64K by default
(but not for its children which will stay at the kernel
default). This should allow setups with a lot more listening
sockets.
* systemd will now always pass the configured timezone to the
kernel at boot. timedated will do the same when the timezone
is changed.
* logind's inhibition logic has been updated. By default,
logind will now handle the lid switch, the power and sleep
keys all the time, even in graphical sessions. If DEs want
to handle these events on their own they should take the new
handle-power-key, handle-sleep-key and handle-lid-switch
inhibitors during their runtime. A simple way to achiveve
that is to invoke the DE wrapped in an invocation of:
systemd-inhibit --what=handle-power-key:handle-sleep-key:handle-lid-switch ...
* Access to unit operations is now checked via SELinux taking
the unit file label and client process label into account.
* systemd will now notify the administrator in the journal
when he over-mounts a non-empty directory.
* There are new specifiers that are resolved in unit files,
for the host name (%H), the machine ID (%m) and the boot ID
(%b).
Contributions from: Allin Cottrell, Auke Kok, Brandon Philips,
Colin Guthrie, Colin Walters, Daniel J Walsh, Dave Reisner,
Eelco Dolstra, Jan Engelhardt, Kay Sievers, Lennart
Poettering, Lucas De Marchi, Lukas Nykryn, Mantas Mikulėnas,
Martin Pitt, Matthias Clasen, Michael Olbrich, Pierre Schmitz,
Shawn Landden, Thomas Hindoe Paaboel Andersen, Tom Gundersen,
Václav Pavlín, Yin Kangkai, Zbigniew Jędrzejewski-Szmek
CHANGES WITH 189:
* Support for reading structured kernel messages from
/dev/kmsg has now been added and is enabled by default.
* Support for reading kernel messages from /proc/kmsg has now
been removed. If you want kernel messages in the journal
make sure to run a recent kernel (>= 3.5) that supports
reading structured messages from /dev/kmsg (see
above). /proc/kmsg is now exclusive property of classic
syslog daemons again.
* The libudev API gained the new
udev_device_new_from_device_id() call.
* The logic for file system namespace (ReadOnlyDirectory=,
ReadWriteDirectoy=, PrivateTmp=) has been reworked not to
require pivot_root() anymore. This means fewer temporary
directories are created below /tmp for this feature.
* nspawn containers will now see and receive all submounts
made on the host OS below the root file system of the
container.
* Forward Secure Sealing is now supported for Journal files,
which provide cryptographical sealing of journal files so
that attackers cannot alter log history anymore without this
being detectable. Lennart will soon post a blog story about
this explaining it in more detail.
* There are two new service settings RestartPreventExitStatus=
and SuccessExitStatus= which allow configuration of exit
status (exit code or signal) which will be excepted from the
restart logic, resp. consider successful.
* journalctl gained the new --verify switch that can be used
to check the integrity of the structure of journal files and
(if Forward Secure Sealing is enabled) the contents of
journal files.
* nspawn containers will now be run with /dev/stdin, /dev/fd/
and similar symlinks pre-created. This makes running shells
as container init process a lot more fun.
* The fstab support can now handle PARTUUID= and PARTLABEL=
entries.
* A new ConditionHost= condition has been added to match
against the hostname (with globs) and machine ID. This is
useful for clusters where a single OS image is used to
provision a large number of hosts which shall run slightly
different sets of services.
* Services which hit the restart limit will now be placed in a
failure state.
Contributions from: Bertram Poettering, Dave Reisner, Huang
Hang, Kay Sievers, Lennart Poettering, Lukas Nykryn, Martin
Pitt, Simon Peeters, Zbigniew Jędrzejewski-Szmek
CHANGES WITH 188:
* When running in --user mode systemd will now become a
subreaper (PR_SET_CHILD_SUBREAPER). This should make the ps
tree a lot more organized.
* A new PartOf= unit dependency type has been introduced that
may be used to group services in a natural way.
* "systemctl enable" may now be used to enable instances of
services.
* journalctl now prints error log levels in red, and
warning/notice log levels in bright white. It also supports
filtering by log level now.
* cgtop gained a new -n switch (similar to top), to configure
the maximum number of iterations to run for. It also gained
-b, to run in batch mode (accepting no input).
* The suffix ".service" may now be ommited on most systemctl
command lines involving service unit names.
* There's a new bus call in logind to lock all sessions, as
well as a loginctl verb for it "lock-sessions".
* libsystemd-logind.so gained a new call sd_journal_perror()
that works similar to libc perror() but logs to the journal
and encodes structured information about the error number.
* /etc/crypttab entries now understand the new keyfile-size=
option.
* shutdown(8) now can send a (configurable) wall message when
a shutdown is cancelled.
* The mount propagation mode for the root file system will now
default to "shared", which is useful to make containers work
nicely out-of-the-box so that they receive new mounts from
the host. This can be undone locally by running "mount
--make-rprivate /" if needed.
* The prefdm.service file has been removed. Distributions
should maintain this unit downstream if they intend to keep
it around. However, we recommend writing normal unit files
for display managers instead.
* Since systemd is a crucial part of the OS we will now
default to a number of compiler switches that improve
security (hardening) such as read-only relocations, stack
protection, and suchlike.
* The TimeoutSec= setting for services is now split into
TimeoutStartSec= and TimeoutStopSec= to allow configuration
of individual time outs for the start and the stop phase of
the service.
Contributions from: Artur Zaprzala, Arvydas Sidorenko, Auke
Kok, Bryan Kadzban, Dave Reisner, David Strauss, Harald Hoyer,
Jim Meyering, Kay Sievers, Lennart Poettering, Mantas
Mikulėnas, Martin Pitt, Michal Schmidt, Michal Sekletar, Peter
Alfredsen, Shawn Landden, Simon Peeters, Terence Honles, Tom
Gundersen, Zbigniew Jędrzejewski-Szmek
CHANGES WITH 187:
* The journal and id128 C APIs are now fully documented as man
pages.
* Extra safety checks have been added when transitioning from
the initial RAM disk to the main system to avoid accidental
data loss.
* /etc/crypttab entries now understand the new keyfile-offset=
option.
* systemctl -t can now be used to filter by unit load state.
* The journal C API gained the new sd_journal_wait() call to
make writing synchronous journal clients easier.
* journalctl gained the new -D switch to show journals from a
specific directory.
* journalctl now displays a special marker between log
messages of two different boots.
* The journal is now explicitly flushed to /var via a service
systemd-journal-flush.service, rather than implicitly simply
by seeing /var/log/journal to be writable.
* journalctl (and the journal C APIs) can now match for much
more complex expressions, with alternatives and
disjunctions.
* When transitioning from the initial RAM disk to the main
system we will now kill all processes in a killing spree to
ensure no processes stay around by accident.
* Three new specifiers may be used in unit files: %u, %h, %s
resolve to the user name, user home directory resp. user
shell. This is useful for running systemd user instances.
* We now automatically rotate journal files if their data
object hash table gets a fill level > 75%. We also size the
hash table based on the configured maximum file size. This
together should lower hash collisions drastically and thus
speed things up a bit.
* journalctl gained the new "--header" switch to introspect
header data of journal files.
* A new setting SystemCallFilters= has been added to services
which may be used to apply blacklists or whitelists to
system calls. This is based on SECCOMP Mode 2 of Linux 3.5.
* nspawn gained a new --link-journal= switch (and quicker: -j)
to link the container journal with the host. This makes it
very easy to centralize log viewing on the host for all
guests while still keeping the journal files separated.
* Many bugfixes and optimizations
Contributions from: Auke Kok, Eelco Dolstra, Harald Hoyer, Kay
Sievers, Lennart Poettering, Malte Starostik, Paul Menzel, Rex
Tsai, Shawn Landden, Tom Gundersen, Ville Skyttä, Zbigniew
Jędrzejewski-Szmek
CHANGES WITH 186:
* Several tools now understand kernel command line arguments,
which are only read when run in an initial RAM disk. They
usually follow closely their normal counterparts, but are
prefixed with rd.
* There's a new tool to analyze the readahead files that are
automatically generated at boot. Use:
/usr/lib/systemd/systemd-readahead analyze /.readahead
* We now provide an early debug shell on tty9 if this enabled. Use:
systemctl enable debug-shell.service
* All plymouth related units have been moved into the Plymouth
package. Please make sure to upgrade your Plymouth version
as well.
* systemd-tmpfiles now supports getting passed the basename of
a configuration file only, in which case it will look for it
in all appropriate directories automatically.
* udevadm info now takes a /dev or /sys path as argument, and
does the right thing. Example:
udevadm info /dev/sda
udevadm info /sys/class/block/sda
* systemctl now prints a warning if a unit is stopped but a
unit that might trigger it continues to run. Example: a
service is stopped but the socket that activates it is left
running.
* "systemctl status" will now mention if the log output was
shortened due to rotation since a service has been started.
* The journal API now exposes functions to determine the
"cutoff" times due to rotation.
* journald now understands SIGUSR1 and SIGUSR2 for triggering
immediately flushing of runtime logs to /var if possible,
resp. for triggering immediate rotation of the journal
files.
* It is now considered an error if a service is attempted to
be stopped that is not loaded.
* XDG_RUNTIME_DIR now uses numeric UIDs instead of usernames.
* systemd-analyze now supports Python 3
* tmpfiles now supports cleaning up directories via aging
where the first level dirs are always kept around but
directories beneath it automatically aged. This is enabled
by prefixing the age field with '~'.
* Seat objects now expose CanGraphical, CanTTY properties
which is required to deal with very fast bootups where the
display manager might be running before the graphics drivers
completed initialization.
* Seat objects now expose a State property.
* We now include RPM macros for service enabling/disabling
based on the preset logic. We recommend RPM based
distributions to make use of these macros if possible. This
makes it simpler to reuse RPM spec files across
distributions.
* We now make sure that the collected systemd unit name is
always valid when services log to the journal via
STDOUT/STDERR.
* There's a new man page kernel-command-line(7) detailing all
command line options we understand.
* The fstab generator may now be disabled at boot by passing
fstab=0 on the kernel command line.
* A new kernel command line option modules-load= is now understood
to load a specific kernel module statically, early at boot.
* Unit names specified on the systemctl command line are now
automatically escaped as needed. Also, if file system or
device paths are specified they are automatically turned
into the appropriate mount or device unit names. Example:
systemctl status /home
systemctl status /dev/sda
* The SysVConsole= configuration option has been removed from
system.conf parsing.
* The SysV search path is no longer exported on the D-Bus
Manager object.
* The Names= option is been removed from unit file parsing.
* There's a new man page bootup(7) detailing the boot process.
* Every unit and every generator we ship with systemd now
comes with full documentation. The self-explanatory boot is
complete.
* A couple of services gained "systemd-" prefixes in their
name if they wrap systemd code, rather than only external
code. Among them fsck@.service which is now
systemd-fsck@.service.
* The HaveWatchdog property has been removed from the D-Bus
Manager object.
* systemd.confirm_spawn= on the kernel command line should now
work sensibly.
* There's a new man page crypttab(5) which details all options
we actually understand.
* systemd-nspawn gained a new --capability= switch to pass
additional capabilities to the container.
* timedated will now read known NTP implementation unit names
from /usr/lib/systemd/ntp-units.d/*.list,
systemd-timedated-ntp.target has been removed.
* journalctl gained a new switch "-b" that lists log data of
the current boot only.
* The notify socket is in the abstract namespace again, in
order to support daemons which chroot() at start-up.
* There is a new Storage= configuration option for journald
which allows configuration of where log data should go. This
also provides a way to disable journal logging entirely, so
that data collected is only forwarded to the console, the
kernel log buffer or another syslog implementation.
* Many bugfixes and optimizations
Contributions from: Auke Kok, Colin Guthrie, Dave Reisner,
David Strauss, Eelco Dolstra, Kay Sievers, Lennart Poettering,
Lukas Nykryn, Michal Schmidt, Michal Sekletar, Paul Menzel,
Shawn Landden, Tom Gundersen
CHANGES WITH 185:
* "systemctl help <unit>" now shows the man page if one is
available.
* Several new man pages have been added.
* MaxLevelStore=, MaxLevelSyslog=, MaxLevelKMsg=,
MaxLevelConsole= can now be specified in
journald.conf. These options allow reducing the amount of
data stored on disk or forwarded by the log level.
* TimerSlackNSec= can now be specified in system.conf for
PID1. This allows system-wide power savings.
Contributions from: Dave Reisner, Kay Sievers, Lauri Kasanen,
Lennart Poettering, Malte Starostik, Marc-Antoine Perennou,
Matthias Clasen
CHANGES WITH 184:
* logind is now capable of (optionally) handling power and
sleep keys as well as the lid switch.
* journalctl now understands the syntax "journalctl
/usr/bin/avahi-daemon" to get all log output of a specific
daemon.
* CapabilityBoundingSet= in system.conf now also influences
the capability bound set of usermode helpers of the kernel.
Contributions from: Daniel Drake, Daniel J. Walsh, Gert
Michael Kulyk, Harald Hoyer, Jean Delvare, Kay Sievers,
Lennart Poettering, Matthew Garrett, Matthias Clasen, Paul
Menzel, Shawn Landden, Tero Roponen, Tom Gundersen
CHANGES WITH 183:
* Note that we skipped 139 releases here in order to set the
new version to something that is greater than both udev's
and systemd's most recent version number.
* udev: all udev sources are merged into the systemd source tree now.
All future udev development will happen in the systemd tree. It
is still fully supported to use the udev daemon and tools without
systemd running, like in initramfs or other init systems. Building
udev though, will require the *build* of the systemd tree, but
udev can be properly *run* without systemd.
* udev: /lib/udev/devices/ are not read anymore; systemd-tmpfiles
should be used to create dead device nodes as workarounds for broken
subsystems.
* udev: RUN+="socket:..." and udev_monitor_new_from_socket() is
no longer supported. udev_monitor_new_from_netlink() needs to be
used to subscribe to events.
* udev: when udevd is started by systemd, processes which are left
behind by forking them off of udev rules, are unconditionally cleaned
up and killed now after the event handling has finished. Services or
daemons must be started as systemd services. Services can be
pulled-in by udev to get started, but they can no longer be directly
forked by udev rules.
* udev: the daemon binary is called systemd-udevd now and installed
in /usr/lib/systemd/. Standalone builds or non-systemd systems need
to adapt to that, create symlink, or rename the binary after building
it.
* libudev no longer provides these symbols:
udev_monitor_from_socket()
udev_queue_get_failed_list_entry()
udev_get_{dev,sys,run}_path()
The versions number was bumped and symbol versioning introduced.
* systemd-loginctl and systemd-journalctl have been renamed
to loginctl and journalctl to match systemctl.
* The config files: /etc/systemd/systemd-logind.conf and
/etc/systemd/systemd-journald.conf have been renamed to
logind.conf and journald.conf. Package updates should rename
the files to the new names on upgrade.
* For almost all files the license is now LGPL2.1+, changed
from the previous GPL2.0+. Exceptions are some minor stuff
of udev (which will be changed to LGPL2.1 eventually, too),
and the MIT licensed sd-daemon.[ch] library that is suitable
to be used as drop-in files.
* systemd and logind now handle system sleep states, in
particular suspending and hibernating.
* logind now implements a sleep/shutdown/idle inhibiting logic
suitable for a variety of uses. Soonishly Lennart will blog
about this in more detail.
* var-run.mount and var-lock.mount are no longer provided
(which prevously bind mounted these directories to their new
places). Distributions which have not converted these
directories to symlinks should consider stealing these files
from git history and add them downstream.
* We introduced the Documentation= field for units and added
this to all our shipped units. This is useful to make it
easier to explore the boot and the purpose of the various
units.
* All smaller setup units (such as
systemd-vconsole-setup.service) now detect properly if they
are run in a container and are skipped when
appropriate. This guarantees an entirely noise-free boot in
Linux container environments such as systemd-nspawn.
* A framework for implementing offline system updates is now
integrated, for details see:
http://freedesktop.org/wiki/Software/systemd/SystemUpdates
* A new service type Type=idle is available now which helps us
avoiding ugly interleaving of getty output and boot status
messages.
* There's now a system-wide CapabilityBoundingSet= option to
globally reduce the set of capabilities for the
system. This is useful to drop CAP_SYS_MKNOD, CAP_SYS_RAWIO,
CAP_NET_RAW, CAP_SYS_MODULE, CAP_SYS_TIME, CAP_SYS_PTRACE or
even CAP_NET_ADMIN system-wide for secure systems.
* There are now system-wide DefaultLimitXXX= options to
globally change the defaults of the various resource limits
for all units started by PID 1.
* Harald Hoyer's systemd test suite has been integrated into
systemd which allows easy testing of systemd builds in qemu
and nspawn. (This is really awesome! Ask us for details!)
* The fstab parser is now implemented as generator, not inside
of PID 1 anymore.
* systemctl will now warn you if .mount units generated from
/etc/fstab are out of date due to changes in fstab that
haven't been read by systemd yet.
* systemd is now suitable for usage in initrds. Dracut has
already been updated to make use of this. With this in place
initrds get a slight bit faster but primarily are much
easier to introspect and debug since "systemctl status" in
the host system can be used to introspect initrd services,
and the journal from the initrd is kept around too.
* systemd-delta has been added, a tool to explore differences
between user/admin configuration and vendor defaults.
* PrivateTmp= now affects both /tmp and /var/tmp.
* Boot time status messages are now much prettier and feature
proper english language. Booting up systemd has never been
so sexy.
* Read-ahead pack files now include the inode number of all
files to pre-cache. When the inode changes the pre-caching
is not attempted. This should be nicer to deal with updated
packages which might result in changes of read-ahead
patterns.
* We now temporaritly lower the kernel's read_ahead_kb variable
when collecting read-ahead data to ensure the kernel's
built-in read-ahead does not add noise to our measurements
of necessary blocks to pre-cache.
* There's now RequiresMountsFor= to add automatic dependencies
for all mounts necessary for a specific file system path.
* MountAuto= and SwapAuto= have been removed from
system.conf. Mounting file systems at boot has to take place
in systemd now.
* nspawn now learned a new switch --uuid= to set the machine
ID on the command line.
* nspawn now learned the -b switch to automatically search
for an init system.
* vt102 is now the default TERM for serial TTYs, upgraded from
vt100.
* systemd-logind now works on VT-less systems.
* The build tree has been reorganized. The individual
components now have directories of their own.
* A new condition type ConditionPathIsReadWrite= is now available.
* nspawn learned the new -C switch to create cgroups for the
container in other hierarchies.
* We now have support for hardware watchdogs, configurable in
system.conf.
* The scheduled shutdown logic now has a public API.
* We now mount /tmp as tmpfs by default, but this can be
masked and /etc/fstab can override it.
* Since udisks doesn't make use of /media anymore we are not
mounting a tmpfs on it anymore.
* journalctl gained a new --local switch to only interleave
locally generated journal files.
* We can now load the IMA policy at boot automatically.
* The GTK tools have been split off into a systemd-ui.
Contributions from: Andreas Schwab, Auke Kok, Ayan George,
Colin Guthrie, Daniel Mack, Dave Reisner, David Ward, Elan
Ruusamäe, Frederic Crozat, Gergely Nagy, Guillermo Vidal,
Hannes Reinecke, Harald Hoyer, Javier Jardón, Kay Sievers,
Lennart Poettering, Lucas De Marchi, Léo Gillot-Lamure,
Marc-Antoine Perennou, Martin Pitt, Matthew Monaco, Maxim
A. Mikityanskiy, Michael Biebl, Michael Olbrich, Michal
Schmidt, Nis Martensen, Patrick McCarty, Roberto Sassu, Shawn
Landden, Sjoerd Simons, Sven Anders, Tollef Fog Heen, Tom
Gundersen
CHANGES WITH 44:
* This is mostly a bugfix release
* Support optional initialization of the machine ID from the
KVM or container configured UUID.
* Support immediate reboots with "systemctl reboot -ff"
* Show /etc/os-release data in systemd-analyze output
* Many bugfixes for the journal, including endianess fixes and
ensuring that disk space enforcement works
* sd-login.h is C++ comptaible again
* Extend the /etc/os-release format on request of the Debian
folks
* We now refuse non-UTF8 strings used in various configuration
and unit files. This is done to ensure we don't pass invalid
data over D-Bus or expose it elsewhere.
* Register Mimo USB Screens as suitable for automatic seat
configuration
* Read SELinux client context from journal clients in a race
free fashion
* Reorder configuration file lookup order. /etc now always
overrides /run in order to allow the administrator to always
and unconditionally override vendor supplied or
automatically generated data.
* The various user visible bits of the journal now have man
pages. We still lack man pages for the journal API calls
however.
* We now ship all man pages in HTML format again in the
tarball.
Contributions from: Dave Reisner, Dirk Eibach, Frederic
Crozat, Harald Hoyer, Kay Sievers, Lennart Poettering, Marti
Raudsepp, Michal Schmidt, Shawn Landden, Tero Roponen, Thierry
Reding
CHANGES WITH 43:
* This is mostly a bugfix release
* systems lacking /etc/os-release are no longer supported.
* Various functionality updates to libsystemd-login.so
* Track class of PAM logins to distuingish greeters from
normal user logins.
Contributions from: Kay Sievers, Lennart Poettering, Michael
Biebl
CHANGES WITH 42:
* This is an important bugfix release for v41.
* Building man pages is now optional which should be useful
for those building systemd from git but unwilling to install
xsltproc.
* Watchdog support for supervising services is now usable. In
a future release support for hardware watchdogs
(i.e. /dev/watchdog) will be added building on this.
* Service start rate limiting is now configurable and can be
turned off per service. When a start rate limit is hit a
reboot can automatically be triggered.
* New CanReboot(), CanPowerOff() bus calls in systemd-logind.
Contributions from: Benjamin Franzke, Bill Nottingham,
Frederic Crozat, Lennart Poettering, Michael Olbrich, Michal
Schmidt, Michał Górny, Piotr Drąg
CHANGES WITH 41:
* The systemd binary is installed /usr/lib/systemd/systemd now;
An existing /sbin/init symlink needs to be adapted with the
package update.
* The code that loads kernel modules has been ported to invoke
libkmod directly, instead of modprobe. This means we do not
support systems with module-init-tools anymore.
* Watchdog support is now already useful, but still not
complete.
* A new kernel command line option systemd.setenv= is
understood to set system wide environment variables
dynamically at boot.
* We now limit the set of capabilities of systemd-journald.
* We now set SIGPIPE to ignore by default, since it only is
useful in shell pipelines, and has little use in general
code. This can be disabled with IgnoreSIPIPE=no in unit
files.
Contributions from: Benjamin Franzke, Kay Sievers, Lennart
Poettering, Michael Olbrich, Michal Schmidt, Tom Gundersen,
William Douglas
CHANGES WITH 40:
* This is mostly a bugfix release
* We now expose the reason why a service failed in the
"Result" D-Bus property.
* Rudimentary service watchdog support (will be completed over
the next few releases.)
* When systemd forks off in order execute some service we will
now immediately changes its argv[0] to reflect which process
it will execute. This is useful to minimize the time window
with a generic argv[0], which makes bootcharts more useful
Contributions from: Alvaro Soliverez, Chris Paulson-Ellis, Kay
Sievers, Lennart Poettering, Michael Olbrich, Michal Schmidt,
Mike Kazantsev, Ray Strode
CHANGES WITH 39:
* This is mostly a test release, but incorporates many
bugfixes.
* New systemd-cgtop tool to show control groups by their
resource usage.
* Linking against libacl for ACLs is optional again. If
disabled, support tracking device access for active logins
goes becomes unavailable, and so does access to the user
journals by the respective users.
* If a group "adm" exists, journal files are automatically
owned by them, thus allow members of this group full access
to the system journal as well as all user journals.
* The journal now stores the SELinux context of the logging
client for all entries.
* Add C++ inclusion guards to all public headers
* New output mode "cat" in the journal to print only text
messages, without any meta data like date or time.
* Include tiny X server wrapper as a temporary stop-gap to
teach XOrg udev display enumeration. This is used by display
managers such as gdm, and will go away as soon as XOrg
learned native udev hotplugging for display devices.
* Add new systemd-cat tool for executing arbitrary programs
with STDERR/STDOUT connected to the journal. Can also act as
BSD logger replacement, and does so by default.
* Optionally store all locally generated coredumps in the
journal along with meta data.
* systemd-tmpfiles learnt four new commands: n, L, c, b, for
writing short strings to files (for usage for /sys), and for
creating symlinks, character and block device nodes.
* New unit file option ControlGroupPersistent= to make cgroups
persistent, following the mechanisms outlined in
http://www.freedesktop.org/wiki/Software/systemd/PaxControlGroups
* Support multiple local RTCs in a sane way
* No longer monopolize IO when replaying readahead data on
rotating disks, since we might starve non-file-system IO to
death, since fanotify() will not see accesses done by blkid,
or fsck.
* Don't show kernel threads in systemd-cgls anymore, unless
requested with new -k switch.
Contributions from: Dan Horák, Kay Sievers, Lennart
Poettering, Michal Schmidt
CHANGES WITH 38:
* This is mostly a test release, but incorporates many
bugfixes.
* The git repository moved to:
git://anongit.freedesktop.org/systemd/systemd
ssh://git.freedesktop.org/git/systemd/systemd
* First release with the journal
http://0pointer.de/blog/projects/the-journal.html
* The journal replaces both systemd-kmsg-syslogd and
systemd-stdout-bridge.
* New sd_pid_get_unit() API call in libsystemd-logind
* Many systemadm clean-ups
* Introduce remote-fs-pre.target which is ordered before all
remote mounts and may be used to start services before all
remote mounts.
* Added Mageia support
* Add bash completion for systemd-loginctl
* Actively monitor PID file creation for daemons which exit in
the parent process before having finished writing the PID
file in the daemon process. Daemons which do this need to be
fixed (i.e. PID file creation must have finished before the
parent exits), but we now react a bit more gracefully to them.
* Add colourful boot output, mimicking the well-known output
of existing distributions.
* New option PassCredentials= for socket units, for
compatibility with a recent kernel ABI breakage.
* /etc/rc.local is now hooked in via a generator binary, and
thus will no longer act as synchronization point during
boot.
* systemctl list-unit-files now supports --root=.
* systemd-tmpfiles now understands two new commands: z, Z for
relabelling files according to the SELinux database. This is
useful to apply SELinux labels to specific files in /sys,
among other things.
* Output of SysV services is now forwarded to both the console
and the journal by default, not only just the console.
* New man pages for all APIs from libsystemd-login.
* The build tree got reorganized and a the build system is a
lot more modular allowing embedded setups to specifically
select the components of systemd they are interested in.
* Support for Linux systems lacking the kernel VT subsystem is
restored.
* configure's --with-rootdir= got renamed to
--with-rootprefix= to follow the naming used by udev and
kmod
* Unless specified otherwise we'll now install to /usr instead
of /usr/local by default.
* Processes with '@' in argv[0][0] are now excluded from the
final shut-down killing spree, following the logic explained
in:
http://www.freedesktop.org/wiki/Software/systemd/RootStorageDaemons
* All processes remaining in a service cgroup when we enter
the START or START_PRE states are now killed with
SIGKILL. That means it is no longer possible to spawn
background processes from ExecStart= lines (which was never
supported anyway, and bad style).
* New PropagateReloadTo=/PropagateReloadFrom= options to bind
reloading of units together.
Contributions from: Bill Nottingham, Daniel J. Walsh, Dave
Reisner, Dexter Morgan, Gregs Gregs, Jonathan Nieder, Kay
Sievers, Lennart Poettering, Michael Biebl, Michal Schmidt,
Michał Górny, Ran Benita, Thomas Jarosch, Tim Waugh, Tollef
Fog Heen, Tom Gundersen, Zbigniew Jędrzejewski-Szmek