NEWS revision d27893efdf652c6d85ea590fa0b7c2b88f817083
d657c51f14601d0235434ffb78cf6ac0f27cc83cLennart Poetteringsystemd System and Service Manager
220a21d38f675eb835f5758e3d23e896573aa5eaLennart Poettering
3dff3e00e044e2d53c76fa842b9a4759d4a50e69Kay SieversCHANGES WITH 210:
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * systemd will now relabel /dev after loading the SMACK policy
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering according to SMACK rules.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * A new unit file option AppArmoreProfile= has been added to
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering set the AppArmor profile for the processes of a unit.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * A new condition check ConditionArchitecture= has been added
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering to conditionalize units based on the system architecture, as
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering reported by uname()'s "machine" field.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * systemd-networkd now supports matching on the system
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering virtualization, architecture, kernel command line, host name
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering and machine ID.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * logind is now a lot more agressive when suspending the
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering machine due to a closed laptop lid. Instead of acting only
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering on the lid close action it will continously watch the lid
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering status and act on it. This is useful for laptops where the
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering power button is on the outside of the chassis so that it can
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering be reached whithout opening the lid (such as the Lenovo
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Yoga). On those machines logind will now immediately
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering resuspend the machine if the power button has been
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering accidentally pressed while the laptop was suspended and in a
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering backpack or similar.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * logind will now watch SW_DOCK switches and inhibit reaction
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering to the lid switch if it is pressed. This means that logind
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering will not suspend the machine anymore if the lid is closed
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering and the systemd is docked, if the laptop supports SW_DOCK
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering notifications via the input layer. Note that ACPI docking
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering stations do not generate this currently. Also note that this
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering logic is usually not fully sufficient and Desktop
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Environments should take a lid switch inhibitor lock when an
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering external display is connected, as systemd will not watch
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering this on its own.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * nspawn will now make use of the devices cgroup controller by
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering default, and only permit creation of and access to the usual
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering API device nodes like /dev/null or /dev/random, as well as
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering access to (but not creation of) the pty devices.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * We will now ship a default .network file for
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering systemd-networkd that automatically configures DHCP for
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering network interfaces created by nspawn's --network-veth or
3dff3e00e044e2d53c76fa842b9a4759d4a50e69Kay Sievers --network-bridge= switches.
3dff3e00e044e2d53c76fa842b9a4759d4a50e69Kay Sievers
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * systemd will now understand the usual M, K, G, T suffixes
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering according to SI conventions (i.e. to the base 1000) when
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering referring to throughput and hardware metrics. It will stay
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering with IEC conventions (i.e. to the base 1024) for software
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering metrics, according to what is customary according to
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Wikipedia. We explicitly document which base applies for
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering each configuration option.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * The DeviceAllow= setting in unit files now supports a syntax
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering to whitelist an entire group of devince node majors at once,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering based on the /proc/devices listing. For example, with the
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering string "char-pts" it is now possible to whitelist all
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering current and future pseudo-TTYs at once.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * sd-event learned a new "post" event source. Event sources of
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering this type are triggered by the dispatching of any event
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering source of a type that is not "post". This is useful for
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering implementing clean-up and check event sources that are
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering triggered by other work being done in the program.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * systemd-networkd is no longer statically enabled, but uses
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering the usual [Install] sections so that it can be
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering enabled/disabled using systemctl. It still is enabled by
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering default however.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * When creating a veth interface pair with systemd-nspawn the
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering host side will now be prefixed with "vb-" if
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering --network-bridge= is used, and with "ve-" if --network-veth
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering is used. This way it is easy to distuingish these cases on
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering the host, for example to apply different configuration to
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering them with systemd-networkd.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * The compatibility libraries for libsystemd-journal.so,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering libsystem-id128.so, libsystemd-login.so and
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering libsystemd-daemon.so do not make use of IFUNC
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering anymore. Instead we now build libsystemd.so multiple times
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering under these alternative names. This means that the footprint
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering is drastically increased, but given that these are
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering transitional compatibility libraries this shouldn't matter
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering much. This change has been made necessary to support the ARM
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering platform for these compatibility libraries, as the ARM
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering toolchain isn't really at the same level as the toolchain
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering for other archictures like x86 and does not support
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering IFUNC. Please make sure to use --enable-compat-libs only
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering during a transitional period!
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Contributions from: Andreas Fuchs, Armin K, Colin Walters,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Daniel Mack, Dave Reisner, David Herrmann, Djalal Harouni,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Holger Schurig, Jason A. Donenfeld, Jason St. John, Jasper
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering St. Pierre, Kay Sievers, Lennart Poettering, Łukasz Stelmach,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Marcel Holtmann, Michael Scherer, Michal Sekletar, Mike
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Gilbert, Samuli Suominen, Thomas Bächler, Thomas Hindoe
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Paaboel Andersen, Tom Gundersen, Umut Tezduyar Lindskog,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering Zbigniew Jędrzejewski-Szmek
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering -- Berlin, 2014-02-24
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart PoetteringCHANGES WITH 209:
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * A new component "systemd-networkd" has been added that can
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering be used to configure local network interfaces statically or
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering via DHCP. It is capable of bringing up bridges, VLANs, and
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering bonding. Currently, no hook-ups for interactive network
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering configuration are provided. Use this for your initrd,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering container, embedded, or server setup if you need a simple,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering yet powerful, network configuration solution. This
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering configuration subsystem is quite nifty, as it allows wildcard
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering hotplug matching in interfaces. For example, with a single
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering configuration snippet, you can configure that all Ethernet
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering interfaces showing up are automatically added to a bridge,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering or similar. It supports link-sensing and more.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * A new tool "systemd-socket-proxyd" has been added which can
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering act as a bidirectional proxy for TCP sockets. This is
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering useful for adding socket activation support to services that
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering do not actually support socket activation, including virtual
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering machines and the like.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * Add a new tool to save/restore rfkill state on
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering shutdown/boot.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * Save/restore state of keyboard backlights in addition to
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering display backlights on shutdown/boot.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * udev learned a new SECLABEL{} construct to label device
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering nodes with a specific security label when they appear. For
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering now, only SECLABEL{selinux} is supported, but the syntax is
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering prepared for additional security frameworks.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * udev gained a new scheme to configure link-level attributes
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering from files in /etc/systemd/network/*.link. These files can
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering match against MAC address, device path, driver name and type,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering and will apply attributes like the naming policy, link speed,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering MTU, duplex settings, Wake-on-LAN settings, MAC address, MAC
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering address assignment policy (randomized, ...).
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * The configuration of network interface naming rules for
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering "permanent interface names" has changed: a new NamePolicy=
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering setting in the [Link] section of .link files determines the
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering priority of possible naming schemes (onboard, slot, mac,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering path). The default value of this setting is determined by
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering /usr/lib/net/links/99-default.link. Old
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering 80-net-name-slot.rules udev configuration file has been
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering removed, so local configuration overriding this file should
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering be adapated to override 99-default.link instead.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * When the User= switch is used in a unit file, also
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering initialize $SHELL= based on the user database entry.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * systemd no longer depends on libdbus. All communication is
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering now done with sd-bus, systemd's low-level bus library
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering implementation.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * kdbus support has been added to PID 1 itself. When kdbus is
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering enabled, this causes PID 1 to set up the system bus and
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering enable support for a new ".busname" unit type that
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering encapsulates bus name activation on kdbus. It works a little
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering bit like ".socket" units, except for bus names. A new
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering generator has been added that converts classic dbus1 service
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering activation files automatically into native systemd .busname
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering and .service units.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * sd-bus: add a light-weight vtable implementation that allows
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering defining objects on the bus with a simple static const
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering vtable array of its methods, signals and properties.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * systemd will not generate or install static dbus
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering introspection data anymore to /usr/share/dbus-1/interfaces,
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering as the precise format of these files is unclear, and
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering nothing makes use of it.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * A proxy daemon is now provided to proxy clients connecting
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering via classic D-Bus AF_UNIX sockets to kdbus, to provide full
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering compatibility with classic D-Bus.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * A bus driver implementation has been added that supports the
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering classic D-Bus bus driver calls on kdbus, also for
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering compatibility purposes.
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering * A new API "sd-event.h" has been added that implements a
24a2bf4c9b0917231dd4f9b4289eabd46c382d3fLennart Poettering minimal event loop API built around epoll. It provides a
3058e017fced6d5c8712e10c8c1477421bc1e960Thadeu Lima de Souza Cascardo couple of features that direct epoll usage is lacking:
3058e017fced6d5c8712e10c8c1477421bc1e960Thadeu Lima de Souza Cascardo prioritization of events, scales to large numbers of timer
3058e017fced6d5c8712e10c8c1477421bc1e960Thadeu Lima de Souza Cascardo events, per-event timer slack (accuracy), system-wide
3058e017fced6d5c8712e10c8c1477421bc1e960Thadeu Lima de Souza Cascardo coalescing of timer events, exit handlers, watchdog
3058e017fced6d5c8712e10c8c1477421bc1e960Thadeu Lima de Souza Cascardo supervision support using systemd's sd_notify() API, child
3058e017fced6d5c8712e10c8c1477421bc1e960Thadeu Lima de Souza Cascardo process handling.
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers * A new API "sd-rntl.h" has been added that provides an API
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers around the route netlink interface of the kernel, similar in
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers style to "sd-bus.h".
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers * A new API "sd-dhcp-client.h" has been added that provides a
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers small DHCPv4 client-side implementation. This is used by
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers "systemd-networkd".
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers * There is a new kernel command line option
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers "systemd.restore_state=0|1". When set to "0", none of the
71449cafa1f3aecad6fc755ae5e571eddf0bbd02Kay Sievers systemd tools will restore saved runtime state to hardware
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt devices. More specifically, the rfkill and backlight states
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers are not restored.
45df8656ebb1b0559a75993d1508fc61c2d39829Jan Engelhardt
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers * The FsckPassNo= compatibility option in mount/service units
4196a3ead3cfb823670d225eefcb3e60e34c7d95Kay Sievers has been removed. The fstab generator will now add the
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering necessary dependencies automatically, and does not require
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering PID1's support for that anymore.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * journalctl gained a new switch, --list-boots, that lists
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering recent boots with their times and boot IDs.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * The various tools like systemctl, loginctl, timedatectl,
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt busctl, systemd-run, ... have gained a new switch "-M" to
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering connect to a specific, local OS container (as direct
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering connection, without requiring SSH). This works on any
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering container that is registered with machined, such as those
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering created by libvirt-lxc or nspawn.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
71449cafa1f3aecad6fc755ae5e571eddf0bbd02Kay Sievers * systemd-run and systemd-analyze also gained support for "-H"
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering to connect to remote hosts via SSH. This is particularly
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering useful for systemd-run because it enables queuing of jobs
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering onto remote systems.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * machinectl gained a new command "login" to open a getty
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering login in any local container. This works with any container
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering that is registered with machined (such as those created by
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering libvirt-lxc or nspawn), and which runs systemd inside.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * machinectl gained a new "reboot" command that may be used to
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering trigger a reboot on a specific container that is registered
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering with machined. This works on any container that runs an init
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering system of some kind.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * systemctl gained a new "list-timers" command to print a nice
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering listing of installed timer units with the times they elapse
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering next.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt * Alternative reboot() parameters may now be specified on the
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering "systemctl reboot" command line and are passed to the
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering reboot() system call.
c54bed5d515771c21250b8e0c052cb6600e21d37Mantas Mikulėnas
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * systemctl gained a new --job-mode= switch to configure the
cd14eda3212f9109c98a77cd5fee4168010d80daLennart Poettering mode to queue a job with. This is a more generic version of
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt --fail, --irreversible, and --ignore-dependencies, which are
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt still available but not advertised anymore.
cd14eda3212f9109c98a77cd5fee4168010d80daLennart Poettering
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt * /etc/systemd/system.conf gained new settings to configure
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt various default timeouts of units, as well as the default
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering start limit interval and burst. These may still be overridden
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering within each Unit.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * PID1 will now export on the bus profile data of the security
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering policy upload process (such as the SELinux policy upload to
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering the kernel).
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * journald: when forwarding logs to the console, include
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering timestamps (following the setting in
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering /sys/module/printk/parameters/time).
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt * OnCalendar= in timer units now understands the special
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering strings "yearly" and "annually". (Both are equivalent)
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * The accuracy of timer units is now configurable with the new
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering AccuracySec= setting. It defaults to 1min.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
45df8656ebb1b0559a75993d1508fc61c2d39829Jan Engelhardt * A new dependency type JoinsNamespaceOf= has been added that
71449cafa1f3aecad6fc755ae5e571eddf0bbd02Kay Sievers allows running two services within the same /tmp and network
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering namespace, if PrivateNetwork= or PrivateTmp= are used.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * A new command "cat" has been added to systemctl. It outputs
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering the original unit file of a unit, and concatenates the
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering contents of additional "drop-in" unit file snippets, so that
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering the full configuration is shown.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * systemctl now supports globbing on the various "list-xyz"
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering commands, like "list-units" or "list-sockets", as well as on
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering those commands which take multiple unit names.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * journalctl's --unit= switch gained support for globbing.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * All systemd daemons now make use of the watchdog logic so
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering that systemd automatically notices when they hang.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * If the $container_ttys environment variable is set,
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering getty-generator will automatically spawn a getty for each
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering listed tty. This is useful for container managers to request
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering login gettys to be spawned on as many ttys as needed.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * %h, %s, %U specifier support is not available anymore when
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering used in unit files for PID 1. This is because NSS calls are
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering not safe from PID 1. They stay available for --user
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering instances of systemd, and as special case for the root user.
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * loginctl gained a new "--no-legend" switch to turn off output
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering of the legend text.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * The "sd-login.h" API gained three new calls:
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering sd_session_is_remote(), sd_session_get_remote_user(),
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering sd_session_get_remote_host() to query information about
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering remote sessions.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * The udev hardware database now also carries vendor/product
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering information of SDIO devices.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * The "sd-daemon.h" API gained a new sd_watchdog_enabled() to
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering determine whether watchdog notifications are requested by
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering the system manager.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * Socket-activated per-connection services now include a
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering short description of the connection parameters in the
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering description.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * tmpfiles gained a new "--boot" option. When this is not used,
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering only lines where the command character is not suffixed with
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering "!" are executed. When this option is specified, those
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering options are executed too. This partitions tmpfiles
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering directives into those that can be safely executed at any
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering time, and those which should be run only at boot (for
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering example, a line that creates /run/nologin).
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * A new API "sd-resolve.h" has been added which provides a simple
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering asynchronous wrapper around glibc NSS host name resolution
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering calls, such as getaddrinfo(). In contrast to glibc's
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering getaddrinfo_a(), it does not use signals. In contrast to most
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering other asynchronous name resolution libraries, this one does
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering not reimplement DNS, but reuses NSS, so that alternate
71449cafa1f3aecad6fc755ae5e571eddf0bbd02Kay Sievers host name resolution systems continue to work, such as mDNS,
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering LDAP, etc. This API is based on libasyncns, but it has been
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering cleaned up for inclusion in systemd.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * The APIs "sd-journal.h", "sd-login.h", "sd-id128.h",
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering "sd-daemon.h" are no longer found in individual libraries
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering libsystemd-journal.so, libsystemd-login.so,
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt libsystemd-id128.so, libsystemd-daemon.so. Instead, we have
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt merged them into a single library, libsystemd.so, which
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt provides all symbols. The reason for this is cyclic
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering dependencies, as these libraries tend to use each other's
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering symbols. So far, we've managed to workaround that by linking
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering a copy of a good part of our code into each of these
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering libraries again and again, which, however, makes certain
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering things hard to do, like sharing static variables. Also, it
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering substantially increases footprint. With this change, there
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt is only one library for the basic APIs systemd
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt provides. Also, "sd-bus.h", "sd-memfd.h", "sd-event.h",
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering "sd-rtnl.h", "sd-resolve.h", "sd-utf8.h" are found in this
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt library as well, however are subject to the --enable-kdbus
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering switch (see below). Note that "sd-dhcp-client.h" is not part
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering of this library (this is because it only consumes, never
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering provides, services of/to other APIs). To make the transition
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering easy from the separate libraries to the unified one, we
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering provide the --enable-compat-libs compile-time switch which
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering will generate stub libraries that are compatible with the
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering old ones but redirect all calls to the new one.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * All of the kdbus logic and the new APIs "sd-bus.h",
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering "sd-memfd.h", "sd-event.h", "sd-rtnl.h", "sd-resolve.h",
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering and "sd-utf8.h" are compile-time optional via the
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering "--enable-kdbus" switch, and they are not compiled in by
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering default. To make use of kdbus, you have to explicitly enable
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt the switch. Note however, that neither the kernel nor the
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering userspace API for all of this is considered stable yet. We
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering want to maintain the freedom to still change the APIs for
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering now. By specifying this build-time switch, you acknowledge
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering that you are aware of the instability of the current
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering APIs.
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering
04e91da2cfdfb7153218be7a77c885f1c23d3fd7Lennart Poettering * Also, note that while kdbus is pretty much complete,
4c0d13bdd5ef971a3003899064af1717c8960beeLennart Poettering it lacks one thing: proper policy support. This means you
4c0d13bdd5ef971a3003899064af1717c8960beeLennart Poettering can build a fully working system with all features; however,
4c0d13bdd5ef971a3003899064af1717c8960beeLennart Poettering it will be highly insecure. Policy support will be added in
4c0d13bdd5ef971a3003899064af1717c8960beeLennart Poettering one of the next releases, at the same time that we will
4c0d13bdd5ef971a3003899064af1717c8960beeLennart Poettering declare the APIs stable.
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering * When the kernel command-line argument "kdbus" is specified,
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering systemd will automatically load the kdbus.ko kernel module. At
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering this stage of development, it is only useful for testing kdbus
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering and should not be used in production. Note: if "--enable-kdbus"
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering is specified, and the kdbus.ko kernel module is available, and
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering "kdbus" is added to the kernel command line, the entire system
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering runs with kdbus instead of dbus-daemon, with the above mentioned
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering problem of missing the system policy enforcement. Also a future
dc1d6c02fcf55bb7dac918d0ed3bd3e2a3d67525Lennart Poettering version of kdbus.ko or a newer systemd will not be compatible with
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering each other, and will unlikely be able to boot the machine if only
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering one of them is updated.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
69beda1f75070b36d0562e4050cd567bf2da5a87Kay Sievers * systemctl gained a new "import-environment" command which
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering uploads the caller's environment (or parts thereof) into the
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt service manager so that it is inherited by services started
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering by the manager. This is useful to upload variables like
c9679c652b3c31f2510e8805d81630680ebc7e95Lennart Poettering $DISPLAY into the user service manager.
c9679c652b3c31f2510e8805d81630680ebc7e95Lennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * A new PrivateDevices= switch has been added to service units
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt which allows running a service with a namespaced /dev
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering directory that does not contain any device nodes for
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering physical devices. More specifically, it only includes devices
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering such as /dev/null, /dev/urandom, and /dev/zero which are API
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering entry points.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * logind has been extended to support behaviour like VT
69beda1f75070b36d0562e4050cd567bf2da5a87Kay Sievers switching on seats that do not support a VT. This makes
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering multi-session available on seats that are not the first seat
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt (seat0), and on systems where kernel support for VTs has
c9679c652b3c31f2510e8805d81630680ebc7e95Lennart Poettering been disabled at compile-time.
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt
c9679c652b3c31f2510e8805d81630680ebc7e95Lennart Poettering * If a process holds a delay lock for system sleep or shutdown
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering and fails to release it in time, we will now log its
69beda1f75070b36d0562e4050cd567bf2da5a87Kay Sievers identity. This makes it easier to identify processes that
69beda1f75070b36d0562e4050cd567bf2da5a87Kay Sievers cause slow suspends or power-offs.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * When parsing /etc/crypttab, support for a new key-slot=
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering option as supported by Debian is added. It allows indicating
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering which LUKS slot to use on disk, speeding up key loading.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek * The sd_journald_sendv() API call has been checked and
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek officially declared to be async-signal-safe so that it may
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering be invoked from signal handlers for logging purposes.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * Boot-time status output is now enabled automatically after a
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek short timeout if boot does not progress, in order to give
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering the user an indication what she or he is waiting for.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * The boot-time output has been improved to show how much time
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek remains until jobs expire.
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * The KillMode= switch in service units gained a new possible
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering value "mixed". If set, and the unit is shut down, then the
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering initial SIGTERM signal is sent only to the main daemon
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering process, while the following SIGKILL signal is sent to
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek all remaining processes of the service.
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek * When a scope unit is registered, a new property "Controller"
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek may be set. If set to a valid bus name, systemd will send a
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering RequestStop() signal to this name when it would like to shut
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering down the scope. This may be used to hook manager logic into
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering the shutdown logic of scope units. Also, scope units may now
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering be put in a special "abandoned" state, in which case the
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering manager process which created them takes no further
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering responsibilities for it.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * When reading unit files, systemd will now verify
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering the access mode of these files, and warn about certain
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering suspicious combinations. This has been added to make it
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering easier to track down packaging bugs where unit files are
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering marked executable or world-writable.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * systemd-nspawn gained a new "--setenv=" switch to set
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering container-wide environment variables. The similar option in
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering systemd-activate was renamed from "--environment=" to
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering "--setenv=" for consistency.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * systemd-nspawn has been updated to create a new kdbus domain
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering for each container that is invoked, thus allowing each
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering container to have its own set of system and user buses,
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering independent of the host.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * systemd-nspawn gained a new --drop-capability= switch to run
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering the container with less capabilities than the default. Both
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering --drop-capability= and --capability= now take the special
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering string "all" for dropping or keeping all capabilities.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * systemd-nspawn gained new switches for executing containers
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering with specific SELinux labels set.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * systemd-nspawn gained a new --quiet switch to not generate
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering any additional output but the container's own console
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering output.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * systemd-nspawn gained a new --share-system switch to run a
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering container without PID namespacing enabled.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * systemd-nspawn gained a new --register= switch to control
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering whether the container is registered with systemd-machined or
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering not. This is useful for containers that do not run full
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering OS images, but only specific apps.
68dd0956ef9d607e6ff9aea15883a2c290a33c2aTom Gundersen
68dd0956ef9d607e6ff9aea15883a2c290a33c2aTom Gundersen * systemd-nspawn gained a new --keep-unit which may be used
68dd0956ef9d607e6ff9aea15883a2c290a33c2aTom Gundersen when invoked as the only program from a service unit, and
68dd0956ef9d607e6ff9aea15883a2c290a33c2aTom Gundersen results in registration of the unit service itself in
68dd0956ef9d607e6ff9aea15883a2c290a33c2aTom Gundersen systemd-machined, instead of a newly opened scope unit.
68dd0956ef9d607e6ff9aea15883a2c290a33c2aTom Gundersen
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * systemd-nspawn gained a new --network-interface= switch for
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek moving arbitrary interfaces to the container. The new
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering --network-veth switch creates a virtual Ethernet connection
69beda1f75070b36d0562e4050cd567bf2da5a87Kay Sievers between host and container. The new --network-bridge=
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering switch then allows assigning the host side of this virtual
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering Ethernet connection to a bridge device.
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering * systemd-nspawn gained a new --personality= switch for
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering setting the kernel personality for the container. This is
8d0e0ddda6501479eb69164687c83c1a7667b33aJan Engelhardt useful when running a 32bit container on a 64bit host. A
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering similar option Personality= is now also available in service
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering units.
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering * logind will now also track a "Desktop" identifier for each
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering session which encodes the desktop environment of it. This is
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering useful for desktop environments that want to identify
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering multiple running sessions of itself easily.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * A new SELinuxContext= setting for service units has been
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering added that allows setting a specific SELinux execution
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering context for a service.
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * Most systemd client tools will now honour $SYSTEMD_LESS for
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering settings of the "less" pager. By default, these tools will
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering override $LESS to allow certain operations to work, such as
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering jump-to-the-end. With $SYSTEMD_LESS, it is possible to
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering influence this logic.
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering * systemd's "seccomp" hook-up has been changed to make use of
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering the libseccomp library instead of using its own
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering implementation. This has benefits for portability among
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering other things.
8e7acf67b278e47cff0f849780365f8b1a824189Lennart Poettering
6936cd8926b6935364874b3701e86fe823e8c4ceLennart Poettering * For usage together with SystemCallFilter=, a new
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering SystemCallErrorNumber= setting has been introduced that
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering allows configuration of a system error number to return on
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering filtered system calls, instead of immediately killing the
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering process. Also, SystemCallArchitectures= has been added to
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering limit access to system calls of a particular architecture
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering (in order to turn off support for unused secondary
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering architectures). There is also a global
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering SystemCallArchitectures= setting in system.conf now to turn
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering off support for non-native system calls system-wide.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * systemd requires a kernel with a working name_to_handle_at(),
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering please see the kernel config requirements in the README file.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Contributions from: Adam Williamson, Alex Jia, Anatol Pomozov,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Ansgar Burchardt, AppleBloom, Auke Kok, Bastien Nocera,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Chengwei Yang, Christian Seiler, Colin Guthrie, Colin Walters,
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek Cristian Rodríguez, Daniel Buch, Daniele Medri, Daniel J
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Walsh, Daniel Mack, Dan McGee, Dave Reisner, David Coppa,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering David Herrmann, David Strauss, Djalal Harouni, Dmitry Pisklov,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Elia Pinto, Florian Weimer, George McCollister, Goffredo
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Baroncelli, Greg Kroah-Hartman, Hendrik Brueckner, Igor
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Zhbanov, Jan Engelhardt, Jan Janssen, Jason A. Donenfeld,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Jason St. John, Jasper St. Pierre, Jóhann B. Guðmundsson, Jose
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Ignacio Naranjo, Karel Zak, Kay Sievers, Kristian Høgsberg,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Lennart Poettering, Lubomir Rintel, Lukas Nykryn, Lukasz
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Skalski, Łukasz Stelmach, Luke Shumaker, Mantas Mikulėnas,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Marc-Antoine Perennou, Marcel Holtmann, Marcos Felipe Rasia de
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Mello, Marko Myllynen, Martin Pitt, Matthew Monaco, Michael
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Marineau, Michael Scherer, Michał Górny, Michal Sekletar,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Michele Curti, Oleksii Shevchuk, Olivier Brunel, Patrik Flykt,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Pavel Holica, Raudi, Richard Marko, Ronny Chevalier, Sébastien
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Luttringer, Sergey Ptashnick, Shawn Landden, Simon Peeters,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Stefan Beller, Susant Sahani, Sylvain Plantefeve, Sylvia Else,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Tero Roponen, Thomas Bächler, Thomas Hindoe Paaboel Andersen,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Tom Gundersen, Umut Tezduyar Lindskog, Unai Uribarri, Václav
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Pavlín, Vincent Batts, WaLyong Cho, William Giokas, Yang
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Zhiyong, Yin Kangkai, Yuxuan Shui, Zbigniew Jędrzejewski-Szmek
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering -- Berlin, 2014-02-20
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart PoetteringCHANGES WITH 208:
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * logind has gained support for facilitating privileged input
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering and drm device access for unprivileged clients. This work is
70a44afee385c4afadaab9a002b3f9dd44aedf4aJan Engelhardt useful to allow Wayland display servers (and similar
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering programs, such as kmscon) to run under the user's ID and
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering access input and drm devices which are normally
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering protected. When this is used (and the kernel is new enough)
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering logind will "mute" IO on the file descriptors passed to
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Wayland as long as it is in the background and "unmute" it
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering if it returns into the foreground. This allows secure
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering session switching without allowing background sessions to
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering eavesdrop on input and display data. This also introduces
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering session switching support if VT support is turned off in the
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering kernel, and on seats that are not seat0.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * A new kernel command line option luks.options= is understood
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering now which allows specifiying LUKS options for usage for LUKS
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering encrypted partitions specified with luks.uuid=.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
b8bde11658366290521e3d03316378b482600323Jan Engelhardt * tmpfiles.d(5) snippets may now use specifier expansion in
b8bde11658366290521e3d03316378b482600323Jan Engelhardt path names. More specifically %m, %b, %H, %v, are now
b8bde11658366290521e3d03316378b482600323Jan Engelhardt replaced by the local machine id, boot id, hostname, and
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering kernel version number.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * A new tmpfiles.d(5) command "m" has been introduced which
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering may be used to change the owner/group/access mode of a file
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering or directory if it exists, but do nothing if it doesn't.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * This release removes high-level support for the
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering MemorySoftLimit= cgroup setting. The underlying kernel
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering cgroup attribute memory.soft_limit= is currently badly
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering designed and likely to be removed from the kernel API in its
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering current form, hence we shouldn't expose it for now.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * The memory.use_hierarchy cgroup attribute is now enabled for
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering all cgroups systemd creates in the memory cgroup
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering hierarchy. This option is likely to be come the built-in
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering default in the kernel anyway, and the non-hierarchial mode
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering never made much sense in the intrinsically hierarchial
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering cgroup system.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * A new field _SYSTEMD_SLICE= is logged along with all journal
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering messages containing the slice a message was generated
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering from. This is useful to allow easy per-customer filtering of
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering logs among other things.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * systemd-journald will no longer adjust the group of journal
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering files it creates to the "systemd-journal" group. Instead we
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering rely on the journal directory to be owned by the
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering "systemd-journal" group, and its setgid bit set, so that the
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering kernel file system layer will automatically enforce that
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering journal files inherit this group assignment. The reason for
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering this change is that we cannot allow NSS look-ups from
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering journald which would be necessary to resolve
b8bde11658366290521e3d03316378b482600323Jan Engelhardt "systemd-journal" to a numeric GID, because this might
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering create deadlocks if NSS involves synchronous queries to
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering other daemons (such as nscd, or sssd) which in turn are
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering logging clients of journald and might block on it, which
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering would then dead lock. A tmpfiles.d(5) snippet included in
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering systemd will make sure the setgid bit and group are
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering properly set on the journal directory if it exists on every
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering boot. However, we recommend adjusting it manually after
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering upgrades too (or from RPM scriptlets), so that the change is
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering not delayed until next reboot.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * Backlight and random seed files in /var/lib/ have moved into
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering the /var/lib/systemd/ directory, in order to centralize all
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering systemd generated files in one directory.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * Boot time performance measurements (as displayed by
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering "systemd-analyze" for example) will now read ACPI 5.0 FPDT
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering performance information if that's available to determine how
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering much time BIOS and boot loader initialization required. With
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering a sufficiently new BIOS you hence no longer need to boot
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering with Gummiboot to get access to such information.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Contributions from: Andrey Borzenkov, Chen Jie, Colin Walters,
b8bde11658366290521e3d03316378b482600323Jan Engelhardt Cristian Rodríguez, Dave Reisner, David Herrmann, David
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Mackey, David Strauss, Eelco Dolstra, Evan Callicoat, Gao
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering feng, Harald Hoyer, Jimmie Tauriainen, Kay Sievers, Lennart
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Poettering, Lukas Nykryn, Mantas Mikulėnas, Martin Pitt,
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering Michael Scherer, Michał Górny, Mike Gilbert, Patrick McCarty,
b8bde11658366290521e3d03316378b482600323Jan Engelhardt Sebastian Ott, Tom Gundersen, Zbigniew Jędrzejewski-Szmek
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering -- Berlin, 2013-10-02
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan EngelhardtCHANGES WITH 207:
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * The Restart= option for services now understands a new
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering on-watchdog setting, which will restart the service
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering automatically if the service stops sending out watchdog keep
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering alive messages (as configured with WatchdogSec=).
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * The getty generator (which is responsible for bringing up a
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering getty on configured serial consoles) will no longer only
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering start a getty on the primary kernel console but on all
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering others, too. This makes the order in which console= is
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering specified on the kernel command line less important.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * libsystemd-logind gained a new sd_session_get_vt() call to
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering retrieve the VT number of a session.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * If the option "tries=0" is set for an entry of /etc/crypttab
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering its passphrase is queried indefinitely instead of any
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering maximum number of tries.
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering * If a service with a configure PID file terminates its PID
51c61cda1a542c9e999bfdc6aab4a029c0ae7f5aLennart Poettering file will now be removed automatically if it still exists
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering afterwards. This should put an end to stale PID files.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * systemd-run will now also take relative binary path names
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering for execution and no longer insists on absolute paths.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * InaccessibleDirectories= and ReadOnlyDirectories= now take
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering paths that are optionally prefixed with "-" to indicate that
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering it should not be considered a failure if they don't exist.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * journalctl -o (and similar commands) now understands a new
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering output mode "short-precise", it is similar to "short" but
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering shows timestamps with usec accuracy.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * The option "discard" (as known from Debian) is now
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering synonymous to "allow-discards" in /etc/crypttab. In fact,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering "discard" is preferred now (since it is easier to remember
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering and type).
f1721625e7145977ba705e169580f2eb0002600cNis Martensen
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * Some licensing clean-ups were made, so that more code is now
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering LGPL-2.1 licensed than before.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * A minimal tool to save/restore the display backlight
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering brightness across reboots has been added. It will store the
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering backlight setting as late as possible at shutdown, and
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering restore it as early as possible during reboot.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
22e7062d749c69d7edfcd52ef7cc6ec005e862d5David Herrmann * A logic to automatically discover and enable home and swap
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering partitions on GPT disks has been added. With this in place
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering /etc/fstab becomes optional for many setups as systemd can
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering discover certain partitions located on the root disk
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering automatically. Home partitions are recognized under their
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering GPT type ID 933ac7e12eb44f13b8440e14e2aef915. Swap
b8bde11658366290521e3d03316378b482600323Jan Engelhardt partitions are recognized under their GPT type ID
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering 0657fd6da4ab43c484e50933c84b4f4f.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * systemd will no longer pass any environment from the kernel
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering or initrd to system services. If you want to set an
b8bde11658366290521e3d03316378b482600323Jan Engelhardt environment for all services, do so via the kernel command
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering line systemd.setenv= assignment.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * The systemd-sysctl tool no longer natively reads the file
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering /etc/sysctl.conf. If desired, the file should be symlinked
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering from /etc/sysctl.d/99-sysctl.conf. Apart from providing
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering legacy support by a symlink rather than built-in code, it
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering also makes the otherwise hidden order of application of the
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering different files visible. (Note that this partly reverts to a
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering pre-198 application order of sysctl knobs!)
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * The "systemctl set-log-level" and "systemctl dump" commands
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering have been moved to systemd-analyze.
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * systemd-run learned the new --remain-after-exit switch,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering which causes the scope unit not to be cleaned up
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering automatically after the process terminated.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * tmpfiles learned a new --exclude-prefix= switch to exclude
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering certain paths from operation.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * journald will now automatically flush all messages to disk
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering as soon as a message of the log priorities CRIT, ALERT or
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering EMERG is received.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Contributions from: Andrew Cook, Brandon Philips, Christian
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Hesse, Christoph Junghans, Colin Walters, Daniel Schaal,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Daniel Wallace, Dave Reisner, David Herrmann, Gao feng, George
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering McCollister, Giovanni Campagna, Hannes Reinecke, Harald Hoyer,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Herczeg Zsolt, Holger Hans Peter Freyther, Jan Engelhardt,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Jesper Larsen, Kay Sievers, Khem Raj, Lennart Poettering,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Lukas Nykryn, Maciej Wereski, Mantas Mikulėnas, Marcel
4ef6e535e30c67d4ff34b2ca785e555dbaeac14eKay Sievers Holtmann, Martin Pitt, Michael Biebl, Michael Marineau,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Michael Scherer, Michael Stapelberg, Michal Sekletar, Michał
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Górny, Olivier Brunel, Ondrej Balaz, Ronny Chevalier, Shawn
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Landden, Steven Hiscocks, Thomas Bächler, Thomas Hindoe
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering Paaboel Andersen, Tom Gundersen, Umut Tezduyar, WANG Chao,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering William Giokas, Zbigniew Jędrzejewski-Szmek
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering -- Berlin, 2013-09-13
4ef6e535e30c67d4ff34b2ca785e555dbaeac14eKay Sievers
699b6b3491dc265ead79602404ad67ccdacae302Lennart PoetteringCHANGES WITH 206:
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * The documentation has been updated to cover the various new
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering concepts introduced with 205.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * Unit files now understand the new %v specifier which
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering resolves to the kernel version string as returned by "uname
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering -r".
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * systemctl now supports filtering the unit list output by
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering load state, active state and sub state, using the new
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering --state= parameter.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * "systemctl status" will now show the results of the
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering condition checks (like ConditionPathExists= and similar) of
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering the last start attempts of the unit. They are also logged to
4ef6e535e30c67d4ff34b2ca785e555dbaeac14eKay Sievers the journal.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * "journalctl -b" may now be used to look for boot output of a
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering specific boot. Try "journalctl -b -1" for the previous boot,
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering but the syntax is substantially more powerful.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * "journalctl --show-cursor" has been added which prints the
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering cursor string the last shown log line. This may then be used
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering with the new "journalctl --after-cursor=" switch to continue
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering browsing logs from that point on.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * "journalctl --force" may now be used to force regeneration
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering of an FSS key.
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * Creation of "dead" device nodes has been moved from udev
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering into kmod and tmpfiles. Previously, udev would read the kmod
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering databases to pre-generate dead device nodes based on meta
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering information contained in kernel modules, so that these would
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering be auto-loaded on access rather then at boot. As this
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering doesn't really have much to do with the exposing actual
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering kernel devices to userspace this has always been slightly
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering alien in the udev codebase. Following the new scheme kmod
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering will now generate a runtime snippet for tmpfiles from the
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering module meta information and it now is tmpfiles' job to the
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering create the nodes. This also allows overriding access and
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering other parameters for the nodes using the usual tmpfiles
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering facilities. As side effect this allows us to remove the
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering CAP_SYS_MKNOD capability bit from udevd entirely.
13b28d822462e9a0a7130ad40bed08cb380082f0Lennart Poettering
699b6b3491dc265ead79602404ad67ccdacae302Lennart Poettering * logind's device ACLs may now be applied to these "dead"
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering devices nodes too, thus finally allowing managed access to
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering devices such as /dev/snd/sequencer whithout loading the
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering backing module right-away.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * A new RPM macro has been added that may be used to apply
67dd87c51b1ba254dc6a0eeae41762aace40addaLennart Poettering tmpfiles configuration during package installation.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * systemd-detect-virt and ConditionVirtualization= now can
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering detect User-Mode-Linux machines (UML).
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * journald will now implicitly log the effective capabilities
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering set of processes in the message metadata.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * systemd-cryptsetup has gained support for TrueCrypt volumes.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * The initrd interface has been simplified (more specifically,
ed28905eecf631916f03edd0a7dfad8b0a177990Kay Sievers support for passing performance data via environment
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering variables and fsck results via files in /run has been
b8bde11658366290521e3d03316378b482600323Jan Engelhardt removed). These features were non-essential, and are
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering nowadays available in a much nicer way by having systemd in
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering the initrd serialize its state and have the hosts systemd
ed28905eecf631916f03edd0a7dfad8b0a177990Kay Sievers deserialize it again.
b8bde11658366290521e3d03316378b482600323Jan Engelhardt
ed28905eecf631916f03edd0a7dfad8b0a177990Kay Sievers * The udev "keymap" data files and tools to apply keyboard
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering specific mappings of scan to key codes, and force-release
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering scan code lists have been entirely replaced by a udev
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering "keyboard" builtin and a hwdb data file.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * systemd will now honour the kernel's "quiet" command line
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering argument also during late shutdown, resulting in a
949138ccc3417748b0978980e4a1c67955dd4ba4Ansgar Burchardt completely silent shutdown when used.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * There's now an option to control the SO_REUSEPORT socket
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering option in .socket units.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * Instance units will now automatically get a per-template
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering subslice of system.slice unless something else is explicitly
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering configured. For example, instances of sshd@.service will now
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering implicitly be placed in system-sshd.slice rather than
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering system.slice as before.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * Test coverage support may now be enabled at build time.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Contributions from: Dave Reisner, Frederic Crozat, Harald
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Hoyer, Holger Hans Peter Freyther, Jan Engelhardt, Jan
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Janssen, Jason St. John, Jesper Larsen, Kay Sievers, Lennart
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Poettering, Lukas Nykryn, Maciej Wereski, Martin Pitt, Michael
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Olbrich, Ramkumar Ramachandra, Ross Lagerwall, Shawn Landden,
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Thomas H.P. Andersen, Tom Gundersen, Tomasz Torcz, William
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Giokas, Zbigniew Jędrzejewski-Szmek
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering -- Berlin, 2013-07-23
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart PoetteringCHANGES WITH 205:
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * Two new unit types have been introduced:
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
ed28905eecf631916f03edd0a7dfad8b0a177990Kay Sievers Scope units are very similar to service units, however, are
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering created out of pre-existing processes -- instead of PID 1
b8bde11658366290521e3d03316378b482600323Jan Engelhardt forking off the processes. By using scope units it is
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering possible for system services and applications to group their
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering own child processes (worker processes) in a powerful way
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering which then maybe used to organize them, or kill them
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering together, or apply resource limits on them.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Slice units may be used to partition system resources in an
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering hierarchial fashion and then assign other units to them. By
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering default there are now three slices: system.slice (for all
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering system services), user.slice (for all user sessions),
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering machine.slice (for VMs and containers).
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering Slices and scopes have been introduced primarily in
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering context of the work to move cgroup handling to a
b8bde11658366290521e3d03316378b482600323Jan Engelhardt single-writer scheme, where only PID 1
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering creates/removes/manages cgroups.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
b8bde11658366290521e3d03316378b482600323Jan Engelhardt * There's a new concept of "transient" units. In contrast to
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering normal units these units are created via an API at runtime,
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering not from configuration from disk. More specifically this
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering means it is now possible to run arbitrary programs as
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering independent services, with all execution parameters passed
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering in via bus APIs rather than read from disk. Transient units
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering make systemd substantially more dynamic then it ever was,
b8bde11658366290521e3d03316378b482600323Jan Engelhardt and useful as a general batch manager.
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering * logind has been updated to make use of scope and slice units
b8bde11658366290521e3d03316378b482600323Jan Engelhardt for managing user sessions. As a user logs in he will get
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering his own private slice unit, to which all sessions are added
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering as scope units. We also added support for automatically
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt adding an instance of user@.service for the user into the
ed28905eecf631916f03edd0a7dfad8b0a177990Kay Sievers slice. Effectively logind will no longer create cgroup
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering hierarchies on its own now, it will defer entirely to PID 1
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering for this by means of scope, service and slice units. Since
d27893efdf652c6d85ea590fa0b7c2b88f817083Lennart Poettering user sessions this way become entities managed by PID 1
13b28d822462e9a0a7130ad40bed08cb380082f0Lennart Poettering the output of "systemctl" is now a lot more comprehensive.
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering * A new mini-daemon "systemd-machined" has been added which
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering may be used by virtualization managers to register local
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering VMs/containers. nspawn has been updated accordingly, and
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering libvirt will be updated shortly. machined will collect a bit
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering of meta information about the VMs/containers, and assign
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering them their own scope unit (see above). The collected
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering meta-data is then made available via the "machinectl" tool,
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering and exposed in "ps" and similar tools. machined/machinectl
43c71255b3db02916f4f70afa18bab196c6f4a45Lennart Poettering is compile-time optional.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * As discussed earlier, the low-level cgroup configuration
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering options ControlGroup=, ControlGroupModify=,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering ControlGroupPersistent=, ControlGroupAttribute= have been
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John removed. Please use high-level attribute settings instead as
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John well as slice units.
4670e9d5f23fc39360c086fb58eadf8b157ee205Jan Engelhardt
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * A new bus call SetUnitProperties() has been added to alter
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John various runtime parameters of a unit. This is primarily
4670e9d5f23fc39360c086fb58eadf8b157ee205Jan Engelhardt useful to alter cgroup parameters dynamically in a nice way,
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek but will be extended later on to make more properties
4670e9d5f23fc39360c086fb58eadf8b157ee205Jan Engelhardt modifiable at runtime. systemctl gained a new set-properties
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek command that wraps this call.
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * A new tool "systemd-run" has been added which can be used to
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering run arbitrary command lines as transient services or scopes,
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt while configuring a number of settings via the command
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering line. This tool is currently very basic, however already
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering very useful. We plan to extend this tool to even allow
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt queuing of execution jobs with time triggers from the
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering command line, similar in fashion to "at".
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * nspawn will now inform the user explicitly that kernels with
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering audit enabled break containers, and suggest the user to turn
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John off audit.
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * Support for detecting the IMA and AppArmor security
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering frameworks with ConditionSecurity= has been added.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt * journalctl gained a new "-k" switch for showing only kernel
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering messages, mimicking dmesg output; in addition to "--user"
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering and "--system" switches for showing only user's own logs
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering and system logs.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * systemd-delta can now show information about drop-in
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt snippets extending unit files.
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * libsystemd-bus has been substantially updated but is still
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering not available as public API.
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek * systemd will now look for the "debug" argument on the kernel
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek command line and enable debug logging, similar to
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek "systemd.log_level=debug" already did before.
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek * "systemctl set-default", "systemctl get-default" has been
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek added to configure the default.target symlink, which
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek controls what to boot into by default.
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek
dfb08b058401d56c395f4f2d20ff214d31a277e5Zbigniew Jędrzejewski-Szmek * "systemctl set-log-level" has been added as a convenient
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering way to raise and lower systemd logging threshold.
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * "systemd-analyze plot" will now show the time the various
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering generators needed for execution, as well as information
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering about the unit file loading.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * libsystemd-journal gained a new sd_journal_open_files() call
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering for opening specific journal files. journactl also gained a
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt new switch to expose this new functionality. Previously we
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering only supported opening all files from a directory, or all
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering files from the system, as opening individual files only is
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering racy due to journal file rotation.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd gained the new DefaultEnvironment= setting in
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering /etc/systemd/system.conf to set environment variables for
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering all services.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * If a privileged process logs a journal message with the
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering OBJECT_PID= field set, then journald will automatically
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering augment this with additional OBJECT_UID=, OBJECT_GID=,
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John OBJECT_COMM=, OBJECT_EXE=, ... fields. This is useful if
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering system services want to log events about specific client
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek processes. journactl/systemctl has been updated to make use
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering of this information if all log messages regarding a specific
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering unit is requested.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Contributions from: Auke Kok, Chengwei Yang, Colin Walters,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Cristian Rodríguez, Daniel Albers, Daniel Wallace, Dave
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Reisner, David Coppa, David King, David Strauss, Eelco
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Dolstra, Gabriel de Perthuis, Harald Hoyer, Jan Alexander
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Steffens, Jan Engelhardt, Jan Janssen, Jason St. John, Johan
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Heikkilä, Karel Zak, Karol Lewandowski, Kay Sievers, Lennart
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Poettering, Lukas Nykryn, Mantas Mikulėnas, Marius Vollmer,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Martin Pitt, Michael Biebl, Michael Olbrich, Michael Tremer,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Michal Schmidt, Michał Bartoszkiewicz, Nirbheek Chauhan,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Pierre Neidhardt, Ross Burton, Ross Lagerwall, Sean McGovern,
b97610038a122ff30e60b1996369ca4b979d8b19Kay Sievers Thomas Hindoe Paaboel Andersen, Tom Gundersen, Umut Tezduyar,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Václav Pavlín, Zachary Cook, Zbigniew Jędrzejewski-Szmek,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Łukasz Stelmach, 장동준
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart PoetteringCHANGES WITH 204:
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * The Python bindings gained some minimal support for the APIs
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering exposed by libsystemd-logind.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * ConditionSecurity= gained support for detecting SMACK. Since
7e95eda5b36f4a5259e1e86989b5aee824d83d03Patrik Flykt this condition already supports SELinux and AppArmor we only
7e95eda5b36f4a5259e1e86989b5aee824d83d03Patrik Flykt miss IMA for this. Patches welcome!
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Contributions from: Karol Lewandowski, Lennart Poettering,
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt Zbigniew Jędrzejewski-Szmek
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. JohnCHANGES WITH 203:
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * systemd-nspawn will now create /etc/resolv.conf if
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering necessary, before bind-mounting the host's file onto it.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd-nspawn will now store meta information about a
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering container on the container's cgroup as extended attribute
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering fields, including the root directory.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * The cgroup hierarchy has been reworked in many ways. All
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering objects any of the components systemd creates in the cgroup
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering tree are now suffixed. More specifically, user sessions are
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering now placed in cgroups suffixed with ".session", users in
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering cgroups suffixed with ".user", and nspawn containers in
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering cgroups suffixed with ".nspawn". Furthermore, all cgroup
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering names are now escaped in a simple scheme to avoid collision
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering of userspace object names with kernel filenames. This work
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering is preparation for making these objects relocatable in the
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering cgroup tree, in order to allow easy resource partitioning of
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering these objects without causing naming conflicts.
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * systemctl list-dependencies gained the new switches
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John --plain, --reverse, --after and --before.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd-inhibit now shows the process name of processes that
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering have taken an inhibitor lock.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8e420494bc59d8b9d43e6d34d8ec8bb765946c74Lennart Poettering * nss-myhostname will now also resolve "localhost"
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering implicitly. This makes /etc/hosts an optional file and
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering nicely handles that on IPv6 ::1 maps to both "localhost" and
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering the local hostname.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * libsystemd-logind.so gained a new call
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering sd_get_machine_names() to enumerate running containers and
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering VMs (currently only supported by very new libvirt and
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering nspawn). sd_login_monitor can now be used to watch
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering VMs/containers coming and going.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * .include is not allowed recursively anymore, and only in
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering unit files. Usually it is better to use drop-in snippets in
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering .d/*.conf anyway, as introduced with systemd 198.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd-analyze gained a new "critical-chain" command that
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering determines the slowest chain of units run during system
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John boot-up. It is very useful for tracking down where
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering optimizing boot time is the most beneficial.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd will no longer allow manipulating service paths in
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering the name=systemd:/system cgroup tree using ControlGroup= in
b97610038a122ff30e60b1996369ca4b979d8b19Kay Sievers units. (But is still fine with it in all other dirs.)
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * There's a new systemd-nspawn@.service service file that may
270f1624022039b370b9db311f9d33492833ad24Lennart Poettering be used to easily run nspawn containers as system
270f1624022039b370b9db311f9d33492833ad24Lennart Poettering services. With the container's root directory in
8e420494bc59d8b9d43e6d34d8ec8bb765946c74Lennart Poettering /var/lib/container/foobar it is now sufficient to run
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering "systemctl start systemd-nspawn@foobar.service" to boot it.
4670e9d5f23fc39360c086fb58eadf8b157ee205Jan Engelhardt
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek * systemd-cgls gained a new parameter "--machine" to list only
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek the processes within a certain container.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * ConditionSecurity= now can check for "apparmor". We still
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering are lacking checks for SMACK and IMA for this condition
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering check though. Patches welcome!
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * A new configuration file /etc/systemd/sleep.conf has been
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering added that may be used to configure which kernel operation
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering systemd is supposed to execute when "suspend", "hibernate"
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering or "hybrid-sleep" is requested. This makes the new kernel
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering "freeze" state accessible to the user.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * ENV{SYSTEMD_WANTS} in udev rules will now implicitly escape
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering the passed argument if applicable.
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek Contributions from: Auke Kok, Colin Guthrie, Colin Walters,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Cristian Rodríguez, Daniel Buch, Daniel Wallace, Dave Reisner,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Evangelos Foutras, Greg Kroah-Hartman, Harald Hoyer, Josh
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Triplett, Kay Sievers, Lennart Poettering, Lukas Nykryn,
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek MUNEDA Takahiro, Mantas Mikulėnas, Mirco Tischler, Nathaniel
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek Chen, Nirbheek Chauhan, Ronny Chevalier, Ross Lagerwall, Tom
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek Gundersen, Umut Tezduyar, Ville Skyttä, Zbigniew
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Jędrzejewski-Szmek
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart PoetteringCHANGES WITH 202:
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt * The output of 'systemctl list-jobs' got some polishing. The
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering '--type=' argument may now be passed more than once. A new
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering command 'systemctl list-sockets' has been added which shows
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering a list of kernel sockets systemd is listening on with the
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering socket units they belong to, plus the units these socket
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering units activate.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * The experimental libsystemd-bus library got substantial
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering updates to work in conjunction with the (also experimental)
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering kdbus kernel project. It works well enough to exchange
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering messages with some sophistication. Note that kdbus is not
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering ready yet, and the library is mostly an elaborate test case
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering for now, and not installable.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd gained a new unit 'systemd-static-nodes.service'
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering that generates static device nodes earlier during boot, and
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering can run in conjunction with udev.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8e420494bc59d8b9d43e6d34d8ec8bb765946c74Lennart Poettering * libsystemd-login gained a new call sd_pid_get_user_unit()
8e420494bc59d8b9d43e6d34d8ec8bb765946c74Lennart Poettering to retrieve the user systemd unit a process is running
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering in. This is useful for systems where systemd is used as
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering session manager.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd-nspawn now places all containers in the new /machine
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering top-level cgroup directory in the name=systemd
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek hierarchy. libvirt will soon do the same, so that we get a
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering uniform separation of /system, /user and /machine for system
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering services, user processes and containers/virtual
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering machines. This new cgroup hierarchy is also useful to stick
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt stable names to specific container instances, which can be
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering recognized later this way (this name may be controlled
4670e9d5f23fc39360c086fb58eadf8b157ee205Jan Engelhardt via systemd-nspawn's new -M switch). libsystemd-login also
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek gained a new call sd_pid_get_machine_name() to retrieve the
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek name of the container/VM a specific process belongs to.
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek * bootchart can now store its data in the journal.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
c0c5af00bec95567435bdfb818c69b2b669adfedDaniel Buch * libsystemd-journal gained a new call
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt sd_journal_add_conjunction() for AND expressions to the
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering matching logic. This can be used to express more complex
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt logical expressions.
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt * journactl can now take multiple --unit= and --user-unit=
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering switches.
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * The cryptsetup logic now understands the "luks.key=" kernel
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering command line switch for specifying a file to read the
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering decryption key from. Also, if a configured key file is not
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering found the tool will now automatically fall back to prompting
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering the user.
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * Python systemd.journal module was updated to wrap recently
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John added functions from libsystemd-journal. The interface was
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering changed to bring the low level interface in s.j._Reader
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt closer to the C API, and the high level interface in
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering s.j.Reader was updated to wrap and convert all data about
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering an entry.
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering Contributions from: Anatol Pomozov, Auke Kok, Harald Hoyer,
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering Henrik Grindal Bakken, Josh Triplett, Kay Sievers, Lennart
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering Poettering, Lukas Nykryn, Mantas Mikulėnas Marius Vollmer,
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering Martin Jansa, Martin Pitt, Michael Biebl, Michal Schmidt,
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering Mirco Tischler, Pali Rohar, Simon Peeters, Steven Hiscocks,
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering Tom Gundersen, Zbigniew Jędrzejewski-Szmek
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart PoetteringCHANGES WITH 201:
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt * journalctl --update-catalog now understands a new --root=
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering option to operate on catalogs found in a different root
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering directory.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * During shutdown after systemd has terminated all running
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering services a final killing loop kills all remaining left-over
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John processes. We will now print the name of these processes
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John when we send SIGKILL to them, since this usually indicates a
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John problem.
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * If /etc/crypttab refers to password files stored on
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering configured mount points automatic dependencies will now be
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt generated to ensure the specific mount is established first
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering before the key file is attempted to be read.
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers * 'systemctl status' will now show information about the
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers network sockets a socket unit is listening on.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * 'systemctl status' will also shown information about any
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt drop-in configuration file for units. (Drop-In configuration
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt files in this context are files such as
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt /etc/systemd/systemd/foobar.service.d/*.conf)
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * systemd-cgtop now optionally shows summed up CPU times of
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers cgroups. Press '%' while running cgtop to switch between
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John percentage and absolute mode. This is useful to determine
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers which cgroups use up the most CPU time over the entire
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John runtime of the system. systemd-cgtop has also been updated
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers to be 'pipeable' for processing with further shell tools.
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers * 'hostnamectl set-hostname' will now allow setting of FQDN
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers hostnames.
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers * The formatting and parsing of time span values has been
ad42cf7308c45fb8a77c15b313f45361c5ea8fb5Kay Sievers changed. The parser now understands fractional expressions
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering such as "5.5h". The formatter will now output fractional
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt expressions for all time spans under 1min, i.e. "5.123456s"
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering rather than "5s 123ms 456us". For time spans under 1s
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering millisecond values are shown, for those under 1ms
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering microsecond values are shown. This should greatly improve
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering all time-related output of systemd.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * libsystemd-login and libsystemd-journal gained new
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering functions for querying the poll() events mask and poll()
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt timeout value for integration into arbitrary event
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John loops.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * localectl gained the ability to list available X11 keymaps
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering (models, layouts, variants, options).
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * 'systemd-analyze dot' gained the ability to filter for
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering specific units via shell-style globs, to create smaller,
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John more useful graphs. I.e. it's now possible to create simple
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering graphs of all the dependencies between only target units, or
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering of all units that Avahi has dependencies with.
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Contributions from: Cristian Rodríguez, Dr. Tilmann Bubeck,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Harald Hoyer, Holger Hans Peter Freyther, Kay Sievers, Kelly
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Anderson, Koen Kooi, Lennart Poettering, Maksim Melnikau,
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek Marc-Antoine Perennou, Marius Vollmer, Martin Pitt, Michal
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek Schmidt, Oleksii Shevchuk, Ronny Chevalier, Simon McVittie,
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek Steven Hiscocks, Thomas Weißschuh, Umut Tezduyar, Václav
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Pavlín, Zbigniew Jędrzejewski-Szmek, Łukasz Stelmach
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-SzmekCHANGES WITH 200:
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * The boot-time readahead implementation for rotating media
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering will now read the read-ahead data in multiple passes which
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering consist of all read requests made in equidistant time
8e420494bc59d8b9d43e6d34d8ec8bb765946c74Lennart Poettering intervals. This means instead of strictly reading read-ahead
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek data in its physical order on disk we now try to find a
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek middle ground between physical and access time order.
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * /etc/os-release files gained a new BUILD_ID= field for usage
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering on operating systems that provide continuous builds of OS
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John images.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8e420494bc59d8b9d43e6d34d8ec8bb765946c74Lennart Poettering Contributions from: Auke Kok, Eelco Dolstra, Kay Sievers,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Lennart Poettering, Lukas Nykryn, Martin Pitt, Václav Pavlín
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering William Douglas, Zbigniew Jędrzejewski-Szmek
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan EngelhardtCHANGES WITH 199:
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd-python gained an API exposing libsystemd-daemon.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John * The SMACK setup logic gained support for uploading CIPSO
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering security policy.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * Behaviour of PrivateTmp=, ReadWriteDirectories=,
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek ReadOnlyDirectories= and InaccessibleDirectories= has
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering changed. The private /tmp and /var/tmp directories are now
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering shared by all processes of a service (which means
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering ExecStartPre= may now leave data in /tmp that ExecStart= of
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering the same service can still access). When a service is
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering stopped its temporary directories are immediately deleted
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering (normal clean-up with tmpfiles is still done in addition to
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John this though).
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek * By default, systemd will now set a couple of sysctl
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering variables in the kernel: the safe sysrq options are turned
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering on, IP route verification is turned on, and source routing
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering disabled. The recently added hardlink and softlink
b97610038a122ff30e60b1996369ca4b979d8b19Kay Sievers protection of the kernel is turned on. These settings should
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John be reasonably safe, and good defaults for all new systems.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * The predictable network naming logic may now be turned off
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering with a new kernel command line switch: net.ifnames=0.
b97610038a122ff30e60b1996369ca4b979d8b19Kay Sievers
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * A new libsystemd-bus module has been added that implements a
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering pretty complete D-Bus client library. For details see:
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering http://lists.freedesktop.org/archives/systemd-devel/2013-March/009797.html
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * journald will now explicitly flush the journal files to disk
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering at the latest 5min after each write. The file will then also
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering be marked offline until the next write. This should increase
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering reliability in case of a crash. The synchronization delay
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering can be configured via SyncIntervalSec= in journald.conf.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * There's a new remote-fs-setup.target unit that can be used
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering to pull in specific services when at least one remote file
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek system is to be mounted.
8e420494bc59d8b9d43e6d34d8ec8bb765946c74Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * There are new targets timers.target and paths.target as
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering canonical targets to pull user timer and path units in
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering from. This complements sockets.target with a similar
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John purpose for socket units.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
1e190502e78cea1f8bcb62e6d390305c89e41e6aZbigniew Jędrzejewski-Szmek * libudev gained a new call udev_device_set_attribute_value()
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering to set sysfs attributes of a device.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * The udev daemon now sets the default number of worker
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt processes executed in parallel based on the number of available
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John CPUs instead of the amount of available RAM. This is supposed
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John to provide a more reliable default and limit a too aggressive
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John paralellism for setups with 1000s of devices connected.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
6afc95b73605833e6e966af1c466b5c08feb953fLennart Poettering Contributions from: Auke Kok, Colin Walters, Cristian
6afc95b73605833e6e966af1c466b5c08feb953fLennart Poettering Rodríguez, Daniel Buch, Dave Reisner, Frederic Crozat, Hannes
70a44afee385c4afadaab9a002b3f9dd44aedf4aJan Engelhardt Reinecke, Harald Hoyer, Jan Alexander Steffens, Jan
b8bde11658366290521e3d03316378b482600323Jan Engelhardt Engelhardt, Josh Triplett, Kay Sievers, Lennart Poettering,
b8bde11658366290521e3d03316378b482600323Jan Engelhardt Mantas Mikulėnas, Martin Pitt, Mathieu Bridon, Michael Biebl,
6afc95b73605833e6e966af1c466b5c08feb953fLennart Poettering Michal Schmidt, Michal Sekletar, Miklos Vajna, Nathaniel Chen,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Oleksii Shevchuk, Ozan Çağlayan, Thomas Hindoe Paaboel
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Andersen, Tollef Fog Heen, Tom Gundersen, Umut Tezduyar,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering Zbigniew Jędrzejewski-Szmek
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart PoetteringCHANGES WITH 198:
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * Configuration of unit files may now be extended via drop-in
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering files without having to edit/override the unit files
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering themselves. More specifically, if the administrator wants to
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering change one value for a service file foobar.service he can
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering now do so by dropping in a configuration snippet into
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John /etc/systemd/system/foobar.service.d/*.conf. The unit logic
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John will load all these snippets and apply them on top of the
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering main unit configuration file, possibly extending or
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering overriding its settings. Using these drop-in snippets is
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering generally nicer than the two earlier options for changing
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering unit files locally: copying the files from
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering /usr/lib/systemd/system/ to /etc/systemd/system/ and editing
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering them there; or creating a new file in /etc/systemd/system/
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering that incorporates the original one via ".include". Drop-in
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt snippets into these .d/ directories can be placed in any
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John directory systemd looks for units in, and the usual
b8bde11658366290521e3d03316378b482600323Jan Engelhardt overriding semantics between /usr/lib, /etc and /run apply
b8bde11658366290521e3d03316378b482600323Jan Engelhardt for them too.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * Most unit file settings which take lists of items can now be
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering reset by assigning the empty string to them. For example,
4c2413bffa7861bd3c4b3589c821ab7e0ac51c83Jan Engelhardt normally, settings such as Environment=FOO=BAR append a new
8b7d0494a3fe35209d4db0d1b9e065e7e5cc9875Jason St. John environment variable assignment to the environment block,
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering each time they are used. By assigning Environment= the empty
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering string the environment block can be reset to empty. This is
210054d76cf4d294533aa09256d375e33b52569fKay Sievers particularly useful with the .d/*.conf drop-in snippets
210054d76cf4d294533aa09256d375e33b52569fKay Sievers mentioned above, since this adds the ability to reset list
210054d76cf4d294533aa09256d375e33b52569fKay Sievers settings from vendor unit files via these drop-ins.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemctl gained a new "list-dependencies" command for
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering listing the dependencies of a unit recursively.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * Inhibitors are now honored and listed by "systemctl
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering suspend", "systemctl poweroff" (and similar) too, not only
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering GNOME. These commands will also list active sessions by
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering other users.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * Resource limits (as exposed by the various control group
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering controllers) can now be controlled dynamically at runtime
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering for all units. More specifically, you can now use a command
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering like "systemctl set-cgroup-attr foobar.service cpu.shares
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering 2000" to alter the CPU shares a specific service gets. These
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering settings are stored persistently on disk, and thus allow the
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering administrator to easily adjust the resource usage of
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering services with a few simple commands. This dynamic resource
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering management logic is also available to other programs via the
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering bus. Almost any kernel cgroup attribute and controller is
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering supported.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering * systemd-vconsole-setup will now copy all font settings to
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering all allocated VTs, where it previously applied them only to
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering the foreground VT.
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering
6300b3eca9e5261b73bd7f1bb9735992b127cd80Lennart Poettering * libsystemd-login gained the new sd_session_get_tty() API
e49b5aada0df13c9e8fce7338ae34e075dd7ccd1Lennart Poettering call.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * This release drops support for a few legacy or
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering distribution-specific LSB facility names when parsing init
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering scripts: $x-display-manager, $mail-transfer-agent,
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering $mail-transport-agent, $mail-transfer-agent, $smtp,
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering $null. Also, the mail-transfer-agent.target unit backing
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering this has been removed. Distributions which want to retain
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering compatibility with this should carry the burden for
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering supporting this themselves and patch support for these back
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering in, if they really need to. Also, the facilities $syslog and
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering $local_fs are now ignored, since systemd does not support
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering early-boot LSB init scripts anymore, and these facilities
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering are implied anyway for normal services. syslog.target has
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering also been removed.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * There are new bus calls on PID1's Manager object for
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering cancelling jobs, and removing snapshot units. Previously,
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering both calls were only available on the Job and Snapshot
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering objects themselves.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * systemd-journal-gatewayd gained SSL support.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * The various "environment" files, such as /etc/locale.conf
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering now support continuation lines with a backslash ("\") as
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering last character in the line, similar in style (but different)
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering to how this is supported in shells.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt * For normal user processes the _SYSTEMD_USER_UNIT= field is
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering now implicitly appended to every log entry logged. systemctl
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering has been updated to filter by this field when operating on a
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering user systemd instance.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * nspawn will now implicitly add the CAP_AUDIT_WRITE and
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt CAP_AUDIT_CONTROL capabilities to the capabilities set for
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering the container. This makes it easier to boot unmodified
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering Fedora systems in a container, which however still requires
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering audit=0 to be passed on the kernel command line. Auditing in
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering kernel and userspace is unfortunately still too broken in
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering context of containers, hence we recommend compiling it out
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering of the kernel or using audit=0. Hopefully this will be fixed
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering one day for good in the kernel.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * nspawn gained the new --bind= and --bind-ro= parameters to
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering bind mount specific directories from the host into the
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering container.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * nspawn will now mount its own devpts file system instance
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering into the container, in order not to leak pty devices from
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering the host into the container.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * systemd will now read the firmware boot time performance
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering information from the EFI variables, if the used boot loader
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering supports this, and takes it into account for boot performance
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering analysis via "systemd-analyze". This is currently supported
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering only in conjunction with Gummiboot, but could be supported
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering by other boot loaders too. For details see:
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering http://www.freedesktop.org/wiki/Software/systemd/BootLoaderInterface
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * A new generator has been added that automatically mounts the
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering EFI System Partition (ESP) to /boot, if that directory
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering exists, is empty, and no other file system has been
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering configured to be mounted there.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * logind will now send out PrepareForSleep(false) out
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering unconditionally, after coming back from suspend. This may be
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering used by applications as asynchronous notification for
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering system resume events.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * "systemctl unlock-sessions" has been added, that allows
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering unlocking the screens of all user sessions at once, similar
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering how "systemctl lock-sessions" already locked all users
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering sessions. This is backed by a new D-Bus call UnlockSessions().
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * "loginctl seat-status" will now show the master device of a
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering seat. (i.e. the device of a seat that needs to be around for
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering the seat to be considered available, usually the graphics
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering card).
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * tmpfiles gained a new "X" line type, that allows
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering configuration of files and directories (with wildcards) that
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering shall be excluded from automatic cleanup ("aging").
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering * udev default rules set the device node permissions now only
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering at "add" events, and do not change them any longer with a
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering later "change" event.
cd4010b37349413db1e553e213e62e654ca28113Lennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * The log messages for lid events and power/sleep keypresses
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering now carry a message ID.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
f3a165b05d117b9a9657076fed6b265eb40d5ba3Kay Sievers * We now have a substantially larger unit test suite, but this
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering continues to be work in progress.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * udevadm hwdb gained a new --root= parameter to change the
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering root directory to operate relative to.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * logind will now issue a background sync() request to the kernel
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering early at shutdown, so that dirty buffers are flushed to disk early
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering instead of at the last moment, in order to optimize shutdown
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering times a little.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * A new bootctl tool has been added that is an interface for
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering certain boot loader operations. This is currently a preview
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering and is likely to be extended into a small mechanism daemon
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering like timedated, localed, hostnamed, and can be used by
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering graphical UIs to enumerate available boot options, and
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering request boot into firmware operations.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * systemd-bootchart has been relicensed to LGPLv2.1+ to match
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering the rest of the package. It also has been updated to work
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering correctly in initrds.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * Policykit previously has been runtime optional, and is now
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering also compile time optional via a configure switch.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * systemd-analyze has been reimplemented in C. Also "systemctl
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt dot" has moved into systemd-analyze.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
f3a165b05d117b9a9657076fed6b265eb40d5ba3Kay Sievers * "systemctl status" with no further parameters will now print
f3a165b05d117b9a9657076fed6b265eb40d5ba3Kay Sievers the status of all active or failed units.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * Operations such as "systemctl start" can now be executed
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering with a new mode "--irreversible" which may be used to queue
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering operations that cannot accidentally be reversed by a later
387abf80ad40e4a6c2f4725c8eff4d66bf110d1fLennart Poettering job queuing. This is by default used to make shutdown
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering requests more robust.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
f3a165b05d117b9a9657076fed6b265eb40d5ba3Kay Sievers * The Python API of systemd now gained a new module for
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering reading journal files.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * A new tool kernel-install has been added that can install
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering kernel images according to the Boot Loader Specification:
f3a165b05d117b9a9657076fed6b265eb40d5ba3Kay Sievers
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering http://www.freedesktop.org/wiki/Specifications/BootLoaderSpec
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * Boot time console output has been improved to provide
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering animated boot time output for hanging jobs.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * A new tool systemd-activate has been added which can be used
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering to test socket activation with, directly from the command
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering line. This should make it much easier to test and debug
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering socket activation in daemons.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * journalctl gained a new "--reverse" (or -r) option to show
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering journal output in reverse order (i.e. newest line first).
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * journalctl gained a new "--pager-end" (or -e) option to jump
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering to immediately jump to the end of the journal in the
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering pager. This is only supported in conjunction with "less".
387abf80ad40e4a6c2f4725c8eff4d66bf110d1fLennart Poettering
387abf80ad40e4a6c2f4725c8eff4d66bf110d1fLennart Poettering * journalctl gained a new "--user-unit=" option, that works
387abf80ad40e4a6c2f4725c8eff4d66bf110d1fLennart Poettering similar to "--unit=" but filters for user units rather than
387abf80ad40e4a6c2f4725c8eff4d66bf110d1fLennart Poettering system units.
387abf80ad40e4a6c2f4725c8eff4d66bf110d1fLennart Poettering
387abf80ad40e4a6c2f4725c8eff4d66bf110d1fLennart Poettering * A number of unit files to ease adoption of systemd in
387abf80ad40e4a6c2f4725c8eff4d66bf110d1fLennart Poettering initrds has been added. This moves some minimal logic from
04bf3c1a60d82791e0320381e9268f727708f776Kay Sievers the various initrd implementations into systemd proper.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * The journal files are now owned by a new group
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering "systemd-journal", which exists specifically to allow access
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering to the journal, and nothing else. Previously, we used the
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering "adm" group for that, which however possibly covers more
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering than just journal/log file access. This new group is now
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering already used by systemd-journal-gatewayd to ensure this
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering daemon gets access to the journal files and as little else
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering as possible. Note that "make install" will also set FS ACLs
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering up for /var/log/journal to give "adm" and "wheel" read
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering access to it, in addition to "systemd-journal" which owns
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering the journal files. We recommend that packaging scripts also
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering add read access to "adm" + "wheel" to /var/log/journal, and
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering all existing/future journal files. To normal users and
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering administrators little changes, however packagers need to
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering ensure to create the "systemd-journal" system group at
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering package installation time.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * The systemd-journal-gatewayd now runs as unprivileged user
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering systemd-journal-gateway:systemd-journal-gateway. Packaging
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering scripts need to create these system user/group at
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering installation time.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * timedated now exposes a new boolean property CanNTP that
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering indicates whether a local NTP service is available or not.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * systemd-detect-virt will now also detect xen PVs
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * The pstore file system is now mounted by default, if it is
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering available.
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering * In addition to the SELinux and IMA policies we will now also
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering load SMACK policies at early boot.
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Contributions from: Adel Gadllah, Aleksander Morgado, Auke
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Kok, Ayan George, Bastien Nocera, Colin Walters, Daniel Buch,
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Daniel Wallace, Dave Reisner, David Herrmann, David Strauss,
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Eelco Dolstra, Enrico Scholz, Frederic Crozat, Harald Hoyer,
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Jan Janssen, Jonathan Callen, Kay Sievers, Lennart Poettering,
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Lukas Nykryn, Mantas Mikulėnas, Marc-Antoine Perennou, Martin
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Pitt, Mauro Dreissig, Max F. Albrecht, Michael Biebl, Michael
33b521be152f67cd722695ba9a2966eda5ee6765Maciej Wereski Olbrich, Michal Schmidt, Michal Sekletar, Michal Vyskocil,
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Michał Bartoszkiewicz, Mirco Tischler, Nathaniel Chen, Nestor
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Ovroy, Oleksii Shevchuk, Paul W. Frields, Piotr Drąg, Rob
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Clark, Ryan Lortie, Simon McVittie, Simon Peeters, Steven
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Hiscocks, Thomas Hindoe Paaboel Andersen, Tollef Fog Heen, Tom
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Gundersen, Umut Tezduyar, William Giokas, Zbigniew
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering Jędrzejewski-Szmek, Zeeshan Ali (Khattak)
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart PoetteringCHANGES WITH 197:
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering * Timer units now support calendar time events in addition to
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering monotonic time events. That means you can now trigger a unit
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering based on a calendar time specification such as "Thu,Fri
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering 2013-*-1,5 11:12:13" which refers to 11:12:13 of the first
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering or fifth day of any month of the year 2013, given that it is
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering a thursday or friday. This brings timer event support
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering considerably closer to cron's capabilities. For details on
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering the supported calendar time specification language see
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering systemd.time(7).
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering * udev now supports a number of different naming policies for
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering network interfaces for predictable names, and a combination
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering of these policies is now the default. Please see this wiki
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering document for details:
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering http://www.freedesktop.org/wiki/Software/systemd/PredictableNetworkInterfaceNames
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering * Auke Kok's bootchart implementation has been added to the
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering systemd tree. It's an optional component that can graph the
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering boot in quite some detail. It's one of the best bootchart
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering implementations around and minimal in its code and
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering dependencies.
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering * nss-myhostname has been integrated into the systemd source
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering tree. nss-myhostname guarantees that the local hostname
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering always stays resolvable via NSS. It has been a weak
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering requirement of systemd-hostnamed since a long time, and
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering since its code is actually trivial we decided to just
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering include it in systemd's source tree. It can be turned off
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering with a configure switch.
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering * The read-ahead logic is now capable of properly detecting
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering whether a btrfs file system is on SSD or rotating media, in
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering order to optimize the read-ahead scheme. Previously, it was
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering only capable of detecting this on traditional file systems
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering such as ext4.
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering * In udev, additional device properties are now read from the
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering IAB in addition to the OUI database. Also, Bluetooth company
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering identities are attached to the devices as well.
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering * In service files %U may be used as specifier that is
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering replaced by the configured user name of the service.
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering * nspawn may now be invoked without a controlling TTY. This
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering makes it suitable for invocation as its own service. This
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering may be used to set up a simple containerized server system
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering using only core OS tools.
28f5c779e5513ab1301ac103471009711b0961e0Kay Sievers
28f5c779e5513ab1301ac103471009711b0961e0Kay Sievers * systemd and nspawn can now accept socket file descriptors
28f5c779e5513ab1301ac103471009711b0961e0Kay Sievers when they are started for socket activation. This enables
28f5c779e5513ab1301ac103471009711b0961e0Kay Sievers implementation of socket activated nspawn
408f281bc7d65c86563f46e99e07efd1a1d9e03aLennart Poettering containers. i.e. think about autospawning an entire OS image
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering when the first SSH or HTTP connection is received. We expect
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering that similar functionality will also be added to libvirt-lxc
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering eventually.
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering * journalctl will now suppress ANSI color codes when
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering presenting log data.
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering * systemctl will no longer show control group information for
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering a unit if a the control group is empty anyway.
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering * logind can now automatically suspend/hibernate/shutdown the
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering system on idle.
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering * /etc/machine-info and hostnamed now also expose the chassis
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering type of the system. This can be used to determine whether
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering the local system is a laptop, desktop, handset or
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering tablet. This information may either be configured by the
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering user/vendor or is automatically determined from ACPI and DMI
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering information if possible.
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering * A number of PolicyKit actions are now bound together with
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering "imply" rules. This should simplify creating UIs because
251cc8194228ac86c9a7a4c75a54a94cea2095c7Lennart Poettering many actions will now authenticate similar ones as well.
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering
4f0be680b5323e037314cfbd3dba34f03e637c8fLennart Poettering * Unit files learnt a new condition ConditionACPower= which
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering may be used to conditionalize a unit depending on whether an
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering AC power source is connected or not, of whether the system
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering is running on battery power.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * systemctl gained a new "is-failed" verb that may be used in
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering shell scripts and suchlike to check whether a specific unit
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering is in the "failed" state.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * The EnvironmentFile= setting in unit files now supports file
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering globbing, and can hence be used to easily read a number of
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering environment files at once.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * systemd will no longer detect and recognize specific
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering distributions. All distribution-specific #ifdeffery has been
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering removed, systemd is now fully generic and
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering distribution-agnostic. Effectively, not too much is lost as
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering a lot of the code is still accessible via explicit configure
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering switches. However, support for some distribution specific
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering legacy configuration file formats has been dropped. We
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering recommend distributions to simply adopt the configuration
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering files everybody else uses now and convert the old
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering configuration from packaging scripts. Most distributions
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering already did that. If that's not possible or desirable,
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering distributions are welcome to forward port the specific
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering pieces of code locally from the git history.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * When logging a message about a unit systemd will now always
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering log the unit name in the message meta data.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * localectl will now also discover system locale data that is
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering not stored in locale archives, but directly unpacked.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * logind will no longer unconditionally use framebuffer
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering devices as seat masters, i.e. as devices that are required
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering to be existing before a seat is considered preset. Instead,
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering it will now look for all devices that are tagged as
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering "seat-master" in udev. By default framebuffer devices will
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering be marked as such, but depending on local systems other
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering devices might be marked as well. This may be used to
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering integrate graphics cards using closed source drivers (such
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering as NVidia ones) more nicely into logind. Note however, that
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering we recommend using the open source NVidia drivers instead,
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering and no udev rules for the closed-source drivers will be
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering shipped from us upstream.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Contributions from: Adam Williamson, Alessandro Crismani, Auke
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Kok, Colin Walters, Daniel Wallace, Dave Reisner, David
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Herrmann, David Strauss, Dimitrios Apostolou, Eelco Dolstra,
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Eric Benoit, Giovanni Campagna, Hannes Reinecke, Henrik
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Grindal Bakken, Hermann Gausterer, Kay Sievers, Lennart
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Poettering, Lukas Nykryn, Mantas Mikulėnas, Marcel Holtmann,
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Martin Pitt, Matthew Monaco, Michael Biebl, Michael Terry,
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Michal Schmidt, Michal Sekletar, Michał Bartoszkiewicz, Oleg
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Samarin, Pekka Lundstrom, Philip Nilsson, Ramkumar
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Ramachandra, Richard Yao, Robert Millan, Sami Kerola, Shawn
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Landden, Thomas Hindoe Paaboel Andersen, Thomas Jarosch,
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Tollef Fog Heen, Tom Gundersen, Umut Tezduyar, Zbigniew
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Jędrzejewski-Szmek
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart PoetteringCHANGES WITH 196:
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * udev gained support for loading additional device properties
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering from an indexed database that is keyed by vendor/product IDs
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering and similar device identifiers. For the beginning this
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering "hwdb" is populated with data from the well-known PCI and
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering USB database, but also includes PNP, ACPI and OID data. In
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering the longer run this indexed database shall grow into
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering becoming the one central database for non-essential
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering userspace device metadata. Previously, data from the PCI/USB
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering database was only attached to select devices, since the
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering lookup was a relatively expensive operation due to O(n) time
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering complexity (with n being the number of entries in the
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering database). Since this is now O(1), we decided to add in this
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering data for all devices where this is available, by
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering default. Note that the indexed database needs to be rebuilt
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering when new data files are installed. To achieve this you need
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering to update your packaging scripts to invoke "udevadm hwdb
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering --update" after installation of hwdb data files. For
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering RPM-based distributions we introduced the new
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering %udev_hwdb_update macro for this purpose.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * The Journal gained support for the "Message Catalog", an
1fda0ab5fc9cf7454c8da32941e433dc38ba9991Zbigniew Jędrzejewski-Szmek indexed database to link up additional information with
1fda0ab5fc9cf7454c8da32941e433dc38ba9991Zbigniew Jędrzejewski-Szmek journal entries. For further details please check:
1fda0ab5fc9cf7454c8da32941e433dc38ba9991Zbigniew Jędrzejewski-Szmek
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering http://www.freedesktop.org/wiki/Software/systemd/catalog
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering The indexed message catalog database also needs to be
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering rebuilt after installation of message catalog files. Use
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering "journalctl --update-catalog" for this. For RPM-based
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering distributions we introduced the %journal_catalog_update
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering macro for this purpose.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek * The Python Journal bindings gained support for the standard
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering Python logging framework.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * The Journal API gained new functions for checking whether
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering the underlying file system of a journal file is capable of
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering properly reporting file change notifications, or whether
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering applications that want to reflect journal changes "live"
1fda0ab5fc9cf7454c8da32941e433dc38ba9991Zbigniew Jędrzejewski-Szmek need to recheck journal files continuously in appropriate
1fda0ab5fc9cf7454c8da32941e433dc38ba9991Zbigniew Jędrzejewski-Szmek time intervals.
1fda0ab5fc9cf7454c8da32941e433dc38ba9991Zbigniew Jędrzejewski-Szmek
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * It is now possible to set the "age" field for tmpfiles
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering entries to 0, indicating that files matching this entry
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering shall always be removed when the directories are cleaned up.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * coredumpctl gained a new "gdb" verb which invokes gdb
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering right-away on the selected coredump.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * There's now support for "hybrid sleep" on kernels that
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering support this, in addition to "suspend" and "hibernate". Use
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering "systemctl hybrid-sleep" to make use of this.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * logind's HandleSuspendKey= setting (and related settings)
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering now gained support for a new "lock" setting to simply
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering request the screen lock on all local sessions, instead of
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering actually executing a suspend or hibernation.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * systemd will now mount the EFI variables file system by
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering default.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * Socket units now gained support for configuration of the
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering SMACK security label.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * timedatectl will now output the time of the last and next
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering daylight saving change.
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * We dropped support for various legacy and distro-specific
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering concepts, such as insserv, early-boot SysV services
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering (i.e. those for non-standard runlevels such as 'b' or 'S')
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering or ArchLinux /etc/rc.conf support. We recommend the
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering distributions who still need support this to either continue
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering to maintain the necessary patches downstream, or find a
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering different solution. (Talk to us if you have questions!)
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering * Various systemd components will now bypass PolicyKit checks
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering for root and otherwise handle properly if PolicyKit is not
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering found to be around. This should fix most issues for
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering PolicyKit-less systems. Quite frankly this should have been
00aa832b948a27507c33e2157e46963852cffc85Lennart Poettering this way since day one. It is absolutely our intention to
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering make systemd work fine on PolicyKit-less systems, and we
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering consider it a bug if something doesn't work as it should if
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering PolicyKit is not around.
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering * For embedded systems it is now possible to build udev and
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering systemd without blkid and/or kmod support.
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering * "systemctl switch-root" is now capable of switching root
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering more than once. I.e. in addition to transitions from the
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering initrd to the host OS it is now possible to transition to
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering further OS images from the host. This is useful to implement
606c24e3bd41207c395f24a56bcfcad791e265a5Lennart Poettering offline updating tools.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * Various other additions have been made to the RPM macros
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering shipped with systemd. Use %udev_rules_update() after
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering installing new udev rules files. %_udevhwdbdir,
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering %_udevrulesdir, %_journalcatalogdir, %_tmpfilesdir,
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering %_sysctldir are now available which resolve to the right
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering directories for packages to place various data files in.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * journalctl gained the new --full switch (in addition to
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering --all, to disable ellipsation for long messages.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
b82eed9af95668ab38cac33c7996e4d665f8709aLennart Poettering Contributions from: Anders Olofsson, Auke Kok, Ben Boeckel,
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Colin Walters, Cosimo Cecchi, Daniel Wallace, Dave Reisner,
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Eelco Dolstra, Holger Hans Peter Freyther, Kay Sievers,
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Chun-Yi Lee, Lekensteyn, Lennart Poettering, Mantas Mikulėnas,
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Marti Raudsepp, Martin Pitt, Mauro Dreissig, Michael Biebl,
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Michal Schmidt, Michal Sekletar, Miklos Vajna, Nis Martensen,
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Oleksii Shevchuk, Olivier Brunel, Ramkumar Ramachandra, Thomas
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Bächler, Thomas Hindoe Paaboel Andersen, Tom Gundersen, Tony
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Camuso, Umut Tezduyar, Zbigniew Jędrzejewski-Szmek
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart PoetteringCHANGES WITH 195:
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * journalctl gained new --since= and --until= switches to
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering filter by time. It also now supports nice filtering for
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering units via --unit=/-u.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * Type=oneshot services may use ExecReload= and do the
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering right thing.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * The journal daemon now supports time-based rotation and
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering vacuuming, in addition to the usual disk-space based
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering rotation.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * The journal will now index the available field values for
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering each field name. This enables clients to show pretty drop
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering downs of available match values when filtering. The bash
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering completion of journalctl has been updated
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering accordingly. journalctl gained a new switch -F to list all
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering values a certain field takes in the journal database.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * More service events are now written as structured messages
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering to the journal, and made recognizable via message IDs.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * The timedated, localed and hostnamed mini-services which
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering previously only provided support for changing time, locale
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering and hostname settings from graphical DEs such as GNOME now
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering also have a minimal (but very useful) text-based client
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering utility each. This is probably the nicest way to changing
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering these settings from the command line now, especially since
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering it lists available options and is fully integrated with bash
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering completion.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * There's now a new tool "systemd-coredumpctl" to list and
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering extract coredumps from the journal.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * We now install a README each in /var/log/ and
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering /etc/rc.d/init.d explaining where the system logs and init
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering scripts went. This hopefully should help folks who go to
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering that dirs and look into the otherwise now empty void and
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering scratch their heads.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * When user-services are invoked (by systemd --user) the
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering $MANAGERPID env var is set to the PID of systemd.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * SIGRTMIN+24 when sent to a --user instance will now result
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering in immediate termination of systemd.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * gatewayd received numerous feature additions such as a
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering "follow" mode, for live syncing and filtering.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * browse.html now allows filtering and showing detailed
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering information on specific entries. Keyboard navigation and
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering mouse screen support has been added.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * gatewayd/journalctl now supports HTML5/JSON
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering Server-Sent-Events as output.
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering * The SysV init script compatibility logic will now
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering heuristically determine whether a script supports the
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering "reload" verb, and only then make this available as
2f3fcf85c5fa6c9c483b31823a0efdd28914c756Lennart Poettering "systemctl reload".
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering * "systemctl status --follow" has been removed, use "journalctl
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering -u" instead.
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering * journald.conf's RuntimeMinSize=, PersistentMinSize= settings
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering have been removed since they are hardly useful to be
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering configured.
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering * And I'd like to take the opportunity to specifically mention
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Zbigniew for his great contributions. Zbigniew, you rock!
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Contributions from: Andrew Eikum, Christian Hesse, Colin
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Guthrie, Daniel J Walsh, Dave Reisner, Eelco Dolstra, Ferenc
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Wágner, Kay Sievers, Lennart Poettering, Lukas Nykryn, Mantas
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Mikulėnas, Martin Mikkelsen, Martin Pitt, Michael Olbrich,
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Michael Stapelberg, Michal Schmidt, Sebastian Ott, Thomas
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Bächler, Umut Tezduyar, Will Woods, Wulf C. Krueger, Zbigniew
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Jędrzejewski-Szmek, Сковорода Никита Андреевич
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart PoetteringCHANGES WITH 194:
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering * If /etc/vconsole.conf is non-existent or empty we will no
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering longer load any console font or key map at boot by
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering default. Instead the kernel defaults will be left
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering intact. This is definitely the right thing to do, as no
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering configuration should mean no configuration, and hard-coding
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering font names that are different on all archs is probably a bad
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering idea. Also, the kernel default key map and font should be
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering good enough for most cases anyway, and mostly identical to
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering the userspace fonts/key maps we previously overloaded them
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering with. If distributions want to continue to default to a
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering non-kernel font or key map they should ship a default
7c04ad2da1cf08ebf53b9aa9671c8c1dc9577135Lennart Poettering /etc/vconsole.conf with the appropriate contents.
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Contributions from: Colin Walters, Daniel J Walsh, Dave
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Reisner, Kay Sievers, Lennart Poettering, Lukas Nykryn, Tollef
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering Fog Heen, Tom Gundersen, Zbigniew Jędrzejewski-Szmek
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart PoetteringCHANGES WITH 193:
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering * journalctl gained a new --cursor= switch to show entries
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering starting from the specified location in the journal.
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering * We now enforce a size limit on journal entry fields exported
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering with "-o json" in journalctl. Fields larger than 4K will be
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering assigned null. This can be turned off with --all.
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering * An (optional) journal gateway daemon is now available as
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering "systemd-journal-gatewayd.service". This service provides
7c04ad2da1cf08ebf53b9aa9671c8c1dc9577135Lennart Poettering access to the journal via HTTP and JSON. This functionality
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering will be used to implement live log synchronization in both
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering pull and push modes, but has various other users too, such
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering as easy log access for debugging of embedded devices. Right
cbeabcfbc5a5fa27385e5794780e8f034e090606Zbigniew Jędrzejewski-Szmek now it is already useful to retrieve the journal via HTTP:
cbeabcfbc5a5fa27385e5794780e8f034e090606Zbigniew Jędrzejewski-Szmek
cbeabcfbc5a5fa27385e5794780e8f034e090606Zbigniew Jędrzejewski-Szmek # systemctl start systemd-journal-gatewayd.service
cbeabcfbc5a5fa27385e5794780e8f034e090606Zbigniew Jędrzejewski-Szmek # wget http://localhost:19531/entries
cbeabcfbc5a5fa27385e5794780e8f034e090606Zbigniew Jędrzejewski-Szmek
cbeabcfbc5a5fa27385e5794780e8f034e090606Zbigniew Jędrzejewski-Szmek This will download the journal contents in a
cbeabcfbc5a5fa27385e5794780e8f034e090606Zbigniew Jędrzejewski-Szmek /var/log/messages compatible format. The same as JSON:
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering # curl -H"Accept: application/json" http://localhost:19531/entries
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering This service is also accessible via a web browser where a
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering single static HTML5 app is served that uses the JSON logic
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering to enable the user to do some basic browsing of the
ef3b5246879094e29cc99c4d24cbfeb19b7da49bLennart Poettering journal. This will be extended later on. Here's an example
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering screenshot of this app in its current state:
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering http://0pointer.de/public/journal-gatewayd
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering Contributions from: Kay Sievers, Lennart Poettering, Robert
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering Milasan, Tom Gundersen
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart PoetteringCHANGES WITH 192:
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * The bash completion logic is now available for journalctl
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering too.
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * We don't mount the "cpuset" controller anymore together with
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering "cpu" and "cpuacct", as "cpuset" groups generally cannot be
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering started if no parameters are assigned to it. "cpuset" hence
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering broke code that assumed it it could create "cpu" groups and
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering just start them.
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * journalctl -f will now subscribe to terminal size changes,
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering and line break accordingly.
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering Contributions from: Dave Reisner, Kay Sievers, Lennart
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering Poettering, Lukas Nykrynm, Mirco Tischler, Václav Pavlín
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart PoetteringCHANGES WITH 191:
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * nspawn will now create a symlink /etc/localtime in the
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering container environment, copying the host's timezone
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering setting. Previously this has been done via a bind mount, but
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering since symlinks cannot be bind mounted this has now been
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering changed to create/update the appropriate symlink.
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * journalctl -n's line number argument is now optional, and
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering will default to 10 if omitted.
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * journald will now log the maximum size the journal files may
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering take up on disk. This is particularly useful if the default
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering built-in logic of determining this parameter from the file
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering system size is used. Use "systemctl status
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering systemd-journald.service" to see this information.
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * The multi-seat X wrapper tool has been stripped down. As X
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering is now capable of enumerating graphics devices via udev in a
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering seat-aware way the wrapper is not strictly necessary
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering anymore. A stripped down temporary stop-gap is still shipped
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering until the upstream display managers have been updated to
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering fully support the new X logic. Expect this wrapper to be
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering removed entirely in one of the next releases.
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * HandleSleepKey= in logind.conf has been split up into
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering HandleSuspendKey= and HandleHibernateKey=. The old setting
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering is not available anymore. X11 and the kernel are
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering distuingishing between these keys and we should too. This
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering also means the inhibition lock for these keys has been split
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt into two.
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering Contributions from: Dave Airlie, Eelco Dolstra, Lennart
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering Poettering, Lukas Nykryn, Václav Pavlín
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart PoetteringCHANGES WITH 190:
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * Whenever a unit changes state we'll now log this to the
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering journal and show along the unit's own log output in
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering "systemctl status".
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering
d3a86981d1ae4c1d668e18868c3e6c9d2f23c144Lennart Poettering * ConditionPathIsMountPoint= can now properly detect bind
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering mount points too. (Previously, a bind mount of one file
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering system to another place in the same file system could not be
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering detected as mount, since they shared struct stat's st_dev
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering field.)
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering * We will now mount the cgroup controllers cpu, cpuacct,
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering cpuset and the controllers net_cls, net_prio together by
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering default.
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering * nspawn containers will now have a virtualized boot
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering ID. (i.e. /proc/sys/kernel/random/boot_id is now mounted
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering over with a randomized ID at container initialization). This
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering has the effect of making "journalctl -b" do the right thing
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering in a container.
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering * The JSON output journal serialization has been updated not
9ca3c17f207121b3c19a44217558b056a7585944Lennart Poettering to generate "endless" list objects anymore, but rather one
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering JSON object per line. This is more in line how most JSON
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering parsers expect JSON objects. The new output mode
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering "json-pretty" has been added to provide similar output, but
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering neatly aligned for readability by humans.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * We dropped all explicit sync() invocations in the shutdown
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering code. The kernel does this implicitly anyway in the kernel
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering reboot() syscall. halt(8)'s -n option is now a compatibility
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering no-op.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * We now support virtualized reboot() in containers, as
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering supported by newer kernels. We will fall back to exit() if
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering CAP_SYS_REBOOT is not available to the container. Also,
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering nspawn makes use of this now and will actually reboot the
a87197f5a22688626dc9bead29ddc1c572b074b9Zbigniew Jędrzejewski-Szmek container if the containerized OS asks for that.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * journalctl will only show local log output by default
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering now. Use --merge (-m) to show remote log output, too.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * libsystemd-journal gained the new sd_journal_get_usage()
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering call to determine the current disk usage of all journal
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering files. This is exposed in the new "journalctl --disk-usage"
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering command.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * journald gained a new configuration setting SplitMode= in
a87197f5a22688626dc9bead29ddc1c572b074b9Zbigniew Jędrzejewski-Szmek journald.conf which may be used to control how user journals
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering are split off. See journald.conf(5) for details.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * A new condition type ConditionFileNotEmpty= has been added.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * tmpfiles' "w" lines now support file globbing, to write
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering multiple files at once.
c20d8298029a39cc3e9602b30a4d23b951e11df8Kay Sievers
a87197f5a22688626dc9bead29ddc1c572b074b9Zbigniew Jędrzejewski-Szmek * We added Python bindings for the journal submission
a87197f5a22688626dc9bead29ddc1c572b074b9Zbigniew Jędrzejewski-Szmek APIs. More Python APIs for a number of selected APIs will
a87197f5a22688626dc9bead29ddc1c572b074b9Zbigniew Jędrzejewski-Szmek likely follow. Note that we intend to add native bindings
a87197f5a22688626dc9bead29ddc1c572b074b9Zbigniew Jędrzejewski-Szmek only for the Python language, as we consider it common
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering enough to deserve bindings shipped within systemd. There are
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering various projects outside of systemd that provide bindings
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering for languages such as PHP or Lua.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * Many conditions will now resolve specifiers such as %i. In
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering addition, PathChanged= and related directives of .path units
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering now support specifiers as well.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * There's now a new RPM macro definition for the system preset
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering dir: %_presetdir.
6a7d3d68bf1ae9bcdaa3a17bc76f72bb7b988ec4Lennart Poettering
6a7d3d68bf1ae9bcdaa3a17bc76f72bb7b988ec4Lennart Poettering * journald will now warn if it can't forward a message to the
6a7d3d68bf1ae9bcdaa3a17bc76f72bb7b988ec4Lennart Poettering syslog daemon because it's socket is full.
a87197f5a22688626dc9bead29ddc1c572b074b9Zbigniew Jędrzejewski-Szmek
a87197f5a22688626dc9bead29ddc1c572b074b9Zbigniew Jędrzejewski-Szmek * timedated will no longer write or process /etc/timezone,
c20d8298029a39cc3e9602b30a4d23b951e11df8Kay Sievers except on Debian. As we do not support late mounted /usr
ab06eef8101866dd1337c4759002f7360a9db416Anatol Pomozov anymore /etc/localtime always being a symlink is now safe,
c20d8298029a39cc3e9602b30a4d23b951e11df8Kay Sievers and hence the information in /etc/timezone is not necessary
c20d8298029a39cc3e9602b30a4d23b951e11df8Kay Sievers anymore.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * logind will now always reserve one VT for a text getty (VT6
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering by default). Previously if more than 6 X sessions where
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering started they took up all the VTs with auto-spawned gettys,
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering so that no text gettys were available anymore.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering * udev will now automatically inform the btrfs kernel logic
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering about btrfs RAID components showing up. This should make
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering simple hotplug based btrfs RAID assembly work.
35911459410714a0e9108b35da78f96919b65ee7Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * PID 1 will now increase its RLIMIT_NOFILE to 64K by default
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering (but not for its children which will stay at the kernel
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering default). This should allow setups with a lot more listening
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering sockets.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * systemd will now always pass the configured timezone to the
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering kernel at boot. timedated will do the same when the timezone
ad88e758d1b08a21d25971b074e119c167757109Zbigniew Jędrzejewski-Szmek is changed.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * logind's inhibition logic has been updated. By default,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering logind will now handle the lid switch, the power and sleep
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers keys all the time, even in graphical sessions. If DEs want
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers to handle these events on their own they should take the new
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering handle-power-key, handle-sleep-key and handle-lid-switch
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering inhibitors during their runtime. A simple way to achiveve
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering that is to invoke the DE wrapped in an invocation of:
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
fd86897568f7a1aed7ffe4c54ace6c158ddbdf7dKay Sievers systemd-inhibit --what=handle-power-key:handle-sleep-key:handle-lid-switch ...
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Access to unit operations is now checked via SELinux taking
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering the unit file label and client process label into account.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering * systemd will now notify the administrator in the journal
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering when he over-mounts a non-empty directory.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * There are new specifiers that are resolved in unit files,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering for the host name (%H), the machine ID (%m) and the boot ID
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering (%b).
156f7d09add8fc93cae8a3f13adcb2564931fee4Kay Sievers
156f7d09add8fc93cae8a3f13adcb2564931fee4Kay Sievers Contributions from: Allin Cottrell, Auke Kok, Brandon Philips,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Colin Guthrie, Colin Walters, Daniel J Walsh, Dave Reisner,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Eelco Dolstra, Jan Engelhardt, Kay Sievers, Lennart
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Poettering, Lucas De Marchi, Lukas Nykryn, Mantas Mikulėnas,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Martin Pitt, Matthias Clasen, Michael Olbrich, Pierre Schmitz,
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers Shawn Landden, Thomas Hindoe Paaboel Andersen, Tom Gundersen,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Václav Pavlín, Yin Kangkai, Zbigniew Jędrzejewski-Szmek
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart PoetteringCHANGES WITH 189:
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Support for reading structured kernel messages from
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering /dev/kmsg has now been added and is enabled by default.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Support for reading kernel messages from /proc/kmsg has now
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering been removed. If you want kernel messages in the journal
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering make sure to run a recent kernel (>= 3.5) that supports
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering reading structured messages from /dev/kmsg (see
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering above). /proc/kmsg is now exclusive property of classic
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering syslog daemons again.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * The libudev API gained the new
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering udev_device_new_from_device_id() call.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering * The logic for file system namespace (ReadOnlyDirectory=,
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering ReadWriteDirectoy=, PrivateTmp=) has been reworked not to
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering require pivot_root() anymore. This means fewer temporary
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering directories are created below /tmp for this feature.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * nspawn containers will now see and receive all submounts
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering made on the host OS below the root file system of the
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering container.
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Forward Secure Sealing is now supported for Journal files,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering which provide cryptographical sealing of journal files so
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering that attackers cannot alter log history anymore without this
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering being detectable. Lennart will soon post a blog story about
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering this explaining it in more detail.
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering * There are two new service settings RestartPreventExitStatus=
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering and SuccessExitStatus= which allow configuration of exit
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering status (exit code or signal) which will be excepted from the
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering restart logic, resp. consider successful.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers * journalctl gained the new --verify switch that can be used
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering to check the integrity of the structure of journal files and
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering (if Forward Secure Sealing is enabled) the contents of
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering journal files.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * nspawn containers will now be run with /dev/stdin, /dev/fd/
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering and similar symlinks pre-created. This makes running shells
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering as container init process a lot more fun.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek * The fstab support can now handle PARTUUID= and PARTLABEL=
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering entries.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * A new ConditionHost= condition has been added to match
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering against the hostname (with globs) and machine ID. This is
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering useful for clusters where a single OS image is used to
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering provision a large number of hosts which shall run slightly
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering different sets of services.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Services which hit the restart limit will now be placed in a
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering failure state.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Contributions from: Bertram Poettering, Dave Reisner, Huang
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Hang, Kay Sievers, Lennart Poettering, Lukas Nykryn, Martin
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Pitt, Simon Peeters, Zbigniew Jędrzejewski-Szmek
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart PoetteringCHANGES WITH 188:
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * When running in --user mode systemd will now become a
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering subreaper (PR_SET_CHILD_SUBREAPER). This should make the ps
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering tree a lot more organized.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers * A new PartOf= unit dependency type has been introduced that
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering may be used to group services in a natural way.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * "systemctl enable" may now be used to enable instances of
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering services.
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering * journalctl now prints error log levels in red, and
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering warning/notice log levels in bright white. It also supports
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering filtering by log level now.
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * cgtop gained a new -n switch (similar to top), to configure
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering the maximum number of iterations to run for. It also gained
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering -b, to run in batch mode (accepting no input).
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * The suffix ".service" may now be omitted on most systemctl
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering command lines involving service unit names.
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * There's a new bus call in logind to lock all sessions, as
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering well as a loginctl verb for it "lock-sessions".
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * libsystemd-logind.so gained a new call sd_journal_perror()
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering that works similar to libc perror() but logs to the journal
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering and encodes structured information about the error number.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * /etc/crypttab entries now understand the new keyfile-size=
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek option.
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * shutdown(8) now can send a (configurable) wall message when
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering a shutdown is cancelled.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * The mount propagation mode for the root file system will now
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering default to "shared", which is useful to make containers work
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering nicely out-of-the-box so that they receive new mounts from
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering the host. This can be undone locally by running "mount
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering --make-rprivate /" if needed.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * The prefdm.service file has been removed. Distributions
bf9335608821264163058a8b036a00775a8ffbe4Kay Sievers should maintain this unit downstream if they intend to keep
bf9335608821264163058a8b036a00775a8ffbe4Kay Sievers it around. However, we recommend writing normal unit files
bf9335608821264163058a8b036a00775a8ffbe4Kay Sievers for display managers instead.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Since systemd is a crucial part of the OS we will now
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering default to a number of compiler switches that improve
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering security (hardening) such as read-only relocations, stack
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering protection, and suchlike.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * The TimeoutSec= setting for services is now split into
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering TimeoutStartSec= and TimeoutStopSec= to allow configuration
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering of individual time outs for the start and the stop phase of
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering the service.
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers Contributions from: Artur Zaprzala, Arvydas Sidorenko, Auke
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Kok, Bryan Kadzban, Dave Reisner, David Strauss, Harald Hoyer,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Jim Meyering, Kay Sievers, Lennart Poettering, Mantas
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Mikulėnas, Martin Pitt, Michal Schmidt, Michal Sekletar, Peter
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Alfredsen, Shawn Landden, Simon Peeters, Terence Honles, Tom
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Gundersen, Zbigniew Jędrzejewski-Szmek
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart PoetteringCHANGES WITH 187:
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * The journal and id128 C APIs are now fully documented as man
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering pages.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Extra safety checks have been added when transitioning from
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering the initial RAM disk to the main system to avoid accidental
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering data loss.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * /etc/crypttab entries now understand the new keyfile-offset=
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering option.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * systemctl -t can now be used to filter by unit load state.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * The journal C API gained the new sd_journal_wait() call to
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering make writing synchronous journal clients easier.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * journalctl gained the new -D switch to show journals from a
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering specific directory.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering * journalctl now displays a special marker between log
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering messages of two different boots.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * The journal is now explicitly flushed to /var via a service
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering systemd-journal-flush.service, rather than implicitly simply
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering by seeing /var/log/journal to be writable.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * journalctl (and the journal C APIs) can now match for much
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering more complex expressions, with alternatives and
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering disjunctions.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * When transitioning from the initial RAM disk to the main
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering system we will now kill all processes in a killing spree to
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering ensure no processes stay around by accident.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Three new specifiers may be used in unit files: %u, %h, %s
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering resolve to the user name, user home directory resp. user
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering shell. This is useful for running systemd user instances.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * We now automatically rotate journal files if their data
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering object hash table gets a fill level > 75%. We also size the
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering hash table based on the configured maximum file size. This
43447fb72693d62363a1a271dacc70d400ed685bLennart Poettering together should lower hash collisions drastically and thus
43447fb72693d62363a1a271dacc70d400ed685bLennart Poettering speed things up a bit.
43447fb72693d62363a1a271dacc70d400ed685bLennart Poettering
43447fb72693d62363a1a271dacc70d400ed685bLennart Poettering * journalctl gained the new "--header" switch to introspect
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering header data of journal files.
499b604b21c02ee64c8590a76d7900d64d7a5cb7Zbigniew Jędrzejewski-Szmek
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * A new setting SystemCallFilters= has been added to services
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering which may be used to apply blacklists or whitelists to
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering system calls. This is based on SECCOMP Mode 2 of Linux 3.5.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * nspawn gained a new --link-journal= switch (and quicker: -j)
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering to link the container journal with the host. This makes it
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering very easy to centralize log viewing on the host for all
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering guests while still keeping the journal files separated.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering * Many bugfixes and optimizations
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Contributions from: Auke Kok, Eelco Dolstra, Harald Hoyer, Kay
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Sievers, Lennart Poettering, Malte Starostik, Paul Menzel, Rex
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Tsai, Shawn Landden, Tom Gundersen, Ville Skyttä, Zbigniew
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering Jędrzejewski-Szmek
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart PoetteringCHANGES WITH 186:
6aa8d43ade72e24c9426e604f7fc4b7582b9db7cLennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * Several tools now understand kernel command line arguments,
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering which are only read when run in an initial RAM disk. They
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering usually follow closely their normal counterparts, but are
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering prefixed with rd.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * There's a new tool to analyze the readahead files that are
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering automatically generated at boot. Use:
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering /usr/lib/systemd/systemd-readahead analyze /.readahead
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * We now provide an early debug shell on tty9 if this enabled. Use:
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering systemctl enable debug-shell.service
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * All plymouth related units have been moved into the Plymouth
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers package. Please make sure to upgrade your Plymouth version
40e21da873c120936faff0aa42a6533f6933edf7Kay Sievers as well.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
1aed45907715ad4dce7dbc84a957cd5de8cca36eLennart Poettering * systemd-tmpfiles now supports getting passed the basename of
1aed45907715ad4dce7dbc84a957cd5de8cca36eLennart Poettering a configuration file only, in which case it will look for it
1aed45907715ad4dce7dbc84a957cd5de8cca36eLennart Poettering in all appropriate directories automatically.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * udevadm info now takes a /dev or /sys path as argument, and
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering does the right thing. Example:
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering udevadm info /dev/sda
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering udevadm info /sys/class/block/sda
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * systemctl now prints a warning if a unit is stopped but a
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering unit that might trigger it continues to run. Example: a
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering service is stopped but the socket that activates it is left
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering running.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering * "systemctl status" will now mention if the log output was
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering shortened due to rotation since a service has been started.
85d683970b7dc2c4470b2b7d60c3d9dce28c1471Lennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * The journal API now exposes functions to determine the
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering "cutoff" times due to rotation.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * journald now understands SIGUSR1 and SIGUSR2 for triggering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering immediately flushing of runtime logs to /var if possible,
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering resp. for triggering immediate rotation of the journal
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering files.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * It is now considered an error if a service is attempted to
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering be stopped that is not loaded.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * XDG_RUNTIME_DIR now uses numeric UIDs instead of usernames.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * systemd-analyze now supports Python 3
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * tmpfiles now supports cleaning up directories via aging
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering where the first level dirs are always kept around but
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering directories beneath it automatically aged. This is enabled
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering by prefixing the age field with '~'.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt * Seat objects now expose CanGraphical, CanTTY properties
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt which is required to deal with very fast bootups where the
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering display manager might be running before the graphics drivers
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering completed initialization.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * Seat objects now expose a State property.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * We now include RPM macros for service enabling/disabling
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering based on the preset logic. We recommend RPM based
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering distributions to make use of these macros if possible. This
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering makes it simpler to reuse RPM spec files across
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering distributions.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * We now make sure that the collected systemd unit name is
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering always valid when services log to the journal via
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering STDOUT/STDERR.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * There's a new man page kernel-command-line(7) detailing all
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering command line options we understand.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * The fstab generator may now be disabled at boot by passing
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering fstab=0 on the kernel command line.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * A new kernel command line option modules-load= is now understood
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering to load a specific kernel module statically, early at boot.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * Unit names specified on the systemctl command line are now
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering automatically escaped as needed. Also, if file system or
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering device paths are specified they are automatically turned
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering into the appropriate mount or device unit names. Example:
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering systemctl status /home
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering systemctl status /dev/sda
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * The SysVConsole= configuration option has been removed from
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering system.conf parsing.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * The SysV search path is no longer exported on the D-Bus
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering Manager object.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * The Names= option is been removed from unit file parsing.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * There's a new man page bootup(7) detailing the boot process.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * Every unit and every generator we ship with systemd now
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering comes with full documentation. The self-explanatory boot is
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering complete.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * A couple of services gained "systemd-" prefixes in their
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering name if they wrap systemd code, rather than only external
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering code. Among them fsck@.service which is now
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering systemd-fsck@.service.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * The HaveWatchdog property has been removed from the D-Bus
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering Manager object.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * systemd.confirm_spawn= on the kernel command line should now
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering work sensibly.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * There's a new man page crypttab(5) which details all options
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering we actually understand.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * systemd-nspawn gained a new --capability= switch to pass
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering additional capabilities to the container.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * timedated will now read known NTP implementation unit names
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering from /usr/lib/systemd/ntp-units.d/*.list,
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering systemd-timedated-ntp.target has been removed.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * journalctl gained a new switch "-b" that lists log data of
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering the current boot only.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * The notify socket is in the abstract namespace again, in
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering order to support daemons which chroot() at start-up.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * There is a new Storage= configuration option for journald
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering which allows configuration of where log data should go. This
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering also provides a way to disable journal logging entirely, so
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering that data collected is only forwarded to the console, the
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering kernel log buffer or another syslog implementation.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * Many bugfixes and optimizations
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering Contributions from: Auke Kok, Colin Guthrie, Dave Reisner,
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering David Strauss, Eelco Dolstra, Kay Sievers, Lennart Poettering,
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering Lukas Nykryn, Michal Schmidt, Michal Sekletar, Paul Menzel,
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering Shawn Landden, Tom Gundersen
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart PoetteringCHANGES WITH 185:
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * "systemctl help <unit>" now shows the man page if one is
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering available.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * Several new man pages have been added.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * MaxLevelStore=, MaxLevelSyslog=, MaxLevelKMsg=,
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering MaxLevelConsole= can now be specified in
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering journald.conf. These options allow reducing the amount of
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering data stored on disk or forwarded by the log level.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * TimerSlackNSec= can now be specified in system.conf for
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering PID1. This allows system-wide power savings.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering Contributions from: Dave Reisner, Kay Sievers, Lauri Kasanen,
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering Lennart Poettering, Malte Starostik, Marc-Antoine Perennou,
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering Matthias Clasen
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart PoetteringCHANGES WITH 184:
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * logind is now capable of (optionally) handling power and
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering sleep keys as well as the lid switch.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * journalctl now understands the syntax "journalctl
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering /usr/bin/avahi-daemon" to get all log output of a specific
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering daemon.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering * CapabilityBoundingSet= in system.conf now also influences
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering the capability bound set of usermode helpers of the kernel.
8ad2685909f988602eca32ccba5c8ea4159e7f2eLennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering Contributions from: Daniel Drake, Daniel J. Walsh, Gert
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering Michael Kulyk, Harald Hoyer, Jean Delvare, Kay Sievers,
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering Lennart Poettering, Matthew Garrett, Matthias Clasen, Paul
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering Menzel, Shawn Landden, Tero Roponen, Tom Gundersen
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart PoetteringCHANGES WITH 183:
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * Note that we skipped 139 releases here in order to set the
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering new version to something that is greater than both udev's
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering and systemd's most recent version number.
96ec33c079caacdf9c7cdfb2cad2f1bc48dfca65Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * udev: all udev sources are merged into the systemd source tree now.
96ec33c079caacdf9c7cdfb2cad2f1bc48dfca65Lennart Poettering All future udev development will happen in the systemd tree. It
96ec33c079caacdf9c7cdfb2cad2f1bc48dfca65Lennart Poettering is still fully supported to use the udev daemon and tools without
96ec33c079caacdf9c7cdfb2cad2f1bc48dfca65Lennart Poettering systemd running, like in initramfs or other init systems. Building
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering udev though, will require the *build* of the systemd tree, but
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering udev can be properly *run* without systemd.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * udev: /lib/udev/devices/ are not read anymore; systemd-tmpfiles
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering should be used to create dead device nodes as workarounds for broken
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering subsystems.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * udev: RUN+="socket:..." and udev_monitor_new_from_socket() is
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering no longer supported. udev_monitor_new_from_netlink() needs to be
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering used to subscribe to events.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * udev: when udevd is started by systemd, processes which are left
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering behind by forking them off of udev rules, are unconditionally cleaned
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering up and killed now after the event handling has finished. Services or
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering daemons must be started as systemd services. Services can be
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering pulled-in by udev to get started, but they can no longer be directly
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering forked by udev rules.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * udev: the daemon binary is called systemd-udevd now and installed
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering in /usr/lib/systemd/. Standalone builds or non-systemd systems need
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering to adapt to that, create symlink, or rename the binary after building
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering it.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * libudev no longer provides these symbols:
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering udev_monitor_from_socket()
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering udev_queue_get_failed_list_entry()
ab06eef8101866dd1337c4759002f7360a9db416Anatol Pomozov udev_get_{dev,sys,run}_path()
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering The versions number was bumped and symbol versioning introduced.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * systemd-loginctl and systemd-journalctl have been renamed
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering to loginctl and journalctl to match systemctl.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * The config files: /etc/systemd/systemd-logind.conf and
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering /etc/systemd/systemd-journald.conf have been renamed to
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering logind.conf and journald.conf. Package updates should rename
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering the files to the new names on upgrade.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * For almost all files the license is now LGPL2.1+, changed
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering from the previous GPL2.0+. Exceptions are some minor stuff
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering of udev (which will be changed to LGPL2.1 eventually, too),
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering and the MIT licensed sd-daemon.[ch] library that is suitable
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering to be used as drop-in files.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * systemd and logind now handle system sleep states, in
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering particular suspending and hibernating.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * logind now implements a sleep/shutdown/idle inhibiting logic
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering suitable for a variety of uses. Soonishly Lennart will blog
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering about this in more detail.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * var-run.mount and var-lock.mount are no longer provided
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering (which prevously bind mounted these directories to their new
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering places). Distributions which have not converted these
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering directories to symlinks should consider stealing these files
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering from git history and add them downstream.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * We introduced the Documentation= field for units and added
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering this to all our shipped units. This is useful to make it
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering easier to explore the boot and the purpose of the various
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering units.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * All smaller setup units (such as
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering systemd-vconsole-setup.service) now detect properly if they
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering are run in a container and are skipped when
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering appropriate. This guarantees an entirely noise-free boot in
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering Linux container environments such as systemd-nspawn.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * A framework for implementing offline system updates is now
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt integrated, for details see:
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering http://freedesktop.org/wiki/Software/systemd/SystemUpdates
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * A new service type Type=idle is available now which helps us
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering avoiding ugly interleaving of getty output and boot status
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering messages.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * There's now a system-wide CapabilityBoundingSet= option to
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering globally reduce the set of capabilities for the
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering system. This is useful to drop CAP_SYS_MKNOD, CAP_SYS_RAWIO,
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering CAP_NET_RAW, CAP_SYS_MODULE, CAP_SYS_TIME, CAP_SYS_PTRACE or
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering even CAP_NET_ADMIN system-wide for secure systems.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * There are now system-wide DefaultLimitXXX= options to
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering globally change the defaults of the various resource limits
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering for all units started by PID 1.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * Harald Hoyer's systemd test suite has been integrated into
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering systemd which allows easy testing of systemd builds in qemu
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering and nspawn. (This is really awesome! Ask us for details!)
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * The fstab parser is now implemented as generator, not inside
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering of PID 1 anymore.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * systemctl will now warn you if .mount units generated from
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering /etc/fstab are out of date due to changes in fstab that
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering haven't been read by systemd yet.
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering * systemd is now suitable for usage in initrds. Dracut has
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering already been updated to make use of this. With this in place
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering initrds get a slight bit faster but primarily are much
0428ddb729d12563b827510e04663de9cb4056f3Lennart Poettering easier to introspect and debug since "systemctl status" in
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering the host system can be used to introspect initrd services,
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering and the journal from the initrd is kept around too.
6827101ab4df4730a22062f4b3a8f8c2bae5be28Zbigniew Jędrzejewski-Szmek
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * systemd-delta has been added, a tool to explore differences
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering between user/admin configuration and vendor defaults.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
6827101ab4df4730a22062f4b3a8f8c2bae5be28Zbigniew Jędrzejewski-Szmek * PrivateTmp= now affects both /tmp and /var/tmp.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * Boot time status messages are now much prettier and feature
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering proper english language. Booting up systemd has never been
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering so sexy.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * Read-ahead pack files now include the inode number of all
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering files to pre-cache. When the inode changes the pre-caching
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering is not attempted. This should be nicer to deal with updated
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering packages which might result in changes of read-ahead
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering patterns.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * We now temporaritly lower the kernel's read_ahead_kb variable
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering when collecting read-ahead data to ensure the kernel's
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering built-in read-ahead does not add noise to our measurements
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering of necessary blocks to pre-cache.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * There's now RequiresMountsFor= to add automatic dependencies
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering for all mounts necessary for a specific file system path.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * MountAuto= and SwapAuto= have been removed from
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering system.conf. Mounting file systems at boot has to take place
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering in systemd now.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * nspawn now learned a new switch --uuid= to set the machine
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering ID on the command line.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * nspawn now learned the -b switch to automatically search
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering for an init system.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * vt102 is now the default TERM for serial TTYs, upgraded from
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering vt100.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * systemd-logind now works on VT-less systems.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * The build tree has been reorganized. The individual
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering components now have directories of their own.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * A new condition type ConditionPathIsReadWrite= is now available.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * nspawn learned the new -C switch to create cgroups for the
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering container in other hierarchies.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * We now have support for hardware watchdogs, configurable in
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering system.conf.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * The scheduled shutdown logic now has a public API.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * We now mount /tmp as tmpfs by default, but this can be
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering masked and /etc/fstab can override it.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
1cb88f2c61f590083847d65cd5a518e834da87d3Lennart Poettering * Since udisks doesn't make use of /media anymore we are not
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering mounting a tmpfs on it anymore.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * journalctl gained a new --local switch to only interleave
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering locally generated journal files.
15f47220ab59f480ddedc422cad435091778fc95Ben Boeckel
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * We can now load the IMA policy at boot automatically.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering * The GTK tools have been split off into a systemd-ui.
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering Contributions from: Andreas Schwab, Auke Kok, Ayan George,
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering Colin Guthrie, Daniel Mack, Dave Reisner, David Ward, Elan
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering Ruusamäe, Frederic Crozat, Gergely Nagy, Guillermo Vidal,
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering Hannes Reinecke, Harald Hoyer, Javier Jardón, Kay Sievers,
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering Lennart Poettering, Lucas De Marchi, Léo Gillot-Lamure,
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering Marc-Antoine Perennou, Martin Pitt, Matthew Monaco, Maxim
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering A. Mikityanskiy, Michael Biebl, Michael Olbrich, Michal
4d92e078e9d7e9a9d346065ea5e4afbafbdadb48Lennart Poettering Schmidt, Nis Martensen, Patrick McCarty, Roberto Sassu, Shawn
4d92e078e9d7e9a9d346065ea5e4afbafbdadb48Lennart Poettering Landden, Sjoerd Simons, Sven Anders, Tollef Fog Heen, Tom
4d92e078e9d7e9a9d346065ea5e4afbafbdadb48Lennart Poettering Gundersen
4d92e078e9d7e9a9d346065ea5e4afbafbdadb48Lennart Poettering
4d92e078e9d7e9a9d346065ea5e4afbafbdadb48Lennart PoetteringCHANGES WITH 44:
139ee8cc316a861bcc8a8ebdf4a8449dffe16f79Lennart Poettering
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering * This is mostly a bugfix release
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering * Support optional initialization of the machine ID from the
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering KVM or container configured UUID.
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering * Support immediate reboots with "systemctl reboot -ff"
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering * Show /etc/os-release data in systemd-analyze output
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering * Many bugfixes for the journal, including endianness fixes and
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering ensuring that disk space enforcement works
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering * sd-login.h is C++ comptaible again
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering * Extend the /etc/os-release format on request of the Debian
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering folks
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering * We now refuse non-UTF8 strings used in various configuration
f9b557200b6d59a3dce1623d0873a259ee2fe421Lennart Poettering and unit files. This is done to ensure we don't pass invalid
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering data over D-Bus or expose it elsewhere.
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * Register Mimo USB Screens as suitable for automatic seat
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering configuration
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * Read SELinux client context from journal clients in a race
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering free fashion
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * Reorder configuration file lookup order. /etc now always
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering overrides /run in order to allow the administrator to always
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering and unconditionally override vendor supplied or
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering automatically generated data.
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * The various user visible bits of the journal now have man
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering pages. We still lack man pages for the journal API calls
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering however.
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * We now ship all man pages in HTML format again in the
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering tarball.
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering Contributions from: Dave Reisner, Dirk Eibach, Frederic
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering Crozat, Harald Hoyer, Kay Sievers, Lennart Poettering, Marti
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering Raudsepp, Michal Schmidt, Shawn Landden, Tero Roponen, Thierry
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering Reding
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart PoetteringCHANGES WITH 43:
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * This is mostly a bugfix release
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * systems lacking /etc/os-release are no longer supported.
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * Various functionality updates to libsystemd-login.so
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * Track class of PAM logins to distuingish greeters from
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering normal user logins.
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering Contributions from: Kay Sievers, Lennart Poettering, Michael
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering Biebl
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart PoetteringCHANGES WITH 42:
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt * This is an important bugfix release for v41.
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering * Building man pages is now optional which should be useful
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering for those building systemd from git but unwilling to install
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering xsltproc.
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering * Watchdog support for supervising services is now usable. In
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering a future release support for hardware watchdogs
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering (i.e. /dev/watchdog) will be added building on this.
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering * Service start rate limiting is now configurable and can be
075d4ecb4026c5bc55e73bd2d44e3fc4d679adc7Lennart Poettering turned off per service. When a start rate limit is hit a
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering reboot can automatically be triggered.
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering * New CanReboot(), CanPowerOff() bus calls in systemd-logind.
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering Contributions from: Benjamin Franzke, Bill Nottingham,
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering Frederic Crozat, Lennart Poettering, Michael Olbrich, Michal
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering Schmidt, Michał Górny, Piotr Drąg
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart PoetteringCHANGES WITH 41:
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering * The systemd binary is installed /usr/lib/systemd/systemd now;
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering An existing /sbin/init symlink needs to be adapted with the
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering package update.
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering * The code that loads kernel modules has been ported to invoke
6563b535a062055ae68f2e574018d9d04a864b65Lennart Poettering libkmod directly, instead of modprobe. This means we do not
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering support systems with module-init-tools anymore.
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering * Watchdog support is now already useful, but still not
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering complete.
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering * A new kernel command line option systemd.setenv= is
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering understood to set system wide environment variables
6563b535a062055ae68f2e574018d9d04a864b65Lennart Poettering dynamically at boot.
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering * We now limit the set of capabilities of systemd-journald.
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
6563b535a062055ae68f2e574018d9d04a864b65Lennart Poettering * We now set SIGPIPE to ignore by default, since it only is
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering useful in shell pipelines, and has little use in general
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering code. This can be disabled with IgnoreSIPIPE=no in unit
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering files.
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering Contributions from: Benjamin Franzke, Kay Sievers, Lennart
597c52cfedb5edd13ee1635fa6be72fc80e587c3Lennart Poettering Poettering, Michael Olbrich, Michal Schmidt, Tom Gundersen,
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering William Douglas
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart PoetteringCHANGES WITH 40:
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * This is mostly a bugfix release
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * We now expose the reason why a service failed in the
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering "Result" D-Bus property.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
8d0256b7eb119de92c748cf566257996b02fb506Lennart Poettering * Rudimentary service watchdog support (will be completed over
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering the next few releases.)
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * When systemd forks off in order execute some service we will
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering now immediately changes its argv[0] to reflect which process
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering it will execute. This is useful to minimize the time window
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering with a generic argv[0], which makes bootcharts more useful
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering Contributions from: Alvaro Soliverez, Chris Paulson-Ellis, Kay
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering Sievers, Lennart Poettering, Michael Olbrich, Michal Schmidt,
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering Mike Kazantsev, Ray Strode
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart PoetteringCHANGES WITH 39:
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * This is mostly a test release, but incorporates many
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering bugfixes.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * New systemd-cgtop tool to show control groups by their
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering resource usage.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Linking against libacl for ACLs is optional again. If
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering disabled, support tracking device access for active logins
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering goes becomes unavailable, and so does access to the user
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering journals by the respective users.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * If a group "adm" exists, journal files are automatically
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering owned by them, thus allow members of this group full access
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering to the system journal as well as all user journals.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * The journal now stores the SELinux context of the logging
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering client for all entries.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Add C++ inclusion guards to all public headers
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * New output mode "cat" in the journal to print only text
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering messages, without any meta data like date or time.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Include tiny X server wrapper as a temporary stop-gap to
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering teach XOrg udev display enumeration. This is used by display
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering managers such as gdm, and will go away as soon as XOrg
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering learned native udev hotplugging for display devices.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Add new systemd-cat tool for executing arbitrary programs
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering with STDERR/STDOUT connected to the journal. Can also act as
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering BSD logger replacement, and does so by default.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Optionally store all locally generated coredumps in the
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering journal along with meta data.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * systemd-tmpfiles learnt four new commands: n, L, c, b, for
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering writing short strings to files (for usage for /sys), and for
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering creating symlinks, character and block device nodes.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * New unit file option ControlGroupPersistent= to make cgroups
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering persistent, following the mechanisms outlined in
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering http://www.freedesktop.org/wiki/Software/systemd/PaxControlGroups
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
a98d5d64720bdf32e3b5f72f896b583e23f730adLennart Poettering * Support multiple local RTCs in a sane way
a98d5d64720bdf32e3b5f72f896b583e23f730adLennart Poettering
a98d5d64720bdf32e3b5f72f896b583e23f730adLennart Poettering * No longer monopolize IO when replaying readahead data on
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering rotating disks, since we might starve non-file-system IO to
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering death, since fanotify() will not see accesses done by blkid,
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering or fsck.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
d28315e4aff91560ed4c2fc9f876ec8bfc559f2dJan Engelhardt * Don't show kernel threads in systemd-cgls anymore, unless
dca348bcbb462305864526c587495a14a76bfcdeJan Engelhardt requested with new -k switch.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering Contributions from: Dan Horák, Kay Sievers, Lennart
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering Poettering, Michal Schmidt
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart PoetteringCHANGES WITH 38:
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * This is mostly a test release, but incorporates many
aaccc32cdc44b2b972946e44792d63ae17c089c2Lennart Poettering bugfixes.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * The git repository moved to:
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering git://anongit.freedesktop.org/systemd/systemd
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering ssh://git.freedesktop.org/git/systemd/systemd
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * First release with the journal
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering http://0pointer.de/blog/projects/the-journal.html
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * The journal replaces both systemd-kmsg-syslogd and
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering systemd-stdout-bridge.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * New sd_pid_get_unit() API call in libsystemd-logind
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Many systemadm clean-ups
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Introduce remote-fs-pre.target which is ordered before all
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering remote mounts and may be used to start services before all
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering remote mounts.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Added Mageia support
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Add bash completion for systemd-loginctl
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Actively monitor PID file creation for daemons which exit in
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering the parent process before having finished writing the PID
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering file in the daemon process. Daemons which do this need to be
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering fixed (i.e. PID file creation must have finished before the
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering parent exits), but we now react a bit more gracefully to them.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * Add colourful boot output, mimicking the well-known output
aad803af990f7c88e94427b9278d88afe3a12d38Lennart Poettering of existing distributions.
aad803af990f7c88e94427b9278d88afe3a12d38Lennart Poettering
aad803af990f7c88e94427b9278d88afe3a12d38Lennart Poettering * New option PassCredentials= for socket units, for
aad803af990f7c88e94427b9278d88afe3a12d38Lennart Poettering compatibility with a recent kernel ABI breakage.
aad803af990f7c88e94427b9278d88afe3a12d38Lennart Poettering
aad803af990f7c88e94427b9278d88afe3a12d38Lennart Poettering * /etc/rc.local is now hooked in via a generator binary, and
aad803af990f7c88e94427b9278d88afe3a12d38Lennart Poettering thus will no longer act as synchronization point during
b6a867398de9f75fb623a84db7c6181d26b0a8d5Lennart Poettering boot.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * systemctl list-unit-files now supports --root=.
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering * systemd-tmpfiles now understands two new commands: z, Z for
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering relabelling files according to the SELinux database. This is
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering useful to apply SELinux labels to specific files in /sys,
0c11f949db8d6d9899e0c473bf1f8cca0614493eLennart Poettering among other things.
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * Output of SysV services is now forwarded to both the console
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering and the journal by default, not only just the console.
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * New man pages for all APIs from libsystemd-login.
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * The build tree got reorganized and a the build system is a
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering lot more modular allowing embedded setups to specifically
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering select the components of systemd they are interested in.
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * Support for Linux systems lacking the kernel VT subsystem is
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering restored.
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * configure's --with-rootdir= got renamed to
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering --with-rootprefix= to follow the naming used by udev and
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering kmod
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * Unless specified otherwise we'll now install to /usr instead
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering of /usr/local by default.
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * Processes with '@' in argv[0][0] are now excluded from the
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering final shut-down killing spree, following the logic explained
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering in:
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering http://www.freedesktop.org/wiki/Software/systemd/RootStorageDaemons
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * All processes remaining in a service cgroup when we enter
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering the START or START_PRE states are now killed with
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering SIGKILL. That means it is no longer possible to spawn
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering background processes from ExecStart= lines (which was never
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering supported anyway, and bad style).
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering * New PropagateReloadTo=/PropagateReloadFrom= options to bind
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering reloading of units together.
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering Contributions from: Bill Nottingham, Daniel J. Walsh, Dave
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering Reisner, Dexter Morgan, Gregs Gregs, Jonathan Nieder, Kay
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering Sievers, Lennart Poettering, Michael Biebl, Michal Schmidt,
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering Michał Górny, Ran Benita, Thomas Jarosch, Tim Waugh, Tollef
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering Fog Heen, Tom Gundersen, Zbigniew Jędrzejewski-Szmek
38a60d7112d33ffd596b23e8df53d75a7c09e71bLennart Poettering