Context Navigation

← Previous Change
Ticket Comment History
Next Change →

Changes between Initial Version and Version 1 of Ticket #4298, comment 2

Timestamp:: 07/10/2018 08:12:35 PM (6 years ago)
Author:: Bruce Dubbs

Legend:

: Unmodified
: Added
: Removed
: Modified

Ticket #4298, comment 2

-              initial
+              v1
+{{{
 CHANGES WITH 239:
         * NETWORK INTERFACE DEVICE NAMING CHANGES: systemd-udevd's "net_id"
+          NETWORK INTERFACE DEVICE NAMING CHANGES: systemd-udevd's "net_id"
           builtin will name network interfaces differently than in previous
           versions for virtual network interfaces created with SR-IOV and NPAR
 …
           not renamed and the kernel default (eth<n>) was used.
         * AF_INET and AF_INET6 are dropped from RestrictAddressFamilies= in
+          AF_INET and AF_INET6 are dropped from RestrictAddressFamilies= in
           systemd-logind.service. Since v235, IPAddressDeny=any has been set to
           the unit. So, it is expected that the default behavior of
 …
           e.g. NIS.
         * When the RestrictNamespaces= unit property is specified multiple
+          When the RestrictNamespaces= unit property is specified multiple
           times, then the specified types are merged now. Previously, only the
           last assignment was used. So, if distribution packagers or
 …
           may be necessary to update the file.
         * When OnFailure= is used in combination with Restart= on a service
+          When OnFailure= is used in combination with Restart= on a service
           unit, then the specified units will no longer be triggered on
           failures that result in restarting. Previously, the specified units
 …
           documentation.
         * systemd-tmpfiles will now print a notice whenever it encounters
+          systemd-tmpfiles will now print a notice whenever it encounters
           tmpfiles.d/ lines referencing the /var/run/ directory. It will
           recommend reworking them to use the /run/ directory instead (for
 …
           them.
         * systemctl disable/unmask/preset/preset-all cannot be used with
+          systemctl disable/unmask/preset/preset-all cannot be used with
           --runtime. Previously this was allowed, but resulted in unintuitive
           behaviour that wasn't useful. systemctl disable/unmask will now undo
 …
           any relevant symlinks both in /run and /etc.
         * Note that all long-running system services shipped with systemd will
+          Note that all long-running system services shipped with systemd will
           now default to a system call whitelist (rather than a blacklist, as
           before). In particular, systemd-udevd will now enforce one too. For
 …
           reboot and clock changing operations from udev rules.
         * sd-boot acquired new loader configuration settings to optionally turn
+          sd-boot acquired new loader configuration settings to optionally turn
           off Windows and MacOS boot partition discovery as well as
           reboot-into-firmware menu items. It is also able to pick a better
 …
           configuration settings to change the resolution explicitly.
         * systemd-resolved now supports DNS-over-TLS. It's still
+          systemd-resolved now supports DNS-over-TLS. It's still
           turned off by default, use DNSOverTLS=opportunistic to turn it on in
           resolved.conf. We intend to make this the default as soon as couple
 …
           establishing a TLS/TCP connection are implemented.
         * systemd-resolved.service and systemd-networkd.service now set
+          systemd-resolved.service and systemd-networkd.service now set
           DynamicUser=yes. The users systemd-resolve and systemd-network are
           not created by systemd-sysusers.
         * The systemd-resolve tool has been renamed to resolvectl (it also
+          The systemd-resolve tool has been renamed to resolvectl (it also
           remains available under the old name, for compatibility), and its
           interface is now verb-based, similar in style to the other <xyz>ctl
           tools, such as systemctl or loginctl.
         * The resolvectl/systemd-resolve tool also provides 'resolvconf'
+          The resolvectl/systemd-resolve tool also provides 'resolvconf'
           compatibility. It may be symlinked under the 'resolvconf' name, in
           which case it will take arguments and input compatible with the
           Debian and FreeBSD resolvconf tool.
         * Support for suspend-then-hibernate has been added, i.e. a sleep mode
+          Support for suspend-then-hibernate has been added, i.e. a sleep mode
           where the system initially suspends, and after a time-out resumes and
           hibernates again.
         * networkd's ClientIdentifier= now accepts a new option "duid-only". If
+          networkd's ClientIdentifier= now accepts a new option "duid-only". If
           set the client will only send a DUID as client identifier.
         * The nss-systemd glibc NSS module will now enumerate dynamic users and
+          The nss-systemd glibc NSS module will now enumerate dynamic users and
           groups in effect. Previously, it could resolve UIDs/GIDs to user
           names/groups and vice versa, but did not support enumeration.
         * journald's Compress= configuration setting now optionally accepts a
+          journald's Compress= configuration setting now optionally accepts a
           byte threshold value. All journal objects larger than this threshold
           will be compressed, smaller ones will not. Previously this threshold
           was not configurable and set to 512.
         * A new system.conf setting NoNewPrivileges= is now available which may
+          A new system.conf setting NoNewPrivileges= is now available which may
           be used to turn off acquisition of new privileges system-wide
           (i.e. set Linux' PR_SET_NO_NEW_PRIVS for PID 1 itself, and thus also
 …
           in particular su and sudo.
         * A new service systemd-time-sync-wait.service has been added. If
+          A new service systemd-time-sync-wait.service has been added. If
           enabled it will delay the time-sync.target unit at boot until time
           synchronization has been received from the network. This
 …
           services.
         * When hibernating, systemd will now inform the kernel of the image
+          When hibernating, systemd will now inform the kernel of the image
           write offset, on kernels new enough to support this. This means swap
           files should work for hibernation now.
         * When loading unit files, systemd will now look for drop-in unit files
+          When loading unit files, systemd will now look for drop-in unit files
           extensions in additional places. Previously, for a unit file name
           "foo-bar-baz.service" it would look for dropin files in
 …
           name following the last dash.
         * Unit files and other configuration files that support specifier
+          Unit files and other configuration files that support specifier
           expansion now understand another three new specifiers: %T and %V will
           resolve to /tmp and /var/tmp respectively, or whatever temporary
 …
           /etc (for system units) or $XDG_CONFIG_HOME (for user units).
         * The ExecStart= lines of unit files are no longer required to
+          The ExecStart= lines of unit files are no longer required to
           reference absolute paths. If non-absolute paths are specified the
           specified binary name is searched within the service manager's
 …
           use absolute paths for all binaries specified in unit files.
         * Units gained a new load state "bad-setting", which is used when a
+          Units gained a new load state "bad-setting", which is used when a
           unit file was loaded, but contained fatal errors which prevent it
           from being started (for example, a service unit has been defined
           lacking both ExecStart= and ExecStop= lines).
         * coredumpctl's "gdb" verb has been renamed to "debug", in order to
+          coredumpctl's "gdb" verb has been renamed to "debug", in order to
           support alternative debuggers, for example lldb. The old name
           continues to be available however, for compatibility reasons. Use the
 …
           to pick an alternative debugger instead of the default gdb.
         * systemctl and the other tools will now output escape sequences that
+          systemctl and the other tools will now output escape sequences that
           generate proper clickable hyperlinks in various terminal emulators
           where useful (for example, in the "systemctl status" output you can
 …
           https://gist.github.com/egmontkob/eb114294efbcd5adb1944c9f3cb5feda
         * networkd's .network files now support a new IPv6MTUBytes= option for
+          networkd's .network files now support a new IPv6MTUBytes= option for
           setting the MTU used by IPv6 explicitly as well as a new MTUBytes=
           option in the [Route] section to configure the MTU to use for
 …
           settings.
         * networkd will now automatically make use of the kernel's route
+          networkd will now automatically make use of the kernel's route
           expiration feature, if it is available.
         * udevd's .link files now support setting the number of receive and
+          udevd's .link files now support setting the number of receive and
           transmit channels, using the RxChannels=, TxChannels=,
           OtherChannels=, CombinedChannels= settings.
         * Support for UDPSegmentationOffload= has been removed, given its
+          Support for UDPSegmentationOffload= has been removed, given its
           limited support in hardware, and waning software support.
         * networkd's .netdev files now support creating "netdevsim" interfaces.
         * PID 1 learnt a new bus call GetUnitByControlGroup() which may be used
+          networkd's .netdev files now support creating "netdevsim" interfaces.
+          PID 1 learnt a new bus call GetUnitByControlGroup() which may be used
           to query the unit belonging to a specific kernel control group.
         * systemd-analyze gained a new verb "cat-config", which may be used to
+          systemd-analyze gained a new verb "cat-config", which may be used to
           dump the contents of any configuration file, with all its matching
           drop-in files added in, and honouring the usual search and masking
 …
           list of tmpfiles.d/ lines in place.
         * timedatectl gained three new verbs: "show" shows bus properties of
+          timedatectl gained three new verbs: "show" shows bus properties of
           systemd-timedated, "timesync-status" shows the current NTP
           synchronization state of systemd-timesyncd, and "show-timesync"
           shows bus properties of systemd-timesyncd.
         * systemd-timesyncd gained a bus interface on which it exposes details
+          systemd-timesyncd gained a bus interface on which it exposes details
           about its state.
         * A new environment variable $SYSTEMD_TIMEDATED_NTP_SERVICES is now
+          A new environment variable $SYSTEMD_TIMEDATED_NTP_SERVICES is now
           understood by systemd-timedated. It takes a colon-separated list of
           unit names of NTP client services. The list is used by
           "timedatectl set-ntp".
         * systemd-nspawn gained a new --rlimit= switch for setting initial
+          systemd-nspawn gained a new --rlimit= switch for setting initial
           resource limits for the container payload. There's a new switch
           --hostname= to explicitly override the container's hostname. A new
 …
           control of /etc/localtime handling of the container.
         * systemd-detect-virt gained a new --list switch, which will print a
+          systemd-detect-virt gained a new --list switch, which will print a
           list of all currently known VM and container environments.
         * Support for "Portable Services" has been added, see
+          Support for "Portable Services" has been added, see
           doc/PORTABLE_SERVICES.md for details. Currently, the support is still
           experimental, but this is expected to change soon. Reflecting this
 …
           /usr/lib/systemd/portablectl instead.
         * journalctl's and systemctl's -o switch now knows a new log output
+          journalctl's and systemctl's -o switch now knows a new log output
           mode "with-unit". The output it generates is very similar to the
           regular "short" mode, but displays the unit name instead of the
 …
           compatibility with classic /var/log/messages formatting is required.
         * A new --dump-bus-properties switch has been added to the systemd
+          A new --dump-bus-properties switch has been added to the systemd
           binary, which may be used to dump all supported D-Bus properties.
           (Options which are still supported, but are deprecated, are *not*
           shown.)
         * sd-bus gained a set of new calls:
+          sd-bus gained a set of new calls:
           sd_bus_slot_set_floating()/sd_bus_slot_get_floating() may be used to
           enable/disable the "floating" state of a bus slot object,
 …
           objects and set their description string already during allocation.
         * sd-event gained support for watching inotify events from the event
+          sd-event gained support for watching inotify events from the event
           loop, in an efficient way, sharing inotify handles between multiple
           users. For this a new function sd_event_add_inotify() has been added.
         * sd-event and sd-bus gained support for calling special user-supplied
+          sd-event and sd-bus gained support for calling special user-supplied
           destructor functions for userdata pointers associated with
           sd_event_source, sd_bus_slot, and sd_bus_track objects. For this new
 …
           sd_event_source_get_destroy_callback have been added.
         * The "net.ipv4.tcp_ecn" sysctl will now be turned on by default.
         * PID 1 will now automatically reschedule .timer units whenever the
+          The "net.ipv4.tcp_ecn" sysctl will now be turned on by default.
+          PID 1 will now automatically reschedule .timer units whenever the
           local timezone changes. (They previously got rescheduled
           automatically when the system clock changed.)
         * New documentation has been added to document cgroups delegation,
+          New documentation has been added to document cgroups delegation,
           portable services and the various code quality tools we have set up:
 …
           https://github.com/systemd/systemd/blob/master/doc/CODE_QUALITY.md
         * The Boot Loader Specification has been added to the source tree.
+          The Boot Loader Specification has been added to the source tree.
           https://github.com/systemd/systemd/blob/master/doc/BOOT_LOADER_SPECIFICATION.md
 …
           changes are now accepted through the usual github PR workflow.
         * pam_systemd will now look for PAM userdata fields systemd.memory_max,
+          pam_systemd will now look for PAM userdata fields systemd.memory_max,
           systemd.tasks_max, systemd.cpu_weight, systemd.io_weight set by
           earlier PAM modules. The data in these fields is used to initialize
 …
           external user databases.
         * socket units with Accept=yes will now maintain a "refused" counter in
+          socket units with Accept=yes will now maintain a "refused" counter in
           addition to the existing "accepted" counter, counting connections
           refused due to the enforced limits.
         * The "systemd-path search-binaries-default" command may now be use to
+          The "systemd-path search-binaries-default" command may now be use to
           query the default, built-in $PATH PID 1 will pass to the services it
           manages.
         * A new unit file setting PrivateMounts= has been added. It's a boolean
+          A new unit file setting PrivateMounts= has been added. It's a boolean
           option. If enabled the unit's processes are invoked in their own file
           system namespace. Note that this behaviour is also implied if any
 …
           wher this is now used by default.
         * ConditionSecurity= gained a new value "uefi-secureboot" that is true
+          ConditionSecurity= gained a new value "uefi-secureboot" that is true
           when the system is booted in UEFI "secure mode".