Changes between Initial Version and Version 1 of Ticket #4298, comment 2


Ignore:
Timestamp:
07/10/2018 08:12:35 PM (3 years ago)
Author:
Bruce Dubbs

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #4298, comment 2

    initial v1  
    11
    2 {{{
     2
    33CHANGES WITH 239:
    44
    5         * NETWORK INTERFACE DEVICE NAMING CHANGES: systemd-udevd's "net_id"
     5          NETWORK INTERFACE DEVICE NAMING CHANGES: systemd-udevd's "net_id"
    66          builtin will name network interfaces differently than in previous
    77          versions for virtual network interfaces created with SR-IOV and NPAR
     
    2323          not renamed and the kernel default (eth<n>) was used.
    2424
    25         * AF_INET and AF_INET6 are dropped from RestrictAddressFamilies= in
     25          AF_INET and AF_INET6 are dropped from RestrictAddressFamilies= in
    2626          systemd-logind.service. Since v235, IPAddressDeny=any has been set to
    2727          the unit. So, it is expected that the default behavior of
     
    3232          e.g. NIS.
    3333
    34         * When the RestrictNamespaces= unit property is specified multiple
     34          When the RestrictNamespaces= unit property is specified multiple
    3535          times, then the specified types are merged now. Previously, only the
    3636          last assignment was used. So, if distribution packagers or
     
    3838          may be necessary to update the file.
    3939
    40         * When OnFailure= is used in combination with Restart= on a service
     40          When OnFailure= is used in combination with Restart= on a service
    4141          unit, then the specified units will no longer be triggered on
    4242          failures that result in restarting. Previously, the specified units
     
    4646          documentation.
    4747
    48         * systemd-tmpfiles will now print a notice whenever it encounters
     48          systemd-tmpfiles will now print a notice whenever it encounters
    4949          tmpfiles.d/ lines referencing the /var/run/ directory. It will
    5050          recommend reworking them to use the /run/ directory instead (for
     
    5454          them.
    5555
    56         * systemctl disable/unmask/preset/preset-all cannot be used with
     56          systemctl disable/unmask/preset/preset-all cannot be used with
    5757          --runtime. Previously this was allowed, but resulted in unintuitive
    5858          behaviour that wasn't useful. systemctl disable/unmask will now undo
     
    6060          any relevant symlinks both in /run and /etc.
    6161
    62         * Note that all long-running system services shipped with systemd will
     62          Note that all long-running system services shipped with systemd will
    6363          now default to a system call whitelist (rather than a blacklist, as
    6464          before). In particular, systemd-udevd will now enforce one too. For
     
    6969          reboot and clock changing operations from udev rules.
    7070
    71         * sd-boot acquired new loader configuration settings to optionally turn
     71          sd-boot acquired new loader configuration settings to optionally turn
    7272          off Windows and MacOS boot partition discovery as well as
    7373          reboot-into-firmware menu items. It is also able to pick a better
     
    7575          configuration settings to change the resolution explicitly.
    7676
    77         * systemd-resolved now supports DNS-over-TLS. It's still
     77          systemd-resolved now supports DNS-over-TLS. It's still
    7878          turned off by default, use DNSOverTLS=opportunistic to turn it on in
    7979          resolved.conf. We intend to make this the default as soon as couple
     
    8181          establishing a TLS/TCP connection are implemented.
    8282
    83         * systemd-resolved.service and systemd-networkd.service now set
     83          systemd-resolved.service and systemd-networkd.service now set
    8484          DynamicUser=yes. The users systemd-resolve and systemd-network are
    8585          not created by systemd-sysusers.
    8686
    87         * The systemd-resolve tool has been renamed to resolvectl (it also
     87          The systemd-resolve tool has been renamed to resolvectl (it also
    8888          remains available under the old name, for compatibility), and its
    8989          interface is now verb-based, similar in style to the other <xyz>ctl
    9090          tools, such as systemctl or loginctl.
    9191
    92         * The resolvectl/systemd-resolve tool also provides 'resolvconf'
     92          The resolvectl/systemd-resolve tool also provides 'resolvconf'
    9393          compatibility. It may be symlinked under the 'resolvconf' name, in
    9494          which case it will take arguments and input compatible with the
    9595          Debian and FreeBSD resolvconf tool.
    9696
    97         * Support for suspend-then-hibernate has been added, i.e. a sleep mode
     97          Support for suspend-then-hibernate has been added, i.e. a sleep mode
    9898          where the system initially suspends, and after a time-out resumes and
    9999          hibernates again.
    100100
    101         * networkd's ClientIdentifier= now accepts a new option "duid-only". If
     101          networkd's ClientIdentifier= now accepts a new option "duid-only". If
    102102          set the client will only send a DUID as client identifier.
    103103
    104         * The nss-systemd glibc NSS module will now enumerate dynamic users and
     104          The nss-systemd glibc NSS module will now enumerate dynamic users and
    105105          groups in effect. Previously, it could resolve UIDs/GIDs to user
    106106          names/groups and vice versa, but did not support enumeration.
    107107
    108         * journald's Compress= configuration setting now optionally accepts a
     108          journald's Compress= configuration setting now optionally accepts a
    109109          byte threshold value. All journal objects larger than this threshold
    110110          will be compressed, smaller ones will not. Previously this threshold
    111111          was not configurable and set to 512.
    112112
    113         * A new system.conf setting NoNewPrivileges= is now available which may
     113          A new system.conf setting NoNewPrivileges= is now available which may
    114114          be used to turn off acquisition of new privileges system-wide
    115115          (i.e. set Linux' PR_SET_NO_NEW_PRIVS for PID 1 itself, and thus also
     
    120120          in particular su and sudo.
    121121
    122         * A new service systemd-time-sync-wait.service has been added. If
     122          A new service systemd-time-sync-wait.service has been added. If
    123123          enabled it will delay the time-sync.target unit at boot until time
    124124          synchronization has been received from the network. This
     
    127127          services.
    128128
    129         * When hibernating, systemd will now inform the kernel of the image
     129          When hibernating, systemd will now inform the kernel of the image
    130130          write offset, on kernels new enough to support this. This means swap
    131131          files should work for hibernation now.
    132132
    133         * When loading unit files, systemd will now look for drop-in unit files
     133          When loading unit files, systemd will now look for drop-in unit files
    134134          extensions in additional places. Previously, for a unit file name
    135135          "foo-bar-baz.service" it would look for dropin files in
     
    146146          name following the last dash.
    147147
    148         * Unit files and other configuration files that support specifier
     148          Unit files and other configuration files that support specifier
    149149          expansion now understand another three new specifiers: %T and %V will
    150150          resolve to /tmp and /var/tmp respectively, or whatever temporary
     
    152152          /etc (for system units) or $XDG_CONFIG_HOME (for user units).
    153153
    154         * The ExecStart= lines of unit files are no longer required to
     154          The ExecStart= lines of unit files are no longer required to
    155155          reference absolute paths. If non-absolute paths are specified the
    156156          specified binary name is searched within the service manager's
     
    159159          use absolute paths for all binaries specified in unit files.
    160160
    161         * Units gained a new load state "bad-setting", which is used when a
     161          Units gained a new load state "bad-setting", which is used when a
    162162          unit file was loaded, but contained fatal errors which prevent it
    163163          from being started (for example, a service unit has been defined
    164164          lacking both ExecStart= and ExecStop= lines).
    165165
    166         * coredumpctl's "gdb" verb has been renamed to "debug", in order to
     166          coredumpctl's "gdb" verb has been renamed to "debug", in order to
    167167          support alternative debuggers, for example lldb. The old name
    168168          continues to be available however, for compatibility reasons. Use the
     
    170170          to pick an alternative debugger instead of the default gdb.
    171171
    172         * systemctl and the other tools will now output escape sequences that
     172          systemctl and the other tools will now output escape sequences that
    173173          generate proper clickable hyperlinks in various terminal emulators
    174174          where useful (for example, in the "systemctl status" output you can
     
    184184          https://gist.github.com/egmontkob/eb114294efbcd5adb1944c9f3cb5feda
    185185
    186         * networkd's .network files now support a new IPv6MTUBytes= option for
     186          networkd's .network files now support a new IPv6MTUBytes= option for
    187187          setting the MTU used by IPv6 explicitly as well as a new MTUBytes=
    188188          option in the [Route] section to configure the MTU to use for
     
    194194          settings.
    195195
    196         * networkd will now automatically make use of the kernel's route
     196          networkd will now automatically make use of the kernel's route
    197197          expiration feature, if it is available.
    198198
    199         * udevd's .link files now support setting the number of receive and
     199          udevd's .link files now support setting the number of receive and
    200200          transmit channels, using the RxChannels=, TxChannels=,
    201201          OtherChannels=, CombinedChannels= settings.
    202202
    203         * Support for UDPSegmentationOffload= has been removed, given its
     203          Support for UDPSegmentationOffload= has been removed, given its
    204204          limited support in hardware, and waning software support.
    205205
    206         * networkd's .netdev files now support creating "netdevsim" interfaces.
    207 
    208         * PID 1 learnt a new bus call GetUnitByControlGroup() which may be used
     206          networkd's .netdev files now support creating "netdevsim" interfaces.
     207
     208          PID 1 learnt a new bus call GetUnitByControlGroup() which may be used
    209209          to query the unit belonging to a specific kernel control group.
    210210
    211         * systemd-analyze gained a new verb "cat-config", which may be used to
     211          systemd-analyze gained a new verb "cat-config", which may be used to
    212212          dump the contents of any configuration file, with all its matching
    213213          drop-in files added in, and honouring the usual search and masking
     
    221221          list of tmpfiles.d/ lines in place.
    222222
    223         * timedatectl gained three new verbs: "show" shows bus properties of
     223          timedatectl gained three new verbs: "show" shows bus properties of
    224224          systemd-timedated, "timesync-status" shows the current NTP
    225225          synchronization state of systemd-timesyncd, and "show-timesync"
    226226          shows bus properties of systemd-timesyncd.
    227227
    228         * systemd-timesyncd gained a bus interface on which it exposes details
     228          systemd-timesyncd gained a bus interface on which it exposes details
    229229          about its state.
    230230
    231         * A new environment variable $SYSTEMD_TIMEDATED_NTP_SERVICES is now
     231          A new environment variable $SYSTEMD_TIMEDATED_NTP_SERVICES is now
    232232          understood by systemd-timedated. It takes a colon-separated list of
    233233          unit names of NTP client services. The list is used by
    234234          "timedatectl set-ntp".
    235235
    236         * systemd-nspawn gained a new --rlimit= switch for setting initial
     236          systemd-nspawn gained a new --rlimit= switch for setting initial
    237237          resource limits for the container payload. There's a new switch
    238238          --hostname= to explicitly override the container's hostname. A new
     
    246246          control of /etc/localtime handling of the container.
    247247
    248         * systemd-detect-virt gained a new --list switch, which will print a
     248          systemd-detect-virt gained a new --list switch, which will print a
    249249          list of all currently known VM and container environments.
    250250
    251         * Support for "Portable Services" has been added, see
     251          Support for "Portable Services" has been added, see
    252252          doc/PORTABLE_SERVICES.md for details. Currently, the support is still
    253253          experimental, but this is expected to change soon. Reflecting this
     
    256256          /usr/lib/systemd/portablectl instead.
    257257
    258         * journalctl's and systemctl's -o switch now knows a new log output
     258          journalctl's and systemctl's -o switch now knows a new log output
    259259          mode "with-unit". The output it generates is very similar to the
    260260          regular "short" mode, but displays the unit name instead of the
     
    264264          compatibility with classic /var/log/messages formatting is required.
    265265
    266         * A new --dump-bus-properties switch has been added to the systemd
     266          A new --dump-bus-properties switch has been added to the systemd
    267267          binary, which may be used to dump all supported D-Bus properties.
    268268          (Options which are still supported, but are deprecated, are *not*
    269269          shown.)
    270270
    271         * sd-bus gained a set of new calls:
     271          sd-bus gained a set of new calls:
    272272          sd_bus_slot_set_floating()/sd_bus_slot_get_floating() may be used to
    273273          enable/disable the "floating" state of a bus slot object,
     
    279279          objects and set their description string already during allocation.
    280280
    281         * sd-event gained support for watching inotify events from the event
     281          sd-event gained support for watching inotify events from the event
    282282          loop, in an efficient way, sharing inotify handles between multiple
    283283          users. For this a new function sd_event_add_inotify() has been added.
    284284
    285         * sd-event and sd-bus gained support for calling special user-supplied
     285          sd-event and sd-bus gained support for calling special user-supplied
    286286          destructor functions for userdata pointers associated with
    287287          sd_event_source, sd_bus_slot, and sd_bus_track objects. For this new
     
    292292          sd_event_source_get_destroy_callback have been added.
    293293
    294         * The "net.ipv4.tcp_ecn" sysctl will now be turned on by default.
    295 
    296         * PID 1 will now automatically reschedule .timer units whenever the
     294          The "net.ipv4.tcp_ecn" sysctl will now be turned on by default.
     295
     296          PID 1 will now automatically reschedule .timer units whenever the
    297297          local timezone changes. (They previously got rescheduled
    298298          automatically when the system clock changed.)
    299299
    300         * New documentation has been added to document cgroups delegation,
     300          New documentation has been added to document cgroups delegation,
    301301          portable services and the various code quality tools we have set up:
    302302
     
    305305          https://github.com/systemd/systemd/blob/master/doc/CODE_QUALITY.md
    306306
    307         * The Boot Loader Specification has been added to the source tree.
     307          The Boot Loader Specification has been added to the source tree.
    308308
    309309          https://github.com/systemd/systemd/blob/master/doc/BOOT_LOADER_SPECIFICATION.md
     
    312312          changes are now accepted through the usual github PR workflow.
    313313
    314         * pam_systemd will now look for PAM userdata fields systemd.memory_max,
     314          pam_systemd will now look for PAM userdata fields systemd.memory_max,
    315315          systemd.tasks_max, systemd.cpu_weight, systemd.io_weight set by
    316316          earlier PAM modules. The data in these fields is used to initialize
     
    319319          external user databases.
    320320
    321         * socket units with Accept=yes will now maintain a "refused" counter in
     321          socket units with Accept=yes will now maintain a "refused" counter in
    322322          addition to the existing "accepted" counter, counting connections
    323323          refused due to the enforced limits.
    324324
    325         * The "systemd-path search-binaries-default" command may now be use to
     325          The "systemd-path search-binaries-default" command may now be use to
    326326          query the default, built-in $PATH PID 1 will pass to the services it
    327327          manages.
    328328
    329         * A new unit file setting PrivateMounts= has been added. It's a boolean
     329          A new unit file setting PrivateMounts= has been added. It's a boolean
    330330          option. If enabled the unit's processes are invoked in their own file
    331331          system namespace. Note that this behaviour is also implied if any
     
    336336          wher this is now used by default.
    337337
    338         * ConditionSecurity= gained a new value "uefi-secureboot" that is true
     338          ConditionSecurity= gained a new value "uefi-secureboot" that is true
    339339          when the system is booted in UEFI "secure mode".
    340340