The new version of Systemd 246 has already been released and these are its news

systemd-245

After five months of development the new version of Systemd 246 has been presented, in which the new version includes support for unit freezing, the ability to verify the disk image by digital signature, support for registry compression and core dumps using the ZSTD algorithm, among other things.

For those who are unfamiliar with systemd, you should know that this is a set of system administration daemons, libraries and tools designed as a central administration and configuration platform to interact with the kernel of the GNU / Linux Operating System.

What's new in Systemd 246?

In this new version several changes are highlighted and one of them is the resource controller based on cgroups v2, with which I know can stop processes and temporarily free up some resources to perform other tasks. Freezing and thawing of units is controlled by the new command "systemctl freeze" or by D-Bus.

Another change that stands out is the new added support to verify disk image by digital signature. The verification performed using new settings in service units: RootHash and RootHashSignature.

For * .mount drives, the ReadWriteOnly setting is implemented, which prohibits mounting a partition in read-only mode if it cannot be mounted for read and write.

For * .socket drives, PassPacketInfo setting has been added, which allows the kernel to add additional metadata for each packet read from the socket.

For services, the proposed configuration is CoredumpFilter and TimeoutStartFailureMode / TimeoutStopFailureMode when a timeout occurs when starting or stopping a service).

In addition to it, also highlights new drive file settings added: ConditionPathIsEncrypted and AssertPathIsEncrypted to check the location of the specified path on a block device using encryption (dm-crypt / LUKS), ConditionEnvironment and AssertEnvironment to check environment variables (for example, set by PAM or when configuring containers).

In various parameterCommand line s and configuration files related to configuring keys or certificates, the ability to specify the path to Unix sockets is implemented (AF_UNIX) to transfer keys and certificates through calls to IPC services, when it is not desirable to place certificates on unencrypted disk storages.

In addition, systemd-homed service received added ability to unlock home directories using FIDO2 tokens and with partition encryption backend LUKS adds support for automatically returning empty filesystem blocks at the end of the session. 

As well new kernel command line parameters added: systemd.hostname to set hostname at initial boot stage

  • udev.blockdev_read_only to restrict all block devices associated with physical drives to read-only mode (you can use the "blockdev –setrw" command to selectively cancel)
  • systemd.swap to disable automatic activation of the swap partition
  • systemd.clock-usec to set the system clock in microseconds
  • systemd.condition-needs-update and systemd.condition-first-boot to override the ConditionNeedsUpdate and ConditionFirstBoot checks.

Of the other changes that They stand out:

  • In systemd-networkd, in the [DHCPv4] section, the UseGateway setting has been added to disable the use of gateway information obtained through DHCP.
  • In systemd-networkd, in the [DHCPv4] and [DHCPServer] sections, the SendVendorOption setting has been added to set and process additional provider options.
  • Systemd-networkd has a new set of EmitPOP3 / POP3, EmitSMTP / SMTP and EmitLPR / LPR options in the [DHCPServer] section to add information about POP3, SMTP and LPR servers.
  • Renamed the setting from BlackList to DenyList (for backward compatibility, the old name handling is preserved).
  • Systemd-networkd has added a large part of the IPv6 and DHCPv6 related settings.
  • Added support for SNI checking in DNS over TLS implementation.
  • In solved systemd, the ability to configure redirection of single-label DNS names (of a hostname) has been added.

Finally if you want to know the complete record of the changes and news that were delivered in this new release of systemd 246, you can consult them In the following link.


A comment, leave yours

Leave a Comment

Your email address will not be published. Required fields are marked with *

*

*

  1. Responsible for the data: AB Internet Networks 2008 SL
  2. Purpose of the data: Control SPAM, comment management.
  3. Legitimation: Your consent
  4. Communication of the data: The data will not be communicated to third parties except by legal obligation.
  5. Data storage: Database hosted by Occentus Networks (EU)
  6. Rights: At any time you can limit, recover and delete your information.

  1.   luix said

    systemd sucks !!