[systemd-devel] [ANNOUNCE] systemd v21
Lennart Poettering
lennart at poettering.net
Wed Mar 30 03:49:58 PDT 2011
Heya,
http://www.freedesktop.org/software/systemd/systemd-21.tar.bz2
Bigger changes:
- There's now a new "systemd-nspawn" tool, which is like chroot(1), but
on steroids. I'll blog about this in more detail later on.
- If the first key you type into a cryptodisk password prompt is
Backspace, the asterisk will be hidden, for extra paranoid
security. Pressing TAB at any time during your input does the same.
- There's now /run, which will act as new place for /var/run, but is
available during early boot. There's going to be a longer announcement
about this on fedora-devel soon.
- You can use systemctl now to access remote servers, or to acquire
local privileges with PK. Use the -H or -P switches.
Andrey Borzenkov (9):
dbus: fix dbus assert due to uninitialized error
man: trivial typo in systemd(1)
pam: do not leak file descriptor if flock fails
man: fix systemctl try-restart description
dbus: consolidate service SysV conditionals
dbus: add service D-Bus property "Sockets"
mount: pull in quota services from local mountpoints with usr/grpquota options
units: replace Names=dm.service with symlink for mandriva prefdm
man: no keep-root in pam_systemd anymore
Florian Kriener (1):
locale: full fledged /etc/default/locale support for debian
Jan Engelhardt (2):
main: revert recognition of "b" argument
crypto: to show stars or not to show them
Kay Sievers (13):
gnome-ask-password-agent: restore removed libnotify0.6 support
gnome-ask-password-agent: check for vala 0.10 instead of libnotify
gnome-ask-password-agent.vala: check for VALA_0_12
build-sys: add org.freedesktop.systemd1.policy to CLEANFILES
update TODO
update TODO
update TODO
update TODO
tainted: don't check if /usr is a mount point, only if it's not already mounted at startup
use /run instead of /dev/.run
tmpfiles fix /run/lock permissions
udev: systemd-tag all ttys
udev: tty - re-add accidentially removed hvc* match
Lennart Poettering (105):
mount: use /dev/.run as an early boot alias for /var/run
drop unnecessary suffix NULs as gcc adds them anyway
dbus: properly generate UnknownInterface, UnknownProperty and PropertyReadOnly errors
selinux: bump up error level when in non-enforcing mode
pkconfig: export full search path as .pc variable
machine-id: move machine-id-setup to /sbin
dev: use /dev/.run/systemd as runtime directory, instead of /dev/.systemd
condition: take a timestamp and store last result of conditions
main: don't check if /usr really is a mount point, since it is fine if it is passed pre-mounted to us from the initrd
main: refuse system to be started in a chroot
main: properly handle -b boot option
dbus: timeout connection setup
util: close all fds before freezing execution
units: move the last flag files to /dev/.run
gnome-ask-password-agent: fix path to watch
systemctl: support remote and privileged systemctl access via SSH and pkexec
polkit: autogenerate polkit policy with correct paths
util: properly identify pty devices by their major
util: return exit status in wait_for_terminate_and_warn()
git: ignore generated policy file
util: detect CLONE_NEWPID namespaces, and cache results
nspawn: add simple chroot(1) like tool to execute commands in a namespace container
core: move abstract namespace sockets to /dev/.run
nspawn: improve exit warning
nspawn: define MS_MOVE manually if needed
nspawn: reset umask if needed
nspawn: reset environment and load login shell
util: add detect_container()
main: don't parse /proc/cmdline in containers
main: log to the console in a container
nspawn: we don't want a network namespace
socket: use 777 as default mode for sockets
umount: assume that a non-existing /dev/loop device means it is already detached
shutdown: just call exit() if we are in a container
shutdown: just call exit() if we are in a container
nspawn: mount /selinux if needed
shutdown: print a nice message when terminating a container
main: remove AF_UNIX sockets before binding
nspawn: don't require selinux on if it is compiled in
audit: give up sending auditing messages when it failed due to EPERM
hostname: don't override the hostname with localhost if it is already set and /etc/hostname unset
build-sys: move remaining tools from sbin/ to bin/ since they might eventually be useful for user execution
units: add console-shell.service which can be used insted of the gettys to get a shell on /dev/console
manager: show who killed us
manager: don't show kernel boot-up time for containers
nspawn: move container into its own name=systemd cgroup
pam: determine user cgroup tree from cgroup of PID 1
cgls: by default start with group of PID 1
container: skip a few things when we are run in a container such as accessing /proc/cmdline
getty: move automatic serial getty logic into generator
umount: don't try to remount bind mounts ro during shutdown
cgls: don't strip user processes and kernel threads from default output
man: document systemd-nspawn
cgroup: don't recheck all the time whether the systemd hierarchy is mounted, to make strace outputs nicer and save a few stat()s
ask-password: reset signal mask after we are done
main: check if we have a valid PID before getting the name of it
main: parse the whole arv[] as kernel command line
nspawn: allocate a new pty instead of passing ours through to avoid terminal settings chaos
util: make touched files non-writable by default
nspawn: make tty code more robust against closed/reopened /dev/console
nspawn: bind mount /etc/localtime
loopback: downgrade an error to warning
main: interpret all argv[] arguments unconditionally when run in a container
umount: make sure skip_ro is always correctly initialized
dbus: allow LoadUnit to unprivileged users
systemctl: accept condstop as alias for stop
chkconfig: check against runlevel 5 instead of 3, since it is a superset of the latter
def: centralize definition of default timeout in one place
unit: serialize condition test results
exec: properly apply capability bounding set, add inverted bounding sets
special: get rid of dbus.target
man: document .requires/ directories
syslog: rework syslog detection so that we need no compile-time option what the name of the syslog implementation is
units: get rid of empty units/suse/ subdir
units: get rid of runlevel Names=, the symlinks in /lib/systemd/system are much more useful
units: on mandriva/fedora create single.service alias via symlink, not Names=
units: deemphesize Names= settings, and explain why nobody whould use them
man: document pidns containers
units: we no longer need m4 to build graphical.target or multi-user.taregt
units: we don't need to generate syslog.target with sed anymore
units: document that some targets exists only for compat with SysV
units: don't ever pull in SysV targets from other SysV targets
units: pull in syslog.target from syslog.socket
service: pull in sysv facility targets from the sysv units, not the other way round
man: explain a couple of default dependencies
execute: socket isn't abstract anymore
conf-parser: fix remaining parser functions according to new prototype
ask-password: use TAB instead of backspace to disable asterisk password echo
man: fix references to systemd.unit= on the kernel cmdline
locale: fix LC_MESSAGES variable name
build-sys: bump version
man: really fix all LC_MESSAGE to LC_MESSAGES
unit: when deserializing jobs, don't pull in dependencies
ask-password: also accept Backspace as first keypress as silent mode switch
systemctl: don't truncate description when using pager
cgroup: explain when we cannot i shutdown: just call exit() if we are in a container
nspawn: mount /selinux if needed
shutdown: print a nice message when terminating a container
main: remove AF_UNIX sockets before binding
nspawn: don't require selinux on if it is compiled in
audit: give up sending auditing messages when it failed due to EPERM
hostname: don't override the hostname with localhost if it is already set and /etc/hostname unset
build-sys: move remaining tools from sbin/ to bin/ since they might eventually be useful for user execution
units: add console-shell.service which can be used insted of the gettys to get a shell on /dev/console
manager: show who killed us
manager: don't show kernel boot-up time for containers
nspawn: move container into its own name=systemd cgroup
pam: determine user cgroup tree from cgroup of PID 1
cgls: by default start with group of PID 1
container: skip a few things when we are run in a container such as accessing /proc/cmdline
getty: move automatic serial getty logic into generator
umount: don't try to remount bind mounts ro during shutdown
cgls: don't strip user processes and kernel threads from default output
man: document systemd-nspawn
cgroup: don't recheck all the time whether the systemd hierarchy is mounted, to make strace outputs nicer and save a few stat()s
ask-password: reset signal mask after we are done
main: check if we have a valid PID before getting the name of it
main: parse the whole arv[] as kernel command line
nspawn: allocate a new pty instead of passing ours through to avoid terminal settings chaos
util: make touched files non-writable by default
nspawn: make tty code more robust against closed/reopened /dev/console
nspawn: bind mount /etc/localtime
loopback: downgrade an error to warning
main: interpret all argv[] arguments unconditionally when run in a container
umount: make sure skip_ro is always correctly initialized
dbus: allow LoadUnit to unprivileged users
systemctl: accept condstop as alias for stop
chkconfig: check against runlevel 5 instead of 3, since it is a superset of the latter
def: centralize definition of default timeout in one place
unit: serialize condition test results
exec: properly apply capability bounding set, add inverted bounding sets
special: get rid of dbus.target
man: document .requires/ directories
syslog: rework syslog detection so that we need no compile-time option what the name of the syslog implementation is
units: get rid of empty units/suse/ subdir
units: get rid of runlevel Names=, the symlinks in /lib/systemd/system are much more useful
units: on mandriva/fedora create single.service alias via symlink, not Names=
units: deemphesize Names= settings, and explain why nobody whould use them
man: document pidns containers
units: we no longer need m4 to build graphical.target or multi-user.taregt
units: we don't need to generate syslog.target with sed anymore
units: document that some targets exists only for compat with SysV
units: don't ever pull in SysV targets from other SysV targets
units: pull in syslog.target from syslog.socket
service: pull in sysv facility targets from the sysv units, not the other way round
man: explain a couple of default dependencies
execute: socket isn't abstract anymore
conf-parser: fix remaining parser functions according to new prototype
ask-password: use TAB instead of backspace to disable asterisk password echo
man: fix references to systemd.unit= on the kernel cmdline
locale: fix LC_MESSAGES variable name
build-sys: bump version
man: really fix all LC_MESSAGE to LC_MESSAGES
unit: when deserializing jobs, don't pull in dependencies
ask-password: also accept Backspace as first keypress as silent mode switch
systemctl: don't truncate description when using pager
cgroup: explain when we cannot initialize the cgroup stuff
exec: drop process group kill mode since it has little use and confuses the user
unit: don't complain about failed units when deserializing
unit: fix parsing of condition-result
unit: never apply /etc/rcN.d/ priority to native services
manager: fix taint check for /usr
quota: do not pull in quota tools for mounts that do not originate in neither /etc/fstab nor fragment files
locale: don't access misinitialized variable
taint: add missing cgroups taint flag
status: show status messages unconditionally if plymouth is around
plymouth: don't explicitly enable status message when plymouth is up
Michael Olbrich (1):
udev: expose some more tty's for various embedded hardware
Miklos Vajna (1):
Add Frugalware display-manager service
William Jon McCann (1):
plymouth: Remove the calls to plymouth message
cee1 (2):
read-ahead: Fix broken systemd-readahead-collect on mips.
util: detect page size runtime.
Lennart
--
Lennart Poettering - Red Hat, Inc.
More information about the systemd-devel
mailing list