systemd 252 released with benchmarking and other improvements
Systemd developers celebrate Halloween with systemd 252 release.
Systemd 252 is as stable today as the latest version of mainstream Linux. With systemd 252, there is a new system scaling command and many improvements across the ever-growing code base. Some of systemd 252’s distinctive features include:
– The measurement system has been added as an aid in the pre-calculation of PCR measurements to facilitate the facilitation of TPM2 policies.
– Systemd will set an “end of support” distortion flag if it detects that the OS image has passed the end of support date. This is in line with the OS version gaining a new ‘SUPPORT_END=” field to specify the date when OS support is considered unsupported.
– New settings for ConditionCredential= and AssertCredential= to skip/fail modules if certain credentials are not provided.
– DefaultDeviceTimeoutSec = Can be used to specify the default device timeout.
– Changed to allow more resource isolation between different user services that compete for CPU.
– Support with systemd for a full preset in “first boot” state rather than just just enabled.
– C.UTF-8 is now used as the default language when nothing else is configured.
– New D-Bus censorship related features are now being published by systemd.
– The UEFI single boot counter is now included in the random seed as an additional entropy.
– Systemd boot support to boot into EFI mixed mode for 64-bit kernels with 32-bit UEFI firmware is now supported.
– Improved KubeVirt parallels detection and virtualization.
OpenSSL is now the default cryptographic backend for systemd solution while GnuTLS is still supported.
– Systemd-repart now supports creating SquashFS partitions as well as dm-verity partitions.
– systemd-oomd now sends a “killed” D-Bus signal when a cgroup is killed.
– For systemd on RISC-V, the system call riscv_flush_icache() is now added to the list of allowed system calls by default when using the “SystemCallFilter” option.
Temporary units are now allowed to be connected.
– systemd’s sd-stub will now use LoadImage / StartImage to execute the kernel. sd-stub now also adds a temporary UEFI SecurityOverride to allow booting of unsigned nested images.
– Various improvements have been made to systemd -olved. Systemd -olved now displays a root varlink socket in /run/systemd/resolve/io.systemd.Resolve.Monitor which provides JSON-processed DNS requests to any client connected to that socket. Systemd resolvectl now supports the “Monitor” option to take advantage of this monitoring socket.
– Portablectl got the “–force” flag to skip some mind checks.
– systemd-udev will now create infiniband/by-path and infiniband/by-ibdev links for Infiniband devices.
– mkosi’s config in systemd now has support for automatically compiling the kernel with a configuration suitable for systemd testing.
Downloads and more details about systemd 252 version via github.
#systemd #released #benchmarking #improvements