As you may know, systemd is the most popular service init manager, being recently adopted on Ubuntu and Debian system as well.
The latest version available is systemd 223, released a few days ago, bringing improvements:
- The python-systemd code has been removed from the systemd repository. A new repository has been created which accommodates the code from now on, and we kindly ask distributions to create a separate package for this: https://github.com/systemd/python-systemd
- The systemd daemon will now reload its main configuration (/etc/systemd/system.conf) on daemon-reload.
- systemd-networkd gained a number of new configuration options.
- A new boolean configuration option for TAP devices called ‘VNetHeader=’. If set, the IFF_VNET_HDR flag is set for the device, thus allowing to send and receive GSO packets.
- A new tunnel configuration option called ‘CopyDSCP=’. If enabled, the DSCP field of ip6 tunnels is copied into the decapsulated packet.
- A set of boolean bridge configuration options were added. ‘UseBPDU=’, ‘HairPin=’, ‘FastLeave=’, ‘AllowPortToBeRoot=’, and ‘UnicastFlood=’ are now parsed by networkd and applied to the respective bridge link device via the respective IFLA_BRPORT_* netlink attribute.
- A new string configuration option to override the hostname sent to a DHCP server, called ‘Hostname=’. If set and ‘SendHostname=’ is true, networkd will use the configured hostname instead of the system hostname when sending DHCP requests.
- A new tunnel configuration option called ‘IPv6FlowLabel=’. If set, networkd will configure the IPv6 flow-label of the tunnel device according to RFC2460.
- The ‘macvtap’ virtual network devices are now supported, similar to the already supported ‘macvlan’ devices.
- systemd-resolved now implements RFC5452 to improve resilience against cache poisoning. Additionally, source port randomization is enabled by default to further protect against DNS spoofing attacks.
- nss-mymachines now supports translating UIDs and GIDs of running containers with user-namespaces enabled. If a container ‘foo’ translates a host uid ‘UID’ to the container uid ‘TUID’, then nss-mymachines will also map uid ‘UID’ to/from username ‘vu-foo-TUID’ (with ‘foo’ and ‘TUID’ replaced accordingly). Similarly, groups are mapped as ‘vg-foo-TGID’.
Speaking of Systemd, Lennart Poettering, the systemd creator, has announced that between November 5 and 7, a Systemd Conference will take part in Berlin where systemd developers, Linux distribution packagers and other Linux hackers will attend workshops
Leave a Reply