systemd 253 RC1 Released With New "ukify" Tool

Written by Michael Larabel in systemd on 24 January 2023 at 06:34 PM EST. 57 Comments
SYSTEMD
Systemd developers today released their first release candidate of the upcoming systemd 253 feature release, which introduces a new "ukify" tool and has many other changes for this dominant Linux init system.

Systemd 253 is another big release... Beyond the ukify tool introduction there is a lot of changes and improvements to existing systemd components. Some of the systemd 253-rc1 highlights to catch my attention include:

- A new tool with systemd 253 is the "ukify" tool to build, measure, and sign Unified Kernel Images (UKIs). The intent is for systemd ukify to replace functionality currently provided by "dracut --uefi" while providing more functionality as part of the new UKI / trusted boot philosophy.

- Initrd environments not on a temporary file-system are now supported.

- A new MemoryZSwapMax= option to configure the memory.zswap.max cgroup properties.

- Systemd scope units now support the OOMPolicy= option with login session scopes now defaulting to OOMPolicy=continue so they survive the OOM killer terminating some processes in the scope.

- The maximum rate at which daemon reloads are executed can now be controlled via the ReloadLimitIntervalSec= and ReloadLimitBurst= options.

- Systemd now executes generators in a "sandbox" mount namespace with most of the file-system being read-only and then just write access for output directories and a temporary /tmp mount point.

- A new unit type of Type=notify-reload where when a unit is reloaded via signal, the manager will wait until receiving a "READ=1" notification from the unit.

- A new environment variable $SYSTEMD_DEFAULT_MOUNT_RATE_LIMIT_BURST can be used for overriding the mount units burst rate limiting for parsing /proc/self/mountinfo, with a default value of 5.

- Systemd-boot now passes its random seed directly to the kernel's RNG via the LINUX_EFI_RANDOM_SEED_TABLE_GUID configuration table.

- Systemd-boot can now be loaded from a direct kernel boot under QEMU, when embedded into the firmware, or other non-ESP scenarios.

- "systemctl kexec" now supports Xen.

- Various new options for systemd-dissect and systemd-repart.

- systemd-cryptenroll now supports unlocking via FIDO2 tokens.

systemd logo


The lengthy list of systemd 253-rc1 changes and downloads for the systemd source code are available from GitHub.
57 Comments
Related News
systemd Rolling Out "run0" As sudo Alternative
Systemd 256-rc1 Brings A Huge Number Of New Features
systemd In 2023 Added Windows-Inspired "Blue Screen Of Death" & macOS-Inspired T.D.M.
systemd 255 Released With A "Blue Screen of Death" For Linux Systems
systemd 255-rc1 Brings "Blue Screen of Death" Support & New Tool To Spawn VMs
Systemd Working On "Storage Target Mode" Feature - Inspired By Apple macOS
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
systemd Rolling Out "run0" As sudo Alternative
Microsoft Open-Sources MS-DOS 4.0 Under MIT License
Systemd 256-rc1 Brings A Huge Number Of New Features
NVIDIA Developer Opens Feature Pull Request For Open-Source NVK Driver
Linux Mint Looks To Fork More GNOME Software, Make XApp More Independent
Rust-Based Coreutils 0.0.26 Increases Compatibility With GNU Coreutils
Microsoft Updates Cascadia Code: Its Open-Source Font For Developers
Ubuntu 24.04 LTS Downloads Now Available