systemd 252-rc1 introduces new systemd-measure tool and other new features
Systemd 252-rc1 was released as the first test candidate ahead of this next big feature release for this mainstream Linux init system. Systemd 252 has been working on a new “systemd-measure” tool and a variety of other changes.
As part of today’s systemd 252-rc1 release, there is a warning that they intend to drop support for cgroups v1 after the end of 2023. Fortunately, most Modern Linux distributions work with cgroups v2, but this is a warning to everyone else. Systemd also plans to drop support for split-usr and unmerged-usr handling in H2’2023 as a more pressing warning for some Linux distributions.
New features in systemd 252-rc1 include:
– systemd-measurement has been added as a helper to precalculate PCR metrics to help facilitate TPM2 policies.
– Systemd will set a “support-end” tint flag if it detects that the OS image is past its end-of-support date. This goes hand in hand with os-release getting a new “SUPPORT_END=” field to specify a date when OS support is considered unsupported.
– New parameters of Condition ID= and AssertCredential= to skip/fail units if a certain credential is not provided.
– DefaultDeviceTimeoutSec= can be used to specify the default timeout for devices.
– A change to allow greater isolation of resources between different user services competing for CPU.
– Support with systemd for full preset in “first boot” condition rather than just enable.
– C.UTF-8 is now used as the default locale when nothing else is configured.
– New watchdog-related D-Bus properties are now released by systemd.
– UEFI monotonous boot counter is now included in random seed as additional entropy.
– Systemd boot support for EFI mixed mode boot for 64-bit kernel with 32-bit UEFI firmware is now supported.
– Improved Parallels and KubeVirt virtualization detection.
– OpenSSL is now the default encryption backend for systemd resolution while GnuTLS is still supported.
– Systemd-repart now supports creating SquashFS partitions as well as dm-verity partitions.
– systemd-oomd now sends a D-Bus “Killed” signal when a control group is killed.
The full list of changes and more information about systemd 252-rc1 is available via GitHub.