Nooc cusub oo ah nidaamka maamulaha nidaamka xorta ah ayaa la siidaayay.
Isbeddelada jebiya iswaafajinta gadaal:
-
Hadda koraya qayb gaar ah /usr/ Kaliya waxaa lagu taageeraa marxaladda intramps.
-
Siideynta mustaqbalka waxay meesha ka saari doontaa taageerada qoraalada nidaamka V iyo kooxaha v1.
-
Fursadaha SuspendMode=, HibernateState= ΠΈ HybridSleepState= laga bilaabo qaybta [hurdo] waa laga gooyay systemd-sleep.conf oo wax saamayn ah kuma laha hab-dhaqanka nidaamka.
Isbeddellada shaqada kormeeraha:
-
Daemons hadda waa la bilaabay iyadoo la adeegsanayo posix_spawn () halkii laga isticmaali lahaa isku darka fargeeto () iyo exec (); jiid codsi #27890.
-
systemd hadda waxay isticmaashaa sharraxayaasha faylka PIDFD si ay ula socdaan hababka ilmaha; tani waxay fududaynaysaa macquulnimada shaqada kormeeraha; jiid codsi #29142, #29594, #29455.
-
Doorasho cusub SurviveFinalKillSignal= waxay u ogolaataa daemon inay iska ilaaliso joojinta marka la isticmaalayo habka jilicsan ee dib u soo kabashada; jiid codsi #28545.
-
Unugyadu hadda waxay taageeraan xulashooyinka MemoryPeak=, MemorySwapPeak=, MemorySwapCurrent= ΠΈ MemoryZSwapCurrent=; Doorashooyinkani waxay u dhigmaan xuduudaha xusuusta.ugu sarreysa, xusuusta.is-beddelka.ugu sarreeya, xusuusta.is-beddelka.hadda ΠΈ xusuusta.zswap. guryaha hadda kooxaha v2.
-
Doorasho cusub ConditionSecurity= Waxay kuu ogolaanaysaa inaad u sheegto systemd in adeega la bilaabo kaliya haddii nidaamka lagu rakibay sawirka UKI ee la xaqiijiyay.
Taageerada TPM2:
-
systemd-cryptenroll hadda waxay kuu ogolaanaysaa inaad qeexdo boos PCR gaar ah iyo xashiish.
-
systemd-cryptenroll wuxuu kuu ogolaanayaa inaad qeexdo tusaha muhiimka ah; jiid codsi #29427.
-
Hadda waa suurtogal in lagu xidho mugga LUKS chip TPM2 gaar ah iyada oo aan la helin, haddii furaha dadweynaha la yaqaan.
-
binary systemd-cryptsetup ayaa loo raray / usr / bin / waxaana loo isticmaali karaa meel ka baxsan systemd.
-
Qaybta gudaha ee systemd-pcrphase waxa loo badalay systemd-pcrextend.
-
Qayb cusub, systemd-pcrlock, waxay kuu ogolaanaysaa inaad saadaaliso galitaanka PCR iyadoo lagu saleynayo macluumaadka nidaamka jira; jiid codsi #28891.
systemd-boot, systemd-stub, ukify, bootctl, kernel-install:
-
bootctl hadda waxay kuu ogolaaneysaa inaad go'aamiso in nidaamka laga soo qaaday uki.
-
systemd-boot waxay taageertaa furayaasha furaha si loo damiyo oo dib loo bilaabo nidaamka.
-
systemd-boot ma rarto blobs Devicetree aan la aamini karin marka SecureBoot la furo.
-
systemd-boot iyo systemd-stub hadda waxay leeyihiin aqoonsiyo kala duwan qaybta .sbat, iyo UEFI waxay u wici kartaa si madax banaan; jiid codsi #29196.
-
Qaybta ukify hadda ma aha tijaabo; fulinta ayaa hadda ku yaala / usr / bin /.
systemd-networkd:
-
Taageero lagu daray tignoolajiyada degdegga ah ee Commit.
-
dbus interface systemd-networkd hadda waxay kuu ogolaanaysaa inaad hesho macluumaadka ku saabsan heerka macmiilka DHCP; galan #28896.
-
Ikhtiyaar NFTSet= wuxuu kuu ogolaanayaa inaad ku xidho qaabaynta interface network si loo sameeyo xeerar nftables.
-
Qaybta [IPv6AcceptRA] waxay taageertaa doorashooyin cusub: IsticmaalPREF64=, IsticmaalHopLimit=, IsticmaalICMP6RateLimit= ΠΈ NFTSet=.
-
Qaybta [IPv6SendRA] hadda waxay taageertaa xulashooyinka RetransmitSec=, HopLimit=, HomeAgent=, HomeAgentLifetimeSec= ΠΈ HomeAgentPreference=.
-
Faylasha habaynta ee laga keenay ikhtiyaarada khadka taliska kernel hadda waxay leeyihiin horgale 70-; Mudnaanta faylashan hadda way ka sarraysaa mudnaanta faylalka qaabeynta caadiga ah.
Source: linux.org.ru