Hi, we're getting ready to push systemd 247-rc2 to rawhide. This is currently blocked by selinux (see below), but I wanted to give a heads-up. There's a number of changes which are interesting for Fedora: - user units (under user@nnn.service) are segregated into app.slice, session.slice, background.slice. By itself this doesn't do much, but it'll allow e.g. kernel memory protections to be applied to session.slice, ensuring that gnome-shell remains responsive even with high memory contention. This change requires further changes from desktop environments to put appropriate units in the respective slices, so the changes in systemd are just the beginning of the process. - systemd-oomd and oomctl are available, but should be considered "technical preview" (backwards-incompatible changes may still happen). oomd doesn't do anything without configuration, so for anyone interested in this, now is a good moment to experiment with policy settings and suggest some defaults to upstream. - udev rules might need to be adjusted to handle new "bind" and "unbind" events emitted by the kernel. Despite multiple attempts, we couldn't find a way to handle this change in udev in a way that would preserve compatibility with existing rules. See the NEWS file [1] for details. - some non-essential libraries are now loaded using dlopen(). Dependencies in packages have been downgraded from "Requires" to "Recommends" (libpwquality, libqrencode, libxkbcommon, libidn2, libcryptsetup). This will result in smaller installation footprint, but users may need to explicitly install some dependencies. (This only matters where install_weak_deps=False, i.e. not on normal user installations.) - nss-resolve now talks to systemd-resolved using a direct varlink connection, instead of a dbus connection through the system broker. This means that name resolution using resolved is available immediately after resolved is up, while previously it required dbus-broker.service to up, which happens relatively late. There's a bunch of other changes too, see NEWS [1]. The new version is not built in rawhide yet because we're waiting for the selinux policy update [2]. (The biggest problem is selinux policy blocking the check if selinux is enabled ;)). Builds are available in side tag f34-build-side-33917 [3]. [1] https://github.com/systemd/systemd/blob/v247-rc2/NEWS [2] https://github.com/fedora-selinux/selinux-policy/pull/464 [3] https://koji.fedoraproject.org/koji/taskinfo?taskID=55456626 Zbyszek _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
