Alison Chaiken, profile picture
Uploaded byAlison Chaiken
PDF, PPTX3,152 views

Systemd: the modern Linux init system you will learn to love

The document discusses systemd, a modern Linux init system that is widely used across various distributions such as Fedora, RHEL, and soon Debian and Ubuntu. It highlights systemd's modular design, asynchronous capabilities, and improved management of services compared to the traditional sysvinit system, while addressing controversies and misconceptions surrounding its complexity and alleged monopolization. Systemd is praised for its tight integration with the Linux kernel, a vibrant developer community, and its potential benefits for embedded systems.

Engineering
In this document
Powered by AI

Introduction to systemd as a modern init system, covering its learning objectives and instructor details.

Topics such as Motivation, Concepts, Usage, Controversy, and Special Topics related to systemd.

A quiz to identify the most widely used Linux init system.

Emphasizes the aversion to change from sysVinit to systemd, encouraging a definitive transition.

systemd is adopted in major distributions like Fedora, RHEL, and soon Debian; notable praise received.

systemd characteristics: modularity, asynchronous execution, declarative properties, and a focus on core efficiency.

Comparison between traditional daemons like xinetd and systemd highlighting start-up methods.

Commands for listing services managed by sysVinit and systemd services, showing comparative counts.

Discussion on how modularity in systemd can lead to complexity.

Major differences between systemd and traditional SysVInit, focusing on environment cleanliness.

Demonstration of socket-activated services in systemd using CUPS and ncat.

Details on unit files, actions, parameters, and how dependencies are managed in systemd.

Ease of use with systemd utilities, configuration simplicity, and backward compatibility with SysVinit.

Hierarchy of unit files for system and user sessions with customization options.

Overview of the controversial binary format of systemd journal and commands for log access.

Discusses controversies regarding systemd, its design, and user experiences with transitions.

Credits to individuals and organizations contributing to the development and understanding of systemd.

Various resources for learning about systemd, including documentation and tutorials.

Systems integration of systemd with cgroups, udev, security features, embedded applications, and associated projects.

Methods to adjust symlinks and service targets in systemd, demonstrating customization.

Common misconceptions about systemd's complexity and module interdependencies discussed.

Taxonomy of various systemd dependency types and their functionalities.

Embed presentation

Download as PDF, PPTX
systemd: the modern init system you will learn to love Alison Chaiken alison@she-devel.com http://she-devel.com Jan. 7, 2015 Text in blue is hyperlinked. On-the-fly audience exercises.
Topics ● Motivation ● Concepts ● Usage ● Controversy ● Special topics (cgroups, udev, CoreOS)
Quiz:  what is the most widely used Linux init system?
Aversion to change sysVinit systemd Never go back!
systemd is . . . ● already the basis of Fedora, RHEL, CentOS, OpenSUSE and much embedded. ● soon to be the basis of Debian and Ubuntu. ● praised by Jordan Hubbard of FreeBSD. ● after OpenStack and Docker, the most discussed new Linux feature.
Concepts
● modular; ● asynchronous and concurrent; ● described by declarative sets of properties; ● bundled with analysis tools and tests; ● features a fully language-agnostic API. systemd is:
Philosophy Extract duplicate functionality from individual daemons  and move it to the systemd core or the Linux kernel. Replace /etc scripts with declarative configuration files.
One daemon to rule them all xinetd: a daemon to lazily launch internet services when activity is detected on an AF_INET socket systemd: a daemon to lazily launch any system service when activity is detected on an AF_UNIX socket (oversimplification)
which services are started by sysVinit? Try: 'ls/etc/init.d'
Which daemons started by systemd directly? Try: 'ls /lib/systemd/system/*.service' Try: 'systemctl list-sockets'
Side-by-side comparison [user@localhost]$ wc /etc/rc5.d/S16rsyslog 126 380 2796 /etc/rc5.d/S16rsyslog [user@localhost]$ wc /lib/systemd/system/rsyslog.service 15 16 290 /lib/systemd/system/rsyslog.service [user@localhost]$ wc /bin/bash 4154 25489 1029624 /bin/bash [user@localhost]$ wc /lib/systemd/systemd 5944 33609 1309072 /lib/systemd/systemd
Modularity can produce complexity photo courtesy Bill Ward
Major Differences with SysVInit clean environment socket-based activation
X Upstart Serial Linked list Fully parallel
[Socket activation demo with cups and ncat]
init.d scripts  systemd units ● Unit's action and parameters: ExecStart= ● Dependencies: Before=, After=, Requires=, Conflicts= and Wants=. ● Default dependencies: – Requires= and After= on basic.target; – Conflicts= and Before= on shutdown.target. ● Types of unit files: service, socket, device, mount, scope, slice, automount, swap, target, path, timer, snapshot
Sequence of targets on a typical system >$ ls -l /lib/systemd/system/default.target /lib/systemd/system/default.target -> graphical.target >$ cat /lib/systemd/system/graphical.target After=multi-user.target >$ cat /lib/systemd/system/multi-user.target After=basic.target >$ cat /lib/systemd/system/basic.target After=sysinit.target sockets.target timers.target paths.target slices.target
[runlevel demo with Fedora Qemu and Firefox] Try: 'systemctl isolate multi-user.target' [warning: KILLS X11]
Understanding dependencies Try: systemctl list-dependencies basic.target systemctl list-dependencies –after tmp.mount
Usage
systemd is easy to use ● systemd utilities: – Try: apropos systemd | grep ctl ● All-ASCII configuration files: no hidden “registry”. ● Customization is by overriding default files. ● Many choices are controllable via symlinks. ● Bash-completion by default. ● Backwards compatibility with SysVinit
Hierarchy of unit files for system and user sessions ● /lib/systemd/system: systemd upstream defaults ● /etc/system/system: local customizations by override and extension ● /usr/lib/systemd/user/: distro's unit files for user sessions ● $HOME/.local/share/systemd/user/ for user-installed units ● 'drop-ins' are run-time extensions
Override your defaults! photo courtesy Jym Dyer ● Replace a unit in /lib (upstream) by creating one of the same name in /etc (local changes). ● Add services to boot by symlinking them into /etc/systemd/system/default.target.wants. ● 'mask' unit with link to /dev/null. ● Best practice: do not change the files in /lib/systemd. ● Read in-use unit with 'systemctl cat'.
using the systemd journal ● Binary format is (rightfully) controversial. ● Run “addgroup $USER systemd- journal” for access. ● Log-reading tools are simple: – journalctl -xn – journalctl -p err – journalctl /usr/sbin/cron – systemctl status – systemctl is-failed bluetooth – systemctl --failed
Controversy
Old way New way History X11 manages graphics memory Kernel's drm manages graphics memory “Linux Graphics Drivers: an I ntroduction,” p. 26 static /dev, then devfs udev “udev and devfs: the final wo rd” getrlimit, setrlimit cgroups “On the history of process g rouping” KDE3 and GNOME2 KDE4 and GNOME3 KDE and GNOME sysVinit systemd in progress X11 client-server model Wayland compositor “The Wayland Situation”
Crux of the problem: Dave Neary “There is no freedesktop.org process for proposing standards, identifying those which are proposals and those which are de facto implemented, and perhaps more importantly, there is no process for building consensus around a specification . . .” (comment regarding GNOME3)
Summary ● Systemd has: – a superior design; – tight integration with the Linux kernel; – a vibrant developer community. ● Rants against systemd are largely FUD. ● Control over userspace has migrated: – away from distros; – toward kernel and freedesktop.org. ● Most users will not notice. ● The transition from X11 to Wayland will break more.
Thanks ● Mentor Graphics for sending me to Germany to hack on systemd. ● Kevin Dankwardt for teaching me about LWN and cscope. ● Vladimir Pantelic, Tom Gundersen and Lennart Poettering for corrections (without implied 'ack'). ● Bill Ward and Jym Dyer for use of their images.
photo courtesy Jym Dyer
Resources ● Man pages are part of systemd git repo. ● freedesktop.org: systemd mailing list archives and wiki ● At Poettering's 0pointer.de blog ● ➟At wayback machine: “Booting up” articles ● Neil Brown series at LWN ● Fedora's SysVinit to systemd cheatsheet ● Steve Smethurst's Hacker Public Radio episode ● Josh Triplett's Debconf talk video ● Carla Schroeder's linux.com tutorial
Special topics
tight integration: systemd and cgroups ● cgroups are a kernel-level mechanism for allocating resources like storage, memory, CPU and network ● Userspace configures cgroups through cgroupfs ● [user@localhost]$ sudo mount | grep cgroup cgroup on /sys/fs/cgroup/cpuset type cgroup cgroup on /sys/fs/cgroup/net_cls,net_prio type cgroup cgroup on /sys/fs/cgroup/blkio type cgroup [ . . . ] ● BSDs do not have cgroups. ● Demo: sudo systemd-cgls; sudo systemd-cgtop
tight integration: systemd and udev ● udev is a daemon that handles kernel events related to changes in device status. ● udev was (controversially) merged into the systemd project. ● Like cgroups, udev is tightly integrated into the Linux kernel. ● Related imminent improvement: kdbus
systemd and security: granular encapsulation ● PrivateTmp, PrivateDevices, PrivateNetwork ● JoinNamespaces ● ProtectSystem (/usr and /etc), ProtectHome ● ReadOnlyDirectories, InaccessibleDirectories ● systemd-nspawn: systemd's native containers ● Easy configuration of kernel's capability properties
systemd in embedded systems ● systemd is widely adopted in embedded systems because – proper allocation of resources is critical; – fastboot is required; – customization of boot sequence is common. ● Lack of backward compatibility for older kernels (due to firmware loading) is a pain point. ● Embedded use cases are not always understood by systemd devs.
systemd and outside projects: CoreOS ● networkd was initially contributed by CoreOS developers. ● CoreOS's fleet “tool that presents your entire cluster as a single init system” is based on systemd. – Spin up new containers due to events on sockets. ● CoreOS devs are outside systemd inner circle. ● systemd has many patches from Arch, Intel, Debian . . .
developing systemd ● git clone git://anongit.freedesktop.org/systemd/systemd ● systemd-devel list: submit patches or ask questions ● Impressive and featureful utility library in src/shared/ #define streq(a,b) (strcmp((a),(b)) == 0) #define strneq(a, b, n) (strncmp((a), (b), (n)) == 0) #define strcaseeq(a,b) (strcasecmp((a),(b)) == 0) #define strncaseeq(a, b, n) (strncasecmp((a), (b), (n)) == 0) ● Complex but automated build system with many dependencies. ● 'Plumbing' dev tools in /lib/systemd, 'porcelain' tools in /bin find /lib/systemd -executable -type f
Leftover Materials
sysVinit runlevels ≈ systemd targets ● Check /lib/systemd/system/runlevel?.target symlinks: multi-user.target.wants (runlevel 3 == text session) graphical.target.wants (runlevel 5 == graphical session) ● Select boot-target : – via /etc/systemd/system/default.target symlink; – appending number ('3' or '5') or systemd.unit=<target> to kernel cmdline; ● Change current target by – using runlevel (or telinit) command; – or systemctl isolate multi-user.target
Extensions: drop-ins Try: systemd-delta Try: systemctl cat <list from 1st command>
Customizing your installation ● Replace a unit in /lib (upstream) by creating one of the same name in /etc (local changes). ● Add services to boot by symlinking them into /etc/systemd/system/default.target.wants. ● Best practice: do not change the files in /lib/systemd
Example: set display manager [user@localhost ~]$ ls -l `locate display-manager.service` lrwxrwxrwx. 1 root root 35 Dec 11 2013 /etc/systemd/system/display-manager.service -> /usr/lib/systemd/system/gdm.service [user@localhost ~]$ cat /usr/lib/systemd/system/gdm.service [Unit] Description=GNOME Display Manager [ . . . ] [Install] Alias=display-manager.service or WantedBy=graphical.target
sysinit, sockets and multi-user are composite targets >$ ls /lib/systemd/system/multi-user.target.wants/ dbus.service@ systemd-ask-password-wall.path@ systemd- update-utmp-runlevel.service@ getty.target@ >$ ls /lib/systemd/system/sockets.target.wants: dbus.socket@ systemd-shutdownd.socket@ systemd-initctl.socket@ systemd-udevd-control.socket@ >$ ls /lib/systemd/system/sysinit.target.wants: cryptsetup.target@ systemd-journald.service@ debian-fixup.service@ systemd-journal-flush.service@ Symlinks replace lines of conditional code in SysVinit scripts.
Example: change the default target [alison@localhost ~]$ ls /etc/systemd/system/default.target /etc/systemd/system/default.target -> /lib/systemd/system/graphical.target [alison@localhost ~]$ sudo rm /etc/systemd/system/default.target [alison@localhost ~]$ sudo ln -s /lib/systemd/system/multi-user.target /etc/systemd/system/default.target [alison@localhost ~]$ ~/bin/systemd-delta [ . . . ] [REDIRECTED] /etc/systemd/system/default.target → /usr/lib/systemd/system/default.target
Misconceptions ● systemd is more complex than sysVinit. ● systemd is full of binary configuration files. ● The system log is now unreadable! And liable to corruption! ● {Fedora/GNOME/RedHat/Poettering} are trying to take over all of Linux.
problems ● systemd is modular, but: – interopability with other SW may be inadequately tested. ● Potentially rocky piecemeal transition by distros. – e.g., Debian installer doesn't warn about a separate /usr partition. ● Merciless deprecation of features (firmware loading, readahead . . . ). ● Frequent releases, not particularly stable.
Greg K-H: “Tightly-coupled components”
Taxonomy of systemd dependencies Requires, RequiresOverridable, Requisite, RequisiteOverridable, Wants, BindsTo, PartOf, Conflicts, Before, After, OnFailure PropagateReloadsTo, ReloadPropagateFrom,

More Related Content

PDF
systemd
bynussbauml
 
PPTX
Linux booting Process
byGaurav Sharma
 
PDF
Linux Internals - Part I
byEmertxe Information Technologies Pvt Ltd
 
PPTX
Systemd 간략하게 정리하기
bySeungha Son
 
PDF
U-Boot - An universal bootloader
byEmertxe Information Technologies Pvt Ltd
 
PDF
Linux Internals - Part II
byEmertxe Information Technologies Pvt Ltd
 
PDF
Embedded Linux Kernel - Build your custom kernel
byEmertxe Information Technologies Pvt Ltd
 
PDF
Uboot startup sequence
byHoucheng Lin
 
systemd
bynussbauml
 
Linux booting Process
byGaurav Sharma
 
Linux Internals - Part I
byEmertxe Information Technologies Pvt Ltd
 
Systemd 간략하게 정리하기
bySeungha Son
 
U-Boot - An universal bootloader
byEmertxe Information Technologies Pvt Ltd
 
Linux Internals - Part II
byEmertxe Information Technologies Pvt Ltd
 
Embedded Linux Kernel - Build your custom kernel
byEmertxe Information Technologies Pvt Ltd
 
Uboot startup sequence
byHoucheng Lin
 

What's hot

PPTX
Linux Boot Process
bydarshhingu
 
PDF
Part 02 Linux Kernel Module Programming
byTushar B Kute
 
PDF
Linux systems - Linux Commands and Shell Scripting
byEmertxe Information Technologies Pvt Ltd
 
PPTX
Bootloaders (U-Boot)
byOmkar Rane
 
PPT
Bootstrap process of u boot (NDS32 RISC CPU)
byMacpaul Lin
 
PDF
Linux programming - Getting self started
byEmertxe Information Technologies Pvt Ltd
 
PDF
BeagleBone Black Bootloaders
bySysPlay eLearning Academy for You
 
PDF
A practical guide to buildroot
byEmertxe Information Technologies Pvt Ltd
 
PPT
U Boot or Universal Bootloader
bySatpal Parmar
 
PPT
Linux Booting Process
byRishabh5121993
 
PPTX
U-Boot presentation 2013
byWave Digitech
 
PDF
U boot-boot-flow
byBabuSubashChandar Chandra Mohan
 
PPT
Linux presentation
byNikhil Jain
 
PDF
Embedded Linux BSP Training (Intro)
byRuggedBoardGroup
 
PPTX
U-Boot Porting on New Hardware
byRuggedBoardGroup
 
PDF
Introduction to Modern U-Boot
byGlobalLogic Ukraine
 
PPT
U boot porting guide for SoC
byMacpaul Lin
 
PDF
Introduction to systemd
byYusaku OGAWA
 
PDF
Linux device drivers
byEmertxe Information Technologies Pvt Ltd
 
ODP
SystemV vs systemd
byAll Things Open
 
Linux Boot Process
bydarshhingu
 
Part 02 Linux Kernel Module Programming
byTushar B Kute
 
Linux systems - Linux Commands and Shell Scripting
byEmertxe Information Technologies Pvt Ltd
 
Bootloaders (U-Boot)
byOmkar Rane
 
Bootstrap process of u boot (NDS32 RISC CPU)
byMacpaul Lin
 
Linux programming - Getting self started
byEmertxe Information Technologies Pvt Ltd
 
BeagleBone Black Bootloaders
bySysPlay eLearning Academy for You
 
A practical guide to buildroot
byEmertxe Information Technologies Pvt Ltd
 
U Boot or Universal Bootloader
bySatpal Parmar
 
Linux Booting Process
byRishabh5121993
 
U-Boot presentation 2013
byWave Digitech
 
U boot-boot-flow
byBabuSubashChandar Chandra Mohan
 
Linux presentation
byNikhil Jain
 
Embedded Linux BSP Training (Intro)
byRuggedBoardGroup
 
U-Boot Porting on New Hardware
byRuggedBoardGroup
 
Introduction to Modern U-Boot
byGlobalLogic Ukraine
 
U boot porting guide for SoC
byMacpaul Lin
 
Introduction to systemd
byYusaku OGAWA
 
Linux device drivers
byEmertxe Information Technologies Pvt Ltd
 
SystemV vs systemd
byAll Things Open
 

Viewers also liked

PPTX
Systemd en Centos 7
byCarlos Antonio Leal Saballos
 
ODP
The New Process No. 1 of Linux -- SystemD
byfreedman6022e20
 
ODP
Rsyslog vs Systemd Journal Presentation
byRainer Gerhards
 
PDF
Rsyslog vs Systemd Journal (Paper)
byRainer Gerhards
 
PDF
Hablemos de Systemd
byRodolfo Pilas
 
PDF
Systemd for developers
byAlison Chaiken
 
PPT
Kernel mode vs user mode in linux
bySiddique Ibrahim
 
PDF
Architecture Of The Linux Kernel
byDom Cimafranca
 
Systemd en Centos 7
byCarlos Antonio Leal Saballos
 
The New Process No. 1 of Linux -- SystemD
byfreedman6022e20
 
Rsyslog vs Systemd Journal Presentation
byRainer Gerhards
 
Rsyslog vs Systemd Journal (Paper)
byRainer Gerhards
 
Hablemos de Systemd
byRodolfo Pilas
 
Systemd for developers
byAlison Chaiken
 
Kernel mode vs user mode in linux
bySiddique Ibrahim
 
Architecture Of The Linux Kernel
byDom Cimafranca
 

Similar to Systemd: the modern Linux init system you will learn to love

PDF
Tuning systemd for embedded
byAlison Chaiken
 
PDF
Automotive Grade Linux and systemd
byAlison Chaiken
 
PDF
LISA15: systemd, the Next-Generation Linux System Manager
byAlison Chaiken
 
PDF
Your first dive into systemd!
byEtsuji Nakai
 
PDF
Systemd mlug-20140614
bySusant Sahani
 
PDF
Systemd evolution revolution_regression
bySusant Sahani
 
ODP
CLUG 2010 09 - systemd - the new init system
byPaulWay
 
PPTX
First steps on CentOs7
byMarc Cortinas Val
 
PDF
SystemD Usage Guide
byVCP Muthukrishna
 
PDF
Basic of Systemd
byPraveen Kumar
 
PDF
systemd @ Facebook -- a year later
byDavide Cavalca
 
PDF
Systemd
bySusant Sahani
 
PDF
Systemd poettering
bySusant Sahani
 
PPTX
CoreOS Intro
byIsaac Johnston
 
PDF
Summit demystifying systemd1
bySusant Sahani
 
PDF
Fedora 15 para sysadmins
byapsegundo
 
PDF
systemd @ Facebook in 2019
byDavide Cavalca
 
PDF
Pdf c1t tlawaxb
bySusant Sahani
 
PPTX
Systemd
byGanesh Bhosale
 
PPT
Intro to linux systems administration
byPadam Banthia
 
Tuning systemd for embedded
byAlison Chaiken
 
Automotive Grade Linux and systemd
byAlison Chaiken
 
LISA15: systemd, the Next-Generation Linux System Manager
byAlison Chaiken
 
Your first dive into systemd!
byEtsuji Nakai
 
Systemd mlug-20140614
bySusant Sahani
 
Systemd evolution revolution_regression
bySusant Sahani
 
CLUG 2010 09 - systemd - the new init system
byPaulWay
 
First steps on CentOs7
byMarc Cortinas Val
 
SystemD Usage Guide
byVCP Muthukrishna
 
Basic of Systemd
byPraveen Kumar
 
systemd @ Facebook -- a year later
byDavide Cavalca
 
Systemd
bySusant Sahani
 
Systemd poettering
bySusant Sahani
 
CoreOS Intro
byIsaac Johnston
 
Summit demystifying systemd1
bySusant Sahani
 
Fedora 15 para sysadmins
byapsegundo
 
systemd @ Facebook in 2019
byDavide Cavalca
 
Pdf c1t tlawaxb
bySusant Sahani
 
Systemd
byGanesh Bhosale
 
Intro to linux systems administration
byPadam Banthia
 

More from Alison Chaiken

PDF
Not breaking userspace: the evolving Linux ABI
byAlison Chaiken
 
PDF
Supporting SW Update via u-boot and GPT/EFI
byAlison Chaiken
 
PDF
Two C++ Tools: Compiler Explorer and Cpp Insights
byAlison Chaiken
 
PDF
V2X Communications: Getting our Cars Talking
byAlison Chaiken
 
PDF
Practical Challenges to Deploying Highly Automated Vehicles
byAlison Chaiken
 
PDF
Linux: the first second
byAlison Chaiken
 
PDF
Functional AI and Pervasive Networking in Automotive
byAlison Chaiken
 
PDF
Flash in Vehicles: an End-User's Perspective
byAlison Chaiken
 
PDF
Linux: the first second
byAlison Chaiken
 
PDF
IRQs: the Hard, the Soft, the Threaded and the Preemptible
byAlison Chaiken
 
PDF
Automotive Linux, Cybersecurity and Transparency
byAlison Chaiken
 
PDF
Developing Automotive Linux
byAlison Chaiken
 
ODP
Technology, Business and Regulation of the Connected Car
byAlison Chaiken
 
PDF
Best practices for long-term support and security of the device-tree
byAlison Chaiken
 
PDF
The “Telematics Horizon” V2V and V2I Networking
byAlison Chaiken
 
PDF
Developing automotive Linux
byAlison Chaiken
 
PDF
Automotive Free Software 2013: "Right to Repair" and Privacy
byAlison Chaiken
 
PDF
Addressing the hard problems of automotive Linux: networking and IPC
byAlison Chaiken
 
PDF
Tier X and the Coming of the Whitebox Car
byAlison Chaiken
 
PDF
Booth content from Maker Faire Bay Area 2012
byAlison Chaiken
 
Not breaking userspace: the evolving Linux ABI
byAlison Chaiken
 
Supporting SW Update via u-boot and GPT/EFI
byAlison Chaiken
 
Two C++ Tools: Compiler Explorer and Cpp Insights
byAlison Chaiken
 
V2X Communications: Getting our Cars Talking
byAlison Chaiken
 
Practical Challenges to Deploying Highly Automated Vehicles
byAlison Chaiken
 
Linux: the first second
byAlison Chaiken
 
Functional AI and Pervasive Networking in Automotive
byAlison Chaiken
 
Flash in Vehicles: an End-User's Perspective
byAlison Chaiken
 
Linux: the first second
byAlison Chaiken
 
IRQs: the Hard, the Soft, the Threaded and the Preemptible
byAlison Chaiken
 
Automotive Linux, Cybersecurity and Transparency
byAlison Chaiken
 
Developing Automotive Linux
byAlison Chaiken
 
Technology, Business and Regulation of the Connected Car
byAlison Chaiken
 
Best practices for long-term support and security of the device-tree
byAlison Chaiken
 
The “Telematics Horizon” V2V and V2I Networking
byAlison Chaiken
 
Developing automotive Linux
byAlison Chaiken
 
Automotive Free Software 2013: "Right to Repair" and Privacy
byAlison Chaiken
 
Addressing the hard problems of automotive Linux: networking and IPC
byAlison Chaiken
 
Tier X and the Coming of the Whitebox Car
byAlison Chaiken
 
Booth content from Maker Faire Bay Area 2012
byAlison Chaiken
 

Recently uploaded

PDF
22PEOIT4C Artificial Intelligence Syllab
bymailmegokilavani
 
PPTX
2_Consequence of threats, E-mail threats, Web.pptx
bydolly475229
 
PPTX
1_Sources of security threats, Motives, Target.pptx
bydolly475229
 
PPTX
Civil_Engineering_Technician_Skill_Assessment_2025_2026_Presentation.pptx
byCDR Australia Engineer
 
PPTX
Preventive Maintenance Program for Compressors – Complete Guide
byMaintWiz Technologies Private Limited
 
PDF
AI-Driven CTI for Business: Emerging Threats, Attack Strategies, and Defensiv...
byAIRCC Publishing Corporation
 
PPTX
22PEOIT4C Session 7 A searching algorithm.pptx
bymailmegokilavani
 
PDF
Troubleshooting of Marine Refrigeration System - Part 4
byMahmoud Moghtaderi
 
PDF
Advanced Intrusion Detection and Classification using Transfer Learning with ...
byIJCNCJournal
 
DOCX
Buy Facebook Ads Accounts_ Boost Your Professional ....docx
bytopusapro.com
 
PPTX
22PEOIT4C Session 1 Introduction to AI and intelligent agents.pptx
bymailmegokilavani
 
PPTX
Introduction Blockchains and Smart Contracts
bybobinson
 
PPTX
Plant Performance Strategies: Enhanced Reliability & Operational Efficiency w...
byMaintWiz Technologies Private Limited
 
PPTX
22PEOIT4C Session 4 Breath First Search & Depth First Search.pptx
bymailmegokilavani
 
PPTX
Revolutionizing Facilities Management with MaintWiz — AI CMMS for Smart FMaaS
byMaintWiz Technologies Private Limited
 
PPT
Tutorial-security-privacy-cloud intro duction about cloud compting its services
byHEmansuSingh
 
PPTX
Optimizing Operations: Key Elements of a Successful Plant Maintenance Plan — ...
byMaintWiz Technologies Private Limited
 
PPTX
infosecurity & Cyber Sec 2025 September for deep.pptx
bymsrehan
 
PPTX
Cloud vs On-Premises CMMS — Which Maintenance Platform Is Better for Your Plant?
byMaintWiz Technologies Private Limited
 
PPTX
A7383 3D Printing UNIT-III : 3D printing techniques
byVishnuVardhan909561
 
22PEOIT4C Artificial Intelligence Syllab
bymailmegokilavani
 
2_Consequence of threats, E-mail threats, Web.pptx
bydolly475229
 
1_Sources of security threats, Motives, Target.pptx
bydolly475229
 
Civil_Engineering_Technician_Skill_Assessment_2025_2026_Presentation.pptx
byCDR Australia Engineer
 
Preventive Maintenance Program for Compressors – Complete Guide
byMaintWiz Technologies Private Limited
 
AI-Driven CTI for Business: Emerging Threats, Attack Strategies, and Defensiv...
byAIRCC Publishing Corporation
 
22PEOIT4C Session 7 A searching algorithm.pptx
bymailmegokilavani
 
Troubleshooting of Marine Refrigeration System - Part 4
byMahmoud Moghtaderi
 
Advanced Intrusion Detection and Classification using Transfer Learning with ...
byIJCNCJournal
 
Buy Facebook Ads Accounts_ Boost Your Professional ....docx
bytopusapro.com
 
22PEOIT4C Session 1 Introduction to AI and intelligent agents.pptx
bymailmegokilavani
 
Introduction Blockchains and Smart Contracts
bybobinson
 
Plant Performance Strategies: Enhanced Reliability & Operational Efficiency w...
byMaintWiz Technologies Private Limited
 
22PEOIT4C Session 4 Breath First Search & Depth First Search.pptx
bymailmegokilavani
 
Revolutionizing Facilities Management with MaintWiz — AI CMMS for Smart FMaaS
byMaintWiz Technologies Private Limited
 
Tutorial-security-privacy-cloud intro duction about cloud compting its services
byHEmansuSingh
 
Optimizing Operations: Key Elements of a Successful Plant Maintenance Plan — ...
byMaintWiz Technologies Private Limited
 
infosecurity & Cyber Sec 2025 September for deep.pptx
bymsrehan
 
Cloud vs On-Premises CMMS — Which Maintenance Platform Is Better for Your Plant?
byMaintWiz Technologies Private Limited
 
A7383 3D Printing UNIT-III : 3D printing techniques
byVishnuVardhan909561
 

Systemd: the modern Linux init system you will learn to love

  • 1.
    systemd: the moderninit system you will learn to love Alison Chaiken alison@she-devel.com http://she-devel.com Jan. 7, 2015 Text in blue is hyperlinked. On-the-fly audience exercises.
  • 2.
    Topics ● Motivation ● Concepts ●Usage ● Controversy ● Special topics (cgroups, udev, CoreOS)
  • 3.
  • 4.
    Aversion to change sysVinitsystemd Never go back!
  • 5.
    systemd is .. . ● already the basis of Fedora, RHEL, CentOS, OpenSUSE and much embedded. ● soon to be the basis of Debian and Ubuntu. ● praised by Jordan Hubbard of FreeBSD. ● after OpenStack and Docker, the most discussed new Linux feature.
  • 6.
  • 7.
    ● modular; ● asynchronousand concurrent; ● described by declarative sets of properties; ● bundled with analysis tools and tests; ● features a fully language-agnostic API. systemd is:
  • 8.
  • 9.
    One daemon torule them all xinetd: a daemon to lazily launch internet services when activity is detected on an AF_INET socket systemd: a daemon to lazily launch any system service when activity is detected on an AF_UNIX socket (oversimplification)
  • 10.
    which services arestarted by sysVinit? Try: 'ls/etc/init.d'
  • 11.
    Which daemons startedby systemd directly? Try: 'ls /lib/systemd/system/*.service' Try: 'systemctl list-sockets'
  • 12.
    Side-by-side comparison [user@localhost]$ wc/etc/rc5.d/S16rsyslog 126 380 2796 /etc/rc5.d/S16rsyslog [user@localhost]$ wc /lib/systemd/system/rsyslog.service 15 16 290 /lib/systemd/system/rsyslog.service [user@localhost]$ wc /bin/bash 4154 25489 1029624 /bin/bash [user@localhost]$ wc /lib/systemd/systemd 5944 33609 1309072 /lib/systemd/systemd
  • 13.
    Modularity can producecomplexity photo courtesy Bill Ward
  • 14.
    Major Differences withSysVInit clean environment socket-based activation
  • 15.
  • 16.
    [Socket activation demowith cups and ncat]
  • 17.
    init.d scripts systemd units ● Unit's action and parameters: ExecStart= ● Dependencies: Before=, After=, Requires=, Conflicts= and Wants=. ● Default dependencies: – Requires= and After= on basic.target; – Conflicts= and Before= on shutdown.target. ● Types of unit files: service, socket, device, mount, scope, slice, automount, swap, target, path, timer, snapshot
  • 18.
    Sequence of targetson a typical system >$ ls -l /lib/systemd/system/default.target /lib/systemd/system/default.target -> graphical.target >$ cat /lib/systemd/system/graphical.target After=multi-user.target >$ cat /lib/systemd/system/multi-user.target After=basic.target >$ cat /lib/systemd/system/basic.target After=sysinit.target sockets.target timers.target paths.target slices.target
  • 19.
    [runlevel demo withFedora Qemu and Firefox] Try: 'systemctl isolate multi-user.target' [warning: KILLS X11]
  • 20.
    Understanding dependencies Try: systemctl list-dependenciesbasic.target systemctl list-dependencies –after tmp.mount
  • 21.
  • 22.
    systemd is easyto use ● systemd utilities: – Try: apropos systemd | grep ctl ● All-ASCII configuration files: no hidden “registry”. ● Customization is by overriding default files. ● Many choices are controllable via symlinks. ● Bash-completion by default. ● Backwards compatibility with SysVinit
  • 23.
    Hierarchy of unitfiles for system and user sessions ● /lib/systemd/system: systemd upstream defaults ● /etc/system/system: local customizations by override and extension ● /usr/lib/systemd/user/: distro's unit files for user sessions ● $HOME/.local/share/systemd/user/ for user-installed units ● 'drop-ins' are run-time extensions
  • 24.
    Override your defaults! photocourtesy Jym Dyer ● Replace a unit in /lib (upstream) by creating one of the same name in /etc (local changes). ● Add services to boot by symlinking them into /etc/systemd/system/default.target.wants. ● 'mask' unit with link to /dev/null. ● Best practice: do not change the files in /lib/systemd. ● Read in-use unit with 'systemctl cat'.
  • 25.
    using the systemdjournal ● Binary format is (rightfully) controversial. ● Run “addgroup $USER systemd- journal” for access. ● Log-reading tools are simple: – journalctl -xn – journalctl -p err – journalctl /usr/sbin/cron – systemctl status – systemctl is-failed bluetooth – systemctl --failed
  • 26.
  • 27.
    Old way Newway History X11 manages graphics memory Kernel's drm manages graphics memory “Linux Graphics Drivers: an I ntroduction,” p. 26 static /dev, then devfs udev “udev and devfs: the final wo rd” getrlimit, setrlimit cgroups “On the history of process g rouping” KDE3 and GNOME2 KDE4 and GNOME3 KDE and GNOME sysVinit systemd in progress X11 client-server model Wayland compositor “The Wayland Situation”
  • 28.
    Crux of theproblem: Dave Neary “There is no freedesktop.org process for proposing standards, identifying those which are proposals and those which are de facto implemented, and perhaps more importantly, there is no process for building consensus around a specification . . .” (comment regarding GNOME3)
  • 29.
    Summary ● Systemd has: –a superior design; – tight integration with the Linux kernel; – a vibrant developer community. ● Rants against systemd are largely FUD. ● Control over userspace has migrated: – away from distros; – toward kernel and freedesktop.org. ● Most users will not notice. ● The transition from X11 to Wayland will break more.
  • 30.
    Thanks ● Mentor Graphicsfor sending me to Germany to hack on systemd. ● Kevin Dankwardt for teaching me about LWN and cscope. ● Vladimir Pantelic, Tom Gundersen and Lennart Poettering for corrections (without implied 'ack'). ● Bill Ward and Jym Dyer for use of their images.
  • 31.
  • 32.
    Resources ● Man pagesare part of systemd git repo. ● freedesktop.org: systemd mailing list archives and wiki ● At Poettering's 0pointer.de blog ● ➟At wayback machine: “Booting up” articles ● Neil Brown series at LWN ● Fedora's SysVinit to systemd cheatsheet ● Steve Smethurst's Hacker Public Radio episode ● Josh Triplett's Debconf talk video ● Carla Schroeder's linux.com tutorial
  • 33.
  • 34.
    tight integration: systemdand cgroups ● cgroups are a kernel-level mechanism for allocating resources like storage, memory, CPU and network ● Userspace configures cgroups through cgroupfs ● [user@localhost]$ sudo mount | grep cgroup cgroup on /sys/fs/cgroup/cpuset type cgroup cgroup on /sys/fs/cgroup/net_cls,net_prio type cgroup cgroup on /sys/fs/cgroup/blkio type cgroup [ . . . ] ● BSDs do not have cgroups. ● Demo: sudo systemd-cgls; sudo systemd-cgtop
  • 35.
    tight integration: systemdand udev ● udev is a daemon that handles kernel events related to changes in device status. ● udev was (controversially) merged into the systemd project. ● Like cgroups, udev is tightly integrated into the Linux kernel. ● Related imminent improvement: kdbus
  • 36.
    systemd and security:granular encapsulation ● PrivateTmp, PrivateDevices, PrivateNetwork ● JoinNamespaces ● ProtectSystem (/usr and /etc), ProtectHome ● ReadOnlyDirectories, InaccessibleDirectories ● systemd-nspawn: systemd's native containers ● Easy configuration of kernel's capability properties
  • 37.
    systemd in embeddedsystems ● systemd is widely adopted in embedded systems because – proper allocation of resources is critical; – fastboot is required; – customization of boot sequence is common. ● Lack of backward compatibility for older kernels (due to firmware loading) is a pain point. ● Embedded use cases are not always understood by systemd devs.
  • 38.
    systemd and outsideprojects: CoreOS ● networkd was initially contributed by CoreOS developers. ● CoreOS's fleet “tool that presents your entire cluster as a single init system” is based on systemd. – Spin up new containers due to events on sockets. ● CoreOS devs are outside systemd inner circle. ● systemd has many patches from Arch, Intel, Debian . . .
  • 39.
    developing systemd ● gitclone git://anongit.freedesktop.org/systemd/systemd ● systemd-devel list: submit patches or ask questions ● Impressive and featureful utility library in src/shared/ #define streq(a,b) (strcmp((a),(b)) == 0) #define strneq(a, b, n) (strncmp((a), (b), (n)) == 0) #define strcaseeq(a,b) (strcasecmp((a),(b)) == 0) #define strncaseeq(a, b, n) (strncasecmp((a), (b), (n)) == 0) ● Complex but automated build system with many dependencies. ● 'Plumbing' dev tools in /lib/systemd, 'porcelain' tools in /bin find /lib/systemd -executable -type f
  • 40.
  • 41.
    sysVinit runlevels ≈systemd targets ● Check /lib/systemd/system/runlevel?.target symlinks: multi-user.target.wants (runlevel 3 == text session) graphical.target.wants (runlevel 5 == graphical session) ● Select boot-target : – via /etc/systemd/system/default.target symlink; – appending number ('3' or '5') or systemd.unit=<target> to kernel cmdline; ● Change current target by – using runlevel (or telinit) command; – or systemctl isolate multi-user.target
  • 42.
    Extensions: drop-ins Try: systemd-delta Try:systemctl cat <list from 1st command>
  • 43.
    Customizing your installation ●Replace a unit in /lib (upstream) by creating one of the same name in /etc (local changes). ● Add services to boot by symlinking them into /etc/systemd/system/default.target.wants. ● Best practice: do not change the files in /lib/systemd
  • 44.
    Example: set displaymanager [user@localhost ~]$ ls -l `locate display-manager.service` lrwxrwxrwx. 1 root root 35 Dec 11 2013 /etc/systemd/system/display-manager.service -> /usr/lib/systemd/system/gdm.service [user@localhost ~]$ cat /usr/lib/systemd/system/gdm.service [Unit] Description=GNOME Display Manager [ . . . ] [Install] Alias=display-manager.service or WantedBy=graphical.target
  • 45.
    sysinit, sockets andmulti-user are composite targets >$ ls /lib/systemd/system/multi-user.target.wants/ dbus.service@ systemd-ask-password-wall.path@ systemd- update-utmp-runlevel.service@ getty.target@ >$ ls /lib/systemd/system/sockets.target.wants: dbus.socket@ systemd-shutdownd.socket@ systemd-initctl.socket@ systemd-udevd-control.socket@ >$ ls /lib/systemd/system/sysinit.target.wants: cryptsetup.target@ systemd-journald.service@ debian-fixup.service@ systemd-journal-flush.service@ Symlinks replace lines of conditional code in SysVinit scripts.
  • 46.
    Example: change thedefault target [alison@localhost ~]$ ls /etc/systemd/system/default.target /etc/systemd/system/default.target -> /lib/systemd/system/graphical.target [alison@localhost ~]$ sudo rm /etc/systemd/system/default.target [alison@localhost ~]$ sudo ln -s /lib/systemd/system/multi-user.target /etc/systemd/system/default.target [alison@localhost ~]$ ~/bin/systemd-delta [ . . . ] [REDIRECTED] /etc/systemd/system/default.target → /usr/lib/systemd/system/default.target
  • 47.
    Misconceptions ● systemd ismore complex than sysVinit. ● systemd is full of binary configuration files. ● The system log is now unreadable! And liable to corruption! ● {Fedora/GNOME/RedHat/Poettering} are trying to take over all of Linux.
  • 48.
    problems ● systemd ismodular, but: – interopability with other SW may be inadequately tested. ● Potentially rocky piecemeal transition by distros. – e.g., Debian installer doesn't warn about a separate /usr partition. ● Merciless deprecation of features (firmware loading, readahead . . . ). ● Frequent releases, not particularly stable.
  • 49.
  • 50.
    Taxonomy of systemddependencies Requires, RequiresOverridable, Requisite, RequisiteOverridable, Wants, BindsTo, PartOf, Conflicts, Before, After, OnFailure PropagateReloadsTo, ReloadPropagateFrom,