Released two weeks ago was systemd 258-rc1 with many changes throughout its massive codebae. Out today is a second release candidate of the forthcoming systemd 258.
Compared to all the changes outlined in the systemd 258-rc1 announcement across the diverse range of capabilities provided by this init system and service manager, there are a few more changes to mention with systemd 258-rc1.
First up, new BPF delegate options / tokens for the mount of bpffs: BPFDelegateCommands=, BPFDelegateMaps=, BPFDelegatePrograms=, and BPFDelegateAttachments=. With these new options they allow an unprivileged container to use some BPF functionality.
The new release also increases systemd-resolved’s search domain hard cap from 256 to 1024 to handle complex network setups.
Also, bootctl’s “–graceful” option is now implicitly enabled when running in a chroot. The hope here is to ease integration in packaging scripts.
It’s also been added to the NEWS that legacy iptables support via libiptc will be removed in systemd 259. Only the nftables back-end will be supported by systemd-networkd and systemd-nspawn starting in the v259 release.
Downloads and more details on systemd 258-rc2 via GitHub.
