systemd

Description:System and service manager for Linux
License: GPL-2, LGPL-2.1, MIT
Homepage:https://www.freedesktop.org/wiki/Software/systemd
Location:Portage
Legend:
  • + - stable
  • ~ - unstable
  • M - hardmask
alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86
9999 diff - - - - - - - - - - - - -
243-r2 diff + + + ~ ~ - ~ + + - - ~ +
243 diff ~ ~ ~ ~ ~ - ~ ~ ~ - - ~ ~
242-r7 diff + + + ~ + - ~ + ~ - - + +
242-r6 + + + ~ + - ~ + + - - + +

USE flags

  • abi_mips_n32 - 64-bit (32-bit pointer) libraries
  • abi_mips_n64 - 64-bit libraries
  • abi_mips_o32 - 32-bit libraries
  • abi_ppc_32 - 32-bit (ppc) libraries
  • abi_ppc_64 - 64-bit (ppc64) libraries
  • abi_riscv_lp64 - 64-bit (rv64) soft-float libraries
  • abi_riscv_lp64d - 64-bit (rv64) double hard-float libraries
  • abi_s390_32 - 32-bit (s390) libraries
  • abi_s390_64 - 64-bit (s390x) libraries
  • abi_x86_32 - 32-bit (x86) libraries
  • abi_x86_64 - 64-bit (amd64) libraries
  • abi_x86_x32 - x32 ABI libraries
  • acl - Add support for Access Control Lists
  • apparmor - Enable AppArmor support
  • audit - Enable support for sys-process/audit
  • bash-completion - Enable bash-completion support
  • build - !!internal use only!! DO NOT SET THIS FLAG YOURSELF!, used for creating build images and the first half of bootstrapping [make stage1]
  • cgroup-hybrid - Default to hybrid (legacy) cgroup hierarchy instead of unified (modern).
  • cryptsetup - Enable cryptsetup tools (includes unit generator for crypttab)
  • curl - Enable support for uploading journals
  • dns-over-tls - Enable DNS-over-TLS support
  • elfutils - Enable coredump stacktraces in the journal
  • filecaps - Use Linux file capabilities to control privilege rather than set*id (this is orthogonal to USE=caps which uses capabilities at runtime e.g. libcap)
  • gcrypt - Enable sealing of journal files using gcrypt
  • gnuefi - Enable EFI boot manager and stub loader (built using sys-boot/gnu-efi)
  • gnutls - Prefer net-libs/gnutls as SSL/TLS provider (ineffective with USE=-ssl)
  • gtk - Add support for x11-libs/gtk+ (The GIMP Toolkit)
  • http - Enable embedded HTTP server in journald
  • idn - Enable support for Internationalized Domain Names
  • importd - Enable import daemon
  • introspection - Add support for GObject based introspection
  • kernel_linux - KERNEL setting for system using the Linux kernel
  • kmod - Enable kernel module loading via sys-apps/kmod
  • libidn2 - If IDN support is enabled, use net-dns/libidn2 instead of net-dns/libidn
  • lz4 - Enable lz4 compression for the journal
  • lzma - Support for LZMA (de)compression algorithm
  • nat - Enable support for network address translation in networkd
  • pam - Add support for PAM (Pluggable Authentication Modules) - DANGEROUS to arbitrarily flip
  • pcre - Add support for Perl Compatible Regular Expressions
  • policykit - Enable PolicyKit authentication support
  • python - Add optional support/bindings for the Python language
  • python_single_target_python2_7 - Build for Python 2.7 only
  • python_single_target_python3_2 - Build for Python 3.2 only (deprecated)
  • python_single_target_python3_3 - Build for Python 3.3 only
  • python_single_target_python3_4 - Build for Python 3.4 only
  • python_targets_python2_7 - Build with Python 2.7
  • python_targets_python3_2 - Build with Python 3.2 (deprecated)
  • python_targets_python3_3 - Build with Python 3.3
  • python_targets_python3_4 - Build with Python 3.4
  • qrcode - Enable qrcode output support in journal
  • resolvconf - Install resolvconf symlink for systemd-resolve
  • seccomp - Enable seccomp (secure computing mode) to perform system call filtering at runtime to increase security of programs
  • selinux - !!internal use only!! Security Enhanced Linux support, this must be set by the selinux profile or breakage will occur
  • split-usr - Enable behavior to support maintaining /bin, /lib*, /sbin and /usr/sbin separately from /usr/bin and /usr/lib*
  • ssl - Add support for SSL/TLS connections (Secure Socket Layer / Transport Layer Security)
  • static-libs - Build static versions of dynamic libraries as well
  • sysv-utils - Install sysvinit compatibility symlinks and manpages for init, telinit, halt, poweroff, reboot, runlevel, and shutdown
  • tcpd - Add support for TCP wrappers
  • test - Enable dependencies and/or preparations necessary to run tests (usually controlled by FEATURES=test but can be toggled independently)
  • vanilla - Disable Gentoo-specific behavior and compatibility quirks
  • xattr - Add support for extended attributes (filesystem-stored metadata)
  • xkb - Depend on x11-libs/libxkbcommon to allow logind to control the X11 keymap

Security Advisory

Date Severity Title
8 months normal systemd: Multiple vulnerabilities
about 1 year high systemd: Multiple vulnerabilities
almost 3 years normal systemd: Multiple vulnerabilities
over 5 years high polkit, Spice-Gtk, systemd, HPLIP, libvirt: Privilege escalation

Also available in: Atom

Thank you!