Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
en:philosophy:systemd_denial [2022/11/03 14:02] throgh |
en:philosophy:systemd_denial [2022/11/18 12:37] (current) throgh [Points for criticism in detail] |
||
---|---|---|---|
Line 3: | Line 3: | ||
We are surely aware about the criticism towards systemd as project. But this article should not only be focussed onto that and be therefore more oriented towards our reasoning for a system beyond using only bloated packages and frameworks. So we could now list for sure many reasons why we stay critical towards the adaption for systemd as basic init-framework, | We are surely aware about the criticism towards systemd as project. But this article should not only be focussed onto that and be therefore more oriented towards our reasoning for a system beyond using only bloated packages and frameworks. So we could now list for sure many reasons why we stay critical towards the adaption for systemd as basic init-framework, | ||
- | ====== Systemd denial ====== | + | ===== Introduction |
- | Obarun compromises neither principles nor finctionality! | + | systemd was initially first started back in 2010 as a project to replace the conventional System V init. It was then developed further to be now a " |
- | I feel like I have found a real hidden gem with Obarun. | + | As Hyperbola is created as pure lightweight system the orientation of systemd is not following the [[: |
- | I'm not a huge fan of SystemD, not because it's slow or anything, mostly ideological reasons. Plus I find Distributions that choose no to use it make other choices I like, such as being more minimalistic. | + | With the essential design-decision being just more than only init and management systemd has also included more attack surfaces and further security-issues. To be mentioned there are dereferencing null pointers ([[https:// |
- | I went to through great efforts trying to remove SystemD completely from Gentoo (as you may be aware, it uses elogind | + | ===== Back and forth: The role of init-systems ===== |
- | So down the rabbit hole, finding out most supposedly systemd free distros use great quantities | + | There are different approaches followed by the different systems and distributions. Nevertheless the key-role |
- | I find a lot of Distros that go the extra mile, but seems very difficult may be accused | + | Again the size and the understanding |
- | I stumble upon Obarun. The Arch base is comforting since I know Arch well, and s6 is intriguing. No SystemD nonsense whatsoever! I try it instantly! Some growing pains, s6 is pretty tricky compared to others. | + | ===== Points for criticism in detail ===== |
+ | We will never address criticism making usage of personal attacks as we conclude neither being unfair nor using false argumentation methods. Besides there are many points to be found making it further a problem to use systemd for any system with lightweight focus. | ||
- | 22nd June 2018: Renaming Network Interfaces.</ | + | === Breaking promises === |
- | <div class=" | + | |
- | <p> | + | |
- | As announced in the systemd mailing list, <a href=" | + | |
- | will name network interfaces differently than in previous versions</ | + | |
- | < | + | |
- | < | + | |
- | over to this system that it is not yet ready for production use. The definitions of blacklist/ | + | |
- | notes that "swap files should work for hibernation now." - because it's absolutely fine to " | + | |
- | hibernation actually, well, working | + | |
- | https:// | + | “After udev is merged into the systemd |
- | </ | + | http://article.gmane.org/gmane.linux.hotplug.devel/17392 |
- | </ | + | |
+ | ”…this will effectively also mean that we will not support non-systemd systems with udev anymore starting at that point. ' | ||
+ | http:// | ||
+ | “kdbus support is no longer compile-time optional … We encourage all downstream distributions to begin testing kdbus by adding it to the kernel images in the development distributions, | ||
+ | http:// | ||
- | <div class=" | + | === Stability failed |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
+ | " | ||
+ | http:// | ||
- | >DNS</h3><div class=" | + | <note>This stability promise was broken as one of their [[http://www.freedesktop.org/wiki/Software/systemd/ |
- | < | + | |
- | < | + | |
- | < | + | |
+ | === Scope of the project === | ||
- | https://ewontfix.com/14/ | + | [[http://article.gmane.org/gmane.linux.hotplug.devel/17392|systemd includes udev]] |
- | https:// | + | |
- | https:// | + | |
+ | [[http:// | ||
- | < | + | [[http://www.phoronix.com/scan.php?page=news_item& |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | </ | + | |
- | < | + | [[http://www.phoronix.com/scan.php?page=news_item& |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | < | + | |
- | </ | + | |
- | < | + | [[http:// |
- | < | + | |
- | <ul | + | [[http:// |
- | https://without-systemd.org/wiki/index_php/Arguments_against_systemd/: | + | [[https://github.com/tmux/tmux/issues/428|developer asks tmux to add systemd specific code]] |
+ | [[https:// | ||
- | __TOC__ | + | [[http:// |
- | == Links == | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [[Local copy of boycottsystemd.org archive]] | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | [[File: | + | |
- | == Breaking promises and immaturity == | + | |
- | [http:// | + | |
- | [http:// | + | |
- | Linux (kernel) coup attempt: [http:// | + | |
- | [https:// | + | |
- | [https:// | + | |
- | [https:// | + | |
- | === Stability Promises === | + | |
- | To quote from the systemd [http:// | + | |
- | : " | + | |
- | One of their [http:// | + | |
- | : "Entry metadata that is not actually a field is serialized like it was a field, but beginning with two underscores. " | + | |
- | This is not true for version 44 of systemd for example. | + | |
- | == Scope creep == | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * An init system that requires even on a server a library for rendering QR codes: Post in [https:// | + | |
- | * [http:// | + | |
- | [[File: | + | |
- | == Absurd Bugs and Responses == | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | == Conceptional problems == | + | |
- | * [http:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | Debunking the myth of unit files being significantly shorter than scripts used by all other init systems: [https:// | + | |
- | == Scope Creep Leads to Vulnerabilities == | + | |
- | * [http:// | + | |
- | * To run systemd properly in container a FUSE [https:// | + | |
- | ** [https:// | + | |
- | ** [https:// | + | |
- | * [https:// | + | |
- | == Poor design == | + | |
- | * [https:// | + | |
- | * [http:// | + | |
- | * [https:// | + | |
- | * http:// | + | |
- | * https:// | + | |
- | * https:// | + | |
- | * https:// | + | |
- | * https:// | + | |
- | == Ignorance of fundamental operating system concepts == | + | |
- | * [http:// | + | |
- | * [https:// | + | |
+ | === Problematic bugs and responses === | ||
+ | [[https:// | ||
- | maybe use already installed sync plugin to pull resources from devuan wiki | + | [[http:// |
- | As systemd doesn' | + | [[http:// |
- | To ease the transition, systemd support will remain in the stable repositories | + | [[https:// |
- | Further details: | + | [[https:// |
- | Unchecked null pointer dereferencing in PID 1 not considered a serious issue (https:// | + | [[https:// |
- | Mount efivarfs read-only (https:// | + | |
- | | + | [[https:// |
- | | + | |
- | | + | [[https:// |
- | | + | |
- | | + | [[https:// |
- | | + | |
- | | + | [[https://www.agwa.name/ |
- | | + | |
- | | + | [[http:// |
- | | + | |
- | systemd-resolved DNS cache poisoning (https://seclists.org/oss-sec/ | + | [[https:// |
+ | |||
+ | [[https://github.com/systemd/systemd/issues/6237|systemd can't handle the process | ||
+ | |||
+ | [[https:// | ||
+ | |||
+ | === Conceptional problems === | ||
+ | |||
+ | [[http:// | ||
+ | |||
+ | [[http:// | ||
+ | |||
+ | [[https:// | ||
+ | |||
+ | [[https:// | ||
+ | |||
+ | [[https:// | ||
+ | |||
+ | [[https:// | ||
+ | |||
+ | ===== Conclusion for the Hyperbola-project ===== | ||
+ | |||
+ | With the retrospective of all the points listed here Hyperbola has the stance not to accept | ||
+ | |||
+ | So systemd has to persist the comparison towards other possible init-systems and in that way is for sure too big, too complex and full with flaws we don't want to accept as we would therefore need to be worried even on top of continuous upgrades for just one essential part. And even though every single point can be declared as solved or in some way older, we just don't want to use systemd as single-point for a failure as it just this simple. |