Systemd Concepts: Difference between revisions
No edit summary |
|||
(144 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
=External= | |||
* man systemd.service | |||
=Internal= | =Internal= | ||
* [[systemd#Concepts|systemd]] | * [[systemd#Concepts|systemd]] | ||
= | =Overview= | ||
<code>systemd</code> is a init system, a system and user space service manager for the Linux operating system. The purpose of an init system is to manage - initialize, start, stop - components in the user space, which are the programs that run after the kernel has booted. Some of those components are services and daemons that provide services. | |||
< | <code>systemd</code> runs as the first process at boot, with PID 1, and acts as the init system that brings up and maintains the user-space services. | ||
Unlike [[System V#init|System V init]], which starts services one at a time, moving to the next service after running dependency checks and waiting on the daemon to start, <code>systemd</code> can start services in parallel. It takes advantage of the daemon to daemon relationship in that dependent daemons do not actually need to be running, they only need the correct domain sockets to be available. <code>systemd</code> creates all sockets first, all the daemons second and any client requests to daemons not yet running are cached in the socket buffer and filled when the daemons come online. | |||
<code>systemd</code> interprets its main configuration configuration file <code>/etc/systemd/system.conf</code> and the files in <code>system.conf.d</code> directories. | |||
=Differences between System V and systemd= | |||
{{Internal|Differences between System V and systemd|Differences between System V and systemd }} | |||
=<tt>systemctl</tt>= | =<tt>systemctl</tt>= | ||
<tt>systemctl</tt> is the | <code>systemctl</code> is the central management tool for systemd. More operational details: | ||
{{Internal|systemctl|<tt>systemctl</tt>}} | |||
=<span id='Units_and_Unit_Files'></span><span id='Unit'></span>Units= | |||
The resources managed by <code>systemd</code> are known as units. <code>systemd</code> provides a dependency system between units. | |||
Units represent different types of resources. The units are defined in configuration files known as [[#Unit_File|unit files]]. The unit type is given by the suffix of the corresponding unit file. There are 12 types of resources: | |||
* <code>.service</code>: A service unit describes how to manage a service or an application. This including starting and stopping the service, under which circumstance it should be automatically started and its dependencies. For more details, see the [[#Services|Services]] section, below. | |||
* <code>.socket</code>: A socket unit describes a network or IPC socket, or a FIFO buffer systemd uses for socket-based activation. | |||
* <code>.device</code>: A device unit describes a device that needs systemd management. | |||
* <code>.mount</code>: A mount unit defines a systemd-managed mountpoint. | |||
* <code>.automount</code>: Units that configure a mountpoint to be automatically mounted. | |||
* <code>.swap</code>: Units that describe the swap space on the system. | |||
* <code>.target</code>: A unit that provides a synchronization point for other units when booting up or changing state. For more details, see [[#Target|Targets]] section below. | |||
* <code>.path</code>: Units defining paths that can be used for path-based activation. | |||
* <code>.timer</code>: A timer unit defines a timer managed by systemd, similar to a cron job for delayed or scheduled activation. For more details see [[#Timers|Timers]] section below. | |||
* <code>.snapshot</code> | |||
* <code>.slice</code> | |||
* <code>.scope</code> | |||
<span id='Loaded_Unit'></span>A unit is in a "loaded" state if the unit's configuration has been parsed by <code>systemd</code>. The configuration of loaded units is kept in memory. | |||
==Query Known Units== | |||
To list all units known to systemd, use: | |||
<syntaxhighlight lang='bash'> | |||
systemctl list-units | |||
</syntaxhighlight> | |||
The command will list the units and their state. | |||
To query units matching a certain pattern, use: | |||
<syntaxhighlight lang='bash'> | |||
systemctl list-units PATTERN | |||
</syntaxhighlight> | |||
=<span id='Unit_File'></span>Unit Files= | |||
Unit files are configuration files for [[#Unit|units]]. They are not executable scripts. The type of each unit can be inferred from the suffix at the end of the file, as described in the [[#Unit|Units]] section. | |||
==Unit File Location== | |||
The package maintainer unit files reside in <code>/usr/lib/systemd/system</code> (or <code>/lib/systemd/system</code>, as <code>/lib</code> is a symbolic link to <code>/usr/lib</code>). | |||
The user-created unit files conventionally reside in <code>/etc/systemd/system</code>. | |||
If a user wants to modify one of the default unit files, they should copy them in <code>/etc/systemd/system</code>, because systemd will give priority to <code>/etc</code>. | |||
= | For more details see | ||
<font size=-2> | |||
man systemd-user.conf | |||
</font> | |||
==Unit File Structure== | |||
A typical unit file is similar to: | |||
< | <syntaxhighlight lang='bash'> | ||
[Unit] | |||
Description=My Service | |||
After=network.target | |||
[Service] | |||
Type=forking | |||
ExecStart=/usr/local/bin/myserviced | |||
PIDFile=/var/run/myservice.pid | |||
[Install] | |||
WantedBy=multi-user.target | |||
</syntaxhighlight> | |||
< | ===<tt>[Unit]</tt> Section=== | ||
</ | |||
The | The <code>[Unit]</code> section contains a description of the service and its dependency declarations. | ||
In the example above, we declare that systemd must not attempt to start the service until the network is not running on the host. For more details on dependencies, see the [[#Dependencies|Dependencies]] section, below. For more practical details on how to declare dependencies, see [[systemd Declaring a Service Dependency]]. | |||
===<tt>[Service]</tt> Section=== | |||
<code>Type</code> can be set to one of <code>simple</code>, <code>[[#forking|forking]]</code>, <code>[[#oneshot|oneshot]]</code>, <code>dbus</code>, <code>notify</code> or <code>idle</code>. | |||
====<span id='forking'></span><tt>Type=forking</tt>==== | |||
< | <code>ExecStart</code> represents the path to the binary to execute when the service is started. The binary is expected to fork. | ||
The | If set to "forking", it is expected that the process configured with <code>ExecStart</code> will call <tt>fork()</tt> as part of its start-up. The parent process is expected to exit when start-up is complete and all communication channels are set up. The child continues to run as the main daemon process. This is the behavior of traditional UNIX daemons. If this setting is used, it is recommended to also use the <code>PIDFile</code> option, so that <code>systemd</code> can identify the main process of the daemon. <code>systemd</code> will proceed with starting follow-up units as soon as the parent process exits. | ||
< | <code>PIDFile</code> takes an absolute file name pointing to the PID file of the service's daemon. <code>PIDFile</code> is recommended for services where <code>Type</code> is set to forking. <code>systemd</code> will read the PID of the main process of the daemon after start-up of the service. <code>systemd</code> '''will not write''' to the file configured here, although it will remove the file after the service has shut down if it still exists. <code>systemd</code> uses this file to identify the main process of the daemon, but the file will need to be written by other means. | ||
</ | |||
====<span id='oneshot'></span><tt>Type=oneshot</tt>==== | |||
If the <code>Type</code> is set to <code>oneshot</code>, it is expected that the process configured with <code>ExecStart</code> is the main process of the service and will exit before <tt>systemd</tt> starts follow-up units. However, if <code>RemainAfterExit</code> is configured with <code>true</code>, <code>systemd</code> will consider the service active even after the <code>ExecStart</code> process had exited. You may want to specify the pair <code>ExecStop</code> wrapper so <code>systemd</code> knows how to cleanly shut down the process. This is a typical pattern for a Java server started by a wrapper script. | |||
Typical <code>oneshot</code> <code>[Service]</code> section: | |||
< | <syntaxhighlight lang='bash'> | ||
... | |||
</ | [Service] | ||
Type=oneshot | |||
ExecStart=/usr/lib/systemd/scripts/activemq start | |||
ExecStop=/usr/lib/systemd/scripts/activemq stop | |||
RemainAfterExit=true | |||
... | |||
</syntaxhighlight> | |||
== | ====<span id='Environment.3D'></span><tt>Environment</tt>==== | ||
Environment variables can be declared with <code>Environment="variable_name=variable_value"</code> as follows: | |||
<syntaxhighlight lang='bash'> | |||
[Service] | |||
... | |||
Environment="JAVA_HOME=/opt/java" | |||
</syntaxhighlight> | |||
Also see: {{Internal|Setting Environment Variables for a systemd Service|Setting Environment Variables for a systemd Service}} | |||
== | ===<tt>[Install]</tt> Section=== | ||
<code>WantedBy=multi-user.target</code> means that the service should be started while in multi-user mode (equivalent with [[System_V#Level_3|System V runlevel 3]]). | |||
==Create a Custom Unit File for a Service== | |||
{{Internal|Custom_systemd_Unit_and_Unit_File#Overview|Custom systemd Unit and Unit File}} | |||
=<span id='Service'></span>Services= | |||
< | For service management tasks. use service units. The associated files have a <code>.service</code> extension. | ||
</ | |||
==Start (Enable) a Service Automatically at Boot== | ==Start (Enable) a Service Automatically at Boot== | ||
Line 91: | Line 146: | ||
To configure a service to start automatically at boot it must be enabled: | To configure a service to start automatically at boot it must be enabled: | ||
< | <syntaxhighlight lang='bash'> | ||
systemctl enable <application>.service | systemctl enable <application>.service | ||
</ | </syntaxhighlight> | ||
This command creates a symbolic link from the service unit file, which is usually maintained in < | This command creates a symbolic link from the service unit file, which, if it is a standard system service, it usually maintained in <code>/usr/lib/systemd/system</code>, into a location on disk where systemd looks for autostart files. This location usually is a <code>/etc/systemd/system/<some-target>.target.wants</code> directory. See [[#Target|Target]] for more details. | ||
Example: | Example: | ||
< | <syntaxhighlight lang='bash'> | ||
systemctl enable docker | |||
ln -s '/usr/lib/systemd/system/docker.service' '/etc/systemd/system/multi-user.target.wants/docker.service' | # ln -s '/usr/lib/systemd/system/docker.service' '/etc/systemd/system/multi-user.target.wants/docker.service' | ||
</ | </syntaxhighlight> | ||
Also see: {{Internal|Systemctl#enable|<tt>systemctl enable</tt>}} | |||
==Starting a Service== | |||
Starting a service means using <code>systemctl</code> to execute instructions in the service's unit file. It must be executed as root: | |||
<syntaxhighlight lang='bash'> | |||
systemctl start <application>.service | |||
</syntaxhighlight> | |||
The short form also works: | |||
<syntaxhighlight lang='bash'> | |||
systemctl start <application> | |||
</syntaxhighlight> | |||
See also: {{Internal|Systemctl#start|<tt>systemctl start</tt>}} | |||
==Reload Configuration without a Restart== | |||
If the service supports reloading configuration without actually restarting the service, use: | |||
<syntaxhighlight lang='bash'> | |||
systemctl reload <application>.service | |||
</syntaxhighlight> | |||
==Restart a Service== | |||
<syntaxhighlight lang='bash'> | |||
systemctl restart <application>.service | |||
</syntaxhighlight> | |||
==Reload or Restart a Service== | |||
If you are unsure whether the service has the configuration reload functionality, use the <code>reload-or-restart</code> command: | |||
<syntaxhighlight lang='bash'> | |||
systemctl reload-or-restart <application>.service | |||
</syntaxhighlight> | |||
==Stop (Disable) a Service== | ==Stop (Disable) a Service== | ||
< | <syntaxhighlight lang='bash'> | ||
systemctl disable <application>.service | systemctl disable <application>.service | ||
</ | </syntaxhighlight> | ||
==Status of a Service== | ==Status of a Service== | ||
Line 116: | Line 207: | ||
To check the status of a service run: | To check the status of a service run: | ||
< | <syntaxhighlight lang='bash'> | ||
systemctl status <application>.service | systemctl status <application>.service | ||
</ | </syntaxhighlight> | ||
===Active=== | ===Active=== | ||
Line 124: | Line 215: | ||
A service can be active (running) or not active. To check whether a service is active (running), execute: | A service can be active (running) or not active. To check whether a service is active (running), execute: | ||
< | <syntaxhighlight lang='bash'> | ||
systemctl is-active <application>.service | systemctl is-active <application>.service | ||
</ | </syntaxhighlight> | ||
This will return the current unit state as a string ("active" or "inactive"). The exit code will be "0" if it is active. | This will return the current unit state as a string ("active" or "inactive"). The exit code will be "0" if it is active. | ||
Line 134: | Line 225: | ||
A service can be configured to start at boot (enabled) or not enabled. To check whether a service is enabled, execute: | A service can be configured to start at boot (enabled) or not enabled. To check whether a service is enabled, execute: | ||
< | <syntaxhighlight lang='bash'> | ||
systemctl is-enabled <application>.service | systemctl is-enabled <application>.service | ||
</ | </syntaxhighlight> | ||
This will return the current unit enabled state as a string ("enabled" or "disabled"). The exit code will be "0" if it is enabled. | This will return the current unit enabled state as a string ("enabled" or "disabled"). The exit code will be "0" if it is enabled. | ||
Line 144: | Line 235: | ||
systemctl can be used to check to see whether the service is in a failed state: | systemctl can be used to check to see whether the service is in a failed state: | ||
< | <syntaxhighlight lang='bash'> | ||
systemctl is-failed <application>.service | systemctl is-failed <application>.service | ||
</ | </syntaxhighlight> | ||
This will return "active" if it is running properly or "failed" if an error occurred. If the unit was intentionally stopped, it may return "unknown" or "inactive". An exit status of "0" indicates that a failure occurred and an exit status of "1" indicates any other status. | This will return "active" if it is running properly or "failed" if an error occurred. If the unit was intentionally stopped, it may return "unknown" or "inactive". An exit status of "0" indicates that a failure occurred and an exit status of "1" indicates any other status. | ||
==Create a Custom Unit File for a Service== | |||
{{Internal|Custom_systemd_Unit_and_Unit_File#Overview|Custom systemd Unit and Unit File}} | |||
=Dependencies= | |||
The dependencies are declared in the <code>[[#.5BUnit.5D_Section|[Unit]]]</code> section of the unit file. | |||
See {{Internal|Systemd Declaring a Service Dependency|Declaring a Service Dependency}} | |||
==<tt>After</tt>== | |||
==<tt>Before</tt>== | |||
==<tt>Wants</tt>== | |||
==<tt>Requires</tt>== | |||
=<span id='Target'></span>Targets= | |||
A <code>.target</code> is the configuration file for a [[#Unit|unit]] that provides a synchronization point for other units when booting up or changing state. Target units are used for grouping units and as well-known synchronization points during start-up. | |||
= | =systemd and network status= | ||
{{Internal|Linux systemd and Network Status|Linux systemd and Network Status}} | |||
=Daemon Reload= | |||
<code>systemctl</code> has a <code>daemon-reload</code> command, which reloads all <code>systemd</code> manager configuration. This will rerun all generators, reload all unit files and recreate the entire dependency tree. While the daemon is being reloaded, all sockets systemd listens on behalf of user configuration will stay accessible. | |||
<syntaxhighlight lang='bash'> | |||
systemctl daemon-reload | |||
</syntaxhighlight> | |||
=journald= | |||
= | {{Internal|Linux Logging Concepts#journald|journald Concepts}} | ||
=Timers= | |||
<syntaxhighlight lang='bash'> | |||
systemctl list-timers | |||
</syntaxhighlight> | |||
==Timer Unit File== | |||
Timer unit files contain information about a timer controlled and supervised by systemd. By default, a service with the same name as the timer is activated. Also see [[#Service_Unit_File|service unit file]]. | |||
For an example, see: {{Internal|Let%27s_Encrypt#Enable_Automatic_Renewal_by_Hand|Let's Encrypt | Enable Automatic Renewal by Hand}} |
Latest revision as of 23:16, 19 August 2023
External
- man systemd.service
Internal
Overview
systemd
is a init system, a system and user space service manager for the Linux operating system. The purpose of an init system is to manage - initialize, start, stop - components in the user space, which are the programs that run after the kernel has booted. Some of those components are services and daemons that provide services.
systemd
runs as the first process at boot, with PID 1, and acts as the init system that brings up and maintains the user-space services.
Unlike System V init, which starts services one at a time, moving to the next service after running dependency checks and waiting on the daemon to start, systemd
can start services in parallel. It takes advantage of the daemon to daemon relationship in that dependent daemons do not actually need to be running, they only need the correct domain sockets to be available. systemd
creates all sockets first, all the daemons second and any client requests to daemons not yet running are cached in the socket buffer and filled when the daemons come online.
systemd
interprets its main configuration configuration file /etc/systemd/system.conf
and the files in system.conf.d
directories.
Differences between System V and systemd
systemctl
systemctl
is the central management tool for systemd. More operational details:
Units
The resources managed by systemd
are known as units. systemd
provides a dependency system between units.
Units represent different types of resources. The units are defined in configuration files known as unit files. The unit type is given by the suffix of the corresponding unit file. There are 12 types of resources:
.service
: A service unit describes how to manage a service or an application. This including starting and stopping the service, under which circumstance it should be automatically started and its dependencies. For more details, see the Services section, below..socket
: A socket unit describes a network or IPC socket, or a FIFO buffer systemd uses for socket-based activation..device
: A device unit describes a device that needs systemd management..mount
: A mount unit defines a systemd-managed mountpoint..automount
: Units that configure a mountpoint to be automatically mounted..swap
: Units that describe the swap space on the system..target
: A unit that provides a synchronization point for other units when booting up or changing state. For more details, see Targets section below..path
: Units defining paths that can be used for path-based activation..timer
: A timer unit defines a timer managed by systemd, similar to a cron job for delayed or scheduled activation. For more details see Timers section below..snapshot
.slice
.scope
A unit is in a "loaded" state if the unit's configuration has been parsed by systemd
. The configuration of loaded units is kept in memory.
Query Known Units
To list all units known to systemd, use:
systemctl list-units
The command will list the units and their state.
To query units matching a certain pattern, use:
systemctl list-units PATTERN
Unit Files
Unit files are configuration files for units. They are not executable scripts. The type of each unit can be inferred from the suffix at the end of the file, as described in the Units section.
Unit File Location
The package maintainer unit files reside in /usr/lib/systemd/system
(or /lib/systemd/system
, as /lib
is a symbolic link to /usr/lib
).
The user-created unit files conventionally reside in /etc/systemd/system
.
If a user wants to modify one of the default unit files, they should copy them in /etc/systemd/system
, because systemd will give priority to /etc
.
For more details see
man systemd-user.conf
Unit File Structure
A typical unit file is similar to:
[Unit]
Description=My Service
After=network.target
[Service]
Type=forking
ExecStart=/usr/local/bin/myserviced
PIDFile=/var/run/myservice.pid
[Install]
WantedBy=multi-user.target
[Unit] Section
The [Unit]
section contains a description of the service and its dependency declarations.
In the example above, we declare that systemd must not attempt to start the service until the network is not running on the host. For more details on dependencies, see the Dependencies section, below. For more practical details on how to declare dependencies, see systemd Declaring a Service Dependency.
[Service] Section
Type
can be set to one of simple
, forking
, oneshot
, dbus
, notify
or idle
.
Type=forking
ExecStart
represents the path to the binary to execute when the service is started. The binary is expected to fork.
If set to "forking", it is expected that the process configured with ExecStart
will call fork() as part of its start-up. The parent process is expected to exit when start-up is complete and all communication channels are set up. The child continues to run as the main daemon process. This is the behavior of traditional UNIX daemons. If this setting is used, it is recommended to also use the PIDFile
option, so that systemd
can identify the main process of the daemon. systemd
will proceed with starting follow-up units as soon as the parent process exits.
PIDFile
takes an absolute file name pointing to the PID file of the service's daemon. PIDFile
is recommended for services where Type
is set to forking. systemd
will read the PID of the main process of the daemon after start-up of the service. systemd
will not write to the file configured here, although it will remove the file after the service has shut down if it still exists. systemd
uses this file to identify the main process of the daemon, but the file will need to be written by other means.
Type=oneshot
If the Type
is set to oneshot
, it is expected that the process configured with ExecStart
is the main process of the service and will exit before systemd starts follow-up units. However, if RemainAfterExit
is configured with true
, systemd
will consider the service active even after the ExecStart
process had exited. You may want to specify the pair ExecStop
wrapper so systemd
knows how to cleanly shut down the process. This is a typical pattern for a Java server started by a wrapper script.
Typical oneshot
[Service]
section:
...
[Service]
Type=oneshot
ExecStart=/usr/lib/systemd/scripts/activemq start
ExecStop=/usr/lib/systemd/scripts/activemq stop
RemainAfterExit=true
...
Environment
Environment variables can be declared with Environment="variable_name=variable_value"
as follows:
[Service]
...
Environment="JAVA_HOME=/opt/java"
Also see:
[Install] Section
WantedBy=multi-user.target
means that the service should be started while in multi-user mode (equivalent with System V runlevel 3).
Create a Custom Unit File for a Service
Services
For service management tasks. use service units. The associated files have a .service
extension.
Start (Enable) a Service Automatically at Boot
To configure a service to start automatically at boot it must be enabled:
systemctl enable <application>.service
This command creates a symbolic link from the service unit file, which, if it is a standard system service, it usually maintained in /usr/lib/systemd/system
, into a location on disk where systemd looks for autostart files. This location usually is a /etc/systemd/system/<some-target>.target.wants
directory. See Target for more details.
Example:
systemctl enable docker
# ln -s '/usr/lib/systemd/system/docker.service' '/etc/systemd/system/multi-user.target.wants/docker.service'
Also see:
Starting a Service
Starting a service means using systemctl
to execute instructions in the service's unit file. It must be executed as root:
systemctl start <application>.service
The short form also works:
systemctl start <application>
See also:
Reload Configuration without a Restart
If the service supports reloading configuration without actually restarting the service, use:
systemctl reload <application>.service
Restart a Service
systemctl restart <application>.service
Reload or Restart a Service
If you are unsure whether the service has the configuration reload functionality, use the reload-or-restart
command:
systemctl reload-or-restart <application>.service
Stop (Disable) a Service
systemctl disable <application>.service
Status of a Service
Status Report
To check the status of a service run:
systemctl status <application>.service
Active
A service can be active (running) or not active. To check whether a service is active (running), execute:
systemctl is-active <application>.service
This will return the current unit state as a string ("active" or "inactive"). The exit code will be "0" if it is active.
Enabled
A service can be configured to start at boot (enabled) or not enabled. To check whether a service is enabled, execute:
systemctl is-enabled <application>.service
This will return the current unit enabled state as a string ("enabled" or "disabled"). The exit code will be "0" if it is enabled.
Failed
systemctl can be used to check to see whether the service is in a failed state:
systemctl is-failed <application>.service
This will return "active" if it is running properly or "failed" if an error occurred. If the unit was intentionally stopped, it may return "unknown" or "inactive". An exit status of "0" indicates that a failure occurred and an exit status of "1" indicates any other status.
Create a Custom Unit File for a Service
Dependencies
The dependencies are declared in the [Unit]
section of the unit file.
See
After
Before
Wants
Requires
Targets
A .target
is the configuration file for a unit that provides a synchronization point for other units when booting up or changing state. Target units are used for grouping units and as well-known synchronization points during start-up.
systemd and network status
Daemon Reload
systemctl
has a daemon-reload
command, which reloads all systemd
manager configuration. This will rerun all generators, reload all unit files and recreate the entire dependency tree. While the daemon is being reloaded, all sockets systemd listens on behalf of user configuration will stay accessible.
systemctl daemon-reload
journald
Timers
systemctl list-timers
Timer Unit File
Timer unit files contain information about a timer controlled and supervised by systemd. By default, a service with the same name as the timer is activated. Also see service unit file.
For an example, see: