awesome-repositories.com
Blog
awesome-repositories.com

Découvrez les meilleurs dépôts open-source grâce à notre recherche par IA.

ExplorerRecherches sélectionnéesAlternatives open sourceLogiciels auto-hébergésBlogPlan du site
ProjetÀ proposNotre méthodologiePresseServeur MCP
Mentions légalesConfidentialitéConditions d'utilisation
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
systemd avatar

systemd/systemd

0
View on GitHub↗
15,324 stars·4,244 forks·C·gpl-2.0·10 vuessystemd.io↗

Systemd

systemd is a comprehensive system and service manager for Linux that orchestrates the entire operating system lifecycle. It functions as the primary init system, managing the transition from firmware to a fully initialized user space while providing a unified framework for service orchestration, hardware management, and resource control.

The project distinguishes itself through its declarative, unit-based configuration model and dynamic dependency resolution, which allow for efficient, on-demand service activation and socket-based process management. It integrates deep system observability through a centralized, structured journal and provides robust security primitives, including hardware-backed measured boot, credential injection, and namespace-isolated container runtimes.

Beyond core initialization, the project covers a broad capability surface including network configuration, DNS resolution, and user identity management. It also provides extensive infrastructure for virtualization, managing container lifecycles, image layering, and secure credential provisioning across host and guest environments.

The software is implemented in C and provides stable programmatic interfaces to ensure long-term compatibility for system integrations and administrative tools.

Features

  • Init Systems - Initializes the user space and manages the lifecycle of services and processes after kernel boot.
  • System Service Managers - Orchestrates system initialization and manages the lifecycle, dependencies, and resource allocation of background processes.
  • Socket-Activated Orchestration - Passes listening file descriptors to background processes to defer service startup until the first incoming network request.
  • Firmware and Boot Management - Detects hardware devices, manages power events, and coordinates firmware-level interactions like UEFI boot and TPM2 security.
  • Boot & Startup Management - Automates the transition from firmware to a fully initialized operating system, including kernel loading and early environment setup.
  • TPM-Backed Measured Boot - Records cryptographic hashes of boot components into hardware registers to verify system integrity and protect sensitive secrets.
  • Control-Group-Based Resource Management - Provides hierarchical process organization and resource limiting through kernel-level control groups to manage system service lifecycles.
  • Identity Providers - Provides a local service that manages user accounts, group memberships, and portable home directories using standardized record formats.
  • Declarative Configuration Systems - Defines system state and service dependencies using a declarative, unit-based configuration model for efficient initialization.
  • System Logging - systemd collects and stores structured system and application logs for diagnostic analysis and forwarding.
  • Dependency Resolvers - Calculates the optimal startup order of system services by resolving complex requirements and ordering constraints at runtime.
  • Kernel Isolation Primitives - Uses kernel-level isolation primitives to create secure, resource-constrained environments for running services and virtualized applications.
  • Boot Phase Measurements - Records the progression of the system boot process into TPM2 registers to provide an auditable timeline of initialization stages.
  • Process Lifecycle Managers - Controls the execution state of host processes by spawning and managing their lifecycle within the system hierarchy.
  • Application and System Security - Enforces hardware-backed security policies, including measured boot, credential management, and encrypted storage.
  • Centralized Logging Systems - Aggregates structured binary log streams from all system components into a centralized, indexed, and queryable data store.
  • Log Aggregation - systemd aggregates output and error streams from background services into a centralized journal for troubleshooting failed tasks.
  • File System Mount Sequencing - Coordinates the timing of file system mounts to ensure required directories are available before dependent services occur.
  • Systemd Services - Parses startup sequences based on header information to ensure services initialize in the correct order.
  • Transient Unit APIs - Registers services or scopes at runtime via API calls to manage processes without pre-defined configuration files.
  • Virtualization Environments - Provides low-level primitives for process isolation, resource management, and secure communication in virtualized environments.
  • Network Configuration - Configures network interfaces, DNS routing, and hostname resolution for consistent connectivity.
  • System Resource Management - Organizes processes into hierarchical groups to manage resource allocation, security isolation, and performance limits.
  • Virtual-File-System-Based State - Exposes kernel and process information through a standardized virtual filesystem to provide a unified interface for system management.
  • Firmware Certificate Enrollers - Registers custom security certificates into firmware to ensure only authorized software executes during the boot sequence.
  • Immutable Credential Injectors - Passes sensitive data or configuration parameters to services as immutable files accessible only to the service user.
  • Entropy Pool Initializers - Populates the system entropy pool during boot using virtualized hardware, stored seed files, or boot loader-provided tokens.
  • Identity and Access Management - Manages user accounts, group memberships, and portable home directories through standardized records and authentication interfaces.
  • Home Directory Management - Automates the creation and lifecycle of user storage, including support for encrypted volumes and per-user resource limits.
  • User Identity Management - systemd handles user accounts, group memberships, and portable home directories using standardized record formats and lookup interfaces.
  • DNS Resolution Services - Translates domain names into IP addresses to support IPv4 and IPv6 protocols for consistent system-wide network connectivity.
  • System Usage Monitoring - systemd exposes real-time accounting data for memory and CPU usage per unit to track performance and consumption.
  • Service Lifecycle Management - Attaches and updates bundled service images while maintaining consistent logging metadata for integrated applications.
  • Structured Logging Frameworks - systemd transmits structured log data directly to the logging service via a dedicated socket using datagram payloads.
  • System Configuration Management - Applies system-wide parameters through declarative files to define environment variables, user accounts, and temporary file policies.
  • Unit State Monitors - Provides interfaces to list active units and identify the service associated with any running process.
  • Container Management - Lightweight environment for running OS instances under systemd.
  • Kernel - Automates the mounting of essential kernel filesystems to ensure the operating system environment is correctly initialized.
  • Virtual File Systems - Exposes kernel and userspace interfaces as virtual file systems during boot to facilitate communication between hardware and processes.
  • Background Service Managers - Configures system services to remain active indefinitely by preventing automatic termination for continuous availability.
  • Container Isolation Configuration - Initializes system containers by managing namespaces and cgroup hierarchies to ensure secure isolation and compatibility.
  • Image Integrity Verification - Verifies image authenticity by recording root hashes and signatures of activated Verity images into TPM2 registers.
  • Cgroup Subtree Delegation - Grants external managers control over specific cgroup subtrees, allowing them to manage child groups without interference.
  • Hardware Management - Detects and configures hardware components by monitoring system events and applying rules from a static database.
  • DNS Configuration - Registers DNS servers, search domains, and routing rules for specific network interfaces to ensure traffic follows the correct network path.
  • DNS Configuration Tools - Modifies network-specific DNS configurations and routing behavior through system services to ensure consistent connectivity.
  • DNS Query Routers - Directs DNS lookups for specific domains or subdomains to designated network interfaces.
  • Internal Disk Boot Configurators - Locates boot loaders and kernel images automatically on local disks or network sources to streamline system initialization.
  • Process Isolation - Executes background processes in restricted contexts without inheriting user session variables to improve stability.
  • Operating System Kernel Build Tools - Combines kernel and boot stubs into a single self-descriptive executable to simplify the transition from firmware to the operating system.
  • System Administration and Maintenance - Configures core parameters including hostnames, locales, and network time during runtime to keep the system environment consistent.
  • Storage Integrity Measurements - Records file system metadata and LUKS volume keys into TPM2 registers to ensure the integrity of mounted storage volumes.
  • Authenticated Encryption - Secures home directory contents using disk-level encryption containers that unlock upon user authentication.
  • Data Encryption - Protects credentials at rest using hardware-backed encryption, ensuring data is only accessible on the local machine.
  • Portable User Directories - Packages user data into self-contained directories that automatically discover and activate themselves when moved between systems.
  • Suspend-Aware Key Clearers - Clears cryptographic keys from memory during system suspend to prevent unauthorized access to encrypted user data.
  • System Crash Handlers - systemd captures process crash data and backtraces while applying resource limits to the processing task.
  • Log Forwarders - systemd routes centralized system log streams to external logging daemons via a dedicated socket for persistent storage.
  • Process Managers - Groups services, scopes, and slices into a hierarchical tree structure to manage system resources effectively.
  • Filesystem Mounts - Switches the operating system from an initial RAM disk to the main system image by mounting the final partition.
  • Disk Quota Enforcement - Assigns unique identifiers to executable directories to track and limit storage usage for specific system services.
  • Container Image Extensions - Combines base images with multiple extension layers at runtime using overlay filesystems.
  • Container Lifecycle Signaling - Manages container startup and shutdown signals through standardized socket protocols and signal handling.
  • UID Mapping Tools - Automatically assigns non-overlapping UID blocks to isolated containers for secure identity mapping.
  • Execution Timeouts - Terminates service operations that exceed predefined durations to prevent hanging processes during system transitions.
  • Long-term Support Policies - Provides long-term support and security updates for older software versions to ensure stability for production environments.
  • Resource Allocation - Adjusts CPU controller settings and performance budgets for individual services to manage scheduling constraints.
  • Bundled Image Deployment - Integrates self-contained application images into the host system by extracting unit files and applying security profiles.
  • Stateful Service Runtimes - Maintains file descriptors so services can recover connections during restarts without interrupting client connectivity.
  • Security Profiles - Restricts service access to host resources by applying custom security configurations during the service attachment process.
  • System Image Generators - Generates and populates disk images to facilitate the deployment of consistent operating system environments.
  • Interface Routing - Controls DNS query resolution and reverse IP lookups by assigning specific search and routing domains to network interfaces.
  • Descriptor Passing - Enables seamless service restarts by passing file descriptors to maintain established network connections.
  • Block Device Access Synchronization - Coordinates exclusive access to block devices between management tools using file locks to prevent concurrent modification conflicts.
  • Dynamic Identity Allocators - Assigns temporary identifiers to processes, allowing services to run with unique identities without permanent database entries.
  • Boot Recovery Workflows - Provides automated recovery mechanisms to revert to previous kernel versions if boot attempts fail repeatedly.
  • Boot Menu Configurators - Configures the default system initialization state to determine which services start automatically at boot.
  • Boot Loader Data Exchange - Communicates performance metrics and boot preferences between the system manager and the EFI boot loader.
  • Session Management - Coordinates screen locking and power management actions through a centralized session management interface.
  • Hardware Power Controllers - Intercepts hardware power keys and lid switches by registering locks to prevent conflicting system-level actions.
  • Runtime Credential Injection - Injects configuration data and credentials into services and containers at runtime for secure provisioning.
  • Authenticated Record Retrievers - Fetches raw binary data for specific DNS record types including authenticated records verified through security protocols.
  • EFI Partition Managers - Executes EFI images and kernels directly from the EFI partition using configurable boot loader entries.
  • User Account Management - Provides interfaces for creating, deleting, and updating local user accounts and authentication tokens with integrated privilege management.
  • Interface Stability Guarantees - Guarantees backward compatibility for shared libraries and configuration formats to ensure long-term reliability.
  • Credential-Based Service Activators - Starts or restricts services based on the presence of specific credentials passed to the system environment.
  • Network Synchronization Targets - Coordinates service startup relative to network availability using synchronization targets for verified connectivity.
  • Slice-Based Priority Management - Groups user applications into distinct slices to manage system resources and ensure graphical session stability.
  • User Group Management - Structures group identity and membership information to manage access permissions and security policies.
  • Startup Profilers - systemd profiles the system startup process to identify bottlenecks and measure the time taken by individual services.
  • Transient Unit Registration - Creates and starts service units programmatically at runtime to manage processes not defined by static configuration files.
  • Transient Unit Definitions - Creates temporary system units at runtime that inherit standard capabilities for execution and resource management.
  • Container Metadata Injection - Passes host environment details and configuration variables to containerized processes via environment variables or file system paths.
  • Shutdown Hooks - Executes a designated binary during system power-off to safely detach complex storage and finalize the shutdown process.
  • Network Home Directories - Integrates network-based storage as a user home directory by automatically mounting remote shares during login.
  • Storage Provisioning - Manages disk partitions and filesystem formatting dynamically at boot to adapt images to hardware.
  • Container Networking Tools - Configures network interfaces and address assignment for containers using virtual ethernet naming conventions.
  • Synchronization - Maintains centralized configuration files to ensure compatibility for legacy applications and prevent conflicts between network management tools.
  • Hardware Key Interceptors - Intercepts power, suspend, or hibernate key events to allow applications to manage hardware responses.
  • Hardware Architecture Support - Configures system components to recognize and interact with specific CPU architectures, including boot protocols and partition identification.
  • Cgroup Delegation Interfaces - Grants processes permission to manage their own sub-cgroups for independent resource isolation.
  • Credential Lifecycle Management - Inspects, enumerates, and encrypts system and service credentials for administrative and debugging purposes.
  • Identity Aggregators - Combines user and group information from multiple sources into a single access point for consistent retrieval.
  • Database Synchronization - Coordinates the startup order of services that provide or consume user identity records to ensure successful lookups during boot.
  • Machine Identifiers - Automatically assigns unique system identifiers to match host-provided virtual machine UUIDs.
  • Password Management - Monitors system directories for credential requests and relays user input.
  • Image Identity Resets - Clears unique identifiers and cryptographic seeds from OS images to ensure each instance generates its own credentials upon first boot.
  • Virtual - Binds secure shell login services to a virtual socket automatically when running inside a virtual machine.
  • Cryptographic Data Integrity - Enforces read-only access and validates file integrity through cryptographic signatures for sensitive user data.
  • Account Migration Utilities - Converts local system accounts into managed records that support portable home directories and centralized identity control.
  • Shutdown Blockers - Blocks power-off or reboot requests to ensure critical background tasks like file operations or updates complete without interruption.
  • Initial Boot Configurations - Detects and initializes system management components within an initial RAM disk using specialized boot command line arguments.
  • Boot Health Checkers - Ensures system readiness by validating that critical services and health checks complete successfully during boot.
  • Boot Resource Identifiers - Configures a persistent token for boot loader resources to prevent naming conflicts when multiple OS instances share hardware.
  • Service Management - Redirects legacy service management commands to the native manager to ensure consistent execution and environment cleanup.
  • Container Observability Tools - systemd exposes containerized processes to system-wide monitoring tools by registering them as managed units.
  • Shutdown Preservation - Prevents specific background processes from being terminated during system shutdown to ensure storage daemons remain active.
  • Boot Loggers - Redirects system startup logs to a serial console to capture diagnostic information when standard display methods are unavailable.
  • Memory Pressure Notifications - Notifies background services of memory constraints to proactively release caches or terminate idle workers.
  • Service Configuration - Defines temporary background services, mount points, or timers that exist only for the duration of the current session.
  • Session Managers - Coordinates graphical sessions across multiple hardware seats by monitoring availability and assigning display managers to specific hardware.
  • Log Serialization Utilities - systemd converts log entries into a structured format to facilitate data transfer or integration with external technologies.
  • Virtual Machine Management Tools - Integrates virtualized environments into the host to enable process attribution and unified management.
  • Unit Dependency Inspection - Analyzes relationships between system units to identify which services are triggered or required by a specific target.
  • Service - systemd detects the presence of a logging service to automatically switch to a native, metadata-rich structured logging protocol.

Historique des stars

Graphique de l'historique des stars pour systemd/systemdGraphique de l'historique des stars pour systemd/systemd

Recherche par IA

Explorez plus de dépôts awesome

Décrivez vos besoins en langage naturel — l'IA classe des milliers de projets open source sélectionnés par pertinence.

Start searching with AI

Questions fréquentes

Que fait systemd/systemd ?

systemd is a comprehensive system and service manager for Linux that orchestrates the entire operating system lifecycle. It functions as the primary init system, managing the transition from firmware to a fully initialized user space while providing a unified framework for service orchestration, hardware management, and resource control.

Quelles sont les fonctionnalités principales de systemd/systemd ?

Les fonctionnalités principales de systemd/systemd sont : Init Systems, System Service Managers, Socket-Activated Orchestration, Firmware and Boot Management, Boot & Startup Management, TPM-Backed Measured Boot, Control-Group-Based Resource Management, Identity Providers.

Quelles sont les alternatives open-source à systemd/systemd ?

Les alternatives open-source à systemd/systemd incluent : qax-os/excelize — Excelize is a library for reading and writing spreadsheet files in the Office Open XML format. It provides a… siderolabs/talos — Talos is a minimal, immutable Linux distribution designed specifically for deploying and managing Kubernetes clusters.… nix-rust/nix — nix is a Unix system API library and Rust system programming interface that provides type-safe bindings for invoking… rocky-linux/rocky — Rocky is an open-source enterprise operating system designed for server and cloud infrastructure. It is a… teamhanko/hanko — Hanko is an open-source identity provider and customer identity and access management system. It serves as a passkey… zlt2000/microservices-platform — This project is a comprehensive enterprise architecture for building multi-tenant distributed systems, implemented as…

Alternatives open source à Systemd

Projets open source similaires, classés selon le nombre de fonctionnalités partagées avec Systemd.
  • qax-os/excelizeAvatar de qax-os

    qax-os/excelize

    20,682Voir sur GitHub↗

    Excelize is a library for reading and writing spreadsheet files in the Office Open XML format. It provides a comprehensive suite of tools for programmatically creating, modifying, and analyzing workbooks, worksheets, and cell data, ensuring compatibility across various office software suites through structured XML serialization. The library distinguishes itself with a built-in formula calculation engine that evaluates complex mathematical and logical expressions directly against workbook data. It also features a memory-mapped streaming architecture, which allows for the efficient processing o

    Goagentaianalytics
    Voir sur GitHub↗20,682
  • siderolabs/talosAvatar de siderolabs

    siderolabs/talos

    10,659Voir sur GitHub↗

    Talos is a minimal, immutable Linux distribution designed specifically for deploying and managing Kubernetes clusters. It functions as an API-driven infrastructure manager that replaces traditional shell access with a declarative gRPC interface to control operating system state and configuration. The system is distinguished by its use of a read-only root filesystem and a security-hardened kernel, which removes standard GNU utilities to reduce the attack surface. It ensures environment consistency by distributing the operating system as versioned, signed images and utilizes TPM-backed verified

    Gocloud-nativecontainerdgo
    Voir sur GitHub↗10,659
  • nix-rust/nixAvatar de nix-rust

    nix-rust/nix

    2,986Voir sur GitHub↗

    nix is a Unix system API library and Rust system programming interface that provides type-safe bindings for invoking low-level system calls. It serves as a low-level operating system wrapper and POSIX compatibility layer, allowing for kernel interactions and administrative tasks through safe wrappers around platform-specific APIs. The project provides a kernel device interface for controlling hardware devices, managing kernel modules, and configuring terminal interfaces. It differentiates itself by offering type-safe wrappers for memory mapping and zero-copy input-output operations to reduce

    Rustlibcrustrust-bindings
    Voir sur GitHub↗2,986
  • rocky-linux/rockyAvatar de rocky-linux

    rocky-linux/rocky

    9,497Voir sur GitHub↗

    Rocky is an open-source enterprise operating system designed for server and cloud infrastructure. It is a community-maintained Linux server distribution that provides a platform focused on stability and security. The project is fundamentally a Red Hat Enterprise Linux compatible operating system, maintaining bug-for-bug binary compatibility to ensure identical software behavior. This allows it to serve as an enterprise-grade platform without proprietary licensing. The distribution covers a broad range of system administration capabilities, including package management via modular repository

    enterprise-linuxrocky
    Voir sur GitHub↗9,497
Voir les 30 alternatives à Systemd→