man: let's deprecate PermissionsStartOnly= #10802
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The concept is redundant and predates the special chars that do the same in ExecStar=. Let's settle on advertising just the latter, and hide PermissionsStartOnly= from the docs (even if we continue supporting it).
keszybz
reviewed
Nov 16, 2018
Member
keszybz
left a comment
keszybz
left a comment
There was a problem hiding this comment.
This should also be removed from docs/TRANSIENT-SETTINGS.md.
| SD_BUS_PROPERTY("WatchdogUSec", "t", bus_property_get_usec, offsetof(Service, watchdog_usec), SD_BUS_VTABLE_PROPERTY_CONST), | ||
| BUS_PROPERTY_DUAL_TIMESTAMP("WatchdogTimestamp", offsetof(Service, watchdog_timestamp), 0), | ||
| SD_BUS_PROPERTY("PermissionsStartOnly", "b", bus_property_get_bool, offsetof(Service, permissions_start_only), SD_BUS_VTABLE_PROPERTY_CONST), | ||
| SD_BUS_PROPERTY("PermissionsStartOnly", "b", bus_property_get_bool, offsetof(Service, permissions_start_only), SD_BUS_VTABLE_PROPERTY_CONST|SD_BUS_VTABLE_HIDDEN), /* 😷 deprecated */ |
keszybz
added
the
good-to-merge/waiting-for-ci 👍
Contributor
|
https://codesearch.debian.net/search?q=PermissionsStartOnly%3D&perpkg=1 Are there plans to drop PermissionsStartOnly eventually? If so, I'd have to get those affected updated... |
Member
Author
Dunno, we might consider doing this one day, but doesn't appear like something to do soon. I mean there's also RootDirectoryStartOnly=, which we probably should handle the same way, but it has no counterpart yet, hence really too early to get rid of either entirely. |
Contributor
|
Ok, when you do actually intend to remove that option, please give us (downstream distros) a heads-up soon enough. |
Contributor
|
This deprecation does not seem to be mentioned in any changelog / |
keszybz
added a commit
to keszybz/systemd
that referenced
this pull request
Jan 12, 2019
Member
|
Added to #11387. |
yuwata
pushed a commit
to yuwata/systemd
that referenced
this pull request
Jan 13, 2019
yuwata
pushed a commit
that referenced
this pull request
Jan 13, 2019
keszybz
added a commit
to systemd/systemd-stable
that referenced
this pull request
Feb 7, 2019
systemd/systemd#10802 (comment) (cherry picked from commit 455027c)
Yamakuzure
pushed a commit
to elogind/elogind
that referenced
this pull request
Feb 22, 2019
10 tasks
10 tasks
This was referenced Mar 10, 2020
syuu1228
added a commit
to syuu1228/scylladb
that referenced
this pull request
Nov 30, 2022
Since PermissionsStartOnly is deperecated, we need to use new format on ExecStartPre / ExecStopPost, a special executable prefix '+'. (which means the command will run in full privilege) see systemd/systemd#10802 see https://man7.org/linux/man-pages/man5/systemd.service.5.html Related with scylladb/scylla-enterprise#1067
syuu1228
added a commit
to syuu1228/scylladb
that referenced
this pull request
Dec 2, 2022
Since PermissionsStartOnly is deperecated, we need to use new format on ExecStartPre / ExecStopPost, a special executable prefix '+'. (which means the command will run in full privilege) However, older distribution like CentOS7 does not support the prefix '+', so we need to keep using PermissionsStartOnly (these are systemd < v231). see systemd/systemd#10802 see https://man7.org/linux/man-pages/man5/systemd.service.5.html Related with scylladb/scylla-enterprise#1067
markjcrane
pushed a commit
to fusionpbx/fusionpbx
that referenced
this pull request
Aug 4, 2025
Replace the deprecated PermissionsStartOnly option in favour of the supported method of elevating the exec commands. systemd/systemd#10802 (comment)
5 tasks
rrobgill
added a commit
to rrobgill/pi-hole
that referenced
this pull request
Nov 8, 2025
- elevate Prestart and Poststop script permissions using "+" prefix instead, as per https://www.freedesktop.org/software/systemd/man/latest/systemd.service.html#Command%20lines ( PermissionsStartOnly was deprecated in systemd 241 and no longer appears in documentation since 2018 systemd/systemd#10802 ) Signed-off-by: Rob Gill <[email protected]>
1 task
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The concept is redundant and predates the special chars that do the same
in ExecStar=. Let's settle on advertising just the latter, and hide
PermissionsStartOnly= from the docs (even if we continue supporting it).