+* teach fd_get_crtime_at() the btrfs crtime
+
+* import pull-gpt: create writable snapshot of downloaded image, by the right name
+
+* nspawn: when start a container "foobar" look for its configuration in a file "foobar.nspawn" in /etc/systemd/nspawn/ as well as next to the actualy directory or image to boot
+
+* Port various tools to make use of verbs.[ch], where applicable
+
+* Check all invocations of access() and consider turning them into laccess()
+
+* "machinectl start/enable/disable foo" as aliases for "systemctl start/enable/disable systemd-nspawn@foo.service"
+
+* "machinectl snapshot" to make a snapshot of a tree or container into /var/lib/containers
+
+* "machinectl rm" to remove a container tree from /var/lib/containers
+
+* "machinectl history"
+
+* "machinectl diff"
+
+* show btrfs quota in machinectl
+
+* "machinectl commit" that takes a writable snapshot of a tree, invokes a shell in it, and marks it read-only after use
+
+* "machinectl status" should show 10 most recent log lines of both the host logs of the unit of the machine, plus the logs generated in the machine
+
+* add transparent btrfs pool in a loopback file in /var if btrfs operations (such as systemd-import pull-dkr) are used and /var is not a btrfs file system
+
+* systemd-nspawn -M should look for gpt images if neither -D nor -i are specified.
+
+* systemd-nspawn -i should run things read-only if image file has no writable bits
+
+* systemd-nspawn -x should support ephemeral instances of gpt images
+
+* systemd-import pull-gpt should make a read-only download, plus a writable reflinked copy
+
+* machinectl list should show crtimes of snapshots and GPT images
+
+* hostnamectl: show root image uuid
+
+* sysfs set api in libudev is not const
+
+* Find a solution for SMACK capabilities stuff:
+ http://lists.freedesktop.org/archives/systemd-devel/2014-December/026188.html
+
+* port libmount hookup to use API's own inotify interface, as soon as that is table in libmount
+
+* journald: broken file systems are real (btrfs), we need to handle
+ SIGBUS in some way if we cannot write or read from the disk.
+ https://bugzilla.redhat.com/show_bug.cgi?id=1151848
+
+* "systemctl preset-all" should probably order the unit files it
+ operates on lexicographically before starting to work, in order to
+ ensure deterministic behaviour if two unit files conflict (like DMs
+ do, for example)
+
+* resolved should optionally register additional per-interface LLMNR
+ names, so that for the container case we can establish the same name
+ (maybe "host") for referencing the server, everywhere.
+
+* systemd-journal-upload (or a new, related tool): allow pushing out
+ journal messages onto the network in BSD syslog protocol,
+ continously. Default to some link-local IP mcast group, to make this
+ useful as a one-stop debugging tool.
+
+* synchronize console access with BSD locks:
+ http://lists.freedesktop.org/archives/systemd-devel/2014-October/024582.html
+
+* as soon as we have kdbus, and sender timestamps, revisit coalescing multiple parallel daemon reloads:
+ http://lists.freedesktop.org/archives/systemd-devel/2014-December/025862.html
+
+* set $REMOTE_IP (or $REMOTE_ADDR/$REMOTE_PORT) environment variable when doing per-connection socket activation. use format introduced by xinetd or CGI for this
+
+* the install state probably shouldn't get confused by generated units, think dbus1/kdbus compat!
+
+* in systemctl list-unit-files: show the install value the presets would suggest for a service in a third column
+
+* we should try harder to collapse start jobs for swaps that end up being the same:
+ http://lists.freedesktop.org/archives/systemd-devel/2014-November/025359.html
+
+* timedated should compensate on SetTime for the time spent in polkit
+
+* figure out when we can use the coarse timers
+
+* sd-resolve: drop res_query wrapping, people should call via the bus to resolved instead
+
+* add "systemctl start -v foobar.service" that shows logs of a service
+ while the start command runs. This is non-trivial to do without
+ races though, since we should flush out all journal messages before
+ returning from the "systemctl stop".
+
+* firstboot: make it useful to be run immediately after yum --installroot to set up a machine. (most specifically, make --copy-root-password work even if /etc/passwd already exists
+
+* timesyncd + resolved: add ugly bus calls to set NTP and DNS servers per-interface, for usage by NM
+
+* networkd-wait-online really should have a timeout by default
+
+* add infrastructure to allocate dynamic/transient users and UID ranges, for use in user-namespaced containers, per-seat gdm login screens and gdm guest sessions
+
+* machined: add an API so that libvirt-lxc can inform us about network interfaces being removed or added to an existing machine
+
+* maybe add support for specifier expansion in user.conf, specifically DefaultEnvironment=
+
+* code cleanup: retire FOREACH_WORD_QUOTED, port to unquote_first_word() loops instead
+
+* introduce systemd-timesync-wait.service or so to sync on an NTP fix?
+
+* systemd --user should issue sd_notify() upon reaching basic.target, not on becoming idle
+
+* consider showing the unit names during boot up in the status output, not just the unit descriptions
+
+* dhcp: do we allow configuring dhcp routes on interfaces that are not the one we got the dhcp info from?
+
+* maybe allow timer units with an empty Units= setting, so that they
+ can be used for resuming the system but nothing else.
+
+* what to do about udev db binary stability for apps? (raw access is not an option)
+
+* maybe provide an API to allow migration of foreign PIDs into existing scopes.
+
+* maybe support a new very "soft" reboot mode, that simply kills all processes, disassembles everything, flushes /run and sysvipc, and then reexecs systemd again
+
+* man: document that corrupted journal files is nothing to act on
+
+* man: maybe use the word "inspect" rather than "introspect"?
+
+* "machinectl list" should probably show columns for OS version and IP addresses
+
+* systemctl: if some operation fails, show log output?
+
+* systemctl edit:
+- allow creation of units from scratch
+- use equvalent of cat() to insert existing config as a comment, prepended with #.
+ Upon editor exit, lines with one # are removed, lines with two # are left with one #, etc.
+
+* refcounting in sd-resolve is borked
+
+* exponential backoff in timesyncd and resolved when we cannot reach a server
+
+* tmpfiles: port to unquote_many_words(), similar to sysusers
+
+* unquote_many_words() should probably be used by a lot of code that
+ currently uses FOREACH_WORD and friends. For example, most conf
+ parsing callbacks should use it.
+
+* merge ~/.local/share and ~/.local/lib into one similar /usr/lib and /usr/share....
+
+* systemd.show_status= should probably have a mode where only failed
+ units are shown.
+
+* networkd:
+ - add LLDP client side support
+ - the DHCP lease data (such as NTP/DNS) is still made available when
+ a carrier is lost on a link. It should be removed instantly.
+ - .network setting that allows overriding of the hostname to send to the dhcp server
+ http://lists.freedesktop.org/archives/systemd-devel/2014-July/021550.html
+ - expose in the API the following bits:
+ - option 15, domain name and/or option 119, search list
+ - option 12, host name and/or option 81, fqdn
+ - option 100, 101, timezone
+ - option 123, 144, geolocation
+ - option 252, configure http proxy (PAC/wpad)
+ - networkd's dhcp server should transparently pass on the DNS and
+ NTP server list it got from user configuration and its dhcp client
+ to clients. It should also pass on its own timezone information.
+ - provide a way to define a per-network interface default metric value
+ for all routes to it. possibly a second default for DHCP routes.
+ - allow Name= to be specified repeatedly in the [Match] section. Maybe also
+ support Name=foo*|bar*|baz ?
+
+* resolved:
+ - put networkd events and rtnl events at a higher priority, so that
+ we always process them before we process client requests
+ - DNSSEC
+ - use base64 for key presentation?
+ - add display of private key types (http://tools.ietf.org/html/rfc4034#appendix-A.1.1)?
+ - add nice formatting of DNS timestamps
+ - DNS
+ - search paths
+ - mDNS/DNS-SD
+ - avahi compat
+ - DNS-SD service registration from socket units
+ - edns0
+ - dname
+ - cname on PTR (?)
+ - maybe randomize DNS UDP source ports
+ - maybe compare query section of DNS replies
+
+* Allow multiple ExecStart= for all Type= settings, so that we can cover rescue.service nicely
+
+* Add a new verb "systemctl top"
+
+* add new gpt type for btrfs volumes
+
+* support empty /etc boots nicely:
+ - nspawn/gpt-generator: introduce new gpt partition type for /usr
+ - fstab-generator: support systemd.volatile=yes|no|state on the kernel cmdline, too, similar to nspawn's --volatile=
+
+* generator that automatically discovers btrfs subvolumes, identifies their purpose based on some xattr on them.
+
+* timer units: actually add extra delays to timer units with high AccuracySec values, don't start them already when we are awake...
+
+* a way for container managers to turn off getty starting via $container_headless= or so...
+
+* figure out a nice way how we can let the admin know what child/sibling unit causes cgroup membership for a specific unit
+
+* mount_cgroup_controllers(): symlinks need to get the label applied
+
+* For timer units: add some mechanisms so that timer units that trigger immediately on boot do not have the services
+ they run added to the initial transaction and thus confuse Type=idle.
+
+* Run most system services with cgroupfs read-only and procfs with a more secure mode (doesn't work, since the hidepid= option is per-pid-namespace, not per-mount)
+
+* sd-event: generate a failure of a default event loop is executed out-of-thread
+