Release 219 preparations:
-* support mbr raw disk images in systemd-nspawn, so that we can boot
- fedora cloud images unmodified (change suffix for search for files
- .gpt → .raw).
-
* dkr import hash verification
* rework journald sigbus stuff to use mutex
* create importd daemon, move "systemd-import" tool into machinectl
-* change default container location from /var/lib/container to /var/lib/machines
+Features:
-* merge input_id and evdev_id into generic input_id
+* import: when pulling raw images, detect NUL blocks, and create sparse files
-Features:
+* import: support import from local files, and export to local files
+
+* import: add "pull-tar" support, for downloading/verifying tarballs
+
+* import: support compressed raw images
+
+* import: support verifiying raw images with gpg
+
+* core/cgroup: support net_cls modules, and support automatically allocating class ids, then add support for making firewall changes depending on it, to implement a per-service firewall
* bus-proxy: reload policy when PID 1 reports a reload
* the dbus1 connection user id is actually the euid, not the uid, and creds should return that
-* add minimal NAT logic to networkd and nspawn. The former should be a simple NAT=yes|no|ipv4|ipv6 and expose a network on all other interfaces as NAT. The latter should get a "--port=" switch or so, which forwards one host port onto the container
-
* introduce systemd-nspawn-ephemeral@.service, and hook it into "machinectl start" with a new --ephemeral switch
-* nspawn should lock container images while running off them
-
* logind,machined: add generic catch-all polkit verbs for most priviliged operations, similar to systemd itself
* "machinectl status" should also show internal logs of the container in question
- write more test cases
- implement and do duplicate address detection, see rfc 4862, 5.4.
- implement reconfigure support, see 5.3., 15.11. and 22.20.
- - implement information request, see 1.2. and 18.1.5.
- implement support for temporary adressess (IA_TA)
- implement dhcpv6 authentication
- investigate the usefulness of Confirm messages; i.e. are there any