From: Lennart Poettering Date: Wed, 14 Feb 2018 13:28:00 +0000 (+0100) Subject: update TODO X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=commitdiff_plain;h=70aa30456685dca4a76ea36a64cfea5225a4b7ab;p=elogind.git update TODO --- diff --git a/TODO b/TODO index 1c29ba89e..51c090e60 100644 --- a/TODO +++ b/TODO @@ -24,13 +24,17 @@ Janitorial Clean-ups: Features: -* block setrlimit(RLIMIT_NOPROC) (and other per-user limits) in nspawn when userns is not on - -* nss-elogind: implement enumeration, that shows all dynamic users plus the - synthesized ones if necessary, so that "getent passwd" shows useful data. - -* teach tmpfiles.d q/Q logic something sensible in the context of XFS/ext4 - project quota +* introduce DefaultSlice= or so in system.conf that allows changing where we + place our units by default, i.e. change system.slice to something + else. Similar, ManagerSlice= should exist so that PID1's own scope unit could + be moved somewhere else too. Finally machined and logind should get similar + options so that it is possible to move user session scopes and machines to a + different slice too by default. Usecase: people who want to put resources on + the entire system, with the exception of one specific service. See: + https://lists.freedesktop.org/archives/elogind-devel/2018-February/040369.html + +* check what setting the login shell to /bin/false vs. /sbin/nologin means and + do the right thing in get_user_creds_clean() with it. * maybe rework get_user_creds() to query the user database if $SHELL is used for root, but only then. @@ -383,6 +387,8 @@ Features: * what to do about udev db binary stability for apps? (raw access is not an option) +* maybe provide an API to allow migration of foreign PIDs into existing scopes. + * man: maybe use the word "inspect" rather than "introspect"? * systemctl: if some operation fails, show log output?