From: Lennart Poettering Date: Fri, 9 Feb 2018 18:43:35 +0000 (+0100) Subject: update TODO X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=commitdiff_plain;h=fb2e0a5e8629b4e29fa1cd8576525d2dd3510b40;p=elogind.git update TODO --- diff --git a/TODO b/TODO index 126f3fb40..058cd2baf 100644 --- a/TODO +++ b/TODO @@ -24,22 +24,8 @@ Janitorial Clean-ups: Features: -* block setrlimit(RLIMIT_NOPROC) (and other per-user limits) in nspawn when userns is not on - -* nss-elogind: implement enumeration, that shows all dynamic users plus the - synthesized ones if necessary, so that "getent passwd" shows useful data. - -* teach tmpfiles.d q/Q logic something sensible in the context of XFS/ext4 - project quota - -* introduce DefaultSlice= or so in system.conf that allows changing where we - place our units by default, i.e. change system.slice to something - else. Similar, ManagerSlice= should exist so that PID1's own scope unit could - be moved somewhere else too. Finally machined and logind should get similar - options so that it is possible to move user session scopes and machines to a - different slice too by default. Usecase: people who want to put resources on - the entire system, with the exception of one specific service. See: - https://lists.freedesktop.org/archives/elogind-devel/2018-February/040369.html +* check what setting the login shell to /bin/false vs. /sbin/nologin means and + do the right thing in get_user_creds_clean() with it. * maybe rework get_user_creds() to query the user database if $SHELL is used for root, but only then. @@ -59,15 +45,6 @@ Features: sd_id128_get_machine_app_specific(). After all on long-running systems both IDs have similar properties. -* emulate properties of the root cgroup on controllers that don't support such - properties natively on cpu/io/memory, the way we already do it for - "pids". Also, add the same logic to cgtop. - -* set TasksAccounting=1 on the root slice if we are running on the root cgroup, - and similar for the others, as soon as we emulate them properly. After all, - Linux keeps these system-wide stats anyway, and it costs nothing to expose - them. - * sd-bus: add vtable flag, that may be used to request client creds implicitly and asynchronously before dispatching the operation @@ -392,6 +369,8 @@ Features: * what to do about udev db binary stability for apps? (raw access is not an option) +* maybe provide an API to allow migration of foreign PIDs into existing scopes. + * man: maybe use the word "inspect" rather than "introspect"? * systemctl: if some operation fails, show log output?