X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=elogind.git;a=blobdiff_plain;f=TODO;h=caf565ff0002ebc1bf22fb27512ba33ea4433a36;hp=8169a574736ae0eddcfdce1a580d6dfb391f0695;hb=2d2ebaf5152cfc232aec61aad5138adc950f4b5c;hpb=3de03738fc970496d2d3da668c72767a48ccc41b diff --git a/TODO b/TODO index 8169a5747..caf565ff0 100644 --- a/TODO +++ b/TODO @@ -1,4 +1,7 @@ Bugfixes: +* Re-enable "fsck -l" when it is ready: + https://bugs.freedesktop.org/show_bug.cgi?id=79576#c5 + * Should systemctl status \* work on all unit types, not just .service? * enabling an instance unit creates a pointless link, and @@ -20,7 +23,6 @@ Bugfixes: See the comment in sd_bus_unref() for more.. External: - * Fedora: when installing fedora with yum --installroot /var/run is a directory, not a symlink https://bugzilla.redhat.com/show_bug.cgi?id=975864 @@ -36,8 +38,6 @@ Features: * tmpfiles: figure out relation between Z and m? -* systemd-notify: fake ucred of msg to PID of parent, if that works, with fallback to our own if it doesn't. - * machined/machinectl: sort IP addresses we return by scope and protocol * machined: write NSS module for looking up IP addresses for machines @@ -66,11 +66,7 @@ Features: * Add timeout to early-boot, and shut down the system if it is hit. Solves the laptop-in-bag problem and is useful for embedded cases -* ImmutableSystem=yes/no or so to mount /usr, /boot read-only/invisible, and leave /var and /etc writable - -* InaccessibleHome=yes/no or so to hide /home and /run/user from a service - -* Run most system services with cgroupfs read-only and procfs with a more secure mode +* Run most system services with cgroupfs read-only and procfs with a more secure mode (doesn't work, since the hidepid= option is per-pid-namespace, not per-mount) * sd-event: generate a failure of a default event loop is executed out-of-thread @@ -159,8 +155,6 @@ Features: * Automatically configure swap partition to use for hibernation by looking for largest swap partition on the root disk? -* socket-proxyd: Use sd-resolve to resolve the server address - * rfkill,backlight: we probably should run the load tools inside of the udev rules so that the state is properly initialized by the time other software sees it * After coming back from hibernation reset hibernation swap partition using the /dev/snapshot ioctl APIs @@ -187,15 +181,13 @@ Features: ReadOnlyDirectories=... for whitelisting files for a service. * sd-bus: - - make AddMatch calls on dbus1 transports async + - make AddMatch calls on dbus1 transports async? - when kdbus does not take our message without memfds, try again with memfds - systemd-bus-proxyd needs to enforce good old XML policy - - port exit-on-idle logic to byebye ioctl - allow updating attach flags during runtime - pid1: peek into activating message when activating a service - introduce sd_bus_emit_object_added()/sd_bus_emit_object_removed() that automatically includes the build-in interfaces in the list - constructors for bus messages should probably not be OK with a NULL bus pointer - - .busname units should not use get_user_creds()/get_cgroup_creds() but instead do NSS only in temporarily forked off child - see if we can drop more message validation on the sending side - add API to clone sd_bus_message objects - kdbus: matches against source or destination pids for an "strace -p"-like feel. Problem: The PID info needs to be available in userspace too... @@ -550,8 +542,6 @@ Features: * introduce mix of BindTo and Requisite -* add DeleteSocketsOnStop=yes|no option to socket units - * There's currently no way to cancel fsck (used to be possible via C-c or c on the console) * add option to sockets to avoid activation. Instead just drop packets/connections, see http://cyberelk.net/tim/2012/02/15/portreserve-systemd-solution/ @@ -597,8 +587,6 @@ Features: when we start a service in order to avoid confusion when a user assumes starting a service is enough to make it accessible -* support User= and Group= attributes for AF_UNIX sockets. (difficult, requires NSS from PID 1?) - * Make it possible to set the keymap independently from the font on the kernel cmdline. Right now setting one resets also the other.