ReadOnlyDirectories=... for whitelisting files for a service.
* sd-bus:
- - systemd-bus-proxyd needs to enforce good old XML policy
- - kdbus: peeking is subject to a race when we look at a message while the message is being migrated to the implementor's connection. Needs kernel fix, and then we need to invoke the FREE ioctl in busname_peek_message()
- - kdbus: maybe add controlling tty and ppid metadata fields
- - kdbus: for some reason "busctl monitor" only shows metadata for signal msgs, never method call or method reply msgs
+ - bus-proxy: fix how we detect whether we are connected to a system bus
+ - kdbus: the kernel should not allow messages to be delivered that have a reply serial != 0, reply-expect unset, but no appropriate window
- kdbus: busnames.target should get pulled in by basic.target
- Ignore .busname units on classic D-Bus boots, systemd-resolved cannot be started on kdbus
without the active policy and should get a Wants=org.freedesktop.resolve1.busname to
pull-in the policy.
- port to sd-resolve for connecting to TCP dbus servers
+ - kdbus: maybe add controlling tty and ppid metadata fields
- see if we can introduce a new sd_bus_get_owner_machine_id() call to retrieve the machine ID of the machine of the bus itself
- when kdbus does not take our message without memfds, try again with memfds
- introduce sd_bus_emit_object_added()/sd_bus_emit_object_removed() that automatically includes the build-in interfaces in the list
253 messages)
- kdbus: introduce a concept of "send-only" connections
- kdbus: add counter for refused unicast messages that is passed out via the RECV ioctl. SImilar to the counter for dropped multicast messages we already have.
+ - kdbus: when we fake creds euid being (uint32_t) -1 is weirdly translated
+ - kdbus: attach mask kmod parameter should be 64bit not 32bit
* sd-event
- allow multiple signal handlers per signal?