X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=TODO;h=aa18bdd4a258ac420ea324834b9babd540a043d7;hb=6af00e06e4e9efacc5a9941eb3b9fffa1c816ee6;hp=99cbb9f4fc78324c96169e1ecaf83a3cb7391f29;hpb=df23374071f497831c4d25076a12b1da41054271;p=elogind.git

diff --git a/TODO b/TODO
index 99cbb9f4f..aa18bdd4a 100644
--- a/TODO
+++ b/TODO
@@ -47,7 +47,8 @@ Features:
 
 * support transient mount units
 
-* Imply DevicePolicy=closed and CapabilityBoundingSet=~CAP_SYS_MKNOD when PrivateDevices= is used
+* Imply DevicePolicy=closed when PrivateDevices= is used. Mount
+  pts+kdbus+shm+mqueue into /dev namespace
 
 * add an "input" group to udev logic and add all input devices to it
 
@@ -158,14 +159,11 @@ Features:
 
 * sd-bus:
   - when kdbus doesn't take our message without memfds, try again with memfds
-  - implement monitor logic
   - see if we can drop more message validation on the sending side
   - add API to clone sd_bus_message objects
   - systemd-bus-proxyd needs to enforce good old XML policy
-  - upload minimal kdbus policy into the kernel at boot
   - kdbus: matches against source or destination pids for an "strace -p"-like feel. Problem: The PID info needs to be available in userspace too...
   - longer term: priority inheritance
-  - check sender of response messages
   - dbus spec updates:
        - kdbus mapping
        - NameLost/NameAcquired obsolete