X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=TODO;h=ec66dda423b6b92cd41eed58a3c3353ed0d8eb72;hb=7182867e7970741d294237aa83022fcb2774af69;hp=0343b946f380e75e28f0f6f5d0481f51d42510ad;hpb=b3ae710c251d0ce5cf2cef63208e325497b5e323;p=elogind.git

diff --git a/TODO b/TODO
index 0343b946f..ec66dda42 100644
--- a/TODO
+++ b/TODO
@@ -32,6 +32,16 @@ External:
 
 Features:
 
+* sd-resolve: add callback api
+
+* ImmutableSystem=yes/no or so to mount /usr, /boot read-only/invisible, and leave /var and /etc writable
+
+* InaccessibleHome=yes/no or so to hide /home and /run/user from a service
+
+* Run most system services with cgroupfs read-only and procfs with a more secure mode
+
+* sd-event: generate a failure of a default event loop is executed out-of-thread
+
 * add "M" as recursive version of "m" to tmpfiles, then use it for
   chowning /run/log/journal (but not /var/log/journal), so that we
   adjust the perms of journal files created before tmpfiles ran.
@@ -75,9 +85,6 @@ Features:
 * "busctl status" works only as root on dbus1, since we cannot read
   /proc/$PID/exe
 
-* systemctl: support --recursive for list-sockets, list-timers,
-  ... too, not just for list-units.
-
 * implement Distribute= in socket units to allow running multiple
   service instances processing the listening socket, and open this up
   for ReusePort=
@@ -709,6 +716,8 @@ External:
 
 * fedora: update policy to declare access mode and ownership of unit files to root:root 0644, and add an rpmlint check for it
 
+* register catalog database signature as file magic
+
 Regularly:
 
 * look for close() vs. close_nointr() vs. close_nointr_nofail()