X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=elogind.git;a=blobdiff_plain;f=TODO;h=57c057227b51573fbfec0ebd4994bbcb60d5cad0;hp=e74aa7e9ea59c57f84fb0fc9c03b95e25c02ad2b;hb=0bc8e31b358a872ec2631874bd2109ba4e009ccf;hpb=3d0ce78b257dccda0e377dfef580abfa11437fe8

diff --git a/TODO b/TODO
index e74aa7e9e..57c057227 100644
--- a/TODO
+++ b/TODO
@@ -33,6 +33,10 @@ Preparation for 209:
 
 Features:
 
+* Add a seccomp-based filter for socket() calls to limit services to
+  specific address families (for example: AF_UNIX), inspired by
+  Android's sandboxing
+
 * implement Distribute= in socket units to allow running multiple
   service instances processing the listening socket, and open this up
   for ReusePort=
@@ -144,6 +148,8 @@ Features:
   - pid1: peek into activating message when activating a service
   - test bloom filter generation indexes
   - introduce sd_bus_emit_object_added()/sd_bus_emit_object_removed() that automatically includes the build-in interfaces in the list
+  - port to sd-resolve for connecting to TCP dbus servers
+  - constructors for bus messages should probably not be OK with a NULL bus pointer
 
 * sd-event
   - allow multiple signal handlers per signal?
@@ -633,7 +639,6 @@ Features:
    - Make sure ID_PATH is always exported and complete for
      network devices where possible, so we can safely rely
      on Path= matching
-   - Check if Driver= is broken, or just my driver (bcma)
 
 * sd-rtnl:
    - add support for exiting containers without reading them fully first