X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=elogind.git;a=blobdiff_plain;f=TODO;h=db2c623d1d5b8600adf0174e22a68be146f12219;hp=7b12f03bf8c1bbf5c572c337b73075c262444932;hb=af1082b04a3d45a9b1d796b4271f44e87e307026;hpb=86d0d519429b85b0cad93c8c9fe8e68c5b9a4fe3 diff --git a/TODO b/TODO index 7b12f03bf..db2c623d1 100644 --- a/TODO +++ b/TODO @@ -33,15 +33,13 @@ Preparation for 209: * libsystemd-journal returns the object created as first param in sd_journal_new(), sd_bus_new() and suchlike as last... -* Merge Distribute= patches for .socket units - -* When a Type=forking service fails and needed another service, that - service is not cleaned up again when it has StopWhenUnneeded=yes - http://lists.freedesktop.org/archives/systemd-devel/2013-July/012141.html - Features: -* maybe: hookup nspawn and PrivateNetwork=yes with "ip netns" +* implement Distribute= in socket units to allow running multiple + service instances processing the listening socket, and open this up + for ReusePort= + +* add a timelimit to generator invocation * socket units: support creating sockets in different namespace, opening it up for JoinsNamespaceOf=. This would require to fork off @@ -93,7 +91,7 @@ Features: * Automatically configure swap partition to use for hibernation by looking for largest swap partition on the root disk? -* socket-proxyd:Use a nonblocking alternative to getaddrinfo +* socket-proxyd: Use sd-resolve to resolve the server address * rfkill,backlight: we probably should run the load tools inside of the udev rules so that the state is properly initialized by the time other software sees it @@ -430,12 +428,12 @@ Features: - nspawn: --read-only is not applied recursively to submounts - nspawn: make use of device cgroup controller by default - bind mount read-only the cgroup tree higher than nspawn - - nspawn: investigate whether we can support the same as LXC's - lxc.network.type=phys mode, and pass through entire network - interfaces to the container - nspawn: make it work for dwalsh and shared /usr containers -- tmpfs mounts as command line parameters, selinux exec context - refuses to boot containers without /etc/machine-id (OK?), and with empty /etc/machine-id (not OK). - support taking a btrfs snapshot at startup and dropping it afterwards + - maybe: hookup nspawn and PrivateNetwork=yes with "ip netns" + - introduce --network-bridge= which works like --network-veth but also adds the host side to an existing bridge + - allow booting disk images with a GPT signature using the bootloaderspec partition uuids * cryptsetup: - cryptsetup-generator: allow specification of passwords in crypttab itself @@ -486,12 +484,7 @@ Features: * rename "userspace" to "core-os" -* syscall filter: - - syscall filter: add knowledge about compat syscalls - - syscall filter: don't enforce no new privs? - - syscall filter: option to return EPERM rather than SIGSYS? - - syscall filter: port to libseccomp - - system-wide seccomp filter +* syscall filter: optionally don't enforce no new privs? * load-fragment: when loading a unit file via a chain of symlinks verify that it isn't masked via any of the names traversed.