Features:
+* check ID_RENAMING= property from PID1's .device logic, and don't consider
+ devices that are being renamed.
+
* make MAINPID= message reception checks even stricter: if service uses User=,
then check sending UID and ignore message if it doesn't match the user or
root.
* paranoia: whenever we process passwords, call mlock() on the memory
first. i.e. look for all places we use string_erase()/string_free_erase() and
- augment them with mlock()
+ augment them with mlock(). Also use MADV_DONTDUMP
* whenever oom_kill memory.event event is triggered print a nice log message
show state of these flags, and optionally trigger such a factory reset on
next boot by setting the flag.
-* sd-boot: add "oneshot boot timeout" variable support
-
* sd-boot: automatically load EFI modules from some drop-in dir, so that people
can add in file system drivers and such
* sd-boot: optionally, show boot menu when previous default boot item has
non-zero "tries done" count
-* logind: add "boot into bootmenu" API, and possibly even "boot into windows"
- and "boot into macos".
-
* maybe set a special xattr on cgroups that have delegate=yes set, to make it
easy to mark cut points
projects / thirdparty / systemd.git / blobdiff