X-Git-Url: http://git.ipfire.org/?a=blobdiff_plain;f=TODO;h=5fb0c59d1a7a3fbac88852d7d2675b4e8cfe0683;hb=299597f8d5f06fc0faa3600f3c5181b58c25b922;hp=b022b601ef3b7a56b4b7631643c941f6b7cba20c;hpb=8769525f5724a184d70be8f578871753529bd04b;p=thirdparty%2Fsystemd.git diff --git a/TODO b/TODO index b022b601ef3..5fb0c59d1a7 100644 --- a/TODO +++ b/TODO @@ -24,9 +24,45 @@ Janitorial Clean-ups: Features: -* implement transient socket unit. +* block setrlimit(RLIMIT_NOPROC) (and other per-user limits) in nspawn when userns is not on + +* nss-systemd: implement enumeration, that shows all dynamic users plus the + synthesized ones if necessary, so that "getent passwd" shows useful data. + +* teach tmpfiles.d q/Q logic something sensible in the context of XFS/ext4 + project quota + +* introduce DefaultSlice= or so in system.conf that allows changing where we + place our units by default, i.e. change system.slice to something + else. Similar, ManagerSlice= should exist so that PID1's own scope unit could + be moved somewhere else too. Finally machined and logind should get similar + options so that it is possible to move user session scopes and machines to a + different slice too by default. Usecase: people who want to put resources on + the entire system, with the exception of one specific service. See: + https://lists.freedesktop.org/archives/systemd-devel/2018-February/040369.html + +* maybe rework get_user_creds() to query the user database if $SHELL is used + for root, but only then. + +* there should be path_hash_ops and we should use it in tmpfiles' hashmap object to deal with identical but differently spelt paths + +* be stricter with fds we receive for the fdstore: close them asynchronously + +* calenderspec: add support for week numbers and day numbers within a + year. This would allow us to define "bi-weekly" triggers safely. + +* add support for recursive bpf firewalling as supported by the newest kernel + +* add bpf-based implementation of devices cgroup controller logic for compat with cgroupsv2 as supported by newest kernel -* make systemd-run create transient path and socket unit. +* introduce sd_id128_get_boot_app_specific() which is like + sd_id128_get_machine_app_specific(). After all on long-running systems both + IDs have similar properties. + +* sd-bus: add vtable flag, that may be used to request client creds implicitly + and asynchronously before dispatching the operation + +* implement transient socket unit. * make use of ethtool veth peer info in machined, for automatically finding out host-side interface pointing to the container. @@ -45,10 +81,6 @@ Features: the runtime dir as we maintain for the fdstore: i.e. keep it around as long as the unit is running or has a job queued. -* hook up sd-bus' creds stuff with SO_PEERGROUPS - -* add async version of sd_bus_add_match and make use of that - * support projid-based quota in machinectl for containers, and then drop implicit btrfs loopback magic in machined @@ -140,9 +172,6 @@ Features: O_NONBLOCK on it. That way people can control if and when to block for logging. -* tighten sd_notify() MAINPID= checks a bit: don't accept foreign PIDs (i.e. - PIDs not managed by the service manager) - * hostnamed: populate form factor data from a new hwdb database, so that old yogas can be recognized as "convertible" too, even if they predate the DMI "convertible" form factor @@ -169,9 +198,6 @@ Features: "systemd-gdb" for attaching to the start-up of any system service in its natural habitat. -* replace all canonicalize_file_name() invocations by chase_symlinks(), in - particulr those where a rootdir is relevant. - * maybe introduce gpt auto discovery for /var/tmp? * maybe add gpt-partition-based user management: each user gets his own @@ -295,10 +321,6 @@ Features: * docs: bring http://www.freedesktop.org/wiki/Software/systemd/MyServiceCantGetRealtime up to date -* mounting and unmounting mount points manually with different source - devices will result in collected on all devices used. - http://lists.freedesktop.org/archives/systemd-devel/2015-April/030225.html - * add a job mode that will fail if a transaction would mean stopping running units. Use this in timedated to manage the NTP service state. @@ -319,7 +341,7 @@ Features: * Rework systemctl's GetAll property parsing to use the generic bus_map_all_properties() API * Port various tools to make use of verbs.[ch], where applicable: busctl, - coredumpctl, hostnamectl, localectl, systemd-analyze, timedatectl + coredumpctl, hostnamectl, localectl, timedatectl * hostnamectl: show root image uuid @@ -361,8 +383,6 @@ Features: * what to do about udev db binary stability for apps? (raw access is not an option) -* maybe provide an API to allow migration of foreign PIDs into existing scopes. - * man: maybe use the word "inspect" rather than "introspect"? * systemctl: if some operation fails, show log output? @@ -486,14 +506,12 @@ Features: - see if we can introduce a new sd_bus_get_owner_machine_id() call to retrieve the machine ID of the machine of the bus itself - see if we can drop more message validation on the sending side - add API to clone sd_bus_message objects - - make AddMatch calls on dbus1 transports async? - longer term: priority inheritance - dbus spec updates: - NameLost/NameAcquired obsolete - GVariant - path escaping - update systemd.special(7) to mention that dbus.socket is only about the compatibility socket now - - test bloom filter generation indexes * sd-event - allow multiple signal handlers per signal? @@ -592,8 +610,6 @@ Features: * exec: when deinitializating a tty device fix the perms and group, too, not only when initializing. Set access mode/gid to 0620/tty. -* service: watchdog logic: for testing purposes allow ping, but do not require pong - * journal: - consider introducing implicit _TTY= + _PPID= + _EUID= + _EGID= + _FSUID= + _FSGID= fields - import and delete pstore filesystem content at startup