Features:
+* vmspawn:
+ - enable hyperv extension by default (https://www.qemu.org/docs/master/system/i386/hyperv.html)
+ - register with machined
+ - run in scope unit when invoked from command line, and machined registration is off
+ - support --directory= via virtiofs
+ - sd_notify support
+ - --ephemeral support
+ - --read-only support
+ - automatically suspend/resume the VM if the host suspends. Use logind
+ suspend inhibitor to implement this. request clean suspend by generating
+ suspend key presses.
+ - support for "real" networking via "-n" and --network-bridge=
+ - automatically run service "at the side" for swtpm
+ - translate SIGTERM to clean ACPI shutdown event
+
+* systemd-pcrmachine should probably also measure the SMBIOS system UUID.
+
* sd-boot: allow synthesizing additional type1 entries via SMBIOS vendor strings
* storagetm:
* sd-device: maybe pin the sysfs dir with an fd, during the entire runtime of
an sd_device, then always work based on that.
-* add small wrapper around qemu that implements sd_notify/AF_VSOCK + machined and
- maybe some other stuff and boots it. Should implement command line roughly
- equivalent to nspawn's. Maybe be called "systemd-vmspawn". Should imply good
- settings, i.e. RNG + HyperV enlightenments. Should also result in swtpm
- instance, plus virtiofsd instances. Translate credentials into smbios type
- 11 strings. Correctly translate SIGTERM into ACPI shutdown events.
- Listen to logind suspend events and turn these into suspend key pressed +
- ACPI resume events.
-
* maybe add new flags to gpt partition tables for rootfs and usrfs indicating
purpose, i.e. whether something is supposed to be bootable in a VM, on
baremetal, on an nspawn-style container, if it is a portable service image,
projects / thirdparty / systemd.git / commitdiff
