From be76bf625cc7dc0843b87f4ee364e64159aec950 Mon Sep 17 00:00:00 2001
From: Lennart Poettering <lennart@poettering.net>
Date: Mon, 19 Jun 2023 10:36:42 +0200
Subject: [PATCH] update TODO

---
 TODO | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/TODO b/TODO
index bba30c12958..cb8dec57cda 100644
--- a/TODO
+++ b/TODO
@@ -129,6 +129,12 @@ Deprecations and removals:
 
 Features:
 
+* add another PE section ".fname" or so that encodes the intended filename for
+  PE file, and validate that when loading add-ons and similar before using
+  it. This is particularly relevant when we load multiple add-ons and want to
+  sort them to apply them in a define order. The order should not be under
+  control of the attacker.
+
 * also include packaging metadata (á la
   https://systemd.io/ELF_PACKAGE_METADATA/) in our UEFI PE binaries, using the
   same JSON format.
-- 
2.47.3