update TODO

author Lennart Poettering <lennart@poettering.net>

Mon, 15 Feb 2021 18:23:05 +0000 (19:23 +0100)

committer Lennart Poettering <lennart@poettering.net>

Mon, 15 Feb 2021 18:23:05 +0000 (19:23 +0100)
author Lennart Poettering <lennart@poettering.net>
Mon, 15 Feb 2021 18:23:05 +0000 (19:23 +0100)
committer Lennart Poettering <lennart@poettering.net>
Mon, 15 Feb 2021 18:23:05 +0000 (19:23 +0100)
diff --git a/TODO b/TODO

index 2080eb6b571b97d499a483592ebfdda98ae260ef..9b8018bf19239d534e26ddaa8c188590e361720c 100644 (file)
--- a/TODO
+++ b/TODO
@@ -20,6 +20,13 @@ Janitorial Clean-ups:
  
  Features:
  
+* Hook up journald's FSS logic with TPM2: seal the verification disk by
+  time-based policy, so that the verification key can remain on host and ve
+  validated via TPM.
+
+* sd-event: port to new kernel API epoll_wait2() (new in 5.11), to get more
+  accurate wait timeouts
+
  * sd-boot: define a drop-in dir in the ESP that may contain X.509
    certificates. If the firmware is detected to be in setup mode, automatically
    enroll them as PK/KEK/db, turn off setup mode and proceed. Optionally,
author	Lennart Poettering <lennart@poettering.net>
	Mon, 15 Feb 2021 18:23:05 +0000 (19:23 +0100)
committer	Lennart Poettering <lennart@poettering.net>
	Mon, 15 Feb 2021 18:23:05 +0000 (19:23 +0100)