diff options
| author | Lennart Poettering <lennart@poettering.net> | 2018-03-29 17:47:03 +0200 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2018-04-03 15:22:25 +0200 |
| commit | 53c70a270662eef86f5a37ccacfbb3f9f779436a (patch) | |
| tree | 41bd102cd048530954d4718cdbcdd35e2dd21b19 | |
| parent | 2ef5de1bd95cbcdab7efb6c3a35871c8a2786894 (diff) | |
| download | systemd-53c70a270662eef86f5a37ccacfbb3f9f779436a.tar.gz | |
update TODO
| -rw-r--r-- | TODO | 22 |
1 files changed, 22 insertions, 0 deletions
@@ -24,6 +24,28 @@ Janitorial Clean-ups: Features: +* list the exit codes from the BSD/glibc <sysexits.h> in our own + exit-codes.[ch] tables. + +* introduce Ephemeral= unit file switch, that creates an ephemeral copy of all + files and directories that are left writable for a unit, and which are + removed after the unit goes down again. A bit like --ephemeral for + systemd-nspawn but for system services. If used together with RootImage= this + should reflink the image file itself. + + Related: add Ephemeral=<path1> <path2> … which would allow marking + specific paths only like this. + +* when RootImage= is used, mark the loopback device read-only if the other + settings permit it (i.e. if ProtectSystem=strict is set, and no directory if + the image is writable) + +* add CopyFile= or so as unit file setting that may be used to copy files or + directory trees from the host to te services RootImage= and RootDirectory= + environment. Which we can use for /etc/machine-id and in particular + /etc/resolv.conf. Should be smart and do something useful on read-only + images, for example fallback to read-only bind mounting the file instead. + * nspawn's console TTY should be allocated from within the container, not mounted in from the outside |