shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-03-21 02:50:18 +03:00
Code

update TODO

Browse Source
This commit is contained in:
Lennart Poettering 2025-03-11 17:19:25 +01:00
parent 536c18e5c3
commit 338553715b
1 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
TODO
View File

@ -130,6 +130,21 @@ Deprecations and removals:
Features:
* pcrextend: when we fail to measure, reboot the system (at least optionally).
important because certain measurements are supposed to "destroy" tpm object
access.
* pcrextend: after measuring get an immediate quote from the TPM, and validate
it. if it doesn't check out, i.e. the measurement we made doesn't appear in
the PCR then also reboot.
* cryptsetup: add boolean for disabling use of any password/recovery key slots.
* dissect: when mounting a file system, look into certain xattrs on / in them, and
if that exists, check if gpt partition flags + type uuid + uuid match the
data encoded therein, so that attackers cannot make us misuse our file
systems
* complete varlink introspection comments:
- io.systemd.BootControl
- io.systemd.Hostname