From 11b957b59b24447c8ac20d4fef281f4313510fe1 Mon Sep 17 00:00:00 2001 From: Lennart Poettering Date: Fri, 8 Apr 2022 22:23:11 +0200 Subject: [PATCH] update TODO --- TODO | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) diff --git a/TODO b/TODO index 99fbb3e062..b7080a47e1 100644 --- a/TODO +++ b/TODO @@ -92,12 +92,14 @@ Features: machine id, root pw, rootfs uuid, resume partition uuid, and place next to EFI kernel, for sd-stub to pick them up. These creds should be locked to the TPM, and bind to the right PCR the kernel is measured to. + - kernel-install should be able to pick up initrd sysexts automatically and + place them next to EFI kernel, for sd-stub to pick them up. - systemd-fstab-generator should look for rootfs device to mount in creds - pid 1 should look for machine ID in creds - systemd-resume-generator should look for resume partition uuid in creds - - sd-stub: automatically pick up microcode from ESP (/loader/microcode/*) and synthesize initrd from - it, and measure it. Signing is not necessary, as microcode does that on its - own. Pass as first initrd to kernel. + - sd-stub: automatically pick up microcode from ESP (/loader/microcode/*) + and synthesize initrd from it, and measure it. Signing is not necessary, as + microcode does that on its own. Pass as first initrd to kernel. - systemd-creds should have a fallback logic that uses neither TPM nor the system key in /var for encryption and instead some fixed key. This should be opt in (since it provides no security properties) but be used by @@ -342,7 +344,8 @@ Features: credential logic and drops them into /run where nss-systemd can pick them up, similar to /run/host/userdb/. Usecase: drop a root user JSON record there, and use it in the initrd to log in as root with locally selected password, - for debugging purposes. + for debugging purposes. Other usecase: boot into qemu with regular user + mounted from host. maybe put this in systemd-user-sessions.service? * drop dependency on libcap, replace by direct syscalls based on CapabilityQuintet we already have. (This likely allows us drop drop libcap