mirror of
https://github.com/systemd/systemd
synced 2025-09-28 16:24:45 +02:00
Compare commits
No commits in common. "fafe447dcdf13a61ef262f16015130b21453ef6a" and "11c58b6774134fc06fb833ea1720fc0f5ca73453" have entirely different histories.
fafe447dcd
...
11c58b6774
7
TODO
7
TODO
@ -1633,6 +1633,13 @@ Features:
|
|||||||
work for ECDSA keys since their signatures contain a random component, but
|
work for ECDSA keys since their signatures contain a random component, but
|
||||||
will work for RSA and Ed25519 keys.
|
will work for RSA and Ed25519 keys.
|
||||||
|
|
||||||
|
* add tiny service that decrypts encrypted user records passed via initrd
|
||||||
|
credential logic and drops them into /run where nss-systemd can pick them up,
|
||||||
|
similar to /run/host/userdb/. Use case: drop a root user JSON record there,
|
||||||
|
and use it in the initrd to log in as root with locally selected password,
|
||||||
|
for debugging purposes. Other use case: boot into qemu with regular user
|
||||||
|
mounted from host. maybe put this in systemd-user-sessions.service?
|
||||||
|
|
||||||
* drop dependency on libcap, replace by direct syscalls based on
|
* drop dependency on libcap, replace by direct syscalls based on
|
||||||
CapabilityQuintet we already have. (This likely allows us to drop libcap
|
CapabilityQuintet we already have. (This likely allows us to drop libcap
|
||||||
dep in the base OS image)
|
dep in the base OS image)
|
||||||
|
|||||||
@ -530,8 +530,7 @@
|
|||||||
<varname>SigningEngine=</varname>/<option>--signing-engine=</option> or
|
<varname>SigningEngine=</varname>/<option>--signing-engine=</option> or
|
||||||
<varname>SigningProvider=</varname>/<option>--signing-provider=</option> option is used, this may
|
<varname>SigningProvider=</varname>/<option>--signing-provider=</option> option is used, this may
|
||||||
also be an engine or provider specific designation. This option is required by
|
also be an engine or provider specific designation. This option is required by
|
||||||
<varname>SecureBootSigningTool=sbsign</varname>/<option>--signtool=sbsign</option> and
|
<varname>SecureBootSigningTool=sbsign</varname>/<option>--signtool=sbsign</option>. </para>
|
||||||
<varname>SecureBootSigningTool=systemd-sbsign</varname>/<option>--signtool=systemd-sbsign</option>. </para>
|
|
||||||
|
|
||||||
<xi:include href="version-info.xml" xpointer="v253"/></listitem>
|
<xi:include href="version-info.xml" xpointer="v253"/></listitem>
|
||||||
</varlistentry>
|
</varlistentry>
|
||||||
@ -544,8 +543,7 @@
|
|||||||
<varname>SigningEngine=</varname>/<option>--signing-engine=</option> or
|
<varname>SigningEngine=</varname>/<option>--signing-engine=</option> or
|
||||||
<varname>SigningProvider=</varname>/<option>--signing-provider=</option> option is used, this may
|
<varname>SigningProvider=</varname>/<option>--signing-provider=</option> option is used, this may
|
||||||
also be an engine or provider specific designation. This option is required by
|
also be an engine or provider specific designation. This option is required by
|
||||||
<varname>SecureBootSigningTool=sbsign</varname>/<option>--signtool=sbsign</option> and
|
<varname>SecureBootSigningTool=sbsign</varname>/<option>--signtool=sbsign</option>. </para>
|
||||||
<varname>SecureBootSigningTool=systemd-sbsign</varname>/<option>--signtool=systemd-sbsign</option>. </para>
|
|
||||||
|
|
||||||
<xi:include href="version-info.xml" xpointer="v253"/></listitem>
|
<xi:include href="version-info.xml" xpointer="v253"/></listitem>
|
||||||
</varlistentry>
|
</varlistentry>
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user