From be429c8ff6389961537c8ed245f0924164c8d305 Mon Sep 17 00:00:00 2001
From: Lennart Poettering <lennart@poettering.net>
Date: Wed, 7 Sep 2022 18:17:33 +0200
Subject: update TODO

---
 TODO | 11 +++++++++++
 1 file changed, 11 insertions(+)

(limited to 'TODO')

diff --git a/TODO b/TODO
index 8a3861c3e0..84ed31bba9 100644
--- a/TODO
+++ b/TODO
@@ -119,6 +119,17 @@ Features:
 
 * Add support for extra verity configuration options to systemd-reart (FEC, hash type, etc)
 
+* chase_symlinks(): take inspiraton from path_extract_filename() and return
+  O_DIRECTORY if input path contains trailing slash.
+
+* chase_symlinks(): refuse resolution if trailing slash is specified on input, but final node is not a directory
+
+* chase_symlinks(): add new flag that simply refuses all symlink use in a path,
+  then use that for accessing XBOOTLDR/ESP
+
+* document in boot loader spec that symlinks in XBOOTLDR/ESP are not OK even if
+  non-VFAT fs is used.
+
 * measure credentials picked up from SMBIOS to some suitable PCR
 
 * measure GPT and LUKS headers somewhere when we use them (i.e. in
-- 
cgit v1.2.3