mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-08-22 10:07:12 +00:00
Code Issues Releases Wiki Activity

Update WorkItems

John Johansen 2019-10-16 09:37:39 +00:00
parent 6bd7b65f97
commit 35dced2f21
1 changed files with 19 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
WorkItems.md

@ -299,22 +299,7 @@ Most work items cover more than one section of the stack, however there are seve
# expanded wi # expanded wi
## Prompting # Prompting
- [ ] kernel: prompting <br>_requires:
- [ ] interface file
- [ ] ioctl interface control
- [ ] ioctl uapi api
- [ ] ns wait queue for tasks waiting on event
- [ ] ns wait queue for tasks waiting on reply
- [ ] prompt rule qualifiers _requires: extended permissions, profile prompt flag_
- [ ] ???
- [ ] unpack
- [ ] abi support flag
- policy unpack
- prompt (dendencies: extended permissions, profile flags, kernel: audit rework, o
-
- audit rework - audit rework
- lib update to handle - lib update to handle
@ -341,11 +326,27 @@ graph TB
KernelWork --> KernelBuffer[Buffer Rework] KernelWork --> KernelBuffer[Buffer Rework]
KernelWork --> ObjectDelegationBase[Internal Object Delegation] KernelWork --> ObjectDelegationBase[Internal Object Delegation]
KernelWork --> TypeCache[Type Cache] KernelWork --> TypeCache[Type Cache]
KernelWork --> kernelInterface[kernel interface]
KernelWork --> ioctluapi[ioctl uapi]
KernelWork --> fdqueue[fd interface queues]
KernelWork --> taskqueue[task queues]
Prompting --> UserAPI[libapparmor API]
UserAPI --> ioctluapi
UserAPI --> kernelInterface
Prompting --> NotifyPolicy[Notification Policy]
NotifyPolicy --> KernNotifPolicy[Kernel check notify policy]
NotifyPolicy --> ParserNotifyPolicy[Parser support Notify policy]
NotifyPolicy --> UtilsNotifyPolicy[Utils support Notify policy]
NotifyPolicy --> LibNotifyPolicy[Library parse notification audit]
UtilsNotifyPolicy --> LibNotifyPolicy
UtilsNotifyPolicy --> ParserNotifyPolicy
TypeCache --> ObjType[Object Type]
ObjType -> PermRemap[permission remap]
KernelWork --> AuditRework[Rework AppArmor Audit] KernelWork --> AuditRework[Rework AppArmor Audit]
ObjectDelegationBase --> TypeCache ObjectDelegationBase --> TypeCache
ObjectDelegationBase --> LabelIt[Split Label Iterator] ObjectDelegationBase --> LabelIt[Split Label Iterator]
RulePrefixes --> ExtendedPerms[extended permissions] RulePrefixes --> ExtendedPerms[extended permissions]
ExtendedPerms --> PermRemap[permission remap] ExtendedPerms --> PermRemap
ExtendedPerms --> PrefixKernel[Kernel prefix support] ExtendedPerms --> PrefixKernel[Kernel prefix support]
ExtendedPerms --> PrefixPolicy[Prefix Support in policy] ExtendedPerms --> PrefixPolicy[Prefix Support in policy]
ExtendedPerms --> PermsUnpack[Kernel Unpack extended perms] ExtendedPerms --> PermsUnpack[Kernel Unpack extended perms]
@ -360,7 +361,7 @@ end
## kernel: policy blob compression `(DONE)` # kernel: policy blob compression `(DONE)`
- dependencies: none - dependencies: none
- description: improve kernel memory usage by compressing the policy blobs which are used for dedup and check point and restore. - description: improve kernel memory usage by compressing the policy blobs which are used for dedup and check point and restore.
- kernel: make transparent to userspace - kernel: make transparent to userspace