diff options
author | Lennart Poettering <lennart@poettering.net> | 2022-10-20 23:07:47 +0200 |
---|---|---|
committer | Lennart Poettering <lennart@poettering.net> | 2022-10-25 17:46:18 +0200 |
commit | 0cdb1a2fa3d51efb73a5f77b37c751c0af6160a3 (patch) | |
tree | 402736d1de9a8ab37a8e2745b1172625103852a3 /TODO | |
parent | bb6a971cca89c9859638dd6d5c3dd13a835c8aa9 (diff) | |
download | systemd-0cdb1a2fa3d51efb73a5f77b37c751c0af6160a3.tar.gz |
update TODO
Diffstat (limited to 'TODO')
-rw-r--r-- | TODO | 22 |
1 files changed, 22 insertions, 0 deletions
@@ -119,6 +119,28 @@ Deprecations and removals: Features: +* bpf: see if we can use BPF to solve the syslog message cgroup source problem: + one idea would be to patch source sockaddr of all AF_UNIX/SOCK_DGRAM to + implicitly contain the source cgroup id. Another idea would be to patch + sendto()/connect()/sendmsg() sockaddr on-the-fly to use a different target + sockaddr. + +* bpf: see if we can address opportunistic inode sharing of immutable fs images + with BPF. i.e. if bpf gives us power to hook into openat() and return a + different inode than is requested for which we however it has same contents + then we can use that to implement opportunistic inode sharing among DDIs: + make all DDIs ship xattr on all reg files with a SHA256 hash. Then, also + dictate that DDIs should come with a top-level subdir where all reg files are + linked into by their SHA256 sum. Then, whenever an inode is opened with the + xattr set, check bpf table to find dirs with hashes for other prior DDIs and + try to use inode from there. + +* dissect too: add --with switch that will invoke a command with the image + mounted, and as current working directory. Terminate once done. + +* extend the verity signature partition to permit multiple signatures for the + same root hash, so that people can sign a single image with multiple keys. + * consider adding a new partition type, just for /opt/ for usage in system extensions |