Reload rules in live profiler #989
Milestone
Comments
jw3
added a commit
to jw3/fapolicy-analyzer
that referenced
this issue
Jan 22, 2024
Allow rules to be loaded dynamically into a profiling session. This allows for a better test / update cycle while profiling as the profiler does not have to be shutdown to update rules. This also adds a new concept, the "Rule Identity", which provides a sha256 hash of the rule database to allow change monitoring across both profiler and systemd daemon execution. This hash is based on the compiled rules to provide a precise content based hash. Closes ctc-oss#985 Closes ctc-oss#989 # Conflicts: # crates/pyo3/Cargo.toml
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When the profiler is running the current ruleset can be deployed and dynamically reloaded using the piped reload from #877.
This should not perform a full system deployment.
The cleanup from the rule write is free, provided by the normal flow of the profiler shutdown.
The text was updated successfully, but these errors were encountered: