File falco-libs.changes of Package falco-libs
-------------------------------------------------------------------
Wed May 29 21:27:30 UTC 2024 - opensuse_buildservice@ojkastl.de
- Update to version 0.17.1:
* new(userspace/libsinsp): support lxc 4.0 cgroup layout.
* fix(userspace/libsinsp): fixed possible buffer overflow in `sinsp_plugin::get_metrics`.
* fix(test/e2e): pin python requests version
* fix(libsinsp_e2e): increase tcp_client_server* tests stability
* fix(modern_bpf): address review comments
* fix(bpf): address review comments
* fix(libsinsp_e2e): increase tcp_client_server test stability
* fix(bpf): fix missing definitions
* fix(modern_bpf): define the compat timespec in struct flavors
* fix(bpf): use CONFIG_COMPAT to exclude ia32 calls
* refactor(modern_bpf): split iovec helper in 32/64 bit variants
* cleanup(modern_bpf,bpf): use already defined struct
* cleanup(bpf): rename 32/64bit bpf helpers
* fix(libsinsp_e2e): remove flaky test
* fix(modern_bpf): read MAX_UNIX_SOCKET_PATH from sockaddr
* refactor(bpf): split bpf_parse_readv_writev_bufs even more
* refactor(bpf): split ia32 bpf_parse_readv_writev_bufs helper
* fix(bpf): fix bpf on aarch64
* cleanup(bpf): hide ia32 login in helper function
* cleanup(bpf): remove useless ifdefs
* fix(bpf): cast incompatibile pointer
* fix(ci): workaround to avoid random failures of asan
* fix(libsinsp_e2e): add retry to subprocess class
* fix(modern_bpf): avoid overflow reading sockaddr_storage
* fix(libsinsp_e2e): dump only necessary events
* update(e2e_ci): bump actions
* fix(bpf,modern_bpf): better 32bit support preadv/pwritev family
* new(libsinsp_e2e): new misc tests
* fix(bpf): better timespec support for ia32
* fix(driver/bpf): fixed old bpf probe with clang-18.
* fix(driver/configure): properly pass `CC` variable as make argument.
* test(drivers): add some tests for ia32 syscalls
* cleanup(modern): avoid to use an array with just one element
* cleanup(modern): clear all arrays before using them
* test(userspace/libsinsp): cover field type / operator compatibility grid
* fix(userspace/libsinsp): support comparisons with double fields
* chore(userspace/libsinsp): remove useless ASSERTs from filter_compare
* fix(userspace/libsinsp): check operator compatibility with list field types
* fix(userspace/libsinsp): solve cross-platform compilation issues
* refactor(userspace/libsinsp): isolate filter comparison primitives and check compatibility in filter compiler
* refactor(userspace/libsinsp): split filter comparing functions in their own source file (2)
* refactor(userspace/libsinsp): split filter comparing functions in their own source file (1)
* new(tests): plugin metrics tests
* new(libsinsp): plugin metric to sinsp metric conversion
* new(plugin_api): add plugin metrics symbols and types
* update: address review comments
* update(userspace/libsinsp): support array-like types as state fields in thread infos, compatible with plugin API
* refactor(userspace/libsinsp): expose file descriptors as state subtable fields compatible with plugins
* fix(test/drivers): properly account for pagesize that can differ from 4096 on execve related tests.
* fix(driver): unify behavior of kmod and old bpf probe to the new one when reading clone3 clone_args.
* chore(ci): ssh-action already creates temp folder for us.
* chore(ci): fetch test exit code and use it to return an error if needed.
* update(ci): bump command_timeout to 60minutes.
* chore(ci): do not stop at first error.
* chore(docs): ppc64le is now stable.
* new(ci): add a test-drivers-ppc64le workflow.
* chore(userspace/libsinsp): disable flaky test on arm64.
* refactor(userspace/libsinsp): support subtable state field type and adapt to new plugin API
* update(userspace/plugin): support subtable state field type and bump API version
* new(libsinsp): async event queue capacity setter
* fix: use `vtid` instead of `vpid`
* fix(modern): add some safety checks on struct* file
* new(modern): add `likely` `unlikely` definitions
* cleanup(modern): remove no more needed macro definition
* fix(sinsp): remove wrong unix parsing logic
* fix(libsinsp): use current formatting option in bytebuf
* fix(libsinsp): make sure formatted bytebuf doesn't contain irregular characters
* update(sinsp_cgroup): add with_self_cg to the ctors
* update(sinsp_cgroup): expose self_v2
* update(sinsp_cgroup): expose in_cgroupns
* chore(test/e2e): redirect stderr to stdout.
* new(test): add a test for a bind with unix socket
* chore: limit MIN/MAX macros to plain C
* fix(ci): fixed drivers_ci `if` condition for kernel headers install steps.
* chore(ci): use `get-kernel-sources` master sha.
* cleanup(libsinsp): remove unused member from threadinfo
* chore(userspace/libsinsp): better check leveraging `query_os_for_missing_info`.
* chore(userspace/libsinsp): properly manage `podman` container type.
* fix(userspace/libsinsp): enable podman container engine when running in capture mode.
* fix(userspace/libsinsp): solve a bunch of bugs in the filter checks area
* wip
* wip
* fix(build): remove more occurrences of the OUT macro
* fix(build): remove OUT references in the modern bpf engine
* chore(docs): replace IN and OUT macros with docs
* cleanup: use a unique macro `TRY_SYSCALL`
* new: tests check vdso syscall on 64 bits
* tests: add support for ia32 vdso syscalls
* test(libsinsp): cover new changes in output formatters
* update(libsinsp): support field transformers in output formatters
* update: apply review suggestions
* fix(userspace/libsinsp): solve cases of unsafe string_view access
* fix(userspace/libsinsp): consistently check storage size when parsing value string
* refactor(userspace/libsinsp): optimize allocations of filter checks
* fix(libpman): manage discarded events
* Bump SCHEMA_VERSION
* Fix 'mmap' and 'mmap2' system calls parsing so that they can be filtered using the fd parameter
* fix: fix typedef definition and rename
* cleanup: split stats between userspace and kernel
* new(scap_open): introduce new stats in scap_open
* chore(ci): updated release-body semver_no_meta regex.
* cleanup(ci): removed old release-body-libs workflow and renamed release-body-driver.
* cleanup(ci): merge release-body workflows.
* refactor(userspace/libsinsp): minor changes in state API, expose new threadinfo fields
* test(libsinsp): cover new changes in filter compiler and existing visitors
* update(libsinsp): support new filter grammar in compiler and existing visitors
* test(libsinsp/filter): cover latest updates to filtering grammar and parser
* refactor(libsinsp/filter): update filtering grammar and parser to support transformers and field-to-field checks
* refactor: use C++ std lib for sinsp::get_file_size
* refactor: unique_ptr to arrays
* fix(userspace/libsinsp): remove bad ASSERTs
* refactor: smart pointer usage
* fix(libsinsp): avoid unintented copies
* fix(userspace/libsinsp): make sure simple sinsp wrapper methods are inlined
* refactor: minor change in for loops
* refactor: Use string_view in event filters and more
* chore(libsinsp): apply review suggestions
* fix(userspace/libsinsp): solve link issues in libsinsp tests
* test(libsinsp): add coverage for filterchecks and new use cases involving transformers and rhs fields
* update(libsinsp): support transformers and rhs fields in filterchecks
* update(libsinsp): add internal flags for controlling field compatibility with transformers
* fix(ci): fixed release-body-driver workflow.
* Use config check to enable memfd related processing (#550)
* fix(scap): set a null terminator when we collect args from /proc
* fix(userspace/libsinsp): properly set successful lookup state when parsing old container json events.
* fix(libscap): send a consistent length when reading scap files
* chore(userspace/libsinsp): use `strnlen` to be safer.
* fix(userspace/libsinsp): properly use `strlen` instead of `sizeof` when assigning user/group string infos.
* cleanup(libscap): Allow retries after encountering SCAP_EOF
* cleanup(libsinsp): throw exception for invalid parsed string vectors
* fix(test/drivers): disable some checks in clone/fork related tests on ppc64, where a pagefault happens.
* fix(test/drivers): fixed sendmsgX_fail and socketcall_sendmsgX_fail tests.
* fix(test/drivers): only assert `dev` parameter on ext4 FS.
* fix(test/drivers): fixed `sendmsgX_fail` and `socketcallX_sendmsg_fail` tests.
* fix(driver/modern_bpf): fixed missing_definitions for powerpc64le.
* fix(driver): handle null pointer cases
* test(drivers): add some tests for `args` and `envs`
* fix(driver/kmod): avoid dropping events in case of page faults
* fix(driver/modern): add always a null terminator after `args`
* fix(driver/modern): send `\0` in case of empty strings
* fix(e2e_ci): always update apt index
* Update userspace/libscap/engine/gvisor/parsers.cpp
* update ifdef to ifndef
* add loongarch64 support (driver)
* Split user info
* fix(driver/modern_bpf): address task_struct has no embedded thread_info
* fix(userspace/libsinsp): fixed multiple wrong variadic arguments.
* new(userspace/libsinsp): check usage of wrong-sized variadic arguments in sinsp tests.
* fix(libscap): handle NULL scap handle pointer
* chore(libsinsp_e2e): disable test on the source
* fix(libsinsp_e2e): disable flaky sys_call_test.forking_clone_fs e2e test
* fix(userspace/libsinsp): fixed multiple proc related tests variadic arguments types.
* refactor(userspace/libsinsp): improve performance of endswith filter operator
* tests: fix some CI tests
* update(tests): add a test on `uid` fields
* fix(sinsp): remove an extra " "
* new(tests): add a test for unix sockets
* style(modern_bpf): reword a comment
* cleanup(userspace/libsinsp): improved sinsp metrics_collector to make it more future proof.
* new(libsinsp): data structure for filter field transformers
* test(libsinsp): add coverage for filter transformers
* chore(driver/bpf): add a warning and use elif.
* docs(driver/bpf): minimum kernel release ver for bpf for ppc64le is 5.1.
* fix(container_engine): explicitely set lookup state for all engines
* update(tests): define explicit SUCESSFUL container lookup status
* feat(libsinsp/container_info): change default / init lookup state to FAILED
* refactor(libsinsp): better clarify filtercheck subclass extracting only one value
* update(userspace/libsinsp): enhance `proc.exe` inline doc
* update(userspace/libsinsp): enhance `proc.exepath` inline doc
* fix(libsinsp_e2e): force changes to disk
* chore(libsinsp_e2e): added log on failure
* fix(driver/bpf): always fill exe on proc_startupdate
* fix(e2e_ci): rebuild drivers on the test step
* fix(libsinsp_e2e): print error on init failed
* fix(libsinsp_e2e): improve multiarch compatibility
* fix(libsinsp): fix misalinged access
* chore(libsinsp_e2e): improve test stability
* new(libsinsp): add api for clean suppress comms and tids
* new(libsinsp_e2e): add failing_execve tests
* new(libsinsp_e2e): add getsetresuid_and_gid test
* new(libsinsp_e2e): add poll/ppoll timeout tests
* new(libsinsp_e2e): add suppress events tests
* chore: remove chisel leftovers
* chore(README): remove chisels leftover
* refactor!(chisels): deprecate chisels
* refactor(libsinsp_e2e): address review comments
* fix(driver/modern_bpf): simplify apply_dynamic_snaplen func
* chore(driver/modern_bpf): rename enum
* fix(driver/modern_bpf): check sendmsg msghar for null
* fix(driver/modern_bpf): correctly set dynamic snaplen with sendto and sendmsg syscalls
* new(libsinsp_e2e): add statsd e2e tests
* fix: remove some wrong asserts
* fix(cmake/modules/re2): use sed compatible syntax w/ macos
* chore(userspace/libsinsp): apply review suggestions
* test(libsinsp): add cases for output formatters
* update(libsinsp/test): minor cleanups in sinsp filter tests
* fix(libsinsp_e2e): make forking_clone_fs more reliable
* fix(cmake/modules/re2): fix configure issue on cmake >=3.29.1
* new(scap-open): collect the average dimension of events
* fix(tests/gvisor): fix build and sanitizer exec in gvisor parser tests
* fix(userspace/libsinsp): solve formatts being cropped with fd.types
* fix(gvisor): fix duplicated args
* new(libsinsp_e2e_tests): add forking and net tests
* fix(libsinsp/test): exclude other platforms from new tests
* cleanup(libsinsp/tests): move logger reset in SetUp
* new(libsinsp/test): new unit tests for logger
* update(build): update libcurl to 8.7.1
* chore(driver): bump schema version
* fix(modern_bpf): recvmsg filler sending empty addres for udp connections
* chore(.github): new heuristics for API_VERSION checks
* chore(.github): add fillers in SCHEMA_VERSION checks
* fix(driver/bpf): honor CLANG and LLC from the env
* fix(test): expect a non-null tuple in recvfrom syscall
* fix(driver): avoid sending a null tuple in recvfrom
* cleanup(driver/bpf): use _READ_USER helper
* fix(driver/bpf): report correct args of getresuid syscall
* new(libsinsp_e2e): add fs, process and threadinfo tests
* fix(build): use ENABLE_COVERAGE for coverage, fix segfault
* chore(driver): bump API_VERSION by 0.0.1
* fix(fillers): do not ASSERT on an invalid fcntl
* fix(fillers): do not ASSERT on an invalid shutdown flag
* fix(fillers): do not check for SHUT_RD as a cpp macro
* fix(fillers): use the proper PPM_SHUT_* constants
* fix(driver/modern_bpf): avoid type confusion setting snaplen
* fix(driver): avoid mixed declarations
* chore(driver): adopt consistent approach in fd casting for dup syscalls
* fix(kmod): fix signedness on fd of dup syscalls
* fix(libsinsp_e2e): more robust container tests
* fix(libsinsp_e2e): actually stop capture
* fix(libsinsp_e2e): remove flaky get_n_tracepoint_hit_smoke
* fix(libsinsp_e2e): make sys_call_tests more reliable
* refactor(libsinsp_e2e): use singleton for inspector to avoid UAF
* cleanup(libsinsp_e2e): sys_call_test.cpp cleanup
* fix(libsinsp_e2e): paths tests cleanup
* fix(libsinsp_e2e): stop dropping mode after test
* refactor(libsinsp_e2e): create inspector only once
* chore(libsinsp_e2e): reorder callbacks
* new(tests): add new path e2e tests
* fix(libsinsp): remove misaligned access
* new(test): add execve failure test with empty argument
* fix(driver/bpf): not sending all arguments on execve fail
* new(ci): add sccache support
* chore(ci): cache libsinsp e2e builds
* chore(test/libsinsp_e2e): build only necessary tests
* chore(ci): better e2e libsinsp naming
* fix(libsinsp): parse dev and inode in all open-family events
* chore(driver): bump schema version
* new(tests): expect more params in open syscalls test
* new(driver): collect dev and ino in open_by_handle_at syscall
* new(driver): collect dev and ino in openat2 syscall
* Revert "update(sinsp): implement suppressed tid cache in sinsp_suppress"
* fix(userspace/libscap): fix memleak in scap-open example when killed by signal handler.
* fix(userspace/libsinsp): avoid possible UB unaligned access.
* chore(test/libsinsp_e2e): added a `sendmsg_recvmsg_SCM_RIGHTS` test to cover the issue.
* fix(userspace/libsinsp): fix a possible source of use-after-free.
* fix(ci): fixed recent asan-related CI issues.
* chore(test/libsisnp_e2e): use an unique_ptr for m_inspector.
* fix(libpman): fix compilation issue with -Werror
* fix(driver/bpf): KBUILD_CPPFLAGS
* fix(driver): CC variable for debian
* refactor(e2e): add docker helper class
* fix(tests): move container_image_splitting tests to ut
* chore(libsinsp_e2e): move container tests in separated folder
* fix(libsinsp_e2e): use _exit(0)
* fix(libsinsp_e2e): fix unfreed memory
* new(libsinsp_e2e): add container+thread state to cmake
* new(libsinsp_e2e): add thread state tests
* new(libsinsp_e2e): add container tests
* chore(ci): enable chisels on win32 build
* fix: missing cstdint include to fix build on Alpine
* cleanup(metrics): apply reviewers suggestions
* cleanup(metrics): code deduplication and simplification
* chore: use cerr information prints in metrics unit tests
* cleanup(libsinsp/metrics): apply reviewers suggestions
* cleanup(libsinsp/metrics): apply reviewers suggestions + cleanup
* new(libsinsp/metrics): implement Prometheus convert_metric_to_unit_convention
* chore: adopt new get thread_manager style in metrics
* cleanup(libsinsp/metrics_collector): const correction
* refactor!(libsinsp/metrics): new metrics_converter subclasses complementing metrics_collector
* cleanup(libsinp): improve prometheus format conversion correctness
* chore: revert some changes to get_sinsp_stats_v2
* refactor(libsinsp): convert_metric_to_prom_text follow some best practices
* update: introduce new rule counters metrics category macro
* cleanup(libsinsp): expand convert_metric_to_prometheus_text
* cleanup(libsinsp): metrics text - pass by string_view
* cleanup(libsinsp): apply reviewers suggestions
* new(libsinsp): add convert_metric_to_prometheus_text to metrics_collector
* cleanup(libsinsp): improve code clarity and adopt best practices
* refactor(libsinsp): native memory conversion in metrics_v2
* refactor: naming change stats -> metrics if applicable + complete metrics_v2 schema updates
* refactor(libsinsp): new light weight metrics_collector class
* update(scap): update scap_stats_v2 schema
* chore(test/drivers): some small fixes for file_opener and a couple of tests.
* fix(test/drivers): fix ENOSYS check and test skipping.
* chore(driver/bpf): move `BPF_PROBE` macro definitions to types.h.
* fix(driver/bpf): fix configure modules installation for bpf.
* new(driver/bpf): added bpf configure system similar to the kmod one.
* fix(libsinsp): avoid setting a null event pointer when returning SCAP_EOF in sinsp::next
* chore(driver): pass also `CC` env variable if set.
* fix(driver): properly pass KBUILD_MODPOST_WARN env variable to configure makefiles if set.
* fix(plugins): make list_fields return a const pointer
* fix(test/drivers): fix concurrency issue
* fix(userspace/libsinsp): field lists are hidden by mistake
* chore(driver): bump driver schema version
* fix(libsinsp): ignore equal fds from sockepair syscall
* fix(bpf,modern_bpf): fix wrong return value state
* update(SCHEMA_VERSION): bump SCHEMA_VERSION by 0.0.1
* fix(schema): use finit_module_flags for finit_module flags param
* fix(schema): use pidfd_open_flags for pidfd_open flags param
* fix(schema): change pidfd_getfd flags param to PT_UINT32
* fix(schema): use file_flags as signalfd4 flags
* fix(schema): change inotify_init flags param to PT_UINT8
* fix(schema): change timerfd_create flags param to PT_UINT8
* fix(schema): change signalfd flags param to PT_UINT8
* fix(schema): change eventfd flags param to PT_UINT32
* fix(schema): make mlock2 flags a PT_FLAGS32
* fix(schema): fix typo in BPF_OBJ_PIN
* chore: polish order and comments in CRI restructure refactor one more time
* chore: polish naming and comments in CRI restructure refactor
* cleanup(libsinsp): add fallback to sandbox container in k8s filterchecks
* fix(cri): adjust some checks
* refactor(cri): restructure parsing of the pod sandbox container itself
* refactor(cri): restructure ContainerStatusResponse parsing
* refactor(libsinsp/cri): consolidate PodSandboxStatusResponse parsing
* fix(driver): properly use DRIVER_KMOD_COMPONENT_NAME when installing kmod configure modules.
* fix(build): replace {0} zero-init with {}
* fix(libsinsp-ut): avoid use after free
* new(libsinsp/test): add new async_key_value_source tests
* update(ci): use bundled deps in e2e ci
* cleanup(scap/bpf): resolve ubsan warning
* update(ci): enable sanitizers in e2e tests, use new options
* new(build): add flags USE_ASAN, USE_UBSAN, UBSAN_HALT_ON_ERROR
* fix(sinsp): ignore fds without tinfo from scap files
* fix(driver): use configure system to build class_create with a single parameter
* fix(driver): ppm_devnode definition
* fix(driver): KERNELDIR always using current kernel
* fix(driver): use configure to fix build of RHEL8.9 kernels
* chore(configure): make configure output more verbose
* new(driver): kmod configure system
* update(tests): test also delete_module flags parameter
* update(driver): use delete_module flags
* chore: bump num syscalls
* chore: bump schema version to 2.18.0
* test(test/drivers): new test for delete_module syscall
* update(driver): implement delete_module syscall for kmod
* update(driver/bpf): implement delete_module syscall for bpf probe
* update(driver/modern_bpf): implement delete_module syscall for modern bpf
* cleanup(libsinsp): scap_evt cleanups
* fix: Some warnings when compiling with GCC 14
* chore(driver/bpf): build probe from within CMAKE_CURRENT_BINARY_DIR like we do for kmod.
* chore(driver): allow to specify different components for kmod and bpf install.
* fix(test): improve process_vm_readvX failure test
* fix(driver): undefined SPLICE flags
* fix(test): syscall failure with non-null flag in process_vm_readv
* fix(test): expect fd list in poll syscall exit
* fix(driver/kmod): always send fds to userspace in poll/ppoll syscall exit
* cleanup: revert any changes to parse_container_json_evt + ensure existing state updates in lookup_sync are preserved
* fix(cri): properly handle state assignments in new fast-track CRI container sync lookups
* cleanup(cri): cleanup lookup_status handling
* refactor(cri): fast-track add containers to cache (synchronous lookup case)
* fix(userspace/libsinsp): make sure fd table's tid is set
* update(cmake): bumped valijson to latest version.
* fix(driver): use strlcpy when `strscpy` was not available.
* chore(driver): bump API_VERSION patch.
* chore(driver): properly use `strscpy`.
* Silence missing BPF program error
* fix(e2e_ci): use system deps
* fix(test/libsinsp_e2e): fix multiple thread-safety issues in event_capture
* chore(test/drivers): remove unused header
* fix(test/drivers): improved error handling
* chore(test/drivers): add file_opener helper
* fix(test/drivers): wait for process_vm_readv
* fix(test/drivers): add check for name_to_handle_at support
* fix(test/drivers): avoid to use MFD_HUGETLB together with MFD_ALLOW_SEALING
* fix(test/drivers): manually create temp fd when O_TMPFILE is not available
* fix(test/libsinsp_e2e): solve compilation issues
* update(userspace/libsinsp): apply reviews suggestions
* fix(userspace/libsinsp): solve link issues in sinsp-example
* chore(userspace/libsinsp): further minor improvements
* refactor(userspace/libsinsp)!: clear up ownership model of thread manager
* refactor(userspace/libsinsp)!: adopt unique_ptr for heap-allocated class members
* chore(userspace/libsinsp)!: remove unused method
* refactor(userspace/libsinsp)!: adopt unique_ptrs in filters
* refactor(userspace/libsinsp)!: adopt unique_ptrs in filtercheck lists
* refactor(userspace/libsinsp)!: use unique_ptr in filtercheck allocate_new
* cleanup(libsinsp): fix misaligned access to cmsghdr
* fix(tests): fix warning for unshare
* cleanup(libsinsp): remove some more misaligned accesses
* fix(test/libsinsp_e2e): correctly manage cmake deps
* fix(tests): improved error handling with subprocesses
* fix(tests): invoke helper scripts with absolute paths
* fix(test): use builtin parameter type converter
* fix(tests): fix load of misaligned addresses
* fix(ci): exclude quotactl_ok test on arm64
* fix(ci): remove s390x e2e tests
* fix(tests): build test_helper_32 only on x86_64
* fix(tests): use new libsinsp_e2e comm
* fix(ci): change libsinsp_e2e dir
* fix(ci): use correct e2e libsinsp cmake flag
* fix(ci): correctly handle job matrix
* fix(ci): remove typo
* chore(cmake): warning users on usage of libsinsp e2e tests
* chore(tests): document libsinsp e2e tests
* fix(tests): fix minor unshare_ test issues
* fix(tests): use correct directory for captures
* chore(tests): rename new libsinsp_e2e tests
* fix(ci): don't fail fast on libsinsp_e2e
* clenaup(ci): move new e2e tests in another workflow
* feat(ci): add e2e libsinsp tests
* feat(tests): new e2e tests
* cleanup(ci): dropped circleCI.
* fix(tests): add missing bools to sinsp threadinfo
* cleanup: Split class sinsp_with_test_input into hdr + src
* new(gha): enable and enforce UndefinedBehaviorSanitizer
* chore(libsinsp): remove unsused parse_suppresed_types function
* chore(libsinsp): remove unused parse_iso8601_utc_string function
* chore(libsinsp): remove unused find_env funcs
* chore(libsinsp): remove unused function event_name_by_id
* chore(libsinsp): remove unused function
* update(cmake): Use the static CRT on Windows by default
* fix(ci): fixed update-syscalls input.
* fix(libscap): free proclist info upon platform close
* cleanup(libsinsp): populate procinfo event params with scap_event_encode_params
* cleanup(libsinsp): cleaner cast in operand comparison
* cleanup(libsinsp): add default value for container type
* fix(libsinsp): initialize m_exe_... in threadinfo
* new(test): add sendto and sendmg udp connection tests
* fix(modern_bpf): null destination address in sendmsg syscall
* chore(modern_bpf): add more detailed comment
* fix(modern_bpf): null destination address in sendto syscall
* fix(chisel): don't fail if directory doesn't exist
* fix(ci): fixed pages workflow.
* fix(driver): configure newfstatat with UF_ALWAYS_DROP
* fix(userspace/libsinsp): avoid macro redefinition
* update(userspace/libsinp): allocate str buffer only when needed in filters
* fix(userspace/libsinsp): solve evt encoding issues in plugin tests
* refactor(userspace/libsinsp): cleanup filtercheck classes
* fix: Make include paths more precise
* fix: include path in pkg-config files
* fix: include paths when installed
* cleanup(ci): use new kernel-testing provided composite action.
* fix(cmake/modules): correct missing includes for libbpf
* cleanup(libscap): fix unaligned memory reads
* cleanup(libsinsp): cleanup unaligned access in plugin framework+tests
* "Revert: made changes as per review request"
* update: made changes as per review request
* update: use unsigned long
* update: address review requests
* update(bpf): introduce the BPF commands name
* fix(libsinsp): return false on set_config when api symbol is not defined
* new(libsinsp): add return code to plugin set_config
* new(libsinsp): enforce plugin initialization on set_config
* chore(userspace/plugin): bump plugin api version
* chore(userspace/plugin): add plugin_set_config docs
* new(test): add plugin_set_config test
* new(libsinsp): add plugin dynamic reconfiguration
* cleanup(libsinsp): adjust setting max_thread_table_size
* refactor(userspace/libsinsp): modularize parse_check and split into different functions
* refactor(userspace/libsinsp)!: adopt new accessors to use class member fields
* refactor(userspace/libsisp)!: remove VISIBILITY macros and friend classes
* fix(driver): always retrieve the local iov
* fix(test/drivers): write on parent memory
* fix(driver): set appropriate schema version
* fix(test/drivers): wait the right pid
* chore(driver): bump schema version
* fix(driver): don't push redundant size with process_vm syscall
* feat(driver): add support for process_vm syscalls
* chore: remove HAS_CAPTURE define
* update(cmake): Set our preferred Visual C++ runtime the same way everywhere
* cleanup(libsinsp): remove CYGWING_AGENT feature gate
* fix(userspace/libsinsp): fix some warnings and failed assertions in debug mode
* fix(userspace/libsinsp): link issue in shared lib build
* fix(userspace/libsinsp): solve comparison issues
* chore(userspace/libsinsp): avoid ambiguities on compare functions
* fix(userspace/libsinsp): prevent filter outputting from overwriting comparison values
* refactor(userspace/libsinsp): cleanup filter and checks interfaces
* refactor(userspace/libsinsp)!: drop gen_event filter interfaces
* update(driver): update syscalls tables and driver report.
* fix(modern_bpf): consider arg len = MAX_PROC_ARG_ENV edge case
* fix(modern_bpf): fix args/env retrival in case of large args/env
* fix(userspace/libsinsp/test): put a bound to threat table max size test
* chore(userspace/libsinsp/test): reduce duration of mpsc queue test
* fix(userspace/libsinsp/test): avoid deadlocks in mpsc queue tests
* chore(ci): bumped rn2md to latest master.
* update(ci): allow libelf testing for musl
* new(build): allow building with dynamic libelf
* docs(sinsp): avoid `<>` in filter checks description
* docs(sinsp): fix description for k8s fields
* chore(tests): pin event-generator 0.10.2.
* fix(test/e2e): fixed event-generator cmdline arguments.
* fix(userspace/libsinsp): restore windows build
* fix(userspace/libsinsp): solve compilation issues with ifinfo tests
* refactor(userspace/libsinsp): move ifinfo tests under test dir and run it
* fix(modern_bpf): define MAP_RENAME only on powerpc
* fix(modern_bpf): fix wrong sign when getting quotactl cmd arg
* fix(libsinsp): check on requested severity
* chore(libsinsp/test): remove some more relative includes leftovers
* chore(ci): reorganize semgrep files
* fix: remove some relative paths leftovers
* feat(ci): add checks for relative include paths
* fix: Clang warning pessimizing move
* new(libsinsp): fallback to plugin name when logging component is null
* chore(userspace/plugin): improved docs in plugin api
* update(userspace/plugin): bump plugin API version
* new(libsinsp): add unit test for plugin logging
* refactor(libsinsp): better plugin logging function naming
* chore(libsinsp): add more detailed docs to plugin_api
* new(libsinsp): add component string to plugin log function
* new(libsinsp): add logging to plugin examples
* fix(libsinsp): use const char pointers in plugin_api
* feat(libsinsp): add logging capabilities to plugin api
* fix(userspace/libsinsp): revert to old `concatenate_paths` helper function for perf reasons.
* fix(userspace/libsinsp): solve segfault when formatting string views
* fix(userspace/libsinsp): solve init data races in logger
* chore(cmake): move kmod/bpf options under linux
* feat(cmake): selectively disable bpf and kmod engines
* fix(driver/bpf): decrease limits to support some GKE env
* fix(driver): fix another potential deadlock
* fix(driver): fix potential deadlock
* fix(userspace/libpman): only add ProbeSkeleton dep if ProbeSkeleton is a target.
* new(ci): added drivers_ci job to test external modern_bpf skeleton scap-open build (like kernel tests and Falco do).
* refactor(userspace/libsinsp)!: access file descriptor tables through apis
* refactor(userspace/libsinsp)!: file descriptor management
* chore(driver): add comment about flag definition
* chore(driver): remove unnecessary comments
* fix: indentation issues
* chore(driver): bump schema version
* fix(driver): don't send buffer pointer to userspace
* feat(driver): add support for newfstatat syscall
* clenup(userspace/libsinsp): remove unused filter compiler flag
* refactor(userspae/libsinsp): api methods for controlling automatic routines
* refactor(userspace/libsinsp): cleanup chisel metrics
* refactor(userspace/libsinsp): deprecate unused legacy SIMULATE_DROP_MODE flag
* cleanup(userspace/libsinsp): remove unused defines
* chore(userspace/libsinsp): remove useless ifdefs
* refactor(userspace/libsinsp): make tid collision a property of the observer
* cleanup: Modernize C++ struct/enum/union declarations
* fix(libscap): restore configurable cmake variables
* fix(test/libscap): remove libs relative imports
* fix(cmake): include correct directories in pkg-config
* refactor(driver): remove libs relative include paths
* refactor(test): remove libs relative include paths
* refactor(chisel): remove libs relative include paths
* refactor(libpman): remove libs relative include paths
* refactor(plugin): remove libs relative include paths
* refactor(libsinsp): remove libs relative include paths
* refactor(libscap): remove libs relative include paths
* refactor(cmake): remove libs relative include paths
* build: Make a few more functions const
* refactor: Add some const-correctness
* chore(ci): properly use actuated helper action to install arm64 headers.
* fix(libsinsp): set glob_match to be case insensitve by default
* new(libsinsp): add iglob operator
* build: Improve scap-engine-noop dependency
* cleanup(libsinsp): use string_view in user/group functions
* cleanup(libsinsp): use string instead of character buffer
* fix(libsinsp): use std::string in add_filename(_raw)
* cleanup(libsinsp): use native comparison operators for string_view
* cleanup(libsinsp): use string_view in parse_dirfd
* fix(pman): missing probe skeleton header file
* fix(libsinsp): address more review comments
* refactor(libsinsp): use smart pointers for cri_settings
* chore(test): add test for cri_settings
* refactor(libsinsp): move cri settings in another file
* refactor(libsinsp): use static global instead of static local instance
* refactor(libsinsp): make cri::settings funcs static
* refactor(libsinsp): remove extern cri vars
* fix(libsinsp): avoid double dumping containers and users
* fix(libsinsp): properly cleanup sinsp_cycledumper
* fix: address review comments
* refactor(libsinsp): use ONE_SECOND_IN_NS macro
* refactor(libsinsp): use smart pointers
* refactor(libsinsp): use smart pointer consistently
* refactor: replace cyclewriter with sinsp_cycledumper
* fix(driver): add preprocessor guards for oldest 2.6.32 kernels
* Fix another Lua version issue on CI
* Fix a missing update of deprecated libLua functions
* Use liblua5.2 for CI builds
* chore: Use modern Lua functions in chisels
* cleanup(gvisor): lint (indentation)
* cleanup(gvisor): use scap_gvisor_platform in params
* cleanup(libscap): do not assert on unsupported getpid_global
* fix(gvisor): handle arbitrary sandbox IDs
* update(libsinsp): double thread_table_absolute_max_size
* fix(libsinsp): modify switch case
* fix(ci): do not install headers if drivers are not modified
* fix(libsinsp): fix compiler warning
* fix(libsinsp): fix compiler warning
* fix(cmake): reintroduce -Werror with BUILD_WARNINGS_AS_ERRORS
* chore(ci): bumped rn2md to latest master.
* add new cgroup layout for podman
* chore(userspace/libsinsp): improve docs about thread info filtering
* chore(userspace/libsinsp): apply review suggestions
* fix(userspace/libsinsp): consistent thread info filtering while dumping
* refactor(libsinsp): avoid to include sinsp.h where not necessary
* refactor(libsinsp): move logger macros in separate file
* refactor(libsinsp): move logger outside sinsp class
* fix(libsinsp): rename get_logger() to logger()
* refactor(libsinsp): use static global instead of static local instance
* refactor(libsinsp): always use sinsp::get_logger accessor
* feat(libsinsp): add getter for log instance
* refactor(libsinsp): adopt the new logger interface
* refactor: singleton sinsp_logger
* fix(userspace/libscap): scap_log macro
* fix(userspace/libsinsp): not report container id as host on failed lookups
* fix(libscap): remove ASSERT(false) on handled errors
* fix(userspace/libsinsp): do not suppress zero ptids
* fix(libscap/gvisor): use consistent new/delete functions for gvisor platform
* fix(userspace/libsinsp): fix resolved PT_FSPATH and PT_FSRELPATH evt args
-------------------------------------------------------------------
Fri May 24 21:21:23 UTC 2024 - Johannes Kastl <opensuse_buildservice@ojkastl.de>
- new package falco-libs: libsinsp, libscap, the kernel module
driver, and the eBPF driver sources
