github/falco
1
0
Fork 0
mirror of https://github.com/falcosecurity/falco.git synced 2025-06-23 13:27:33 +00:00
Code Issues Projects Releases Wiki Activity

added insecure http driver download

Browse Source 
added insecure http driver download to the driver-loader-legacy entrypoint.

Signed-off-by: Tom Müller <60851960+toamto94@users.noreply.github.com>
This commit is contained in:
Tom Müller 2024-02-07 20:43:24 +01:00 committed by poiana
parent f62c38e9e8
commit 159e3f6ffc
1 changed files with 12 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
docker/driver-loader-legacy/docker-entrypoint.sh
View File

@ -21,18 +21,19 @@
print_usage() { print_usage() {
echo "" echo ""
echo "Usage:" echo "Usage:"
echo " docker run -i -t --privileged -v /root/.falco:/root/.falco -v /proc:/host/proc:ro -v /boot:/host/boot:ro -v /lib/modules:/host/lib/modules:ro -v /usr:/host/usr:ro -v /etc:/host/etc:ro falcosecurity/falco-driver-loader-legacy:latest [driver] [options]" echo " docker run -i -t --privileged -v /root/.falco:/root/.falco -v /proc:/host/proc:ro -v /boot:/host/boot:ro -v /lib/modules:/host/lib/modules:ro -v /usr:/host/usr:ro -v /etc:/host/etc:ro falcosecurity/falco-driver-loader:latest [driver] [options]"
echo "" echo ""
echo "Available drivers:" echo "Available drivers:"
echo " kmod kernel module (default)" echo " kmod kernel module (default)"
echo " ebpf eBPF probe" echo " ebpf eBPF probe"
echo "" echo ""
echo "Options:" echo "Options:"
echo " --help show this help message" echo " --help show this help message"
echo " --clean try to remove an already present driver installation" echo " --clean try to remove an already present driver installation"
echo " --compile try to compile the driver locally (default true)" echo " --compile try to compile the driver locally (default true)"
echo " --download try to download a prebuilt driver (default true)" echo " --download try to download a prebuilt driver (default true)"
echo " --print-env skip execution and print env variables for other tools to consume" echo " --http-insecure enable insecure downloads"
echo " --print-env skip execution and print env variables for other tools to consume"
echo "" echo ""
echo "Environment variables:" echo "Environment variables:"
echo " FALCOCTL_DRIVER_REPOS specify different URL(s) where to look for prebuilt Falco drivers (comma separated)" echo " FALCOCTL_DRIVER_REPOS specify different URL(s) where to look for prebuilt Falco drivers (comma separated)"
@ -50,6 +51,7 @@ done
ENABLE_COMPILE="false" ENABLE_COMPILE="false"
ENABLE_DOWNLOAD="false" ENABLE_DOWNLOAD="false"
HTTP_INSECURE="false"
has_driver= has_driver=
has_opts= has_opts=
while test $# -gt 0; do while test $# -gt 0; do
@ -80,6 +82,9 @@ while test $# -gt 0; do
ENABLE_DOWNLOAD="true" ENABLE_DOWNLOAD="true"
has_opts="true" has_opts="true"
;; ;;
--http-insecure)
HTTP_INSECURE="true"
;;
--source-only) --source-only)
>&2 echo "Support dropped in Falco 0.37.0." >&2 echo "Support dropped in Falco 0.37.0."
print_usage print_usage
@ -108,4 +113,4 @@ if [ -z "$has_opts" ]; then
ENABLE_DOWNLOAD="true" ENABLE_DOWNLOAD="true"
fi fi
/usr/bin/falcoctl driver install --compile=$ENABLE_COMPILE --download=$ENABLE_DOWNLOAD /usr/bin/falcoctl driver install --compile=$ENABLE_COMPILE --download=$ENABLE_DOWNLOAD --http-insecure=$HTTP_INSECURE