github/falco
1
0
Fork 0
mirror of https://github.com/falcosecurity/falco.git synced 2025-07-13 14:34:33 +00:00
Code Issues Projects Releases Wiki Activity

chore(docker,scripts): set old eBPF probe as lowest priority driver.

Browse Source 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
This commit is contained in:
Federico Di Pierro 2024-04-18 10:49:56 +02:00 committed by poiana
parent b239246ff8
commit bdcfbba90b
6 changed files with 11 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
docker/driver-loader-legacy/docker-entrypoint.sh
View File

@ -26,8 +26,8 @@ print_usage() {
echo "Available drivers:" echo "Available drivers:"
echo " auto leverage automatic driver selection logic (default)" echo " auto leverage automatic driver selection logic (default)"
echo " modern_ebpf modern eBPF CORE probe" echo " modern_ebpf modern eBPF CORE probe"
echo " ebpf eBPF probe"
echo " kmod kernel module" echo " kmod kernel module"
echo " ebpf eBPF probe"
echo "" echo ""
echo "Options:" echo "Options:"
echo " --help show this help message" echo " --help show this help message"
@ -120,7 +120,7 @@ if [ "$driver" != "auto" ]; then
/usr/bin/falcoctl driver config --type $driver /usr/bin/falcoctl driver config --type $driver
else else
# Needed because we need to configure Falco to start with correct driver # Needed because we need to configure Falco to start with correct driver
/usr/bin/falcoctl driver config --type modern_ebpf --type ebpf --type kmod /usr/bin/falcoctl driver config --type modern_ebpf --type kmod --type ebpf
fi fi
/usr/bin/falcoctl driver install --compile=$ENABLE_COMPILE --download=$ENABLE_DOWNLOAD --http-insecure=$HTTP_INSECURE --http-headers="$FALCOCTL_DRIVER_HTTP_HEADERS" /usr/bin/falcoctl driver install --compile=$ENABLE_COMPILE --download=$ENABLE_DOWNLOAD --http-insecure=$HTTP_INSECURE --http-headers="$FALCOCTL_DRIVER_HTTP_HEADERS"

4
docker/driver-loader/docker-entrypoint.sh
View File

@ -26,8 +26,8 @@ print_usage() {
echo "Available drivers:" echo "Available drivers:"
echo " auto leverage automatic driver selection logic (default)" echo " auto leverage automatic driver selection logic (default)"
echo " modern_ebpf modern eBPF CORE probe" echo " modern_ebpf modern eBPF CORE probe"
echo " ebpf eBPF probe"
echo " kmod kernel module" echo " kmod kernel module"
echo " ebpf eBPF probe"
echo "" echo ""
echo "Options:" echo "Options:"
echo " --help show this help message" echo " --help show this help message"
@ -132,7 +132,7 @@ if [ "$driver" != "auto" ]; then
/usr/bin/falcoctl driver config --type $driver /usr/bin/falcoctl driver config --type $driver
else else
# Needed because we need to configure Falco to start with correct driver # Needed because we need to configure Falco to start with correct driver
/usr/bin/falcoctl driver config --type modern_ebpf --type ebpf --type kmod /usr/bin/falcoctl driver config --type modern_ebpf --type kmod --type ebpf
fi fi
/usr/bin/falcoctl driver install --compile=$ENABLE_COMPILE --download=$ENABLE_DOWNLOAD --http-insecure=$HTTP_INSECURE --http-headers="$FALCOCTL_DRIVER_HTTP_HEADERS" $extra_args /usr/bin/falcoctl driver install --compile=$ENABLE_COMPILE --download=$ENABLE_DOWNLOAD --http-insecure=$HTTP_INSECURE --http-headers="$FALCOCTL_DRIVER_HTTP_HEADERS" $extra_args

4
docker/falco/docker-entrypoint.sh
View File

@ -26,8 +26,8 @@ print_usage() {
echo "Available FALCO_DRIVER_LOADER_OPTIONS drivers:" echo "Available FALCO_DRIVER_LOADER_OPTIONS drivers:"
echo " auto leverage automatic driver selection logic (default)" echo " auto leverage automatic driver selection logic (default)"
echo " modern_ebpf modern eBPF CORE probe" echo " modern_ebpf modern eBPF CORE probe"
echo " ebpf eBPF probe"
echo " kmod kernel module" echo " kmod kernel module"
echo " ebpf eBPF probe"
echo "" echo ""
echo "FALCO_DRIVER_LOADER_OPTIONS options:" echo "FALCO_DRIVER_LOADER_OPTIONS options:"
echo " --help show this help message" echo " --help show this help message"
@ -127,7 +127,7 @@ if [[ -z "${SKIP_DRIVER_LOADER}" ]]; then
/usr/bin/falcoctl driver config --type $driver /usr/bin/falcoctl driver config --type $driver
else else
# Needed because we need to configure Falco to start with correct driver # Needed because we need to configure Falco to start with correct driver
/usr/bin/falcoctl driver config --type modern_ebpf --type ebpf --type kmod /usr/bin/falcoctl driver config --type modern_ebpf --type kmod --type ebpf
fi fi
/usr/bin/falcoctl driver install --compile=$ENABLE_COMPILE --download=$ENABLE_DOWNLOAD --http-insecure=$HTTP_INSECURE --http-headers="$FALCOCTL_DRIVER_HTTP_HEADERS" /usr/bin/falcoctl driver install --compile=$ENABLE_COMPILE --download=$ENABLE_DOWNLOAD --http-insecure=$HTTP_INSECURE --http-headers="$FALCOCTL_DRIVER_HTTP_HEADERS"

6
scripts/CMakeLists.txt
View File

@ -52,12 +52,12 @@ if (NOT WIN32 AND NOT APPLE AND NOT EMSCRIPTEN AND NOT MUSL_OPTIMIZED_BUILD)
if (BUILD_FALCO_MODERN_BPF) if (BUILD_FALCO_MODERN_BPF)
list(APPEND FALCOCTL_DRIVER_TYPES_LIST "modern_ebpf") list(APPEND FALCOCTL_DRIVER_TYPES_LIST "modern_ebpf")
endif() endif()
if (BUILD_BPF)
list(APPEND FALCOCTL_DRIVER_TYPES_LIST "ebpf")
endif()
if (BUILD_DRIVER) if (BUILD_DRIVER)
list(APPEND FALCOCTL_DRIVER_TYPES_LIST "kmod") list(APPEND FALCOCTL_DRIVER_TYPES_LIST "kmod")
endif() endif()
if (BUILD_BPF)
list(APPEND FALCOCTL_DRIVER_TYPES_LIST "ebpf")
endif()
string(REPLACE ";" ", " FALCOCTL_DRIVER_TYPES "${FALCOCTL_DRIVER_TYPES_LIST}") string(REPLACE ";" ", " FALCOCTL_DRIVER_TYPES "${FALCOCTL_DRIVER_TYPES_LIST}")
configure_file(${CMAKE_CURRENT_SOURCE_DIR}/falcoctl/falcoctl.yaml.in ${PROJECT_BINARY_DIR}/scripts/falcoctl/falcoctl.yaml) configure_file(${CMAKE_CURRENT_SOURCE_DIR}/falcoctl/falcoctl.yaml.in ${PROJECT_BINARY_DIR}/scripts/falcoctl/falcoctl.yaml)
install(FILES ${PROJECT_BINARY_DIR}/scripts/falcoctl/falcoctl.yaml DESTINATION "${FALCOCTL_ETC_DIR}" COMPONENT "${FALCO_COMPONENT_NAME}") install(FILES ${PROJECT_BINARY_DIR}/scripts/falcoctl/falcoctl.yaml DESTINATION "${FALCOCTL_ETC_DIR}" COMPONENT "${FALCO_COMPONENT_NAME}")

2
scripts/debian/postinst.in
View File

@ -83,7 +83,7 @@ if [ "$1" = "configure" ]; then
echo "[POST-INSTALL] Configure falcoctl '$chosen_driver' driver type:" echo "[POST-INSTALL] Configure falcoctl '$chosen_driver' driver type:"
if [ "$chosen_driver" = "auto" ]; then if [ "$chosen_driver" = "auto" ]; then
# Configure falcoctl to enable all drivers # Configure falcoctl to enable all drivers
falcoctl driver config --type "modern_ebpf" --type "ebpf" --type "kmod" falcoctl driver config --type "modern_ebpf" --type "kmod" --type "ebpf"
# Load the actually automatic chosen driver # Load the actually automatic chosen driver
chosen_driver=$(falcoctl driver printenv | grep DRIVER= | cut -d'"' -f2) chosen_driver=$(falcoctl driver printenv | grep DRIVER= | cut -d'"' -f2)
else else

2
scripts/rpm/postinstall.in
View File

@ -82,7 +82,7 @@ if [ $1 -ge 1 ]; then
echo "[POST-INSTALL] Configure falcoctl '$chosen_driver' driver type:" echo "[POST-INSTALL] Configure falcoctl '$chosen_driver' driver type:"
if [ "$chosen_driver" = "auto" ]; then if [ "$chosen_driver" = "auto" ]; then
# Configure falcoctl to enable all drivers # Configure falcoctl to enable all drivers
falcoctl driver config --type "modern_ebpf" --type "ebpf" --type "kmod" falcoctl driver config --type "modern_ebpf" --type "kmod" --type "ebpf"
# Load the actually automatic chosen driver # Load the actually automatic chosen driver
chosen_driver=$(falcoctl driver printenv | grep DRIVER= | cut -d'"' -f2) chosen_driver=$(falcoctl driver printenv | grep DRIVER= | cut -d'"' -f2)
else else