falco

mirror of https://github.com/falcosecurity/falco.git synced 2025-09-16 23:08:16 +00:00

Author	SHA1	Message	Date
Roberto Scolaro	92b42c9474	fix(userspace/falco): fix create_dir behaviour Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	fde8da0e5c	fix(userspace/falco): split init_ticker for different oses Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	be90768b0a	fix(userspace/falco): rename get_sysinfo Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	b9d7eb7ab3	refactor(cmake): selectively remove sources on win32 Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	1b8525bf80	refactor(cmake): move compiler flags in another file Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	6d4006a1ec	feat(ci): create win32 and macos installer Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	f0d2f17c8d	fix(userspace/falco): include windows.h in print actions Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	907ced9f50	refactor(userspace/falco): add log level enum Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	df4e91476f	chore(userspace/falco/app/actions): refactor sysinfo function Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	0ca5251128	fix(userspace/falco): enable --support on windows Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	89e45ced87	fix(userspace/falco): disable sys/select.h on windows Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	5ee9ff8c8f	fix(userspace/falco): disable program_output on windows Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	f7575292c6	fix(userspace/falco): disable sys/time.h+inotify on windows Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	af70b4e770	fix(userspace/falco): remove syslog on windows Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	00a87234ce	fix(userpsace/falco): print page size on windows Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	325701ce4f	fix(userspace/falco): use std::filesystem Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	5b3cb654ff	fix(userspace/falco): add PATH_MAX for windows build Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	e5e5416ade	fix(userspace/falco): substitute syscall_evt_drop_action::IGNORE with DISREGARD Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	fb0d757bfe	fix(userspace/falco): use io.h instead of unistd.h on win32 Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Roberto Scolaro	e0f7c597be	fix(build): various fixes for macos build Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-11-13 10:59:47 +01:00
Lorenzo Susini	7319b93d9b	update(userspace/falco): introduce new engine_version_semver key in versions endpoint Signed-off-by: Lorenzo Susini <susinilorenzo1@gmail.com>	2023-11-08 16:30:25 +01:00
Samuel Gaist	d074728994	feat(userspace/falco): add configuration support for IPV6 webserver listen address The IPV6 capabilities is provided through cpp-httplib. Signed-off-by: Samuel Gaist <samuel.gaist@idiap.ch>	2023-11-03 09:09:08 +01:00
Samuel Gaist	91a9717779	feat(userspace/falco): implement configuration of webserver listening address Currently the webserver is listening on the hard coded 0.0.0.0. This patch keeps this default but allows the administrator to change it. Signed-off-by: Samuel Gaist <samuel.gaist@idiap.ch>	2023-11-03 09:09:08 +01:00
Jason Dellaluce	f5985720f1	fix(userspace/engine): cache latest rules compilation output Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-11-02 20:32:07 +01:00
Jason Dellaluce	2e7cacb4e0	fix(userspace/engine): solve description of macro-only rules Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-11-02 16:16:06 +01:00
Luca Guerra	3ff2bb5c2b	cleanup(engine): strncpy -> strlcpy Signed-off-by: Luca Guerra <luca@guerra.sh>	2023-10-19 17:41:22 +02:00
Luca Guerra	1e38967b18	update(engine): remove banned.h Signed-off-by: Luca Guerra <luca@guerra.sh>	2023-10-19 17:41:22 +02:00
Roberto Scolaro	b7cef5bab2	fix(userspace/engine): fix memory leak Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>	2023-10-17 21:20:15 +02:00
Melissa Kilby	dd807b19c8	feat(userspace): remove experimental outputs queue recovery strategies Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>	2023-10-12 13:03:46 +02:00
Melissa Kilby	32b7ccd8dc	cleanup(userspace/falco): reset s_timerid_exists at stats_writer teardown Co-authored-by: Andrea Terzolo <andreaterzolo3@gmail.com> Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>	2023-10-06 15:32:05 +02:00
Melissa Kilby	d28f43cd98	chore: apply codespell fixes Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>	2023-10-06 15:32:05 +02:00
Melissa Kilby	943446ba97	cleanup(userspace/falco): add more comments around timer_delete workaround Co-authored-by: Federico Di Pierro <nierro92@gmail.com> Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>	2023-10-06 15:32:05 +02:00
Melissa Kilby	d4a4de9055	fix(userspace/falco): timer_delete() workaround due to bug in older GLIBC Workaround for older GLIBC versions (< 2.35), where calling timer_delete() with an invalid timer ID not returned by timer_create() causes a segfault because of a bug in GLIBC (https://sourceware.org/bugzilla/show_bug.cgi?id=28257). Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>	2023-10-06 15:32:05 +02:00
Andrea Terzolo	29d2406414	cleanup(falco)!: remove `outputs.rate` and `outputs.max_burst` Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>	2023-09-29 01:47:21 +02:00
Lorenzo Susini	09b1f92267	update(userspace/engine): update falco engine checksum Signed-off-by: Lorenzo Susini <susinilorenzo1@gmail.com>	2023-09-28 20:05:21 +02:00
Lorenzo Susini	1326ca356e	update(userspace/engine): address jasondellaluce comments for maintainability Signed-off-by: Lorenzo Susini <susinilorenzo1@gmail.com>	2023-09-28 20:05:21 +02:00
Lorenzo Susini	9bbf9716b6	update(userspace/falco): engine version semver in protobuf and versions_info Signed-off-by: Lorenzo Susini <susinilorenzo1@gmail.com>	2023-09-28 20:05:21 +02:00
Lorenzo Susini	f8cbeaaa9b	update(userspace/engine): let the rule loader reader and collector be able to load rules with both numeric and semver string required_engine_version Signed-off-by: Lorenzo Susini <susinilorenzo1@gmail.com>	2023-09-28 20:05:21 +02:00
Lorenzo Susini	cd6cb14c08	update(userspace/engine): convert engine version to semver string Signed-off-by: Lorenzo Susini <susinilorenzo1@gmail.com>	2023-09-28 20:05:21 +02:00
Jason Dellaluce	d3e1a1f746	chore(userspace/engine): apply codespell suggestions Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Jason Dellaluce	aae114c331	refactor(userspace/engine)!: rename some description details outputs Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Jason Dellaluce	b67ad907a7	fix(userspace/engine): solve issues with filter details resolver Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Jason Dellaluce	dc264a0577	fix(userspace/engine): solve issues in describing rules/macros/lists Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Jason Dellaluce	8f411f3d3b	refactor(userspace/engine): modularize rules files compilation Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Jason Dellaluce	cba80a404f	fix(userspace/engine): print rules fields with arguments Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Jason Dellaluce	26bdefae8e	update(userspace/engine): support printing plugins used by rules Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Jason Dellaluce	dce5cac820	update(userspace/engine): find evt names in filter resolver Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Jason Dellaluce	ab77a5d687	update(userspace/engine): refactor rule describe methods to accept plugins Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-09-28 12:39:20 +02:00
Andrea Terzolo	4de74f3963	cleanup(falco)!: remove `--userspace` support Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>	2023-09-26 16:14:07 +02:00
Leonardo Grasso	fe50ac22ee	update: add SPDX license identifier See https://github.com/falcosecurity/evolution/issues/318 Signed-off-by: Leonardo Grasso <me@leonardograsso.com>	2023-09-21 13:21:47 +02:00

1 2 3 4 5 ...

1355 Commits