github/falco
1
0
Fork 0
mirror of https://github.com/falcosecurity/falco.git synced 2025-09-28 21:57:37 +00:00
Code Issues Projects Releases Wiki Activity
3,587 Commits 119 Branches 173 Tags
e4d575b10d54a89c8a4ac4a4fbb7e77cb02e17bb
Commit Graph

204 Commits

Author SHA1 Message Date
Andrea Terzolo
0d62fb9133 ci: remove unit tests from circleCI 
Signed-off-by: Andrea Terzolo <andrea.terzolo@polito.it>
 2023-02-10 11:41:24 +01:00
Aldo Lacuku
43c802d045 fix(dockerfile/no-driver): install ca-certificates 
Signed-off-by: Aldo Lacuku <aldo@lacuku.eu>
 2023-02-09 17:31:31 +01:00
Andrea Terzolo
1d99e3d7b3 fix(ci): remove application rules from docker build 
Signed-off-by: Andrea Terzolo <andrea.terzolo@polito.it>
 2023-01-30 13:44:17 +01:00
Andrea Terzolo
229633ee8a update(CI): mitigate frequent failure in CircleCI jobs 
Signed-off-by: Andrea Terzolo <andrea.terzolo@polito.it>
 2023-01-26 12:37:43 +01:00
Andrea Terzolo
acd1e0dc28 update: split the build phase in multiple RUN commands 
Signed-off-by: Andrea Terzolo <andrea.terzolo@polito.it>
 2023-01-26 12:37:43 +01:00
Jason Dellaluce
cfc96e899b fix(docker/falco): trust latest GPG key 
Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>
 2023-01-19 12:33:46 +01:00
Thomas Labarussias
bb9edea666 install ca-certificates in falco:no-driver image 
Signed-off-by: Thomas Labarussias <issif+github@gadz.org>
 2023-01-16 10:35:18 +01:00
Andrea Terzolo
19d5430f5d update: modern falco builder 
Signed-off-by: Andrea Terzolo <andrea.terzolo@polito.it>
 2023-01-09 09:04:54 +01:00
Andrea Terzolo
647c085041 ci: bump resource class 
Signed-off-by: Andrea Terzolo <andrea.terzolo@polito.it>
 2022-12-21 11:26:02 +01:00
Andrea Terzolo
c861f0b02a update(ci): update ci jobs to generate Falco images with modern probe 
Signed-off-by: Andrea Terzolo <andrea.terzolo@polito.it>
 2022-12-21 11:26:02 +01:00
Federico Di Pierro
818f717622 chore(scripts,cmake): dialog is an optional dep, do not list it among deps. 
Cleaned up unused vars in postinst scripts.
Finally, only show dialog window in interactive shells.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2022-12-15 14:09:19 +01:00
Federico Di Pierro
d0ceba83b4 update(cmake, docker, circleci): updated libs and driver to latest master. 
Docker builder image was updated to remove the libelf and libz deps as they are now properly bundled, in BUNDLED_DEPS mode.
Finally, circleci musl job was updated to enforce the use of alpine-provided libelf package, since it is already static,
and building libelf on musl is pretty cumbersome.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2022-11-11 14:56:10 +01:00
Jason Dellaluce
6c1f908ca5 cleanup(cmake): rename legacy cmake variables 
Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>
 2022-08-29 15:42:33 +02:00
Jason Dellaluce
0cab9ba6ed chore(OWNERS): remove duplicates in reviewers 
Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>
 2022-07-20 10:39:56 +02:00
Federico Di Pierro
610b67838b fix(docker): fixed deb tester sub image. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2022-06-29 11:52:31 +02:00
Jeremi Piotrowski
6d56571e23 update(docker,falco_scripts): fix kernel module build on Flatcar 
Relocate necessary tools from the kernel module build system to run using host
dynlinker and libraries, so that compiling falco module on Flatcar works.

Since Flatcar v2983.0.0, Flatcar ships with glibc-2.33, but the
falco-driver-loader container is based on debian:buster and so has a much older
glibc. This prevents some necessary tools within /lib/modules/*/build from
working which causes the falco module to fail to compile using dkms.

To make the tools work, we need to relocate them so we add patchelf to the
falco and local dockerfiles. The relocation is based on the approach done by
the sysdig agent-kmodule build system, but I'm unable to find the source code
for it. The host linker and libs will be found at /host/usr/lib64, so we change
the interpreter and rpath on the tools. The relocation happens on a copy of the
tools which are then bind mounted at the right location. The result allows the
module build to work.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2022-06-13 10:34:43 +02:00
Federico Di Pierro
a98bf52345 update(docker): updated falco-builder to fix multiarch support. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>

Co-authored-by: Leonardo Grasso <me@leonardograsso.com>
 2022-06-09 09:33:39 +02:00
Federico Di Pierro
984b94f734 new(docker,scripts): port all docker images to be multiarch ready. 
They can be pushed with `docker buildx` for various architectures.

Moreover, updated falco-driver-loader to support multiple architectures.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2022-06-07 11:02:54 +02:00
Mateusz Gozdek
cb4cec6f57 Fix typos 
Found by running the following command:
codespell -f -H -L aks,creat,chage -S .git

Signed-off-by: Mateusz Gozdek <mgozdek@microsoft.com>
 2022-04-06 14:40:31 +02:00
Frederico Araujo
26a3b7a01e refator(image): commented and moved symlinks inside SKIP_DRIVER_LOADER check 
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
Frederico Araujo
55700f80e4 refactor(image): remove -x flag in ubi docker entrypoint 
Co-authored-by: Leonardo Grasso <me@leonardograsso.com>
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
Frederico Araujo
54a817bf3c feat(image): set default value for UBI_VERSION build arg 
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
Frederico Araujo
04cadee6fa fix(image): update package cache cleanup command 
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
Frederico Araujo
4f5fb12a13 docs(docker/readme): updated table to include experimental UBI-based image for Falco 
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
Frederico Araujo
5b99c0d481 refactor(build): moved Dockerfile and entrypoint script for UBI-based image to its own directory 
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
Frederico Araujo
7c85349674 fix(docker/readme): fix grammatically incorrect split of infinitive 
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
Frederico Araujo
9aa9ad9ee0 build(image): added label for ubi version and updated description labels 
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
Frederico Araujo
b18f2084c0 build(image): fixed handling of default falco version 
Signed-off-by: Frederico Araujo <frederico.araujo@ibm.com>
 2022-03-23 15:39:03 +01:00
TPT
dc5b332cd1 build(image): simplified untarring command to install falco binary and scripts in ubi 
Signed-off-by: TPT <teryl.taylor@gmail.com>
 2022-03-23 15:39:03 +01:00
TPT
5b7260f706 build(image): updated UBI image to build dkms, and use falco binaries rather than rpm. This reduces dependencies. 
Signed-off-by: TPT <teryl.taylor@gmail.com>
 2022-03-23 15:39:03 +01:00
TPT
dc40f82318 build(image): added falco ubi Dockerfile to provide a falco ubi image 
Signed-off-by: TPT <teryl.taylor@gmail.com>
 2022-03-23 15:39:03 +01:00
Mark Stemm
83c527dd91 Use cmake function to copy files, as a single target 
Replace nearly-identical blocks of code that defined individual custom
targets/custom commands to copy files from source to build dir with
the copy_files_to_build_dir function.

This reduces the number of build targets and speeds up/cleans up the
make output.

Signed-off-by: Mark Stemm <mark.stemm@gmail.com>
 2022-02-18 16:47:43 +01:00
Luca Guerra
55ce38cf3a use debian 11 slim as nodriver image 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2022-01-17 16:26:07 +01:00
Jason Dellaluce
85db078dc4 chore: renaming comment references 
Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>
Co-authored-by: Federico Di Pierro <nierro92@gmail.com>
Co-authored-by: Leonardo Grasso <me@leonardograsso.com>
 2021-11-18 16:26:18 +01:00
Michal Schott
84e7d3f18f Switching from stable to old-stable (buster). 
Added libssl-dev package.

Signed-off-by: Michal Schott <michal.schott@onegini.com>
 2021-09-10 01:11:38 +02:00
Leonardo Grasso
93667f2d3e build(docker/builder): ncurses-dev is not required anymore 
Since `libs` version 13ec67ebd23417273275296813066e07cb85bc91

Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2021-07-29 18:20:47 +02:00
Leonardo Grasso
53a1be66b0 chore(docker/builder): remove never used MINIMAL_BUILD option 
The option was added but could not work since MINIMAL_BUILD is not declared in this scope (also not currently needed).
Furthermore, it never took effect since the builder image was never built and pushed. For the same reason, we have not noticed it until now.

Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2021-05-21 10:24:08 +02:00
Leonardo Grasso
f7b572bea5 build(docker/builder): upgrade cmake version 
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2021-05-21 10:24:08 +02:00
Leonardo Di Donato
4b0333cc08 update(docker/falco): SKIP_MODULE_LOAD not supported anymore - use SKIP_DRIVER_LOADER 
When we started to implemented 20200506-artifacts-scope-part-2 proposal
, among a million other things, we renamed `SKIP_MODULE_LOAD` to
`SKIP_DRIVER_LOADER`. We reatained compatibility with `SKIP_MODULE_LOAD`
for a bunch of releases.

Now, after 9 months have passed I think it's time to completely
deprecate it.

Signed-off-by: Leonardo Di Donato <leodidonato@gmail.com>
 2021-04-08 20:40:39 +02:00
Leonardo Grasso
40edfe66ba fix(docker/no-driver): handle urlencoding 
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2021-03-26 12:55:11 +01:00
Leonardo Grasso
70ee1093d8 build(docker): fetch packages from download.falco.org 
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2021-03-26 12:55:11 +01:00
Leonardo Grasso
825e6caf2d build: fetch build deps from download.falco.org 
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2021-03-10 18:00:52 +01:00
Shane Lawrence
74164b1ef8 Use default pip version to get avocado version. 
Signed-off-by: Shane Lawrence <shane@lawrence.dev>
 2021-03-05 10:50:27 +01:00
Bart van der Schans
05545f228d Add flex and bison to docker for building bpf module on recent amazon linux2 
Signed-off-by: Bart van der Schans <bart@vanderschans.nl>
 2021-03-05 10:46:10 +01:00
Carlos Panato
5a6cbb190c docs: update link for building from source 
Signed-off-by: Carlos Panato <ctadeu@gmail.com>
 2021-02-04 17:37:57 +01:00
Leonardo Grasso
6ca4e11d8c update(docker): correct container labels 
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2020-11-23 11:26:08 -05:00
Leonardo Grasso
6bc97ca9e7 fix(docker/no-driver): add missing HOST_ROOT env 
Please note that the `HOME` env has been added for consistency purposes with the main docker image.

Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2020-11-23 11:26:08 -05:00
Leonardo Grasso
388de27398 update(docker/tester): split version guessing of Falco version 
Needed by statically linked build of Falco.

Co-Authored-By: Leonardo Di Donato <leodidonato@gmail.com>
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2020-10-13 07:29:01 -04:00
Leonardo Grasso
69d2fa76ff fix(docker/tester): re-enable -e 
Co-Authored-By: Leonardo Di Donato <leodidonato@gmail.com>
Co-Authored-By: Lorenzo Fontana <lo@linux.com>
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2020-10-13 07:29:01 -04:00
Leonardo Di Donato
0586a7d33c update(docker/no-driver): use the statically linked falco tarball 
Co-authored-by: Leonardo Grasso <me@leonardograsso.com>
Co-authored-by: Lorenzo Fontana <lo@linux.com>
Signed-off-by: Leonardo Di Donato <leodidonato@gmail.com>
 2020-09-10 15:01:07 +02:00