falco

mirror of https://github.com/falcosecurity/falco.git synced 2025-06-26 14:52:20 +00:00

Author	SHA1	Message	Date
Federico Di Pierro	752e8bf16c	chore(falco.yaml): use HOME env var for ebpf probe path. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-13 17:45:45 +01:00
Federico Di Pierro	cbbcb61153	new(unit_tests,userspace): properly support env var expansions in all scalar values of yaml file. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-13 17:03:46 +01:00
Federico Di Pierro	3b095a5eda	chore(unit_tests): added tests around empty config value resolving to default. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-13 17:03:46 +01:00
Federico Di Pierro	7805bf5ad5	fix(userspace,unit_tests): fixed bool parsing. Moreover, added some more tests around env vars. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-13 17:03:46 +01:00
Federico Di Pierro	0c0fb63008	chore(unit_test,userspace): allow env var to get expanded in yaml even when part of a string. Moreover, support env variable embedding another env variable. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-13 17:03:46 +01:00
Andrea Terzolo	ed346e90cd	update(falco): bump engine version and checksum Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>	2023-12-13 16:59:46 +01:00
Andrea Terzolo	b190a60da7	chore: bump to latest libs commit Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>	2023-12-13 16:59:46 +01:00
Andrea Terzolo	34a896f3a5	new(.gitignore): ignore local `CMakeUserPresets.json` Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>	2023-12-13 16:59:46 +01:00
dependabot[bot]	1a338e1a39	build(deps): Bump submodules/falcosecurity-rules Bumps [submodules/falcosecurity-rules](https://github.com/falcosecurity/rules) from `dd38952` to `262f569`. - [Release notes](https://github.com/falcosecurity/rules/releases) - [Commits](`dd38952168...262f56986e`) --- updated-dependencies: - dependency-name: submodules/falcosecurity-rules dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2023-12-13 16:01:46 +01:00
Luca Guerra	e3f54a14a6	update(readme): add actuated.dev badge Signed-off-by: Luca Guerra <luca@guerra.sh>	2023-12-12 18:56:44 +01:00
Nitro Cao	4bfc42eb7d	feat(falco): monitor events with more types for rules directory Signed-off-by: Nitro Cao <jaycecao520@gmail.com>	2023-12-12 18:49:44 +01:00
Federico Di Pierro	47959abfed	chore(docker): improve usage helper message. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-12 18:23:44 +01:00
Federico Di Pierro	8db79da647	chore(cmake,docker): bumped falcoctl to v0.7.0-beta5. Moreover, small fix in docker images entrypoints regarding the name printed in usage. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-12 18:23:44 +01:00
dependabot[bot]	9c01f3518a	build(deps): Bump submodules/falcosecurity-rules Bumps [submodules/falcosecurity-rules](https://github.com/falcosecurity/rules) from `64e2adb` to `dd38952`. - [Release notes](https://github.com/falcosecurity/rules/releases) - [Commits](`64e2adb309...dd38952168`) --- updated-dependencies: - dependency-name: submodules/falcosecurity-rules dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2023-12-12 14:37:43 +01:00
Federico Di Pierro	f2ebdfaf8e	fix(docker): small fixes in docker entrypoints for new driver loader. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-12 09:56:42 +01:00
Federico Aponte	e427c800f3	chore(build): fix error using find_package with ExternalProject_Add Signed-off-by: Federico Aponte <federico.aponte@sysdig.com>	2023-12-11 16:52:39 +01:00
Federico Aponte	5e17ba6c23	chore(build): allow usage of non-bundled nlohmann-json Signed-off-by: Federico Aponte <federico.aponte@sysdig.com>	2023-12-11 16:52:39 +01:00
Federico Di Pierro	e177898d2b	update(cmake): bumped falcoctl to v0.7.0-beta4. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	2dfd687912	update(submodules): bumped falcosecurity/testing to latest master. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	b7538429b8	update(cmake): bumped falcoctl to v0.7.0-beta3. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	1de6f10ad6	update(cmake): bump falcoctl to 0.7.0-beta2. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	5f59fee54f	update(submodules): bumped falcosecurity-testing to latest dev. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	4d566b2c71	chore(cmake): bumped falcoctl to v0.7.0-beta1. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	96f50ddac5	chore(scripts): integrate back master changes `FALCO_DRIVER_CHOICE` and `FALCOCTL_ENABLED` . Also, env variables always have precedence over dialog (ie: if they are set, we always skip dialog). Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	ade27c2546	chore(scripts): use new default value for falcoctl driver.host-root config key. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	2244cc6f71	update(cmake): bump falcoctl to v0.7.0-alpha2. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	1dd47668dd	chore(scripts): only configure falcoctl driver type when a driver is selected. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	5eb2ae8d76	chore(cmake/modules): bumped falcoctl to latest alpha. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	33451cf0bc	fix(scripts): fixed driver names for new falcoctl/Falco naming. But keep old systemd units names to avoid a breaking change. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	27161bb508	chore(scripts/systemd): properly make use of new config keys in systemd units. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	0c9538241d	chore(docker): cleaned up useless removal of falcoctl. Signed-off-by: Federico Di Pierro <nierro92@gmail.com> Co-authored-by: Leonardo Grasso <me@leonardograsso.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	7452c5dc98	chore(cmake): bumped falcoctl to dev from https://github.com/falcosecurity/falcoctl/pull/343 . Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Federico Di Pierro	be100f7ad5	new(docker,scripts): dropped falco-driver-loader in favor of new `falcoctl driver` command. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-11 16:37:39 +01:00
Luca Guerra	8cf9b35b0e	new(ci): run CI jobs on ARM64 Signed-off-by: Luca Guerra <luca@guerra.sh>	2023-12-07 18:26:28 +01:00
Luca Guerra	6e4ccb0007	update(ci): enable actuated.dev Signed-off-by: Luca Guerra <luca@guerra.sh>	2023-12-07 18:26:28 +01:00
Federico Aponte	44b7352180	cleanup: fix several warnings from a Clang build Signed-off-by: Federico Aponte <federico.aponte@sysdig.com>	2023-12-06 16:40:26 +01:00
Vicente J. Jiménez Miras	13991f1ea7	Add use of FALCO_DRIVER_CHOICE and FALCOCTL_ENABLED env vars Signed-off-by: Vicente J. Jiménez Miras <vjjmiras@gmail.com>	2023-12-06 10:13:25 +01:00
Andrea Terzolo	10226a6c87	chore(falco): bump libs to `000d576ef877cb115cbb56f97187a1d62221e2bd` Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>	2023-12-06 10:08:25 +01:00
Federico Aponte	e558c4f5a5	chore(build): remove outdated development libs Signed-off-by: Federico Aponte <federico.aponte@sysdig.com>	2023-12-06 05:46:25 +01:00
Federico Di Pierro	0ba0dd8671	chore(docker/falco): add back some deps to falco docker image. Signed-off-by: Federico Di Pierro <nierro92@gmail.com>	2023-12-05 18:34:26 +01:00
Jason Dellaluce	305ed75268	update(submodules): bump falcosecurity-testing Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-12-02 09:38:15 +01:00
Jason Dellaluce	390a13bd40	update(userspace): optimizations in validation and description steps Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-12-02 09:38:15 +01:00
Jason Dellaluce	67542ec88e	new(userspace/falco): support -L when validating for parity Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-12-02 09:38:15 +01:00
Jason Dellaluce	e3943ccac3	refactor(userspace/engine): uniform json lib in rules description and not print from engine Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>	2023-12-02 09:38:15 +01:00
dependabot[bot]	95968defa5	build(deps): Bump submodules/falcosecurity-testing Bumps [submodules/falcosecurity-testing](https://github.com/falcosecurity/testing) from `92c313f` to `5248e6d`. - [Commits](`92c313f5ca...5248e6dff9`) --- updated-dependencies: - dependency-name: submodules/falcosecurity-testing dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2023-12-01 13:12:12 +01:00
Luca Guerra	6411eed4a7	cleanup(falco): remove decode_uri as it is no longer used Signed-off-by: Luca Guerra <luca@guerra.sh>	2023-11-29 17:42:06 +01:00
Andrea Terzolo	c5364be191	new: print system info when Falco starts Print kernel info when Falco starts with a kernel driver Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>	2023-11-28 22:14:05 +01:00
Luca Guerra	ce4d28ef90	chore(falco): update to libs on nov 28th Signed-off-by: Luca Guerra <luca@guerra.sh>	2023-11-28 17:14:04 +01:00
Melissa Kilby	3b068919d0	update(cmake): bump libs and driver to c2fd308 plus bump falco engine version Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>	2023-11-28 12:57:04 +01:00
Melissa Kilby	3e4566e5af	cleanup(userspace/falco): minor adjustments to stats writer and rebase correction Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>	2023-11-28 12:57:04 +01:00

... 5 6 7 8 9 ...

4513 Commits