mirror of
https://github.com/falcosecurity/falco.git
synced 2025-10-22 03:49:36 +00:00
c2ee87976c
Based on the Dockerfiles from the sysdig repository. The only change from the sysdig versions is to use environment variable FALCO_REPOSITORY and to install falco instead of sysdig. Note that the entrypoint still uses sysdig-probe-loader and SYSDIG_HOST_ROOT, as it's building the kernel module for sysdig. I verified I could create and run an image using the dev version using "docker build ." from docker/dev, and run it using: docker run -i -t --name falco --privileged -v /var/run/docker.sock:/host/var/run/docker.sock -v /dev:/host/dev -v /proc:/host/proc:ro -v /boot:/host/boot:ro -v /lib/modules:/host/lib/modules:ro -v /usr:/host/usr:r\o sysdig/falco falco -r /etc/falco_rules.conf I still need to update jenkins to create a release build.
14 lines
206 B
Bash
Executable File
14 lines
206 B
Bash
Executable File
#!/bin/bash
|
|
#set -e
|
|
|
|
echo "* Setting up /usr/src links from host"
|
|
|
|
for i in $(ls $SYSDIG_HOST_ROOT/usr/src)
|
|
do
|
|
ln -s $SYSDIG_HOST_ROOT/usr/src/$i /usr/src/$i
|
|
done
|
|
|
|
/usr/bin/sysdig-probe-loader
|
|
|
|
exec "$@"
|