Geyslan Gregório

With this PR https://github.com/aquasecurity/libbpfgo/issues/445 isn't completely true.

Some helpers will still rely on unrolled loops to satisfy verifier constraints and will need future refactoring: - save_str_arr_to_buf - save_args_to_submit_buf - find_modules_from_module_kset_list - lkm_seeker_modtree_loop - check_is_proc_modules_hooked - syscall_table_check -...

/fast-forward

https://github.com/aquasecurity/tracee/pull/4585#issuecomment-2654848239

> [@geyslan](https://github.com/geyslan) what are the action items left here? I've just updated the issue's body.

Related: - https://github.com/aquasecurity/tracee/issues/4627 - https://github.com/aquasecurity/tracee/pull/4862

@OriGlassman is this still reproducible?

@NDStrahilevitz as we discussed. If there's something else, please be my guest to update it.

You may see that we have dependencies installations in different places in different formats: - https://github.com/aquasecurity/tracee/blob/main/.github/actions/build-dependencies/action.yaml - https://github.com/aquasecurity/tracee/blob/main/Vagrantfile - https://github.com/aquasecurity/tracee/blob/main/builder/Dockerfile.ubuntu-tracee-make - https://github.com/aquasecurity/tracee/blob/main/builder/Dockerfile.alpine-tracee-make - https://github.com/aquasecurity/tracee/blob/main/builder/Dockerfile.alpine-tracee-container So, it's harder to keep all...

@yanivagman FYI, as I mentioned today. `go tool` directive would help on this, see: https://go.dev/doc/modules/managing-dependencies#tools. It would be nice to have these tools already installed by go mod tooling: https://github.com/aquasecurity/tracee/blob/6db106f9bc722edc1c0a76c5c37ed28ab4126c9f/.github/actions/build-dependencies/action.yaml#L67-L85