Shang-Wen Wang (Sam Wang)
Shang-Wen Wang (Sam Wang)
Hi @kkourt , thanks for the detailed explanation! I have a follow-up question about the two policies approach. Currently we use `TracingPolicy` and `TracingPolicyNamespaced` CR to control Tetragon policies. One...
@mtardy thanks for merging #4158 ! I'm still working on this issue via #4244 . Could you please keep this one open?
> Ah maybe do not add Fixes: next time if it's just the first step, maybe Partially fixes or something like that :)! My bad. I will make sure they...
For the memory utilization, `bpf.BPF_F_NO_PREALLOC` option should reduce the memory utilization a lot from ebpf maps, but apparently Tetragon only enabled `bpf.BPF_F_NO_PREALLOC` on [some of maps](https://github.com/search?q=repo%3Acilium%2Ftetragon++BPF_F_NO_PREALLOC&type=code). I wonder if this...
@mtardy thanks for the prompt and detailed response! Yes it probably doesn't fit all the maps. Our focus for now is the `policy_filter_maps` and its inner map. In our use...
@olsajiri may I have your feedback on this one? Thanks a lot.
Changes since v1: 1. Allow kprobe to use shared override programs. 2. Instead of having one override_tasks map for each hook point, in v2 each override program shares the same...
I still keep this as draft because of an item that I'd like to discuss first. Say we have a scenario is like the below (keep in mind that in...
> perhaps we could have policy id as part of the override_task value and have sensor unload to cleanup its records before it unloads the override program.. something like you...
Hi @olsajiri thanks for your patience. I've updated v3 in this PR and changed this PR as ready for review. The change since last time: - Refactored and moved most...