Kornilios Kourtis
Kornilios Kourtis
@Jiahao0 could try the latest development image and see whether #1902 address the issue?
Thanks everyone for this report! Manged to reproduce this and I believe I have a fix: https://github.com/cilium/tetragon/pull/2399.
Thanks! I think that's a reasonable feature to have. Not sure what the proper interface for the policy would be. Would need to think a bit more about it. In...
> Hello everyone! We want to try to implement this feature request and we would like to discuss a couple of points first 🙂 > > [...] > What do...
One thing that I would maybe like to discuss is the syntax for the container selector. The main use-case right now is to select based on the name. It would...
Thanks for creating this issue. > Our k8s admission control prevents privileged pods from execution, can tetragon only takes CAP_BPF? Having Tetragon only use the capabilities it needs definitely makes...
Hi @rajaSahil, Go ahead if you want. I'm not aware of someone else working on it at the moment. Thanks!
Hi @SumaiyaSafdar. Please sync with @rajaSahil.
Maybe we can use https://pkg.go.dev/github.com/seccomp/libseccomp-golang#GetSyscallFromName
This is still an issue, reopening.