Sascha Grunert
Sascha Grunert
Ah yeah that sounds like a reasonable addition. Both, perpending the file and auto detecting the tty. :+1:
> I don't understand the proposal and problem statement. Can you elaborate? Is it to rewrite oci-seccomp-bpf-hook in C with libbpf? The main purpose of the project was to find...
> @saschagrunert are you cool with @weirdwiz taking a shot at it? Sure, I'm happy to review and support if requested. :+1:
@rafaeldtinoco thank you for the input. I had a look at the `btfgen` tool and think it looks promising. I'm now wondering, how would a build pipeline look like? For...
@rafaeldtinoco thank you for the input, I'm working on a syscall recorder PoC in https://github.com/kubernetes-sigs/security-profiles-operator/pull/618. I decided to go through the following build steps: 1. Build the bpf.o once on...
> I'm having a little trouble figuring out how would we get the `$PARENT_PID` [1](https://github.com/containers/oci-seccomp-bpf-hook/blob/c378484c2917e4273ed859644cf0fe3754400624/ebpf.go#L85-L87) from the userspace. If we were using C we could change the value in the...
In the meanwhile we released a first integration within the security-profiles-operator: https://github.com/kubernetes-sigs/security-profiles-operator/tree/main/internal/pkg/daemon/bpfrecorder Packaging a generic libbpf-based application seems to be the most tricky part here. On the other side, we...
@vrothberg unfortunately not directly, because I think we should clarify how to package the application before moving forward. I'm working with other teams on solving that issue right now, but...
Hey, we encountered that issue as well in Kubernetes release engineering. We're trying to add a single file to kubernetes/kubernetes which takes round about 5 minutes to succeed. Do you...
@puerco is this something we can also defer to other SIG Release folks?