Djalal Harouni

Information should be obtained from /proc/self/status, /proc/self/attr/current and related directories inside /proc/self/attr/

Hi @ShubhamPalriwala The aim here is to log security context of Tetragon when it starts. If there are some Linux security module that are active they may restrict Tetragon, this...

> /proc/[pid]/attr/current: this file represent the current security attributes of the process Yes, only interested into this /proc/self/attr/ , SELinux then check apparmor directory and get its content, just print...

So first I guess you still can't have the heavy LSMs stacked and working together, you have to boot with one of them, then boot again with the other... However...

> @tixxdz Could you please help me out with the above whenever you get some time, thanks! Hi @ShubhamPalriwala sorry for late reply, lot of tasks under hand... That example...

@pathtofile @Happy-Dude https://github.com/cilium/tetragon/pull/384 this should do it for now right? for pure deb or rpm packages it is just matter of priorities we will try to do it, or maybe...

Hi @ADITYADAS1999, > To access the information we have to use a CLI tool like kubectl. And called the API server to get the information about the pod from the...

Hi @Forsworns thank you! > Maybe I should split off the commit for #20 If it makes sense: yes please! it is always good to split commits especially ones that...

Patches summary: 1. Patches 1 -> 11 [bpf:make: compile new bpf cgroup programs](https://github.com/cilium/tetragon/pull/225/commits/b30edbc9a9d5cfffbb317bc7883b70a54c23931f) Adds the bpf cgroup base logic: from structures to bpf programs. 2. Patches 12 -> 14 [bpf:cgroup:...

Failing on old kernels 4.19.256 was tracked to this function being too big: https://github.com/cilium/tetragon/pull/225/commits/fb5b73fb1fa3a61c69c71f09297c5a8c5768ef1d#diff-ab356ac37169a22ef1641e19014bbe9f635d530780bcad21a18caf96e2ec00d0R585 will fix it.