Documentation ¶
Overview ¶
Package agent holds agent related files
Package agent holds agent related files ¶
Package agent holds agent related files
Index ¶
- type RSAOptions
- type RuntimeSecurityAgent
- func (rsa *RuntimeSecurityAgent) DispatchActivityDump(msg *api.ActivityDumpStreamMessage)
- func (rsa *RuntimeSecurityAgent) DispatchEvent(evt *api.SecurityEventMessage)
- func (rsa *RuntimeSecurityAgent) Start(reporter common.RawReporter, endpoints *config.Endpoints)
- func (rsa *RuntimeSecurityAgent) StartActivityDumpListener()
- func (rsa *RuntimeSecurityAgent) StartEventListener()
- func (rsa *RuntimeSecurityAgent) StatusProvider() status.Provider
- func (rsa *RuntimeSecurityAgent) Stop()
- type RuntimeSecurityClient
- func (c *RuntimeSecurityClient) Close()
- func (c *RuntimeSecurityClient) DumpDiscarders() (string, error)
- func (c *RuntimeSecurityClient) DumpNetworkNamespace(snapshotInterfaces bool) (*api.DumpNetworkNamespaceMessage, error)
- func (c *RuntimeSecurityClient) DumpProcessCache(withArgs bool, format string) (string, error)
- func (c *RuntimeSecurityClient) GenerateActivityDump(request *api.ActivityDumpParams) (*api.ActivityDumpMessage, error)
- func (c *RuntimeSecurityClient) GenerateEncoding(request *api.TranscodingRequestParams) (*api.TranscodingRequestMessage, error)
- func (c *RuntimeSecurityClient) GetActivityDumpStream() (api.SecurityModule_GetActivityDumpStreamClient, error)
- func (c *RuntimeSecurityClient) GetConfig() (*api.SecurityConfigMessage, error)
- func (c *RuntimeSecurityClient) GetEvents() (api.SecurityModule_GetEventsClient, error)
- func (c *RuntimeSecurityClient) GetRuleSetReport() (*api.GetRuleSetReportResultMessage, error)
- func (c *RuntimeSecurityClient) GetStatus() (*api.Status, error)
- func (c *RuntimeSecurityClient) ListActivityDumps() (*api.ActivityDumpListMessage, error)
- func (c *RuntimeSecurityClient) ListSecurityProfiles(includeCache bool) (*api.SecurityProfileListMessage, error)
- func (c *RuntimeSecurityClient) ReloadPolicies() (*api.ReloadPoliciesResultMessage, error)
- func (c *RuntimeSecurityClient) RunSelfTest() (*api.SecuritySelfTestResultMessage, error)
- func (c *RuntimeSecurityClient) SaveSecurityProfile(name string, tag string) (*api.SecurityProfileSaveMessage, error)
- func (c *RuntimeSecurityClient) StopActivityDump(name, container, cgroup string) (*api.ActivityDumpStopMessage, error)
- type SecurityModuleClientWrapper
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type RSAOptions ¶
type RSAOptions struct {
LogProfiledWorkloads bool
}
RSAOptions represents the runtime security agent options
type RuntimeSecurityAgent ¶
type RuntimeSecurityAgent struct {
// contains filtered or unexported fields
}
RuntimeSecurityAgent represents the main wrapper for the Runtime Security product
func NewRuntimeSecurityAgent ¶
func NewRuntimeSecurityAgent(statsdClient statsd.ClientInterface, hostname string, opts RSAOptions, wmeta workloadmeta.Component) (*RuntimeSecurityAgent, error)
NewRuntimeSecurityAgent instantiates a new RuntimeSecurityAgent
func (*RuntimeSecurityAgent) DispatchActivityDump ¶
func (rsa *RuntimeSecurityAgent) DispatchActivityDump(msg *api.ActivityDumpStreamMessage)
DispatchActivityDump forwards an activity dump message to the backend
func (*RuntimeSecurityAgent) DispatchEvent ¶
func (rsa *RuntimeSecurityAgent) DispatchEvent(evt *api.SecurityEventMessage)
DispatchEvent dispatches a security event message to the subsytems of the runtime security agent
func (*RuntimeSecurityAgent) Start ¶
func (rsa *RuntimeSecurityAgent) Start(reporter common.RawReporter, endpoints *config.Endpoints)
Start the runtime security agent
func (*RuntimeSecurityAgent) StartActivityDumpListener ¶
func (rsa *RuntimeSecurityAgent) StartActivityDumpListener()
StartActivityDumpListener starts listening for new activity dumps from system-probe
func (*RuntimeSecurityAgent) StartEventListener ¶
func (rsa *RuntimeSecurityAgent) StartEventListener()
StartEventListener starts listening for new events from system-probe
func (*RuntimeSecurityAgent) StatusProvider ¶
func (rsa *RuntimeSecurityAgent) StatusProvider() status.Provider
StatusProvider returns the runtime security agent status provider
func (*RuntimeSecurityAgent) Stop ¶
func (rsa *RuntimeSecurityAgent) Stop()
Stop the runtime recurity agent
type RuntimeSecurityClient ¶
type RuntimeSecurityClient struct {
// contains filtered or unexported fields
}
RuntimeSecurityClient is used to send request to security module
func NewRuntimeSecurityClient ¶
func NewRuntimeSecurityClient() (*RuntimeSecurityClient, error)
NewRuntimeSecurityClient instantiates a new RuntimeSecurityClient
func (*RuntimeSecurityClient) Close ¶
func (c *RuntimeSecurityClient) Close()
Close closes the connection
func (*RuntimeSecurityClient) DumpDiscarders ¶
func (c *RuntimeSecurityClient) DumpDiscarders() (string, error)
DumpDiscarders sends a request to dump discarders
func (*RuntimeSecurityClient) DumpNetworkNamespace ¶
func (c *RuntimeSecurityClient) DumpNetworkNamespace(snapshotInterfaces bool) (*api.DumpNetworkNamespaceMessage, error)
DumpNetworkNamespace sends a network namespace cache dump request
func (*RuntimeSecurityClient) DumpProcessCache ¶
func (c *RuntimeSecurityClient) DumpProcessCache(withArgs bool, format string) (string, error)
DumpProcessCache sends a process cache dump request
func (*RuntimeSecurityClient) GenerateActivityDump ¶
func (c *RuntimeSecurityClient) GenerateActivityDump(request *api.ActivityDumpParams) (*api.ActivityDumpMessage, error)
GenerateActivityDump send a dump activity request
func (*RuntimeSecurityClient) GenerateEncoding ¶
func (c *RuntimeSecurityClient) GenerateEncoding(request *api.TranscodingRequestParams) (*api.TranscodingRequestMessage, error)
GenerateEncoding sends a transcoding request
func (*RuntimeSecurityClient) GetActivityDumpStream ¶
func (c *RuntimeSecurityClient) GetActivityDumpStream() (api.SecurityModule_GetActivityDumpStreamClient, error)
GetActivityDumpStream returns a stream of activity dumps
func (*RuntimeSecurityClient) GetConfig ¶
func (c *RuntimeSecurityClient) GetConfig() (*api.SecurityConfigMessage, error)
GetConfig retrieves the config of the runtime security module
func (*RuntimeSecurityClient) GetEvents ¶
func (c *RuntimeSecurityClient) GetEvents() (api.SecurityModule_GetEventsClient, error)
GetEvents returns a stream of events
func (*RuntimeSecurityClient) GetRuleSetReport ¶
func (c *RuntimeSecurityClient) GetRuleSetReport() (*api.GetRuleSetReportResultMessage, error)
GetRuleSetReport gets the currently loaded policies from the system probe
func (*RuntimeSecurityClient) GetStatus ¶
func (c *RuntimeSecurityClient) GetStatus() (*api.Status, error)
GetStatus returns the status of the module
func (*RuntimeSecurityClient) ListActivityDumps ¶
func (c *RuntimeSecurityClient) ListActivityDumps() (*api.ActivityDumpListMessage, error)
ListActivityDumps lists the active activity dumps
func (*RuntimeSecurityClient) ListSecurityProfiles ¶
func (c *RuntimeSecurityClient) ListSecurityProfiles(includeCache bool) (*api.SecurityProfileListMessage, error)
ListSecurityProfiles lists the profiles held in memory by the Security Profile manager
func (*RuntimeSecurityClient) ReloadPolicies ¶
func (c *RuntimeSecurityClient) ReloadPolicies() (*api.ReloadPoliciesResultMessage, error)
ReloadPolicies instructs the system probe to reload its policies
func (*RuntimeSecurityClient) RunSelfTest ¶
func (c *RuntimeSecurityClient) RunSelfTest() (*api.SecuritySelfTestResultMessage, error)
RunSelfTest instructs the system probe to run a self test
func (*RuntimeSecurityClient) SaveSecurityProfile ¶
func (c *RuntimeSecurityClient) SaveSecurityProfile(name string, tag string) (*api.SecurityProfileSaveMessage, error)
SaveSecurityProfile saves the requested security profile to disk
func (*RuntimeSecurityClient) StopActivityDump ¶
func (c *RuntimeSecurityClient) StopActivityDump(name, container, cgroup string) (*api.ActivityDumpStopMessage, error)
StopActivityDump stops an active dump if it exists
type SecurityModuleClientWrapper ¶
type SecurityModuleClientWrapper interface { DumpDiscarders() (string, error) DumpProcessCache(withArgs bool, format string) (string, error) GenerateActivityDump(request *api.ActivityDumpParams) (*api.ActivityDumpMessage, error) ListActivityDumps() (*api.ActivityDumpListMessage, error) StopActivityDump(name, container, cgroup string) (*api.ActivityDumpStopMessage, error) GenerateEncoding(request *api.TranscodingRequestParams) (*api.TranscodingRequestMessage, error) DumpNetworkNamespace(snapshotInterfaces bool) (*api.DumpNetworkNamespaceMessage, error) GetConfig() (*api.SecurityConfigMessage, error) GetStatus() (*api.Status, error) RunSelfTest() (*api.SecuritySelfTestResultMessage, error) ReloadPolicies() (*api.ReloadPoliciesResultMessage, error) GetRuleSetReport() (*api.GetRuleSetReportResultMessage, error) GetEvents() (api.SecurityModule_GetEventsClient, error) GetActivityDumpStream() (api.SecurityModule_GetActivityDumpStreamClient, error) ListSecurityProfiles(includeCache bool) (*api.SecurityProfileListMessage, error) SaveSecurityProfile(name string, tag string) (*api.SecurityProfileSaveMessage, error) Close() }
SecurityModuleClientWrapper represents a security module client