agent

package
v0.0.0-...-17d25f2 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jan 13, 2025 License: Apache-2.0 Imports: 28 Imported by: 0

Documentation

Overview

Package agent holds agent related files

Package agent holds agent related files

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type RSAOptions

type RSAOptions struct {
	LogProfiledWorkloads bool
}

RSAOptions represents the runtime security agent options

type RuntimeSecurityAgent

type RuntimeSecurityAgent struct {
	// contains filtered or unexported fields
}

RuntimeSecurityAgent represents the main wrapper for the Runtime Security product

func NewRuntimeSecurityAgent

func NewRuntimeSecurityAgent(statsdClient statsd.ClientInterface, hostname string, opts RSAOptions, wmeta workloadmeta.Component) (*RuntimeSecurityAgent, error)

NewRuntimeSecurityAgent instantiates a new RuntimeSecurityAgent

func (*RuntimeSecurityAgent) DispatchActivityDump

func (rsa *RuntimeSecurityAgent) DispatchActivityDump(msg *api.ActivityDumpStreamMessage)

DispatchActivityDump forwards an activity dump message to the backend

func (*RuntimeSecurityAgent) DispatchEvent

func (rsa *RuntimeSecurityAgent) DispatchEvent(evt *api.SecurityEventMessage)

DispatchEvent dispatches a security event message to the subsytems of the runtime security agent

func (*RuntimeSecurityAgent) Start

func (rsa *RuntimeSecurityAgent) Start(reporter common.RawReporter, endpoints *config.Endpoints)

Start the runtime security agent

func (*RuntimeSecurityAgent) StartActivityDumpListener

func (rsa *RuntimeSecurityAgent) StartActivityDumpListener()

StartActivityDumpListener starts listening for new activity dumps from system-probe

func (*RuntimeSecurityAgent) StartEventListener

func (rsa *RuntimeSecurityAgent) StartEventListener()

StartEventListener starts listening for new events from system-probe

func (*RuntimeSecurityAgent) StatusProvider

func (rsa *RuntimeSecurityAgent) StatusProvider() status.Provider

StatusProvider returns the runtime security agent status provider

func (*RuntimeSecurityAgent) Stop

func (rsa *RuntimeSecurityAgent) Stop()

Stop the runtime recurity agent

type RuntimeSecurityClient

type RuntimeSecurityClient struct {
	// contains filtered or unexported fields
}

RuntimeSecurityClient is used to send request to security module

func NewRuntimeSecurityClient

func NewRuntimeSecurityClient() (*RuntimeSecurityClient, error)

NewRuntimeSecurityClient instantiates a new RuntimeSecurityClient

func (*RuntimeSecurityClient) Close

func (c *RuntimeSecurityClient) Close()

Close closes the connection

func (*RuntimeSecurityClient) DumpDiscarders

func (c *RuntimeSecurityClient) DumpDiscarders() (string, error)

DumpDiscarders sends a request to dump discarders

func (*RuntimeSecurityClient) DumpNetworkNamespace

func (c *RuntimeSecurityClient) DumpNetworkNamespace(snapshotInterfaces bool) (*api.DumpNetworkNamespaceMessage, error)

DumpNetworkNamespace sends a network namespace cache dump request

func (*RuntimeSecurityClient) DumpProcessCache

func (c *RuntimeSecurityClient) DumpProcessCache(withArgs bool, format string) (string, error)

DumpProcessCache sends a process cache dump request

func (*RuntimeSecurityClient) GenerateActivityDump

func (c *RuntimeSecurityClient) GenerateActivityDump(request *api.ActivityDumpParams) (*api.ActivityDumpMessage, error)

GenerateActivityDump send a dump activity request

func (*RuntimeSecurityClient) GenerateEncoding

GenerateEncoding sends a transcoding request

func (*RuntimeSecurityClient) GetActivityDumpStream

GetActivityDumpStream returns a stream of activity dumps

func (*RuntimeSecurityClient) GetConfig

GetConfig retrieves the config of the runtime security module

func (*RuntimeSecurityClient) GetEvents

GetEvents returns a stream of events

func (*RuntimeSecurityClient) GetRuleSetReport

GetRuleSetReport gets the currently loaded policies from the system probe

func (*RuntimeSecurityClient) GetStatus

func (c *RuntimeSecurityClient) GetStatus() (*api.Status, error)

GetStatus returns the status of the module

func (*RuntimeSecurityClient) ListActivityDumps

func (c *RuntimeSecurityClient) ListActivityDumps() (*api.ActivityDumpListMessage, error)

ListActivityDumps lists the active activity dumps

func (*RuntimeSecurityClient) ListSecurityProfiles

func (c *RuntimeSecurityClient) ListSecurityProfiles(includeCache bool) (*api.SecurityProfileListMessage, error)

ListSecurityProfiles lists the profiles held in memory by the Security Profile manager

func (*RuntimeSecurityClient) ReloadPolicies

ReloadPolicies instructs the system probe to reload its policies

func (*RuntimeSecurityClient) RunSelfTest

RunSelfTest instructs the system probe to run a self test

func (*RuntimeSecurityClient) SaveSecurityProfile

func (c *RuntimeSecurityClient) SaveSecurityProfile(name string, tag string) (*api.SecurityProfileSaveMessage, error)

SaveSecurityProfile saves the requested security profile to disk

func (*RuntimeSecurityClient) StopActivityDump

func (c *RuntimeSecurityClient) StopActivityDump(name, container, cgroup string) (*api.ActivityDumpStopMessage, error)

StopActivityDump stops an active dump if it exists

type SecurityModuleClientWrapper

type SecurityModuleClientWrapper interface {
	DumpDiscarders() (string, error)
	DumpProcessCache(withArgs bool, format string) (string, error)
	GenerateActivityDump(request *api.ActivityDumpParams) (*api.ActivityDumpMessage, error)
	ListActivityDumps() (*api.ActivityDumpListMessage, error)
	StopActivityDump(name, container, cgroup string) (*api.ActivityDumpStopMessage, error)
	GenerateEncoding(request *api.TranscodingRequestParams) (*api.TranscodingRequestMessage, error)
	DumpNetworkNamespace(snapshotInterfaces bool) (*api.DumpNetworkNamespaceMessage, error)
	GetConfig() (*api.SecurityConfigMessage, error)
	GetStatus() (*api.Status, error)
	RunSelfTest() (*api.SecuritySelfTestResultMessage, error)
	ReloadPolicies() (*api.ReloadPoliciesResultMessage, error)
	GetRuleSetReport() (*api.GetRuleSetReportResultMessage, error)
	GetEvents() (api.SecurityModule_GetEventsClient, error)
	GetActivityDumpStream() (api.SecurityModule_GetActivityDumpStreamClient, error)
	ListSecurityProfiles(includeCache bool) (*api.SecurityProfileListMessage, error)
	SaveSecurityProfile(name string, tag string) (*api.SecurityProfileSaveMessage, error)
	Close()
}

SecurityModuleClientWrapper represents a security module client

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL