Documentation ¶
Index ¶
- Constants
- type CapabilitiesEvent
- type ContainerActivityEvent
- type ContainerActivityEventListener
- type DnsEvent
- type EventSink
- type EventType
- type ExecveEvent
- type GeneralEvent
- type ITracer
- type NetworkEvent
- type OpenEvent
- type Tracer
- func (t *Tracer) AddContainerActivityListener(listener ContainerActivityEventListener)
- func (t *Tracer) AddEventSink(sink EventSink)
- func (t *Tracer) PeekSyscallInContainer(nsMountId uint64) ([]string, error)
- func (t *Tracer) RemoveContainerActivityListener(listener ContainerActivityEventListener)
- func (t *Tracer) RemoveEventSink(sink EventSink)
- func (t *Tracer) Start() error
- func (t *Tracer) Stop() error
Constants ¶
View Source
const ( ContainerActivityEventStart = "start" ContainerActivityEventStop = "stop" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type CapabilitiesEvent ¶
type CapabilitiesEvent struct { GeneralEvent Syscall string CapabilityName string }
func (*CapabilitiesEvent) GobDecode ¶
func (event *CapabilitiesEvent) GobDecode(buf []byte) error
func (*CapabilitiesEvent) GobEncode ¶
func (event *CapabilitiesEvent) GobEncode() ([]byte, error)
Encode/Decode functions for CapabilitiesEvent
type ContainerActivityEvent ¶
type ContainerActivityEventListener ¶
type ContainerActivityEventListener interface { // OnContainerActivityEvent is called when a container activity event is received OnContainerActivityEvent(event *ContainerActivityEvent) }
type DnsEvent ¶
type DnsEvent struct { GeneralEvent DnsName string Addresses []string }
type EventSink ¶
type EventSink interface { // SendExecveEvent sends an execve event to the sink SendExecveEvent(event *ExecveEvent) // SendOpenEvent sends a OPEN event to the sink SendOpenEvent(event *OpenEvent) // SendCapabilitiesEvent sends a Capabilities event to the sink SendCapabilitiesEvent(event *CapabilitiesEvent) // SendDnsEvent sends a Dns event to the sink SendDnsEvent(event *DnsEvent) // SendNetworkEvent sends a Network event to the sink SendNetworkEvent(event *NetworkEvent) }
type ExecveEvent ¶
type ExecveEvent struct { GeneralEvent PathName string Args []string Env []string }
func (*ExecveEvent) GobDecode ¶
func (event *ExecveEvent) GobDecode(buf []byte) error
func (*ExecveEvent) GobEncode ¶
func (event *ExecveEvent) GobEncode() ([]byte, error)
Encode/Decode functions for ExecveEvent
type GeneralEvent ¶ added in v0.0.14
type ITracer ¶
type ITracer interface { Start() error Stop() error AddContainerActivityListener(listener ContainerActivityEventListener) RemoveContainerActivityListener(listener ContainerActivityEventListener) PeekSyscallInContainer(nsMountId uint64) ([]string, error) AddEventSink(sink EventSink) RemoveEventSink(sink EventSink) }
type NetworkEvent ¶
type NetworkEvent struct { GeneralEvent PacketType string Protocol string Port uint16 DstEndpoint string }
func (*NetworkEvent) GobDecode ¶
func (event *NetworkEvent) GobDecode(buf []byte) error
func (*NetworkEvent) GobEncode ¶
func (event *NetworkEvent) GobEncode() ([]byte, error)
Encode/Decode functions for NetowrkEvent
type OpenEvent ¶
type OpenEvent struct { GeneralEvent TaskName string TaskId int PathName string Flags []string }
type Tracer ¶
type Tracer struct {
// contains filtered or unexported fields
}
func (*Tracer) AddContainerActivityListener ¶
func (t *Tracer) AddContainerActivityListener(listener ContainerActivityEventListener)
func (*Tracer) AddEventSink ¶ added in v0.0.13
func (*Tracer) PeekSyscallInContainer ¶
func (*Tracer) RemoveContainerActivityListener ¶
func (t *Tracer) RemoveContainerActivityListener(listener ContainerActivityEventListener)
func (*Tracer) RemoveEventSink ¶ added in v0.0.13
Click to show internal directories.
Click to hide internal directories.