├── .gitignore ├── LICENSE ├── Makefile ├── README.md ├── go.mod ├── go.sum ├── headers ├── LICENSE.BSD-2-Clause ├── bpf_core_read.h ├── bpf_endian.h ├── bpf_helper_defs.h ├── bpf_helpers.h ├── bpf_tracing.h ├── common.h ├── update.sh └── vmlinux.h ├── pkg ├── bpfenforcer │ ├── bpf │ │ ├── capability.h │ │ ├── enforcer.c │ │ ├── enforcer.h │ │ ├── file.h │ │ ├── mount.h │ │ ├── network.h │ │ ├── perms.h │ │ ├── process.h │ │ └── ptrace.h │ ├── bpf_bpfel.go │ ├── bpf_bpfel.o │ ├── const.go │ ├── enforcer.go │ ├── enforcer_test.go │ ├── rule.go │ ├── types.go │ └── utils.go └── processtracer │ ├── bpf │ └── tracer.c │ ├── bpf_bpfel.go │ ├── bpf_bpfel.o │ ├── tracer.go │ ├── tracer_test.go │ └── utils.go └── tools ├── apparmor_capable.stp ├── cap_capable.stp ├── ns_capable_common.stp ├── override_creds.stp └── setns.stp /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/.gitignore -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/Makefile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/README.md -------------------------------------------------------------------------------- /go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/go.mod -------------------------------------------------------------------------------- /go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/go.sum -------------------------------------------------------------------------------- /headers/LICENSE.BSD-2-Clause: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/LICENSE.BSD-2-Clause -------------------------------------------------------------------------------- /headers/bpf_core_read.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/bpf_core_read.h -------------------------------------------------------------------------------- /headers/bpf_endian.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/bpf_endian.h -------------------------------------------------------------------------------- /headers/bpf_helper_defs.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/bpf_helper_defs.h -------------------------------------------------------------------------------- /headers/bpf_helpers.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/bpf_helpers.h -------------------------------------------------------------------------------- /headers/bpf_tracing.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/bpf_tracing.h -------------------------------------------------------------------------------- /headers/common.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/common.h -------------------------------------------------------------------------------- /headers/update.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/update.sh -------------------------------------------------------------------------------- /headers/vmlinux.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/headers/vmlinux.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/capability.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/capability.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/enforcer.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/enforcer.c -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/enforcer.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/enforcer.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/file.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/file.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/mount.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/mount.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/network.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/network.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/perms.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/perms.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/process.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/process.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf/ptrace.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf/ptrace.h -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf_bpfel.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf_bpfel.go -------------------------------------------------------------------------------- /pkg/bpfenforcer/bpf_bpfel.o: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/bpf_bpfel.o -------------------------------------------------------------------------------- /pkg/bpfenforcer/const.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/const.go -------------------------------------------------------------------------------- /pkg/bpfenforcer/enforcer.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/enforcer.go -------------------------------------------------------------------------------- /pkg/bpfenforcer/enforcer_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/enforcer_test.go -------------------------------------------------------------------------------- /pkg/bpfenforcer/rule.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/rule.go -------------------------------------------------------------------------------- /pkg/bpfenforcer/types.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/types.go -------------------------------------------------------------------------------- /pkg/bpfenforcer/utils.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/bpfenforcer/utils.go -------------------------------------------------------------------------------- /pkg/processtracer/bpf/tracer.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/processtracer/bpf/tracer.c -------------------------------------------------------------------------------- /pkg/processtracer/bpf_bpfel.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/processtracer/bpf_bpfel.go -------------------------------------------------------------------------------- /pkg/processtracer/bpf_bpfel.o: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/processtracer/bpf_bpfel.o -------------------------------------------------------------------------------- /pkg/processtracer/tracer.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/processtracer/tracer.go -------------------------------------------------------------------------------- /pkg/processtracer/tracer_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/processtracer/tracer_test.go -------------------------------------------------------------------------------- /pkg/processtracer/utils.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/pkg/processtracer/utils.go -------------------------------------------------------------------------------- /tools/apparmor_capable.stp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/tools/apparmor_capable.stp -------------------------------------------------------------------------------- /tools/cap_capable.stp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/tools/cap_capable.stp -------------------------------------------------------------------------------- /tools/ns_capable_common.stp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/tools/ns_capable_common.stp -------------------------------------------------------------------------------- /tools/override_creds.stp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/tools/override_creds.stp -------------------------------------------------------------------------------- /tools/setns.stp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bytedance/vArmor-ebpf/HEAD/tools/setns.stp --------------------------------------------------------------------------------