Releases: falcosecurity/libs
Releases · falcosecurity/libs
0.17.0-rc1
fix(driver/configure): properly pass `CC` variable as make argument. Signed-off-by: Federico Di Pierro <[email protected]>
7.1.0+driver
Driver Testing Matrix amd64
| KERNEL | CMAKE-CONFIGURE | KMOD BUILD | KMOD SCAP-OPEN | BPF-PROBE BUILD | BPF-PROBE SCAP-OPEN | MODERN-BPF SCAP-OPEN |
|---|---|---|---|---|---|---|
| amazonlinux2-4.19 | 🟢 | 🟢 | 🟢 | 🟢 | ❌ | 🟡 |
| amazonlinux2-5.10 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| amazonlinux2-5.15 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| amazonlinux2-5.4 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟡 |
| amazonlinux2022-5.15 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| amazonlinux2023-6.1 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| archlinux-6.0 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| archlinux-6.7 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| centos-3.10 | 🟢 | 🟢 | 🟢 | 🟡 | 🟡 | 🟡 |
| centos-4.18 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| centos-5.14 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| fedora-5.17 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| fedora-5.8 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| fedora-6.2 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| oraclelinux-3.10 | 🟢 | 🟢 | 🟢 | 🟡 | 🟡 | 🟡 |
| oraclelinux-4.14 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟡 |
| oraclelinux-5.15 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| oraclelinux-5.4 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟡 |
| ubuntu-4.15 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟡 |
| ubuntu-5.8 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟡 |
| ubuntu-6.5 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
Driver Testing Matrix arm64
| KERNEL | CMAKE-CONFIGURE | KMOD BUILD | KMOD SCAP-OPEN | BPF-PROBE BUILD | BPF-PROBE SCAP-OPEN | MODERN-BPF SCAP-OPEN |
|---|---|---|---|---|---|---|
| amazonlinux2-5.4 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟡 |
| amazonlinux2022-5.15 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| fedora-6.2 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| oraclelinux-4.14 | 🟢 | 🟢 | 🟢 | 🟡 | 🟡 | 🟡 |
| oraclelinux-5.15 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
| ubuntu-6.5 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 | 🟢 |
v7.1.0+driver
Released on 2024-05-02
Major Changes
- new(driver): collect
devandinodein all open-family syscalls [#1755] - @mrgian - feat(driver): add support for newfstatat syscall [#1628] - @mrgian
Minor Changes
- Update(driver): Introduce the BPF commands name [#1545] - @Rohith-Raju
Bug Fixes
- fix(driver):
exe_writableis not being filled with the correct value with kernels <3.1.0 [#1629] - @therealbobo - fix(drivers): add always a null terminator after
argsandenvs[#1800] - @Andreagit97 - fix(modern_bpf): recvmsg filler sending empty addres for udp connections [#1773] - @mrgian
- fix(driver): avoid sending a NULL tuple in
recvfromsyscall [#1767] - @mrgian - fix(driver-kmod): error: too many arguments to function ‘class_create’ [#1725] - @deepskyblue86
Non user-facing changes
- fix(ci): fixed release-body-driver workflow. [#1823] - @FedeDP
- Use config check to enable memfd related processing [#1819] - @lrishi
- fix(driver/modern_bpf,test/drivers): fixed drivers_test on ppc64le [#1739] - @FedeDP
- feat(driver): Add loongarch64 kernel module support [#1803] - @yzewei
- docs(driver/bpf): minimum kernel release ver for bpf for ppc64le is 5.1. [#1794] - @FedeDP
- fix(driver/modern_bpf): correctly set dyn snaplen w/ sendmsg and sendto [#1778] - @therealbobo
- fix(driver/bpf) honor CLANG and LLC from the env [#1772] - @iurly
- fix(driver/bpf): report correct args of getresuid syscall [#1769] - @therealbobo
- fix(fillers): remove user-triggerable assertions in flag conversion code [#1764] - @gnosek
- fix(driver/modern_bpf): avoid type confusion setting snaplen [#1762] - @therealbobo
- fix(kmod): fix signedness on fd of dup syscalls [#1761] - @therealbobo
- new: add support for
delete_modulesyscall [#1717] - @loresuso - fix(test): improve process_vm_readvX failure test [#1716] - @therealbobo
- fix(driver/kmod): always send fds to userspace in poll/ppoll syscall exit [#1714] - @mrgian
- chore(driver): properly use
strscpy. [#1632] - @FedeDP - fix(modern_bpf): null destination address in
sendtoandsendmsgsyscalls [#1687] - @mrgian - fix(driver): configure newfstatat with UF_ALWAYS_DROP [#1683] - [@wigol](https://git...
Contributors
FedeDP
Assets 2
0.16.0
v0.16.0
Released on 2024-05-02
Minor Changes
- refactor(userspace/libsinsp): improve performance of endswith filter operator [#1796] - @jasondellaluce
- refactor(libsinsp): better clarify filtercheck subclass extracting only one value [#1792] - @jasondellaluce
- refactor!(chisels): deprecate chisels [#1785] - @therealbobo
Bug Fixes
- fix(sinsp): set a null terminator instead of throwing an exception [#1818] - @Andreagit97
- fix(libscap): fix libscap crashing if scap functions are called with a NULL handle [#1802] - @LucaGuerra
- fix(userspace/libsinsp): solve formatts being cropped with fd.types [#1781] - @jasondellaluce
- fix(gvisor): fix duplicated command names [#1777] - @LucaGuerra
Non user-facing changes
- cleanup(libscap): Allow retries after encountering SCAP_EOF [#1809] - @geraldcombs
- new(userspace/libsinsp): allow to not retrieve detailed user info [#1765] - @erthalion
- fix(userspace/libsinsp): properly set successful lookup state when parsing old container json events [#1811] - @FedeDP
- fix(libscap): send a consistent length when reading scap files [#1812] - @LucaGuerra
- fix(userspace/libsinsp): properly use
strleninstead ofsizeofwhen assigning user/group string infos [#1813] - @FedeDP - cleanup(libsinsp): throw exception for invalid parsed string vectors [#1810] - @LucaGuerra
- fix(e2e_ci): always update apt index [#1808] - @therealbobo
- fix(driver/modern_bpf): address task_struct has no embedded thread_info [#1806] - @Andreagit97
- new(userspace/libsinsp): check usage of wrong-sized variadic arguments in sinsp tests [#1799] - @FedeDP
- fix(libsinsp_e2e): disable flaky sys_call_test.forking_clone_fs e2e test [#1801] - @therealbobo
- fix(userspace/libsinsp): fixed multiple proc related tests variadic arguments types [#1798] - @FedeDP
- new(tests): add some libsinsp tests [#1791] - @Andreagit97
- cleanup(userspace/libsinsp): improved sinsp metrics_collector to make it more future proof [#1745] - @FedeDP
- new(userspace/libsinsp): add building blocks for filter field transformers [#1793] - @jasondellaluce
- feat(libsinsp/container_info): change default / init lookup state to
FAILED[#1707] - @incertum - Reviewing and enhancing fields inline documentation [1/N] (
proc.*) [#1779] - @leogr - feat(tests): new e2e tests [6/N] [#1776] - @therealbobo
- fix(userspace): remove some wrong asserts [#1790] - @Andreagit97
- fix(cmake/modules/re2): use sed compatible syntax w/ macos [#1788] - @therealbobo
- test(userspace/libsinsp): add cases for formatters and minor improvements [#1787] - @jasondellaluce
- fix(libsinsp_e2e): make forking_clone_fs more reliable [#1783] - @therealbobo
- fix(cmake/modules/re2): fix configure issue on cmake >=3.29.1 [#1786] - @therealbobo
- new(scap-open): collect the average dimension of events [#1780] - @Andreagit97
- fix(build): use ENABLE_COVERAGE for coverage, fix segfault [#1766] - @LucaGuerra
- fix(tests/gvisor): fix build and sanitizer exec in gvisor parser tests [#1782] - @LucaGuerra
- feat(tests): new e2e tests [5/N] [#1771] - @therealbobo
- new(libsinsp/test): new unit tests for logger [#1770] - @therealbobo
- update(build): update libcurl to 8.7.1 [#1774] - @LucaGuerra
- chore(.github): enhance heuristics API_VERSION and SCHEMA_VERSION checks [#1768] - @leogr
- feat(tests): new e2e tests [4/N] [#1763] - @therealbobo
- feat(tests): new e2e tests [3/N] [#1720] - @therealbobo
- chore(ci): libsinsp e2e CI caching [#1756] - @therealbobo
- Revert "update(sinsp): implement suppressed tid cache in sinsp_suppress" [#1748] - @gnosek
- fix(libpman): fix compilation issue with -Werror [#1752] - @therealbobo
Statistics
| MERGED PRS | NUMBER |
|---|---|
| Not user-facing | 34 |
| Release note | 7 |
| Total | 41 |
Release Manager @FedeDP
Contributors
FedeDP
Assets 2
0.16.0-rc4
Use config check to enable memfd related processing (#550) Signed-off-by: Lovel Rishi <[email protected]>
0.16.0-rc3
fix(scap): set a null terminator when we collect args from /proc Signed-off-by: Andrea Terzolo <[email protected]>
0.16.0-rc2
fix(userspace/libsinsp): properly set successful lookup state when pa…
7.1.0+driver-rc1
cleanup(libsinsp): throw exception for invalid parsed string vectors Signed-off-by: Luca Guerra <[email protected]>
0.16.0-rc1
cleanup(libsinsp): throw exception for invalid parsed string vectors Signed-off-by: Luca Guerra <[email protected]>
0.15.1
v0.15.1
Released on 2024-03-22
Bug Fixes
Non user-facing changes
Statistics
| MERGED PRS | NUMBER |
|---|---|
| Not user-facing | 1 |
| Release note | 1 |
| Total | 2 |
Release Manager @FedeDP
Contributors
FedeDP
Assets 2
0.15.0
v0.15.0
Released on 2024-03-15
Breaking Changes ⚠️
- refactor(userspace/libsinsp)!: reduce usage of raw pointers [#1702] - @jasondellaluce
- refactor(userspace/libsinsp)!: remove
friendclasses,VISIBILITY_PRIVATE, andVISIBILITY_PROTECTED[#1676] - @jasondellaluce - refactor(userspace/libsinsp)!: file descriptor tables for better OOP design and extensibility [#1637] - @jasondellaluce
- clenup(userspace/libsinsp)!: remove unused filter compiler flag [#1638] - @jasondellaluce
Major Changes
- new(userspace/libsinsp): support case insensitive glob with the operator "iglob" [#1547] - @therealbobo
- feat(libsinsp): plugin dynamic reconfiguration [#1674] - @mrgian
- feat(libsinsp): add logging capability to the plugin API [#1640] - @mrgian
Minor Changes
- cleanup(userspace): libs consumers have to change the include paths. [#1509] - @therealbobo
- refactor!(libsinsp): coherent metrics interface, new light weight
metrics_collectorclass + technical debt cleanup [#1652] - @incertum - refactor(userspae/libsinsp): api methods for controlling automatic routines [#1635] - @jasondellaluce
- action required: the dumper has been removed from the inspector (in
next()). Now its logic has to be called explicitly in the main loop of the consumer. [#1542] - @therealbobo
Bug Fixes
- fix(userspace/libsinsp): field lists are hidden by mistake [#1735] - @jasondellaluce
- fix(libscap): fix m_driver_procinfo memleak on inspector close [#1692] - @LucaGuerra
- fix(libsinsp): fix potentially uninitialized value for m_exe_writable, m_exe_upper_layer and m_exe_from_memfd [#1691] - @LucaGuerra
Non user-facing changes
- fix(driver/bpf): KBUILD_CPPFLAGS [#1749] - @deepskyblue86
- fix(driver): CC variable for debian [#1746] - @deepskyblue86
- feat(tests): new e2e tests [2/N] [#1715] - @therealbobo
- chore(ci): enable chisels on win32 build [#1744] - @therealbobo
- fix: missing cstdint include to fix build on Alpine [#1742] - @Quarky9
- new(build): add individual cmake sanitizer options, enable in e2e [#1721] - @LucaGuerra
- fix(test/drivers): fix ENOSYS check and test skipping. [#1737] - @FedeDP
- new(driver/bpf): added bpf configure system similar to the kmod one. [#1729] - @FedeDP
- fix(libsinsp): avoid setting a null event pointer when returning SCAP… [#1738] - @mrgian
- fix(driver): properly pass KBUILD_MODPOST_WARN env variable to configure makefile if set [#1734] - @FedeDP
- fix(plugins): make list_fields return a const pointer [#1732] - @gnosek
- fix(test/driver): fix process_vm_readv concurrency [#1736] - @therealbobo
- fix(test/libsinsp_e2e): fix multiple thread-safety issues in event_ca… [#1704] - @therealbobo
- fix: misc socketpair fds problems [#1733] - @therealbobo
- fix(schema): fix some inconsistencies with flags/int types [#1730] - @gnosek
- refactor(cri): restructure CRI API (improve robustness, clarity and maintainability) [#1600] - @incertum
- fix(driver): properly use DRIVER_KMOD_COMPONENT_NAME when installing kmod configure modules [#1728] - @FedeDP
- fix(build): replace {0} zero-init with {} [#1731] - @gnosek
- new(libsinsp/test): add new async_key_value_source tests [#1727] - @therealbobo
- cleanup(libsinsp): adjust setting max_thread_table_size [#1631] - @incertum
- fix(engine/savefile): fix crash when reading proclist from scap [#1726] - @LucaGuerra
- new(driver): kmod configure system [#1452] - @deepskyblue86
- cleanup(libsinsp): scap_evt cleanups [#1722] - @LucaGuerra
- refactor(cri): fast-track add containers to cache (synchronous lookup case, Falco run w/
--disable-cri-async) [#1595] - @incertum - fix: Some warnings when compiling with GCC 14 [#1718] - @federico-sysdig
- chore(driver): allow kmod and bpf drivers different components [#1709] - @FedeDP
- fix(userspace/libsinsp): make sure fd table's tid is set [#1710] - @jasondellaluce
- update(cmake): bumped valijson to latest version. [#1713] - @FedeDP
- Silence missing BPF program error [#1393] - @erthalion
- fix(test/drivers): increase driver tests compatibility with older kernels (< 4.18) [#1686] - @therealbobo
- cleanup(libsinsp): fix warnings on e2e tests [#1705] - @LucaGuerra
- cleanup(libsinsp): remove some more misaligned accesses [#1706] - @LucaGuerra
- feat(tests): new e2e tests [1/N] [#1661] - @therealbobo
- cleanup(ci): dropped circleCI. [#1703] - @FedeDP
- fix(tests): add missing bools to sinsp threadinfo [#1698] - @LucaGuerra
- new(gha): enable UndefinedBehaviorSanitizer [#1685] - @LucaGuerra
- cleanup: Split class sinsp_with_test_input into hdr + src [#1694] - @federico-sysdig
- cleanup(libsinsp): remove unused functions from utils.cpp [#1697] - @therealbobo
- update(cmake): Use the static CRT on Windows by default [#1695] - @geraldcombs
- fix(ci): fixed update-syscalls input. [#1696] - @FedeDP
- cleanup(libsinsp): cleanup more memory read/writes in filterchecks [#1690] - @LucaGuerra
- cleanup(libsinsp): add CT_UNKNOWN as container_type zero value [#1688] - @LucaGuerra
- fix(chisel): don't fail if directory doesn't exist [#1689] - @therealbobo
- c...
Contributors
FedeDP