Science Score: 26.0%

This score indicates how likely this project is to be science-related based on various indicators:

  • CITATION.cff file
  • codemeta.json file
    Found codemeta.json file
  • .zenodo.json file
    Found .zenodo.json file
  • DOI references
  • Academic publication links
  • Academic email domains
  • Institutional organization owner
  • JOSS paper metadata
  • Scientific vocabulary similarity
    Low similarity (5.7%) to scientific vocabulary
Last synced: 10 months ago · JSON representation

Repository

Basic Info
  • Host: GitHub
  • Owner: guni1192
  • License: apache-2.0
  • Language: Rust
  • Default Branch: main
  • Size: 162 KB
Statistics
  • Stars: 0
  • Watchers: 2
  • Forks: 3
  • Open Issues: 8
  • Releases: 1
Created over 5 years ago · Last pushed over 3 years ago
Metadata Files
Readme License Citation

README.md

Sprofiler

CircleCI

Sprofiler generate seccomp profiles for OCI Container

Requirement

sprofiler-bpf - Ubuntu >= 20.10 - Podman >= 3.0 - Cgroup v2 - CONFIG_DEBUG_INFO_BTF=y

Getting Started

Build

sudo apt install libelf-dev libgcc-s1 libbpf-dev clang curl linux-tools-generic linux-tools-common make pkg-config podman bpftool btf dump file /sys/kernel/btf/vmlinux format c > ./sprofiler/src/bpf/vmlinux.h cargo libbpf make

Run

```

Run container with dynamic analyzer

sudo podman run \ --annotation "io.sprofiler.outputseccompprofile_path=$(pwd)/seccomp-profile.json" \ ghcr.io/sai-lab/hello-c:latest

Run container enable no-new-privileges with dynamic analyzer

sudo podman run --security-opt=no-new-privileges \ --annotation "io.sprofiler.outputseccompprofile_path=$(pwd)/seccomp-profile.json" \ ghcr.io/sai-lab/hello-c:latest

check

sudo podman run --rm --security-opt seccomp=$(pwd)/seccomp-profile.json ghcr.io/sai-lab/hello-c:latest ```

Testing

cargo libbpf make sudo -E ./target/debug/sprofiler-test ./integration_test/sprofiler-test.yaml

Vagrant for develop environment

vagrant up --provider=libvirt

License

Apache License Version 2.0

Owner

  • Name: Takashi Iiguni
  • Login: guni1192
  • Kind: user
  • Location: Japan

Software Engineer

GitHub Events

Total
Last Year

Dependencies

Cargo.lock cargo
  • 145 dependencies
Dockerfile docker
  • rust ${RUST_VERSION}-slim-bullseye build