sprofiler
Science Score: 26.0%
This score indicates how likely this project is to be science-related based on various indicators:
-
○CITATION.cff file
-
✓codemeta.json file
Found codemeta.json file -
✓.zenodo.json file
Found .zenodo.json file -
○DOI references
-
○Academic publication links
-
○Academic email domains
-
○Institutional organization owner
-
○JOSS paper metadata
-
○Scientific vocabulary similarity
Low similarity (5.7%) to scientific vocabulary
Repository
Basic Info
- Host: GitHub
- Owner: guni1192
- License: apache-2.0
- Language: Rust
- Default Branch: main
- Size: 162 KB
Statistics
- Stars: 0
- Watchers: 2
- Forks: 3
- Open Issues: 8
- Releases: 1
Metadata Files
README.md
Sprofiler
Sprofiler generate seccomp profiles for OCI Container
Requirement
sprofiler-bpf
- Ubuntu >= 20.10
- Podman >= 3.0
- Cgroup v2
- CONFIG_DEBUG_INFO_BTF=y
Getting Started
Build
sudo apt install libelf-dev libgcc-s1 libbpf-dev clang curl linux-tools-generic linux-tools-common make pkg-config podman
bpftool btf dump file /sys/kernel/btf/vmlinux format c > ./sprofiler/src/bpf/vmlinux.h
cargo libbpf make
Run
```
Run container with dynamic analyzer
sudo podman run \ --annotation "io.sprofiler.outputseccompprofile_path=$(pwd)/seccomp-profile.json" \ ghcr.io/sai-lab/hello-c:latest
Run container enable no-new-privileges with dynamic analyzer
sudo podman run --security-opt=no-new-privileges \ --annotation "io.sprofiler.outputseccompprofile_path=$(pwd)/seccomp-profile.json" \ ghcr.io/sai-lab/hello-c:latest
check
sudo podman run --rm --security-opt seccomp=$(pwd)/seccomp-profile.json ghcr.io/sai-lab/hello-c:latest ```
Testing
cargo libbpf make
sudo -E ./target/debug/sprofiler-test ./integration_test/sprofiler-test.yaml
Vagrant for develop environment
vagrant up --provider=libvirt
License
Apache License Version 2.0
Owner
- Name: Takashi Iiguni
- Login: guni1192
- Kind: user
- Location: Japan
- Website: https://guni.dev
- Repositories: 83
- Profile: https://github.com/guni1192
Software Engineer
GitHub Events
Total
Last Year
Dependencies
- 145 dependencies
- rust ${RUST_VERSION}-slim-bullseye build