search

aporeto-inc / trireme-lib

Simple, scalable and secure application segmentation
https://trireme.io
Apache License 2.0
299 stars 51 forks source link

Make changes to trireme to account for the cap changes/non-privileged #1017

Open abhijitherekar opened 4 years ago

abhijitherekar commented 4 years ago

aporeto-inc/aporeto#2790

With the CAP changes we cannot edit the /proc FS. We need to Write into the parent proc.

Description

Changes proposed in this pull request.

Test plan

Outline the test plan used to test this change before merging it.

Fixes #.

codecov[bot] commented 4 years ago

Codecov Report

Merging #1017 into master will decrease coverage by 0.12%. The diff coverage is 60%.

Impacted file tree graph

@@            Coverage Diff             @@
##           master    #1017      +/-   ##
==========================================
- Coverage   55.25%   55.13%   -0.13%     
==========================================
  Files         133      133              
  Lines       12642    12648       +6     
==========================================
- Hits         6985     6973      -12     
- Misses       4999     5025      +26     
+ Partials      658      650       -8
Impacted Files Coverage Δ
...er/internal/enforcer/nfqdatapath/datapath_linux.go 59.09% <60%> (+15.34%) :arrow_up:
monitor/extractors/linux.go 48.78% <0%> (-21.96%) :arrow_down:

Continue to review full report at Codecov.

Legend - Click here to learn more Δ = absolute <relative> (impact), ø = not affected, ? = missing data Powered by Codecov. Last update 9c2317a...98cfa53. Read the comment docs.

abhijitherekar commented 4 years ago

/build - automatically fired by gogo with following PRs and commit SHAs v1.0.0

[
  {
    "project": "cap-change",
    "component": "enforcerd",
    "pr-id": "1638",
    "commit-sha": "b91dedec0b50f3acdcf2df70d14214460e63dc43",
    "pipeline": "master"
  },
  {
    "project": "cap-change",
    "component": "trireme-lib",
    "pr-id": "1017",
    "commit-sha": "98cfa532f3386b07422f549e8a2fbb136651f532",
    "pipeline": "master"
  }
]
abhijitherekar commented 4 years ago

/build - automatically fired by gogo with following PRs and commit SHAs v1.0.0

[
  {
    "project": "cap-change",
    "component": "enforcerd",
    "pr-id": "1638",
    "commit-sha": "5389b9990cd65b769ecfe34f74a1e7dd2f73aa2a",
    "pipeline": "master"
  },
  {
    "project": "cap-change",
    "component": "trireme-lib",
    "pr-id": "1017",
    "commit-sha": "98cfa532f3386b07422f549e8a2fbb136651f532",
    "pipeline": "master"
  }
]