Skip to content

Pr/olsajiri/override user #4005

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 9 commits into
base: main
Choose a base branch
from
Draft

Pr/olsajiri/override user #4005

wants to merge 9 commits into from

Conversation

olsajiri
Copy link
Contributor

wip

@netlify Netlify
Copy link

netlify bot commented Aug 12, 2025
edited
Loading

Deploy Preview for tetragon ready!

Name Link
🔨 Latest commit 65f03fe
🔍 Latest deploy log https://app.netlify.com/projects/tetragon/deploys/68beccbb469b9c00088582cf
😎 Deploy Preview https://deploy-preview-4005--tetragon.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@olsajiri olsajiri added the release-note/minor This PR introduces a minor user-visible change label Aug 12, 2025
@olsajiri olsajiri force-pushed the pr/olsajiri/override_user branch 9 times, most recently from 205987b to 0458739 Compare August 18, 2025 10:06
@olsajiri olsajiri force-pushed the pr/olsajiri/override_user branch 4 times, most recently from 987681b to a5476da Compare September 4, 2025 09:37
@olsajiri
tetragon: Add usdt-override test program
3d9b969 
Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri
tetragon: Store 8 usdt arguments in event config object
103591a 
It helps with making verifier happy wrt masking usdt arg index.

Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri
tetragon: Add set action spec changes
c2f51c2 
Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri
tetragon: Add codegen and generate changes
2f7fabd 
Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri
tetragon: Add loader support for uprobe write offload
5b43243 
Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri
tetragon: Add loader support for uprobe multi write offload
37cdbc3 
Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri
tetragon: Add support for usdt set action
9f5579e 
Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri
tetragon: Add test for usdt set action
29bcba3 
Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri
tetragon: Add usdt set action example
65f03fe 
Signed-off-by: Jiri Olsa <[email protected]>
@olsajiri olsajiri force-pushed the pr/olsajiri/override_user branch from a5476da to 65f03fe Compare September 8, 2025 12:31
@kkourt kkourt mentioned this pull request Sep 17, 2025
Draft
@kkourt
Copy link
Contributor

kkourt commented Sep 18, 2025

Tried this out and it seems to work 🎉

One thing I noticed is that the kernel has lockdown enabled, the program refuses to load:

[66658.017991] Lockdown: tetragon: use of bpf to write user RAM is restricted; see man kernel_lockdown.7

This happens even if we don't use the "Set" action. So we might want to have a way to check this at runtime and set a constant in the bpf code to prove to the verifier that the write is actually dead code, so that we can load policies that do not use "Set" in lockdown kernels. It can be a followup to this PR though.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
release-note/minor This PR introduces a minor user-visible change
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@olsajiri @kkourt