ebpf-challenge

oec/ebpf-challenge

Fork 0

Commit Graph

Author	SHA1	Message	Date
Özgür Kesim	fb59ca1072	modular solution, first working draft symbolyze/ now contains a module that exposes a Finder type with a simple API, like: finder := symbolyze.New("_PyRuntime", "python3") finder.Debug(true) finder.OnFound(mapFD.Set) finder.Run() Instead of writing (pid, offset) directly to a eBPF-map, it implements an observer-pattern and expects a callback. TODOs/next steps: - Write documentation - Add tests - Experiment and re-evaluate design	2020-01-15 20:42:53 +01:00

Author

SHA1

Message

Date

Özgür Kesim

fb59ca1072

modular solution, first working draft

symbolyze/ now contains a module that exposes a Finder type with a
simple API, like:

	finder := symbolyze.New("_PyRuntime", "*python3*")
	finder.Debug(true)
	finder.OnFound(mapFD.Set)
	finder.Run()

Instead of writing (pid, offset) directly to a eBPF-map, it implements
an observer-pattern and expects a callback.

TODOs/next steps:

	- Write documentation
	- Add tests
	- Experiment and re-evaluate design

2020-01-15 20:42:53 +01:00

1 Commits