-
Notifications
You must be signed in to change notification settings - Fork 315
/
Copy pathfalco-no-driver.yaml
92 lines (82 loc) · 2.04 KB
/
falco-no-driver.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
package:
name: falco-no-driver
version: 0.39.2
epoch: 0
description: Cloud Native Runtime Security
copyright:
- license: Apache-2.0
dependencies:
runtime:
- falco-rules
environment:
contents:
packages:
- autoconf
- bash
- bpftool
- build-base
- busybox
- c-ares-dev
- clang
- cmake
- curl-dev
- elfutils-dev
- gcc-12-default
- git
- grpc-dev
- isl-dev
- libbpf
- libbpf-dev
- libelf-static
- libtool
- mpc-dev
- openssl-dev
- pkgconf
- protobuf-dev
- yaml-cpp-dev
- zlib-dev
environment:
# See https://github.com/wolfi-dev/os/issues/34075
GCC_SPEC_FILE: "/dev/null"
pipeline:
- uses: git-checkout
with:
repository: https://github.com/falcosecurity/falco
tag: ${{package.version}}
expected-commit: 89a024bfdfd8bedba4aaebc21a6426cc24010520
recurse-submodules: true
- runs: |
mkdir skeleton-build && cd skeleton-build
cmake -DUSE_BUNDLED_DEPS=ON -DBUILD_FALCO_MODERN_BPF=ON -DCREATE_TEST_TARGETS=Off -DFALCO_VERSION=${{package.version}} ..
make ProbeSkeleton -j$(nproc)
mkdir -p /tmp
cp ./skel_dir/bpf_probe.skel.h /tmp
- runs: |
mkdir build && cd build
cmake \
-DCMAKE_BUILD_TYPE=Release \
-DUSE_BUNDLED_DEPS=On \
-DFALCO_ETC_DIR=/etc/falco \
-DBUILD_FALCO_MODERN_BPF=ON \
-DMODERN_BPF_SKEL_DIR=/tmp \
-DBUILD_DRIVER=Off \
-DBUILD_BPF=Off \
-DFALCO_VERSION=${{package.version}} \
..
make falco -j$(nproc)
- runs: |
mkdir -p ${{targets.destdir}}/usr/bin
mv ./build/userspace/falco/falco ${{targets.destdir}}/usr/bin/falco
mkdir -p "${{targets.destdir}}"/etc/falco
install -Dm755 ./falco.yaml "${{targets.destdir}}"/etc/falco/falco.yaml
- uses: strip
update:
enabled: true
github:
identifier: falcosecurity/falco
test:
pipeline:
# AUTOGENERATED
- runs: |
falco --version
falco --help