Mount eBPF filesystem by default on 1.27+ by cartermckinnon · Pull Request #1223 · awslabs/amazon-eks-ami

cartermckinnon · 2023-03-17T17:35:05Z

Issue #, if available:

Closes #728

Description of changes:

Mounts the eBPF filesystem by default.

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

Testing Done

> make 1.25
# succeeds, launched an instance
> mount | grep bpf
none on /sys/fs/bpf type bpf (rw,nosuid,nodev,noexec,relatime,mode=700)

cartermckinnon · 2023-03-17T17:42:37Z

spoke with @mmerkes, I'll change this to a runtime option so that we don't cause issues if folks are already mounting this themselves.

files/bootstrap.sh

files/bin/mount-bpf-fs

files/bootstrap.sh

test/cases/mount-bpf-fs.sh

daisuke-yoshimoto · 2023-03-24T03:29:20Z

@cartermckinnon @mmerkes

When this PR is completed, will "Container runtime for GurdDuty" be released soon?

mmerkes · 2023-03-24T15:14:41Z

@daisuke-yoshimoto This is a standalone thing and has no relation to anything else on our end.

files/bootstrap.sh

Mount eBPF filesystem by default

10ba835

Set up mount at runtime

776dc2b

mmerkes reviewed Mar 20, 2023

View reviewed changes

files/bootstrap.sh Show resolved Hide resolved

cartermckinnon added 5 commits March 20, 2023 11:10

Add missed mount-bpf-fs helper

0325011

Fix lint findings

ab099eb

Fix unit tests

a4839b0

Fix lint findings

bcabab8

Use correct unit name for systemctl commands

76ea560

mmerkes reviewed Mar 22, 2023

View reviewed changes

files/bin/mount-bpf-fs Show resolved Hide resolved

files/bin/mount-bpf-fs Outdated Show resolved Hide resolved

files/bootstrap.sh Outdated Show resolved Hide resolved

test/cases/mount-bpf-fs.sh Show resolved Hide resolved

Improve checks a bit

be9551b

mmerkes approved these changes Mar 23, 2023

View reviewed changes

Default to true only on 1.26+

6bf7c5b

cartermckinnon changed the title ~~Mount eBPF filesystem by default~~ Mount eBPF filesystem by default on 1.26+ Mar 28, 2023

mmerkes reviewed Mar 28, 2023

View reviewed changes

files/bootstrap.sh Outdated Show resolved Hide resolved

Default to true on 1.27+

8f5f056

cartermckinnon changed the title ~~Mount eBPF filesystem by default on 1.26+~~ Mount eBPF filesystem by default on 1.27+ Mar 29, 2023

mmerkes approved these changes Mar 29, 2023

View reviewed changes

cartermckinnon merged commit 4376066 into master Mar 29, 2023

cartermckinnon deleted the bpf-mount branch March 29, 2023 21:10

dentarg mentioned this pull request Sep 20, 2023

87 Illegal instruction (core dumped) amqproxy cloudamqp/amqproxy#117

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Mount eBPF filesystem by default on 1.27+#1223

Mount eBPF filesystem by default on 1.27+#1223
cartermckinnon merged 10 commits intomasterfrom
bpf-mount

cartermckinnon commented Mar 17, 2023

Uh oh!

cartermckinnon commented Mar 17, 2023 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

daisuke-yoshimoto commented Mar 24, 2023

Uh oh!

mmerkes commented Mar 24, 2023

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

cartermckinnon commented Mar 17, 2023

Uh oh!

cartermckinnon commented Mar 17, 2023 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

daisuke-yoshimoto commented Mar 24, 2023

Uh oh!

mmerkes commented Mar 24, 2023

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

cartermckinnon commented Mar 17, 2023 •

edited

Loading