mirror of
https://github.com/evilsocket/opensnitch.git
synced 2025-03-04 08:34:40 +01:00
ffb76683aa
Now it's possible to configure eBPF modules path from the
default-config.json file:
"Ebpf": {
"ModulesPath": "..."
}
If the option is not provided, or if it's empty, we'll keep loading from
the default directories:
- /usr/local/lib/opensnitchd/ebpf
- /usr/lib/opensnitchd/ebpf
- /etc/opensnitchd/ebpf (deprecated, will be removed in the future).
Closes #928
49 lines
1.3 KiB
Go
49 lines
1.3 KiB
Go
package core
|
|
|
|
import (
|
|
"fmt"
|
|
|
|
"github.com/evilsocket/opensnitch/daemon/log"
|
|
"github.com/iovisor/gobpf/elf"
|
|
)
|
|
|
|
// LoadEbpfModule loads the given eBPF module, from the given path if specified.
|
|
// Otherwise t'll try to load the module from several default paths.
|
|
func LoadEbpfModule(module, path string) (m *elf.Module, err error) {
|
|
var (
|
|
modulesDir = "/opensnitchd/ebpf"
|
|
paths = []string{
|
|
fmt.Sprint("/usr/local/lib", modulesDir),
|
|
fmt.Sprint("/usr/lib", modulesDir),
|
|
fmt.Sprint("/etc/opensnitchd"), // Deprecated: will be removed in future versions.
|
|
}
|
|
)
|
|
|
|
// if path has been specified, try to load the module from there.
|
|
if path != "" {
|
|
paths = []string{path}
|
|
}
|
|
|
|
modulePath := ""
|
|
moduleError := fmt.Errorf(`Module not found (%s) in any of the paths.
|
|
You may need to install the corresponding package`, module)
|
|
|
|
for _, p := range paths {
|
|
modulePath = fmt.Sprint(p, "/", module)
|
|
log.Debug("[eBPF] trying to load %s", modulePath)
|
|
if !Exists(modulePath) {
|
|
continue
|
|
}
|
|
m = elf.NewModule(modulePath)
|
|
|
|
if m.Load(nil) == nil {
|
|
log.Info("[eBPF] module loaded: %s", modulePath)
|
|
return m, nil
|
|
}
|
|
moduleError = fmt.Errorf(`
|
|
unable to load eBPF module (%s). Your kernel version (%s) might not be compatible.
|
|
If this error persists, change process monitor method to 'proc'`, module, GetKernelVersion())
|
|
}
|
|
|
|
return m, moduleError
|
|
}
|