Skip to content

Commit

Permalink
heartbeat - move seccomp customization to InitializeModule (#39763) (#…
Browse files Browse the repository at this point in the history
…39764)

Move the overwriting of the arm64 seccomp policy out of the Go
init() phase and into a function call that is specific to Heartbeat. This
will prevent Heartbeat's policy from affecting all other Beats that run
as part of Agentbeat.

Note that other customizations from all Beats that use seccomp.ModifyDefaultPolicy
within init() are still being combined in Agentbeat to create a policy that is the aggregation of
all seccomp customizations. So the allow-list type policies are likely more permissive than
expected.

Fixes #39754

(cherry picked from commit 48a9901)

Co-authored-by: Andrew Kroh <andrew.kroh@elastic.co>
  • Loading branch information
mergify[bot] and andrewkroh authored May 31, 2024
1 parent abdcd79 commit 697b448
Show file tree
Hide file tree
Showing 5 changed files with 295 additions and 441 deletions.
133 changes: 0 additions & 133 deletions heartbeat/security/policy_linux_386.go

This file was deleted.

134 changes: 0 additions & 134 deletions heartbeat/security/policy_linux_amd64.go

This file was deleted.

Loading

0 comments on commit 697b448

Please sign in to comment.