Skip to content

Not for review#2156

Closed
ddelnano wants to merge 8 commits intopixie-io:mainfrom
ddelnano:csmc/experimental-memory-optimized-agent
Closed

Not for review#2156
ddelnano wants to merge 8 commits intopixie-io:mainfrom
ddelnano:csmc/experimental-memory-optimized-agent

Conversation

@ddelnano
Copy link
Copy Markdown
Member

@ddelnano ddelnano commented Mar 25, 2025

No description provided.

ddelnano added 8 commits March 25, 2025 21:44
@ddelnano
Limit data stored from conn trackers
aea0a95 
Signed-off-by: Dom Del Nano <ddelnano@gmail.com>
@ddelnano
Remove dynamic tracer, dynamic bpftrace tracer, unused protocols, unu…
16a615a 
…sed carnot functionality

Signed-off-by: Dom Del Nano <ddelnano@gmail.com>
(cherry picked from commit 7554c43)
@ddelnano
Strip down llvm and bcc compilation. Add support for Go mod buildinfo
a71bd58 
parsing. Fix compilation issues due to removing tracepoint support

Signed-off-by: Dom Del Nano <ddelnano@gmail.com>
(cherry picked from commit 64010b8)
@ddelnano
Implement go tls and grpc tracing with opentelemetry go instrumentati…
b371df9 
…on offsets. Add FLAGS_disable_dwarf_parsing to opt into this mode

Signed-off-by: Dom Del Nano <ddelnano@gmail.com>
@ddelnano
Add tuning parameters to PEM DaemonSet
1541153 
Signed-off-by: Dom Del Nano <ddelnano@gmail.com>
@ddelnano
Fix linting and vizier skaffold build
7300047 
Signed-off-by: Dom Del Nano <ddelnano@gmail.com>
@ddelnano
Add socket tracer protocols back in
c00ba17 
Signed-off-by: Dom Del Nano <ddelnano@gmail.com>
@ddelnano
Add go_func_dwarf_dump binary used by opentelemetry go instrumentatio…
d24beba 
…n fork

Signed-off-by: Dom Del Nano <ddelnano@gmail.com>
github-advanced-security[bot]
github-advanced-security AI found potential problems Mar 25, 2025
View reviewed changes
Comment thread ...rling/source_connectors/socket_tracer/protocols/http2/testing/go_grpc_client/testdata/go.mod
@@ -0,0 +1,40 @@
module pxgrpc

Check failure

Code scanning / trivy-fs

gRPC-Go HTTP/2 Rapid Reset vulnerability High test

Package: google.golang.org/grpc
Installed Version: v1.53.0
Vulnerability GHSA-m425-mq94-257g
Severity: HIGH
Fixed Version: 1.56.3, 1.57.1, 1.58.3
Link: GHSA-m425-mq94-257g
Comment thread ...rling/source_connectors/socket_tracer/protocols/http2/testing/go_grpc_client/testdata/go.mod
@@ -0,0 +1,40 @@
module pxgrpc

Check warning

Code scanning / trivy-fs

HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) Medium test

Package: google.golang.org/grpc
Installed Version: v1.53.0
Vulnerability CVE-2023-44487
Severity: MEDIUM
Fixed Version: 1.58.3, 1.57.1, 1.56.3
Link: CVE-2023-44487
Comment thread ...rling/source_connectors/socket_tracer/protocols/http2/testing/go_grpc_client/testdata/go.mod
@@ -0,0 +1,40 @@
module pxgrpc

Check failure

Code scanning / trivy-fs

golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON High test

Package: google.golang.org/protobuf
Installed Version: v1.29.1
Vulnerability CVE-2024-24786
Severity: MEDIUM
Fixed Version: 1.33.0
Link: CVE-2024-24786
Comment thread ...rling/source_connectors/socket_tracer/protocols/http2/testing/go_grpc_server/testdata/go.mod
@@ -0,0 +1,39 @@
module pxgrpc

Check failure

Code scanning / trivy-fs

gRPC-Go HTTP/2 Rapid Reset vulnerability High test

Package: google.golang.org/grpc
Installed Version: v1.53.0
Vulnerability GHSA-m425-mq94-257g
Severity: HIGH
Fixed Version: 1.56.3, 1.57.1, 1.58.3
Link: GHSA-m425-mq94-257g
Comment thread ...rling/source_connectors/socket_tracer/protocols/http2/testing/go_grpc_server/testdata/go.mod
@@ -0,0 +1,39 @@
module pxgrpc

Check warning

Code scanning / trivy-fs

HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) Medium test

Package: google.golang.org/grpc
Installed Version: v1.53.0
Vulnerability CVE-2023-44487
Severity: MEDIUM
Fixed Version: 1.58.3, 1.57.1, 1.56.3
Link: CVE-2023-44487
Comment thread ...rling/source_connectors/socket_tracer/protocols/http2/testing/go_grpc_server/testdata/go.mod
@@ -0,0 +1,39 @@
module pxgrpc

Check failure

Code scanning / trivy-fs

golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON High test

Package: google.golang.org/protobuf
Installed Version: v1.29.1
Vulnerability CVE-2024-24786
Severity: MEDIUM
Fixed Version: 1.33.0
Link: CVE-2024-24786
Comment thread src/stirling/testing/demo_apps/go_https/client/testdata/go.mod
@@ -0,0 +1,25 @@
module http2app

Check warning

Code scanning / trivy-fs

golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net Medium test

Package: golang.org/x/net
Installed Version: v0.33.0
Vulnerability CVE-2025-22870
Severity: MEDIUM
Fixed Version: 0.36.0
Link: CVE-2025-22870
@ddelnano ddelnano closed this Mar 25, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ddelnano @github-advanced-security