0.20.0-rc2

chore(ci): switch to github-provided arm64 runners.

Signed-off-by: Federico Di Pierro <[email protected]>

0.20.0-rc1

fix(test/libsinsp_e2e): fixed tcp related libsinsp_e2e tests.

Signed-off-by: Federico Di Pierro <[email protected]>

0.19.0

v0.19.0

Released on 2024-11-25

Major Changes

• new(userspace/libsinsp): expose get_owner_last_error in plugin's capture listening capability [#2147] - @FedeDP
• new(libsinsp): add len() filter transformer [#2131] - @LucaGuerra
• new(userspace/libsinsp): expose threadinfo cgroups in plugins table api [#2107] - @FedeDP
• new(userspace): added new addOutput json entry for plugin get_field() API [#2116] - @FedeDP
• new: add container.host_pid container.host_network and container.host_ipc fields [#2047] - @loresuso
• new(libsinsp): print LIST() in markdown format for list fields [#2091] - @LucaGuerra

Bug Fixes

• fix(userspace/libsinsp): multiple fixes related to rawargs. [#2130] - @FedeDP
• fix(build): pkgconfig files should be now generated properly even in static library builds [#2005] - @gnosek
• fix(build): scap_engine_gvisor is now a separate shared library [#2005] - @gnosek

Non user-facing changes

• cleanup(sinsp): handle path too long in a better way [#2160] - @Andreagit97
• update(libsinsp): introduce a description to sinsp_filter_transformer [#2170] - @loresuso
• cleanup(sinsp): remove some duplicated code [#2156] - @Andreagit97
• chore(libsinsp): reduce max proc lookup number log severity [#2166] - @deepskyblue86
• fix(libsinsp): max proc lookup number logging [#2164] - @deepskyblue86
• ci: disable a flaky test [#2154] - @Andreagit97
• cleanup(sinsp): create new methods to handle syscall return values [#2139] - @Andreagit97
• fix(deps): bump tbb and enable its compilation with emscripten [#2149] - @therealbobo
• cleanup: simplify some extract logic in sinsp_filtercheck_fd.cpp [#2137] - @Andreagit97
• chore(libsinsp): avoid useless allocation [#2148] - @therealbobo
• update(sinsp): handle (deleted) in userspace [#2151] - @Andreagit97
• chore(e2e): fix e2e build without bundled deps [#2136] - @Andreagit97
• chore: cleanup CMake dependencies [#2146] - @federico-sysdig
• cleanup(tests): add some exceptions in sinsp test framework [#2140] - @Andreagit97
• chore(deps): Bump softprops/action-gh-release from 1 to 2 [#2105] - @dependabot[bot]
• cleanup: improve perf populate_cmdline [#2138] - @Andreagit97
• fix(libsinsp): invalid field_info check [#2135] - @mrgian
• chore(deps): Bump the actions group with 3 updates [#2134] - @dependabot[bot]
• update(ci): use cncf provided runners for arm64 [#2064] - @FedeDP
• fix(libsinsp): use correct regex for hex numbers [#2132] - @therealbobo
• fix(ci): use local zig folder instead of /usr/local. [#2129] - @FedeDP
• chore(ci): bump zig version and improve install-zig action. [#2126] - @FedeDP
• chore(deps): Bump uraimo/run-on-arch-action from 2.7.2 to 2.8.1 in the actions group [#2124] - @dependabot[bot]
• fix(ci): create-comment workflows array length check. [#2125] - @FedeDP
• fix(ci): use process.exit(); to leave node script in github/action-script [#2123] - @FedeDP
• fix(ci): avoid create comment workflows failing when required worfklows did not run [#2121] - @FedeDP
• fix(ci): fixed latest-kernel CI usage of steps/jobs outputs. [#2120] - @FedeDP
• fix(userspace/libsinsp): stringop-overflow on libvirt_lxc [#2115] - @deepskyblue86
• fix(userspace/libsinsp): disable HTTP proxy for CRI connection [#2113] - @wigol
• chore(deps): Bump the actions group with 2 updates [#2111] - @dependabot[bot]
• fix(userspace/libscap): scap-gvisor does need to depend upon jsoncpp. [#2112] - @FedeDP
• fix(ci): fix build-scap-open-w-extern-bpf-skeleton job [#2109] - @FedeDP
• fix(ci): fix kernel testing action by using proper tag name. [#2108] - @FedeDP
• chore(deps): Bump actions/checkout from 3.6.0 to 4.2.1 [#2106] - @dependabot[bot]
• chore(deps): Bump actions/upload-artifact from 3.1.3 to 4.4.2 [#2098] - @dependabot[bot]
• chore(deps): Bump actions/deploy-pages from 2.0.4 to 4.0.5 [#2104] - @dependabot[bot]
• chore(deps): Bump peter-evans/create-pull-request from 5.0.2 to 7.0.5 [#2103] - @dependabot[bot]
• chore(deps): Bump actions/upload-pages-artifact from 2.0.0 to 3.0.1 [#2102] - @dependabot[bot]
• chore(deps): Bump actions/setup-python from 4.7.1 to 5.2.0 [#2101] - @dependabot[bot]
• chore(deps): Bump dorny/paths-filter from 2.11.1 to 3.0.2 [#2100] - @dependabot[bot]
• chore(deps): Bump codecov/codecov-action from 79066c46f8dcdf8d7355f820dbac958c5b4cb9d3 to e28ff129e5465c2c0dcc6f003fc735cb6ae0c673 [#2099] - @dependabot[bot]
• chore(deps): Bump the actions group with 5 updates [#2097] - @dependabot[bot]
• fix(tests): flaky thread pool tests [#2071] - @mrgian
• chore(ci): update ci actions and add dependabot [#2096] - @cpanato
• cleanup: remove some commits from the blame [#2093] - @Andreagit97
• feat(tests): new e2e tests [8/8] [#1958] - @therealbobo
• fix(test/libsinsp_e2e): fixed libsinsp_e2e tests for more stability [#2085] - @FedeDP
• fix(userspace/libscap): fix build without USE_ZLIB macro. [#2089] - @FedeDP
• chore(ci): show diff on failed format [#2090] - @Molter73
• fix(userspace/libsinsp): av...

0.18.2

v0.18.2

Released on 2024-11-20

Non user-facing changes

• fix(modern): check cred field is not NULL before the access [#2119] - @Andreagit97
• fix(modern_ebpf): address verifier issues on kernel versions >=6.11.4 [#2150] - @Andreagit97

Statistics

MERGED PRS	NUMBER
Not user-facing	2
Release note	0
Total	2

Release Manager @FedeDP

0.18.1

v0.18.1

Released on 2024-09-25

Bug Fixes

• fix(userspace/libsinsp): avoid dereferencing a possible nullptr in parsers [#2081] - @FedeDP

Statistics

MERGED PRS	NUMBER
Not user-facing	0
Release note	1
Total	1

Release Manager @FedeDP

7.3.0+driver

Driver Testing Matrix amd64

KERNEL	CMAKE-CONFIGURE	KMOD BUILD	KMOD SCAP-OPEN	BPF-PROBE BUILD	BPF-PROBE SCAP-OPEN	MODERN-BPF SCAP-OPEN
amazonlinux2-4.19	🟢	🟢	🟢	🟢	🟢	🟡
amazonlinux2-5.10	🟢	🟢	🟢	🟢	🟢	🟢
amazonlinux2-5.15	🟢	🟢	🟢	🟢	🟢	🟢
amazonlinux2-5.4	🟢	🟢	🟢	🟢	🟢	🟡
amazonlinux2022-5.15	🟢	🟢	🟢	🟢	🟢	🟢
amazonlinux2023-6.1	🟢	🟢	🟢	🟢	🟢	🟢
archlinux-6.0	🟢	🟢	🟢	🟢	🟢	🟢
archlinux-6.7	🟢	🟢	🟢	🟢	🟢	🟢
centos-3.10	🟢	🟢	🟢	🟡	🟡	🟡
centos-4.18	🟢	🟢	🟢	🟢	🟢	🟢
centos-5.14	🟢	🟢	🟢	🟢	🟢	🟢
fedora-5.17	🟢	🟢	🟢	🟢	🟢	🟢
fedora-5.8	🟢	🟢	🟢	🟢	🟢	🟢
fedora-6.2	🟢	🟢	🟢	🟢	🟢	🟢
oraclelinux-3.10	🟢	🟢	🟢	🟡	🟡	🟡
oraclelinux-4.14	🟢	🟢	🟢	🟢	🟢	🟡
oraclelinux-5.15	🟢	🟢	🟢	🟢	🟢	🟢
oraclelinux-5.4	🟢	🟢	🟢	🟢	🟢	🟡
ubuntu-4.15	🟢	🟢	🟢	🟢	🟢	🟡
ubuntu-5.8	🟢	🟢	🟢	🟢	🟢	🟡
ubuntu-6.5	🟢	🟢	🟢	🟢	🟢	🟢

Driver Testing Matrix arm64

KERNEL	CMAKE-CONFIGURE	KMOD BUILD	KMOD SCAP-OPEN	BPF-PROBE BUILD	BPF-PROBE SCAP-OPEN	MODERN-BPF SCAP-OPEN
amazonlinux2-5.4	🟢	🟢	🟢	🟢	🟢	🟡
amazonlinux2022-5.15	🟢	🟢	🟢	🟢	🟢	🟢
fedora-6.2	🟢	🟢	🟢	🟢	🟢	🟢
oraclelinux-4.14	🟢	🟢	🟢	🟡	🟡	🟡
oraclelinux-5.15	🟢	🟢	🟢	🟢	🟢	🟢
ubuntu-6.5	🟢	🟢	🟢	🟢	🟢	🟢

v7.3.0+driver

Released on 2024-09-18

Major Changes

• new(driver,userspace): add fields proc.is_exe_lower_layer, fd.is_upper_layer and fd.is_lower_layer for Overlay FS [#1936] - @eddyduer-sysdig

Bug Fixes

• fix(driver): fixed build against linux 6.11. [#2011] - @FedeDP
• fix(driver): fix dynamic snaplen logic (SCAP_FULLCAPTURE_PORT_RANGE and SCAP_STATSD_PORT) [#2006] - @Andreagit97
• fix(driver/bpf): fixed a couple of verifier issues. [#1896] - @FedeDP

Non user-facing changes

• chore(libs): fix -Werror=unused-variable [#2058] - @clan
• fix(schema): fix FUTEX_E flags parameter [#2046] - @gnosek
• fix(modern): prevent CO-RE relocations when CONFIG_QUOTACTL is not defined [#2042] - @Andreagit97
• new(drivers): add dns dynamic snaplen [#2035] - @Andreagit97
• update(driver): update syscalls tables and driver report. [#1983] - @github-actions[bot]
• fix(driver/kmod): count the right number of events and drops [#2000] - @Andreagit97
• fix(driver/kmod): don't truncate path at 256 [#1954] - @therealbobo
• new: add setre*id syscall family [#1871] - @therealbobo
• update(driver): update syscalls tables and driver report. [#1891] - @github-actions[bot]
• doc(driver): fix some comments [#1883] - @Andreagit97

Statistics

MERGED PRS	NUMBER
Not user-facing	10
Release note	4
Total	14

Release Manager @FedeDP

0.18.0

v0.18.0

Released on 2024-09-18

Breaking Changes ⚠️

• new(sinsp)!: sinsp::open_plugin now takes a sinsp_plugin_platform instead of sinsp_mode_t [#1969] - @gnosek
• cleanup(sinsp)!: remove static container arguments from sinsp constructor [#2016] - @Molter73

Major Changes

• new(libsinsp): inspector thread pool [#1949] - @mrgian
• new(scap, sinsp): linux_hostinfo platform for use with non-syscall source plugins [#1969] - @gnosek
• new(build): add experimental ThreadSanitizer build [#2014] - @LucaGuerra
• new(libscap): upon detecting ring buffer corruption, an annotated dump of the whole ring buffer will be printed to stderr [#1997] - @gnosek
• new(userpsac/libsinsp): support regular expression operator in sinsp filters [#1904] - @jasondellaluce
• new(libsinsp): add basename() string transformer [#1943] - @LucaGuerra
• new(ci,docs): added heaptrack to our new perf related CI. [#1932] - @FedeDP
• new(ci): added perf CI job around scap file read. [#1924] - @FedeDP
• new(ci): added an initial perf-related CI. [#1918] - @FedeDP
• new: introduce proc.{stdin,stdout,stderr}.{name,type} fields [#1916] - @loresuso

Minor Changes

• cleanup(engines): detach per-cpu kernel metrics from global kernel metrics [#2031] - @Andreagit97
• cleanup(sinsp): add set_static_container method [#2016] - @Molter73
• cleanup(libsinsp): do not crash on g_invalidchar in windows debug builds [#1990] - @LucaGuerra
• Fix a bug in libsinsp::filter::ast::binary_check_expr::is_equal(), where two binary check expressions were considered equal even if they had different operators. For example evt.num >= 0 was mistakenly considered equal to evt.num = 0. [#1952] - @mstemm
• cleanup(libsinsp): introduce param->asstd::string(), add error for unsupported types [#1893] - @LucaGuerra
• refactor(userspace/libsinsp): polish and enable filter caching [#1906] - @jasondellaluce
• update(cmake): propagate position-independent code option to dependencies [#1878] - @jasondellaluce

Bug Fixes

• fix(libsinsp): solve field-field comparison pointer instability issues [#2063] - @jasondellaluce
• fix(sinsp): plugin capture listen capability exception [#2050] - @mrgian
• fix(libsinsp/state): ensure deep copy semantics and proper memory ownership in dynamic structs [#2026] - @jasondellaluce
• fix(libpman): try to get a new event on the same CPU after increasing the producer [#2009] - @Andreagit97
• fix(userspace/libsinsp): fixed CO_IN filter crafted value. [#2019] - @FedeDP
• fix(libsinsp): simplify sinsp_split, modify set_env/args [#1962] - @LucaGuerra
• fix(userspace/libsinsp): assorted pass-by-reference performance optimizations [#1965] - @jasondellaluce
• fix(libsinsp): use size_type in basename transformer, fix build on Windows [#1945] - @LucaGuerra
• fix(userspace/libsinsp): solve fdtables 'type' field returning random data [#1903] - @jasondellaluce

Non user-facing changes

• new(tests): add tests for contains/icontains [#1912] - @LucaGuerra
• fix(libscap): use the correct memory barrier for ARM64 [#2067] - @Andreagit97
• ci: pin dependencies [#2055] - @Andreagit97
• fix(test/drivers): fixed s390x Werror related failures for drivers tests [#2066] - @FedeDP
• chore(sinsp): rename thread_pool to sinsp_thread_pool to avoid symbol conflicts [#2065] - @mrgian
• fix(ci): avoid running drivers CI jobs that need secrets in PR coming from forks [#2060] - @FedeDP
• fix(ci): fix some warnings as error [#2062] - @Andreagit97
• fix(build): fix tests build warnings (fatal with -Werror) [#2053] - @gnosek
• chore: ignore the commit used for formatting [#2054] - @Andreagit97
• chore(libs): apply code formatting [#2051] - @poiana
• ci(semgrep): update semgrep docker image [#2048] - @francesco-furlan
• fix(sinsp): fix fs.path filterchecks for relative paths (add dirfd concept) [#1993] - @incertum
• chore: scaffolding for enabling code formatting [#2038] - @Andreagit97
• chore(cmake): honor CMAKE_BUILD_TYPE while building bundled grpc and protobuf [#2043] - @FedeDP
• chore(userspace/libsinsp): only link libanl if present. [#2036] - @FedeDP
• fix(userspace/libsinsp): fixed a couple of UBs [#2045] - @FedeDP
• cleanup(ci): don't run drivers CI job that use secrets on forks. [#2041] - @FedeDP
• Use absolute path for clang executable in modern_bpf driver [#2032] - @Molter73
• fix(ci): only account for mean values in google benchmarks perf CI checks [#2030] - @FedeDP
• fix(CI): restore e2e sinsp report uploading [#2024] - @Andreagit97
• new(ci,benchmarks): added more benchmarks and make use of them in perf CI [#2023] - @FedeDP
• feat(libsinsp): Add wrapper for read/write lock [#1877] - @greyhame-s
• update(cri): cri-dockerd support [#1907] - @incertum
• cleanup(tests): move some scap files under the scap file test suite [#2001] - @Andreagit97
• new(tests): introduce the first google benchmark [#2021] - @Andreagit97
• chore: add CMakePresets.json file [#1986] - @Andreagit97
• chore(ci): update kernel-testing related matrix comment if already existent [#2020] - @FedeDP
• chore(ci): disable unstable scap-related perf test from perf PR comment and check [#2017] - @FedeDP
• fix(libsinsp/tests): assorted fixes (memory layout, syn...

0.18.0-rc2

fix: fix some warnings as errors

Signed-off-by: Andrea Terzolo <[email protected]>

0.18.0-rc1

chore: ignore the commit used for formatting

Signed-off-by: Andrea Terzolo <[email protected]>

0.17.3

v0.17.3

Released on 2024-08-08

Major Changes

• new(libsinsp): add debug information for corrupted (mismatched len) events [#1961] - @LucaGuerra

Minor Changes

• chore!(userspace/libsinsp): keep a reference on m_sinsp_stats_v2 where needed [#1910] - @FedeDP

Bug Fixes

• fix(libsinsp): check ipv4/ipv6 size on fd.*net comparisons [#1992] - @LucaGuerra
• fix(libsinsp): add missing #include [#1922] - @LucaGuerra
• fix(userspace/libsinsp): solve issues with negate comparisons on ip and ipnet checks [#1953] - @jasondellaluce
• fix(libsinsp): fix crash in string transformers when called on an empty string [#1942] - @LucaGuerra

Non user-facing changes

• fix(libsinsp/test): use correct iterator type in plugin tests [#1987] - @LucaGuerra
• fix(sinsp): invalid threads shoudln't be in a pid namespace [#1923] - @Andreagit97
• fix(driver/bpf): close maps on cleanup [#1959] - @therealbobo
• fix(userspace/libsinsp): Include cri.hpp in container.cpp [#1895] - @geraldcombs
• update(cmake): Use the correct zlib debug library name on Windows [#1979] - @geraldcombs
• fix(ci,test): fixed centos:7 related CI by using vault.centos.org. [#1946] - @FedeDP
• update(cmake): Make sure we link zlib with the correct Windows CRT [#1940] - @geraldcombs
• update(cmake): Build zlib using CMake on Windows [#1899] - @geraldcombs

Statistics

MERGED PRS	NUMBER
Not user-facing	8
Release note	6
Total	14

Release Manager @LucaGuerra