Skip to content

Releases: kunai-project/kunai

v0.2.2

04 Jun 07:40
Compare
Choose a tag to compare

fa2fdc7 - fix #63: inode struct change in 6.7

v0.2.1

27 May 07:40
Compare
Choose a tag to compare

f743f01 - chg: updated authors
5d23f98 - add: Config::stdout_output
f6b9203 - chg: events custom serde fields
c5c7b99 - feat: added replay command
754b1f3 - Merge pull request #59 from kunai-project/feat-replay
0a1fe18 - chg: userland toolchain upgrade -> 1.77
1e3bbe8 - chg: [xtask] use cargo clippy in xtask check
c766611 - fix: [kunai-common] clippy warnings
3e7126f - fix: [kunai] clippy warnings
bfd630e - fix: [kunai-ebpf] clippy warnings
f9f38ea - chg: added funding section in README.md
8a710d2 - chg: [kunai] refactored internal function names to be in line with others
e3140cb - add: new msghdr shim
9fcdad6 - chg: [kunai] refactored event producer/consumer
0fbdc17 - chg: [kunai-common] removed useless code and comments
cc1665e - fix: [xtask] slowness in build/check
f8dec76 - fix #61: issue with kretprobe not surviving to suspend/resume cycle
b0f477a - Merge pull request #62 from kunai-project/enhancements

v0.2.0

11 Apr 14:14
883b76c
Compare
Choose a tag to compare

Changelog:

e8c60be - improved xtask and provide a way to configure custom bpf-linker
880f21a - Added xtasks commands to build build-tools (LLVM and bpf-linker)
f7b826e - Created types.h not do depend on kernel headers to build project
24009a8 - Shim building is made with bindgen crate instead of command line
9d51b87 - added info.event.source field, to be used by external tools to identify kunai logs
0cb6c14 - fix #4: "file not found" error string when the file does not exist
7e93900 - stabilizing read_kernel_at for 5.4
6b13658 - fix #3
8f23823 - fix ci failing because of --free-space option
b8d2705 - implemented task clone probe and event
d7d5004 - implemented a way to test kernel compatibility
f274cfb - prioritize tracepoint + utility functions
d3a5eb8 - prctl probe implemented
9aedaba - fix event processing bug leaving always one event in queue
7eb7c2d - fix #12
b24be6f - gene integration
d0ef7c7 - fix #23
c9c6d51 - fix #25
7fba77d - fix #26
92209bc - implementated IoC scanning fix #22
e808367 - fix #27
a4295d4 - fix #30 fix #21
d24fc25 - fix namespaces tests
a26220e - new Container enum
7ee8795 - minor refactor in namespaces.rs
1980f61 - fix #20 : parent image is set to "kernel" when parent is a kthread. Also fix ancestors.
35aac7c - refactored correlation related struct and fn to be less confusing
83a9dfb - fix #17 : data model harmonization
9f83a87 - fix file_unlink probe reporting bpf errors in very specific conditions
a93fc76 - fix #35 bug in schedule probe
da93fa5 - fix #36 error in prctl probe
a3ce05b - fix #34 error in clone probe
d459e20 - detect containers on procfs
b217037 - new probe for finit_module
b0fd394 - fix #38 simplify clone probe
adc104f - fix #16 improved errors happening in BPF and refactored kunai-common
7bbdae9 - improved dns_query related probes in the aim of removing all possible errors
b2ed03e - new podman container
52fbfbf - fix issue #48 in eBPF cgroup parsing we now give a chance to userland to resolve cgroup
09ce207 - fix #50 removed completely FdMap
f0e0f97 - fix #53 ancestor in all events
75bb362 - fixed bug if KernelVersion::from_sys
9b85d44 - improved perf of write events with caching
4edac4a - fix #54 remove mount event
d4efffe - migration to latest stable Aya \o/

v0.2.0-rc.3

03 Apr 12:50
b834f63
Compare
Choose a tag to compare
v0.2.0-rc.3 Pre-release
Pre-release

f3787a2 - update gene-rs
30cf089 - cleanup in CLI help
e3a113b - standardized packages Cargo.toml
6f79071 - updated kunai-ebpf toml
03c14a3 - integrate xtask with cargo release
8f4cbb3 - new cargo alias for xtask (run, build, release)
0b14112 - kunai version bump
bd7b271 - packages version bumps

v0.2.0-rc.2

16 Feb 07:49
Compare
Choose a tag to compare
v0.2.0-rc.2 Pre-release
Pre-release

d5eee4e - unpub co_re::gen
0ca8834 - new FileNotFound ProbeError
ca42f24 - removed FdMap dep from mmap probe
ffb20af - use FileNotFound error in DNS probes
09ce207 - fix #50 removed completely FdMap
f0e0f97 - fix #53 ancestor in all events
75bb362 - fixed bug in KernelVersion::from_sys
1199f73 - do not unwrap in bpf alloc
9b85d44 - improved perf of write events with caching
0d7b278 - added syscall information to init_module event
4edac4a - fix #54 remove mount event
a4d354f - resolve nodename in eBPF instead of navigating inside namespaces in userland

v0.2.0-rc.1

09 Feb 21:31
Compare
Choose a tag to compare
v0.2.0-rc.1 Pre-release
Pre-release

a93fc76 - fix #35 bug in schedule probe
da93fa5 - fix #36 error in prctl probe
a3ce05b - fix #34 error in clone probe
b0fd394 - fix #38 simplify clone probe
adc104f - fix #16 improved errors happening in BPF and refactored kunai-common
52fbfbf - fix issue #48 in eBPF cgroup parsing we now give a chance to userland to resolve cgroup

v0.2.0-alpha.4

22 Jan 13:47
Compare
Choose a tag to compare
v0.2.0-alpha.4 Pre-release
Pre-release

92209bc - implementated IoC scanning fix #22
e808367 - fix #27
539b127 - updated aya helpers (fix #14) (#29)
a4295d4 - fix #30 fix #21
1980f61 - fix #20 : parent image is set to "kernel" when parent is a kthread. Also fix ancestors.
83a9dfb - fix #17 : data model harmonization

v0.2.0-alpha.3

11 Jan 10:12
Compare
Choose a tag to compare
v0.2.0-alpha.3 Pre-release
Pre-release

Fixes issues with latest LTS kernel 6.6:

v0.2.0-alpha.2

11 Dec 13:11
Compare
Choose a tag to compare
v0.2.0-alpha.2 Pre-release
Pre-release

Change log:

  • supports detection / filtering rules

v0.2.0-alpha.1

28 Nov 07:46
Compare
Choose a tag to compare
v0.2.0-alpha.1 Pre-release
Pre-release

Change log:

  • file unlink event implemented
  • fix CI build failing due to latest bpf-linker commit
  • Path PartialEq own implementation