Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/lvillis/protego

🛡️ Protego is an eBPF-based security tool for Linux designed to enhance system protection.
https://github.com/lvillis/protego

aya bpf ebpf linux protego tc xdp

Last synced: 1 day ago
JSON representation

🛡️ Protego is an eBPF-based security tool for Linux designed to enhance system protection.

Awesome Lists containing this project

README 

        
# protego



## Prerequisites



1. stable rust toolchains: `rustup toolchain install stable`

2. nightly rust toolchains: `rustup toolchain install nightly --component rust-src`

3. (if cross-compiling) rustup target: `rustup target add ${ARCH}-unknown-linux-musl`

4. (if cross-compiling) LLVM: (e.g.) `brew install llvm` (on macOS)

5. (if cross-compiling) C toolchain: (e.g.) [`brew install filosottile/musl-cross/musl-cross`](https://github.com/FiloSottile/homebrew-musl-cross) (on macOS)

6. bpf-linker: `cargo install bpf-linker` (`--no-default-features` on macOS)



## Build & Run



Use `cargo build`, `cargo check`, etc. as normal. Run your program with:



```shell

cargo run --release --config 'target."cfg(all())".runner="sudo -E"'

```



Cargo build scripts are used to automatically build the eBPF correctly and include it in the

program.



## Cross-compiling on macOS



Cross compilation should work on both Intel and Apple Silicon Macs.



```shell

CC=${ARCH}-linux-musl-gcc cargo build --package protego --release \

  --target=${ARCH}-unknown-linux-musl \

  --config=target.${ARCH}-unknown-linux-musl.linker=\"${ARCH}-linux-musl-gcc\"

```

The cross-compiled program `target/${ARCH}-unknown-linux-musl/release/protego` can be

copied to a Linux server or VM and run there.