Create reads the session configuration and applies it to the system.

Delete deletes an existing session.

GetPointForSyscall translates the syscall number to the corresponding Point.

Initialize initializes the Points available in the system.

List lists all existing sessions.

MakeFieldMask creates a FieldMask from a set of Fields.

RegisterSink registers a new sink to make it discoverable.

SeqAtomicLoad returns a copy of *ptr, ensuring that the read does not race with any writer critical sections in seq.

SeqAtomicTryLoad returns a copy of *ptr while in a reader critical section in seq initiated by a call to seq.BeginRead() that returned epoch.

SetupSinks runs the setup step of all sinks in the configuration.

DefaultSessionName is the name of the only session that can exist in the system for now.

FieldContainerStartEnv is an optional field to collect list of environment variables set for the container start process.

FieldCtxtX represents a data field that comes from the Context.

FieldCtxtX represents a data field that comes from the Context.

FieldCtxtX represents a data field that comes from the Context.

FieldCtxtX represents a data field that comes from the Context.

FieldCtxtX represents a data field that comes from the Context.

FieldCtxtX represents a data field that comes from the Context.

FieldCtxtX represents a data field that comes from the Context.

FieldCtxtX represents a data field that comes from the Context.

FieldCtxtX represents a data field that comes from the Context.

FieldSentryExecveBinaryInfo is an optional field to collect information about the binary being executed.

FieldSyscallExecveEnvv is an optional field to collect list of environment variables.

FieldSyscallPath is an optional field to collect path from an FD.

PointX represents the checkpoint X.

PointX represents the checkpoint X.

PointX represents the checkpoint X.

PointX represents the checkpoint X.

PointX represents the checkpoint X.

SyscallEnter represents schematized/enter syscall.

SyscallExit represents schematized/exit syscall.

SyscallRawEnter represents raw/enter syscall.

SyscallRawExit represents raw/exit syscall.

Global is the method receiver of all seccheck functions.

Points is a map with all the trace points registered in the system.

Sinks is a map with all the sinks registered in the system.

FieldDesc describes an optional/context field that is available to be configured.

FieldMask is a bitmask with a single bit representing an optional field to be collected.

FieldSet contains all optional fields to be collected by a given Point.

PointConfig describes a point to be enabled in a given session.

PointDesc describes a Point that is available to be configured.

PointReq indicates what Point a corresponding Sink runs at, and what information it requires at those Points.

SessionConfig describes a new session configuration.

SinkConfig describes the sink that will process the points in a given session.

SinkDefaults may be embedded by implementations of Sink to obtain no-op implementations of Sink methods that may be explicitly overridden.

SinkDesc describes a sink that is available to be configured.

SinkStatus represents stats about each Sink instance.

State is the type of global, and is separated out for testing.

A Sink performs security checks at checkpoints.

SyscallFlagListener is an interface that is notified when syscall point enablement changes.

Field represents the index of a single optional field to be collect for a Point.

A Point represents a checkpoint, a point at which a security check occurs.

SyscallType is an enum that denotes different types of syscall points.