fix(bpflsm/alert): missing procname in proc alerts

Signed-off-by: daemon1024 <[email protected]>
kubearmor · Mar 11, 2024 · 4aa7215 · 4aa7215
1 parent 5d43dbd
commit 4aa7215
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/KubeArmor/enforcer/bpflsm/enforcer.go b/KubeArmor/enforcer/bpflsm/enforcer.go
@@ -346,6 +346,8 @@ func (be *BPFEnforcer) TraceEvents() {
 			log.Operation = "Process"
 			log.Source = string(bytes.Trim(event.Data.Source[:], "\x00"))
 			log.Resource = string(bytes.Trim(event.Data.Path[:], "\x00"))
+			log.ProcessName = log.Resource
+			log.ParentProcessName = log.Source
 			log.Data = "lsm=" + mon.GetSyscallName(int32(event.EventID))
 
 		case mon.Capable: