Prism

Prism is an eBPF-Based interface generator that captures the HTTP traffic of Ingress and Egress through TC and passes it to the user mode through ringbuf to assemble complete data.

Run

Kernel >= 5.4.0

operating run

device_name, replace with the name of the network device the program is attached to (e.g. eth0)

prism -n <device_name>

docker run

docker run --net host --privileged --name prism -itd zmosquito/prism:v0.0.1 ./prism -n <device_name>

How to compile

require

Kernel >= 5.4.0
LLvm >= 14
Clang >= 14
Golang >= 1.18
Cmake

# Ubuntu 22.04
apt-get install linux-kernel-headers linux-headers-$(uname -r)
apt-get update && apt-get install -y make clang-14 llvm-14 libc6-dev libc6-dev-i386 libz-dev libelf-dev libbpf-dev iproute2 && apt-get clean
ln -s $(which clang-14) /usr/bin/clang && ln -s $(which llc-14) /usr/bin/llc

compile

make build

docker

compile by docker

docker run --rm  -v /root/prism:/root/prism ghcr.io/cilium/ebpf-builder:1694533004 bash -c "cd /root/prism && make build"

Demo

https://www.bilibili.com/video/BV1tK4y1c7rh/

About

eBPF-based API Interface Builder

Apache License 2.0

Languages

Language:C 98.8%Language:Go 1.1%Language:Makefile 0.0%Language:HTML 0.0%Language:Shell 0.0%Language:Dockerfile 0.0%