Channels
android_tests
apple-silicon
arm-architecture
auditing-warroom
aws
carving
code-review
community-feeds
core
darkbytes
doorman
ebpf
eclecticiq-polylogyx-extension
extensions
file-carving
fim
fleet
fleet-dev
fleetosquery
foundation
fuzzing
general
golang
goquery
infrastructure
jobs
kolide
linen-dev
linux
macos
officehours
osctrl
plugins
process-auditing
querycon
queryhub
random
selfgroup
sql
tls
uptycs
vendor-feeds
website
windows
zeek
zentral
zercurity
Title
u
8p8c
05/26/2021, 2:48 AMCan LINUX_VERSION_CODE be extracted from osquery's own vdso and used instead of /usr/include/linux/version.h?
I can't install extra packages. It should be available for both architectures (https://github.com/torvalds/linux/blob/master/arch/x86/entry/vdso/vdso-note.S, https://github.com/torvalds/linux/blob/master/arch/arm64/kernel/vdso/note.S)
a
alessandrogario
06/09/2021, 3:18 PMNow tracked here: https://github.com/osquery/osquery/issues/7149
❤️ 1
Hey @8p8c! Here's the PR to remove the linux/version.h dependency 🙂