일반적으로 Sudo 권한 또는 system capability가 없어서 발생하며 OS에서 Lockdown 설정 여부 확인 필요
XDP program ip link error: Prog section rejected: Operation not permitted
I try to get into XDP, for this I have this very small program: // SPDX-License-Identifier: GPL-2.0 #include #include "bpf/bpf_helpers.h" #include "xdpsock.h" struct { __u...
stackoverflow.com
그리고 아래와 같이 Operation not Permitted 오류의 경우 Kernel bug도 있다.
https://github.com/cilium/cilium/issues/9988
EPERM for sys_bpf with Ubuntu 18.04 with kernel 5.5 · Issue #9988 · cilium/cilium
While trying to update the ubuntu-next VM image in the CI to run with the latest kernel (#9657), we discovered that after cilium-agent has been installed, bpf(2) fails with EPERM which results in e...
github.com
아래와 같이 bpftrace 를 사용하면 확인 가능
reference
blog.csdn.net/lzz957748332/article/details/102847327
github.com/cilium/cilium/issues/9402
gehrcke.de/2019/09/running-an-ebpf-program-may-require-lifting-the-kernel-lockdown/
