Crate assay_common 

Modules

exports

strict_open

Structs

InodeKey

Key used to identify an inode in BPF maps.

InodeKeyMap

Explicit 16-byte key for BPF Map Lookups (ino + dev + gen). Layout: | ino (8) | dev (4) | gen (4) | = 16 bytes. Guarantees dense packing without padding issues.

InodeResolved

MonitorEvent

Constants

DATA_LEN

EVENT_CONNECT

EVENT_CONNECT_BLOCKED

EVENT_EXEC

EVENT_EXIT

EVENT_FILE_BLOCKED

EVENT_FORK

EVENT_INODE_RESOLVED

EVENT_OPENAT

KEY_MONITOR_ALL

Functions

encode_kernel_dev

Encode userspace dev_t into Linux kernel’s new_encode_dev() format (sb->s_dev). This matches include/linux/kdev_t.h: new_encode_dev(MKDEV(major,minor)) for 32-bit dev_t encoding used in-kernel.

get_inode_generation