Module oom_events 

OOM (Out-of-Memory) kill event recovery from the kernel log buffer.

Scans the __log_buf printk ring buffer for OOM kill messages (“Out of memory: Killed process”) and extracts structured event info. Events that killed security/monitoring processes are flagged as suspicious.

Re-exports

pub use crate::heuristics::classify_oom_victim;

Structs

OomEventInfo

Information about an OOM kill event recovered from kernel logs.

Functions

walk_oom_events

Walk the kernel log ring buffer for OOM kill events.