How does this work under the covers on Linux? Is it using eBPF, or is it simply an abstraction over inotify?
I'm particularly interested in something like this, but which will include information about what process made the change, and which user it was running as at the time.
I’ve gone back and forth with inotify on Linux. Ned14 gave a great rundown of the ideal next steps for a best-possible implementation.
You can check out issue/10 for a full description of how it works now, why neither inotify nor our current solution is ideal, and where the project will be going next.
Ah, sorry, that really should have been obvious :D
Have you looked into using eBPF for tracking file system changes at any point? (I don't mean for this project, as it's clear you're taking a particular approach that will work across platforms).
`scan_directory` in the same file recursively iterates directories and no calls to `inotify_*` functions seem to be made; no grep matches in the project directory.
I'm particularly interested in something like this, but which will include information about what process made the change, and which user it was running as at the time.