Package auditd-plugin-clickhouse-lite: Specfile

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
%define _unpackaged_files_terminate_build 1

Name:    auditd-plugin-clickhouse-lite
Version: 0.1.7
Release: alt1
Summary: A lightweight plugin for auditd daemon to send audit data to a Clickhouse database
Group:   Monitoring
License: GPLv3+

Source: %name-%version.tar

BuildRequires(pre): rpm-macros-cmake
BuildRequires: gcc-c++ cmake
BuildRequires: boost-complete
BuildRequires: libclickhouse-cpp-devel
BuildRequires: libaudit-devel
BuildRequires: bats /proc

# audit 3.0 has changed the location for configs
Requires: audit >= 3.0-alt1

%description
A lightweight plugin for auditd daemon to send audit data to a Clickhouse
database.

%package -n clickhouse-audit-utils
Summary: Utilities to work with audit data stored in a Clickhouse database
Group:   Monitoring
License: GPLv3+

%description -n clickhouse-audit-utils
Utilities to work with audit data stored in a Clickhouse database.
Currently the package contains only the export script that could be
used to export the database records back to text (log) files.

%prep
%setup

%build
%add_optflags -Werror
%cmake
%cmake_build

%install
%cmake_install

install -D -m0755 clickhouse-audit-export \
		%buildroot/%_bindir/clickhouse-audit-export

%check
BUILD=%_cmake__builddir ./run-tests.sh normal bench

%files
%_prefix/libexec/%name
%dir %_datadir/%name
%_datadir/%name/init_db.sql
%config(noreplace) %attr(600,root,root) %_sysconfdir/audit/%name.conf
%config(noreplace) %_sysconfdir/audit/plugins.d/clickhouse-lite.conf
%config(noreplace) %_sysconfdir/logrotate.d/%name-logrotate.conf

%files -n clickhouse-audit-utils
%_bindir/clickhouse-audit-export

%changelog
* Fri Sep 22 2023 Paul Wolneykien <manowar@altlinux.org> 0.1.7-alt1
- Added tests to check the fix.
- Fixed various potential loss of data.
- Fix: Don't panic when no data have been read (EOF).
- CRITICAL FIX: Don't assume the input buffer is always full.
- Fix: Always panic if no end marker (newline) found.

* Mon Jul 31 2023 Paul Wolneykien <manowar@altlinux.org> 0.1.6-alt1
- Fixed search for clickhouse-cpp library and use of its headers.
- Added clickhouse-audit-utils package containing the audit record
  export script.
- Fix: Own %%_datadir/%%name.

* Wed May 24 2023 Paul Wolneykien <manowar@altlinux.org> 0.1.5-alt1
- Check that the plugin copes normally with slow and very slow input.
- Fix: Search for newline only in newly received data.

* Tue May 23 2023 Paul Wolneykien <manowar@altlinux.org> 0.1.4-alt1
- Make writer throw errors when running with -e.

* Tue May 23 2023 Paul Wolneykien <manowar@altlinux.org> 0.1.3-alt1
- Log exceptions from the main process.
- Fix the default syslog Ident=.

* Tue May 23 2023 Paul Wolneykien <manowar@altlinux.org> 0.1.2-alt1
- Fixed insert on timeout.
- Fixed building on 32-bit arches.

* Tue May 23 2023 Paul Wolneykien <manowar@altlinux.org> 0.1.1-alt1
- Fixed Database= parameter in the default config.

* Tue May 23 2023 Paul Wolneykien <manowar@altlinux.org> 0.1.0-alt1
- Initial build for Sisyphus. Partially based on auditd-plugin-clickhouse.
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top