Jeff Mahoney
4f3a31cc82
- Update to version 0.6.4.2~git86.b5931f7: * cleanup: go mod tidy - Fix vendoring of replaced modules. - Only require libtsan0 on x86_64 - Only attempt to copy vmlinux.h if /sys/kernel/btf/vmlinux doesn't exist - Fix building of libbpfgo on i586 - Update to version 0.6.4.2~git84.1b38fda: * Clean up libbpfgo mess * libbpfgo: use forked repo for fully static builds * libbpfgo: sync to v0.4.4-libbpf-1.0.1 * contrib/kafka-humio-gateway: add new debug option for noisy events * contrib/kafka-humio-gateway: backoff and retry for metadata * vql/server/kafka: connect sarama logging to velociraptor logging * vql/server/kafka: add exponential backoff (limited to 30s) for metadata retries * vql/server/kafka: set appropriate ClientID * libbpfgo: add selftest to build so testcases work * cronsnoop: rework testcases to use t.TempDir * cronsnoop: move external dependencies to end of import list * SSHLogin: require _TRANSPORT != 'kernel' from watch_journal() - Update to version 0.6.4.2~git67.85b608e: * clients/host-info.js: add MAC addresses to client dashboard * linux: Add ability to interrogate system and network configuration * SUSE: Add docker-compose environment * SUSE: add Docker files * Add Linux.Sys.Bash to Server.Monitor.Shell artifact * api/authenticators: fix handling of missing oauthstate cookie for OAUTH2 * kafka-humio-gateway: add sample config file * Updating the NewFiles and ProcessStatuses Artifacts OBS-URL: https://build.opensuse.org/request/show/1035327 OBS-URL: https://build.opensuse.org/package/show/security:sensor/velociraptor?expand=0&rev=22
86 lines
2.1 KiB
Bash
86 lines
2.1 KiB
Bash
#!/bin/bash
|
|
|
|
cleanup() {
|
|
test -n "${dir}" && rm -rf "${dir}"
|
|
if test -n "${gopathdir}"; then
|
|
chmod -R u+w "${gopathdir}"
|
|
rm -rf "${gopathdir}"
|
|
fi
|
|
}
|
|
|
|
error() {
|
|
echo "An error occurred. Exiting." >&2
|
|
}
|
|
|
|
trap error ERR SIGINT
|
|
trap cleanup EXIT
|
|
set -e
|
|
|
|
version=$(rpmspec -q --queryformat="%{VERSION}\n" velociraptor.spec|head -1)
|
|
|
|
dir="$(realpath "$(mktemp -d vendoring.XXXXXX)")"
|
|
topdir="$(realpath "$(dirname "$0")")"
|
|
|
|
rpmspec -P velociraptor.spec --define "_sourcedir $PWD" | \
|
|
awk '
|
|
BEGIN { go=0; };
|
|
/^%build/ { go=0; };
|
|
{ if (go) print };
|
|
/^%setup/ { go=1 }' > ${dir}/setup.sh
|
|
|
|
echo "Expanding archive..."
|
|
cpio -D "${dir}" -id < velociraptor-${version}.obscpio
|
|
|
|
echo "Running %prep"
|
|
cd "${dir}/velociraptor-${version}"
|
|
tar Jxf ${topdir}/vmlinux.h-5.18.9-2-default.tar.xz
|
|
sh ${dir}/setup.sh
|
|
|
|
echo "Re-vendoring Go code..."
|
|
gopathdir="$(mktemp -d /tmp/gopath.XXXXXXX)"
|
|
rm -rf vendor
|
|
export GOPATH="$gopathdir"
|
|
|
|
|
|
# Vendoring doesn't get along with replaced modules, so symlink to those
|
|
go mod vendor
|
|
replace_module() {
|
|
local mod=$1
|
|
local path=$2
|
|
rm -rf "vendor/${mod}"
|
|
rel="$(echo $mod|tr A-Za-z0-9_- .|sed -e 's/\.\.\.*/../g')"
|
|
ln -s "${rel}/${path}" "vendor/${mod}"
|
|
ls -la vendor/${mod}/
|
|
}
|
|
|
|
replace_module github.com/aquasecurity/libbpfgo third_party/libbpfgo
|
|
replace_module github.com/elastic/go-libaudit/v2 third_party/go-libaudit
|
|
|
|
sh
|
|
|
|
tar Jcf ${dir}/vendor-golang-${version}.tar.xz vendor
|
|
cd "${dir}"
|
|
mv vendor-golang-*${version}.tar.xz ${topdir}
|
|
|
|
cd "${dir}/velociraptor-${version}/contrib/kafka-humio-gateway"
|
|
rm -rf vendor
|
|
go mod vendor
|
|
cd "${dir}/velociraptor-${version}"
|
|
tar Jcf "${dir}/vendor-golang-kafka-humio-gateway-${version}.tar.xz" "contrib/kafka-humio-gateway/vendor"
|
|
|
|
echo "Re-vendoring nodejs code..."
|
|
cd "${dir}/velociraptor-${version}/gui/velociraptor"
|
|
rm -rf node_modules
|
|
npm install
|
|
cd ../..
|
|
tar Jcf ${dir}/vendor-nodejs-${version}.tar.xz gui/velociraptor/node_modules
|
|
|
|
cd "${dir}"
|
|
mv vendor-golang-*${version}.tar.xz vendor-nodejs-${version}.tar.xz ${topdir}
|
|
|
|
for spec in ${topdir}/*.spec; do
|
|
sed -i "s/^%define vendor_version.*/%define vendor_version ${version}/" ${spec}
|
|
done
|
|
|
|
echo "Done"
|