yo/libbsm
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Compare commits

base: yo:v.0.4
Branches Tags
yo:master
yo:v0.6.3 yo:v0.6.2 yo:v0.6.1 yo:v0.6 yo:v0.5.9c yo:v.0.5 yo:v.0.4 yo:v.0.3 yo:v.0.2
..
compare: yo:9218ae6daa4e8a87f8839bb8306dadb141750f68
Branches Tags
yo:master
yo:v0.6.3 yo:v0.6.2 yo:v0.6.1 yo:v0.6 yo:v0.5.9c yo:v.0.5 yo:v.0.4 yo:v.0.3 yo:v.0.2

5 Commits
v.0.4 ... 9218ae6daa

Author SHA1 Message Date
yo
9218ae6daa Code formatting 2022-07-01 17:20:56 +02:00
yo
dcecaf6c62 Code formatting 2022-07-01 17:15:54 +02:00
yo
8d87cc12c4 BUGFIX: *id were not displayed correctly using -n 2022-07-01 12:12:08 +02:00
yo
54f64d9101 Bump version to v.0.5 2022-01-10 17:52:20 +01:00
yo
9e675658b6 Use bufio.NewReader so we can read pipe (/dev/auditpipe or stdin) 2022-01-10 17:51:12 +01:00
2 changed files with 551 additions and 625 deletions
Expand all files Collapse all files

756
libbsm.go
View File

File diff suppressed because it is too large Load Diff

32
main.go
View File

@ -5,12 +5,18 @@
// //
/* /*
% time ./godit 20211228134923.20211228151348 > godit.log
11.599u 38.235s 0:48.25 103.2% 1045+553k 1+2262168io 4pf+0w
% time praudit -l /home/yo/Dev/go/godit/20211228134923.20211228151348 > praudit.log % time praudit -l /home/yo/Dev/go/godit/20211228134923.20211228151348 > praudit.log
101.728u 7.315s 1:49.09 99.9% 10+167k 0+191152io 0pf+0w 101.728u 7.315s 1:49.09 99.9% 10+167k 0+191152io 0pf+0w
% time ./godit 20211228134923.20211228151348 > godit.log
11.599u 38.235s 0:48.25 103.2% 1045+553k 1+2262168io 4pf+0w
% ./godit -V % ./godit -V
Godit v0.03 Godit v0.03
% time ./godit 20211228134923.20211228151348 > 20211228134923.20211228151348.godit3
7.183u 19.590s 0:25.98 103.0% 1038+559k 0+2262168io 0pf+0w
% ./godit -V
Godit v0.4.3
*/ */
package main package main
@ -19,11 +25,13 @@ import (
"io" "io"
"os" "os"
"fmt" "fmt"
"bufio"
"strings"
"github.com/spf13/pflag" "github.com/spf13/pflag"
) )
const ( const (
version = "0.4" version = "0.5.1"
) )
var ( var (
@ -66,28 +74,38 @@ func main() {
} }
args := os.Args args := os.Args
filename := args[len(args)-1] filename := args[len(args)-1]
/* fmt.Printf("Args: %s\n", args) /* fmt.Printf("Args: %s\n", args)
fmt.Printf("Filename: %s\n", filename) fmt.Printf("Filename: %s\n", filename)
*/ */
var f *os.File
var r *bufio.Reader
var err error
if len(filename) > 0 { if len(filename) > 0 {
f, err := os.Open(filename) // If arg is "-", open stdin to read content
if true == strings.EqualFold(filename, "-") {
r = bufio.NewReader(os.Stdin)
} else {
f, err = os.Open(filename)
if err != nil { if err != nil {
fmt.Printf("Impossible d'ouvrir le fichier %s\n", filename) fmt.Printf("Impossible d'ouvrir le fichier %s\n", filename)
return return
} }
r = bufio.NewReader(f)
}
//for i := 0 ; i < 20 ; i++ { //for i := 0 ; i < 20 ; i++ {
for { for {
rec, err := readRecordToStruct(f) rec, err := readRecordToStruct(r)
if err != nil { if err != nil {
if err != io.EOF { if err != io.EOF {
fmt.Printf("Erreur : %v\n", err) fmt.Printf("Erreur : %v\n", err)
} } else { // v.0.4.2 : Continue on error
return return
} }
}
rec.Print(os.Stdout, ",", flags) rec.Print(os.Stdout, ",", flags)
} }
} }