beenull/crowdsec
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
1059 commits 83 branches 177 tags 151 MiB
Commit graph

262 commits

Author SHA1 Message Date
Thibault "bui" Koechlin ca3e9ea487
load hub file properly when restoring config from tmpdir (#847) 2021-07-01 18:38:45 +02:00
Thibault "bui" Koechlin 033c8e17e8
fix #842 #837 (#845) 
* fix #842 and move preflight checks tgth

* handle new container name

Co-authored-by: AlteredCoder <AlteredCoder>
 2021-07-01 18:15:22 +02:00
he2ss 1b39893fcf
cscli: update completion doc (fix #841) (#846) 
* cscli: update completion doc (fix #841)
 2021-07-01 15:03:48 +02:00
blotus 556f93827a
refuse to run the dashboard if not on amd64 (#843) 2021-07-01 13:41:16 +02:00
blotus 3994aec7fe
add console enroll command to cscli (#828) 2021-06-28 17:34:19 +02:00
Thibault "bui" Koechlin ce6a61df1c
Refactor Acquisition Interface (#773) 
* Add new acquisition interface + new modules (cloudwatch, syslog)

Co-authored-by: Sebastien Blot <sebastien@crowdsec.net>
 2021-06-11 09:53:53 +02:00
Shivam Sandbhor f25d02a7c8
Allow bouncers to filter decisions by scope (#817) 
Signed-off-by: Shivam Sandbhor <shivam@crowdsec.net>
 2021-05-31 15:07:09 +02:00
Shivam Sandbhor 98277f5bb7
Gen passwd until it satisfies metabase policy (#792) 
Signed-off-by: Shivam Sandbhor <shivam@crowdsec.net>
 2021-05-17 11:43:53 +02:00
AlteredCoder fd830b4293
Fix some bugs (#788) 
* fix config restore

* fix panic on middleware

Co-authored-by: AlteredCoder <AlteredCoder>
 2021-05-07 18:40:01 +02:00
AlteredCoder a19f13ab45
fix cscli alerts delete -all (#769) 
Co-authored-by: AlteredCoder <AlteredCoder>
 2021-04-27 11:59:18 +02:00
AlteredCoder 60740f6279
fix makefile for static binaries (#764) 
* Fix LD_OPTS for static build

Co-authored-by: AlteredCoder <AlteredCoder>
Co-authored-by: Sebastien Blot <sebastien@crowdsec.net>
 2021-04-26 14:45:52 +02:00
blotus 5e2412cc5d
cscli: sort meta by key in alerts inspect output (#762) 2021-04-23 13:42:14 +02:00
Thibault "bui" Koechlin 88e1095478
cscli machines|bouncers|dashboard error message clarification (#754) 2021-04-16 10:50:08 +02:00
Thibault "bui" Koechlin 2679867061
ensure to flush acquis config while reloading (#748) 2021-04-13 13:55:33 +02:00
Thibault "bui" Koechlin 59a9a6b6bf
ensure to load db config for dashboard commands (#731) 2021-03-31 11:32:38 +02:00
Thibault "bui" Koechlin 20ef67a699
cscli hub mgmt improvements (#710) 
* avoid this confusing behaviour where 'cscli parsers/scenarios/... upgrade' won't tell a thing if no arguments are given (and won't do anything neither)

* avoid repeating warnings about available update to the user
 2021-03-29 10:33:23 +02:00
AlteredCoder 20ccb32124
FreeBSD changes (#718) (#721) 
* FreeBSD changes (#718)

* Update build Makefile to be able to build on other platforms

Split Makefiles to isolate every specifics per platform if specific file
is not found, the include will default to linux.

* Isolate linux specific messages emitted by crowdsec command line

On other platforms, we shouldn't write messages with `systemctl`
occurrences. This commit isolate the specific messages and ensure the
messages are relevant for the given platform according result of `GOOS`.

* remove the test

Co-authored-by: Sofian Brabez <sbz@6dev.net>
Co-authored-by: AlteredCoder <AlteredCoder>
 2021-03-26 17:42:56 +01:00
AlteredCoder 73a10ef0e5
add autocompletion for cscli (#717) 2021-03-24 19:07:58 +01:00
AlteredCoder 1e899c2211
Refactor configuration management (#698) 2021-03-24 18:16:17 +01:00
AlteredCoder f1d23b51f6
fix null deref in cscli config (#694) 2021-03-16 16:09:11 +01:00
AlteredCoder 111e17e884
don't hide cscli version (#686) 
Co-authored-by: AlteredCoder <AlteredCoder>
 2021-03-12 16:17:28 +01:00
AlteredCoder f2d14c8ca2
update the config.yaml file (#674) 2021-03-11 11:18:09 +01:00
Thibault "bui" Koechlin c2d4fb037a
clarify help message, fix #659 (#672) 2021-03-10 14:58:19 +01:00
registergoofy 5b7ac4a473
[Rebased] fix races (#633) 
* get rid of dead code
* have LeakRoutined started in a tomb
* fix race and multiple small issues in the way we handle tombs
* yet another race fix
* another race
* get rid of leaky.KillSwitch for proper tomb use
* fix deadlock
* empty overflow before exiting
* fix an obvious typo
* proper use of waitgroup
* have a smart signalisation for allowing LeakRoutine being killed
* ugly workaround
* fix lint error
* fix compilation
* fix panic
* shorten lock
* up lock both copy
* wait for crowdsec to die
* fix coding style and lint issue
* go mod tidy

Co-authored-by: bui <thibault@crowdsec.net>
 2021-02-25 11:26:46 +01:00
AlteredCoder 8b504e9f67
improve logging in cscli and wizard (#643) 2021-02-25 11:20:36 +01:00
Thibault "bui" Koechlin 4565d82f79
don't try to login with zero scenarios (#627) 2021-02-18 09:59:28 +01:00
Thibault "bui" Koechlin 22ada59393
Allow for acquisition files to be specified from a directory as well (#619) 
* allow a acquisition_dir in crowdsec's config + change the behaviour of config loading so that it's working with a list instead. keep backward compat with acquisition_path

* remove the default behaviour of 'guessing' acquis path if param isn't present, and error
 2021-02-17 13:55:36 +01:00
Thibault "bui" Koechlin 7d93302e05
add a prometheus_uri option for cscli's config (#625) 
* add a prometheus_uri option for cscli's config, and update documentation

* specify min version
 2021-02-17 13:53:57 +01:00
AlteredCoder dae4458a6f
create crowdsec group for metabase and crowdsec.db (#606) 2021-02-10 09:23:33 +01:00
AlteredCoder 22c4962768
don't load lapi creds when running only api (#608) 
Co-authored-by: AlteredCoder <AlteredCoder>
 2021-02-09 17:59:35 +01:00
AlteredCoder e8709074f0
fix stack trace when missing cscli in config file (#607) 
Co-authored-by: AlteredCoder <AlteredCoder>
 2021-02-07 15:50:27 +01:00
Thibault "bui" Koechlin e74f221044
Fix default configurations (#597) 
* fix default perms on SQLite file

* seed the prng securely

* fix defaults to enforce certificates verification

* ensure file is within path

* ensure the directory doesn't exist beforehand

* verify certificate by default

* disable http ip forward headers
 2021-02-02 14:15:13 +01:00
AlteredCoder 81e7db71ed
Fix bugs in wizard and cscli (#577) 
* fix id generation bug

* fix api client response

Co-authored-by: AlteredCoder <AlteredCoder>
 2021-01-15 18:14:50 +01:00
Thibault "bui" Koechlin 986a0be812
fix wizard behaviour when detecting appropriate action (#573) 
* fix wizard behaviour when detecting appropriate action

* fix filter handling with cscli

* add ipv6 tests

Co-authored-by: AlteredCoder <AlteredCoder>
 2021-01-15 09:48:39 +01:00
AlteredCoder 5544000d38
lapi: fix ipv6 operations (#567) 2021-01-14 16:27:45 +01:00
Pͥetͣeͫr Zuidˢeͬmͨaͬ 1778ee840e
Sanitize id from either source (#568) 
On FreeBSD the uuid has dashes. So moved line 74 outside the if loop to have it sanitize either id source of dashes.
 2021-01-14 13:03:24 +01:00
Thibault "bui" Koechlin b79c897d99
fix the config restore feature for tainted configurations (#541) 2020-12-15 12:07:43 +01:00
Thibault "bui" Koechlin bb679310c7
deal with LAPI down : ensure client will reauthenticate (#527) 
* to avoid keeping apiclient in broken state, reset the token on error
 2020-12-14 11:54:16 +01:00
AlteredCoder 79080d4e36
Fix cscli hub (#534) 2020-12-14 11:53:30 +01:00
AlteredCoder 0ed92b20a0
fix prometheus URL used by cscli (#520) 2020-12-07 17:35:30 +01:00
erenJag a9353e3016
cscli: fix bug in restore command (#510) 2020-12-04 13:00:13 +01:00
AlteredCoder 7831dabaa8
rename username by machine (#506) 
Co-authored-by: AlteredCoder <AlteredCoder>
 2020-12-03 17:38:27 +01:00
AlteredCoder d057d811b2
allow to specify username when register to lapi (#505) 
Co-authored-by: AlteredCoder <AlteredCoder>
 2020-12-03 17:07:02 +01:00
erenJag 9d016f262f
fix & improve cscli remove action + improve cscli args vars (#498) 2020-12-02 18:47:17 +01:00
AlteredCoder 8707140fb2
Fix documentation errors (#496) 2020-12-01 17:04:13 +01:00
Thibault "bui" Koechlin b7190c9ecc
improve error management of cscli bouncers add (#495) 2020-12-01 16:16:01 +01:00
erenJag a16fb1475d
add info message when there is no hub index (#492) 2020-12-01 12:33:14 +01:00
Thibault "bui" Koechlin dbb420f79e
local api (#482) 
Co-authored-by: AlteredCoder
Co-authored-by: erenJag
 2020-11-30 10:37:17 +01:00
Thibault "bui" Koechlin c38b086349
minor improvements : makefile + cscli api register (#338) 
* make it more obvious where to put credentials after register

* properly check the go version before trying to build, inspired the way mattermost does it
 2020-10-29 10:07:03 +01:00
Thibault "bui" Koechlin 2fdf7624da
properly honor the --force flag of upgrade (#327) 2020-10-23 13:48:04 +02:00
Peter 92c5b8c263
Update config.go (#294) 
Fixed 'config show' example.
 2020-10-06 16:58:02 +02:00
registergoofy f0ea8312db
set default hub branch to master in cscli (#279) 2020-10-01 15:02:53 +02:00
registergoofy c6aab9893a
add randomness to machine-id when registering. (#261) 
* add randomness to machine-id when registering.

* add some regexp check for machine_id

* typo fix

* fix cwapi unit tests
 2020-09-29 13:17:33 +02:00
AlteredCoder 57aa1c6b24
use hub master if we are in pre-release (#196) 
Co-authored-by: AlteredCoder <AlteredCoder>
 2020-09-01 15:28:47 +02:00
AlteredCoder b7286d6a85
make cscli use crowdsec version for hub (#194) 2020-09-01 14:32:45 +02:00
Thibault "bui" Koechlin b2ef6a555c
add support for 'prometheus_mode' configuration directive that can be set to 'aggregation' to limit the cardinality of prometheus metrics (#192) 2020-08-24 11:51:50 +02:00
Thibault "bui" Koechlin f8abb01bbc
Advise user to perform a reload when appropriate (#163) 2020-07-30 12:15:15 +02:00
AlteredCoder 0f2733418a fix version release 2020-07-29 17:36:59 +02:00
AlteredCoder 2da55f411b
remove data folder from release and fix binary size (#160) 2020-07-29 17:14:32 +02:00
erenJag 89c8d1a527
rename metrics and update metrics helps (#152) 
* rename metrics and update metrics helps

* add meta info about crowdsec

Co-authored-by: erenJag <erenJag>
 2020-07-29 15:03:15 +02:00
AlteredCoder 794d3221d0
add tests in pkg/csconfig and improve pkg/exprhelpers tests (#150) 
* add tests for csconfig & improve exprhelpers tests
 2020-07-28 15:38:48 +02:00
Thibault "bui" Koechlin 151af2d0d8
No sql transaction + proper time-machine wait (#148) 2020-07-27 13:42:30 +02:00
Thibault "bui" Koechlin 6b4674104c
Update documentation for crowdsec v0.3.0 (#141) 2020-07-22 10:25:23 +02:00
AlteredCoder 0864f13cb8
fix post merge (#138) 
* fix post merge (#138)
 2020-07-17 15:26:46 +02:00
Thibault "bui" Koechlin 177480cff7
updated mysql plugin support (#135) 
* add support for plugin, support mysql & so on

* fix queries

Co-authored-by: erenJag <erenJag>
Co-authored-by: AlteredCoder <AlteredCoder>
 2020-07-16 16:05:03 +02:00
Thibault "bui" Koechlin 7fe6741df3
Simulation support (#136) 
* support simulation mode
 2020-07-16 15:59:09 +02:00
AlteredCoder 87a90583fe
Fix#80 (#133) 
* fix #80 

Co-authored-by: AlteredCoder <AlteredCoder>
Co-authored-by: Thibault bui Koechlin <thibault@crowdsec.net>
 2020-07-16 15:48:46 +02:00
Thibault "bui" Koechlin bc2566f3e5
support multiple args for all cscli upgrade/install/remove commands (#132) 2020-07-10 10:43:22 +02:00
AlteredCoder 4ef080e7bd
Add possibility to filter the size of cscli ban list returned array (#129) 
* Be able to filter/limit the `ban list` output
 2020-07-10 10:33:39 +02:00
Thibault "bui" Koechlin 3dd42bc9fd
add ability to filter 'ban list' output (--ip --range --as --country --reason) (#115) 
* add ability to filter 'ban list' output
 2020-07-03 11:40:12 +02:00
Thibault "bui" Koechlin 7691e5b663
re-enable postoverflows (#117) 
* re-enable postoverflows

* debug

* yoloooo

* remove debug

* remove error print

* fix test

* fix leakybucket test

* fix

Co-authored-by: AlteredCoder <AlteredCoder>
 2020-07-02 17:56:39 +02:00
Thibault "bui" Koechlin b9ae94b874
Sqlite : Support automatic db flushing (#91) 
* add support for sqlite retention : max_records, max_records_age

* reduce verbosity of cwhub
 2020-07-01 17:04:29 +02:00
AlteredCoder 81ef26f406
add output raw for ban list (#108) 
Co-authored-by: AlteredCoder <AlteredCoder>
 2020-07-01 10:27:50 +02:00
Thibault "bui" Koechlin 44076dd3d5
fix multi runners : only run several parsers for now (#98) 2020-06-29 15:44:33 +02:00
AlteredCoder 29df9704a2
Fix empty machineid (#95) 
* fix

* fix

Co-authored-by: AlteredCoder <AlteredCoder>
 2020-06-29 12:46:10 +02:00
erenJag bdda08223e
Fix hub CI (#86) 2020-06-24 15:00:30 +02:00
Thibault "bui" Koechlin 5446857377
Add crowdsec reload + cscli metrics minor improvements (#79) 2020-06-19 13:57:44 +02:00
Thibault "bui" Koechlin d6987ae8f1
avoid error when prometheus gives scientific notation (#76) 2020-06-16 17:53:10 +02:00
Thibault "bui" Koechlin 64c5fa7360
CI: add a CI to test parsers (#67) 2020-06-10 12:14:27 +02:00
Thibault "bui" Koechlin ea3b9d9de0
fix #55 : now that we have split the code for external shutdown (service) and one-shot, we don't need the 5s sleep anymore (#56) 2020-06-02 11:24:50 +02:00
Thibault "bui" Koechlin f2e38b0d28
fix #47 #35 (#49) 2020-06-01 12:56:32 +02:00
Thibault "bui" Koechlin cda7beddbf add support in cscli to switch branches of hub (#43) 2020-05-28 11:32:00 +02:00
Thibault bui Koechlin a06f8373ae move the setLogger config and ConfigureLogger to be part of types for reuse accross modules 2020-05-28 11:28:49 +02:00
Thibault "bui" Koechlin 1abdfc9b10 make message better 2020-05-28 11:28:49 +02:00
erenJag 9f946ca4a4 add missing IPs calculation 2020-05-25 15:22:06 +02:00
AlteredCoder 1b54bbb909 add data folder parameter to hubMgmt 2020-05-24 19:53:05 +02:00
AlteredCoder 3dfc9de409 fix 2020-05-24 19:19:56 +02:00
AlteredCoder 1f91bd8af0 make var public 2020-05-24 19:17:03 +02:00
AlteredCoder 38a750d3df fix 2020-05-24 18:30:47 +02:00
AlteredCoder 6757fa3cee merge 2020-05-24 18:15:59 +02:00
AlteredCoder 176d5197f6 debug 2020-05-22 18:31:46 +02:00
AlteredCoder ae191f3426 debug 2020-05-22 18:29:13 +02:00
AlteredCoder 74dd723ebf fix 2020-05-22 18:24:54 +02:00
AlteredCoder 68ccbd1f69 fix 2020-05-22 18:23:37 +02:00
AlteredCoder f8821b8982 fix dev config 2020-05-22 18:22:43 +02:00
AlteredCoder ec7aaac9d0 fix 2020-05-22 17:46:22 +02:00
AlteredCoder 019c8d3e18 fix package config name 2020-05-22 17:45:08 +02:00
Thibault bui Koechlin 0076727c29 don't discard error, don't try to unmarshal empty string, don't return if it happen 2020-05-22 11:23:47 +02:00
Thibault bui Koechlin ada5d3fcfe explain linter bypasses 2020-05-22 10:12:35 +02:00
Thibault bui Koechlin 356ce3e7f9 yep all good 2020-05-22 09:59:35 +02:00
Thibault bui Koechlin 5971b9ab40 ensure linter is still ok 2020-05-22 09:54:08 +02:00
Thibault bui Koechlin c37714f4a5 remove dead code 2020-05-21 10:38:06 +02:00
Thibault bui Koechlin 193f2fd5d6 force error in diff 2020-05-21 10:33:40 +02:00
Thibault bui Koechlin e86b163ba5 linter fixes 2020-05-20 18:05:05 +02:00
Thibault bui Koechlin e643bb5b31 linter fixes, inefficient assignments 2020-05-20 17:50:56 +02:00
Thibault bui Koechlin fe68914628 more linter fixes (simplicity mostly) 2020-05-20 11:00:25 +02:00
Thibault bui Koechlin db9e1e280d fix linter warnings : dead code, simplification 2020-05-20 10:49:17 +02:00
Thibault bui Koechlin 604b97a519 LGMT fixes + avoid capitalizing fmt.Errorf strings 2020-05-19 21:31:06 +02:00
Thibault bui Koechlin d542966f13 rename cscli -> cwcli 2020-05-15 14:35:51 +02:00
Thibault bui Koechlin 4d306fc52b doc 2020-05-15 14:33:01 +02:00
Thibault bui Koechlin 3d2d39e77d up 2020-05-15 12:13:57 +02:00
Thibault bui Koechlin 2016167654 initial import 2020-05-15 11:39:16 +02:00