felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(aa-log): add the --since option.

Browse source
This commit is contained in:
Alexandre Pujol 2024-10-21 14:12:02 +01:00
parent 2bace01783
commit 7e09351f8f
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
3 changed files with 16 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

4
cmd/aa-log/main.go
View file

@ -31,6 +31,7 @@ Options:
-s, --systemd Parse systemd logs from journalctl.
-r, --rules Convert the log into AppArmor rules.
-R, --raw Print the raw log without any formatting.
-S, --since DATE Show entries not older than the specified date.
`
@ -41,6 +42,7 @@ var (
path string
systemd bool
raw bool
since string
)
func aaLog(logger string, path string, profile string) error {
@ -51,7 +53,7 @@ func aaLog(logger string, path string, profile string) error {
case "auditd":
file, err = logs.GetAuditLogs(path)
case "systemd":
file, err = logs.GetJournalctlLogs(path, !slices.Contains(logs.LogFiles, path))
file, err = logs.GetJournalctlLogs(path, since, !slices.Contains(logs.LogFiles, path))
default:
err = fmt.Errorf("Logger %s not supported.", logger)
}