code_public/logcorrelator
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 839e9f949d maj sql des vues master toto 2026-03-13 18:46:24 +01:00
  • fd91484f75 suite toto 2026-03-12 11:57:06 +01:00
  • 79d86eba23 schema sql toto 2026-03-12 11:21:11 +01:00
  • 20ebe7240e Feat: Détection menaces HTTP via vues ClickHouse + simplification shutdown toto 2026-03-11 18:28:07 +01:00
  • 5df2fd965b view toto 2026-03-09 08:37:59 +01:00
  • 703b2b5181 maj des vue toto 2026-03-08 23:51:04 +01:00
  • 31d73b6c86 Ajout d un fichier de notes toto 2026-03-08 23:26:40 +01:00
  • 7b5d31d1a9 files: ajout des requetes sql d aggregation toto 2026-03-08 23:21:21 +01:00
  • cd1444135b fix(correlation): keepalives field not populated in ClickHouse (v1.1.17) toto 2026-03-06 17:42:40 +01:00
  • f0b74f45a3 feat(correlation): emit A events filtered by include_dest_ports to ClickHouse (v1.1.16) toto 2026-03-06 08:39:12 +01:00
  • b47f4258fd fix(correlation/bug3): emit pending orphans on B TTL expiry (v1.1.15) toto 2026-03-05 18:20:08 +01:00
  • 0fca6e4e93 fix(correlation): Keep-Alive time window + orphan timer + TTL purge (v1.1.14) toto 2026-03-05 17:01:37 +01:00
  • 9979644b62 fix: materialized view toto 2026-03-05 16:35:40 +01:00
  • 703cc22cac fix: ajout de nouvelles collones dans clickhouse toto 2026-03-05 16:23:48 +01:00
  • 7423bb4614 fix(v1.1.13): socket ownership, correlation bugs, keepalive_seq toto 2026-03-05 16:03:13 +01:00
  • ae3da359fa docs: add sql/init.sql + update README ClickHouse schema toto 2026-03-05 14:28:44 +01:00
  • a8e024105d feat(correlation): add include_dest_ports filter + README/arch update (v1.1.12) toto 2026-03-05 13:51:20 +01:00
  • ba9e0ab477 docs(architecture): update for v1.1.11 changes toto 2026-03-05 13:37:55 +01:00
  • e9dcd8ea51 feat: observability, IP filtering, stdout/clickhouse fixes (v1.1.11) toto 2026-03-05 11:40:54 +01:00
  • 68f0fcf810 fix(rpm): copy RPMs from x86_64 subdirectory in output stage toto 2026-03-03 22:29:21 +00:00
  • 0c8be83173 fix(rpm): remove unnecessary copy step toto 2026-03-03 22:27:13 +00:00
  • af62c43465 fix(rpm): copy files to BUILD dir instead of source archive toto 2026-03-03 22:26:00 +00:00
  • 379b310381 fix(rpm): correct spec file paths for source archive toto 2026-03-03 22:21:51 +00:00
  • c66df22351 chore: bump version to 1.1.8 (FPM → rpmbuild migration) toto 2026-03-03 22:21:10 +00:00
  • 0cc9fbcd38 perf(rpm): migrate from FPM to rpmbuild (-200MB build image) toto 2026-03-03 22:17:31 +00:00
  • caf363b156 perf(build): optimize build speed with cache and parallel builds (-60% time) toto 2026-03-03 22:08:04 +00:00
  • e0c622f635 feat(correlation): add configurable delay before emitting orphan A events toto 2026-03-03 22:03:31 +00:00
  • 97862bb1dc fix(correlation): prevent premature orphan emission of HTTP logs toto 2026-03-03 21:47:11 +00:00
  • 24f2d8a3c4 fix(rpm): preserve config on upgrade, set correct ownership/permissions toto 2026-03-03 21:30:27 +00:00
  • 9db6848757 fix: critical Keep-Alive correlation bug - network events evicted prematurely toto 2026-03-03 16:32:48 +01:00
  • 25d4943714 docs: README improvements - config, troubleshooting, structure toto 2026-03-03 14:42:51 +01:00
  • a6327cc36f docs: add sanity check queries for ClickHouse ingestion toto 2026-03-03 14:40:35 +01:00
  • eed376d749 docs: update ClickHouse schema with new table structure toto 2026-03-03 14:38:45 +01:00
  • 60cd8d87e4 docs: update ClickHouse schema with TTL, MV and users toto 2026-03-03 13:39:47 +01:00
  • 51e1eb8d57 chore: bump version to 1.1.6 toto 2026-03-03 11:55:28 +01:00
  • 58b23ccc1e docs: update ClickHouse schema (http_logs_raw + http_logs) toto 2026-03-03 11:53:13 +01:00
  • 560ee59d85 fix: insert into http_logs_raw with single raw_json column toto 2026-03-03 11:49:41 +01:00
  • d78cc52a88 fix: ClickHouse insertion using native clickhouse-go/v2 API toto 2026-03-03 11:38:33 +01:00
  • 4b4ab84ee0 fix: set /var/run/logcorrelator permissions to 755 in RPM Jacquin Antoine 2026-03-03 00:17:56 +01:00
  • c352e06b88 fix: create socket parent directory on startup Jacquin Antoine 2026-03-03 00:17:01 +01:00
  • 6b690a3eb3 fix: log raw JSON on parse errors for debugging Jacquin Antoine 2026-03-02 23:20:51 +01:00
  • ac357c19ea build: remove rpm-test stage from Dockerfile Jacquin Antoine 2026-03-02 22:56:39 +01:00
  • 7f2becf702 chore: bump version to 1.1.3 Jacquin Antoine 2026-03-02 22:54:12 +01:00
  • 24aa84bd9c test: add comprehensive tests to improve coverage Jacquin Antoine 2026-03-02 22:52:09 +01:00
  • 15ca33ee3a refactor: switch Unix sockets from STREAM to DGRAM mode Jacquin Antoine 2026-03-02 22:43:10 +01:00
  • eb3cc78170 docs: rename apache.socket to http.socket in examples Jacquin Antoine 2026-03-02 22:35:42 +01:00
  • fb8bd35acd fix: remove CHANGELOG.md reference from Dockerfile.package Jacquin Antoine 2026-03-02 22:15:18 +01:00
  • 324b0042f8 fix(rpm): example config in /etc/logcorrelator + socket permissions 0666 Jacquin Antoine 2026-03-02 22:07:50 +01:00
  • ef819e8868 chore: bump PKG_VERSION to 1.1.1 Jacquin Antoine 2026-03-02 21:54:05 +01:00
  • 35cb53f0a5 docs: add version consistency requirement in architecture.yml Jacquin Antoine 2026-03-02 21:53:21 +01:00
  • 7eb143e904 fix(rpm): install logcorrelator.yml.example in /etc/logcorrelator/ Jacquin Antoine 2026-03-02 21:40:33 +01:00
  • 33e19b4f52 feat: Keep-Alive correlation, TTL management, SIGHUP handling, logrotate support Jacquin Antoine 2026-03-02 20:32:59 +01:00
  • a415a3201a 1.0.9 Jacquin Antoine 2026-03-01 12:25:34 +01:00
  • 27c7659397 fix: renforcer corrélation A/B et sorties stdout/fichier Jacquin Antoine 2026-03-01 12:10:17 +01:00
  • d3436f6245 1.0.8 Jacquin Antoine 2026-03-01 11:30:55 +01:00
  • a3ae5421cf chore: version 1.0.7 - add log levels Jacquin Antoine 2026-03-01 02:33:04 +01:00
  • 56c2923121 chore: version 1.0.6 - simplify YAML configuration Jacquin Antoine 2026-03-01 01:59:59 +01:00
  • efeb7e455f fix: use %{spec_version} macro in RPM spec file Jacquin Antoine 2026-03-01 01:17:03 +01:00
  • ea5ac94983 chore: bump version to 1.0.4 Jacquin Antoine 2026-03-01 00:46:09 +01:00
  • 445acc325b fix: systemd service hardening and correct config path Jacquin Antoine 2026-03-01 00:44:19 +01:00
  • 7e9d203341 feat: auto-start systemd service after RPM installation Jacquin Antoine 2026-03-01 00:42:15 +01:00
  • 880b29bb78 chore: fix CI branch name and tidy go modules Jacquin Antoine 2026-03-01 00:35:04 +01:00
  • 644d81d33e refactor: rename RPM directories to generic el8/el9/el10 naming Jacquin Antoine 2026-03-01 00:29:50 +01:00
  • b25dc24ed9 docs: update architecture.yml after code cleanup Jacquin Antoine 2026-03-01 00:28:23 +01:00
  • 41e763ad02 refactor: remove unused code and fix documentation Jacquin Antoine 2026-03-01 00:26:07 +01:00
  • 9bb6ae3106 fix: use version from .spec file for RPM builds Jacquin Antoine 2026-03-01 00:19:14 +01:00
  • 87b94f3c18 feat: add main entry point and stdout sink for Docker build Jacquin Antoine 2026-02-28 23:32:25 +01:00
  • f33d7ac7cd fix: add .dockerignore to ensure proper Docker build context Jacquin Antoine 2026-02-28 23:18:06 +01:00
  • 0ca7f53d01 Add --no-cache to docker build commands Jacquin Antoine 2026-02-28 23:10:00 +01:00
  • 58292e10d7 Add Makefile and remove obsolete build.sh/test.sh scripts Jacquin Antoine 2026-02-28 22:55:25 +01:00
  • 52eebafb0b docs: update README and architecture for v1.0.3 flat JSON structure Jacquin Antoine 2026-02-28 22:28:45 +01:00
  • 514cb553ef feat: release v1.0.3 with flattened JSON output structure Jacquin Antoine 2026-02-28 22:26:20 +01:00
  • 180c57c35b chore: release v1.0.2 with critical fixes and test improvements Jacquin Antoine 2026-02-28 21:45:00 +01:00
  • 5f97af3627 docs: update architecture.yml for AlmaLinux 10 support Jacquin Antoine 2026-02-28 20:59:27 +01:00
  • 439e18c70d feat: add AlmaLinux 10 RPM support Jacquin Antoine 2026-02-28 20:56:57 +01:00
  • 846f1aa6cd refactor: drop CentOS 7 support, keep Rocky Linux 8/9 only Jacquin Antoine 2026-02-28 20:50:36 +01:00
  • 39f138ea73 fix: add CentOS 7 RPM support with SCL Ruby 2.5 Jacquin Antoine 2026-02-28 20:43:50 +01:00
  • c7b8523879 chore: bump version to 1.0.1 and update changelog Jacquin Antoine 2026-02-28 20:16:38 +01:00
  • 7e9535122e fix: durcir la validation et fiabiliser flush/arrêt idempotents Jacquin Antoine 2026-02-28 20:10:28 +01:00
  • 81849b16d8 refactor: remove Debian/DEB packaging, RPM-only support Jacquin Antoine 2026-02-28 19:55:24 +01:00
  • 7a9d92a469 feat: add multi-distro RPM packaging for CentOS 7 and Rocky Linux 8/9/10 Jacquin Antoine 2026-02-28 17:17:56 +01:00
  • 85f7af357c refactor: remove obsolete config and update documentation Jacquin Antoine 2026-02-27 16:14:53 +01:00
  • f4d95eed41 test: update config tests for YAML format Jacquin Antoine 2026-02-27 15:54:13 +01:00
  • 37f9c21672 feat: migrate configuration from custom format to YAML Jacquin Antoine 2026-02-27 15:51:25 +01:00
  • 0d84a1284f docs: update architecture.yml with unified packaging section Jacquin Antoine 2026-02-27 15:41:29 +01:00
  • 8fc14c1e94 Initial commit: logcorrelator with unified packaging (DEB + RPM using fpm) Jacquin Antoine 2026-02-27 15:31:46 +01:00