Maximilian Bosch
|
e4b49457af
|
osquery: 3.2.9 -> 3.3.2
Although there's already a windows-only 3.4[1], the latest release for
Unix systems is 3.3.2[2] with the following changes:
* SELinux event recording[3]
* SMART drive information[4]
* ELF parsing to monitor compiler-level protections for binaries[5]
The diff became rather big in the end due to the following changes:
* The SMART information feature uses a custom fork of smartmontools to
retrieve SMART data programatically[6].
* Replaced the old, bloated `misc.patch` by a simpler patch that only
fixes two (actual) issues in the CMake build, unnecessary link targets
and an invalid compiler flag.
* I tried to clean the derivation's code up a little bit by
simplifying the `preConfigure` hook and adding only one build-input
per line (that makes merging of several changes to the derivation
easier as well).
[1] https://github.com/facebook/osquery/releases/tag/3.4.0
[2] https://github.com/facebook/osquery/releases/tag/3.3.2
[3] https://github.com/facebook/osquery/pull/4224
[4] https://github.com/facebook/osquery/pull/4133
[5] https://github.com/facebook/osquery/pull/4708
[6] https://github.com/allanliu/smartmontools
|
2019-05-27 16:15:56 +02:00 |
|