mirror of
https://github.com/rcourtman/Pulse.git
synced 2026-04-28 11:30:15 +00:00
5b89b2371a
Related to #637 The sensor-proxy was failing to start on systems with read-only filesystems because audit logging required a writable /var/log/pulse/sensor-proxy directory. Changes: - Modified newAuditLogger() to automatically fall back to stderr (systemd journal) if the audit log file cannot be opened - Removed error return from newAuditLogger() since it now always succeeds - Added warning logs when fallback mode is used to alert operators - Updated tests to handle the new signature - Added better debugging to audit log tests This allows the sensor-proxy to run on: - Immutable/read-only root filesystems - Hardened systems with restricted /var mounts - Containerized environments with limited write access Audit events are still captured via systemd journal when file logging is unavailable, maintaining the security audit trail.
70 lines
1.9 KiB
Go
70 lines
1.9 KiB
Go
package main
|
|
|
|
import (
|
|
"bufio"
|
|
"encoding/json"
|
|
"os"
|
|
"testing"
|
|
)
|
|
|
|
type auditRecord map[string]interface{}
|
|
|
|
func TestAuditLogValidationFailure(t *testing.T) {
|
|
tmp, err := os.CreateTemp("", "audit-test-*.log")
|
|
if err != nil {
|
|
t.Fatalf("temp file: %v", err)
|
|
}
|
|
path := tmp.Name()
|
|
tmp.Close()
|
|
defer os.Remove(path)
|
|
|
|
logger := newAuditLogger(path)
|
|
|
|
cred := &peerCredentials{uid: 1000, gid: 1000, pid: 4242}
|
|
logger.LogValidationFailure("corr-123", cred, "remote", "get_temperature", []string{"node"}, "invalid_node")
|
|
logger.Close()
|
|
|
|
file, err := os.Open(path)
|
|
if err != nil {
|
|
t.Fatalf("open log: %v", err)
|
|
}
|
|
defer file.Close()
|
|
|
|
scanner := bufio.NewScanner(file)
|
|
if !scanner.Scan() {
|
|
t.Fatalf("expected at least one audit entry (file may be empty)")
|
|
}
|
|
|
|
line := scanner.Bytes()
|
|
if len(line) == 0 {
|
|
t.Fatalf("empty line in audit log")
|
|
}
|
|
|
|
t.Logf("Audit log line: %s", string(line))
|
|
|
|
var record auditRecord
|
|
if err := json.Unmarshal(line, &record); err != nil {
|
|
t.Fatalf("unmarshal (line=%s): %v", string(line), err)
|
|
}
|
|
|
|
t.Logf("Parsed record: %+v", record)
|
|
|
|
if record["event_type"] != "command.validation_failed" {
|
|
t.Fatalf("unexpected event_type: %v (full record: %+v)", record["event_type"], record)
|
|
}
|
|
if record["correlation_id"] != "corr-123" {
|
|
t.Fatalf("unexpected correlation id: %v", record["correlation_id"])
|
|
}
|
|
if record["command"] != "get_temperature" {
|
|
t.Fatalf("unexpected command: %v", record["command"])
|
|
}
|
|
if record["reason"] != "invalid_node" {
|
|
t.Fatalf("unexpected reason: %v", record["reason"])
|
|
}
|
|
if record["decision"] != "denied" {
|
|
t.Fatalf("unexpected decision: %v", record["decision"])
|
|
}
|
|
if record["event_hash"] == "" {
|
|
t.Fatalf("expected event_hash to be set")
|
|
}
|
|
}
|