Replace alert and log crates with audit crate

Author: cilki

Cargo.lock

@@ -7,7 +7,7 @@ members = [
   "sandpolis",
   "sandpolis-account",
   "sandpolis-agent",
-  "sandpolis-alert",
+  "sandpolis-audit",
   "sandpolis-bootagent",
   "sandpolis-client",
   "sandpolis-database",
@@ -17,7 +17,6 @@ members = [
   "sandpolis-group",
   "sandpolis-instance",
   "sandpolis-location",
-  "sandpolis-logs",
   "sandpolis-macros",
   "sandpolis-mobile",
   "sandpolis-network",
@@ -47,12 +46,14 @@ colored = "3.0.0"
 futures = "0.3.30"
 futures-util = "0.3.31"
 image = "0.25.5"
+native_db = "0.8.1"
+native_model = "0.4.20"
 os_info = "3.8.2"
 pem = "3.0.4"
 rand = "0.9.0"
 regex = "1.11.1"
 ring = "0.17.8"
-russh = { version = "0.51.1" }
+russh = { version = "0.52.0" }
 rustls = "0.23.21"
 serde_bytes = "0.11.15"
 serde_cbor = "0.11.2"

Cargo.toml

@@ -5,6 +5,9 @@ license = "AGPL-3.0-only"
 name = "sandpolis-account"
 version = "0.0.1"
 
+[build-dependencies]
+built = { version = "0.8", features = ["git2", "chrono", "semver"] }
+
 [dependencies]
 anyhow = { workspace = true }
 validator = { workspace = true }

sandpolis-account/Cargo.toml

@@ -0,0 +1,10 @@
+use std::{env, path::PathBuf};
+
+fn main() {
+    if built::write_built_file().is_err() {
+        let dest =
+            std::path::Path::new(&env::var("OUT_DIR").expect("OUT_DIR not set")).join("built.rs");
+        built::write_built_file_with_opts(Some(&PathBuf::from("..")), &dest)
+            .expect("Failed to acquire build-time information");
+    }
+}

sandpolis-account/build.rs

@@ -11,7 +11,7 @@ serde = { workspace = true }
 axum = { workspace = true }
 axum-macros = { workspace = true }
 clap = { workspace = true }
-tokio-cron-scheduler = { version = "0.13.0", optional = true }
+tokio-cron-scheduler = { version = "0.14.0", optional = true }
 sandpolis-network = { path = "../sandpolis-network", version = "0.0.1" }
 sandpolis-database = { path = "../sandpolis-database", version = "0.0.1" }
 

sandpolis-agent/Cargo.toml

@@ -0,0 +1,20 @@
+[package]
+description = "Virtual estate monitoring & management!"
+edition = "2024"
+license = "AGPL-3.0-only"
+name = "sandpolis-audit"
+version = "0.0.1"
+
+[dependencies]
+anyhow = { workspace = true }
+serde = { workspace = true }
+linux-audit-parser = "0.2.7"
+native_db = { workspace = true }
+native_model = { workspace = true }
+sandpolis-instance = { path = "../sandpolis-instance", version = "0.0.1" }
+sandpolis-database = { path = "../sandpolis-database", version = "0.0.1" }
+
+[features]
+server = []
+agent = []
+client = []

sandpolis-alert/CHANGELOG.md

@@ -0,0 +1,7 @@
+## Sandpolis audit layer
+
+This layer reads logs, audit events, and checks file signatures.
+
+### Auditd
+
+Integrates with Linux's auditd framework.