Accepting request 909447 from home:ematsumiya:branches:security

- Update to version 3.0.3: * Dont interpret audit netlink groups unless AUDIT_NLGRP_MAX is defined * Add support for AUDIT_RESP_ORIGIN_UNBLOCK_TIMED to ids * Change auparse_feed_has_data in auparse to include incomplete events * Auditd, stop linking against -lrt * Add ProtectHome and RestrictRealtime to auditd.service * In auditd, read up to 3 netlink packets in a row * In auditd, do not validate path to plugin unless active * In auparse, only emit config errors when AUPARSE_DEBUG env variable exists OBS-URL: https://build.opensuse.org/request/show/909447 OBS-URL: https://build.opensuse.org/package/show/security/audit?expand=0&rev=124
2021-08-01 14:31:28 +00:00 · 2021-08-01 14:31:28 +00:00 · 97e319769c
commit 97e319769c
parent 5810f8940b
7 changed files with 32 additions and 6 deletions
--- a/audit-3.0.2.tar.gz
+++ b/audit-3.0.2.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:18ae558900eb1c85a8d68c42f70f8e71a8f763c2c661ec8e89cccd26edc2d506
-size 1184356
--- a/audit-3.0.3.tar.gz
+++ b/audit-3.0.3.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:22a17adc2e524c25531e2abf28d655bd49eabc38b0c357c81094b0b8369a73e6
+size 593405
--- a/audit-no-gss.patch
+++ b/audit-no-gss.patch
@ -18,5 +18,5 @@ but need manual removal here.
 -krb5_principal = auditd
 -##krb5_key_file = /etc/audit/audit.key
 distribute_network = no
- q_depth = 400
+ q_depth = 1200
 overflow_action = SYSLOG
--- a/audit-secondary.changes
+++ b/audit-secondary.changes
@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Fri Jul 30 18:14:14 CEST 2021 - Enzo Matsumiya <ematsumiya@suse.com>
+
+- Update to version 3.0.3:
+  * Dont interpret audit netlink groups unless AUDIT_NLGRP_MAX is defined
+  * Add support for AUDIT_RESP_ORIGIN_UNBLOCK_TIMED to ids
+  * Change auparse_feed_has_data in auparse to include incomplete events
+  * Auditd, stop linking against -lrt
+  * Add ProtectHome and RestrictRealtime to auditd.service
+  * In auditd, read up to 3 netlink packets in a row
+  * In auditd, do not validate path to plugin unless active
+  * In auparse, only emit config errors when AUPARSE_DEBUG env variable exists
+
 -------------------------------------------------------------------
 Mon Jun 14 20:54:49 CEST 2021 - Enzo Matsumiya <ematsumiya@suse.com>

--- a/audit-secondary.spec
+++ b/audit-secondary.spec
@ -22,7 +22,7 @@
 # The seperation is required to minimize unnecessary build cycles.
 %define 	_name audit
 Name:           audit-secondary
-Version:        3.0.2
+Version:        3.0.3
 Release:        0
 Summary:        Linux kernel audit subsystem utilities
 License:        GPL-2.0-or-later
--- a/audit.changes
+++ b/audit.changes
@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Fri Jul 30 18:14:14 CEST 2021 - Enzo Matsumiya <ematsumiya@suse.com>
+
+- Update to version 3.0.3:
+  * Dont interpret audit netlink groups unless AUDIT_NLGRP_MAX is defined
+  * Add support for AUDIT_RESP_ORIGIN_UNBLOCK_TIMED to ids
+  * Change auparse_feed_has_data in auparse to include incomplete events
+  * Auditd, stop linking against -lrt
+  * Add ProtectHome and RestrictRealtime to auditd.service
+  * In auditd, read up to 3 netlink packets in a row
+  * In auditd, do not validate path to plugin unless active
+  * In auparse, only emit config errors when AUPARSE_DEBUG env variable exists
+
 -------------------------------------------------------------------
 Mon Jun 14 20:54:49 CEST 2021 - Enzo Matsumiya <ematsumiya@suse.com>

--- a/audit.spec
+++ b/audit.spec
@ -17,7 +17,7 @@


 Name:           audit
-Version:        3.0.2
+Version:        3.0.3
 Release:        0
 Summary:        Linux kernel audit subsystem utilities
 License:        GPL-2.0-or-later