From 97e319769c14eb361a0bbc655dce9e631dd885e452a5c8e20935b935e933592e Mon Sep 17 00:00:00 2001
From: Marcus Meissner <meissner@suse.com>
Date: Sun, 1 Aug 2021 14:31:28 +0000
Subject: [PATCH] Accepting request 909447 from
 home:ematsumiya:branches:security

- Update to version 3.0.3:
  * Dont interpret audit netlink groups unless AUDIT_NLGRP_MAX is defined
  * Add support for AUDIT_RESP_ORIGIN_UNBLOCK_TIMED to ids
  * Change auparse_feed_has_data in auparse to include incomplete events
  * Auditd, stop linking against -lrt
  * Add ProtectHome and RestrictRealtime to auditd.service
  * In auditd, read up to 3 netlink packets in a row
  * In auditd, do not validate path to plugin unless active
  * In auparse, only emit config errors when AUPARSE_DEBUG env variable exists

OBS-URL: https://build.opensuse.org/request/show/909447
OBS-URL: https://build.opensuse.org/package/show/security/audit?expand=0&rev=124
---
 audit-3.0.2.tar.gz      |  3 ---
 audit-3.0.3.tar.gz      |  3 +++
 audit-no-gss.patch      |  2 +-
 audit-secondary.changes | 13 +++++++++++++
 audit-secondary.spec    |  2 +-
 audit.changes           | 13 +++++++++++++
 audit.spec              |  2 +-
 7 files changed, 32 insertions(+), 6 deletions(-)
 delete mode 100644 audit-3.0.2.tar.gz
 create mode 100644 audit-3.0.3.tar.gz

diff --git a/audit-3.0.2.tar.gz b/audit-3.0.2.tar.gz
deleted file mode 100644
index e4cda53..0000000
--- a/audit-3.0.2.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:18ae558900eb1c85a8d68c42f70f8e71a8f763c2c661ec8e89cccd26edc2d506
-size 1184356
diff --git a/audit-3.0.3.tar.gz b/audit-3.0.3.tar.gz
new file mode 100644
index 0000000..ed330ac
--- /dev/null
+++ b/audit-3.0.3.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:22a17adc2e524c25531e2abf28d655bd49eabc38b0c357c81094b0b8369a73e6
+size 593405
diff --git a/audit-no-gss.patch b/audit-no-gss.patch
index f1e71bf..10c50af 100644
--- a/audit-no-gss.patch
+++ b/audit-no-gss.patch
@@ -18,5 +18,5 @@ but need manual removal here.
 -krb5_principal = auditd
 -##krb5_key_file = /etc/audit/audit.key
  distribute_network = no
- q_depth = 400
+ q_depth = 1200
  overflow_action = SYSLOG
diff --git a/audit-secondary.changes b/audit-secondary.changes
index 4036ca6..2395dd8 100644
--- a/audit-secondary.changes
+++ b/audit-secondary.changes
@@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Fri Jul 30 18:14:14 CEST 2021 - Enzo Matsumiya <ematsumiya@suse.com>
+
+- Update to version 3.0.3:
+  * Dont interpret audit netlink groups unless AUDIT_NLGRP_MAX is defined
+  * Add support for AUDIT_RESP_ORIGIN_UNBLOCK_TIMED to ids
+  * Change auparse_feed_has_data in auparse to include incomplete events
+  * Auditd, stop linking against -lrt
+  * Add ProtectHome and RestrictRealtime to auditd.service
+  * In auditd, read up to 3 netlink packets in a row
+  * In auditd, do not validate path to plugin unless active
+  * In auparse, only emit config errors when AUPARSE_DEBUG env variable exists
+
 -------------------------------------------------------------------
 Mon Jun 14 20:54:49 CEST 2021 - Enzo Matsumiya <ematsumiya@suse.com>
 
diff --git a/audit-secondary.spec b/audit-secondary.spec
index 84610a5..3222b5d 100644
--- a/audit-secondary.spec
+++ b/audit-secondary.spec
@@ -22,7 +22,7 @@
 # The seperation is required to minimize unnecessary build cycles.
 %define 	_name audit
 Name:           audit-secondary
-Version:        3.0.2
+Version:        3.0.3
 Release:        0
 Summary:        Linux kernel audit subsystem utilities
 License:        GPL-2.0-or-later
diff --git a/audit.changes b/audit.changes
index 5c25663..3daef48 100644
--- a/audit.changes
+++ b/audit.changes
@@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Fri Jul 30 18:14:14 CEST 2021 - Enzo Matsumiya <ematsumiya@suse.com>
+
+- Update to version 3.0.3:
+  * Dont interpret audit netlink groups unless AUDIT_NLGRP_MAX is defined
+  * Add support for AUDIT_RESP_ORIGIN_UNBLOCK_TIMED to ids
+  * Change auparse_feed_has_data in auparse to include incomplete events
+  * Auditd, stop linking against -lrt
+  * Add ProtectHome and RestrictRealtime to auditd.service
+  * In auditd, read up to 3 netlink packets in a row
+  * In auditd, do not validate path to plugin unless active
+  * In auparse, only emit config errors when AUPARSE_DEBUG env variable exists
+
 -------------------------------------------------------------------
 Mon Jun 14 20:54:49 CEST 2021 - Enzo Matsumiya <ematsumiya@suse.com>
 
diff --git a/audit.spec b/audit.spec
index 047cb77..9bc4055 100644
--- a/audit.spec
+++ b/audit.spec
@@ -17,7 +17,7 @@
 
 
 Name:           audit
-Version:        3.0.2
+Version:        3.0.3
 Release:        0
 Summary:        Linux kernel audit subsystem utilities
 License:        GPL-2.0-or-later