SHA256
1
0
forked from pool/audit

Accepting request 150561 from security

** Please send to 12.3 because starting the audit daemon is broken with systemd ****

- remove old tarball and update -secondary spec 

- Audit 2.2.2 , the purpose of this update is too add compatibility
 with systemd for 12.3
- In auditd, tcp_max_per_addr was allowing 1 more connection than specified
- In ausearch, fix matching of object records
- Auditctl was returning -1 when listing rules filtered on a key field
- Add interpretations for CAP_BLOCK_SUSPEND and CAP_COMPROMISE_KERNEL
- Add armv5tejl, armv5tel, armv6l and armv7l machine types (Nathaniel Husted) 
- Updates for the 3.6 kernel
- Add auparse_feed_has_data function to libauparse
- Update audisp-prelude to use auparse_feed_has_data
- Add support to conditionally build auditd network listener (Tyler Hicks)
- In auditd, reset a flag after receiving USR1 signal info when rotating logs
- Add optional systemd init script support
- Add support for SECCOMP event type
- Don't interpret aN_len field in EXECVE records (#869555)
- In audisp-remote, do better job of draining queue
- Fix capability parsing in ausearch/auparse
- Interpret BPRM_FCAPS capability fields
- Add ANOM_LINK event type (forwarded request 150497 from elvigia)

OBS-URL: https://build.opensuse.org/request/show/150561
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/audit?expand=0&rev=61
This commit is contained in:
Stephan Kulow 2013-01-31 13:41:46 +00:00 committed by Git OBS Bridge
commit c354ef9fbd
5 changed files with 42 additions and 6 deletions

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:9865ca89f5b975ccf25441ddf45a874448f2bba944005aa8cd5e3c3148713a63
size 877202

3
audit-2.2.2.tar.gz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:8bc2b45a5f08f5df6cebcd5543f24b7e68e28b64da4b23f08de2c6616384302b
size 907066

View File

@ -27,7 +27,7 @@ BuildRequires: swig
Summary: Python Bindings for libaudit Summary: Python Bindings for libaudit
License: GPL-2.0+ License: GPL-2.0+
Group: System/Monitoring Group: System/Monitoring
Version: 2.2.1 Version: 2.2.2
Release: 0 Release: 0
Url: http://people.redhat.com/sgrubb/audit/ Url: http://people.redhat.com/sgrubb/audit/
Source0: http://people.redhat.com/sgrubb/audit/%{_name}-%{version}.tar.gz Source0: http://people.redhat.com/sgrubb/audit/%{_name}-%{version}.tar.gz

View File

@ -1,3 +1,31 @@
-------------------------------------------------------------------
Wed Jan 30 23:19:33 UTC 2013 - crrodriguez@opensuse.org
- remove old tarball and update -secondary spec
-------------------------------------------------------------------
Wed Jan 30 23:12:19 UTC 2013 - crrodriguez@opensuse.org
- Audit 2.2.2 , the purpose of this update is too add compatibility
with systemd for 12.3
- In auditd, tcp_max_per_addr was allowing 1 more connection than specified
- In ausearch, fix matching of object records
- Auditctl was returning -1 when listing rules filtered on a key field
- Add interpretations for CAP_BLOCK_SUSPEND and CAP_COMPROMISE_KERNEL
- Add armv5tejl, armv5tel, armv6l and armv7l machine types (Nathaniel Husted)
- Updates for the 3.6 kernel
- Add auparse_feed_has_data function to libauparse
- Update audisp-prelude to use auparse_feed_has_data
- Add support to conditionally build auditd network listener (Tyler Hicks)
- In auditd, reset a flag after receiving USR1 signal info when rotating logs
- Add optional systemd init script support
- Add support for SECCOMP event type
- Don't interpret aN_len field in EXECVE records (#869555)
- In audisp-remote, do better job of draining queue
- Fix capability parsing in ausearch/auparse
- Interpret BPRM_FCAPS capability fields
- Add ANOM_LINK event type
------------------------------------------------------------------- -------------------------------------------------------------------
Tue Jan 22 12:34:00 UTC 2013 - jengelh@inai.de Tue Jan 22 12:34:00 UTC 2013 - jengelh@inai.de

View File

@ -20,7 +20,7 @@ Name: audit
Summary: User Space Tools for 2.6 Kernel Auditing Summary: User Space Tools for 2.6 Kernel Auditing
License: GPL-2.0+ License: GPL-2.0+
Group: System/Monitoring Group: System/Monitoring
Version: 2.2.1 Version: 2.2.2
Release: 0 Release: 0
Url: http://people.redhat.com/sgrubb/audit/ Url: http://people.redhat.com/sgrubb/audit/
Source0: http://people.redhat.com/sgrubb/audit/%{name}-%{version}.tar.gz Source0: http://people.redhat.com/sgrubb/audit/%{name}-%{version}.tar.gz
@ -36,6 +36,7 @@ BuildRequires: gcc-c++
BuildRequires: kernel-headers >= 2.6.29 BuildRequires: kernel-headers >= 2.6.29
BuildRequires: libtool BuildRequires: libtool
BuildRequires: tcpd-devel BuildRequires: tcpd-devel
BuildRequires: pkgconfig(systemd)
Requires: %{name}-libs = %{version} Requires: %{name}-libs = %{version}
PreReq: %insserv_prereq %fillup_prereq PreReq: %insserv_prereq %fillup_prereq
@ -87,7 +88,7 @@ export CFLAGS="%{optflags} -fno-strict-aliasing"
export CXXFLAGS="$CFLAGS" export CXXFLAGS="$CFLAGS"
export LDFLAGS="-Wl,-z,relro,-z,now" export LDFLAGS="-Wl,-z,relro,-z,now"
# no krb support (omit --enable-gssapi-krb5=yes), see audit-no-gss.patch # no krb support (omit --enable-gssapi-krb5=yes), see audit-no-gss.patch
%configure --libexecdir=%{_prefix}/lib/%{name} \ %configure --enable-systemd --libexecdir=%{_prefix}/lib/%{name} \
--with-apparmor --with-libwrap --with-libcap-ng=yes \ --with-apparmor --with-libwrap --with-libcap-ng=yes \
--disable-static --with-pic --without-python --disable-static --with-pic --without-python
%{__make} %{?_smp_mflags} %{__make} %{?_smp_mflags}
@ -151,13 +152,19 @@ if [ -f /etc/audit.rules ]; then
mv /etc/audit/audit.rules /etc/audit/audit.rules.new mv /etc/audit/audit.rules /etc/audit/audit.rules.new
mv /etc/audit.rules /etc/audit/audit.rules mv /etc/audit.rules /etc/audit/audit.rules
fi fi
%service_add_post auditd.service
%pre
%service_add_pre auditd.service
%preun %preun
%stop_on_removal auditd %stop_on_removal auditd
%service_del_preun auditd.service
%postun %postun
%restart_on_update auditd %restart_on_update auditd
%{insserv_cleanup} %{insserv_cleanup}
%service_del_postun auditd.service
%files -n libaudit1 %files -n libaudit1
%defattr(-,root,root) %defattr(-,root,root)
@ -229,5 +236,6 @@ fi
%ghost %config(noreplace) /var/log/audit/audit.log %ghost %config(noreplace) /var/log/audit/audit.log
%dir %attr(700,root,root) /var/spool/audit %dir %attr(700,root,root) /var/spool/audit
%attr(755,root,root) /usr/bin/ausyscall %attr(755,root,root) /usr/bin/ausyscall
%{_unitdir}/auditd.service
%changelog %changelog