automatic version update by autodist [release 4.0-1mamba;Wed Feb 07 2024]

audit-2.8.4-rundir.patch

@@ -1,26 +0,0 @@
-diff -Nru audit-2.8.4.orig/init.d/auditd.state audit-2.8.4/init.d/auditd.state
---- audit-2.8.4.orig/init.d/auditd.state	2018-05-21 19:38:08.000000000 +0200
-+++ audit-2.8.4/init.d/auditd.state	2019-01-05 08:46:05.999451866 +0100
-@@ -7,7 +7,7 @@
- 
- PATH=/sbin:/bin:/usr/bin:/usr/sbin
- prog="auditd"
--state_file="/var/run/auditd.state"
-+state_file="/run/auditd.state"
- . /etc/init.d/functions
- 
- printf "Getting auditd internal state: "
-diff -Nru audit-2.8.4.orig/src/auditd.c audit-2.8.4/src/auditd.c
---- audit-2.8.4.orig/src/auditd.c	2018-05-21 19:38:08.000000000 +0200
-+++ audit-2.8.4/src/auditd.c	2019-01-05 08:44:18.153983329 +0100
-@@ -66,8 +66,8 @@
- /* Local data */
- static int fd = -1, pipefds[2] = {-1, -1};
- static struct daemon_conf config;
--static const char *pidfile = "/var/run/auditd.pid";
--static const char *state_file = "/var/run/auditd.state";
-+static const char *pidfile = "/run/auditd.pid";
-+static const char *state_file = "/run/auditd.state";
- static int init_pipe[2];
- static int do_fork = 1, opt_aggregate_only = 0, config_dir_set = 0;
- static struct auditd_event *cur_event = NULL, *reconfig_ev = NULL;

audit-2.8.5-usrsbin.patch

@@ -1,59 +0,0 @@
-diff -ru audit-2.8.5.orig/init.d/auditd.conf audit-2.8.5/init.d/auditd.conf
---- audit-2.8.5.orig/init.d/auditd.conf	2019-03-01 21:19:13.000000000 +0100
-+++ audit-2.8.5/init.d/auditd.conf	2019-05-27 10:02:17.350769165 +0200
-@@ -13,7 +13,7 @@
- num_logs = 5
- priority_boost = 4
- disp_qos = lossy
--dispatcher = /sbin/audispd
-+dispatcher = /usr/sbin/audispd
- name_format = NONE
- ##name = mydomain
- max_log_file_action = ROTATE
-diff -ru audit-2.8.5.orig/init.d/auditd.cron audit-2.8.5/init.d/auditd.cron
---- audit-2.8.5.orig/init.d/auditd.cron	2019-02-04 15:26:52.000000000 +0100
-+++ audit-2.8.5/init.d/auditd.cron	2019-05-27 10:02:17.350769165 +0200
-@@ -5,7 +5,7 @@
- # based on a cron job.
- ##########
- 
--/sbin/service auditd rotate
-+/usr/sbin/service auditd rotate
- EXITVALUE=$?
- if [ $EXITVALUE != 0 ]; then
-     /usr/bin/logger -t auditd "ALERT exited abnormally with [$EXITVALUE]"
-diff -ru audit-2.8.5.orig/init.d/auditd.service audit-2.8.5/init.d/auditd.service
---- audit-2.8.5.orig/init.d/auditd.service	2019-03-01 21:19:13.000000000 +0100
-+++ audit-2.8.5/init.d/auditd.service	2019-05-27 10:02:56.066935836 +0200
-@@ -18,15 +18,15 @@
- [Service]
- Type=forking
- PIDFile=/run/auditd.pid
--ExecStart=/sbin/auditd
-+ExecStart=/usr/sbin/auditd
- ## To not use augenrules, copy this file to /etc/systemd/system/auditd.service
- ## and comment/delete the next line and uncomment the auditctl line.
- ## NOTE: augenrules expect any rules to be added to /etc/audit/rules.d/
--ExecStartPost=-/sbin/augenrules --load
--#ExecStartPost=-/sbin/auditctl -R /etc/audit/audit.rules
-+ExecStartPost=-/usr/sbin/augenrules --load
-+#ExecStartPost=-/usr/sbin/auditctl -R /etc/audit/audit.rules
- # By default we don't clear the rules on exit. To enable this, uncomment
- # the next line after copying the file to /etc/systemd/system/auditd.service
--#ExecStopPost=/sbin/auditctl -R /etc/audit/audit-stop.rules
-+#ExecStopPost=/usr/sbin/auditctl -R /etc/audit/audit-stop.rules
- 
- [Install]
- WantedBy=multi-user.target
-diff -ru audit-2.8.5.orig/init.d/augenrules audit-2.8.5/init.d/augenrules
---- audit-2.8.5.orig/init.d/augenrules	2019-02-04 15:26:52.000000000 +0100
-+++ audit-2.8.5/init.d/augenrules	2019-05-27 10:02:17.354769182 +0200
-@@ -39,7 +39,7 @@
- 
- try_load() {
- 	if [ $LoadRules -eq 1 ] ; then
--		/sbin/auditctl -R ${DestinationFile}
-+		/usr/sbin/auditctl -R ${DestinationFile}
- 		RETVAL=$?
- 	fi
- }

audit.spec

@@ -1,41 +1,22 @@
 Name:          audit
-Version:       2.8.5
-Release:       2mamba
+Version:       4.0
+Release:       1mamba
 Summary:       User space tools for kernel auditing
 Group:         System/Tools
 Vendor:        openmamba
 Distribution:  openmamba
 Packager:      Silvan Calarco <silvan.calarco@mambasoft.it>
-URL:           http://people.redhat.com/sgrubb/audit
+URL:           https://people.redhat.com/sgrubb/audit/
 Source:        http://people.redhat.com/sgrubb/audit/%{name}-%{version}.tar.gz
-Patch0:        audit-2.8.5-usrsbin.patch
-Patch1:        audit-2.8.4-rundir.patch
 License:       GPL, LGPL
 ## AUTOBUILDREQ-BEGIN
 BuildRequires: glibc-devel
 BuildRequires: libcap-ng-devel
-BuildRequires: libe2fs-devel
-BuildRequires: libffi-devel
-BuildRequires: libgcrypt-devel
-BuildRequires: libgmp-devel
-BuildRequires: libgnutls-devel
-BuildRequires: libgpg-error-devel
-BuildRequires: libidn-devel
 BuildRequires: libkrb5-devel
-BuildRequires: libltdl-devel
-BuildRequires: libnettle-devel
 BuildRequires: libnsl-devel
 BuildRequires: libopenldap-devel
-BuildRequires: libopenssl-devel
-BuildRequires: libp11-kit-devel
-BuildRequires: libprelude-devel
-BuildRequires: libpython-devel
-BuildRequires: libsasl2-devel
-BuildRequires: libtasn1-devel
-BuildRequires: libtirpc-devel
-BuildRequires: libunistring-devel
+BuildRequires: libpython311-devel
 BuildRequires: libwrap-devel
-BuildRequires: libz-devel
 ## AUTOBUILDREQ-END
 BuildRequires: gcc-go
 BuildRequires: libgo-devel
@@ -45,7 +26,9 @@ BuildRequires: libtool
 BuildRequires: swig
 BuildRequires: libprelude-devel >= 5.2.0
 %systemd_requires
-BuildRoot:     %{_tmppath}/%{name}-%{version}-root
+Requires:      lib%{name} = %{?epoch:%epoch:}%{version}-%{release}
+Provides:      audit-plugins
+Obsoletes:     audit-plugins < 3.0
 
 %description
 The audit package contains the user space utilities for storing and searching the audit records generate by the audit subsystem in the Linux 2.6+ kernel.
@@ -86,38 +69,34 @@ Group:         Development/Libraries
 Summary:       Python3 bindings to %{name}
 Requires:      python3
 Requires:      lib%{name} = %{?epoch:%epoch:}%{version}-%{release}
+Obsoletes:     python-audit < 3.0.8
 
 %description -n python-audit-py3
 The python-audit package containts Python 3 bindings to %{name}.
 The libaudit-devel package contains the header files needed for developing applications that need to use the audit framework libraries.
 
-%package plugins
-Group:        System/Tools
-Summary:      Plugins for the audit event dispatcher
-Requires:     %{name} = %{?epoch:%epoch:}%{version}-%{release}
-Requires:     libaudit = %{?epoch:%epoch:}%{version}-%{release}
-#Requires:     openldap
-
-%description plugins
-The audispd-plugins package provides plugins for the real-time interface to the audit system, audispd. These plugins can do things like relay events to remote machines or analyze events for suspicious behavior.
-
 %debug_package
 
 %prep
 %setup -q
-%patch0 -p1
-#%patch1 -p1
+#autoreconf -v --install
 
 %build
-#autoreconf -v --install
 %configure \
   --with-prelude \
   --with-libwrap \
   --enable-gssapi-krb5=yes \
   --with-libcap-ng=yes \
-  --with-python=yes \
+  --with-python=no \
+  --with-python3=yes \
   --enable-systemd=yes \
-  CFLAGS="%{optflags} -fcommon"
+  CFLAGS="%{optflags} -fcommon" \
+%ifarch arm
+  --with-arm \
+%endif   
+%ifarch aarch64
+  --with-aarch64 \
+%endif   
 
 %make
 
@@ -128,22 +107,19 @@ mkdir -p %{buildroot}%{_localstatedir}/log/audit
 %makeinstall \
    initdir=%{_unitdir}
 
-rm -f %{buildroot}%{python_sitearch}/_audit.a
-rm -f %{buildroot}%{python_sitearch}/_audit.la
-rm -f %{buildroot}%{python_sitearch}/_auparse.a
-rm -f %{buildroot}%{python_sitearch}/_auparse.la
-rm -f %{buildroot}%{python_sitearch}/auparse.a
-rm -f %{buildroot}%{python_sitearch}/auparse.la
-
 install -d -m 0755 %{buildroot}%{_sysconfdir}/audit/rules.d
 
 %check
-make check
+#make check
 
 %clean
 [ "%{buildroot}" != / ] && rm -rf "%{buildroot}"
 
 %post
+if [ $1 -gt 1 ]; then
+   # fix /sbin -> /usr/sbin paths on upgrade
+   sed -i "s|path = /sbin/|path = /usr/sbin/|" %{_sysconfdir}/audit/plugins.d/*.conf
+fi
 %systemd_post auditd
 if [ $1 -eq 1 -o -e /etc/rc5.d/S11auditd ]; then
    systemctl -q daemon-reload
@@ -169,39 +145,40 @@ find /etc/rc[0-6].d/ -type l -xtype l -exec rm -f {} \;
 
 %files
 %defattr(-,root,root)
-%attr(750,root,root) %dir %{_sysconfdir}/audisp
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/audispd.conf
-%attr(750,root,root) %dir %{_sysconfdir}/audisp/plugins.d
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/plugins.d/af_unix.conf
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/plugins.d/syslog.conf
 %attr(750,root,root) %dir %{_sysconfdir}/audit
+%config(noreplace) %{_sysconfdir}/audit/audisp-remote.conf
+%{_sysconfdir}/audit/plugins.d/af_unix.conf
+%{_sysconfdir}/audit/plugins.d/au-remote.conf
+%{_sysconfdir}/audit/plugins.d/audispd-zos-remote.conf
+%{_sysconfdir}/audit/plugins.d/syslog.conf
+%{_sysconfdir}/audit/zos-remote.conf
 %config(noreplace) %attr(640,root,root) %{_sysconfdir}/audit/audit-stop.rules
 %dir %{_sysconfdir}/audit/rules.d
-#%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audit/rules.d/audit.rules
 %config(noreplace) %attr(640,root,root) %{_sysconfdir}/audit/auditd.conf
-%attr(644,root,root) %{_unitdir}/auditd.service
-%dir %{_libexecdir}/initscripts/legacy-actions/auditd
-%{_libexecdir}/initscripts/legacy-actions/auditd/*
-%attr(750,root,root) %dir %{_localstatedir}/log/audit
-%attr(750,root,root) %{_sbindir}/audispd
+%attr(750,root,root) %{_sbindir}/audispd-zos-remote
+%attr(750,root,root) %{_sbindir}/audisp-*
 %attr(750,root,root) %{_sbindir}/auditctl
 %attr(750,root,root) %{_sbindir}/auditd
 %attr(750,root,root) %{_sbindir}/augenrules
 %attr(750,root,root) %{_sbindir}/aureport
 %attr(750,root,root) %{_sbindir}/ausearch
-%attr(750,root,root) %{_sbindir}/autrace
 %attr(755,root,root) %{_bindir}/aulast
 %attr(755,root,root) %{_bindir}/aulastlog
 %attr(755,root,root) %{_bindir}/ausyscall
-%attr(750,root,root) %{_bindir}/auvirt
-%ifnarch arm aarch64
-%dir %{_prefix}/lib/golang/src/pkg/redhat.com/audit
-%endif
-%{_mandir}/man5/audispd.conf.5*
+%attr(644,root,root) %{_unitdir}/auditd.service
+%{_unitdir}/audit-rules.service
+%dir %{_datadir}/audit-rules
+%{_datadir}/audit-rules/*
+%attr(750,root,root) %dir %{_localstatedir}/log/audit
 %{_mandir}/man5/auditd.conf.5*
 %{_mandir}/man5/ausearch-expression.5*
+%{_mandir}/man5/auditd-plugins.5*
+%{_mandir}/man5/zos-remote.conf.5*
 %{_mandir}/man7/*.7*
-%{_mandir}/man8/audispd.8*
+%{_mandir}/man5/audisp-remote.conf.5*
+%{_mandir}/man5/libaudit.conf.5*
+%{_mandir}/man8/audispd-zos-remote.8*
+%{_mandir}/man8/audisp-*.8*
 %{_mandir}/man8/auditctl.8*
 %{_mandir}/man8/auditd.8*
 %{_mandir}/man8/augenrules.8*
@@ -210,33 +187,33 @@ find /etc/rc[0-6].d/ -type l -xtype l -exec rm -f {} \;
 %{_mandir}/man8/aureport.8*
 %{_mandir}/man8/ausearch.8*
 %{_mandir}/man8/ausyscall.8*
-%{_mandir}/man8/autrace.8*
-%{_mandir}/man8/auvirt.8*
 
 %files -n lib%{name}
 %defattr(-,root,root)
 %config(noreplace) %attr(640,root,root) %{_sysconfdir}/libaudit.conf
 %{_libdir}/libaudit.so.*
 %{_libdir}/libauparse.so.*
-%{_mandir}/man5/libaudit.conf.5*
+%dir %{_libexecdir}/initscripts/legacy-actions/auditd
+%{_libexecdir}/initscripts/legacy-actions/auditd/*
 %doc AUTHORS COPYING
 
 %files -n lib%{name}-devel
 %defattr(-,root,root)
 %{_includedir}/auparse-defs.h
 %{_includedir}/auparse.h
+%{_includedir}/audit-records.h
+%{_includedir}/audit_logging.h
 %{_includedir}/libaudit.h
 %{_libdir}/libaudit.so
 %{_libdir}/libauparse.so
-%{_libdir}/libaudit.la
-%{_libdir}/libauparse.la
 %{_libdir}/pkgconfig/auparse.pc
 %{_libdir}/pkgconfig/audit.pc
-%ifnarch arm aarch64
+%ifnarch arm
+%dir %{_prefix}/lib/golang/src/pkg/redhat.com/audit
 %{_prefix}/lib/golang/src/pkg/redhat.com/audit/audit.go
 %endif
 %{_datadir}/aclocal/audit.m4
-%{_mandir}/man3/*.3.gz
+%{_mandir}/man3/*.3*
 #%doc contrib/skeleton.c contrib/plugin
 #%doc ChangeLog README THANKS TODO
 
@@ -245,12 +222,6 @@ find /etc/rc[0-6].d/ -type l -xtype l -exec rm -f {} \;
 %{_libdir}/libaudit.a
 %{_libdir}/libauparse.a
 
-%files -n python-audit
-%defattr(-,root,root)
-%{python_sitearch}/_audit.*
-%{python_sitearch}/audit.py*
-%{python_sitearch}/auparse.*
-
 %files -n python-audit-py3
 %defattr(-,root,root)
 %{python3_sitearch}/_audit.*
@@ -258,25 +229,46 @@ find /etc/rc[0-6].d/ -type l -xtype l -exec rm -f {} \;
 %{python3_sitearch}/__pycache__/audit.cpython-*.pyc
 %{python3_sitearch}/auparse.*
 
-%files plugins
-%defattr(-,root,root)
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/plugins.d/audispd-zos-remote.conf
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/zos-remote.conf
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/audisp-prelude.conf
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/plugins.d/au-prelude.conf
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/audisp-remote.conf
-%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audisp/plugins.d/au-remote.conf
-%attr(750,root,root) %{_sbindir}/audispd-zos-remote
-%attr(750,root,root) %{_sbindir}/audisp-prelude
-%attr(750,root,root) %{_sbindir}/audisp-remote
-%{_mandir}/man5/zos-remote.conf.5*
-%{_mandir}/man8/audispd-zos-remote.8*
-%{_mandir}/man5/audisp-prelude.conf.5*
-%{_mandir}/man8/audisp-prelude.8*
-%{_mandir}/man5/audisp-remote.conf.5*
-%{_mandir}/man8/audisp-remote.8*
-
 %changelog
+* Wed Feb 07 2024 Automatic Build System <autodist@openmamba.org> 4.0-1mamba
+- automatic version update by autodist
+
+* Mon Aug 07 2023 Automatic Build System <autodist@mambasoft.it> 3.1.2-1mamba
+- automatic version update by autodist
+
+* Sat Apr 29 2023 Automatic Build System <autodist@mambasoft.it> 3.1.1-1mamba
+- automatic version update by autodist
+
+* Sun Feb 12 2023 Automatic Build System <autodist@mambasoft.it> 3.1-1mamba
+- automatic version update by autodist
+
+* Tue Aug 30 2022 Automatic Build System <autodist@mambasoft.it> 3.0.9-1mamba
+- automatic version update by autodist
+
+* Sat Apr 02 2022 Silvan Calarco <silvan.calarco@mambasoft.it> 3.0.8-1mamba
+- update to 3.0.8
+
+* Tue Jan 25 2022 Automatic Build System <autodist@mambasoft.it> 3.0.7-1mamba
+- automatic version update by autodist
+
+* Mon Nov 01 2021 Silvan Calarco <silvan.calarco@mambasoft.it> 3.0.6-2mamba
+- audit: added versioned requirement for libaudit
+
+* Sun Oct 03 2021 Automatic Build System <autodist@mambasoft.it> 3.0.6-1mamba
+- automatic version update by autodist
+
+* Tue Aug 24 2021 Automatic Build System <autodist@mambasoft.it> 3.0.5-1mamba
+- automatic version update by autodist
+
+* Sun Feb 14 2021 Automatic Build System <autodist@mambasoft.it> 3.0.1-1mamba
+- automatic version update by autodist
+
+* Sat Feb 13 2021 Silvan Calarco <silvan.calarco@mambasoft.it> 3.0-2mamba
+- reapply /usr/sbin patch
+
+* Tue Feb 09 2021 Automatic Build System <autodist@mambasoft.it> 3.0-1mamba
+- automatic version update by autodist
+
 * Sun Dec 20 2020 Silvan Calarco <silvan.calarco@mambasoft.it> 2.8.5-2mamba
 - rebuilt with debug package and libprelude 5.2.0