Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package audit for openSUSE:Factory checked
in at 2025-06-13 18:42:17
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/audit (Old)
and /work/SRC/openSUSE:Factory/.audit.new.19631 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "audit"
Fri Jun 13 18:42:17 2025 rev:109 rq:1285116 version:4.0.2
Changes:
--------
--- /work/SRC/openSUSE:Factory/audit/audit-secondary.changes 2024-10-14
13:06:21.494565807 +0200
+++ /work/SRC/openSUSE:Factory/.audit.new.19631/audit-secondary.changes
2025-06-13 18:42:19.055188047 +0200
@@ -1,0 +2,32 @@
+Tue Jun 10 14:24:47 UTC 2025 - Wolfgang Frisch <wolfgang.fri...@suse.com>
+
+- Refresh systemd service patches:
+ - audit-allow-manual-stop.patch
+ - auditd.service-fix-plugin-termination.patch
+ - enable-stop-rules.patch
+ - fix-hardened-service.patch
+ - harden_auditd.service.patch
+
+- Update to 4.0.2
+ - Fix musl C builds
+ - Many code cleanups (Yugend)
+ - Use atomic variables if available for signal related flags
+ - Dont rotate audit logs when auditd is in debug mode
+ - Fix a couple memory leaks on error paths
+ - Correct output when displaying rules with exe/path/dir (Attila Lakatos)
+ - Fix auparse lookup test to not use the system libaupaurse
+ - Improve auparse metrics
+ - Update auparse normalizer for recent syscalls
+ - Make status report uniform
+
+- Update to 4.0.1
+ - Update TRUSTED_APP interpretation to look for known fields
+ - In auditd plugins, allow variable amount of arguments (Attila Lakatos)
+ - Fix augenrules to work correctly when kernel is in immutable mode
+ - Add ausearch_cur_event to auparse library (Attila Lakatos)
+ - Add audisp-filter plugin (Attila Lakatos)
+ - Improve sorting speed of aureport --summary reports
+ - auditd & audit-rules.service pick up paths automatically (Laurent
Bigonville)
+ - Update auparse normalizer for new syscalls
+
+-------------------------------------------------------------------
--- /work/SRC/openSUSE:Factory/audit/audit.changes 2024-10-14
13:06:21.754576721 +0200
+++ /work/SRC/openSUSE:Factory/.audit.new.19631/audit.changes 2025-06-13
18:42:19.079189029 +0200
@@ -1,0 +2,32 @@
+Tue Jun 10 14:23:54 UTC 2025 - Wolfgang Frisch <wolfgang.fri...@suse.com>
+
+- Refresh systemd service patches:
+ - audit-allow-manual-stop.patch
+ - auditd.service-fix-plugin-termination.patch
+ - enable-stop-rules.patch
+ - fix-hardened-service.patch
+ - harden_auditd.service.patch
+
+- Update to 4.0.2
+ - Fix musl C builds
+ - Many code cleanups (Yugend)
+ - Use atomic variables if available for signal related flags
+ - Dont rotate audit logs when auditd is in debug mode
+ - Fix a couple memory leaks on error paths
+ - Correct output when displaying rules with exe/path/dir (Attila Lakatos)
+ - Fix auparse lookup test to not use the system libaupaurse
+ - Improve auparse metrics
+ - Update auparse normalizer for recent syscalls
+ - Make status report uniform
+
+- Update to 4.0.1
+ - Update TRUSTED_APP interpretation to look for known fields
+ - In auditd plugins, allow variable amount of arguments (Attila Lakatos)
+ - Fix augenrules to work correctly when kernel is in immutable mode
+ - Add ausearch_cur_event to auparse library (Attila Lakatos)
+ - Add audisp-filter plugin (Attila Lakatos)
+ - Improve sorting speed of aureport --summary reports
+ - auditd & audit-rules.service pick up paths automatically (Laurent
Bigonville)
+ - Update auparse normalizer for new syscalls
+
+-------------------------------------------------------------------
Old:
----
audit-4.0.tar.gz
New:
----
audit-4.0.2.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ audit-secondary.spec ++++++
--- /var/tmp/diff_new_pack.DwvJxD/_old 2025-06-13 18:42:20.271237879 +0200
+++ /var/tmp/diff_new_pack.DwvJxD/_new 2025-06-13 18:42:20.275238044 +0200
@@ -1,7 +1,7 @@
#
# spec file for package audit-secondary
#
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -22,7 +22,7 @@
# The seperation is required to minimize unnecessary build cycles.
%define _name audit
Name: audit-secondary
-Version: 4.0
+Version: 4.0.2
Release: 0
Summary: Linux kernel audit subsystem utilities
License: GPL-2.0-or-later
@@ -359,12 +359,16 @@
%attr(644,root,root) %{_mandir}/man5/auditd-plugins.5.gz
%attr(644,root,root) %{_mandir}/man8/audisp-remote.8.gz
%attr(644,root,root) %{_mandir}/man8/audisp-syslog.8.gz
+%attr(644,root,root) %{_mandir}/man8/audisp-filter.8.gz
%attr(750,root,root) %dir %{_sysconfdir}/audit
%attr(750,root,root) %dir %{_sysconfdir}/audit/plugins.d
%config(noreplace) %attr(640,root,root)
%{_sysconfdir}/audit/plugins.d/audispd-zos-remote.conf
%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audit/zos-remote.conf
%attr(750,root,root) %{_sbindir}/audisp-remote
%attr(750,root,root) %{_sbindir}/audispd-zos-remote
+%attr(750,root,root) %{_sbindir}/audisp-filter
%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audit/audisp-remote.conf
%config(noreplace) %attr(640,root,root)
%{_sysconfdir}/audit/plugins.d/au-remote.conf
+%config(noreplace) %attr(640,root,root) %{_sysconfdir}/audit/audisp-filter.conf
+%config(noreplace) %attr(640,root,root)
%{_sysconfdir}/audit/plugins.d/filter.conf
++++++ audit.spec ++++++
--- /var/tmp/diff_new_pack.DwvJxD/_old 2025-06-13 18:42:20.307239355 +0200
+++ /var/tmp/diff_new_pack.DwvJxD/_new 2025-06-13 18:42:20.307239355 +0200
@@ -1,7 +1,7 @@
#
# spec file for package audit
#
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -23,7 +23,7 @@
%endif
Name: audit
-Version: 4.0
+Version: 4.0.2
Release: 0
Summary: Linux kernel audit subsystem utilities
License: GPL-2.0-or-later
++++++ audit-4.0.tar.gz -> audit-4.0.2.tar.gz ++++++
++++ 8809 lines of diff (skipped)
++++++ audit-allow-manual-stop.patch ++++++
--- /var/tmp/diff_new_pack.DwvJxD/_old 2025-06-13 18:42:20.599251321 +0200
+++ /var/tmp/diff_new_pack.DwvJxD/_new 2025-06-13 18:42:20.603251485 +0200
@@ -11,14 +11,13 @@
init.d/auditd.service | 1 -
1 file changed, 1 deletion(-)
---- a/init.d/auditd.service
-+++ b/init.d/auditd.service
-@@ -14,7 +14,6 @@ After=local-fs.target systemd-tmpfiles-s
+--- audit-4.0.2.orig/init.d/auditd.service.in 2024-08-08 19:40:19.000000000
+0200
++++ audit-4.0.2/init.d/auditd.service.in 2025-06-12 12:09:00.612234841
+0200
+@@ -21,7 +21,6 @@
Before=sysinit.target shutdown.target
- ##Before=shutdown.target
+ #Before=shutdown.target
Conflicts=shutdown.target
-RefuseManualStop=yes
-
+
Documentation=man:auditd(8) https://github.com/linux-audit/audit-documentation
-
++++++ auditd.service-fix-plugin-termination.patch ++++++
--- /var/tmp/diff_new_pack.DwvJxD/_old 2025-06-13 18:42:20.631252633 +0200
+++ /var/tmp/diff_new_pack.DwvJxD/_new 2025-06-13 18:42:20.635252796 +0200
@@ -2,14 +2,14 @@
init.d/auditd.service | 1 +
1 file changed, 1 insertion(+)
---- a/init.d/auditd.service
-+++ b/init.d/auditd.service
-@@ -29,6 +29,7 @@ ExecStopPost=/sbin/auditctl -R /etc/audi
+--- audit-4.0.2.orig/init.d/auditd.service.in 2024-08-08 19:40:19.000000000
+0200
++++ audit-4.0.2/init.d/auditd.service.in 2025-06-12 12:07:18.450305682
+0200
+@@ -32,6 +32,7 @@
Restart=on-failure
- # Do not restart for intentional exits. See EXIT CODES section in auditd(8).
+ ## Do not restart for intentional exits. See EXIT CODES section in auditd(8).
RestartPreventExitStatus=2 4 6
+KillMode=mixed
-
+
### Security Settings ###
MemoryDenyWriteExecute=true
++++++ enable-stop-rules.patch ++++++
--- /var/tmp/diff_new_pack.DwvJxD/_old 2025-06-13 18:42:20.663253944 +0200
+++ /var/tmp/diff_new_pack.DwvJxD/_new 2025-06-13 18:42:20.667254109 +0200
@@ -15,17 +15,17 @@
init.d/auditd.service | 4 ++++
1 file changed, 4 insertions(+)
---- a/init.d/auditd.service
-+++ b/init.d/auditd.service
-@@ -22,6 +22,10 @@ Documentation=man:auditd(8) https://gith
+--- audit-4.0.2.orig/init.d/auditd.service.in 2024-08-08 19:40:19.000000000
+0200
++++ audit-4.0.2/init.d/auditd.service.in 2025-06-12 12:04:22.896698211
+0200
+@@ -29,6 +29,10 @@
Type=forking
- PIDFile=/run/auditd.pid
- ExecStart=/sbin/auditd
-+ExecStartPost=-/sbin/augenrules --load
+ PIDFile=@runstatedir@/auditd.pid
+ ExecStart=@sbindir@/auditd
++ExecStartPost=-@sbindir@/augenrules --load
+# By default we clear the rules on exit. To disable this, comment
+# the next line after copying the file to /etc/systemd/system/auditd.service
-+ExecStopPost=/sbin/auditctl -R /etc/audit/audit-stop.rules
++ExecStopPost=@sbindir@/auditctl -R /etc/audit/audit-stop.rules
Restart=on-failure
- # Do not restart for intentional exits. See EXIT CODES section in auditd(8).
+ ## Do not restart for intentional exits. See EXIT CODES section in auditd(8).
RestartPreventExitStatus=2 4 6
++++++ fix-hardened-service.patch ++++++
--- /var/tmp/diff_new_pack.DwvJxD/_old 2025-06-13 18:42:20.683254764 +0200
+++ /var/tmp/diff_new_pack.DwvJxD/_new 2025-06-13 18:42:20.687254927 +0200
@@ -12,10 +12,10 @@
Signed-off-by: Enzo Matsumiya <ematsum...@suse.de>
-Index: audit-3.1.1/init.d/auditd.service
+Index: audit-3.1.1/init.d/auditd.service.in
===================================================================
---- audit-3.1.1.orig/init.d/auditd.service
-+++ audit-3.1.1/init.d/auditd.service
+--- audit-3.1.1.orig/init.d/auditd.service.in
++++ audit-3.1.1/init.d/auditd.service.in
@@ -42,12 +42,12 @@ RestrictRealtime=true
# added automatically, for details please see
# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
++++++ harden_auditd.service.patch ++++++
--- /var/tmp/diff_new_pack.DwvJxD/_old 2025-06-13 18:42:20.699255419 +0200
+++ /var/tmp/diff_new_pack.DwvJxD/_new 2025-06-13 18:42:20.703255584 +0200
@@ -1,7 +1,7 @@
-Index: audit-3.1.1/init.d/auditd.service
+Index: audit-3.1.1/init.d/auditd.service.in
===================================================================
---- audit-3.1.1.orig/init.d/auditd.service
-+++ audit-3.1.1/init.d/auditd.service
+--- audit-3.1.1.orig/init.d/auditd.service.in
++++ audit-3.1.1/init.d/auditd.service.in
@@ -39,6 +39,15 @@ LockPersonality=true
#ProtectControlGroups=true
ProtectKernelModules=true
