Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package aide for openSUSE:Factory checked in at 2023-03-17 17:05:25 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/aide (Old) and /work/SRC/openSUSE:Factory/.aide.new.31432 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "aide" Fri Mar 17 17:05:25 2023 rev:37 rq:1072663 version:0.18.1 Changes: -------- --- /work/SRC/openSUSE:Factory/aide/aide.changes 2023-02-24 18:08:24.353511993 +0100 +++ /work/SRC/openSUSE:Factory/.aide.new.31432/aide.changes 2023-03-17 17:05:33.902092182 +0100 @@ -1,0 +2,9 @@ +Fri Mar 17 14:55:57 UTC 2023 - Dirk Müller <dmuel...@suse.com> + +- update to 0.18.1: + * Fix handling of empty growing files + * Fix segfault when using --dry-init + * Update README +- switch to pcre2 + +------------------------------------------------------------------- Old: ---- aide-0.18.tar.gz aide-0.18.tar.gz.asc New: ---- aide-0.18.1.tar.gz aide-0.18.1.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ aide.spec ++++++ --- /var/tmp/diff_new_pack.Fq8FJ6/_old 2023-03-17 17:05:35.126098632 +0100 +++ /var/tmp/diff_new_pack.Fq8FJ6/_new 2023-03-17 17:05:35.130098653 +0100 @@ -17,12 +17,13 @@ Name: aide -Version: 0.18 +Version: 0.18.1 Release: 0 Summary: Advanced Intrusion Detection Environment License: GPL-2.0-or-later URL: https://aide.github.io/ Source0: https://github.com/aide/aide/releases/download/v%{version}/aide-%{version}.tar.gz +Source100: https://github.com/aide/aide/releases/download/v%{version}/aide-%{version}.tar.gz.asc Source1: aide.conf Source2: aide-cron_daily.sh Source3: aide-test.sh @@ -31,7 +32,6 @@ Source6: aide.timer Source7: aide.timer.8 Source8: aide_service.conf -Source42: https://github.com/aide/aide/releases/download/v%{version}/aide-%{version}.tar.gz.asc Source43: aide.keyring Patch1: aide-0.18-as-needed.patch Patch2: aide-xattr-in-libc.patch @@ -46,7 +46,7 @@ BuildRequires: libacl-devel BuildRequires: libgcrypt-devel BuildRequires: libselinux-devel -BuildRequires: pcre-devel +BuildRequires: pcre2-devel BuildRequires: pkgconfig BuildRequires: systemd-rpm-macros BuildRequires: zlib-devel ++++++ aide-0.18.tar.gz -> aide-0.18.1.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/ChangeLog new/aide-0.18.1/ChangeLog --- old/aide-0.18/ChangeLog 2023-02-06 22:13:28.000000000 +0100 +++ new/aide-0.18.1/ChangeLog 2023-03-04 21:32:15.000000000 +0100 @@ -1,3 +1,15 @@ +2023-03-04 Hannes von Haugwitz <han...@vonhaugwitz.com> + * Release aide 0.18.1 + +2023-02-19 Hannes von Haugwitz <han...@vonhaugwitz.com> + * README: update expiration date of signing key + +2023-02-18 Hannes von Haugwitz <han...@vonhaugwitz.com> + * Fix segfault when using --dry-init + +2023-02-14 Hannes von Haugwitz <han...@vonhaugwitz.com> + * Fix handling of empty growing files + 2023-02-06 Hannes von Haugwitz <han...@vonhaugwitz.com> * Release aide 0.18 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/NEWS new/aide-0.18.1/NEWS --- old/aide-0.18/NEWS 2023-02-06 22:13:37.000000000 +0100 +++ new/aide-0.18.1/NEWS 2023-03-04 21:32:18.000000000 +0100 @@ -1,3 +1,8 @@ +Version 0.18.1 (2023-03-04) + * Fix handling of empty growing files + * Fix segfault when using --dry-init + * Update README + Version 0.18 (2023-02-06) * BACKWARDS INCOMPATIBLE CHANGES - remove Prelink support (--with-prelink configure option) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/README new/aide-0.18.1/README --- old/aide-0.18/README 2023-02-06 22:13:37.000000000 +0100 +++ new/aide-0.18.1/README 2023-03-04 21:32:18.000000000 +0100 @@ -1,7 +1,7 @@ AIDE - Advanced Intrusion Detection Environment ------------------------------------------------- - Version 0.18 + Version 0.18.1 This file is free software; as a special exception the author gives unlimited permission to copy and/or distribute it, with or without @@ -107,7 +107,7 @@ The current public key needed for signature verification is: - pub 4096R/68E7B931 2011-06-28 [expires: 2021-06-27] + pub 4096R/68E7B931 2011-06-28 [expires: 2025-06-27] uid Hannes von Haugwitz <han...@vonhaugwitz.com> If you do not have this key, you can get it from one of the well known PGP diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/configure new/aide-0.18.1/configure --- old/aide-0.18/configure 2023-02-06 22:23:10.000000000 +0100 +++ new/aide-0.18.1/configure 2023-03-04 21:32:29.000000000 +0100 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.71 for aide 0.18. +# Generated by GNU Autoconf 2.71 for aide 0.18.1. # # # Copyright (C) 1992-1996, 1998-2017, 2020-2021 Free Software Foundation, @@ -608,8 +608,8 @@ # Identity of this package. PACKAGE_NAME='aide' PACKAGE_TARNAME='aide' -PACKAGE_VERSION='0.18' -PACKAGE_STRING='aide 0.18' +PACKAGE_VERSION='0.18.1' +PACKAGE_STRING='aide 0.18.1' PACKAGE_BUGREPORT='' PACKAGE_URL='' @@ -1430,7 +1430,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures aide 0.18 to adapt to many kinds of systems. +\`configure' configures aide 0.18.1 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1502,7 +1502,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of aide 0.18:";; + short | recursive ) echo "Configuration of aide 0.18.1:";; esac cat <<\_ACEOF @@ -1674,7 +1674,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -aide configure 0.18 +aide configure 0.18.1 generated by GNU Autoconf 2.71 Copyright (C) 2021 Free Software Foundation, Inc. @@ -2219,7 +2219,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by aide $as_me 0.18, which was +It was created by aide $as_me 0.18.1, which was generated by GNU Autoconf 2.71. Invocation command line was $ $0$ac_configure_args_raw @@ -3603,7 +3603,7 @@ # Define the identity of the package. PACKAGE='aide' - VERSION='0.18' + VERSION='0.18.1' printf "%s\n" "#define PACKAGE \"$PACKAGE\"" >>confdefs.h @@ -3707,7 +3707,7 @@ fi -printf "%s\n" "#define AIDEVERSION \"0.18\"" >>confdefs.h +printf "%s\n" "#define AIDEVERSION \"0.18.1\"" >>confdefs.h @@ -11300,7 +11300,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by aide $as_me 0.18, which was +This file was extended by aide $as_me 0.18.1, which was generated by GNU Autoconf 2.71. Invocation command line was CONFIG_FILES = $CONFIG_FILES @@ -11368,7 +11368,7 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config='$ac_cs_config_escaped' ac_cs_version="\\ -aide config.status 0.18 +aide config.status 0.18.1 configured by $0, generated by GNU Autoconf 2.71, with options \\"\$ac_cs_config\\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/doc/aide.1 new/aide-0.18.1/doc/aide.1 --- old/aide-0.18/doc/aide.1 2023-02-06 22:13:37.000000000 +0100 +++ new/aide-0.18.1/doc/aide.1 2023-03-04 21:32:18.000000000 +0100 @@ -1,4 +1,4 @@ -.TH AIDE 1 "2023-02-06" "aide v0.18" "User Commands" +.TH AIDE 1 "2023-03-04" "aide v0.18.1" "User Commands" .SH NAME \fBaide\fP \- Advanced Intrusion Detection Environment .SH SYNOPSIS diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/doc/aide.conf.5 new/aide-0.18.1/doc/aide.conf.5 --- old/aide-0.18/doc/aide.conf.5 2023-02-06 22:13:37.000000000 +0100 +++ new/aide-0.18.1/doc/aide.conf.5 2023-03-04 21:32:18.000000000 +0100 @@ -1,4 +1,4 @@ -.TH AIDE.CONF 5 "2023-02-06" "aide v0.18" "AIDE" +.TH AIDE.CONF 5 "2023-03-04" "aide v0.18.1" "AIDE" .SH NAME aide.conf - The configuration file for Advanced Intrusion Detection Environment diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/src/db_disk.c new/aide-0.18.1/src/db_disk.c --- old/aide-0.18/src/db_disk.c 2023-02-06 22:06:50.000000000 +0100 +++ new/aide-0.18.1/src/db_disk.c 2023-03-04 21:19:34.000000000 +0100 @@ -239,7 +239,7 @@ #ifdef WITH_PTHREAD pthread_t add2tree_thread; - if (conf->num_workers) { + if (!dry_run && conf->num_workers) { if (pthread_create(&add2tree_thread, NULL, &add2tree, NULL) != 0) { log_msg(LOG_LEVEL_ERROR, "failed to start add2tree thread: %s", strerror(errno)); exit(THREAD_ERROR); @@ -250,7 +250,7 @@ scan_dir(full_path, dry_run); #ifdef WITH_PTHREAD - if (conf->num_workers) { + if (!dry_run && conf->num_workers) { if (pthread_join(add2tree_thread, NULL) != 0) { log_msg(LOG_LEVEL_ERROR, "failed to join add2tree thread: %s", strerror(errno)); exit(THREAD_ERROR); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/src/gen_list.c new/aide-0.18.1/src/gen_list.c --- old/aide-0.18/src/gen_list.c 2023-02-06 22:06:50.000000000 +0100 +++ new/aide-0.18.1/src/gen_list.c 2023-03-04 21:19:34.000000000 +0100 @@ -231,33 +231,39 @@ if (l1->attr&ATTR(attr_growing)) { if (conf->action&DO_COMPARE) { if(l1->size < l2->size) { - log_msg(compare_log_level, "â '%s' has growing attribute set, check for growing hashsums", l1->filename); - log_msg(compare_log_level, "â compare hashsums of '%s' and '%s' limited to old size %d", l1->filename, l2->filename, l1->size); - md_hashsums hs = calc_hashsums(l2->fullpath, l2->attr, fs, l1->size, false); + if (l1->size) { + log_msg(compare_log_level, "â '%s' has growing attribute set, check for growing hashsums", l1->filename); + log_msg(compare_log_level, "â compare hashsums of '%s' and '%s' limited to old size %d", l1->filename, l2->filename, l1->size); + md_hashsums hs = calc_hashsums(l2->fullpath, l2->attr, fs, l1->size, false); - byte* new_hashsums[num_hashes]; - for (int i = 0 ; i < num_hashes ; ++i) { - DB_ATTR_TYPE attr = ATTR(hashsums[i].attribute); - if (hs.attrs&attr) { - new_hashsums[i] = checked_malloc(hashsums[i].length); - memcpy(new_hashsums[i],hs.hashsums[i],hashsums[i].length); - } else { - new_hashsums[i] = NULL; + byte* new_hashsums[num_hashes]; + for (int i = 0 ; i < num_hashes ; ++i) { + DB_ATTR_TYPE attr = ATTR(hashsums[i].attribute); + if (hs.attrs&attr) { + new_hashsums[i] = checked_malloc(hashsums[i].length); + memcpy(new_hashsums[i],hs.hashsums[i],hashsums[i].length); + } else { + new_hashsums[i] = NULL; + } } - } - DB_ATTR_TYPE new_changed = get_changed_hashsums(l1->attr&l2->attr, l1->hashsums, new_hashsums); + DB_ATTR_TYPE new_changed = get_changed_hashsums(l1->attr&l2->attr, l1->hashsums, new_hashsums); - for (int i = 0 ; i < num_hashes ; ++i) { - free(new_hashsums[i]); - } + for (int i = 0 ; i < num_hashes ; ++i) { + free(new_hashsums[i]); + } - if (new_changed) { - str = diff_attributes(0,new_changed); - log_msg(compare_log_level, "â keep hashsums as CHANGED (hashsums of '%s' limited to old size %d have been changed: %s)", l2->filename, l1->size, str); - free(str); + if (new_changed) { + str = diff_attributes(0,new_changed); + log_msg(compare_log_level, "â keep hashsums as CHANGED (hashsums of '%s' limited to old size %d have been changed: %s)", l2->filename, l1->size, str); + free(str); + } else { + log_msg(compare_log_level, "â set hashsums as UNCHANGED (hashsums of '%s' limited to old size %d have NOT been changed)", l2->filename, l1->size); + changed_hashsums = 0; + } } else { - log_msg(compare_log_level, "â set hashsums as UNCHANGED (hashsums of '%s' limited to old size %d have NOT been changed)", l2->filename, l1->size); + log_msg(compare_log_level, "â '%s' has growing attribute set, but skip hashsums calculation (file was empty before)", l1->filename); + log_msg(compare_log_level, "â set hashsums as UNCHANGED (old size equals zero)"); changed_hashsums = 0; } } else { diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/aide-0.18/version.m4 new/aide-0.18.1/version.m4 --- old/aide-0.18/version.m4 2023-02-06 22:23:08.000000000 +0100 +++ new/aide-0.18.1/version.m4 2023-03-04 21:32:26.000000000 +0100 @@ -1 +1 @@ -m4_define([AIDE_VERSION], [0.18]) +m4_define([AIDE_VERSION], [0.18.1])
