Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package audit for openSUSE:Factory checked in at 2024-10-03 17:59:59 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/audit (Old) and /work/SRC/openSUSE:Factory/.audit.new.19354 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "audit" Thu Oct 3 17:59:59 2024 rev:107 rq:1205295 version:4.0 Changes: -------- --- /work/SRC/openSUSE:Factory/audit/audit-secondary.changes 2024-09-30 15:35:06.179791045 +0200 +++ /work/SRC/openSUSE:Factory/.audit.new.19354/audit-secondary.changes 2024-10-03 18:00:00.849273424 +0200 @@ -1,0 +2,11 @@ +Wed Oct 2 11:15:07 UTC 2024 - Enzo Matsumiya <[email protected]> + +- Readd audit-allow-manual-stop.patch (removed by mistake) + +------------------------------------------------------------------- +Tue Oct 1 14:43:13 UTC 2024 - Enzo Matsumiya <[email protected]> + +- Fix plugin termination when using systemd service units (bsc#1215377) + * add auditd.service-fix-plugin-termination.patch + +------------------------------------------------------------------- New: ---- audit-allow-manual-stop.patch auditd.service-fix-plugin-termination.patch BETA DEBUG BEGIN: New:/work/SRC/openSUSE:Factory/.audit.new.19354/audit-secondary.changes- /work/SRC/openSUSE:Factory/.audit.new.19354/audit-secondary.changes:- Readd audit-allow-manual-stop.patch (removed by mistake) /work/SRC/openSUSE:Factory/.audit.new.19354/audit-secondary.changes- -- /work/SRC/openSUSE:Factory/.audit.new.19354/audit.changes-- Refresh patches (context adjusment): /work/SRC/openSUSE:Factory/.audit.new.19354/audit.changes: * audit-allow-manual-stop.patch /work/SRC/openSUSE:Factory/.audit.new.19354/audit.changes- * audit-ausearch-do-not-require-tclass.patch New:/work/SRC/openSUSE:Factory/.audit.new.19354/audit-secondary.changes-- Fix plugin termination when using systemd service units (bsc#1215377) /work/SRC/openSUSE:Factory/.audit.new.19354/audit-secondary.changes: * add auditd.service-fix-plugin-termination.patch /work/SRC/openSUSE:Factory/.audit.new.19354/audit-secondary.changes- BETA DEBUG END: ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ audit-secondary.spec ++++++ --- /var/tmp/diff_new_pack.yMbfRG/_old 2024-10-03 18:00:01.889316513 +0200 +++ /var/tmp/diff_new_pack.yMbfRG/_new 2024-10-03 18:00:01.893316680 +0200 @@ -39,6 +39,8 @@ Patch7: fix-hardened-service.patch Patch8: enable-stop-rules.patch Patch9: fix-auparse-test.patch +Patch10: auditd.service-fix-plugin-termination.patch +Patch11: audit-allow-manual-stop.patch BuildRequires: audit-devel = %{version} BuildRequires: autoconf >= 2.12 BuildRequires: kernel-headers >= 2.6.30 ++++++ audit-allow-manual-stop.patch ++++++ From: Tony Jones <[email protected]> Subject: allow service stop References: https://lists.fedoraproject.org/pipermail/devel/2012-June/169411.html References: https://www.redhat.com/archives/linux-audit/2013-July/msg00048.html --- legacy-actions is Fedora specific, so blocking manual stop won't work for SUSE since we lack the ability to use a custom stop/restart init.d/auditd.service | 1 - 1 file changed, 1 deletion(-) --- a/init.d/auditd.service +++ b/init.d/auditd.service @@ -14,7 +14,6 @@ After=local-fs.target systemd-tmpfiles-s Before=sysinit.target shutdown.target ##Before=shutdown.target Conflicts=shutdown.target -RefuseManualStop=yes Documentation=man:auditd(8) https://github.com/linux-audit/audit-documentation ++++++ auditd.service-fix-plugin-termination.patch ++++++ --- init.d/auditd.service | 1 + 1 file changed, 1 insertion(+) --- a/init.d/auditd.service +++ b/init.d/auditd.service @@ -29,6 +29,7 @@ ExecStopPost=/sbin/auditctl -R /etc/audi Restart=on-failure # Do not restart for intentional exits. See EXIT CODES section in auditd(8). RestartPreventExitStatus=2 4 6 +KillMode=mixed ### Security Settings ### MemoryDenyWriteExecute=true
