Hello community, here is the log from the commit of package python-plaso for openSUSE:Factory checked in at 2016-11-12 13:00:23 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-plaso (Old) and /work/SRC/openSUSE:Factory/.python-plaso.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-plaso" Changes: -------- --- /work/SRC/openSUSE:Factory/python-plaso/python-plaso.changes 2015-08-21 12:42:56.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.python-plaso.new/python-plaso.changes 2016-11-12 13:00:28.000000000 +0100 @@ -1,0 +2,50 @@ +Sun Sep 25 02:08:05 UTC 2016 - [email protected] + +- update to v1.5.0 (Gna) + * See release announcement for details: + - http://blog.kiddaland.net/2016/09/what-flies-there-what-fares-there-or.html + - DC3 - The DoD Computer Foresics Lap made significant contributions to plaso 1.5 +- Add Requires: pyscca, pyfvde, python-dfwinreg, python-efilter, python-yara +- Update Source: tag to the new location +- Change capitalization of xlsxwriter to XlsxWriter +- Add GITHUB_version tag to allow pre-release testing +- remove python-psutil < 3.0 restriction + +------------------------------------------------------------------- +Tue Jan 26 03:38:52 UTC 2016 - [email protected] + +- update to v1.4.0 + * See release announcement for details: + - http://blog.kiddaland.net/2016/01/sprinkling-morning-dew-and-summer.html + * New features + - Parsers for $MFT and the NTFS USN change journal + - Docker file + - ZeroMQ + - File content hashing is now on by default + - Window status view now on by default for non-Windows OS’. log2timeline has a new look. + - A new parser for client-local SCCM logs + - An XSLX output module, for writing events directly to a file readable with Microsoft Excel + - Distributed link tracking support in the winlnk parser + - The Windows Registry handling functionality has been moved to a separate submodule +- Add Requires: libzmq5 >= 4.1.2 +- Add Requires: python-protobuf +- Add Requires: python-xlsxwriter +- Add Requires: artifacts-validator instead of just artifacts +- Add Requires: python-requests +- Add Requires: pybde +- Add Requires: pyfsntfs +- Add Requires: pysmraw +- Add Require pyesedb >= 20150409 +- Add Recommends: python-mock # Used by internal test suite +- Require libewf2 = 0~20140608 # Newer versions are buggy +- Require pyewf = 0~20140608 # Newer versions are buggy +- Require pyesedb >= 20150409 +- Require pyevtx >= 20160107 +- Require pylnk >= 20150830 +- Require pyolecf >= 20160107 +- Require python-dfVFS >= 20160108 +- Require python-psutil < 3.0.0 # Not yet compatible with newer psutil +- remove references to subdir winreg +- Add removal of duplicate files %{buildroot}/usr/share/doc/plaso/ACKNOWLEDGEMENTS, etc + +------------------------------------------------------------------- @@ -7,0 +58 @@ +- add /usr/share/plaso as a data directory Old: ---- plaso-1.3.0.tar.gz New: ---- 1.5.0.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-plaso.spec ++++++ --- /var/tmp/diff_new_pack.YgsjHz/_old 2016-11-12 13:00:33.000000000 +0100 +++ /var/tmp/diff_new_pack.YgsjHz/_new 2016-11-12 13:00:33.000000000 +0100 @@ -1,7 +1,7 @@ # # spec file for package python-plaso # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,45 +16,62 @@ # +%define GITHUB_version 1.5.0 + Name: python-plaso -Version: 1.3.0 +Version: 1.5.0 Release: 0 Summary: Plaso is a library for working with forensic timelines License: Apache-2.0 Group: Development/Libraries/Python Url: http://plaso.kiddaland.net/ #git: git clone https://github.com/log2timeline/plaso.git -Source: https://github.com/log2timeline/plaso/releases/download/%{version}/plaso-%{version}.tar.gz +Source: https://github.com/log2timeline/plaso/archive/%{GITHUB_version}.tar.gz BuildRequires: fdupes BuildRequires: pkg-config BuildRequires: python-devel BuildRequires: python-setuptools Requires: OleFileIO_PL -Requires: libtsk10 >= 4.1.2 +Requires: libzmq5 > 4.1.2 +Requires: python-XlsxWriter >= 0.9.3 Requires: python-binplist >= 0.1.4 Requires: python-construct >= 2.5.2 Requires: python-dateutil >= 2.4.2 +Requires: python-dfwinreg Requires: python-dpkt +Requires: python-efilter Requires: python-hachoir-core Requires: python-hachoir-metadata Requires: python-hachoir-parser >= 1.3.4 Requires: python-pefile >= 1.2.10+139 +Requires: python-protobuf +Requires: python-requests +Requires: python-yara >= 3.5.0 # These are core libraries. Make sure current versions are used +Requires: pyesedb >= 0~20150409 Requires: pyevt >= 0~20140731 -Requires: pyevtx >= 0~20141112 -Requires: pyewf >= 0~20140603 +Requires: pyevtx >= 0~20160107 +Requires: pyfvde Requires: pyfwsi >= 0~20150606 -Requires: pylnk >= 0~20141026 +Requires: pylnk >= 0~20150830 Requires: pymsiecf >= 0~20150314 -Requires: pyolecf >= 0~20140801 +Requires: pyolecf >= 0~20160107 Requires: pyregf >= 0~20150315 +Requires: pyscca Requires: pysigscan >= 0~20150627 -Requires: python-dfVFS >= 0~20150606 +Requires: python-dfVFS >= 0~20160918 Requires: pyvshadow >= 0~20140731 -Requires: pyesedb +# libewf newer versions than 2016-01-26 are buggy +Requires: libewf2 = 0~20140608 +Requires: pyewf = 0~20140608 + +Requires: artifacts-validator +Requires: pybde +Requires: pyfsntfs Requires: pyqcow Requires: pysmdev +Requires: pysmraw Requires: pyvhdi Requires: pyvmdk @@ -66,6 +83,7 @@ Requires: python-tsk Requires: python-tz Requires: python-yaml + Recommends: libevt-tools Recommends: libevtx-tools Recommends: libewf-tools @@ -80,6 +98,9 @@ Recommends: libvmdk-tools Recommends: sleuthkit >= 4.1.2 +# for running the test suite +Recommends: python-mock + Provides: plaso BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildArch: noarch @@ -88,16 +109,13 @@ Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computer and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system. %prep -%setup -q -n plaso-%version -for subdir in analysis cli engine events filters formatters lib multi_processing parsers preprocessors serializer storage unix winreg winnt output; do +%setup -q -n plaso-%GITHUB_version +for subdir in analysis cli engine filters formatters lib multi_processing parsers preprocessors serializer storage unix winnt output; do find plaso/$subdir -name \*.py | xargs sed -i "/#!\/usr\/bin\/python/d" done sed -i "/#!\/usr\/bin\/env python/d" plaso/lib/objectfilter*.py sed -i "/#!\/usr\/bin\/python/d" plaso/frontend/__init__.py -#sed -i "/#!\/usr\/bin\/python/d" plaso/frontend/utils.py -sed -i "/#!\/usr\/bin\/python/d" plaso/frontend/presets.py sed -i "/#!\/usr\/bin\/python/d" plaso/frontend/frontend.py -sed -i "/#!\/usr\/bin\/python/d" plaso/proto/__init__.py sed -i "/#!\/usr\/bin\/python/d" plaso/__init__.py %build @@ -120,12 +138,17 @@ # Fix python-bytecode-inconsistent-mtime pushd %{buildroot}%{python_sitelib}/plaso/ %py_compile . -for subdir in cli events proto unix winreg multi_processing winnt winreg frontend lib serializer engine parsers/shared; do +for subdir in cli unix multi_processing winnt frontend lib serializer engine parsers/shared; do pushd %{buildroot}%{python_sitelib}/plaso/$subdir %py_compile . popd done popd +# these are installed to the wrong dir by plaso +rm %{buildroot}/usr/share/doc/plaso/ACKNOWLEDGEMENTS +rm %{buildroot}/usr/share/doc/plaso/AUTHORS +rm %{buildroot}/usr/share/doc/plaso/LICENSE +rm %{buildroot}/usr/share/doc/plaso/README %fdupes -s %{buildroot} %check ++++++ plaso-1.3.0.tar.gz -> 1.5.0.tar.gz ++++++ /work/SRC/openSUSE:Factory/python-plaso/plaso-1.3.0.tar.gz /work/SRC/openSUSE:Factory/.python-plaso.new/1.5.0.tar.gz differ: char 4, line 1
