diff --git a/SOURCES/audit-3.0.8-drop-protecthome.patch b/SOURCES/audit-3.0.8-drop-protecthome.patch new file mode 100644 index 0000000..a9a70de --- /dev/null +++ b/SOURCES/audit-3.0.8-drop-protecthome.patch @@ -0,0 +1,26 @@ +From c426507a501efde0367a09a81e917d1d10722b78 Mon Sep 17 00:00:00 2001 +From: Sergio Correia +Date: Thu, 31 Mar 2022 15:00:57 -0300 +Subject: [PATCH] Drop ProtectHome from auditd.service as it interferes with + rules + +Upstream: https://github.com/linux-audit/audit-userspace/commit/12cf14ed +--- + init.d/auditd.service | 1 - + 1 file changed, 1 deletion(-) + +diff --git a/init.d/auditd.service b/init.d/auditd.service +index e801281..0a4c498 100644 +--- a/init.d/auditd.service ++++ b/init.d/auditd.service +@@ -36,7 +36,6 @@ MemoryDenyWriteExecute=true + LockPersonality=true + ProtectControlGroups=true + ProtectKernelModules=true +-ProtectHome=true + RestrictRealtime=true + + [Install] +-- +2.35.1 + diff --git a/SPECS/audit.spec b/SPECS/audit.spec index 7a5b286..9d3e94b 100644 --- a/SPECS/audit.spec +++ b/SPECS/audit.spec @@ -3,13 +3,14 @@ Summary: User space tools for kernel auditing Name: audit Version: 3.0.7 -Release: 3%{?dist} +Release: 4%{?dist} License: GPLv2+ URL: http://people.redhat.com/sgrubb/audit/ Source0: http://people.redhat.com/sgrubb/audit/%{name}-%{version}.tar.gz Source1: https://www.gnu.org/licenses/lgpl-2.1.txt Patch1: audit-3.0.8-auparse-path-norm.patch +Patch2: audit-3.0.8-drop-protecthome.patch BuildRequires: gcc swig make BuildRequires: openldap-devel @@ -86,6 +87,7 @@ Management Facility) database, through an IBM Tivoli Directory Server %setup -q cp %{SOURCE1} . %patch1 -p1 +%patch2 -p1 %build %configure --with-python=no \ @@ -238,6 +240,10 @@ fi %attr(750,root,root) %{_sbindir}/audispd-zos-remote %changelog +* Mon May 02 2022 Sergio Correia - 3.0.7-4 +- Drop ProtectHome from auditd.service as it interferes with rules + Resolves: rhbz#2071727 - Default systemd service config blocks audit watch rules in some directories + * Mon Mar 14 2022 Sergio Correia - 3.0.7-3 - Fix path normalization in auparse Resolves: rhbz#2062612 - auparse missing information when used with --format-text