Skip to content

Commit ccb826e

Browse files
yeazelmyeazelm
authored
Merge pull request #781 from yeazelm/auditd
Create new sub packages for auditing functionality
2 parents 1bb0c22 + b78e5f1 commit ccb826e

File tree

4 files changed

+39
-5
lines changed

4 files changed

+39
-5
lines changed

packages/libaudit/libaudit.spec

Lines changed: 11 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -27,6 +27,13 @@ Requires: %{name}
2727
%description -n %{_cross_os}audit
2828
%{summary}.
2929

30+
%package -n %{_cross_os}audit-rules
31+
Summary: Default audit rules for Bottlerocket
32+
Requires: %{_cross_os}audit
33+
34+
%description -n %{_cross_os}audit-rules
35+
%{summary}.
36+
3037
%prep
3138
%autosetup -n audit-userspace-%{version} -p1
3239

@@ -83,10 +90,12 @@ install -p -m 0644 %{S:11} %{buildroot}%{_cross_datadir}/audit
8390

8491
%files -n %{_cross_os}audit
8592
%{_cross_sbindir}/auditctl
86-
%{_cross_unitdir}/audit-rules.service
87-
%{_cross_datadir}/audit/audit.rules
8893
%exclude %{_cross_sbindir}/auditd
8994
%exclude %{_cross_sbindir}/aureport
9095
%exclude %{_cross_sbindir}/ausearch
9196

97+
%files -n %{_cross_os}audit-rules
98+
%{_cross_unitdir}/audit-rules.service
99+
%{_cross_datadir}/audit/audit.rules
100+
92101
%changelog

packages/release/release.spec

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -141,6 +141,7 @@ Source1651: local-mount-encrypted.conf
141141
Source1652: repart-local-encrypted.conf
142142

143143
Requires: %{_cross_os}audit
144+
Requires: %{_cross_os}auditd
144145
Requires: %{_cross_os}chrony
145146
Requires: %{_cross_os}conntrack-tools
146147
Requires: %{_cross_os}containerd

packages/systemd-252/systemd-252.spec

Lines changed: 14 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -180,6 +180,16 @@ Provides: %{_cross_os}systemd-resolved = %{package_priority_epoch}:
180180
%description resolved
181181
%{summary}.
182182

183+
%package journald-audit
184+
Summary: Files for journald audit socket
185+
Requires: %{name}
186+
Requires: %{_cross_os}audit-rules
187+
Provides: %{_cross_os}auditd = %{package_priority_epoch}:
188+
Conflicts: %{_cross_os}auditd
189+
190+
%description journald-audit
191+
%{summary}.
192+
183193
%prep
184194
%autosetup -n systemd-stable-%{version} -p1
185195

@@ -481,7 +491,6 @@ find %{buildroot} -type f -name README -print -delete
481491
%{_cross_unitdir}/slices.target
482492
%{_cross_unitdir}/sockets.target
483493
%dir %{_cross_unitdir}/sockets.target.wants
484-
%{_cross_unitdir}/sockets.target.wants/systemd-journald-audit.socket
485494
%{_cross_unitdir}/sockets.target.wants/systemd-journald-dev-log.socket
486495
%{_cross_unitdir}/sockets.target.wants/systemd-journald.socket
487496
%{_cross_unitdir}/sockets.target.wants/systemd-udevd-control.socket
@@ -524,7 +533,6 @@ find %{buildroot} -type f -name README -print -delete
524533
%{_cross_unitdir}/systemd-halt.service
525534
%{_cross_unitdir}/systemd-journal-catalog-update.service
526535
%{_cross_unitdir}/systemd-journal-flush.service
527-
%{_cross_unitdir}/systemd-journald-audit.socket
528536
%{_cross_unitdir}/systemd-journald-dev-log.socket
529537
%{_cross_unitdir}/systemd-journald-varlink@.socket
530538
%{_cross_unitdir}/systemd-journald.service
@@ -800,3 +808,7 @@ find %{buildroot} -type f -name README -print -delete
800808
%{_cross_unitdir}/sysinit.target.wants/cryptsetup.target
801809
%{_cross_unitdir}/sysinit.target.wants/integritysetup.target
802810
%{_cross_unitdir}/sysinit.target.wants/veritysetup.target
811+
812+
%files journald-audit
813+
%{_cross_unitdir}/systemd-journald-audit.socket
814+
%{_cross_unitdir}/sockets.target.wants/systemd-journald-audit.socket

packages/systemd-257/systemd-257.spec

Lines changed: 13 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -165,6 +165,16 @@ Provides: %{_cross_os}systemd-resolved = %{package_priority_epoch}:
165165
%description resolved
166166
%{summary}.
167167

168+
%package journald-audit
169+
Summary: Files for journald audit socket
170+
Requires: %{name}
171+
Requires: %{_cross_os}audit-rules
172+
Provides: %{_cross_os}auditd = %{package_priority_epoch}:
173+
Conflicts: %{_cross_os}auditd
174+
175+
%description journald-audit
176+
%{summary}.
177+
168178
%prep
169179
%autosetup -n systemd-%{version} -p1
170180

@@ -542,7 +552,6 @@ install -p -m 0644 %{S:2} %{buildroot}%{_cross_bootconfigdir}/21-cgroup-enable-l
542552
%{_cross_unitdir}/systemd-halt.service
543553
%{_cross_unitdir}/systemd-journal-catalog-update.service
544554
%{_cross_unitdir}/systemd-journal-flush.service
545-
%{_cross_unitdir}/systemd-journald-audit.socket
546555
%{_cross_unitdir}/systemd-journald-dev-log.socket
547556
%{_cross_unitdir}/systemd-journald-varlink@.socket
548557
%{_cross_unitdir}/systemd-journald.service
@@ -871,3 +880,6 @@ install -p -m 0644 %{S:2} %{buildroot}%{_cross_bootconfigdir}/21-cgroup-enable-l
871880
%{_cross_unitdir}/sysinit.target.wants/integritysetup.target
872881
%{_cross_unitdir}/sysinit.target.wants/veritysetup.target
873882
%{_cross_unitdir}/system-systemd\x2dveritysetup.slice
883+
884+
%files journald-audit
885+
%{_cross_unitdir}/systemd-journald-audit.socket

0 commit comments

Comments
 (0)