Hello community,
here is the log from the commit of package audit for openSUSE:Factory
checked in at Fri Oct 8 01:12:14 CEST 2010.
--------
--- audit/audit-secondary.changes 2010-06-28 08:46:08.000000000 +0200
+++ /mounts/work_src_done/STABLE/audit/audit-secondary.changes 2010-09-29 04:05:10.000000000 +0200
@@ -1,0 +2,6 @@
+Wed Sep 29 00:22:38 UTC 2010 - tonyj@novell.com
+
+- Upgrade to version 2.0.5 (see audit.changes for upstream change
+ history)
+
+-------------------------------------------------------------------
--- audit/audit.changes 2010-06-28 08:46:09.000000000 +0200
+++ /mounts/work_src_done/STABLE/audit/audit.changes 2010-09-29 04:05:11.000000000 +0200
@@ -1,0 +2,28 @@
+Tue Sep 28 22:41:14 UTC 2010 - tonyj@novell.com
+
+- Update to version 2.0.5 (drop: audit-as_needed.patch)
+- Update README-BEFORE-ADDING-PATCHES
+
+- Upstream 2.0.5 changelog:
+ - Make auparse handle empty AUSOURCE_FILE_ARRAY correctly (Miloslav Trmač)
+ - On i386, audit rules do not work on inode's with a large number (#554553)
+ - Fix displaying of inode values to be unsigned integers when listing rules
+ - Correct Makefile install of audispd (Jason Tang)
+ - Syscall table updates for 2.6.34 kernel
+ - Add definitions for service start and stop
+ - Fix handling of ignore errors in auditctl
+ - Fix gssapi support to build with new linker options
+ - Add virtualization event types
+ - Update aureport program help and man pages to show all options
+
+-------------------------------------------------------------------
+Tue Sep 28 07:22:05 UTC 2010 - aj@suse.de
+
+- Annotate patch audit-oom_score_adj.
+
+-------------------------------------------------------------------
+Mon Sep 27 08:47:32 UTC 2010 - aj@suse.de
+
+- Use /proc/<pid>/oom_score_adj if available.
+
+-------------------------------------------------------------------
calling whatdependson for head-i586
Old:
----
audit-2.0.4.tar.bz2
audit-as_needed.patch
New:
----
audit-2.0.5.tar.bz2
audit-oom_score_adj.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ audit-secondary.spec ++++++
--- /var/tmp/diff_new_pack.6lNtDo/_old 2010-10-08 01:11:13.000000000 +0200
+++ /var/tmp/diff_new_pack.6lNtDo/_new 2010-10-08 01:11:13.000000000 +0200
@@ -1,5 +1,5 @@
#
-# spec file for package audit-secondary (Version 2.0.4)
+# spec file for package audit-secondary (Version 2.0.5)
#
# Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
@@ -25,12 +25,11 @@
Summary: Python Bindings for libaudit
License: GPLv2+
Group: System/Monitoring
-Version: 2.0.4
-Release: 7
+Version: 2.0.5
+Release: 1
Url: http://people.redhat.com/sgrubb/audit/
Source0: audit-%{version}.tar.bz2
Patch1: audit-plugins-path.patch
-Patch2: audit-as_needed.patch
Requires: audit = %{version}
BuildRoot: %{_tmppath}/%{name}-%{version}-build
PreReq: %insserv_prereq %fillup_prereq
@@ -85,7 +84,6 @@
rm -rf audisp/plugins/prelude
%setup -q -n %{_name}-%{version}
%patch1 -p1
-%patch2
%build
autoreconf -fi
++++++ audit.spec ++++++
--- /var/tmp/diff_new_pack.6lNtDo/_old 2010-10-08 01:11:13.000000000 +0200
+++ /var/tmp/diff_new_pack.6lNtDo/_new 2010-10-08 01:11:13.000000000 +0200
@@ -1,5 +1,5 @@
#
-# spec file for package audit (Version 2.0.4)
+# spec file for package audit (Version 2.0.5)
#
# Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
@@ -22,8 +22,8 @@
BuildRequires: gcc-c++ tcpd-devel
BuildRequires: kernel-headers >= 2.6.29
Summary: User Space Tools for 2.6 Kernel Auditing
-Version: 2.0.4
-Release: 7
+Version: 2.0.5
+Release: 1
License: GPLv2+
Group: System/Monitoring
Url: http://people.redhat.com/sgrubb/audit/
@@ -35,7 +35,7 @@
Patch1: audit-no_python.patch
Patch2: audit-no_plugins.patch
Patch3: audit-no-gss.patch
-Patch4: audit-as_needed.patch
+Patch4: audit-oom_score_adj.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
Requires: %{name}-libs = %{version}
PreReq: %insserv_prereq %fillup_prereq
++++++ README-BEFORE-ADDING-PATCHES ++++++
--- /var/tmp/diff_new_pack.6lNtDo/_old 2010-10-08 01:11:13.000000000 +0200
+++ /var/tmp/diff_new_pack.6lNtDo/_new 2010-10-08 01:11:13.000000000 +0200
@@ -4,10 +4,10 @@
From: Name <email>
Subject: Summary of fix
Date: date
-References: bnc#xxxxxx (bugzilla reference)
+References: bnc#xxxxxx (bugzilla reference if applicable)
+Upstream: yes (provide repo/commit-id in description) or no (provide reason)
Signed-Off-by: Name <email> (same as From: if committer is patch author)
Short paragraph describing problem/fix.
-References to upstream repo/commit-id if applicable.
-
+References to upstream repo-path/commit-id if applicable.
++++++ audit-2.0.4.tar.bz2 -> audit-2.0.5.tar.bz2 ++++++
++++ 17351 lines of diff (skipped)
++++ retrying with extended exclude list
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/ChangeLog new/audit-2.0.5/ChangeLog
--- old/audit-2.0.4/ChangeLog 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/ChangeLog 2010-09-22 17:02:17.000000000 +0200
@@ -1,3 +1,15 @@
+2.0.5
+- Make auparse handle empty AUSOURCE_FILE_ARRAY correctly (Miloslav Trmač)
+- On i386, audit rules do not work on inode's with a large number (#554553)
+- Fix displaying of inode values to be unsigned integers when listing rules
+- Correct Makefile install of audispd (Jason Tang)
+- Syscall table updates for 2.6.34 kernel
+- Add definitions for service start and stop
+- Fix handling of ignore errors in auditctl
+- Fix gssapi support to build with new linker options
+- Add virtualization event types
+- Update aureport program help and man pages to show all options
+
2.0.4
- Make alpha processor support optional
- Add support for the arm eabi processor
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/TODO new/audit-2.0.5/TODO
--- old/audit-2.0.4/TODO 2009-12-07 22:16:40.000000000 +0100
+++ new/audit-2.0.5/TODO 2010-09-22 17:02:17.000000000 +0200
@@ -1,33 +1,38 @@
Things that need to be done:
===========================
-2.0.3
+2.0.5
+* When searching, build log time list & only read the ones that are in range
+* Change ausearch-string to be AVL based
* Get store and forward working for remote logging app
* Fix auparse to handle out of order messages
* Add definitions for kernel virt events
+* Review sshd login data being put into prelude events, add source addr/port
+
+2.0.6
* Add rule verify to detect mismatch between in-kernel and on-disk rules
* Fix SIGHUP for auditd network settings
* If auparse input is a pipe timeout events by wall clock
2.1
+* Performance improvements for auparse
* Look at gssapi support being done via dlopen()
* Look at pulling audispd into auditd
* auditctl needs to be able to take file names with spaces in rule files
+* Add gzip format for logs
* Consider adding node/machine name to records going to rt interface in daemon as protocol version 2.
-* Add libaudit.m4 to make audit easier to include
* Update prelude detections to send anomaly events
-* Look at adding the direction read/write to file report (threat modelling)
* Add basic responses to prelude plugin
* Should session number go into logins and AVCs for prelude?
+* Add libaudit.m4 to make audit easier to include
+* Look at adding the direction read/write to file report (threat modelling)
* Changes in uid/gid, failed changes in credentials in aureport
* aureport get specific reports working
* auditctl should ignore invalid arches for rules
* Remove evil getopt cruft in auditctl
-* Add gzip format for logs
* Group message types in ausearch help.
2.2
* Fix retry logic in distribute event, buffer is freed by the logger thread
-* Interpret more syscall args: ioctl,[sg]etsockopt,ptrace,fcntl,chmod
* interpret contexts
* Add keywords for time: month-ago
* Allow -F path!=/var/my/app
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/audisp/Makefile.am new/audit-2.0.5/audisp/Makefile.am
--- old/audit-2.0.4/audisp/Makefile.am 2009-12-07 22:16:41.000000000 +0100
+++ new/audit-2.0.5/audisp/Makefile.am 2010-09-22 17:02:19.000000000 +0200
@@ -36,3 +36,5 @@
audispd_CFLAGS = -fPIE -DPIE -g -D_GNU_SOURCE
audispd_LDFLAGS = -pie -Wl,-z,relro
+install-exec-hook:
+ chmod 0750 $(DESTDIR)$(sbindir)/audispd
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/audit.spec new/audit-2.0.5/audit.spec
--- old/audit-2.0.4/audit.spec 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/audit.spec 2010-09-22 17:02:27.000000000 +0200
@@ -2,7 +2,7 @@
Summary: User space tools for 2.6 kernel auditing
Name: audit
-Version: 2.0.4
+Version: 2.0.5
Release: 1
License: GPLv2+
Group: System Environment/Daemons
@@ -218,6 +218,6 @@
%changelog
-* Mon Dec 07 2009 Steve Grubb 2.0.4-1
+* Wed Sep 22 2010 Steve Grubb 2.0.5-1
- New upstream release
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/auparse/auparse.c new/audit-2.0.5/auparse/auparse.c
--- old/audit-2.0.4/auparse/auparse.c 2009-12-07 22:16:47.000000000 +0100
+++ new/audit-2.0.5/auparse/auparse.c 2010-09-22 17:02:22.000000000 +0200
@@ -782,6 +782,10 @@
case AUSOURCE_FILE_ARRAY:
// if the first time through, open file
if (au->list_idx == 0 && au->in == NULL) {
+ if (au->source_list[au->list_idx] == NULL) {
+ errno = 0;
+ return -2;
+ }
au->line_number = 0;
au->in = fopen(au->source_list[au->list_idx],
"r");
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/compile new/audit-2.0.5/compile
--- old/audit-2.0.4/compile 2009-12-07 22:16:57.000000000 +0100
+++ new/audit-2.0.5/compile 2010-09-22 17:02:34.000000000 +0200
@@ -1,7 +1,7 @@
#! /bin/sh
# Wrapper for compilers which do not understand `-c -o'.
-scriptversion=2009-04-28.21; # UTC
+scriptversion=2009-10-06.20; # UTC
# Copyright (C) 1999, 2000, 2003, 2004, 2005, 2009 Free Software
# Foundation, Inc.
@@ -124,9 +124,9 @@
ret=$?
if test -f "$cofile"; then
- mv "$cofile" "$ofile"
+ test "$cofile" = "$ofile" || mv "$cofile" "$ofile"
elif test -f "${cofile}bj"; then
- mv "${cofile}bj" "$ofile"
+ test "${cofile}bj" = "$ofile" || mv "${cofile}bj" "$ofile"
fi
rmdir "$lockdir"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/config.h.in new/audit-2.0.5/config.h.in
--- old/audit-2.0.4/config.h.in 2009-12-07 22:16:56.000000000 +0100
+++ new/audit-2.0.5/config.h.in 2010-09-22 17:02:34.000000000 +0200
@@ -118,6 +118,9 @@
/* Define to the one symbol short name of this package. */
#undef PACKAGE_TARNAME
+/* Define to the home page for this package. */
+#undef PACKAGE_URL
+
/* Define to the version of this package. */
#undef PACKAGE_VERSION
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/configure.ac new/audit-2.0.5/configure.ac
--- old/audit-2.0.4/configure.ac 2009-12-07 22:16:40.000000000 +0100
+++ new/audit-2.0.5/configure.ac 2010-09-22 17:02:17.000000000 +0200
@@ -29,7 +29,7 @@
])
AC_REVISION($Revision: 1.3 $)dnl
-AC_INIT(audit,2.0.4)
+AC_INIT(audit,2.0.5)
AC_PREREQ(2.12)dnl
AM_CONFIG_HEADER(config.h)
@@ -87,14 +87,14 @@
no) want_gssapi_krb5="no" ;;
*) AC_MSG_ERROR(bad value ${enableval} for --enable-gssapi-krb5) ;;
esac],
- [want_gssapi_krb5=yes]
+ [want_gssapi_krb5="no"]
)
if test $want_gssapi_krb5 = yes; then
AC_CHECK_LIB(gssapi_krb5, gss_acquire_cred, [
AC_CHECK_HEADER(gssapi/gssapi.h, [
AC_DEFINE(USE_GSSAPI,,
Define if you want to use GSSAPI)
- gss_libs="-lgssapi_krb5"
+ gss_libs="-lgssapi_krb5 -lkrb5"
AC_SUBST(gss_libs)
])
])
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/docs/aureport.8 new/audit-2.0.5/docs/aureport.8
--- old/audit-2.0.4/docs/aureport.8 2009-12-07 22:16:46.000000000 +0100
+++ new/audit-2.0.5/docs/aureport.8 2010-09-22 17:02:21.000000000 +0200
@@ -33,6 +33,9 @@
.BR \-h ,\ \-\-host
Report about hosts
.TP
+.BR \-\-help
+Print brief command summary
+.TP
.BR \-i ,\ \-\-interpret
Interpret numeric entities into text. For example, uid is converted to account name. The conversion is done using the current resources of the machine where the search is being run. If you have renamed the accounts, or don't have the same accounts on your machine, you could get misleading results.
.TP
@@ -54,6 +57,9 @@
.BR \-ma ,\ \-\-mac
Report about Mandatory Access Control (MAC) events
.TP
+.BR \-n ,\ \-\-anomaly
+Report about anomaly events. These events include NIC going into promiscuous mode and programs segfaulting.
+.TP
.BR \-\-node \ \fInode-name\fP
Only select events originating from \fInode name\fP string for processing in the reports. The default is to include all nodes. Multiple nodes are allowed.
.TP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/alpha_table.h new/audit-2.0.5/lib/alpha_table.h
--- old/audit-2.0.4/lib/alpha_table.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/alpha_table.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,5 +1,5 @@
/* alpha_table.h --
- * Copyright 2005-07 Red Hat Inc., Durham, North Carolina.
+ * Copyright 2005-07,2010 Red Hat Inc., Durham, North Carolina.
* All Rights Reserved.
*
* This library is free software; you can redistribute it and/or
@@ -419,4 +419,19 @@
_S(476, "signalfd")
_S(477, "timerfd")
_S(478, "eventfd")
+_S(479, "recvmmsg")
+_S(480, "fallocate")
+_S(481, "timerfd_create")
+_S(482, "timerfd_settime")
+_S(483, "timerfd_gettime")
+_S(484, "signalfd4")
+_S(485, "eventfd2")
+_S(486, "epoll_create1")
+_S(487, "dup3")
+_S(488, "pipe2")
+_S(489, "inotify_init1")
+_S(490, "preadv")
+_S(491, "pwritev")
+_S(492, "rt_tgsigqueueinfo")
+_S(493, "perf_event_open")
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/armeb_table.h new/audit-2.0.5/lib/armeb_table.h
--- old/audit-2.0.4/lib/armeb_table.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/armeb_table.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,3 +1,24 @@
+/* armeb_table.h --
+ * Copyright 2009-10 Red Hat Inc., Durham, North Carolina.
+ * All Rights Reserved.
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 2.1 of the License, or (at your option) any later version.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this library; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
+ *
+ * Authors:
+ * Steve Grubb
+ */
_S(0, "restart_syscall")
_S(1, "exit")
_S(2, "fork")
@@ -326,4 +347,5 @@
_S(361, "preadv")
_S(362, "pwritev")
_S(363, "rt_tgsigqueueinfo")
-_S(364, "perf_counter_open")
+_S(364, "perf_event_open")
+_S(365, "recvmmsg")
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/i386_table.h new/audit-2.0.5/lib/i386_table.h
--- old/audit-2.0.4/lib/i386_table.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/i386_table.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,5 +1,5 @@
/* i386_table.h --
- * Copyright 2005-09 Red Hat Inc., Durham, North Carolina.
+ * Copyright 2005-10 Red Hat Inc., Durham, North Carolina.
* All Rights Reserved.
*
* This library is free software; you can redistribute it and/or
@@ -354,5 +354,6 @@
_S(333, "preadv")
_S(334, "pwritev")
_S(335, "rt_tgsigqueueinfo")
-_S(336, "perf_counter_open")
+_S(336, "perf_event_open")
+_S(337, "recvmmsg")
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/ia64_table.h new/audit-2.0.5/lib/ia64_table.h
--- old/audit-2.0.4/lib/ia64_table.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/ia64_table.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,5 +1,5 @@
/* ia64_table.h --
- * Copyright 2005-09 Red Hat Inc., Durham, North Carolina.
+ * Copyright 2005-10 Red Hat Inc., Durham, North Carolina.
* All Rights Reserved.
*
* This library is free software; you can redistribute it and/or
@@ -312,4 +312,5 @@
_S(1319, "preadv")
_S(1320, "pwritev")
_S(1321, "rt_tgsigqueueinfo")
+_S(1322, "recvmmsg")
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/libaudit.c new/audit-2.0.5/lib/libaudit.c
--- old/audit-2.0.4/lib/libaudit.c 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/libaudit.c 2010-09-22 17:02:27.000000000 +0200
@@ -34,6 +34,7 @@
#include
#include
#include
+#include
#include /* O_NOFOLLOW needs gnu defined */
#include /* for PATH_MAX */
@@ -1130,7 +1131,12 @@
if (!isdigit((char)*(v)))
return -21;
- rule->values[rule->field_count] = strtol(v, NULL, 0);
+ if (field == AUDIT_INODE)
+ rule->values[rule->field_count] =
+ strtoul(v, NULL, 0);
+ else
+ rule->values[rule->field_count] =
+ strtol(v, NULL, 0);
break;
}
rule->field_count++;
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/libaudit.h new/audit-2.0.5/lib/libaudit.h
--- old/audit-2.0.4/lib/libaudit.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/libaudit.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,5 +1,5 @@
/* libaudit.h --
- * Copyright 2004-2009 Red Hat Inc., Durham, North Carolina.
+ * Copyright 2004-2010 Red Hat Inc., Durham, North Carolina.
* All Rights Reserved.
*
* This library is free software; you can redistribute it and/or
@@ -53,7 +53,8 @@
* 2200 - 2299 user space actions taken in response to anomalies
* 2300 - 2399 user space generated LSPP events
* 2400 - 2499 user space crypto events
- * 2500 - 2999 future user space (maybe integrity labels and related events)
+ * 2500 - 2599 user space virtualization management events
+ * 2600 - 2999 future user space (maybe integrity labels and related events)
*/
#define AUDIT_FIRST_USER_MSG 1100 /* First user space message */
@@ -88,6 +89,8 @@
#define AUDIT_SYSTEM_BOOT 1127 /* System boot */
#define AUDIT_SYSTEM_SHUTDOWN 1128 /* System shutdown */
#define AUDIT_SYSTEM_RUNLEVEL 1129 /* System runlevel change */
+#define AUDIT_SERVICE_START 1130 /* Service (daemon) start */
+#define AUDIT_SERVICE_STOP 1131 /* Service (daemon) stop */
#define AUDIT_FIRST_DAEMON 1200
#define AUDIT_LAST_DAEMON 1299
@@ -191,9 +194,18 @@
#define AUDIT_CRYPTO_KEY_USER 2404 /* Create,delete,negotiate */
#define AUDIT_CRYPTO_FAILURE_USER 2405 /* Fail decrypt,encrypt,randomiz */
#define AUDIT_CRYPTO_REPLAY_USER 2406 /* Crypto replay detected */
+#define AUDIT_CRYPTO_SESSION 2407 /* Record parameters set during
+ TLS session establishment */
#define AUDIT_LAST_CRYPTO_MSG 2499
+#define AUDIT_FIRST_VIRT_MSG 2500
+#define AUDIT_VIRT_CONTROL 2500 /* Start, Pause, Stop VM */
+#define AUDIT_VIRT_RESOURCE 2501 /* Resource assignment */
+#define AUDIT_VIRT_MACHINE_ID 2502 /* Binding of label to VM */
+
+#define AUDIT_LAST_VIRT_MSG 2599
+
#ifndef AUDIT_FIRST_USER_MSG2
#define AUDIT_FIRST_USER_MSG2 2100 /* More userspace messages */
#define AUDIT_LAST_USER_MSG2 2999
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/msg_typetab.h new/audit-2.0.5/lib/msg_typetab.h
--- old/audit-2.0.4/lib/msg_typetab.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/msg_typetab.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,5 +1,5 @@
/* msg_typetab.h --
- * Copyright 2005-07,2009 Red Hat Inc., Durham, North Carolina.
+ * Copyright 2005-07,2009-10 Red Hat Inc., Durham, North Carolina.
* All Rights Reserved.
*
* This library is free software; you can redistribute it and/or
@@ -71,6 +71,8 @@
_S(AUDIT_SYSTEM_BOOT, "SYSTEM_BOOT" )
_S(AUDIT_SYSTEM_SHUTDOWN, "SYSTEM_SHUTDOWN" )
_S(AUDIT_SYSTEM_RUNLEVEL, "SYSTEM_RUNLEVEL" )
+_S(AUDIT_SERVICE_START, "SERVICE_START" )
+_S(AUDIT_SERVICE_STOP, "SERVICE_STOP" )
_S(AUDIT_DAEMON_START, "DAEMON_START" )
_S(AUDIT_DAEMON_END, "DAEMON_END" )
_S(AUDIT_DAEMON_ABORT, "DAEMON_ABORT" )
@@ -188,4 +190,8 @@
_S(AUDIT_CRYPTO_KEY_USER, "CRYPTO_KEY_USER" )
_S(AUDIT_CRYPTO_FAILURE_USER, "CRYPTO_FAILURE_USER" )
_S(AUDIT_CRYPTO_REPLAY_USER, "CRYPTO_REPLAY_USER" )
+_S(AUDIT_CRYPTO_SESSION, "CRYPTO_SESSION" )
+_S(AUDIT_VIRT_CONTROL, "VIRT_CONTROL" )
+_S(AUDIT_VIRT_RESOURCE, "VIRT_RESOURCE" )
+_S(AUDIT_VIRT_MACHINE_ID, "VIRT_MACHINE_ID" )
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/s390_table.h new/audit-2.0.5/lib/s390_table.h
--- old/audit-2.0.4/lib/s390_table.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/s390_table.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,5 +1,5 @@
/* s390_table.h --
- * Copyright 2005-09 Red Hat Inc., Durham, North Carolina.
+ * Copyright 2005-10 Red Hat Inc., Durham, North Carolina.
* All Rights Reserved.
*
* This library is free software; you can redistribute it and/or
@@ -328,5 +328,5 @@
_S(328, "preadv")
_S(329, "pwritev")
_S(330, "rt_tgsigqueueinfo")
-_S(331, "perf_counter_open")
+_S(331, "perf_event_open")
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/s390x_table.h new/audit-2.0.5/lib/s390x_table.h
--- old/audit-2.0.4/lib/s390x_table.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/s390x_table.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,5 +1,5 @@
/* s390x_table.h --
- * Copyright 2005,2006,2008-09 Red Hat Inc., Durham, North Carolina.
+ * Copyright 2005,2006,2008-10 Red Hat Inc., Durham, North Carolina.
* All Rights Reserved.
*
* This library is free software; you can redistribute it and/or
@@ -292,5 +292,5 @@
_S(328, "preadv")
_S(329, "pwritev")
_S(330, "rt_tgsigqueueinfo")
-_S(331, "perf_counter_open")
+_S(331, "perf_event_open")
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/lib/x86_64_table.h new/audit-2.0.5/lib/x86_64_table.h
--- old/audit-2.0.4/lib/x86_64_table.h 2009-12-07 22:16:48.000000000 +0100
+++ new/audit-2.0.5/lib/x86_64_table.h 2010-09-22 17:02:27.000000000 +0200
@@ -1,5 +1,5 @@
/* x86_64_table.h --
- * Copyright 2005-09 Red Hat Inc., Durham, North Carolina.
+ * Copyright 2005-10 Red Hat Inc., Durham, North Carolina.
* All Rights Reserved.
*
* This library is free software; you can redistribute it and/or
@@ -318,5 +318,6 @@
_S(295, "preadv")
_S(296, "pwritev")
_S(297, "rt_tgsigqueueinfo")
-_S(298, "perf_counter_open")
+_S(298, "perf_event_open")
+_S(299, "recvmmsg")
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/src/Makefile.am new/audit-2.0.5/src/Makefile.am
--- old/audit-2.0.4/src/Makefile.am 2009-12-07 22:16:45.000000000 +0100
+++ new/audit-2.0.5/src/Makefile.am 2010-09-22 17:02:21.000000000 +0200
@@ -34,7 +34,7 @@
auditd_CFLAGS = -fPIE -DPIE -g -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing
auditd_LDFLAGS = -pie -Wl,-z,relro
auditd_DEPENDENCIES = mt/libauditmt.a libev/libev.a
-auditd_LDADD = @LIBWRAP_LIBS@ @libev_LIBS@ -Llibev -lev -lrt -lm $(gss_libs)
+auditd_LDADD = @LIBWRAP_LIBS@ @libev_LIBS@ -Llibev -lev -lrt -lpthread -lm $(gss_libs)
auditctl_SOURCES = auditctl.c auditctl-llist.c delete_all.c
auditctl_DEPENDENCIES = mt/libauditmt.a
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/src/auditctl.c new/audit-2.0.5/src/auditctl.c
--- old/audit-2.0.4/src/auditctl.c 2009-12-07 22:16:45.000000000 +0100
+++ new/audit-2.0.5/src/auditctl.c 2010-09-22 17:02:21.000000000 +0200
@@ -489,6 +489,7 @@
break;
case 'i':
ignore = 1;
+ retval = -2;
break;
case 's':
retval = audit_request_status(fd);
@@ -1040,7 +1041,7 @@
fclose(f);
return 0;
}
- if (!ignore) {
+ if (ignore == 0) {
fclose(f);
return -1;
}
@@ -1396,7 +1397,13 @@
strcat(perms, "a");
printf(" perm=%s", perms);
show_syscall = 0;
+ } else if (field == AUDIT_INODE) {
+ // Unsigned items
+ printf(" %s%s%u", name,
+ audit_operator_to_symbol(op),
+ rep->ruledata->values[i]);
} else {
+ // Signed items
printf(" %s%s%d", name,
audit_operator_to_symbol(op),
rep->ruledata->values[i]);
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/src/auditd-listen.c new/audit-2.0.5/src/auditd-listen.c
--- old/audit-2.0.4/src/auditd-listen.c 2009-12-07 22:16:45.000000000 +0100
+++ new/audit-2.0.5/src/auditd-listen.c 2010-09-22 17:02:21.000000000 +0200
@@ -286,7 +286,9 @@
}
#define KCHECK(x,f) if (x) { \
- audit_msg (LOG_ERR, "krb5 error: %s in %s\n", krb5_get_error_message (kcontext, x), f); \
+ const char *kstr = krb5_get_error_message(kcontext, x); \
+ audit_msg(LOG_ERR, "krb5 error: %s in %s\n", kstr, f); \
+ krb5_free_error_message(kcontext, kstr); \
return -1; }
/* These are our private credentials, which come from a key file on
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/src/aureport-options.c new/audit-2.0.5/src/aureport-options.c
--- old/audit-2.0.4/src/aureport-options.c 2009-12-07 22:16:45.000000000 +0100
+++ new/audit-2.0.5/src/aureport-options.c 2010-09-22 17:02:21.000000000 +0200
@@ -150,7 +150,7 @@
{
printf("usage: aureport [options]\n"
"\t-a,--avc\t\t\tAvc report\n"
- "\t--auth\t\t\t\tAuthentication report\n"
+ "\t-au,--auth\t\t\tAuthentication report\n"
"\t-c,--config\t\t\tConfig change report\n"
"\t-cr,--crypto\t\t\tCrypto report\n"
"\t-e,--event\t\t\tEvent report\n"
@@ -176,6 +176,7 @@
"\t-te,--end [end date] [end time]\tending date & time for reports\n"
"\t-tm,--terminal\t\t\tTerMinal name report\n"
"\t-ts,--start [start date] [start time]\tstarting data & time for reports\n"
+ "\t--tty\t\t\t\tReport about tty keystrokes\n"
"\t-u,--user\t\t\tUser name report\n"
"\t-v,--version\t\t\tVersion\n"
"\t-x,--executable\t\t\teXecutable name report\n"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/src/aureport.c new/audit-2.0.5/src/aureport.c
--- old/audit-2.0.4/src/aureport.c 2009-12-07 22:16:45.000000000 +0100
+++ new/audit-2.0.5/src/aureport.c 2010-09-22 17:02:21.000000000 +0200
@@ -159,6 +159,7 @@
do {
if (access(filename, R_OK) != 0)
break;
+// FIXME: do a time check and put them on linked list for later
num++;
snprintf(filename, len, "%s.%d", config->log_file, num);
} while (1);
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/audit-2.0.4/swig/audit.py new/audit-2.0.5/swig/audit.py
--- old/audit-2.0.4/swig/audit.py 2009-12-07 22:17:06.000000000 +0100
+++ new/audit-2.0.5/swig/audit.py 2010-09-22 17:02:42.000000000 +0200
@@ -450,6 +450,8 @@
AUDIT_SYSTEM_BOOT = _audit.AUDIT_SYSTEM_BOOT
AUDIT_SYSTEM_SHUTDOWN = _audit.AUDIT_SYSTEM_SHUTDOWN
AUDIT_SYSTEM_RUNLEVEL = _audit.AUDIT_SYSTEM_RUNLEVEL
+AUDIT_SERVICE_START = _audit.AUDIT_SERVICE_START
+AUDIT_SERVICE_STOP = _audit.AUDIT_SERVICE_STOP
AUDIT_FIRST_DAEMON = _audit.AUDIT_FIRST_DAEMON
AUDIT_LAST_DAEMON = _audit.AUDIT_LAST_DAEMON
AUDIT_DAEMON_RECONFIG = _audit.AUDIT_DAEMON_RECONFIG
@@ -530,7 +532,13 @@
AUDIT_CRYPTO_KEY_USER = _audit.AUDIT_CRYPTO_KEY_USER
AUDIT_CRYPTO_FAILURE_USER = _audit.AUDIT_CRYPTO_FAILURE_USER
AUDIT_CRYPTO_REPLAY_USER = _audit.AUDIT_CRYPTO_REPLAY_USER
+AUDIT_CRYPTO_SESSION = _audit.AUDIT_CRYPTO_SESSION
AUDIT_LAST_CRYPTO_MSG = _audit.AUDIT_LAST_CRYPTO_MSG
+AUDIT_FIRST_VIRT_MSG = _audit.AUDIT_FIRST_VIRT_MSG
+AUDIT_VIRT_CONTROL = _audit.AUDIT_VIRT_CONTROL
+AUDIT_VIRT_RESOURCE = _audit.AUDIT_VIRT_RESOURCE
+AUDIT_VIRT_MACHINE_ID = _audit.AUDIT_VIRT_MACHINE_ID
+AUDIT_LAST_VIRT_MSG = _audit.AUDIT_LAST_VIRT_MSG
AUDIT_KEY_SEPARATOR = _audit.AUDIT_KEY_SEPARATOR
AUDIT_FILTER_EXCLUDE = _audit.AUDIT_FILTER_EXCLUDE
AUDIT_FILTER_MASK = _audit.AUDIT_FILTER_MASK
++++++ audit-no-gss.patch ++++++
--- /var/tmp/diff_new_pack.6lNtDo/_old 2010-10-08 01:11:14.000000000 +0200
+++ /var/tmp/diff_new_pack.6lNtDo/_new 2010-10-08 01:11:14.000000000 +0200
@@ -5,9 +5,13 @@
Disable GSS/Kerberos options from config file. They are disabled from configure
but need manual removal here.
---- audit-1.7.7/init.d/auditd.conf.orig 2008-09-26 02:40:48.458847000 +0200
-+++ audit-1.7.7/init.d/auditd.conf 2008-09-26 02:41:13.600681000 +0200
-@@ -26,6 +26,3 @@
+---
+ init.d/auditd.conf | 3 ---
+ 1 file changed, 3 deletions(-)
+
+--- a/init.d/auditd.conf
++++ b/init.d/auditd.conf
+@@ -27,6 +27,3 @@ tcp_listen_queue = 5
tcp_max_per_addr = 1
##tcp_client_ports = 1024-65535
tcp_client_max_idle = 0
++++++ audit-no_plugins.patch ++++++
--- /var/tmp/diff_new_pack.6lNtDo/_old 2010-10-08 01:11:14.000000000 +0200
+++ /var/tmp/diff_new_pack.6lNtDo/_new 2010-10-08 01:11:14.000000000 +0200
@@ -5,8 +5,13 @@
Non builtin plugins is build as part of phase2 by audit-secondary.spec.
Conf files for builtins are still installed
---- audit-1.7.2/audisp/plugins/Makefile.am.orig 2008-04-22 17:20:29.022441000 +0200
-+++ audit-1.7.2/audisp/plugins/Makefile.am 2008-04-22 17:20:36.657804000 +0200
+---
+ audisp/plugins/Makefile.am | 2 +-
+ docs/Makefile.am | 3 +--
+ 2 files changed, 2 insertions(+), 3 deletions(-)
+
+--- a/audisp/plugins/Makefile.am
++++ b/audisp/plugins/Makefile.am
@@ -22,7 +22,7 @@
CONFIG_CLEAN_FILES = *.loT *.rej *.orig
@@ -16,10 +21,9 @@
#SUBDIRS = builtins zos-remote
if HAVE_PRELUDE
SUBDIRS += prelude
-
---- audit-1.7.2/docs/Makefile.am.orig 2008-04-22 17:21:45.409978000 +0200
-+++ audit-1.7.2/docs/Makefile.am 2008-04-22 17:21:59.923451000 +0200
-@@ -49,6 +49,5 @@
+--- a/docs/Makefile.am
++++ b/docs/Makefile.am
+@@ -53,6 +53,5 @@ ausearch_add_expression.3 ausearch_add_t
ausearch_clear.3 \
ausearch_next_event.3 ausearch_set_stop.3 \
autrace.8 get_auditfail_action.3 set_aumessage_mode.3 \
++++++ audit-no_python.patch ++++++
--- /var/tmp/diff_new_pack.6lNtDo/_old 2010-10-08 01:11:14.000000000 +0200
+++ /var/tmp/diff_new_pack.6lNtDo/_new 2010-10-08 01:11:14.000000000 +0200
@@ -6,9 +6,15 @@
This is apparantly necessary due to the SuSE build system. Bit of a PITA but
there you have it.
---- audit-1.7.7/configure.ac.orig 2008-09-23 01:24:06.345492000 +0200
-+++ audit-1.7.7/configure.ac 2008-09-23 01:25:15.325453000 +0200
-@@ -39,7 +39,6 @@
+---
+ Makefile.am | 4 ++--
+ auparse/Makefile.am | 1 -
+ configure.ac | 4 ++--
+ 3 files changed, 4 insertions(+), 5 deletions(-)
+
+--- a/configure.ac
++++ b/configure.ac
+@@ -40,7 +40,6 @@ AC_CANONICAL_TARGET
AM_INIT_AUTOMAKE
AM_PROG_LIBTOOL
AC_SUBST(LIBTOOL_DEPS)
@@ -16,7 +22,7 @@
OLDLIBS="$LIBS"
m4_include([src/libev/libev.m4])
libev_LIBS="$LIBS"
-@@ -195,7 +195,8 @@
+@@ -231,7 +230,8 @@ AC_SUBST(libev_LIBS)
AC_SUBST(LIBPRELUDE_CFLAGS)
AC_SUBST(LIBPRELUDE_LDFLAGS)
@@ -26,8 +32,8 @@
echo .
echo "
---- audit-1.7.7/Makefile.am.orig 2008-09-23 01:24:26.915901000 +0200
-+++ audit-1.7.7/Makefile.am 2008-09-23 01:25:43.035708000 +0200
+--- a/Makefile.am
++++ b/Makefile.am
@@ -21,8 +21,8 @@
# Rickard E. (Rik) Faith
#
@@ -39,8 +45,8 @@
EXTRA_DIST = ChangeLog AUTHORS NEWS README INSTALL audit.spec \
contrib/capp.rules contrib/nispom.rules contrib/lspp.rules \
contrib/stig.rules contrib/skeleton.c contrib/avc_snap \
---- audit-1.7.7/auparse/Makefile.am.orig 2008-09-23 20:45:53.245409000 +0200
-+++ audit-1.7.7/auparse/Makefile.am 2008-09-23 20:46:02.659985000 +0200
+--- a/auparse/Makefile.am
++++ b/auparse/Makefile.am
@@ -20,7 +20,6 @@
# Steve Grubb
#
++++++ audit-oom_score_adj.patch ++++++
From: aj@suse.de
Subject: Use oom_score_adj on newer kernels
Date: 2010-09-27
Signed-Off-by: Andreas Jaeger
I see in dmesg on my 2.6.36 kernel:
[ 19.424535] auditd (2576): /proc/2576/oom_adj is deprecated, please use /proc/2576/oom_score_adj instead.
Since oom_adj is deprecated, let's use oom_score_adj.
Index: src/auditd.c
===================================================================
--- src/auditd.c.orig
+++ src/auditd.c
@@ -265,7 +265,15 @@ static int write_pid_file(void)
static void avoid_oom_killer(void)
{
int oomfd;
-
+
+ /* Newer kernels (noticed in 2.6.36) */
+ oomfd = open("/proc/self/oom_score_adj", O_NOFOLLOW | O_WRONLY);
+ if (oomfd >= 0) {
+ (void)write(oomfd, "0", 1);
+ close(oomfd);
+ return;
+ }
+ /* Older kernel */
oomfd = open("/proc/self/oom_adj", O_NOFOLLOW | O_WRONLY);
if (oomfd >= 0) {
(void)write(oomfd, "-17", 3);
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Remember to have fun...
--
To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-commit+help@opensuse.org