From b7fc0db2337053cf81aa6e11b2df48a0ce7457c3 Mon Sep 17 00:00:00 2001
From: Steve Grubb <sgrubb@fedoraproject.org>
Date: Nov 28 2006 22:34:26 +0000
Subject: - ausearch & aureport implement uid/gid caching

- In ausearch & aureport, extract addr when hostname is unknown
- In ausearch & aureport, test audit log presence O_RDONLY
- New ausearch/aureport time keywords: recent, this-week, this-month,
    this-year
- Added --add & --delete option to aureport
- Update res parsing in config change events
- Increase the size on audit daemon buffers
- Parse avc_path records in ausearch/aureport
- ausearch has new output mode, raw, for extracting events
- ausearch/aureport can now read stdin
- Rework AVC processing in ausearch/aureport
- Added long options to ausearch and aureport

---

diff --git a/.cvsignore b/.cvsignore
index 9eb42e5..62225f7 100644
--- a/.cvsignore
+++ b/.cvsignore
@@ -66,3 +66,4 @@ audit-1.2.6.tar.gz
 audit-1.2.7.tar.gz
 audit-1.2.8.tar.gz
 audit-1.2.9.tar.gz
+audit-1.3.tar.gz
diff --git a/audit.spec b/audit.spec
index 80141f9..9d79c8e 100644
--- a/audit.spec
+++ b/audit.spec
@@ -1,6 +1,6 @@
 Summary: User space tools for 2.6 kernel auditing
 Name: audit
-Version: 1.2.9
+Version: 1.3
 Release: 1%{?dist}
 License: GPL
 Group: System Environment/Daemons
@@ -165,6 +165,20 @@ fi
 %config(noreplace) %attr(640,root,root) /etc/sysconfig/auditd
 
 %changelog
+* Tue Nov 28 2006 Steve Grubb <sgrubb@redhat.com> 1.3-1
+- ausearch & aureport implement uid/gid caching
+- In ausearch & aureport, extract addr when hostname is unknown
+- In ausearch & aureport, test audit log presence O_RDONLY
+- New ausearch/aureport time keywords: recent, this-week, this-month, this-year
+- Added --add & --delete option to aureport
+- Update res parsing in config change events
+- Increase the size on audit daemon buffers
+- Parse avc_path records in ausearch/aureport
+- ausearch has new output mode, raw, for extracting events
+- ausearch/aureport can now read stdin
+- Rework AVC processing in ausearch/aureport
+- Added long options to ausearch and aureport
+
 * Tue Oct 24 2006 Steve Grubb <sgrubb@redhat.com> 1.2.9-1
 - In auditd if num_logs is zero, don't rotate on SIGUSR1 (#208834)
 - Fix some defines in libaudit.h
diff --git a/sources b/sources
index 5b3105d..008f154 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-2cb76a573b332ef4eb08351d9408b6cf  audit-1.2.9.tar.gz
+5aba24b53266b6eeb9b710178b874e73  audit-1.3.tar.gz