%define major 1
%define oldlibname %mklibname audit 1
%define libname %mklibname audit
%define devname %mklibname -d audit
%define staticdevname %mklibname -d -s audit

%define _disable_ld_no_undefined 1
%define _disable_lto 1

%define auparsemajor 0
%define oldauparselibname %mklibname auparse 0
%define auparselibname %mklibname auparse
%define auparsedevname %mklibname -d auparse
%define auparsestaticdevname %mklibname -d -s auparse

%bcond_without golang
%bcond_without python
%bcond_without systemd

Summary:	User-space tools for Linux 2.6 kernel auditing
Name:		audit
Version:	4.1.2
Release:	1
License:	LGPLv2+
Group:		System/Base
Url:		https://people.redhat.com/sgrubb/audit/
Source0:	https://github.com/linux-audit/audit-userspace/archive/refs/tags/v%{version}.tar.gz
Source100:	%{name}.rpmlintrc
BuildRequires:	autoconf
BuildRequires:	automake
BuildRequires:	slibtool
BuildRequires:	make
BuildRequires:	intltool
BuildRequires:	libtool
BuildRequires:	swig
BuildRequires:	gettext-devel
BuildRequires:	glibc-devel >= 2.6
%if %{with golang}
BuildRequires:	golang
%endif
BuildRequires:	pkgconfig(ldap)
# Regular libtool breaks crosscompiling
BuildRequires:	slibtool
BuildRequires:	pkgconfig(libcap-ng)
%if %{with python}
BuildRequires:	pkgconfig(python3)
%endif
%if %{with systemd}
BuildRequires:	pkgconfig(libsystemd)
%endif
Requires(preun,post):	rpm-helper
Conflicts:	audispd-plugins < 1.7.11

%description
The audit package contains the user space utilities for storing and searching
the audit records generate by the audit subsystem in the Linux 2.6 kernel.

%package -n %{libname}
Summary:	Main libraries for %{name}
Group:		System/Libraries
Conflicts:	audit < 2.0
%rename %{oldlibname}

%description -n %{libname}
This package contains the main libraries for %{name}.

%package -n %{devname}
Summary:	Development files for %{name}
Group:		Development/C
Requires:	%{libname} = %{version}
Provides:	%{name}-devel = %{version}-%{release}

%description -n %{devname}
This package contains development files for %{name}.

%package -n %{staticdevname}
Summary:	Static libraries for %{name}
Group:		Development/C
Requires:	%{devname} = %{version}
Provides:	audit-static-devel = %{version}-%{release}

%description -n %{staticdevname}
This package contains static libraries for %{name} used for
development.

%package -n %{auparselibname}
Summary:	Main libraries for %{name}
Group:		System/Libraries
Conflicts:	%{mklibname audit 0} <= 1.7.13
%rename %{oldauparselibname}

%description -n %{auparselibname}
This package contains the main auparse libraries for %{name}.

%package -n %{auparsedevname}
Summary:	Development files for %{name}
Group:		Development/C
Requires:	%{auparselibname} = %{version}
Provides:	auparse-devel = %{version}-%{release}
Conflicts:	%{mklibname audit 0 -d} <= 1.7.13

%description -n %{auparsedevname}
This package contains development files for %{name}.

%package -n %{auparsestaticdevname}
Summary:	Static libraries for %{name}
Requires:	%{auparsedevname} = %{version}
Group:		Development/C
Provides:	auparse-static-devel = %{version}-%{release}
Conflicts:	%{mklibname audit 0 -d -s} <= 1.7.13

%description -n %{auparsestaticdevname}
This package contains static libraries for %{name} used for
development.

%package -n python-audit
Summary:	Python bindings for %{name}
Group:		Development/Python

%description -n python-audit
This package contains python3 bindings for %{name}.

%package -n go-audit
Summary:	Go bindings for %{name}
Group:		Development/Go

%description -n go-audit
This package contains Go bindings for %{name}.

%package -n audispd-plugins
Summary:	Plugins for the audit event dispatcher
Group:		System/Base
Requires:	%{name} = %{version}
Requires:	openldap

%description -n audispd-plugins
The audispd-plugins package provides plugins for the real-time interface to the
audit system, audispd. These plugins can do things like relay events to remote
machines or analyze events for suspicious behavior.

%prep
%autosetup -p1 -n audit-userspace-%{version}
find -type d -name ".libs" | xargs rm -rf
autoreconf

%build
%configure \
	--with-python=no \
%if %{with python}
	--with-python3=yes \
%else
	--with-python3=no \
%endif
%if %{with systemd}
	--enable-systemd \
%endif
	--enable-static \
	--enable-gssapi-krb5=no \
%ifarch %{aarch64}
	--with-aarch64 \
%endif
%ifarch %{arm}
	--with-arm \
%endif
	--with-libcap-ng=yes \
	--libexecdir=%{_sbindir}

%make_build LIBTOOL=slibtool

%install
install -d %{buildroot}%{_var}/log/audit
install -d %{buildroot}%{_libdir}/audit
install -d %{buildroot}%{_var}/spool/audit

%make_install LIBTOOL=slibtool

install -d %{buildroot}%{_presetdir}
cat > %{buildroot}%{_presetdir}/86-audit.preset << EOF
disable auditd.service
EOF

%post
# Copy default rules into place on new installation
files=$(ls /etc/audit/rules.d/ 2>/dev/null | wc -w)
if [ "$files" -eq 0 ] ; then
# FESCO asked for audit to be off by default. #1117953
    if [ -e /usr/share/doc/audit/rules/10-no-audit.rules ]; then
	cp /usr/share/doc/audit/rules/10-no-audit.rules /etc/audit/rules.d/audit.rules
    else
	touch /etc/audit/rules.d/audit.rules
    fi
    chmod 0600 /etc/audit/rules.d/audit.rules
fi

%files
%doc rules init.d/auditd.cron
%attr(0750,root,root) %dir %{_sysconfdir}/%{name}
%attr(0750,root,root) %ghost %dir  %{_sysconfdir}/%{name}/rules.d
%attr(0750,root,root) %dir  %{_sysconfdir}/%{name}/plugins.d
%config(noreplace) %{_sysconfdir}/%{name}/plugins.d/filter.conf
%ghost %config(noreplace) %attr(0640,root,root)  %{_sysconfdir}/%{name}/rules.d/audit.rules
%ghost %config(noreplace) %attr(0640,root,root)  %{_sysconfdir}/%{name}/audit.rules
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/%{name}/auditd.conf
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/%{name}/audit-stop.rules
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/%{name}/plugins.d/af_unix.conf
%config(noreplace) %{_sysconfdir}/%{name}/audisp-filter.conf
%{_sysconfdir}/bash_completion.d/audit.bash_completion
%attr(0750,root,root) %{_sbindir}/auditctl
%attr(0750,root,root) %{_sbindir}/auditd
%{_bindir}/audisp-filter
%attr(0755,root,root) %{_sbindir}/aureport
%attr(0755,root,root) %{_sbindir}/ausearch
%attr(0755,root,root) %{_sbindir}/augenrules
%attr(0755,root,root) %{_sbindir}/initscripts/legacy-actions/auditd/*
%{_presetdir}/86-audit.preset
%attr(0755,root,root) %{_bindir}/aulastlog
%attr(0755,root,root) %{_bindir}/aulast
%attr(0755,root,root) %{_bindir}/ausyscall
%attr(0644,root,root) %{_mandir}/man5/auditd.conf.5*
%attr(0644,root,root) %{_mandir}/man5/ausearch-expression.5*
%attr(0644,root,root) %{_mandir}/man5/auditd-plugins.5*
%attr(0644,root,root) %{_mandir}/man7/audit.rules.7*
%attr(0644,root,root) %{_mandir}/man8/auditctl.8*
%attr(0644,root,root) %{_mandir}/man8/auditd.8*
%attr(0644,root,root) %{_mandir}/man8/aulast.8*
%attr(0644,root,root) %{_mandir}/man8/aulastlog.8*
%attr(0644,root,root) %{_mandir}/man8/aureport.8*
%attr(0644,root,root) %{_mandir}/man8/ausearch.8*
%attr(0644,root,root) %{_mandir}/man8/ausyscall.8*
%attr(6444,root,root) %{_mandir}/man8/augenrules.8*
%attr(0700,root,root) %dir %{_var}/log/audit
%{_datadir}/audit-rules
%{_unitdir}/audit-rules.service
%{_unitdir}/auditd.service
%{_tmpfilesdir}/audit.conf
%{_mandir}/man5/auditd.cron.5*
%{_mandir}/man8/audisp-filter.8*

%files -n %{libname}
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/libaudit.conf
%{_libdir}/libaudit.so.%{major}*
%{_libdir}/libauplugin.so.1*
%attr(0644,root,root) %{_mandir}/man5/libaudit.conf.5*

%files -n %{devname}
%{_libdir}/libaudit.so
%{_libdir}/libauplugin.so
%{_includedir}/*.h
%{_datadir}/aclocal/audit.m4
%{_libdir}/pkgconfig/audit.pc
%{_libdir}/pkgconfig/auparse.pc
%{_mandir}/man3/audit_*
%{_mandir}/man3/ausearch_*
%{_mandir}/man3/get_auditfail_action.3*
%{_mandir}/man3/auplugin.3*
%{_mandir}/man3/auplugin_fgets.3*

%files -n %{staticdevname}
%{_libdir}/libaudit.a
%{_libdir}/libauplugin.a

%files -n %{auparselibname}
%{_libdir}/libauparse.so.%{auparsemajor}*

%files -n %{auparsedevname}
%{_libdir}/libauparse.so
%{_includedir}/auparse-defs.h
%{_includedir}/auparse.h
%{_mandir}/man3/auparse_*

%files -n %{auparsestaticdevname}
%{_libdir}/libauparse.a

%if %{with python}
%files -n python-audit
%{py3_platsitedir}/__pycache__/*.py*
%{py3_platsitedir}/*.so
%{py3_platsitedir}/audit.p*
%endif

%if %{with golang}
%files -n go-audit
%{_prefix}/lib/golang/src/pkg/redhat.com/audit
%endif

%files -n audispd-plugins
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/%{name}/audisp-remote.conf
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/%{name}/plugins.d/au-remote.conf
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/%{name}/plugins.d/audispd-zos-remote.conf
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/%{name}/plugins.d/syslog.conf
%config(noreplace) %attr(0640,root,root) %{_sysconfdir}/%{name}/zos-remote.conf
%attr(0750,root,root) %{_sbindir}/audisp-af_unix
%attr(0750,root,root) %{_sbindir}/audisp-syslog
%attr(0750,root,root) %{_sbindir}/audispd-zos-remote
%attr(0750,root,root) %{_sbindir}/audisp-remote
%attr(0644,root,root) %{_mandir}/man5/audisp-remote.conf.5*
%attr(0644,root,root) %{_mandir}/man5/zos-remote.conf.5*
%attr(0644,root,root) %{_mandir}/man8/audisp-syslog.8*
%attr(0644,root,root) %{_mandir}/man8/audispd-zos-remote.8*
%attr(0644,root,root) %{_mandir}/man8/audisp-remote.8*
%attr(0644,root,root) %{_mandir}/man8/audisp-af_unix.8*
%attr(0750,root,root) %dir %{_var}/spool/audit