Add plugin for logging audit events for package operations as per OSPP v4.2

When enabled, log audit events for package install, update and remove. The log includes the operation, package nevra, signature check result, whether signatures are being enforced enforced and overall operation result code. Package install/update/remove are logged as such, obsoletion is logged as install + remove (whereas the erasure element on updates is silent). Enable compilation in CI. Loosely based on initial RHEL 7-8 implementations by Pavlina Moravcova Varekova and Florian Festi (RhBug:1555326, RhBug:1607612)
author: Panu Matilainen <pmatilai@redhat.com> 2019-03-28 13:56:07 +0200
committer: Florian Festi <ffesti@redhat.com> 2019-04-09 11:04:02 +0200
commit: ad16a04b6e41612cdef6ab8755ad31c8b880a9fd (patch)
tree: a2766817515da22adb5aaa3192899e3c8bf53394 /ci
parent: eecd3d5d058af5f7eba91105e7413c27389c8402 (diff)
download: rpm-ad16a04b6e41612cdef6ab8755ad31c8b880a9fd.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/ci/Dockerfile b/ci/Dockerfile
index 15ac99600..04daf7633 100644
--- a/ci/Dockerfile
+++ b/ci/Dockerfile
@@ -30,6 +30,7 @@ RUN dnf -y install \
   ima-evm-utils \
   libcap-devel \
   libacl-devel \
+  audit-libs-devel \
   lua-devel readline-devel \
   python3-devel \
   dbus-devel \
@@ -48,6 +49,7 @@ RUN ./configure \
   --with-cap \
   --with-acl \
   --with-lua \
+  --with-audit \
   --enable-python \
   --enable-silent-rules
 RUN make
author	Panu Matilainen <pmatilai@redhat.com>	2019-03-28 13:56:07 +0200
committer	Florian Festi <ffesti@redhat.com>	2019-04-09 11:04:02 +0200
commit	ad16a04b6e41612cdef6ab8755ad31c8b880a9fd (patch)
tree	a2766817515da22adb5aaa3192899e3c8bf53394 /ci
parent	eecd3d5d058af5f7eba91105e7413c27389c8402 (diff)
download	rpm-ad16a04b6e41612cdef6ab8755ad31c8b880a9fd.tar.gz