From 94d9c6fb1ad58f01cc3029318bc95ccd9c383b78 Mon Sep 17 00:00:00 2001 From: Steven Pritchard Date: Tue, 24 Oct 2023 10:33:06 -0500 Subject: [PATCH] [puppetsync] Add EL9 support (#106) --- CHANGELOG | 3 +++ data/fips_enabled/is_false/os/AlmaLinux-9.yaml | 10 ++++++++++ data/fips_enabled/is_false/os/CentOS-9.yaml | 10 ++++++++++ .../fips_enabled/is_false/os/OracleLinux-9.yaml | 10 ++++++++++ data/fips_enabled/is_false/os/RedHat-9.yaml | 10 ++++++++++ data/fips_enabled/is_false/os/Rocky-9.yaml | 10 ++++++++++ data/fips_enabled/is_true/os/AlmaLinux-9.yaml | 15 +++++++++++++++ data/fips_enabled/is_true/os/CentOS-9.yaml | 15 +++++++++++++++ data/fips_enabled/is_true/os/OracleLinux-9.yaml | 15 +++++++++++++++ data/fips_enabled/is_true/os/RedHat-9.yaml | 15 +++++++++++++++ data/fips_enabled/is_true/os/Rocky-9.yaml | 15 +++++++++++++++ metadata.json | 17 +++++++++++------ 12 files changed, 139 insertions(+), 6 deletions(-) create mode 100644 data/fips_enabled/is_false/os/AlmaLinux-9.yaml create mode 100644 data/fips_enabled/is_false/os/CentOS-9.yaml create mode 100644 data/fips_enabled/is_false/os/OracleLinux-9.yaml create mode 100644 data/fips_enabled/is_false/os/RedHat-9.yaml create mode 100644 data/fips_enabled/is_false/os/Rocky-9.yaml create mode 100644 data/fips_enabled/is_true/os/AlmaLinux-9.yaml create mode 100644 data/fips_enabled/is_true/os/CentOS-9.yaml create mode 100644 data/fips_enabled/is_true/os/OracleLinux-9.yaml create mode 100644 data/fips_enabled/is_true/os/RedHat-9.yaml create mode 100644 data/fips_enabled/is_true/os/Rocky-9.yaml diff --git a/CHANGELOG b/CHANGELOG index b71e423..a2b963a 100644 --- a/CHANGELOG +++ b/CHANGELOG @@ -1,3 +1,6 @@ +* Mon Oct 23 2023 Steven Pritchard - 6.11.0 +- [puppetsync] Add EL9 support + * Wed Oct 11 2023 Steven Pritchard - 6.10.0 - [puppetsync] Updates for Puppet 8 - These updates may include the following: diff --git a/data/fips_enabled/is_false/os/AlmaLinux-9.yaml b/data/fips_enabled/is_false/os/AlmaLinux-9.yaml new file mode 100644 index 0000000..86be5b4 --- /dev/null +++ b/data/fips_enabled/is_false/os/AlmaLinux-9.yaml @@ -0,0 +1,10 @@ +--- +aide::aliases: + - 'ALLXTRAHASHES = sha1+sha256+sha512' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha512' diff --git a/data/fips_enabled/is_false/os/CentOS-9.yaml b/data/fips_enabled/is_false/os/CentOS-9.yaml new file mode 100644 index 0000000..86be5b4 --- /dev/null +++ b/data/fips_enabled/is_false/os/CentOS-9.yaml @@ -0,0 +1,10 @@ +--- +aide::aliases: + - 'ALLXTRAHASHES = sha1+sha256+sha512' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha512' diff --git a/data/fips_enabled/is_false/os/OracleLinux-9.yaml b/data/fips_enabled/is_false/os/OracleLinux-9.yaml new file mode 100644 index 0000000..86be5b4 --- /dev/null +++ b/data/fips_enabled/is_false/os/OracleLinux-9.yaml @@ -0,0 +1,10 @@ +--- +aide::aliases: + - 'ALLXTRAHASHES = sha1+sha256+sha512' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha512' diff --git a/data/fips_enabled/is_false/os/RedHat-9.yaml b/data/fips_enabled/is_false/os/RedHat-9.yaml new file mode 100644 index 0000000..86be5b4 --- /dev/null +++ b/data/fips_enabled/is_false/os/RedHat-9.yaml @@ -0,0 +1,10 @@ +--- +aide::aliases: + - 'ALLXTRAHASHES = sha1+sha256+sha512' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha512' diff --git a/data/fips_enabled/is_false/os/Rocky-9.yaml b/data/fips_enabled/is_false/os/Rocky-9.yaml new file mode 100644 index 0000000..86be5b4 --- /dev/null +++ b/data/fips_enabled/is_false/os/Rocky-9.yaml @@ -0,0 +1,10 @@ +--- +aide::aliases: + - 'ALLXTRAHASHES = sha1+sha256+sha512' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha512' diff --git a/data/fips_enabled/is_true/os/AlmaLinux-9.yaml b/data/fips_enabled/is_true/os/AlmaLinux-9.yaml new file mode 100644 index 0000000..7881537 --- /dev/null +++ b/data/fips_enabled/is_true/os/AlmaLinux-9.yaml @@ -0,0 +1,15 @@ +--- +# Only FIPS-supported hashes are sha1 and sha256 +aide::aliases: + - 'R = p+i+l+n+u+g+s+m+c+sha1+sha256' + - 'L = p+i+l+n+u+g+acl+xattrs' + - '> = p+i+l+n+u+g+S+acl+xattrs' + - 'ALLXTRAHASHES = sha1+sha256' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha1+sha256' + diff --git a/data/fips_enabled/is_true/os/CentOS-9.yaml b/data/fips_enabled/is_true/os/CentOS-9.yaml new file mode 100644 index 0000000..7881537 --- /dev/null +++ b/data/fips_enabled/is_true/os/CentOS-9.yaml @@ -0,0 +1,15 @@ +--- +# Only FIPS-supported hashes are sha1 and sha256 +aide::aliases: + - 'R = p+i+l+n+u+g+s+m+c+sha1+sha256' + - 'L = p+i+l+n+u+g+acl+xattrs' + - '> = p+i+l+n+u+g+S+acl+xattrs' + - 'ALLXTRAHASHES = sha1+sha256' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha1+sha256' + diff --git a/data/fips_enabled/is_true/os/OracleLinux-9.yaml b/data/fips_enabled/is_true/os/OracleLinux-9.yaml new file mode 100644 index 0000000..7881537 --- /dev/null +++ b/data/fips_enabled/is_true/os/OracleLinux-9.yaml @@ -0,0 +1,15 @@ +--- +# Only FIPS-supported hashes are sha1 and sha256 +aide::aliases: + - 'R = p+i+l+n+u+g+s+m+c+sha1+sha256' + - 'L = p+i+l+n+u+g+acl+xattrs' + - '> = p+i+l+n+u+g+S+acl+xattrs' + - 'ALLXTRAHASHES = sha1+sha256' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha1+sha256' + diff --git a/data/fips_enabled/is_true/os/RedHat-9.yaml b/data/fips_enabled/is_true/os/RedHat-9.yaml new file mode 100644 index 0000000..7881537 --- /dev/null +++ b/data/fips_enabled/is_true/os/RedHat-9.yaml @@ -0,0 +1,15 @@ +--- +# Only FIPS-supported hashes are sha1 and sha256 +aide::aliases: + - 'R = p+i+l+n+u+g+s+m+c+sha1+sha256' + - 'L = p+i+l+n+u+g+acl+xattrs' + - '> = p+i+l+n+u+g+S+acl+xattrs' + - 'ALLXTRAHASHES = sha1+sha256' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha1+sha256' + diff --git a/data/fips_enabled/is_true/os/Rocky-9.yaml b/data/fips_enabled/is_true/os/Rocky-9.yaml new file mode 100644 index 0000000..7881537 --- /dev/null +++ b/data/fips_enabled/is_true/os/Rocky-9.yaml @@ -0,0 +1,15 @@ +--- +# Only FIPS-supported hashes are sha1 and sha256 +aide::aliases: + - 'R = p+i+l+n+u+g+s+m+c+sha1+sha256' + - 'L = p+i+l+n+u+g+acl+xattrs' + - '> = p+i+l+n+u+g+S+acl+xattrs' + - 'ALLXTRAHASHES = sha1+sha256' + - 'EVERYTHING = R+ALLXTRAHASHES' + - 'NORMAL = R' + - 'DIR = p+i+n+u+g+acl+xattrs' + - 'PERMS = p+i+u+g+acl' + - 'LOG = >' + - 'LSPP = R' + - 'DATAONLY = p+n+u+g+s+acl+selinux+xattrs+sha1+sha256' + diff --git a/metadata.json b/metadata.json index 43ceef9..db18b2f 100644 --- a/metadata.json +++ b/metadata.json @@ -1,6 +1,6 @@ { "name": "simp-aide", - "version": "6.10.0", + "version": "6.11.0", "author": "SIMP Team", "summary": "manages AIDE", "license": "Apache-2.0", @@ -50,33 +50,38 @@ "operatingsystem": "CentOS", "operatingsystemrelease": [ "7", - "8" + "8", + "9" ] }, { "operatingsystem": "RedHat", "operatingsystemrelease": [ "7", - "8" + "8", + "9" ] }, { "operatingsystem": "OracleLinux", "operatingsystemrelease": [ "7", - "8" + "8", + "9" ] }, { "operatingsystem": "Rocky", "operatingsystemrelease": [ - "8" + "8", + "9" ] }, { "operatingsystem": "AlmaLinux", "operatingsystemrelease": [ - "8" + "8", + "9" ] } ],