From dec68c122c0595d5913f1d5c72f1a8268904442b Mon Sep 17 00:00:00 2001
From: Andrew Lukoshko <andrew.lukoshko@gmail.com>
Date: Fri, 7 Jun 2024 13:20:54 +0000
Subject: [PATCH] import CS scap-security-guide-0.1.73-1.el8

---
 .gitignore                                    |  2 +-
 .scap-security-guide.metadata                 |  2 +-
 ...-profiles-not-in-good-shape-for-RHEL.patch | 54 -------------------
 SPECS/scap-security-guide.spec                | 16 +++---
 4 files changed, 12 insertions(+), 62 deletions(-)
 delete mode 100644 SOURCES/hide-profiles-not-in-good-shape-for-RHEL.patch

diff --git a/.gitignore b/.gitignore
index 6078794..2d0be57 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,2 @@
 SOURCES/scap-security-guide-0.1.52-2.el7_9-rhel6.tar.bz2
-SOURCES/scap-security-guide-0.1.72.tar.bz2
+SOURCES/scap-security-guide-0.1.73.tar.bz2
diff --git a/.scap-security-guide.metadata b/.scap-security-guide.metadata
index bcf37b6..cd88ba0 100644
--- a/.scap-security-guide.metadata
+++ b/.scap-security-guide.metadata
@@ -1,2 +1,2 @@
 b22b45d29ad5a97020516230a6ef3140a91d050a SOURCES/scap-security-guide-0.1.52-2.el7_9-rhel6.tar.bz2
-e10feed870a3553b75798fbee88c27c95b84c7c2 SOURCES/scap-security-guide-0.1.72.tar.bz2
+de6e660b1e837d2b2b99487bf377fa259b027b49 SOURCES/scap-security-guide-0.1.73.tar.bz2
diff --git a/SOURCES/hide-profiles-not-in-good-shape-for-RHEL.patch b/SOURCES/hide-profiles-not-in-good-shape-for-RHEL.patch
deleted file mode 100644
index 40a7a28..0000000
--- a/SOURCES/hide-profiles-not-in-good-shape-for-RHEL.patch
+++ /dev/null
@@ -1,54 +0,0 @@
-From e0f62e3828b9deda102f247b3789f68aeb4e518d Mon Sep 17 00:00:00 2001
-From: Marcus Burghardt <maburgha@redhat.com>
-Date: Fri, 16 Feb 2024 12:07:36 +0100
-Subject: [PATCH] Hide profiles not in good shape for RHEL
-
-There are some profiles introduced long time ago but no longer
-maintained. For compatibility purposes they are not removed from
-datastream but are now hidden for RHEL8 to prevent people from
-using them.
----
- products/rhel8/profiles/cjis.profile     | 2 ++
- products/rhel8/profiles/rht-ccp.profile  | 2 ++
- products/rhel8/profiles/standard.profile | 2 ++
- 3 files changed, 6 insertions(+)
-
-diff --git a/products/rhel8/profiles/cjis.profile b/products/rhel8/profiles/cjis.profile
-index 30843b692e..c44c63516f 100644
---- a/products/rhel8/profiles/cjis.profile
-+++ b/products/rhel8/profiles/cjis.profile
-@@ -1,5 +1,7 @@
- documentation_complete: true
- 
-+hidden: true
-+
- metadata:
-     version: 5.4
-     SMEs:
-diff --git a/products/rhel8/profiles/rht-ccp.profile b/products/rhel8/profiles/rht-ccp.profile
-index 01133a9bde..3f6cb751c9 100644
---- a/products/rhel8/profiles/rht-ccp.profile
-+++ b/products/rhel8/profiles/rht-ccp.profile
-@@ -1,5 +1,7 @@
- documentation_complete: true
- 
-+hidden: true
-+
- title: 'Red Hat Corporate Profile for Certified Cloud Providers (RH CCP)'
- 
- description: |-
-diff --git a/products/rhel8/profiles/standard.profile b/products/rhel8/profiles/standard.profile
-index 11d72da2d9..79b491113a 100644
---- a/products/rhel8/profiles/standard.profile
-+++ b/products/rhel8/profiles/standard.profile
-@@ -1,5 +1,7 @@
- documentation_complete: true
- 
-+hidden: true
-+
- title: 'Standard System Security Profile for Red Hat Enterprise Linux 8'
- 
- description: |-
--- 
-2.43.1
-
diff --git a/SPECS/scap-security-guide.spec b/SPECS/scap-security-guide.spec
index 138ce60..98a5c45 100644
--- a/SPECS/scap-security-guide.spec
+++ b/SPECS/scap-security-guide.spec
@@ -5,8 +5,8 @@
 # global _default_patch_fuzz 2  # Normally shouldn't be needed as patches should apply cleanly
 
 Name:		scap-security-guide
-Version:	0.1.72
-Release:	2%{?dist}
+Version:	0.1.73
+Release:	1%{?dist}
 Summary:	Security guidance and baselines in SCAP formats
 License:	BSD-3-Clause
 Group:		Applications/System
@@ -14,8 +14,6 @@ URL:		https://github.com/ComplianceAsCode/content/
 Source0:	https://github.com/ComplianceAsCode/content/releases/download/v%{version}/scap-security-guide-%{version}.tar.bz2
 # Include tarball with last released rhel6 content
 Source1:	%{_static_rhel6_content}.tar.bz2
-# Patch hides cjis, rht-ccp and standard profiles for RHEL8
-Patch0: hide-profiles-not-in-good-shape-for-RHEL.patch
 
 BuildArch:	noarch
 
@@ -23,8 +21,7 @@ BuildRequires:	libxslt
 BuildRequires:	expat
 BuildRequires:	openscap-scanner >= 1.2.5
 BuildRequires:	cmake >= 2.8
-# To get python3 inside the buildroot require its path explicitly in BuildRequires
-BuildRequires: /usr/bin/python3
+BuildRequires:	python3-devel
 BuildRequires:	python%{python3_pkgversion}
 BuildRequires:	python%{python3_pkgversion}-jinja2
 BuildRequires:	python%{python3_pkgversion}-PyYAML
@@ -122,6 +119,13 @@ cp -r %{_builddir}/%{_static_rhel6_content}/guides %{buildroot}%{_docdir}/%{name
 %endif
 
 %changelog
+* Tue May 21 2024 Jan Černý <jcerny@redhat.com> - 0.1.73-1
+- Rebase scap-security-guide package to version 0.1.73 (RHEL-36733)
+- Change crypto policy used in the CUI profile to FIPS (RHEL-30346)
+- Fix file path identification in Rsyslog configuration (RHEL-17202)
+- Use a correct chrony server address in STIG profile (RHEL-1814)
+- Don't BuildRequire /usr/bin/python3 (RHEL-2244)
+
 * Fri Feb 16 2024 Marcus Burghardt <maburgha@redhat.com> - 0.1.72-2
 - Unlist profiles no longer maintained in RHEL8.