From 01f57563614a97cd4d2859a6b5d24d68c2d8900d Mon Sep 17 00:00:00 2001
From: Carmen Rata <carmen.rata@windriver.com>
Date: Mon, 20 Sep 2021 09:54:20 -0400
Subject: [PATCH] Puppet configuration for audit service parameter

Add puppet configuration for the auditd grub parameter, "audit".
Puppet configuration will be used to update the kernel parameter
when is being set using the service parameter mechanism.

Story: 2008849
Task: 43365

Change-Id: I813ab5be84f052572dab133e0d066a0c118e652e
Signed-off-by: Carmen Rata <carmen.rata@windriver.com>
---
 puppet-manifests/src/modules/platform/manifests/compute.pp | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/puppet-manifests/src/modules/platform/manifests/compute.pp b/puppet-manifests/src/modules/platform/manifests/compute.pp
index 3420001b2..ffb0c1a86 100644
--- a/puppet-manifests/src/modules/platform/manifests/compute.pp
+++ b/puppet-manifests/src/modules/platform/manifests/compute.pp
@@ -36,7 +36,8 @@ class platform::compute::grub::params (
   $m_hugepages = 'hugepagesz=2M hugepages=0',
   $g_hugepages = '',
   $default_pgsz = '',
-  $default_audit = 'audit=1 audit_backlog_limit=8192',
+  $g_audit = '',
+  $g_audit_backlog_limit = 'audit_backlog_limit=8192',
   $keys = [
     'kvm-intel.eptad',
     'default_hugepagesz',
@@ -58,7 +59,8 @@ class platform::compute::grub::params (
     $eptad = ''
   }
 
-  $grub_updates = strip("${eptad} ${g_hugepages} ${m_hugepages} ${default_pgsz} ${cpu_options} ${default_audit}")
+  $updated_audit = "audit=${g_audit}"
+  $grub_updates = strip("${eptad} ${g_hugepages} ${m_hugepages} ${default_pgsz} ${cpu_options} ${updated_audit} ${g_audit_backlog_limit}")
 }
 
 class platform::compute::grub::update