|
|
|
|
Changelog for libselinux-utils-2.0.94-5.2.el6.x86_64.rpm :
Mon Oct 24 14:00:00 2011 Dan Walsh - 2.0.94-5.2 - Apply libselinux patch to handle large groups. Resolves: #748471
Wed May 25 14:00:00 2011 Dan Walsh - 2.0.94-5.1 - Cleanup selinux_mnt on disabled machines Resolves: #706049 - Make restorecon python binding use realpath Resolves: #698583
Wed Apr 6 14:00:00 2011 Dan Walsh - 2.0.94-5 - Fix Library destructors to only free keys iff they were actually initialized Resolves: #658571
Thu Mar 10 13:00:00 2011 Miroslav Grepl - 2.0.94-4 - Library destructors for thread local storage keys from Eamon Walsh.
Fri Feb 4 13:00:00 2011 Miroslav Grepl - 2.0.94-3 - Thread local storage fixes from Eamon Walsh
Fri Aug 13 14:00:00 2010 Dan Walsh - 2.0.94-2 - Add ruby patch to allow libselinux to build on RHEL6 Resolves: #558910
Wed Mar 24 13:00:00 2010 Dan Walsh - 2.0.94-1
* Set errno=EINVAL for invalid contexts from Dan Walsh. * pkgconfig fix to respect LIBDIR from Dan Walsh. Resolves: #593788
Tue Mar 16 13:00:00 2010 Dan Walsh - 2.0.93-1 - Update to upstream * Show strerror for security_getenforce() by Colin Waters. * Merged selabel database support by KaiGai Kohei. * Modify netlink socket blocking code by KaiGai Kohei.
Sun Mar 7 13:00:00 2010 Dan Walsh - 2.0.92-1 - Update to upstream * Fix from Eric Paris to fix leak on non-selinux systems. * regenerate swig wrappers * pkgconfig fix to respect LIBDIR from Dan Walsh.
Wed Feb 24 13:00:00 2010 Dan Walsh - 2.0.91-1 - Update to upstream * Change the AVC to only audit the permissions specified by the policy, excluding any permissions specified via dontaudit or not specified via auditallow. * Fix compilation of label_file.c with latest glibc headers.
Mon Feb 22 13:00:00 2010 Dan Walsh - 2.0.90-5 - Fix potential doublefree on init
Thu Feb 18 13:00:00 2010 Dan Walsh - 2.0.90-4 - Fix libselinux.pc
Mon Jan 18 13:00:00 2010 Dan Walsh - 2.0.90-3 - Fix man page for selinuxdefcon
Mon Jan 4 13:00:00 2010 Dan Walsh - 2.0.90-2 - Free memory on disabled selinux boxes
Tue Dec 1 13:00:00 2009 Dan Walsh - 2.0.90-1 - Update to upstream * add/reformat man pages by Guido Trentalancia . * Change exception.sh to be called with bash by Manoj Srivastava
Mon Nov 2 13:00:00 2009 Dan Walsh - 2.0.89-2 - Fix selinuxdefcon man page
Mon Nov 2 13:00:00 2009 Dan Walsh - 2.0.89-1 - Update to upstream * Add pkgconfig file from Eamon Walsh.
Thu Oct 29 13:00:00 2009 Dan Walsh - 2.0.88-1 - Update to upstream * Rename and export selinux_reset_config()
Tue Sep 8 14:00:00 2009 Dan Walsh - 2.0.87-1 - Update to upstream * Add exception handling in libselinux from Dan Walsh. This uses a shell script called exception.sh to generate a swig interface file. * make swigify * Make matchpathcon print <> if path not found in fcontext file.
Tue Sep 8 14:00:00 2009 Dan Walsh - 2.0.86-2 - Eliminate -pthread switch in Makefile
Tue Sep 8 14:00:00 2009 Dan Walsh - 2.0.86-1 - Update to upstream * Removal of reference counting on userspace AVC SID\'s.
Sat Jul 25 14:00:00 2009 Fedora Release Engineering - 2.0.85-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
Tue Jul 7 14:00:00 2009 Dan Walsh - 2.0.85-1 - Update to upstream * Reverted Tomas Mraz\'s fix for freeing thread local storage to avoid pthread dependency. * Removed fini_context_translations() altogether. * Merged lazy init patch from Stephen Smalley based on original patch by Steve Grubb.
Tue Jul 7 14:00:00 2009 Dan Walsh - 2.0.84-1 - Update to upstream * Add per-service seuser support from Dan Walsh. * Let load_policy gracefully handle selinuxfs being mounted from Stephen Smalley. * Check /proc/filesystems before /proc/mounts for selinuxfs from Eric Paris.
Wed Jun 24 14:00:00 2009 Dan Walsh - 2.0.82-2 - Add provices ruby(selinux)
Tue Jun 23 14:00:00 2009 Dan Walsh - 2.0.82-1 - Update to upstream * Fix improper use of thread local storage from Tomas Mraz . * Label substitution support from Dan Walsh. * Support for labeling virtual machine images from Dan Walsh.
Mon May 18 14:00:00 2009 Dan Walsh - 2.0.81-1 - Update to upstream * Trim / from the end of input paths to matchpathcon from Dan Walsh. * Fix leak in process_line in label_file.c from Hiroshi Shinji. * Move matchpathcon to /sbin, add matchpathcon to clean target from Dan Walsh. * getdefaultcon to print just the correct match and add verbose option from Dan Walsh.
Wed Apr 8 14:00:00 2009 Dan Walsh - 2.0.80-1 - Update to upstream * deny_unknown wrapper function from KaiGai Kohei. * security_compute_av_flags API from KaiGai Kohei. * Netlink socket management and callbacks from KaiGai Kohei.
Fri Apr 3 14:00:00 2009 Dan Walsh - 2.0.79-6 - Fix Memory Leak
Thu Apr 2 14:00:00 2009 Dan Walsh - 2.0.79-5 - Fix crash in python
Sun Mar 29 14:00:00 2009 Dan Walsh - 2.0.79-4 - Add back in additional interfaces
Fri Mar 27 13:00:00 2009 Dan Walsh - 2.0.79-3 - Add back in av_decision to python swig
Thu Mar 12 13:00:00 2009 Dan Walsh - 2.0.79-1 - Update to upstream * Netlink socket handoff patch from Adam Jackson. * AVC caching of compute_create results by Eric Paris.
Tue Mar 10 13:00:00 2009 Dan Walsh - 2.0.78-5 - Add patch from ajax to accellerate X SELinux - Update eparis patch
Mon Mar 9 13:00:00 2009 Dan Walsh - 2.0.78-4 - Add eparis patch to accellerate Xwindows performance
Mon Mar 9 13:00:00 2009 Dan Walsh - 2.0.78-3 - Fix URL
Fri Mar 6 13:00:00 2009 Dan Walsh - 2.0.78-2 - Add substitute pattern - matchpathcon output <> on ENOENT
Mon Mar 2 13:00:00 2009 Dan Walsh - 2.0.78-1 - Update to upstream * Fix incorrect conversion in discover_class code.
Wed Feb 25 13:00:00 2009 Fedora Release Engineering - 2.0.77-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
Wed Feb 18 13:00:00 2009 Dan Walsh - 2.0.77-5 - Add - selinux_virtual_domain_context_path - selinux_virtual_image_context_path
Tue Jan 6 13:00:00 2009 Dan Walsh - 2.0.77-3 - Throw exeptions in python swig bindings on failures
Tue Jan 6 13:00:00 2009 Dan Walsh - 2.0.77-2 - Fix restorecon python code
Tue Jan 6 13:00:00 2009 Dan Walsh - 2.0.77-1 - Update to upstream
Tue Dec 16 13:00:00 2008 Dan Walsh - 2.0.76-6 - Strip trailing / for matchpathcon
Tue Dec 16 13:00:00 2008 Dan Walsh l - 2.0.76-5 - Fix segfault if seusers file does not work
Fri Dec 12 13:00:00 2008 Dan Walsh - 2.0.76-4 - Add new function getseuser which will take username and service and return - seuser and level. ipa will populate file in future. - Change selinuxdefcon to return just the context by default
Sat Nov 29 13:00:00 2008 Ignacio Vazquez-Abrams - 2.0.76-2 - Rebuild for Python 2.6
Mon Nov 17 13:00:00 2008 Dan Walsh - 2.0.76-1 - Update to Upstream * Allow shell-style wildcards in x_contexts file.
Mon Nov 17 13:00:00 2008 Dan Walsh - 2.0.75-2 - Eamon Walsh Patch - libselinux: allow shell-style wildcarding in X names - Add Restorecon/Install python functions from Luke Macken
Fri Nov 7 13:00:00 2008 Dan Walsh - 2.0.75-1 - Update to Upstream * Correct message types in AVC log messages. * Make matchpathcon -V pass mode from Dan Walsh. * Add man page for selinux_file_context_cmp from Dan Walsh.
Tue Sep 30 14:00:00 2008 Dan Walsh - 2.0.73-1 - Update to Upstream * New man pages from Dan Walsh. * Update flask headers from refpolicy trunk from Dan Walsh.
Fri Sep 26 14:00:00 2008 Dan Walsh - 2.0.71-6 - Fix matchpathcon -V call
Tue Sep 9 14:00:00 2008 Dan Walsh - 2.0.71-5 - Add flask definitions for open, X and nlmsg_tty_audit
Tue Sep 9 14:00:00 2008 Dan Walsh - 2.0.71-4 - Add missing get/setkeycreatecon man pages
Tue Sep 9 14:00:00 2008 Dan Walsh - 2.0.71-3 - Split out utilities
Tue Sep 9 14:00:00 2008 Dan Walsh - 2.0.71-2 - Add missing man page links for [lf]getfilecon
Tue Aug 5 14:00:00 2008 Dan Walsh - 2.0.71-1 - Update to Upstream * Add group support to seusers using %groupname syntax from Dan Walsh. * Mark setrans socket close-on-exec from Stephen Smalley. * Only apply nodups checking to base file contexts from Stephen Smalley.
Fri Aug 1 14:00:00 2008 Dan Walsh - 2.0.70-1 - Update to Upstream * Merge ruby bindings from Dan Walsh. - Add support for Linux groups to getseuserbyname
Fri Aug 1 14:00:00 2008 Dan Walsh - 2.0.69-2 - Allow group handling in getseuser call
Tue Jul 29 14:00:00 2008 Dan Walsh - 2.0.69-1 - Update to Upstream * Handle duplicate file context regexes as a fatal error from Stephen Smalley. This prevents adding them via semanage. * Fix audit2why shadowed variables from Stephen Smalley. * Note that freecon NULL is legal in man page from Karel Zak.
Wed Jul 9 14:00:00 2008 Dan Walsh - 2.0.67-4 - Add ruby support for puppet
Tue Jul 8 14:00:00 2008 Dan Walsh - 2.0.67-3 - Rebuild for new libsepol
Sun Jun 29 14:00:00 2008 Dan Walsh - 2.0.67-2 - Add Karel Zak patch for freecon man page
Sun Jun 22 14:00:00 2008 Dan Walsh - 2.0.67-1 - Update to Upstream * New and revised AVC, label, and mapping man pages from Eamon Walsh. * Add swig python bindings for avc interfaces from Dan Walsh.
Sun Jun 22 14:00:00 2008 Dan Walsh - 2.0.65-1 - Update to Upstream * Fix selinux_file_context_verify() and selinux_lsetfilecon_default() to call matchpathcon_init_prefix if not already initialized. * Add -q qualifier for -V option of matchpathcon and change it to indicate whether verification succeeded or failed via exit status.
Fri May 16 14:00:00 2008 Dan Walsh - 2.0.64-3 - libselinux no longer neets to telnet -u in post install
Wed May 7 14:00:00 2008 Dan Walsh - 2.0.64-2 - Add sedefaultcon and setconlist commands to dump login context
Tue Apr 22 14:00:00 2008 Dan Walsh - 2.0.64-1 - Update to Upstream * Fixed selinux_set_callback man page. * Try loading the max of the kernel-supported version and the libsepol-supported version when no manipulation of the binary policy is needed from Stephen Smalley. * Fix memory leaks in matchpathcon from Eamon Walsh.
Wed Apr 16 14:00:00 2008 Dan Walsh - 2.0.61-4 - Add Xavior Toth patch for security_id_t in swig
Thu Apr 10 14:00:00 2008 Dan Walsh - 2.0.61-3 - Add avc.h to swig code
Wed Apr 9 14:00:00 2008 Dan Walsh - 2.0.61-2 - Grab the latest policy for the kernel
Tue Apr 1 14:00:00 2008 Dan Walsh - 2.0.61-1 - Update to Upstream * Man page typo fix from Jim Meyering.
Sun Mar 23 13:00:00 2008 Dan Walsh - 2.0.60-1 - Update to Upstream * Changed selinux_init_load_policy() to not warn about a failed mount of selinuxfs if selinux was disabled in the kernel.
Thu Mar 13 13:00:00 2008 Dan Walsh - 2.0.59-2 - Fix matchpathcon memory leak
Fri Feb 29 13:00:00 2008 Dan Walsh - 2.0.59-1 - Update to Upstream * Merged new X label \"poly_selection\" namespace from Eamon Walsh.
Thu Feb 28 13:00:00 2008 Dan Walsh - 2.0.58-1 - Update to Upstream * Merged reset_selinux_config() for load policy from Dan Walsh.
Thu Feb 28 13:00:00 2008 Dan Walsh - 2.0.57-2 - Reload library on loading of policy to handle chroot
Mon Feb 25 13:00:00 2008 Dan Walsh - 2.0.57-1 - Update to Upstream * Merged avc_has_perm() errno fix from Eamon Walsh.
Fri Feb 22 13:00:00 2008 Dan Walsh - 2.0.56-1 - Update to Upstream * Regenerated Flask headers from refpolicy flask definitions.
Wed Feb 13 13:00:00 2008 Dan Walsh - 2.0.55-1 - Update to Upstream * Merged compute_member AVC function and manpages from Eamon Walsh. * Provide more error reporting on load policy failures from Stephen Smalley.
Fri Feb 8 13:00:00 2008 Dan Walsh - 2.0.53-1 - Update to Upstream * Merged new X label \"poly_prop\" namespace from Eamon Walsh.
Wed Feb 6 13:00:00 2008 Dan Walsh - 2.0.52-1 - Update to Upstream * Disable setlocaldefs if no local boolean or users files are present from Stephen Smalley. * Skip userspace preservebools processing for Linux >= 2.6.22 from Stephen Smalley.
Tue Jan 29 13:00:00 2008 Dan Walsh - 2.0.50-1 - Update to Upstream * Merged fix for audit2why from Dan Walsh.
Fri Jan 25 13:00:00 2008 Dan Walsh - 2.0.49-2 - Fix audit2why to grab latest policy versus the one selected by the kernel
Wed Jan 23 13:00:00 2008 Dan Walsh - 2.0.49-1
* Merged audit2why python binding from Dan Walsh.
Wed Jan 23 13:00:00 2008 Dan Walsh - 2.0.48-1
* Merged updated swig bindings from Dan Walsh, including typemap for pid_t.
Mon Jan 21 13:00:00 2008 Dan Walsh - 2.0.47-4 - Update to use libsepol-static library
Wed Jan 16 13:00:00 2008 Adel Gadllah - 2.0.47-3 - Move libselinux.a to -static package - Spec cleanups
Tue Jan 15 13:00:00 2008 Dan Walsh - 2.0.47-2 - Put back libselinux.a
Fri Jan 11 13:00:00 2008 Dan Walsh - 2.0.47-1 - Fix memory references in audit2why and change to use tuples - Update to Upstream * Fix for the avc: granted null message bug from Stephen Smalley.
Fri Jan 11 13:00:00 2008 Dan Walsh - 2.0.46-6 - Fix __init__.py specification
Tue Jan 8 13:00:00 2008 Dan Walsh - 2.0.46-5 - Add audit2why python bindings
Tue Jan 8 13:00:00 2008 Dan Walsh - 2.0.46-4 - Add pid_t typemap for swig bindings
Thu Jan 3 13:00:00 2008 Dan Walsh - 2.0.46-3 - smp_mflag
Thu Jan 3 13:00:00 2008 Dan Walsh - 2.0.46-2 - Fix spec file caused by spec review
Fri Nov 30 13:00:00 2007 Dan Walsh - 2.0.46-1 - Upgrade to upstream * matchpathcon(8) man page update from Dan Walsh.
Fri Nov 30 13:00:00 2007 Dan Walsh - 2.0.45-1 - Upgrade to upstream * dlopen libsepol.so.1 rather than libsepol.so from Stephen Smalley. * Based on a suggestion from Ulrich Drepper, defer regex compilation until we have a stem match, by Stephen Smalley. * A further optimization would be to defer regex compilation until we have a complete match of the constant prefix of the regex - TBD.
Thu Nov 15 13:00:00 2007 Dan Walsh - 2.0.43-1 - Upgrade to upstream * Regenerated Flask headers from policy.
Thu Nov 15 13:00:00 2007 Dan Walsh - 2.0.42-1 - Upgrade to upstream * AVC enforcing mode override patch from Eamon Walsh. * Aligned attributes in AVC netlink code from Eamon Walsh. - Move libselinux.so back into devel package, procps has been fixed
Tue Nov 6 13:00:00 2007 Dan Walsh - 2.0.40-1 - Upgrade to upstream * Merged refactored AVC netlink code from Eamon Walsh. * Merged new X label namespaces from Eamon Walsh. * Bux fix and minor refactoring in string representation code.
Fri Oct 5 14:00:00 2007 Dan Walsh - 2.0.37-1 - Upgrade to upstream * Merged selinux_get_callback, avc_open, empty string mapping from Eamon Walsh.
Fri Sep 28 14:00:00 2007 Dan Walsh - 2.0.36-1 - Upgrade to upstream * Fix segfault resulting from missing file_contexts file.
Thu Sep 27 14:00:00 2007 Dan Walsh - 2.0.35-2 - Fix segfault on missing file_context file
Wed Sep 26 14:00:00 2007 Dan Walsh - 2.0.35-1 - Upgrade to upstream * Make netlink socket close-on-exec to avoid descriptor leakage from Dan Walsh. * Pass CFLAGS when using gcc for linking from Dennis Gilmore.
Mon Sep 24 14:00:00 2007 Dan Walsh - 2.0.34-3 - Add sparc patch to from Dennis Gilmore to build on Sparc platform
Mon Sep 24 14:00:00 2007 Dan Walsh - 2.0.34-2 - Remove leaked file descriptor
Tue Sep 18 14:00:00 2007 Dan Walsh - 2.0.34-1 - Upgrade to latest from NSA * Fix selabel option flag setting for 64-bit from Stephen Smalley.
Tue Sep 18 14:00:00 2007 Dan Walsh - 2.0.33-2 - Change matchpatcon to use syslog instead of syserror
Thu Sep 13 14:00:00 2007 Dan Walsh - 2.0.33-1 - Upgrade to latest from NSA * Re-map a getxattr return value of 0 to a getfilecon return value of -1 with errno EOPNOTSUPP from Stephen Smalley. * Fall back to the compat code for security_class_to_string and security_av_perm_to_string from Stephen Smalley. * Fix swig binding for rpm_execcon from James Athey.
Thu Sep 6 14:00:00 2007 Dan Walsh - 2.0.31-4 - Apply James Athway patch to fix rpm_execcon python binding
Tue Aug 28 14:00:00 2007 Dan Walsh - 2.0.31-3 - Move libselinux.so back into main package, breaks procps
Thu Aug 23 14:00:00 2007 Dan Walsh - 2.0.31-2 - Upgrade to upstream * Fix file_contexts.homedirs path from Todd Miller.
Tue Aug 21 14:00:00 2007 Dan Walsh - 2.0.30-2 - Remove requirement on setransd, Moved to selinux-policy-mls
Fri Aug 10 14:00:00 2007 Dan Walsh - 2.0.30-1 - Move libselinux.so into devel package - Upgrade to upstream * Fix segfault resulting from uninitialized print-callback pointer. * Added x_contexts path function patch from Eamon Walsh. * Fix build for EMBEDDED=y from Yuichi Nakamura. * Fix markup problems in selinux man pages from Dan Walsh.
Fri Aug 3 14:00:00 2007 Dan Walsh - 2.0.29-1 - Upgrade to upstream * Updated version for stable branch. * Added x_contexts path function patch from Eamon Walsh. * Fix build for EMBEDDED=y from Yuichi Nakamura. * Fix markup problems in selinux man pages from Dan Walsh. * Updated av_permissions.h and flask.h to include new nscd permissions from Dan Walsh. * Added swigify to top-level Makefile from Dan Walsh. * Fix for string_to_security_class segfault on x86_64 from Stephen Smalley.
Mon Jul 23 14:00:00 2007 Dan Walsh - 2.0.24-3 - Apply Steven Smalley patch to fix segfault in string_to_security_class
Wed Jul 18 14:00:00 2007 Dan Walsh - 2.0.24-2 - Fix matchpathcon to set default myprintf
Mon Jul 16 14:00:00 2007 Dan Walsh - 2.0.24-1 - Upgrade to upstream * Fix for getfilecon() for zero-length contexts from Stephen Smalley.
Wed Jul 11 14:00:00 2007 Dan Walsh - 2.0.23-3 - Update to match flask/access_vectors in policy
Tue Jul 10 14:00:00 2007 Dan Walsh - 2.0.23-2 - Fix man page markup lanquage for translations
Tue Jun 26 14:00:00 2007 Dan Walsh - 2.0.23-1 - Fix semanage segfault on x86 platform
Thu Jun 21 14:00:00 2007 Dan Walsh - 2.0.22-1 - Upgrade to upstream * Labeling and callback interface patches from Eamon Walsh.
Tue Jun 19 14:00:00 2007 Dan Walsh - 2.0.21-2 - Refactored swig
Mon Jun 11 14:00:00 2007 Dan Walsh - 2.0.21-1 - Upgrade to upstream * Class and permission mapping support patches from Eamon Walsh. * Object class discovery support patches from Chris PeBenito. * Refactoring and errno support in string representation code.
Fri Jun 1 14:00:00 2007 Dan Walsh - 2.0.18-1 - Upgrade to upstream * Merged patch to reduce size of libselinux and remove need for libsepol for embedded systems from Yuichi Nakamura. This patch also turns the link-time dependency on libsepol into a runtime (dlopen) dependency even in the non-embedded case.
2.0.17 2007-05-31 * Updated Lindent script and reindented two header files.
Fri May 4 14:00:00 2007 Dan Walsh - 2.0.16-1 - Upgrade to upstream * Merged additional swig python bindings from Dan Walsh. * Merged helpful message when selinuxfs mount fails patch from Dax Kelson.
Tue Apr 24 14:00:00 2007 Dan Walsh - 2.0.14-1 - Upgrade to upstream * Merged build fix for avc_internal.c from Joshua Brindle.
Mon Apr 23 14:00:00 2007 Dan Walsh - 2.0.13-2 - Add get_context_list funcitions to swig file
Thu Apr 12 14:00:00 2007 Dan Walsh - 2.0.13-1 - Upgrade to upstream * Merged rpm_execcon python binding fix, matchpathcon man page fix, and getsebool -a handling for EACCES from Dan Walsh.
Thu Apr 12 14:00:00 2007 Dan Walsh - 2.0.12-2 - Add missing interface
Wed Apr 11 14:00:00 2007 Dan Walsh - 2.0.12-1 - Upgrade to upstream * Merged support for getting initial contexts from James Carter.
Mon Apr 9 14:00:00 2007 Dan Walsh - 2.0.11-1 - Upgrade to upstream * Merged userspace AVC patch to follow kernel\'s behavior for permissive mode in caching previous denials from Eamon Walsh. * Merged sidput(NULL) patch from Eamon Walsh.
Thu Apr 5 14:00:00 2007 Dan Walsh - 2.0.9-2 - Make rpm_exec swig work
Tue Mar 27 14:00:00 2007 Dan Walsh - 2.0.9-1 - Upgrade to upstream * Merged class/av string conversion and avc_compute_create patch from Eamon Walsh.
Tue Mar 27 14:00:00 2007 Dan Walsh - 2.0.8-1 - Upgrade to upstream * Merged fix for avc.h #include\'s from Eamon Walsh.
Thu Mar 22 13:00:00 2007 Dan Walsh - 2.0.7-2 - Add stdint.h to avc.h
Mon Mar 12 13:00:00 2007 Dan Walsh - 2.0.7-1
* Merged patch to drop support for CACHETRANS=0 config option from Steve Grubb. * Merged patch to drop support for old /etc/sysconfig/selinux and /etc/security policy file layout from Steve Grubb.
Thu Mar 8 13:00:00 2007 Dan Walsh - 2.0.5-2 - Do not fail on permission denied in getsebool
Tue Feb 27 13:00:00 2007 Dan Walsh - 2.0.5-1 - Upgrade to upstream * Merged init_selinuxmnt() and is_selinux_enabled() improvements from Steve Grubb.
Wed Feb 21 13:00:00 2007 Dan Walsh - 2.0.4-1 - Upgrade to upstream * Removed sending of setrans init message. * Merged matchpathcon memory leak fix from Steve Grubb.
Tue Feb 20 13:00:00 2007 Dan Walsh - 2.0.2-1 - Upgrade to upstream * Merged more swig initializers from Dan Walsh.
Tue Feb 20 13:00:00 2007 Dan Walsh - 2.0.1-1 - Upgrade to upstream * Merged patch from Todd Miller to convert int types over to C99 style.
Wed Feb 7 13:00:00 2007 Dan Walsh - 2.0.0-1
* Merged patch from Todd Miller to remove sscanf in matchpathcon.c because of the use of the non-standard format (original patch changed for style). * Merged patch from Todd Miller to fix memory leak in matchpathcon.c.
Fri Jan 19 13:00:00 2007 Dan Walsh - 1.34.0-2 - Add context function to python to split context into 4 parts
Fri Jan 19 13:00:00 2007 Dan Walsh - 1.34.0-1 - Upgrade to upstream * Updated version for stable branch.
Wed Jan 17 13:00:00 2007 Dan Walsh - 1.33.6-1 - Upgrade to upstream * Merged man page updates to make \"apropos selinux\" work from Dan Walsh.
Mon Jan 15 13:00:00 2007 Dan Walsh - 1.33.5-1 - Upgrade to upstream * Merged getdefaultcon utility from Dan Walsh.
Mon Jan 15 13:00:00 2007 Dan Walsh - 1.33.4-3 - Add Ulrich NSCD__GETSERV and NSCD__SHMEMGRP for Uli
Fri Jan 12 13:00:00 2007 Dan Walsh - 1.33.4-2 - Add reference to selinux man page in all man pages to make apropos work Resolves: # 217881
Thu Jan 11 13:00:00 2007 Dan Walsh - 1.33.4-1 - Upstream wanted some minor changes, upgrading to keep api the same - Upgrade to upstream * Merged selinux_check_securetty_context() and support from Dan Walsh. Resolves: #200110
Fri Jan 5 13:00:00 2007 Dan Walsh - 1.33.3-3 - Cleanup patch
Fri Jan 5 13:00:00 2007 Dan Walsh - 1.33.3-2 - Add securetty handling Resolves: #200110
Thu Jan 4 13:00:00 2007 Dan Walsh - 1.33.3-1 - Upgrade to upstream * Merged patch for matchpathcon utility to use file mode information when available from Dan Walsh.
Thu Dec 7 13:00:00 2006 Jeremy Katz - 1.33.2-4 - rebuild against python 2.5
Wed Dec 6 13:00:00 2006 Dan Walsh - 1.33.2-3 - Fix matchpathcon to lstat files
Thu Nov 30 13:00:00 2006 Dan Walsh - 1.33.2-2 - Update man page
Tue Nov 14 13:00:00 2006 Dan Walsh - 1.33.2-1 - Upgrade to upstream
Fri Nov 3 13:00:00 2006 Dan Walsh - 1.33.1-2 - Add James Antill patch for login verification of MLS Levels - MLS ragnes need to be checked, Eg. login/cron. This patch adds infrastructure.
Tue Oct 24 14:00:00 2006 Dan Walsh - 1.33.1-1 - Upgrade to latest from NSA * Merged updated flask definitions from Darrel Goeddel. This adds the context security class, and also adds the string definitions for setsockcreate and polmatch.
Tue Oct 17 14:00:00 2006 Dan Walsh - 1.32-1 - Upgrade to latest from NSA * Updated version for release.
Sun Oct 1 14:00:00 2006 Jesse Keating - 1.30.29-2 - rebuilt for unwind info generation, broken in gcc-4.1.1-21
Fri Sep 29 14:00:00 2006 Dan Walsh - 1.30.29-1 - Upgrade to latest from NSA * Merged av_permissions.h update from Steve Grubb, adding setsockcreate and polmatch definitions.
Wed Sep 27 14:00:00 2006 Jeremy Katz - 1.30.28-3 - really make -devel depend on libsepol-devel
Mon Sep 25 14:00:00 2006 Dan Walsh - 1.30.28-2 - Add sgrubb patch for polmatch
Wed Sep 13 14:00:00 2006 Dan Walsh - 1.30.28-1 - Upgrade to latest from NSA * Merged patch from Steve Smalley to fix SIGPIPE in setrans_client
Tue Sep 5 14:00:00 2006 Jeremy Katz - 1.30.27-2 - have -devel require libsepol-devel
Thu Aug 24 14:00:00 2006 Dan Walsh - 1.30.27-1 - Upgrade to latest from NSA * Merged patch to not log avc stats upon a reset from Steve Grubb. * Applied patch to revert compat_net setting upon policy load. * Merged file context homedir and local path functions from Chris PeBenito.
Fri Aug 18 14:00:00 2006 Jesse Keating - 1.20.26-2 - rebuilt with latest binutils to pick up 64K -z commonpagesize on ppc * (#203001)
Sat Aug 12 14:00:00 2006 Dan Walsh - 1.30.25-1 - Upgrade to latest from NSA * Merged file context homedir and local path functions from Chris PeBenito. * Rework functions that access /proc/pid/attr to access the per-thread nodes, and unify the code to simplify maintenance.
Fri Aug 11 14:00:00 2006 Dan Walsh - 1.30.24-1 - Upgrade to latest from NSA * Merged return value fix for *getfilecon() from Dan Walsh. * Merged sockcreate interfaces from Eric Paris.
Wed Aug 9 14:00:00 2006 Dan Walsh - 1.30.22-2 - Fix translation return codes to return size of buffer
Tue Aug 1 14:00:00 2006 Dan Walsh - 1.30.22-1 - Upgrade to latest from NSA * Merged no-tls-direct-seg-refs patch from Jeremy Katz. * Merged netfilter_contexts support patch from Chris PeBenito.
Tue Aug 1 14:00:00 2006 Dan Walsh - 1.30.20-1 - Upgrade to latest from NSA * Merged context_ *_set errno patch from Jim Meyering.
Tue Aug 1 14:00:00 2006 Jeremy Katz - 1.30.19-5 - only build non-fpic objects with -mno-tls-direct-seg-refs
Tue Aug 1 14:00:00 2006 Jeremy Katz - 1.30.19-4 - build with -mno-tls-direct-seg-refs on x86 to avoid triggering segfaults with xen (#200783)
Mon Jul 17 14:00:00 2006 Dan Walsh 1.30.19-3 - Rebuild for new gcc
Tue Jul 11 14:00:00 2006 Dan Walsh 1.30.19-2 - Fix libselinux to not telinit during installs
Tue Jul 4 14:00:00 2006 Dan Walsh 1.30.19-1 - Upgrade to latest from NSA * Lindent. * Merged {get,set}procattrcon patch set from Eric Paris. * Merged re-base of keycreate patch originally by Michael LeMay from Eric Paris. * Regenerated Flask headers from refpolicy. * Merged patch from Dan Walsh with: - Added selinux_file_context_{cmp,verify}. - Added selinux_lsetfilecon_default. - Delay translation of contexts in matchpathcon.
Wed Jun 21 14:00:00 2006 Dan Walsh 1.30.15-5 - Yet another change to matchpathcon
Wed Jun 21 14:00:00 2006 Dan Walsh 1.30.15-4 - Turn off error printing in library. Need to compile with DEBUG to get it back
Wed Jun 21 14:00:00 2006 Dan Walsh 1.30.15-3 - Fix error reporting of matchpathcon
Mon Jun 19 14:00:00 2006 Dan Walsh 1.30.15-2 - Add function to compare file context on disk versus contexts in file_contexts file.
Fri Jun 16 14:00:00 2006 Dan Walsh 1.30.15-1 - Upgrade to latest from NSA * Merged patch from Dan Walsh with: * Added selinux_getpolicytype() function. * Modified setrans code to skip processing if !mls_enabled. * Set errno in the !selinux_mnt case. * Allocate large buffers from the heap, not on stack. Affects is_context_customizable, selinux_init_load_policy, and selinux_getenforcemode.
Thu Jun 8 14:00:00 2006 Dan Walsh 1.30.12-2 - Add selinux_getpolicytype()
Thu Jun 1 14:00:00 2006 Dan Walsh 1.30.12-1 - Upgrade to latest from NSA * Merged !selinux_mnt checks from Ian Kent.
Thu Jun 1 14:00:00 2006 Dan Walsh 1.30.11-2 - Check for selinux_mnt == NULL
Tue May 30 14:00:00 2006 Dan Walsh 1.30.11-1
* Merged matchmediacon and trans_to_raw_context fixes from Serge Hallyn.
Fri May 26 14:00:00 2006 Dan Walsh 1.30.10-4 - Remove getseuser
Thu May 25 14:00:00 2006 Dan Walsh 1.30.10-3 - Bump requires to grab latest libsepol
Tue May 23 14:00:00 2006 Dan Walsh 1.30.10-2 - Add BuildRequires for swig
Tue May 23 14:00:00 2006 Dan Walsh 1.30.10-1 - Upgrade to latest from NSA * Merged simple setrans client cache from Dan Walsh. Merged avcstat patch from Russell Coker. * Modified selinux_mkload_policy() to also set /selinux/compat_net appropriately for the loaded policy.
Thu May 18 14:00:00 2006 Dan Walsh 1.30.8-1 - More fixes for translation cache - Upgrade to latest from NSA * Added matchpathcon_fini() function to free memory allocated by matchpathcon_init().
Wed May 17 14:00:00 2006 Dan Walsh 1.30.7-2 - Add simple cache to improve translation speed
Tue May 16 14:00:00 2006 Dan Walsh 1.30.7-1 - Upgrade to latest from NSA * Merged setrans client cleanup patch from Steve Grubb.
Tue May 9 14:00:00 2006 Dan Walsh 1.30.6-2 - Add Russell\'s AVC patch to handle large numbers
Mon May 8 14:00:00 2006 Dan Walsh 1.30.6-1 - Upgrade to latest from NSA * Merged getfscreatecon man page fix from Dan Walsh. * Updated booleans(8) man page to drop references to the old booleans file and to note that setsebool can be used to set the boot-time defaults via -P.
Mon May 8 14:00:00 2006 Dan Walsh 1.30.5-1 - Upgrade to latest from NSA * Merged fix warnings patch from Karl MacMillan. * Merged setrans client support from Dan Walsh. This removes use of libsetrans. * Merged patch to eliminate use of PAGE_SIZE constant from Dan Walsh. * Merged swig typemap fixes from Glauber de Oliveira Costa.
Wed May 3 14:00:00 2006 Dan Walsh 1.30.3-3 - Change the way translations work, Use setransd/remove libsetrans
Tue May 2 14:00:00 2006 Dan Walsh 1.30.3-2 - Add selinuxswig fixes - Stop using PAGE_SIZE and start using sysconf(_SC_PAGE_SIZE)
Fri Apr 14 14:00:00 2006 Dan Walsh 1.30.3-1 - Upgrade to latest from NSA * Added distclean target to Makefile. * Regenerated swig files. * Changed matchpathcon_init to verify that the spec file is a regular file. * Merged python binding t_output_helper removal patch from Dan Walsh.
Tue Apr 11 14:00:00 2006 Dan Walsh 1.30.1-2 - Fix python bindings for matchpathcon - Fix booleans man page
Mon Mar 27 14:00:00 2006 Dan Walsh 1.30.1-1
* Merged Makefile PYLIBVER definition patch from Dan Walsh.
Fri Mar 10 13:00:00 2006 Dan Walsh 1.30-1 - Make some fixes so it will build on RHEL4 - Upgrade to latest from NSA * Updated version for release. * Altered rpm_execcon fallback logic for permissive mode to also handle case where /selinux/enforce is not available.
Fri Feb 10 13:00:00 2006 Jesse Keating - 1.29.7-1.2 - bump again for double-long bug on ppc(64)
Tue Feb 7 13:00:00 2006 Jesse Keating - 1.29.7-1.1 - rebuilt for new gcc4.1 snapshot and glibc changes
Fri Jan 20 13:00:00 2006 Dan Walsh 1.29.7-1 - Upgrade to latest from NSA * Merged install-pywrap Makefile patch from Joshua Brindle.
Wed Jan 18 13:00:00 2006 Dan Walsh 1.29.6-1 - Upgrade to latest from NSA * Merged pywrap Makefile patch from Dan Walsh.
Fri Jan 13 13:00:00 2006 Dan Walsh 1.29.5-2 - Split out pywrap in Makefile
Fri Jan 13 13:00:00 2006 Dan Walsh 1.29.5-1 - Upgrade to latest from NSA * Added getseuser test program.
Sat Jan 7 13:00:00 2006 Dan Walsh 1.29.4-1 - Upgrade to latest from NSA * Added format attribute to myprintf in matchpathcon.c and removed obsoleted rootlen variable in init_selinux_config().
Wed Jan 4 13:00:00 2006 Dan Walsh 1.29.3-2 - Build with new libsepol
Wed Jan 4 13:00:00 2006 Dan Walsh 1.29.3-1 - Upgrade to latest from NSA * Merged several fixes and improvements from Ulrich Drepper (Red Hat), including: - corrected use of getline - further calls to __fsetlocking for local files - use of strdupa and asprintf - proper handling of dirent in booleans code - use of -z relro - several other optimizations * Merged getpidcon python wrapper from Dan Walsh (Red Hat).
Sat Dec 24 13:00:00 2005 Dan Walsh 1.29.2-4 - Add build requires line for libsepol-devel
Tue Dec 20 13:00:00 2005 Dan Walsh 1.29.2-3 - Fix swig call for getpidcon
Mon Dec 19 13:00:00 2005 Dan Walsh 1.29.2-2 - Move libselinux.so to base package
Wed Dec 14 13:00:00 2005 Dan Walsh 1.29.2-1 - Upgrade to latest from NSA * Merged call to finish_context_translations from Dan Walsh. This eliminates a memory leak from failing to release memory allocated by libsetrans.
Sun Dec 11 13:00:00 2005 Dan Walsh 1.29.1-3 - update to latest libsetrans - Fix potential memory leak
Fri Dec 9 13:00:00 2005 Jesse Keating - rebuilt
Thu Dec 8 13:00:00 2005 Dan Walsh 1.29.1-1 - Update to never version * Merged patch for swig interfaces from Dan Walsh.
Wed Dec 7 13:00:00 2005 Dan Walsh 1.28-1 - Update to never version
Wed Dec 7 13:00:00 2005 Dan Walsh 1.27.28-2 - Fix some of the python swig objects
Thu Dec 1 13:00:00 2005 Dan Walsh 1.27.28-1 - Update to latest from NSA * Added MATCHPATHCON_VALIDATE flag for set_matchpathcon_flags() and modified matchpathcon implementation to make context validation/ canonicalization optional at matchpathcon_init time, deferring it to a successful matchpathcon by default unless the new flag is set by the caller. * Added matchpathcon_init_prefix() interface, and reworked matchpathcon implementation to support selective loading of file contexts entries based on prefix matching between the pathname regex stems and the specified path prefix (stem must be a prefix of the specified path prefix).
Wed Nov 30 13:00:00 2005 Dan Walsh 1.27.26-1 - Update to latest from NSA * Change getsebool to return on/off instead of active/inactive
Tue Nov 29 13:00:00 2005 Dan Walsh 1.27.25-1 - Update to latest from NSA * Added -f file_contexts option to matchpathcon util. Fixed warning message in matchpathcon_init(). * Merged Makefile python definitions patch from Dan Walsh.
Mon Nov 28 13:00:00 2005 Dan Walsh 1.27.23-1 - Update to latest from NSA * Merged swigify patch from Dan Walsh.
Mon Nov 28 13:00:00 2005 Dan Walsh 1.27.22-4 - Separate out libselinux-python bindings into separate rpm
Thu Nov 17 13:00:00 2005 Dan Walsh 1.27.22-3 - Read libsetrans requirement
Thu Nov 17 13:00:00 2005 Dan Walsh 1.27.22-2 - Add python bindings
Wed Nov 16 13:00:00 2005 Dan Walsh 1.27.22-1 - Update to latest from NSA * Merged make failure in rpm_execcon non-fatal in permissive mode patch from Ivan Gyurdiev.
Tue Nov 15 13:00:00 2005 Dan Walsh 1.27.21-2 - Remove requirement for libsetrans
Tue Nov 8 13:00:00 2005 Dan Walsh 1.27.21-1 - Update to latest from NSA * Added MATCHPATHCON_NOTRANS flag for set_matchpathcon_flags() and modified matchpathcon_init() to skip context translation if it is set by the caller.
Tue Nov 8 13:00:00 2005 Dan Walsh 1.27.20-1 - Update to latest from NSA * Added security_canonicalize_context() interface and set_matchpathcon_canoncon() interface for obtaining canonical contexts. Changed matchpathcon internals to obtain canonical contexts by default. Provided fallback for kernels that lack extended selinuxfs context interface. - Patch to not translate mls when calling setfiles
Mon Nov 7 13:00:00 2005 Dan Walsh 1.27.19-1 - Update to latest from NSA * Merged seusers parser changes from Ivan Gyurdiev. * Merged setsebool to libsemanage patch from Ivan Gyurdiev. * Changed seusers parser to reject empty fields.
Fri Nov 4 13:00:00 2005 Dan Walsh 1.27.18-1 - Update to latest from NSA * Merged seusers empty level handling patch from Jonathan Kim (TCS).
Thu Nov 3 13:00:00 2005 Dan Walsh 1.27.17-4 - Rebuild for latest libsepol
Mon Oct 31 13:00:00 2005 Dan Walsh 1.27.17-2 - Rebuild for latest libsepol
Wed Oct 26 14:00:00 2005 Dan Walsh 1.27.17-1 - Change default to __default__
Wed Oct 26 14:00:00 2005 Dan Walsh 1.27.14-3 - Change default to __default__
Tue Oct 25 14:00:00 2005 Dan Walsh 1.27.14-2 - Add selinux_translations_path
Tue Oct 25 14:00:00 2005 Dan Walsh 1.27.14-1 | |