Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

checkpolicy-3.7-1.2 RPM for s390x

From OpenSuSE Ports Tumbleweed for s390x

Name: checkpolicy Distribution: openSUSE:Factory:zSystems
Version: 3.7 Vendor: openSUSE
Release: 1.2 Build date: Mon Jul 1 09:45:50 2024
Group: Productivity/Security Build host: reproducible
Size: 1523478 Source RPM: checkpolicy-3.7-1.2.src.rpm
Packager: https://bugs.opensuse.org
Url: https://github.com/SELinuxProject/selinux
Summary: SELinux policy compiler
checkpolicy is the SELinux policy compiler. It uses libsepol to
generate the binary policy.

(Security-enhanced Linux is a feature of the kernel and some
utilities that implement mandatory access control policies, such as
Type Enforcement, Role-based Access Control and Multi-Level
Security.)

Provides

Requires

License

GPL-2.0-or-later

Changelog

* Mon Jul 01 2024 Cathy Hu <[email protected]>
  - Update to version 3.7
    https://github.com/SELinuxProject/selinux/releases/tag/3.7
    * User-visible changes:
    * checkpolicy: support CIDR notation for nodecon statements
    * checkpolicy: provide more descriptive error messages and improve error handling
    * Bugfixes:
    * checkpolicy: handle unprintable token
    * checkpolicy: avoid assigning garbage values
    * checkpolicy: free temporary bounds type
    * checkpolicy: perform contiguous check in host byte order
    * checkpolicy: include <ctype.h> for isprint(3)
    * oss-fuzz fixes:
    * checkpolicy: add libfuzz based fuzzer
    * checkpolicy: free complete role_allow_rule on error
    * checkpolicy: free identifiers on invalid typebounds
    * checkpolicy: return YYerror on invalid character
    * checkpolicy: clone level only once
* Tue Dec 19 2023 Cathy Hu <[email protected]>
  - Update to version 3.6
    https://github.com/SELinuxProject/selinux/releases/tag/3.6
    * checkpolicy: Add the command line argument -N, --disable-neverallow
    * dispol: add option to display users, drop duplicate option to display booleans,
    show number of entries before listing them
    * dispol: Add the ability to show booleans, classes, roles, types and type attributes of policies
    * dispol: add options: --actions ACTIONS, --help
    * dismod: add options: --actions ACTIONS, --help
    * Add notself support for neverallow rules
    * Improve man pages
    * man pages: Remove the Russian translations
    * Add notself and other support to CIL
    * Add support for deny rules
    * Translations updated from
      https://translate.fedoraproject.org/projects/selinux/
    * Bug fixes
  - Remove keys from keyring since they expired:
    - E853C1848B0185CF42864DF363A8AD4B982C4373
      Petr Lautrbach <[email protected]>
    - 63191CE94183098689CAB8DB7EF137EC935B0EAF
      Jason Zaman <[email protected]>
  - Add key to keyring:
    - B8682847764DF60DF52D992CBC3905F235179CF1
      Petr Lautrbach <[email protected]>
* Fri Feb 24 2023 Johannes Segitz <[email protected]>
  - Update to version 3.5
    * error out if required permission would exceed limit
    * Improve error message for type bounds
  - Added additional developer key (Jason Zaman)
* Mon May 09 2022 Johannes Segitz <[email protected]>
  - Update to version 3.4
    * warn on bogus IP address or netmask in nodecon statement
    * allow wildcard permissions in constraints
    * mention class name on invalid permission
* Thu Nov 11 2021 Johannes Segitz <[email protected]>
  - Update to version 3.3
    * When reading a binary policy by checkpolicy, do not automatically change the version
      to the max policy version supported by libsepol or, if specified, the value given
      using the "-c" flag.
    * Updated documentation
    * Prints the reason why opening a source policy file failed
* Tue Mar 09 2021 Johannes Segitz <[email protected]>
  - Update to version 3.2
    * Fix a memleak and an integer overflow
* Tue Jul 14 2020 Johannes Segitz <[email protected]>
  - Update to version 3.1
    * checkpolicy treats invalid characters as an error - might break rare use
      cases (intentionally)
    * Drop extern_te_assert_t.patch, is upstream
* Tue Mar 03 2020 Johannes Segitz <[email protected]>
  - Update to version 3.0
    * add flag to enable policy optimization
    * allow to write policy to stdout
    * remove a redundant if-condition
* Wed Jan 15 2020 Johannes Segitz <[email protected]>
  - Add extern_te_assert_t.patch to mark te_assert_t as extern.
    Prevents build failures on gcc10 (bsc#1160259)
* Wed Mar 20 2019 [email protected]
  - Update to version 2.9
    * Add option to sort contexts when creating a binary policy
    * Update manpage
    * check the result value of hashtable_search
    * destroy the class datum if it fails to initialize
    * remove extraneous policy build noise

Files

/usr/bin/checkmodule
/usr/bin/checkpolicy
/usr/bin/sedismod
/usr/bin/sedispol
/usr/share/man/man8/checkmodule.8.gz
/usr/share/man/man8/checkpolicy.8.gz


Generated by rpm2html 1.8.1

Fabrice Bellet, Wed Dec 4 00:10:59 2024