Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: checkpolicy | Distribution: openSUSE:Factory:zSystems |
Version: 3.7 | Vendor: openSUSE |
Release: 1.2 | Build date: Mon Jul 1 09:45:50 2024 |
Group: Productivity/Security | Build host: reproducible |
Size: 1523478 | Source RPM: checkpolicy-3.7-1.2.src.rpm |
Packager: https://bugs.opensuse.org | |
Url: https://github.com/SELinuxProject/selinux | |
Summary: SELinux policy compiler |
checkpolicy is the SELinux policy compiler. It uses libsepol to generate the binary policy. (Security-enhanced Linux is a feature of the kernel and some utilities that implement mandatory access control policies, such as Type Enforcement, Role-based Access Control and Multi-Level Security.)
GPL-2.0-or-later
* Mon Jul 01 2024 Cathy Hu <[email protected]> - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes: * checkpolicy: support CIDR notation for nodecon statements * checkpolicy: provide more descriptive error messages and improve error handling * Bugfixes: * checkpolicy: handle unprintable token * checkpolicy: avoid assigning garbage values * checkpolicy: free temporary bounds type * checkpolicy: perform contiguous check in host byte order * checkpolicy: include <ctype.h> for isprint(3) * oss-fuzz fixes: * checkpolicy: add libfuzz based fuzzer * checkpolicy: free complete role_allow_rule on error * checkpolicy: free identifiers on invalid typebounds * checkpolicy: return YYerror on invalid character * checkpolicy: clone level only once * Tue Dec 19 2023 Cathy Hu <[email protected]> - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * checkpolicy: Add the command line argument -N, --disable-neverallow * dispol: add option to display users, drop duplicate option to display booleans, show number of entries before listing them * dispol: Add the ability to show booleans, classes, roles, types and type attributes of policies * dispol: add options: --actions ACTIONS, --help * dismod: add options: --actions ACTIONS, --help * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <[email protected]> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <[email protected]> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <[email protected]> * Fri Feb 24 2023 Johannes Segitz <[email protected]> - Update to version 3.5 * error out if required permission would exceed limit * Improve error message for type bounds - Added additional developer key (Jason Zaman) * Mon May 09 2022 Johannes Segitz <[email protected]> - Update to version 3.4 * warn on bogus IP address or netmask in nodecon statement * allow wildcard permissions in constraints * mention class name on invalid permission * Thu Nov 11 2021 Johannes Segitz <[email protected]> - Update to version 3.3 * When reading a binary policy by checkpolicy, do not automatically change the version to the max policy version supported by libsepol or, if specified, the value given using the "-c" flag. * Updated documentation * Prints the reason why opening a source policy file failed * Tue Mar 09 2021 Johannes Segitz <[email protected]> - Update to version 3.2 * Fix a memleak and an integer overflow * Tue Jul 14 2020 Johannes Segitz <[email protected]> - Update to version 3.1 * checkpolicy treats invalid characters as an error - might break rare use cases (intentionally) * Drop extern_te_assert_t.patch, is upstream * Tue Mar 03 2020 Johannes Segitz <[email protected]> - Update to version 3.0 * add flag to enable policy optimization * allow to write policy to stdout * remove a redundant if-condition * Wed Jan 15 2020 Johannes Segitz <[email protected]> - Add extern_te_assert_t.patch to mark te_assert_t as extern. Prevents build failures on gcc10 (bsc#1160259) * Wed Mar 20 2019 [email protected] - Update to version 2.9 * Add option to sort contexts when creating a binary policy * Update manpage * check the result value of hashtable_search * destroy the class datum if it fails to initialize * remove extraneous policy build noise
/usr/bin/checkmodule /usr/bin/checkpolicy /usr/bin/sedismod /usr/bin/sedispol /usr/share/man/man8/checkmodule.8.gz /usr/share/man/man8/checkpolicy.8.gz
Generated by rpm2html 1.8.1
Fabrice Bellet, Wed Dec 4 00:10:59 2024