SELinux library and simple utilities
 
Files

[src.rpm   ] 110k
Aug 16 06:23:44 CEST 2006
libselinux-1.23.10-1.99_4.src.rpm  - SELinux library and simple utilities
Name: libselinux
Version: 1.23.10
Release: 1.99_4.at
Group: System Environment/Libraries
Size: 107581
   
Build on: Wed Aug 16 06:23:43 2006
Vendor: ATrpms.net
Packager: ATrpms
Signature: DSA/SHA1, Wed Aug 16 06:23:43 2006 ( [expires: 2007-12-31])

Security-enhanced Linux is a patch of the Linux® kernel and a number
of utilities with enhanced security functionality designed to add
mandatory access controls to Linux. The Security-enhanced Linux
kernel contains new architectural components originally developed to
improve the security of the Flask operating system. These
architectural components provide general support for the enforcement
of many kinds of mandatory access control policies, including those
based on the concepts of Type Enforcement®, Role-based Access
Control, and Multi-level Security.

libselinux provides an API for SELinux applications to get and set
process and file security contexts and to obtain security policy
decisions. Required for any applications that use the SELinux API.

   

Tue Apr 26 12:00:00 2005 Dan Walsh 1.23.10-2
- Add info to man page

Tue Apr 26 12:00:00 2005 Dan Walsh 1.23.10-1
- Update from NSA
* Merged set_selinuxmnt patch from Bill Nottingham (Red Hat).
* Rewrote get_ordered_context_list and helpers, including
changing logic to allow variable MLS fields.

Tue Apr 26 12:00:00 2005 Dan Walsh 1.23.8-1
- Update from NSA

Thu Apr 21 12:00:00 2005 Dan Walsh 1.23.7-3
- Add backin matchpathcon

Wed Apr 13 12:00:00 2005 Dan Walsh 1.23.7-2
- Fix selinux_policy_root man page

Wed Apr 13 12:00:00 2005 Dan Walsh 1.23.7-1
- Change assert(selinux_mnt) to if (!selinux_mnt) return -1;

Mon Apr 11 12:00:00 2005 Dan Walsh 1.23.6-1
- Update from NSA
* Fixed bug in matchpathcon_filespec_destroy.

Wed Apr 6 12:00:00 2005 Dan Walsh 1.23.5-1
- Update from NSA
* Fixed bug in rpm_execcon error handling path.

Mon Apr 4 12:00:00 2005 Dan Walsh 1.23.4-1
- Update from NSA
* Merged fix for set_matchpathcon* functions from Andreas Steinmetz.
* Merged fix for getconlist utility from Andreas Steinmetz.

Tue Mar 29 12:00:00 2005 Dan Walsh 1.23.2-3
- Update from NSA

Wed Mar 23 11:00:00 2005 Dan Walsh 1.23.2-2
- Better handling of booleans

Thu Mar 17 11:00:00 2005 Dan Walsh 1.23.2-1
- Update from NSA
* Merged destructors patch from Tomas Mraz.

Thu Mar 17 11:00:00 2005 Dan Walsh 1.23.1-1
- Update from NSA
* Added set_matchpathcon_flags() function for setting flags
controlling operation of matchpathcon. MATCHPATHCON_BASEONLY
means only process the base file_contexts file, not
file_contexts.homedirs or file_contexts.local, and is for use by
setfiles -c.
* Updated matchpathcon.3 man page.

Thu Mar 10 11:00:00 2005 Dan Walsh 1.22-1
- Update from NSA

Tue Mar 8 11:00:00 2005 Dan Walsh 1.21.13-1
- Update from NSA
* Fixed bug in matchpathcon_filespec_add() - failure to clear fl_head.

Tue Mar 1 11:00:00 2005 Dan Walsh 1.21.12-1
- Update from NSA
* Changed matchpathcon_common to ignore any non-format bits in the mode.

Mon Feb 28 11:00:00 2005 Dan Walsh 1.21.11-2
- Default matchpathcon to regular files if the user specifies a mode

Tue Feb 22 11:00:00 2005 Dan Walsh 1.21.11-1
- Update from NSA
* Merged several fixes from Ulrich Drepper.

Mon Feb 21 11:00:00 2005 Dan Walsh 1.21.10-3
- Fix matchpathcon on eof.

Thu Feb 17 11:00:00 2005 Dan Walsh 1.21.10-1
- Update from NSA
* Merged matchpathcon patch for file_contexts.homedir from Dan Walsh.
* Added selinux_users_path() for path to directory containing
system.users and local.users.

Thu Feb 10 11:00:00 2005 Dan Walsh 1.21.9-2
- Process file_context.homedir

Thu Feb 10 11:00:00 2005 Dan Walsh 1.21.9-1
- Update from NSA
* Changed relabel Makefile target to use restorecon.

Tue Feb 8 11:00:00 2005 Dan Walsh 1.21.8-1
- Update from NSA
* Regenerated av_permissions.h.

Wed Feb 2 11:00:00 2005 Dan Walsh 1.21.7-1
- Update from NSA
* Modified avc_dump_av to explicitly check for any permissions that
cannot be mapped to string names and display them as a hex value.
* Regenerated av_permissions.h.

Mon Jan 31 11:00:00 2005 Dan Walsh 1.21.5-1
- Update from NSA
* Generalized matchpathcon internals, exported more interfaces,
and moved additional code from setfiles into libselinux so that
setfiles can directly use matchpathcon.

Fri Jan 28 11:00:00 2005 Dan Walsh 1.21.4-1
- Update from NSA
* Prevent overflow of spec array in matchpathcon.
* Fixed several uses of internal functions to avoid relocations.
* Changed rpm_execcon to check is_selinux_enabled() and fallback to
a regular execve if not enabled (or unable to determine due to a lack
of /proc, e.g. chroot'd environment).

Wed Jan 26 11:00:00 2005 Dan Walsh 1.21.2-1
- Update from NSA
* Merged minor fix for avcstat from Dan Walsh.

Mon Jan 24 11:00:00 2005 Dan Walsh 1.21.1-3
- rpmexeccon should not fail in permissive mode.

Thu Jan 20 11:00:00 2005 Dan Walsh 1.21.1-2
- fix printf in avcstat

Thu Jan 20 11:00:00 2005 Dan Walsh 1.21.1-1
- Update from NSA

Wed Jan 12 11:00:00 2005 Dan Walsh 1.20.1-3
- Modify matchpathcon to also process file_contexts.local if it exists

Wed Jan 12 11:00:00 2005 Dan Walsh 1.20.1-2
- Add is_customizable_types function call

Fri Jan 7 11:00:00 2005 Dan Walsh 1.20.1-1
- Update to latest from upstream
* Just changing version number to match upstream

Wed Dec 29 11:00:00 2004 Dan Walsh 1.19.4-1
- Update to latest from upstream
* Changed matchpathcon to return -1 with errno ENOENT for
<<none>> entries, and also for an empty file_contexts configuration.

Tue Dec 28 11:00:00 2004 Dan Walsh 1.19.3-3
- Fix link devel libraries

Mon Dec 27 11:00:00 2004 Dan Walsh 1.19.3-2
- Fix unitialized variable in avcstat.c

Tue Nov 30 11:00:00 2004 Dan Walsh 1.19.3-1
- Upgrade to upstream
* Removed some trivial utils that were not useful or redundant.
* Changed BINDIR default to /usr/sbin to match change in Fedora.
* Added security_compute_member.
* Added man page for setcon.

Tue Nov 30 11:00:00 2004 Dan Walsh 1.19.2-1
- Upgrade to upstream

Thu Nov 18 11:00:00 2004 Dan Walsh 1.19.1-6
- Add avcstat program

Mon Nov 15 11:00:00 2004 Dan Walsh 1.19.1-4
- Add lots of missing man pages

Fri Nov 12 11:00:00 2004 Dan Walsh 1.19.1-2
- Fix output of getsebool.

Tue Nov 9 11:00:00 2004 Dan Walsh 1.19.1-1
- Update from upstream, fix setsebool -P segfault

Fri Nov 5 11:00:00 2004 Steve Grubb 1.18.1-5
- Add a patch from upstream. Fixes signed/unsigned issues, and
incomplete structure copy.

Thu Nov 4 11:00:00 2004 Dan Walsh 1.18.1-4
- More fixes from sgrubb, better syslog

Thu Nov 4 11:00:00 2004 Dan Walsh 1.18.1-3
- Have setsebool and togglesebool log changes to syslog

Wed Nov 3 11:00:00 2004 Steve Grubb 1.18.1-2
- Add patch to make setsebool update bool on disk
- Make togglesebool have a rollback capability in case it blows up inflight

Tue Nov 2 11:00:00 2004 Dan Walsh 1.18.1-1
- Upgrade to latest from NSA

Thu Oct 28 12:00:00 2004 Steve Grubb 1.17.15-2
- Changed the location of the utilities to /usr/sbin since
normal users can't use them anyways.

Wed Oct 27 12:00:00 2004 Steve Grubb 1.17.15-2
- Updated various utilities, removed utilities that are for testing,
added man pages.

Fri Oct 15 12:00:00 2004 Dan Walsh 1.17.15-1
- Add -g flag to make
- Upgrade to latest from NSA
* Added rpm_execcon.

Fri Oct 1 12:00:00 2004 Dan Walsh 1.17.14-1
- Upgrade to latest from NSA
* Merged setenforce and removable context patch from Dan Walsh.
* Merged build fix for alpha from Ulrich Drepper.
* Removed copyright/license from selinux_netlink.h - definitions only.

Fri Oct 1 12:00:00 2004 Dan Walsh 1.17.13-3
- Change setenforce to accept Enforcing and Permissive

Wed Sep 22 12:00:00 2004 Dan Walsh 1.17.13-2
- Add alpha patch

Mon Sep 20 12:00:00 2004 Dan Walsh 1.17.13-1
- Upgrade to latest from NSA

Thu Sep 16 12:00:00 2004 Dan Walsh 1.17.12-2
- Add selinux_removable_context_path

Tue Sep 14 12:00:00 2004 Dan Walsh 1.17.12-1
- Update from NSA
* Add matchmediacon

Tue Sep 14 12:00:00 2004 Dan Walsh 1.17.11-1
- Update from NSA
* Merged in matchmediacon changes.

Fri Sep 10 12:00:00 2004 Dan Walsh 1.17.10-1
- Update from NSA
* Regenerated headers for new nscd permissions.

Wed Sep 8 12:00:00 2004 Dan Walsh 1.17.9-2
- Add matchmediacon

Wed Sep 8 12:00:00 2004 Dan Walsh 1.17.9-1
- Update from NSA
* Added get_default_context_with_role.

Thu Sep 2 12:00:00 2004 Dan Walsh 1.17.8-2
- Clean up spec file
* Patch from Matthias Saou

Thu Sep 2 12:00:00 2004 Dan Walsh 1.17.8-1
- Update from NSA
* Added set_matchpathcon_printf.

Wed Sep 1 12:00:00 2004 Dan Walsh 1.17.7-1

   

- Update from NSA
* Reworked av_inherit.h to allow easier re-use by kernel.

Tue Aug 31 12:00:00 2004 Dan Walsh 1.17.6-1
- Add strcasecmp in selinux_config
- Update from NSA
* Changed avc_has_perm_noaudit to not fail on netlink errors.
* Changed avc netlink code to check pid based on patch by Steve Grubb.
* Merged second optimization patch from Ulrich Drepper.
* Changed matchpathcon to skip invalid file_contexts entries.
* Made string tables private to libselinux.
* Merged strcat->stpcpy patch from Ulrich Drepper.
* Merged matchpathcon man page from Dan Walsh.
* Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
* Autobind netlink socket.
* Dropped compatibility code from security_compute_user.
* Merged fix for context_range_set from Chad Hanson.
* Merged allocation failure checking patch from Chad Hanson.
* Merged avc netlink error message patch from Colin Walters.

Mon Aug 30 12:00:00 2004 Dan Walsh 1.17.5-1
- Update from NSA
* Merged second optimization patch from Ulrich Drepper.
* Changed matchpathcon to skip invalid file_contexts entries.
* Made string tables private to libselinux.
* Merged strcat->stpcpy patch from Ulrich Drepper.
* Merged matchpathcon man page from Dan Walsh.
* Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
* Autobind netlink socket.
* Dropped compatibility code from security_compute_user.
* Merged fix for context_range_set from Chad Hanson.
* Merged allocation failure checking patch from Chad Hanson.
* Merged avc netlink error message patch from Colin Walters.

Mon Aug 30 12:00:00 2004 Dan Walsh 1.17.4-1
- Update from NSA
- Add optflags

Thu Aug 26 12:00:00 2004 Dan Walsh 1.17.3-1
- Update from NSA

Thu Aug 26 12:00:00 2004 Dan Walsh 1.17.2-1
- Add matchpathcon man page
- Latest from NSA
* Merged patch to eliminate PLTs for local syms from Ulrich Drepper.
* Autobind netlink socket.
* Dropped compatibility code from security_compute_user.
* Merged fix for context_range_set from Chad Hanson.
* Merged allocation failure checking patch from Chad Hanson.
* Merged avc netlink error message patch from Colin Walters.

Tue Aug 24 12:00:00 2004 Dan Walsh 1.17.1-1
- Latest from NSA
* Autobind netlink socket.
* Dropped compatibility code from security_compute_user.
* Merged fix for context_range_set from Chad Hanson.
* Merged allocation failure checking patch from Chad Hanson.
* Merged avc netlink error message patch from Colin Walters.

Sun Aug 22 12:00:00 2004 Dan Walsh 1.16.1-1
- Latest from NSA

Thu Aug 19 12:00:00 2004 Colin Walters 1.16-1
- New upstream version

Tue Aug 17 12:00:00 2004 Dan Walsh 1.15.7-1
- Latest from Upstream

Mon Aug 16 12:00:00 2004 Dan Walsh 1.15.6-1
- Fix man pages

Mon Aug 16 12:00:00 2004 Dan Walsh 1.15.5-1
- Latest from Upstream

Fri Aug 13 12:00:00 2004 Dan Walsh 1.15.4-1
- Latest from Upstream

Thu Aug 12 12:00:00 2004 Dan Walsh 1.15.3-2
- Add man page for boolean functions and SELinux

Sun Aug 8 12:00:00 2004 Dan Walsh 1.15.3-1
- Latest from NSA

Mon Jul 19 12:00:00 2004 Dan Walsh 1.15.2-1
- Latest from NSA

Mon Jul 19 12:00:00 2004 Dan Walsh 1.15.1-3
- uppercase getenforce returns, to make them match system-config-securitylevel

Thu Jul 15 12:00:00 2004 Dan Walsh 1.15.1-2
- Remove old path patch

Thu Jul 8 12:00:00 2004 Dan Walsh 1.15.1-1
- Update to latest from NSA
- Add fix to only get old path if file_context file exists in old location

Wed Jun 30 12:00:00 2004 Dan Walsh 1.14.1-1
- Update to latest from NSA

Wed Jun 16 12:00:00 2004 Dan Walsh 1.13.4-1
- add nlclass patch
- Update to latest from NSA

Tue Jun 15 12:00:00 2004 Elliot Lee
- rebuilt

Sun Jun 13 12:00:00 2004 Dan Walsh 1.13.3-2
- Fix selinux_config to break once it finds SELINUXTYPE.

Fri May 28 12:00:00 2004 Dan Walsh 1.13.2-1
-Update with latest from NSA

Thu May 27 12:00:00 2004 Dan Walsh 1.13.1-1
- Change to use new policy mechanism

Mon May 17 12:00:00 2004 Dan Walsh 1.12-2
- add man patch

Fri May 14 12:00:00 2004 Dan Walsh 1.12-1
- Update with latest from NSA

Wed May 5 12:00:00 2004 Dan Walsh 1.11.4-1
- Update with latest from NSA

Thu Apr 22 12:00:00 2004 Dan Walsh 1.11.3-1
- Add changes for relaxed policy
- Update to match NSA

Thu Apr 15 12:00:00 2004 Dan Walsh 1.11.2-1
- Add relaxed policy changes

Thu Apr 15 12:00:00 2004 Dan Walsh 1.11-4
- Sync with NSA

Thu Apr 15 12:00:00 2004 Dan Walsh 1.11-3
- Remove requires glibc>2.3.4

Wed Apr 14 12:00:00 2004 Dan Walsh 1.11-2
- Fix selinuxenabled man page.

Wed Apr 7 12:00:00 2004 Dan Walsh 1.11-1
- Upgrade to 1.11

Wed Apr 7 12:00:00 2004 Dan Walsh 1.10-2
- Add memleaks patch

Wed Apr 7 12:00:00 2004 Dan Walsh 1.10-1
- Upgrade to latest from NSA and add more man pages

Thu Apr 1 12:00:00 2004 Dan Walsh 1.9-1
- Update to match NSA
- Cleanup some man pages

Tue Mar 30 12:00:00 2004 Dan Walsh 1.8-1
- Upgrade to latest from NSA

Thu Mar 25 11:00:00 2004 Dan Walsh 1.6-6
- Add Russell's Man pages

Thu Mar 25 11:00:00 2004 Dan Walsh 1.6-5
- Change getenforce to also check is_selinux_enabled

Thu Mar 25 11:00:00 2004 Dan Walsh 1.6-4
- Add ownership to /usr/include/selinux

Wed Mar 10 11:00:00 2004 Dan Walsh 1.6-3
- fix location of file_contexts file.

Wed Mar 10 11:00:00 2004 Dan Walsh 1.6-2
- Fix matchpathcon to use BUFSIZ

Tue Mar 2 11:00:00 2004 Elliot Lee
- rebuilt

Mon Feb 23 11:00:00 2004 Dan Walsh 1.4-11
- add matchpathcon

Fri Feb 13 11:00:00 2004 Elliot Lee
- rebuilt

Fri Jan 23 11:00:00 2004 Dan Walsh 1.4-9
- Add rootok patch

Wed Jan 14 11:00:00 2004 Dan Walsh 1.4-8
- Updated getpeernam patch

Tue Jan 13 11:00:00 2004 Dan Walsh 1.4-7
- Add getpeernam patch

Thu Dec 18 11:00:00 2003 Dan Walsh 1.4-6
- Add getpeercon patch

Thu Dec 18 11:00:00 2003 Dan Walsh 1.4-5
- Put mntpoint patch, because found fix for SysVinit

Wed Dec 17 11:00:00 2003 Dan Walsh 1.4-4
- Add remove mntpoint patch, because it breaks SysVinit

Wed Dec 17 11:00:00 2003 Dan Walsh 1.4-3
- Add mntpoint patch for SysVinit

Fri Dec 12 11:00:00 2003 Dan Walsh 1.4-2
- Add -r -u -t to getcon

Sat Dec 6 11:00:00 2003 Dan Walsh 1.4-1
- Upgrade to latest from NSA

Mon Oct 27 11:00:00 2003 Dan Walsh 1.3-2
- Fix x86_64 build

Tue Oct 21 12:00:00 2003 Dan Walsh 1.3-1
- Latest tarball from NSA.

Tue Oct 21 12:00:00 2003 Dan Walsh 1.2-9
- Update with latest changes from NSA

Mon Oct 20 12:00:00 2003 Dan Walsh 1.2-8
- Change location of .so file

Wed Oct 8 12:00:00 2003 Dan Walsh 1.2-7
- Break out into development library

Wed Oct 8 12:00:00 2003 Dan Walsh 1.2-6
- Move location of libselinux.so to /lib

Fri Oct 3 12:00:00 2003 Dan Walsh 1.2-5
- Add selinuxenabled patch

Wed Oct 1 12:00:00 2003 Dan Walsh 1.2-4
- Update with final NSA 1.2 sources.

Fri Sep 12 12:00:00 2003 Dan Walsh 1.2-3
- Update with latest from NSA.

Thu Aug 28 12:00:00 2003 Dan Walsh 1.2-2
- Fix to build on x86_64

Thu Aug 21 12:00:00 2003 Dan Walsh 1.2-1
- update for version 1.2

Tue May 27 12:00:00 2003 Dan Walsh 1.0-1
- Initial version


Use the mailing lists or the bug tracking system for comments, bugs and requests about the packages.
ATrpms was founded by Axel Thimm