Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / external / selinux / a08010023b9fe66e8df5c187a53d93bfb0f2b939 / . / libsemanage / ChangeLog
blob: 20854cae6cb319d015e981fa14d27f9c64cb0195 [file] [log] [blame]
Stephen Smalleya0801002013-10-25 15:14:23 -0400[diff] [blame^]1x.y.z 2013-MM-DD (Not yet released)
2 * Avoid duplicate list entries from Dan Walsh.
3 * Add audit support to libsemanage from Dan Walsh.
4 * Remove policy.kern and replace with symlink from Dan Walsh.
5 * Apply a MAX_UID check for genhomedircon from Laurent Bigonville.
6 * Fix man pages from Laurent Bigonville.
7
Eric Parise9410c92013-02-01 16:57:55 -0500[diff] [blame]82.1.10 2013-02-01
9 * Add sefcontext_compile to compile regex everytime policy is rebuilt
10 * Cleanup/fix enable/disable/remove module.
11 * redo genhomedircon minuid
12 * fixes from coverity
13 * semanage_store: do not leak memory in semanage_exec_prog
14 * genhomedircon: remove useless conditional in get_home_dirs
15 * genhomedircon: double free in get_home_dirs
16 * fcontext_record: do not leak on error in semanage_fcontext_key_create
17 * genhomedircon: do not leak on failure in write_gen_home_dir_context
18 * semanage_store: do not leak fd
19 * genhomedircon: do not leak shells list
20 * semanage_store: do not leak on strdup failure
21 * semanage_store: rewrite for readability
22
Eric Paris86381972012-09-13 10:33:58 -0400[diff] [blame]232.1.9 2012-09-13
24 * libsemanage: do not set soname needlessly
25 * libsemanage: remove PYTHONLIBDIR and ruby equivalent
26 * do boolean name substitution
27 * Fix segfault for building standard policies.
28
Eric Parisf05a71b2012-06-28 14:02:29 -0400[diff] [blame]292.1.8 2012-06-28
30 * remove build warning when build swig c files
31 * additional makefile support for rubywrap
32 * ignore 80 column limit for readability
33 * semanage_store: fix snprintf length argument by using asprintf
34 * Use default semanage.conf as a fallback
35 * use after free in python bindings
36
Eric Paris7a86fe12012-03-28 15:44:05 -0400[diff] [blame]372.1.7 2012-03-28
38 * Alternate path for semanage.conf
39 * do not link against libpython, this is considered bad in Debian
40 * Allow to build for several ruby version
41 * fallback-user-level
42
Eric Paris339f8072011-12-21 12:46:04 -0500[diff] [blame]432.1.6 2011-12-21
44 * add ignoredirs config for genhomedircon
45 * Fallback_user_level can be NULL if you are not using MLS
46
Eric Paris14e4b702011-11-03 15:26:36 -0400[diff] [blame]472.1.5 2011-11-03
48 * regenerate .pc on VERSION change
49 * maintain mode even if umask is tighter
50 * semanage.conf man page
51 * create man5dir if not exist
52
Eric Paris418dbc72011-09-16 15:34:36 -0400[diff] [blame]532.1.4 2011-09-15
54 * Create a new preserve_tunables flag
55 * tree: default make target to all not
56 * fix semanage_store_access_check calling arguments
57
Eric Paris1f8cf402011-08-26 15:11:58 -0400[diff] [blame]582.1.3 2011-08-26
59 * python wrapper makefile changes
60
Eric Paris6b6b4752011-08-17 11:17:28 -0400[diff] [blame]612.1.2 2011-08-17
62 * print error debug info for buggy fc
63 * introduce semanage_set_root and friends
64 * throw exceptions in python rather than return
65 * python3 support.
66 * patch for MCS/MLS in user files
67
Eric Paris510003b2011-08-01 13:49:21 -0400[diff] [blame]682.1.1 2011-08-01
69 * Remove generated files, expand .gitignore
70 * Use -Werror and change a few prototypes to support it
71
Steve Lawrence44121f62011-07-26 09:39:09 -0400[diff] [blame]722.1.0 2011-07-27
73 * Release, minor version bump
74
Chad Sellersd17ed0d2010-12-16 14:11:57 -0500[diff] [blame]752.0.46 2010-12-16
76 * Fix compliation under GCC 4.6 by Justin Mattock
77
Joshua Brindlee6bfff42010-03-06 18:10:51 -0500[diff] [blame]782.0.45 2010-03-06
79 * Add enable/disable patch support from Dan Walsh.
80 * Add usepasswd flag to semanage.conf to disable genhomedircon using
81 passwd from Dan Walsh.
82 * regenerate swig wrappers
83
Stephen Smalley9a181482010-02-02 15:34:16 -0500[diff] [blame]842.0.44 2010-02-02
85 * Replace usage of fmemopen() with sepol_policy_file_set_mem() since
86 glibc < 2.9 does not support binary mode ('b') for fmemopen'd
87 streams.
88
Joshua Brindle7b9904b2009-11-27 13:02:43 -0500[diff] [blame]892.0.43 2009-11-27
90 * Move libsemanage.so to /usr/lib
91 * Add NAME lines to man pages from Manoj Srivastava<srivasta@debian.org>
92
Chad Sellers88a57ca2009-11-18 16:44:55 -0500[diff] [blame]932.0.42 2009-11-18
94 * Move load_policy from /usr/sbin to /sbin from Dan Walsh.
95
Eamon Walsh7cdfd6e2009-10-29 15:33:37 -0400[diff] [blame]962.0.41 2009-10-29
97 * Add pkgconfig file from Eamon Walsh.
98
Chad Sellers6f466062009-10-22 14:00:10 -0400[diff] [blame]992.0.40 2009-10-22
100 * Add semanage_set_check_contexts() function to disable calling
101 setfiles
102
Joshua Brindle0e421af2009-09-24 15:18:12 -0400[diff] [blame]1032.0.39 2009-09-24
104 * make swigify
105
Joshua Brindle6e7e2472009-09-16 16:59:13 -0400[diff] [blame]1062.0.38 2009-09-16
107 * Change semodule upgrade behavior to install even if the module
108 is not present from Dan Walsh.
109 * Make genhomedircon trim excess '/' from homedirs from Dan Walsh.
110
Joshua Brindleeaaafe22009-09-04 13:26:37 -0400[diff] [blame]1112.0.37 2009-09-04
112 * Fix persistent dontaudit support to rebuild policy if the
113 dontaudit state is changed from Chad Sellers.
114
Stephen Smalleye376f722009-08-24 15:28:42 -0400[diff] [blame]1152.0.36 2009-08-24
116 * Changed bzip-blocksize=0 handling to support existing compressed
117 modules in the store.
118
Stephen Smalley0fb9c992009-08-05 14:13:27 -0400[diff] [blame]1192.0.35 2009-08-05
120 * Revert hard linking of files between tmp/active/previous.
121
Stephen Smalley76412ff2009-08-05 08:40:36 -0400[diff] [blame]1222.0.34 2009-08-05
123 * Enable configuration of bzip behavior from Stephen Smalley.
124 bzip-blocksize=0 to disable compression and decompression support.
125 bzip-blocksize=1..9 to set the blocksize for compression.
126 bzip-small=true to reduce memory usage for decompression.
127
Stephen Smalley4d92b1f2009-07-07 14:26:15 -0400[diff] [blame]1282.0.33 2009-07-07
129 * Maintain disable dontaudit state from Christopher Pardy.
130
Stephen Smalley0b659be2009-05-28 10:55:27 -0400[diff] [blame]1312.0.32 2009-05-28
132 * Ruby bindings from David Quigley.
133
Joshua Brindle10760732009-01-12 10:45:26 -0500[diff] [blame]1342.0.31 2009-01-12
135 * Policy module compression (bzip) support from Dan Walsh.
136 * Hard link files between tmp/active/previous from Dan Walsh.
137
Stephen Smalley46dc6702008-11-12 09:27:21 -0500[diff] [blame]1382.0.30 2008-11-12
139 * Add semanage_mls_enabled() interface from Stephen Smalley.
140
Joshua Brindle223bb402008-11-09 11:20:40 -0500[diff] [blame]1412.0.29 2008-11-11
142 * Add USER to lines to homedir_template context file from Chris PeBenito.
143
Joshua Brindlef187d4a2008-09-15 11:25:27 -0400[diff] [blame]1442.0.28 2008-09-15
145 * allow fcontext and seuser changes without rebuilding the policy from Dan Walsh
146
Joshua Brindle13cd4c82008-08-19 15:30:36 -0400[diff] [blame]1472.0.27 2008-08-05
148 * Modify genhomedircon to skip %groupname entries.
149 Ultimately we need to expand them to the list of users to support per-role homedir labeling when using the %groupname syntax.
150
1512.0.26 2008-07-29
152 * Fix bug in genhomedircon fcontext matches logic from Dan Walsh.
153 Strip any trailing slash before appending /*$.
154
1552.0.25 2008-04-21
156 * Do not call genhomedircon if the policy was not rebuilt from Stephen Smalley.
157 Fixes semanage boolean -D seg fault (bug 441379).
158
1592.0.24 2008-02-26
160 * make swigify
161
1622.0.23 2008-02-04
163 * Use vfork rather than fork for libsemanage helpers to reduce memory overhead as suggested by Todd Miller.
164
1652.0.22 2008-02-04
166 * Free policydb before fork from Joshua Brindle.
167
1682.0.21 2008-02-04
169 * Drop the base module immediately after expanding to permit memory re-use from Stephen Smalley.
170
1712.0.12 2008-02-02
172 * Use sepol_set_expand_consume_base to reduce peak memory usage when
173 using semodule from Joshua Brindle.
174
1752.0.19 2008-01-31
176 * Fix genhomedircon to not override a file context with a homedir context from Todd Miller.
177
1782.0.18 2008-01-28
179 * Fix spurious out of memory error reports.
180
1812.0.17 2008-01-25
182 * Merged second version of fix for genhomedircon handling from Caleb Case.
183
1842.0.16 2008-01-24
185 * Merged fix for genhomedircon handling of missing HOME_DIR or HOME_ROOT templates from Caleb Case.
186
1872.0.15 2007-12-05
188 * Fix genhomedircon handling of shells and missing user context template from Dan Walsh.
189 * Copy the store path in semanage_select_store from Dan Walsh.
190
1912.0.14 2007-11-05
192 * Call rmdir() rather than remove() on directory removal so that errno isn't polluted from Stephen Smalley.
193
1942.0.13 2007-11-05
195 * Allow handle_unknown in base to be overridden by semanage.conf from Stephen Smalley.
196
1972.0.12 2007-10-05
198 * ustr cleanups from James Antill.
199 * Ensure that /root gets labeled even if using the default context from Dan Walsh.
200
2012.0.11 2007-09-28
202 * Fix ordering of file_contexts.homedirs from Todd Miller and Dan Walsh.
203
2042.0.10 2007-09-28
205 * Fix error checking on getpw*_r functions from Todd Miller.
206 * Make genhomedircon skip invalid homedir contexts from Todd Miller.
207 * Set default user and prefix from seusers from Dan Walsh.
208 * Add swigify Makefile target from Dan Walsh.
209
2102.0.9 2007-09-24
211 * Pass CFLAGS to CC even on link command, per Dennis Gilmore.
212
2132.0.8 2007-09-19
214 * Clear errno on non-fatal errors to avoid reporting them upon a
215 later error that does not set errno.
216
2172.0.7 2007-09-19
218 * Improve reporting of system errors, e.g. full filesystem or read-only filesystem from Stephen Smalley.
219
2202.0.6 2007-09-10
221 * Change to use getpw* function calls to the _r versions from Todd Miller.
222
2232.0.5 2007-08-23
224 * Replace genhomedircon script with equivalent functionality within
225 libsemanage and introduce disable-genhomedircon option in
226 semanage.conf from Todd Miller.
227 Note: Depends on ustr.
228
2292.0.4 2007-08-16
230 * Allow dontaudits to be turned off via semanage interface when
231 updating policy from Joshua Brindle.
232
2332.0.3 2007-04-25
234 * Fix to libsemanage man patches so whatis will work better from Dan Walsh
235
2362.0.2 2007-04-24
237 * Merged optimizations from Stephen Smalley.
238 - do not set all booleans upon commit, only those whose values have changed
239 - only install the sandbox upon commit if something was rebuilt
240
2412.0.1 2007-03-12
242 * Merged dbase_file_flush patch from Dan Walsh.
243 This removes any mention of specific tools (e.g. semanage)
244 from the comment header of the auto-generated files,
245 since there are multiple front-end tools.
246
2472.0.0 2007-02-20
248 * Merged Makefile test target patch from Caleb Case.
249 * Merged get_commit_number function rename patch from Caleb Case.
250 * Merged strnlen -> strlen patch from Todd Miller.
251
2521.10.1 2007-01-26
253 * Merged python binding fix from Dan Walsh.
254
2551.10.0 2007-01-18
256 * Updated version for stable branch.
257
2581.9.2 2007-01-08
259 * Merged patch to optionally reduce disk usage by removing
260 the backup module store and linked policy from Karl MacMillan
261 * Merged patch to correctly propagate return values in libsemanage
262
2631.9.1 2006-11-27
264 * Merged patch to compile wit -fPIC instead of -fpic from
265 Manoj Srivastava to prevent hitting the global offest table
266 limit. Patch changed to include libselinux and libsemanage in
267 addition to libsepol.
268
2691.8 2006-10-17
270 * Updated version for release.
271
2721.6.17 2006-09-29
273 * Merged patch to skip reload if no active store exists and
274 the store path doesn't match the active store path from Dan Walsh.
275 * Merged patch to not destroy sepol handle on error path of
276 connect from James Athey.
277 * Merged patch to add genhomedircon path to semanage.conf from
278 James Athey.
279
2801.6.16 2006-08-14
281 * Make most copy errors fatal, but allow exceptions for
282 file_contexts.local, seusers, and netfilter_contexts if
283 the source file does not exist in the store.
284
2851.6.15 2006-08-11
286 * Merged separate local file contexts patch from Chris PeBenito.
287
2881.6.14 2006-08-11
289 * Merged patch to make most copy errors non-fatal from Dan Walsh.
290
2911.6.13 2006-08-03
292 * Merged netfilter contexts support from Chris PeBenito.
293
2941.6.12 2006-07-11
295 * Merged support for read operations on read-only fs from
296 Caleb Case (Tresys Technology).
297
2981.6.11 2006-06-29
299 * Lindent.
300
3011.6.10 2006-06-26
302 * Merged setfiles location check patch from Dan Walsh.
303
3041.6.9 2006-06-16
305 * Merged several fixes from Serge Hallyn:
306 dbase_file_cache: deref of uninit data on error path.
307 dbase_policydb_cache: clear fp to avoid double fclose
308 semanage_fc_sort: destroy temp on error paths
309
3101.6.8 2006-06-02
311 * Updated default location for setfiles to /sbin to
312 match policycoreutils. This can also be adjusted via
313 semanage.conf using the syntax:
314 [setfiles]
315 path = /path/to/setfiles
316 args = -q -c $@ $<
317 [end]
318
3191.6.7 2006-05-05
320 * Merged fix warnings patch from Karl MacMillan.
321
3221.6.6 2006-04-14
323 * Merged updated file context sorting patch from Christopher
324 Ashworth, with bug fix for escaped character flag.
325
3261.6.5 2006-04-13
327 * Merged file context sorting code from Christopher Ashworth
328 (Tresys Technology), based on fc_sort.c code in refpolicy.
329
3301.6.4 2006-04-12
331 * Merged python binding t_output_helper removal patch from Dan Walsh.
332 * Regenerated swig files.
333
3341.6.3 2006-03-30
335 * Merged corrected fix for descriptor leak from Dan Walsh.
336
3371.6.2 2006-03-20
338 * Merged Makefile PYLIBVER definition patch from Dan Walsh.
339
3401.6.1 2006-03-20
341 * Merged man page reorganization from Ivan Gyurdiev.
342
3431.6 2006-03-14
344 * Updated version for release.
345
3461.5.31 2006-03-09
347 * Merged abort early on merge errors patch from Ivan Gyurdiev.
348
3491.5.30 2006-03-08
350 * Cleaned up error handling in semanage_split_fc based on a patch
351 by Serge Hallyn (IBM) and suggestions by Ivan Gyurdiev.
352
3531.5.29 2006-02-21
354 * Merged MLS handling fixes from Ivan Gyurdiev.
355
3561.5.28 2006-02-16
357 * Merged bug fix for fcontext validate handler from Ivan Gyurdiev.
358
3591.5.27 2006-02-16
360 * Merged base_merge_components changes from Ivan Gyurdiev.
361
3621.5.26 2006-02-15
363 * Merged paths array patch from Ivan Gyurdiev.
364 * Merged bug fix patch from Ivan Gyurdiev.
365
3661.5.25 2006-02-14
367 * Merged improve bindings patch from Ivan Gyurdiev.
368
3691.5.24 2006-02-14
370 * Merged use PyList patch from Ivan Gyurdiev.
371 * Merged memory leak fix patch from Ivan Gyurdiev.
372 * Merged nodecon support patch from Ivan Gyurdiev.
373 * Merged cleanups patch from Ivan Gyurdiev.
374 * Merged split swig patch from Ivan Gyurdiev.
375
3761.5.23 2006-02-13
377 * Merged optionals in base patch from Joshua Brindle.
378
3791.5.22 2006-02-13
380 * Merged treat seusers/users_extra as optional sections patch from
381 Ivan Gyurdiev.
382 * Merged parse_optional fixes from Ivan Gyurdiev.
383
3841.5.21 2006-02-07
385 * Merged seuser/user_extra support patch from Joshua Brindle.
386 * Merged remote system dbase patch from Ivan Gyurdiev.
387
3881.5.20 2006-02-02
389 * Merged clone record on set_con patch from Ivan Gyurdiev.
390
3911.5.19 2006-01-30
392 * Merged fname parameter patch from Ivan Gyurdiev.
393 * Merged more size_t -> unsigned int fixes from Ivan Gyurdiev.
394 * Merged seusers.system patch from Ivan Gyurdiev.
395 * Merged improve port/fcontext API patch from Ivan Gyurdiev.
396
3971.5.18 2006-01-27
398 * Merged seuser -> seuser_local rename patch from Ivan Gyurdiev.
399
4001.5.17 2006-01-27
401 * Merged set_create_store, access_check, and is_connected interfaces
402 from Joshua Brindle.
403
4041.5.16 2006-01-19
405 * Regenerate python wrappers.
406
4071.5.15 2006-01-18
408 * Merged pywrap Makefile diff from Dan Walsh.
409 * Merged cache management patch from Ivan Gyurdiev.
410 * Merged bugfix for dbase_llist_clear from Ivan Gyurdiev.
411 * Merged remove apply_local function patch from Ivan Gyurdiev.
412 * Merged only do read locking in direct case patch from Ivan Gyurdiev.
413 * Merged cache error path memory leak fix from Ivan Gyurdiev.
414 * Merged auto-generated file header patch from Ivan Gyurdiev.
415 * Merged pywrap test update from Ivan Gyurdiev.
416 * Merged hidden defs update from Ivan Gyurdiev.
417
4181.5.14 2006-01-13
419 * Merged disallow port overlap patch from Ivan Gyurdiev.
420
4211.5.13 2006-01-12
422 * Merged join prereq and implementation patches from Ivan Gyurdiev.
423 * Merged join user extra data part 2 patch from Ivan Gyurdiev.
424 * Merged bugfix patch from Ivan Gyurdiev.
425
4261.5.12 2006-01-12
427 * Merged remove add_local/set_local patch from Ivan Gyurdiev.
428 * Merged user extra data part 1 patch from Ivan Gyurdiev.
429 * Merged size_t -> unsigned int patch from Ivan Gyurdiev.
430 * Merged calloc check in semanage_store patch from Ivan Gyurdiev,
431 bug noticed by Steve Grubb.
432 * Merged cleanups after add/set removal patch from Ivan Gyurdiev.
433
4341.5.11 2006-01-09
435 * Merged fcontext compare fix from Ivan Gyurdiev.
436
4371.5.10 2006-01-06
438 * Fixed commit to return the commit number aka policy sequence number.
439
4401.5.9 2006-01-06
441 * Merged const in APIs patch from Ivan Gyurdiev.
442 * Merged validation of local file contexts patch from Ivan Gyurdiev.
443 * Merged compare2 function patch from Ivan Gyurdiev.
444 * Merged hidden def/proto update patch from Ivan Gyurdiev.
445
4461.5.8 2006-01-05
447 * Re-applied string and file optimization patch from Russell Coker,
448 with bug fix.
449
4501.5.7 2006-01-05
451 * Reverted string and file optimization patch from Russell Coker.
452
4531.5.6 2006-01-05
454 * Clarified error messages from parse_module_headers and
455 parse_base_headers for base/module mismatches.
456
4571.5.5 2006-01-05
458 * Merged string and file optimization patch from Russell Coker.
459 * Merged swig header reordering patch from Ivan Gyurdiev.
460 * Merged toggle modify on add patch from Ivan Gyurdiev.
461 * Merged ports parser bugfix patch from Ivan Gyurdiev.
462 * Merged fcontext swig patch from Ivan Gyurdiev.
463 * Merged remove add/modify/delete for active booleans patch from Ivan Gyurdiev.
464 * Merged man pages for dbase functions patch from Ivan Gyurdiev.
465 * Merged pywrap tests patch from Ivan Gyurdiev.
466
4671.5.4 2006-01-04
468 * Merged patch series from Ivan Gyurdiev.
469 This includes patches to:
470 - separate file rw code from linked list
471 - annotate objects
472 - fold together internal headers
473 - support ordering of records in compare function
474 - add active dbase backend, active booleans
475 - return commit numbers for ro database calls
476 - use modified flags to skip rebuild whenever possible
477 - enable port interfaces
478 - update swig interfaces and typemaps
479 - add an API for file_contexts.local and file_contexts
480 - flip the traversal order in iterate/list
481 - reorganize sandbox_expand
482 - add seusers MLS validation
483 - improve dbase spec/documentation
484 - clone record on set/add/modify
485
4861.5.3 2005-12-14
487 * Merged further header cleanups from Ivan Gyurdiev.
488
4891.5.2 2005-12-13
490 * Merged toggle modified flag in policydb_modify, fix memory leak
491 in clear_obsolete, polymorphism vs headers fix, and include guards
492 for internal headers patches from Ivan Gyurdiev.
493
4941.5.1 2005-12-12
495 * Added file-mode= setting to semanage.conf, default to 0644.
496 Changed semanage_copy_file and callers to use this mode when
497 installing policy files to runtime locations.
498
4991.4 2005-12-07
500 * Updated version for release.
501
5021.3.64 2005-12-06
503 * Changed semanage_handle_create() to set do_reload based on
504 is_selinux_enabled(). This prevents improper attempts to
505 load policy on a non-SELinux system.
506
5071.3.63 2005-12-05
508 * Dropped handle from user_del_role interface.
509
5101.3.62 2005-12-05
511 * Removed defrole interfaces.
512
5131.3.61 2005-11-29
514 * Merged Makefile python definitions patch from Dan Walsh.
515
5161.3.60 2005-11-29
517 * Removed is_selinux_mls_enabled() conditionals in seusers and users
518 file parsers.
519
5201.3.59 2005-11-28
521 * Merged wrap char*** for user_get_roles patch from Joshua Brindle.
522
5231.3.58 2005-11-28
524 * Merged remove defrole from sepol patch from Ivan Gyurdiev.
525
5261.3.57 2005-11-28
527 * Merged swig wrappers for modifying users and seusers from Joshua Brindle.
528
5291.3.56 2005-11-16
530 * Fixed free->key_free bug.
531
5321.3.55 2005-11-16
533 * Merged clear obsolete patch from Ivan Gyurdiev.
534
5351.3.54 2005-11-15
536 * Merged modified swigify patch from Dan Walsh
537 (original patch from Joshua Brindle).
538 * Merged move genhomedircon call patch from Chad Sellers.
539
5401.3.53 2005-11-10
541 * Merged move seuser validation patch from Ivan Gyurdiev.
542 * Merged hidden declaration fixes from Ivan Gyurdiev,
543 with minor corrections.
544
5451.3.52 2005-11-09
546 * Merged cleanup patch from Ivan Gyurdiev.
547 This renames semanage_module_conn to semanage_direct_handle,
548 and moves sepol handle create/destroy into semanage handle
549 create/destroy to allow use even when disconnected (for the
550 record interfaces).
551
5521.3.51 2005-11-08
553 * Clear modules modified flag upon disconnect and commit.
554
5551.3.50 2005-11-08
556 * Added tracking of module modifications and use it to
557 determine whether expand-time checks should be applied
558 on commit.
559
5601.3.49 2005-11-08
561 * Reverted semanage_set_reload_bools() interface.
562
5631.3.48 2005-11-08
564 * Disabled calls to port dbase for merge and commit and stubbed
565 out calls to sepol_port interfaces since they are not exported.
566
5671.3.47 2005-11-08
568 * Merged rename instead of copy patch from Joshua Brindle (Tresys).
569
5701.3.46 2005-11-07
571 * Added hidden_def/hidden_proto for exported symbols used within
572 libsemanage to eliminate relocations. Wrapped type definitions
573 in exported headers as needed to avoid conflicts. Added
574 src/context_internal.h and src/iface_internal.h.
575
5761.3.45 2005-11-07
577 * Added semanage_is_managed() interface to allow detection of whether
578 the policy is managed via libsemanage. This enables proper handling
579 in setsebool for non-managed systems.
580
5811.3.44 2005-11-07
582 * Merged semanage_set_reload_bools() interface from Ivan Gyurdiev,
583 to enable runtime control over preserving active boolean values
584 versus reloading their saved settings upon commit.
585
5861.3.43 2005-11-04
587 * Merged seuser parser resync, dbase tracking and cleanup, strtol
588 bug, copyright, and assert space patches from Ivan Gyurdiev.
589
5901.3.42 2005-11-04
591 * Added src/*_internal.h in preparation for other changes.
592 * Added hidden/hidden_proto/hidden_def to src/debug.[hc] and
593 src/seusers.[hc].
594
5951.3.41 2005-11-03
596 * Merged interface parse/print, context_to_string interface change,
597 move assert_noeof, and order preserving patches from Ivan Gyurdiev.
598 * Added src/dso.h in preparation for other changes.
599
6001.3.40 2005-11-01
601 * Merged install seusers, handle/error messages, MLS parsing,
602 and seusers validation patches from Ivan Gyurdiev.
603
6041.3.39 2005-10-31
605 * Merged record interface, dbase flush, common database code,
606 and record bugfix patches from Ivan Gyurdiev.
607
6081.3.38 2005-10-27
609 * Merged dbase policydb list and count change from Ivan Gyurdiev.
610
6111.3.37 2005-10-27
612 * Merged enable dbase and set relay patches from Ivan Gyurdiev.
613
6141.3.36 2005-10-27
615 * Merged query APIs and dbase_file_set patches from Ivan Gyurdiev.
616
6171.3.35 2005-10-26
618 * Merged sepol handle passing, seusers support, and policydb cache
619 patches from Ivan Gyurdiev.
620
6211.3.34 2005-10-25
622 * Merged resync to sepol changes and booleans fixes/improvements
623 patches from Ivan Gyurdiev.
624
6251.3.33 2005-10-25
626 * Merged support for genhomedircon/homedir template, store selection,
627 explicit policy reload, and semanage.conf relocation from Joshua
628 Brindle.
629
6301.3.32 2005-10-24
631 * Merged resync to sepol changes and transaction fix patches from
632 Ivan Gyurdiev.
633
6341.3.31 2005-10-21
635 * Merged reorganize users patch from Ivan Gyurdiev.
636 * Merged remove unused relay functions patch from Ivan Gyurdiev.
637
6381.3.30 2005-10-20
639 * Fixed policy file leaks in semanage_load_module and
640 semanage_write_module.
641 * Merged further database work from Ivan Gyurdiev.
642
6431.3.29 2005-10-20
644 * Fixed bug in semanage_direct_disconnect.
645
6461.3.28 2005-10-20
647 * Merged interface renaming patch from Ivan Gyurdiev.
648 * Merged policy component patch from Ivan Gyurdiev.
649
6501.3.27 2005-10-20
651 * Renamed 'check=' configuration value to 'expand-check=' for
652 clarity.
653 * Changed semanage_commit_sandbox to check for and report errors
654 on rename(2) calls performed during rollback.
655
6561.3.26 2005-10-19
657 * Added optional check= configuration value to semanage.conf
658 and updated call to sepol_expand_module to pass its value
659 to control assertion and hierarchy checking on module expansion.
660
6611.3.25 2005-10-19
662 * Merged fixes for make DESTDIR= builds from Joshua Brindle.
663
6641.3.24 2005-10-19
665 * Merged default database from Ivan Gyurdiev.
666 * Merged removal of connect requirement in policydb backend from
667 Ivan Gyurdiev.
668 * Merged commit locking fix and lock rename from Joshua Brindle.
669 * Merged transaction rollback in lock patch from Joshua Brindle.
670
6711.3.23 2005-10-18
672 * Changed default args for load_policy to be null, as it no longer
673 takes a pathname argument and we want to preserve booleans.
674
6751.3.22 2005-10-18
676 * Merged move local dbase initialization patch from Ivan Gyurdiev.
677 * Merged acquire/release read lock in databases patch from Ivan Gyurdiev.
678 * Merged rename direct -> policydb as appropriate patch from Ivan Gyurdiev.
679
6801.3.21 2005-10-18
681 * Added calls to sepol_policy_file_set_handle interface prior
682 to invoking sepol operations on policy files.
683 * Updated call to sepol_policydb_from_image to pass the handle.
684
6851.3.20 2005-10-17
686 * Merged user and port APIs - policy database patch from Ivan
687 Gyurdiev.
688
6891.3.19 2005-10-17
690 * Converted calls to sepol link_packages and expand_module interfaces
691 from using buffers to using sepol handles for error reporting, and
692 changed direct_connect/disconnect to create/destroy sepol handles.
693
6941.3.18 2005-10-14
695 * Merged bugfix patch from Ivan Gyurdiev.
696
6971.3.17 2005-10-14
698 * Merged seuser database patch from Ivan Gyurdiev.
699 Merged direct user/port databases to the handle from Ivan Gyurdiev.
700
7011.3.16 2005-10-14
702 * Removed obsolete include/semanage/commit_api.h (leftover).
703 Merged seuser record patch from Ivan Gyurdiev.
704
7051.3.15 2005-10-14
706 * Merged boolean and interface databases from Ivan Gyurdiev.
707
7081.3.14 2005-10-13
709 * Updated to use get interfaces for hidden sepol_module_package type.
710
7111.3.13 2005-10-13
712 * Changed semanage_expand_sandbox and semanage_install_active
713 to generate/install the latest policy version supported by libsepol
714 by default (unless overridden by semanage.conf), since libselinux
715 will now downgrade automatically for load_policy.
716
7171.3.12 2005-10-13
718 * Merged new callback-based error reporting system and ongoing
719 database work from Ivan Gyurdiev.
720
7211.3.11 2005-10-11
722 * Fixed semanage_install_active() to use the same logic for
723 selecting a policy version as semanage_expand_sandbox(). Dropped
724 dead code from semanage_install_sandbox().
725
7261.3.10 2005-10-07
727 * Updated for changes to libsepol, and to only use types and interfaces
728 provided by the shared libsepol.
729
7301.3.9 2005-10-06
731 * Merged further database work from Ivan Gyurdiev.
732
7331.3.8 2005-10-04
734 * Merged iterate, redistribute, and dbase split patches from
735 Ivan Gyurdiev.
736
7371.3.7 2005-09-30
738 * Merged patch series from Ivan Gyurdiev.
739 (pointer typedef elimination, file renames, dbase work, backend
740 separation)
741
7421.3.6 2005-09-28
743 * Split interfaces from semanage.[hc] into handle.[hc], modules.[hc].
744 * Separated handle create from connect interface.
745 * Added a constructor for initialization.
746 * Moved up src/include/*.h to src.
747 * Created a symbol map file; dropped dso.h and hidden markings.
748
7491.3.5 2005-09-28
750 * Merged major update to libsemanage organization and functionality
751 from Karl MacMillan (Tresys).
752
7531.3.4 2005-09-23
754 * Merged dbase redesign patch from Ivan Gyurdiev.
755
7561.3.3 2005-09-21
757 * Merged boolean record, stub record handler, and status codes
758 patches from Ivan Gyurdiev.
759
7601.3.2 2005-09-16
761 * Merged stub iterator functionality from Ivan Gyurdiev.
762 * Merged interface record patch from Ivan Gyurdiev.
763
7641.3.1 2005-09-14
765 * Merged stub functionality for managing user and port records,
766 and record table code from Ivan Gyurdiev.
767
7681.2 2005-09-06
769 * Updated version for release.
770
7711.1.6 2005-08-31
772 * Merged semod.conf template patch from Dan Walsh (Red Hat),
773 but restored location to /usr/share/semod/semod.conf.
774
7751.1.5 2005-08-30
776 * Fixed several bugs found by valgrind.
777 * Fixed bug in prior patch for the semod_build_module_list leak.
778
7791.1.4 2005-08-25
780 * Merged errno fix from Joshua Brindle (Tresys).
781 * Merged fix for semod_build_modules_list leak on error path
782 from Serge Hallyn (IBM). Bug found by Coverity.
783
7841.1.3 2005-08-22
785 * Merged several fixes from Serge Hallyn (IBM). Bugs found by
786 Coverity.
787 * Fixed several other bugs and warnings.
788
7891.1.2 2005-08-02
790 * Merged patch to move module read/write code from libsemanage
791 to libsepol from Jason Tang (Tresys).
792
7931.1.1 2005-08-02
794 * Merged relay records patch from Ivan Gyurdiev.
795 * Merged key extract patch from Ivan Gyurdiev.
796
7971.0 2005-07-27
798 * Initial version.