Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / selinux / d9d583759595e522a0ebfb56f74ee2a274d48d19 / . / libsemanage / ChangeLog
blob: 16d8f3b2add8c22d5e549e060509cf0b71cba515 [file] [log] [blame]
Eric Paris1f8cf402011-08-26 15:11:58 -0400[diff] [blame]12.1.3 2011-08-26
2 * python wrapper makefile changes
3
Eric Paris6b6b4752011-08-17 11:17:28 -0400[diff] [blame]42.1.2 2011-08-17
5 * print error debug info for buggy fc
6 * introduce semanage_set_root and friends
7 * throw exceptions in python rather than return
8 * python3 support.
9 * patch for MCS/MLS in user files
10
Eric Paris510003b2011-08-01 13:49:21 -0400[diff] [blame]112.1.1 2011-08-01
12 * Remove generated files, expand .gitignore
13 * Use -Werror and change a few prototypes to support it
14
Steve Lawrence44121f62011-07-26 09:39:09 -0400[diff] [blame]152.1.0 2011-07-27
16 * Release, minor version bump
17
Chad Sellersd17ed0d2010-12-16 14:11:57 -0500[diff] [blame]182.0.46 2010-12-16
19 * Fix compliation under GCC 4.6 by Justin Mattock
20
Joshua Brindlee6bfff42010-03-06 18:10:51 -0500[diff] [blame]212.0.45 2010-03-06
22 * Add enable/disable patch support from Dan Walsh.
23 * Add usepasswd flag to semanage.conf to disable genhomedircon using
24 passwd from Dan Walsh.
25 * regenerate swig wrappers
26
Stephen Smalley9a181482010-02-02 15:34:16 -0500[diff] [blame]272.0.44 2010-02-02
28 * Replace usage of fmemopen() with sepol_policy_file_set_mem() since
29 glibc < 2.9 does not support binary mode ('b') for fmemopen'd
30 streams.
31
Joshua Brindle7b9904b2009-11-27 13:02:43 -0500[diff] [blame]322.0.43 2009-11-27
33 * Move libsemanage.so to /usr/lib
34 * Add NAME lines to man pages from Manoj Srivastava<srivasta@debian.org>
35
Chad Sellers88a57ca2009-11-18 16:44:55 -0500[diff] [blame]362.0.42 2009-11-18
37 * Move load_policy from /usr/sbin to /sbin from Dan Walsh.
38
Eamon Walsh7cdfd6e2009-10-29 15:33:37 -0400[diff] [blame]392.0.41 2009-10-29
40 * Add pkgconfig file from Eamon Walsh.
41
Chad Sellers6f466062009-10-22 14:00:10 -0400[diff] [blame]422.0.40 2009-10-22
43 * Add semanage_set_check_contexts() function to disable calling
44 setfiles
45
Joshua Brindle0e421af2009-09-24 15:18:12 -0400[diff] [blame]462.0.39 2009-09-24
47 * make swigify
48
Joshua Brindle6e7e2472009-09-16 16:59:13 -0400[diff] [blame]492.0.38 2009-09-16
50 * Change semodule upgrade behavior to install even if the module
51 is not present from Dan Walsh.
52 * Make genhomedircon trim excess '/' from homedirs from Dan Walsh.
53
Joshua Brindleeaaafe22009-09-04 13:26:37 -0400[diff] [blame]542.0.37 2009-09-04
55 * Fix persistent dontaudit support to rebuild policy if the
56 dontaudit state is changed from Chad Sellers.
57
Stephen Smalleye376f722009-08-24 15:28:42 -0400[diff] [blame]582.0.36 2009-08-24
59 * Changed bzip-blocksize=0 handling to support existing compressed
60 modules in the store.
61
Stephen Smalley0fb9c992009-08-05 14:13:27 -0400[diff] [blame]622.0.35 2009-08-05
63 * Revert hard linking of files between tmp/active/previous.
64
Stephen Smalley76412ff2009-08-05 08:40:36 -0400[diff] [blame]652.0.34 2009-08-05
66 * Enable configuration of bzip behavior from Stephen Smalley.
67 bzip-blocksize=0 to disable compression and decompression support.
68 bzip-blocksize=1..9 to set the blocksize for compression.
69 bzip-small=true to reduce memory usage for decompression.
70
Stephen Smalley4d92b1f2009-07-07 14:26:15 -0400[diff] [blame]712.0.33 2009-07-07
72 * Maintain disable dontaudit state from Christopher Pardy.
73
Stephen Smalley0b659be2009-05-28 10:55:27 -0400[diff] [blame]742.0.32 2009-05-28
75 * Ruby bindings from David Quigley.
76
Joshua Brindle10760732009-01-12 10:45:26 -0500[diff] [blame]772.0.31 2009-01-12
78 * Policy module compression (bzip) support from Dan Walsh.
79 * Hard link files between tmp/active/previous from Dan Walsh.
80
Stephen Smalley46dc6702008-11-12 09:27:21 -0500[diff] [blame]812.0.30 2008-11-12
82 * Add semanage_mls_enabled() interface from Stephen Smalley.
83
Joshua Brindle223bb402008-11-09 11:20:40 -0500[diff] [blame]842.0.29 2008-11-11
85 * Add USER to lines to homedir_template context file from Chris PeBenito.
86
Joshua Brindlef187d4a2008-09-15 11:25:27 -0400[diff] [blame]872.0.28 2008-09-15
88 * allow fcontext and seuser changes without rebuilding the policy from Dan Walsh
89
Joshua Brindle13cd4c82008-08-19 15:30:36 -0400[diff] [blame]902.0.27 2008-08-05
91 * Modify genhomedircon to skip %groupname entries.
92 Ultimately we need to expand them to the list of users to support per-role homedir labeling when using the %groupname syntax.
93
942.0.26 2008-07-29
95 * Fix bug in genhomedircon fcontext matches logic from Dan Walsh.
96 Strip any trailing slash before appending /*$.
97
982.0.25 2008-04-21
99 * Do not call genhomedircon if the policy was not rebuilt from Stephen Smalley.
100 Fixes semanage boolean -D seg fault (bug 441379).
101
1022.0.24 2008-02-26
103 * make swigify
104
1052.0.23 2008-02-04
106 * Use vfork rather than fork for libsemanage helpers to reduce memory overhead as suggested by Todd Miller.
107
1082.0.22 2008-02-04
109 * Free policydb before fork from Joshua Brindle.
110
1112.0.21 2008-02-04
112 * Drop the base module immediately after expanding to permit memory re-use from Stephen Smalley.
113
1142.0.12 2008-02-02
115 * Use sepol_set_expand_consume_base to reduce peak memory usage when
116 using semodule from Joshua Brindle.
117
1182.0.19 2008-01-31
119 * Fix genhomedircon to not override a file context with a homedir context from Todd Miller.
120
1212.0.18 2008-01-28
122 * Fix spurious out of memory error reports.
123
1242.0.17 2008-01-25
125 * Merged second version of fix for genhomedircon handling from Caleb Case.
126
1272.0.16 2008-01-24
128 * Merged fix for genhomedircon handling of missing HOME_DIR or HOME_ROOT templates from Caleb Case.
129
1302.0.15 2007-12-05
131 * Fix genhomedircon handling of shells and missing user context template from Dan Walsh.
132 * Copy the store path in semanage_select_store from Dan Walsh.
133
1342.0.14 2007-11-05
135 * Call rmdir() rather than remove() on directory removal so that errno isn't polluted from Stephen Smalley.
136
1372.0.13 2007-11-05
138 * Allow handle_unknown in base to be overridden by semanage.conf from Stephen Smalley.
139
1402.0.12 2007-10-05
141 * ustr cleanups from James Antill.
142 * Ensure that /root gets labeled even if using the default context from Dan Walsh.
143
1442.0.11 2007-09-28
145 * Fix ordering of file_contexts.homedirs from Todd Miller and Dan Walsh.
146
1472.0.10 2007-09-28
148 * Fix error checking on getpw*_r functions from Todd Miller.
149 * Make genhomedircon skip invalid homedir contexts from Todd Miller.
150 * Set default user and prefix from seusers from Dan Walsh.
151 * Add swigify Makefile target from Dan Walsh.
152
1532.0.9 2007-09-24
154 * Pass CFLAGS to CC even on link command, per Dennis Gilmore.
155
1562.0.8 2007-09-19
157 * Clear errno on non-fatal errors to avoid reporting them upon a
158 later error that does not set errno.
159
1602.0.7 2007-09-19
161 * Improve reporting of system errors, e.g. full filesystem or read-only filesystem from Stephen Smalley.
162
1632.0.6 2007-09-10
164 * Change to use getpw* function calls to the _r versions from Todd Miller.
165
1662.0.5 2007-08-23
167 * Replace genhomedircon script with equivalent functionality within
168 libsemanage and introduce disable-genhomedircon option in
169 semanage.conf from Todd Miller.
170 Note: Depends on ustr.
171
1722.0.4 2007-08-16
173 * Allow dontaudits to be turned off via semanage interface when
174 updating policy from Joshua Brindle.
175
1762.0.3 2007-04-25
177 * Fix to libsemanage man patches so whatis will work better from Dan Walsh
178
1792.0.2 2007-04-24
180 * Merged optimizations from Stephen Smalley.
181 - do not set all booleans upon commit, only those whose values have changed
182 - only install the sandbox upon commit if something was rebuilt
183
1842.0.1 2007-03-12
185 * Merged dbase_file_flush patch from Dan Walsh.
186 This removes any mention of specific tools (e.g. semanage)
187 from the comment header of the auto-generated files,
188 since there are multiple front-end tools.
189
1902.0.0 2007-02-20
191 * Merged Makefile test target patch from Caleb Case.
192 * Merged get_commit_number function rename patch from Caleb Case.
193 * Merged strnlen -> strlen patch from Todd Miller.
194
1951.10.1 2007-01-26
196 * Merged python binding fix from Dan Walsh.
197
1981.10.0 2007-01-18
199 * Updated version for stable branch.
200
2011.9.2 2007-01-08
202 * Merged patch to optionally reduce disk usage by removing
203 the backup module store and linked policy from Karl MacMillan
204 * Merged patch to correctly propagate return values in libsemanage
205
2061.9.1 2006-11-27
207 * Merged patch to compile wit -fPIC instead of -fpic from
208 Manoj Srivastava to prevent hitting the global offest table
209 limit. Patch changed to include libselinux and libsemanage in
210 addition to libsepol.
211
2121.8 2006-10-17
213 * Updated version for release.
214
2151.6.17 2006-09-29
216 * Merged patch to skip reload if no active store exists and
217 the store path doesn't match the active store path from Dan Walsh.
218 * Merged patch to not destroy sepol handle on error path of
219 connect from James Athey.
220 * Merged patch to add genhomedircon path to semanage.conf from
221 James Athey.
222
2231.6.16 2006-08-14
224 * Make most copy errors fatal, but allow exceptions for
225 file_contexts.local, seusers, and netfilter_contexts if
226 the source file does not exist in the store.
227
2281.6.15 2006-08-11
229 * Merged separate local file contexts patch from Chris PeBenito.
230
2311.6.14 2006-08-11
232 * Merged patch to make most copy errors non-fatal from Dan Walsh.
233
2341.6.13 2006-08-03
235 * Merged netfilter contexts support from Chris PeBenito.
236
2371.6.12 2006-07-11
238 * Merged support for read operations on read-only fs from
239 Caleb Case (Tresys Technology).
240
2411.6.11 2006-06-29
242 * Lindent.
243
2441.6.10 2006-06-26
245 * Merged setfiles location check patch from Dan Walsh.
246
2471.6.9 2006-06-16
248 * Merged several fixes from Serge Hallyn:
249 dbase_file_cache: deref of uninit data on error path.
250 dbase_policydb_cache: clear fp to avoid double fclose
251 semanage_fc_sort: destroy temp on error paths
252
2531.6.8 2006-06-02
254 * Updated default location for setfiles to /sbin to
255 match policycoreutils. This can also be adjusted via
256 semanage.conf using the syntax:
257 [setfiles]
258 path = /path/to/setfiles
259 args = -q -c $@ $<
260 [end]
261
2621.6.7 2006-05-05
263 * Merged fix warnings patch from Karl MacMillan.
264
2651.6.6 2006-04-14
266 * Merged updated file context sorting patch from Christopher
267 Ashworth, with bug fix for escaped character flag.
268
2691.6.5 2006-04-13
270 * Merged file context sorting code from Christopher Ashworth
271 (Tresys Technology), based on fc_sort.c code in refpolicy.
272
2731.6.4 2006-04-12
274 * Merged python binding t_output_helper removal patch from Dan Walsh.
275 * Regenerated swig files.
276
2771.6.3 2006-03-30
278 * Merged corrected fix for descriptor leak from Dan Walsh.
279
2801.6.2 2006-03-20
281 * Merged Makefile PYLIBVER definition patch from Dan Walsh.
282
2831.6.1 2006-03-20
284 * Merged man page reorganization from Ivan Gyurdiev.
285
2861.6 2006-03-14
287 * Updated version for release.
288
2891.5.31 2006-03-09
290 * Merged abort early on merge errors patch from Ivan Gyurdiev.
291
2921.5.30 2006-03-08
293 * Cleaned up error handling in semanage_split_fc based on a patch
294 by Serge Hallyn (IBM) and suggestions by Ivan Gyurdiev.
295
2961.5.29 2006-02-21
297 * Merged MLS handling fixes from Ivan Gyurdiev.
298
2991.5.28 2006-02-16
300 * Merged bug fix for fcontext validate handler from Ivan Gyurdiev.
301
3021.5.27 2006-02-16
303 * Merged base_merge_components changes from Ivan Gyurdiev.
304
3051.5.26 2006-02-15
306 * Merged paths array patch from Ivan Gyurdiev.
307 * Merged bug fix patch from Ivan Gyurdiev.
308
3091.5.25 2006-02-14
310 * Merged improve bindings patch from Ivan Gyurdiev.
311
3121.5.24 2006-02-14
313 * Merged use PyList patch from Ivan Gyurdiev.
314 * Merged memory leak fix patch from Ivan Gyurdiev.
315 * Merged nodecon support patch from Ivan Gyurdiev.
316 * Merged cleanups patch from Ivan Gyurdiev.
317 * Merged split swig patch from Ivan Gyurdiev.
318
3191.5.23 2006-02-13
320 * Merged optionals in base patch from Joshua Brindle.
321
3221.5.22 2006-02-13
323 * Merged treat seusers/users_extra as optional sections patch from
324 Ivan Gyurdiev.
325 * Merged parse_optional fixes from Ivan Gyurdiev.
326
3271.5.21 2006-02-07
328 * Merged seuser/user_extra support patch from Joshua Brindle.
329 * Merged remote system dbase patch from Ivan Gyurdiev.
330
3311.5.20 2006-02-02
332 * Merged clone record on set_con patch from Ivan Gyurdiev.
333
3341.5.19 2006-01-30
335 * Merged fname parameter patch from Ivan Gyurdiev.
336 * Merged more size_t -> unsigned int fixes from Ivan Gyurdiev.
337 * Merged seusers.system patch from Ivan Gyurdiev.
338 * Merged improve port/fcontext API patch from Ivan Gyurdiev.
339
3401.5.18 2006-01-27
341 * Merged seuser -> seuser_local rename patch from Ivan Gyurdiev.
342
3431.5.17 2006-01-27
344 * Merged set_create_store, access_check, and is_connected interfaces
345 from Joshua Brindle.
346
3471.5.16 2006-01-19
348 * Regenerate python wrappers.
349
3501.5.15 2006-01-18
351 * Merged pywrap Makefile diff from Dan Walsh.
352 * Merged cache management patch from Ivan Gyurdiev.
353 * Merged bugfix for dbase_llist_clear from Ivan Gyurdiev.
354 * Merged remove apply_local function patch from Ivan Gyurdiev.
355 * Merged only do read locking in direct case patch from Ivan Gyurdiev.
356 * Merged cache error path memory leak fix from Ivan Gyurdiev.
357 * Merged auto-generated file header patch from Ivan Gyurdiev.
358 * Merged pywrap test update from Ivan Gyurdiev.
359 * Merged hidden defs update from Ivan Gyurdiev.
360
3611.5.14 2006-01-13
362 * Merged disallow port overlap patch from Ivan Gyurdiev.
363
3641.5.13 2006-01-12
365 * Merged join prereq and implementation patches from Ivan Gyurdiev.
366 * Merged join user extra data part 2 patch from Ivan Gyurdiev.
367 * Merged bugfix patch from Ivan Gyurdiev.
368
3691.5.12 2006-01-12
370 * Merged remove add_local/set_local patch from Ivan Gyurdiev.
371 * Merged user extra data part 1 patch from Ivan Gyurdiev.
372 * Merged size_t -> unsigned int patch from Ivan Gyurdiev.
373 * Merged calloc check in semanage_store patch from Ivan Gyurdiev,
374 bug noticed by Steve Grubb.
375 * Merged cleanups after add/set removal patch from Ivan Gyurdiev.
376
3771.5.11 2006-01-09
378 * Merged fcontext compare fix from Ivan Gyurdiev.
379
3801.5.10 2006-01-06
381 * Fixed commit to return the commit number aka policy sequence number.
382
3831.5.9 2006-01-06
384 * Merged const in APIs patch from Ivan Gyurdiev.
385 * Merged validation of local file contexts patch from Ivan Gyurdiev.
386 * Merged compare2 function patch from Ivan Gyurdiev.
387 * Merged hidden def/proto update patch from Ivan Gyurdiev.
388
3891.5.8 2006-01-05
390 * Re-applied string and file optimization patch from Russell Coker,
391 with bug fix.
392
3931.5.7 2006-01-05
394 * Reverted string and file optimization patch from Russell Coker.
395
3961.5.6 2006-01-05
397 * Clarified error messages from parse_module_headers and
398 parse_base_headers for base/module mismatches.
399
4001.5.5 2006-01-05
401 * Merged string and file optimization patch from Russell Coker.
402 * Merged swig header reordering patch from Ivan Gyurdiev.
403 * Merged toggle modify on add patch from Ivan Gyurdiev.
404 * Merged ports parser bugfix patch from Ivan Gyurdiev.
405 * Merged fcontext swig patch from Ivan Gyurdiev.
406 * Merged remove add/modify/delete for active booleans patch from Ivan Gyurdiev.
407 * Merged man pages for dbase functions patch from Ivan Gyurdiev.
408 * Merged pywrap tests patch from Ivan Gyurdiev.
409
4101.5.4 2006-01-04
411 * Merged patch series from Ivan Gyurdiev.
412 This includes patches to:
413 - separate file rw code from linked list
414 - annotate objects
415 - fold together internal headers
416 - support ordering of records in compare function
417 - add active dbase backend, active booleans
418 - return commit numbers for ro database calls
419 - use modified flags to skip rebuild whenever possible
420 - enable port interfaces
421 - update swig interfaces and typemaps
422 - add an API for file_contexts.local and file_contexts
423 - flip the traversal order in iterate/list
424 - reorganize sandbox_expand
425 - add seusers MLS validation
426 - improve dbase spec/documentation
427 - clone record on set/add/modify
428
4291.5.3 2005-12-14
430 * Merged further header cleanups from Ivan Gyurdiev.
431
4321.5.2 2005-12-13
433 * Merged toggle modified flag in policydb_modify, fix memory leak
434 in clear_obsolete, polymorphism vs headers fix, and include guards
435 for internal headers patches from Ivan Gyurdiev.
436
4371.5.1 2005-12-12
438 * Added file-mode= setting to semanage.conf, default to 0644.
439 Changed semanage_copy_file and callers to use this mode when
440 installing policy files to runtime locations.
441
4421.4 2005-12-07
443 * Updated version for release.
444
4451.3.64 2005-12-06
446 * Changed semanage_handle_create() to set do_reload based on
447 is_selinux_enabled(). This prevents improper attempts to
448 load policy on a non-SELinux system.
449
4501.3.63 2005-12-05
451 * Dropped handle from user_del_role interface.
452
4531.3.62 2005-12-05
454 * Removed defrole interfaces.
455
4561.3.61 2005-11-29
457 * Merged Makefile python definitions patch from Dan Walsh.
458
4591.3.60 2005-11-29
460 * Removed is_selinux_mls_enabled() conditionals in seusers and users
461 file parsers.
462
4631.3.59 2005-11-28
464 * Merged wrap char*** for user_get_roles patch from Joshua Brindle.
465
4661.3.58 2005-11-28
467 * Merged remove defrole from sepol patch from Ivan Gyurdiev.
468
4691.3.57 2005-11-28
470 * Merged swig wrappers for modifying users and seusers from Joshua Brindle.
471
4721.3.56 2005-11-16
473 * Fixed free->key_free bug.
474
4751.3.55 2005-11-16
476 * Merged clear obsolete patch from Ivan Gyurdiev.
477
4781.3.54 2005-11-15
479 * Merged modified swigify patch from Dan Walsh
480 (original patch from Joshua Brindle).
481 * Merged move genhomedircon call patch from Chad Sellers.
482
4831.3.53 2005-11-10
484 * Merged move seuser validation patch from Ivan Gyurdiev.
485 * Merged hidden declaration fixes from Ivan Gyurdiev,
486 with minor corrections.
487
4881.3.52 2005-11-09
489 * Merged cleanup patch from Ivan Gyurdiev.
490 This renames semanage_module_conn to semanage_direct_handle,
491 and moves sepol handle create/destroy into semanage handle
492 create/destroy to allow use even when disconnected (for the
493 record interfaces).
494
4951.3.51 2005-11-08
496 * Clear modules modified flag upon disconnect and commit.
497
4981.3.50 2005-11-08
499 * Added tracking of module modifications and use it to
500 determine whether expand-time checks should be applied
501 on commit.
502
5031.3.49 2005-11-08
504 * Reverted semanage_set_reload_bools() interface.
505
5061.3.48 2005-11-08
507 * Disabled calls to port dbase for merge and commit and stubbed
508 out calls to sepol_port interfaces since they are not exported.
509
5101.3.47 2005-11-08
511 * Merged rename instead of copy patch from Joshua Brindle (Tresys).
512
5131.3.46 2005-11-07
514 * Added hidden_def/hidden_proto for exported symbols used within
515 libsemanage to eliminate relocations. Wrapped type definitions
516 in exported headers as needed to avoid conflicts. Added
517 src/context_internal.h and src/iface_internal.h.
518
5191.3.45 2005-11-07
520 * Added semanage_is_managed() interface to allow detection of whether
521 the policy is managed via libsemanage. This enables proper handling
522 in setsebool for non-managed systems.
523
5241.3.44 2005-11-07
525 * Merged semanage_set_reload_bools() interface from Ivan Gyurdiev,
526 to enable runtime control over preserving active boolean values
527 versus reloading their saved settings upon commit.
528
5291.3.43 2005-11-04
530 * Merged seuser parser resync, dbase tracking and cleanup, strtol
531 bug, copyright, and assert space patches from Ivan Gyurdiev.
532
5331.3.42 2005-11-04
534 * Added src/*_internal.h in preparation for other changes.
535 * Added hidden/hidden_proto/hidden_def to src/debug.[hc] and
536 src/seusers.[hc].
537
5381.3.41 2005-11-03
539 * Merged interface parse/print, context_to_string interface change,
540 move assert_noeof, and order preserving patches from Ivan Gyurdiev.
541 * Added src/dso.h in preparation for other changes.
542
5431.3.40 2005-11-01
544 * Merged install seusers, handle/error messages, MLS parsing,
545 and seusers validation patches from Ivan Gyurdiev.
546
5471.3.39 2005-10-31
548 * Merged record interface, dbase flush, common database code,
549 and record bugfix patches from Ivan Gyurdiev.
550
5511.3.38 2005-10-27
552 * Merged dbase policydb list and count change from Ivan Gyurdiev.
553
5541.3.37 2005-10-27
555 * Merged enable dbase and set relay patches from Ivan Gyurdiev.
556
5571.3.36 2005-10-27
558 * Merged query APIs and dbase_file_set patches from Ivan Gyurdiev.
559
5601.3.35 2005-10-26
561 * Merged sepol handle passing, seusers support, and policydb cache
562 patches from Ivan Gyurdiev.
563
5641.3.34 2005-10-25
565 * Merged resync to sepol changes and booleans fixes/improvements
566 patches from Ivan Gyurdiev.
567
5681.3.33 2005-10-25
569 * Merged support for genhomedircon/homedir template, store selection,
570 explicit policy reload, and semanage.conf relocation from Joshua
571 Brindle.
572
5731.3.32 2005-10-24
574 * Merged resync to sepol changes and transaction fix patches from
575 Ivan Gyurdiev.
576
5771.3.31 2005-10-21
578 * Merged reorganize users patch from Ivan Gyurdiev.
579 * Merged remove unused relay functions patch from Ivan Gyurdiev.
580
5811.3.30 2005-10-20
582 * Fixed policy file leaks in semanage_load_module and
583 semanage_write_module.
584 * Merged further database work from Ivan Gyurdiev.
585
5861.3.29 2005-10-20
587 * Fixed bug in semanage_direct_disconnect.
588
5891.3.28 2005-10-20
590 * Merged interface renaming patch from Ivan Gyurdiev.
591 * Merged policy component patch from Ivan Gyurdiev.
592
5931.3.27 2005-10-20
594 * Renamed 'check=' configuration value to 'expand-check=' for
595 clarity.
596 * Changed semanage_commit_sandbox to check for and report errors
597 on rename(2) calls performed during rollback.
598
5991.3.26 2005-10-19
600 * Added optional check= configuration value to semanage.conf
601 and updated call to sepol_expand_module to pass its value
602 to control assertion and hierarchy checking on module expansion.
603
6041.3.25 2005-10-19
605 * Merged fixes for make DESTDIR= builds from Joshua Brindle.
606
6071.3.24 2005-10-19
608 * Merged default database from Ivan Gyurdiev.
609 * Merged removal of connect requirement in policydb backend from
610 Ivan Gyurdiev.
611 * Merged commit locking fix and lock rename from Joshua Brindle.
612 * Merged transaction rollback in lock patch from Joshua Brindle.
613
6141.3.23 2005-10-18
615 * Changed default args for load_policy to be null, as it no longer
616 takes a pathname argument and we want to preserve booleans.
617
6181.3.22 2005-10-18
619 * Merged move local dbase initialization patch from Ivan Gyurdiev.
620 * Merged acquire/release read lock in databases patch from Ivan Gyurdiev.
621 * Merged rename direct -> policydb as appropriate patch from Ivan Gyurdiev.
622
6231.3.21 2005-10-18
624 * Added calls to sepol_policy_file_set_handle interface prior
625 to invoking sepol operations on policy files.
626 * Updated call to sepol_policydb_from_image to pass the handle.
627
6281.3.20 2005-10-17
629 * Merged user and port APIs - policy database patch from Ivan
630 Gyurdiev.
631
6321.3.19 2005-10-17
633 * Converted calls to sepol link_packages and expand_module interfaces
634 from using buffers to using sepol handles for error reporting, and
635 changed direct_connect/disconnect to create/destroy sepol handles.
636
6371.3.18 2005-10-14
638 * Merged bugfix patch from Ivan Gyurdiev.
639
6401.3.17 2005-10-14
641 * Merged seuser database patch from Ivan Gyurdiev.
642 Merged direct user/port databases to the handle from Ivan Gyurdiev.
643
6441.3.16 2005-10-14
645 * Removed obsolete include/semanage/commit_api.h (leftover).
646 Merged seuser record patch from Ivan Gyurdiev.
647
6481.3.15 2005-10-14
649 * Merged boolean and interface databases from Ivan Gyurdiev.
650
6511.3.14 2005-10-13
652 * Updated to use get interfaces for hidden sepol_module_package type.
653
6541.3.13 2005-10-13
655 * Changed semanage_expand_sandbox and semanage_install_active
656 to generate/install the latest policy version supported by libsepol
657 by default (unless overridden by semanage.conf), since libselinux
658 will now downgrade automatically for load_policy.
659
6601.3.12 2005-10-13
661 * Merged new callback-based error reporting system and ongoing
662 database work from Ivan Gyurdiev.
663
6641.3.11 2005-10-11
665 * Fixed semanage_install_active() to use the same logic for
666 selecting a policy version as semanage_expand_sandbox(). Dropped
667 dead code from semanage_install_sandbox().
668
6691.3.10 2005-10-07
670 * Updated for changes to libsepol, and to only use types and interfaces
671 provided by the shared libsepol.
672
6731.3.9 2005-10-06
674 * Merged further database work from Ivan Gyurdiev.
675
6761.3.8 2005-10-04
677 * Merged iterate, redistribute, and dbase split patches from
678 Ivan Gyurdiev.
679
6801.3.7 2005-09-30
681 * Merged patch series from Ivan Gyurdiev.
682 (pointer typedef elimination, file renames, dbase work, backend
683 separation)
684
6851.3.6 2005-09-28
686 * Split interfaces from semanage.[hc] into handle.[hc], modules.[hc].
687 * Separated handle create from connect interface.
688 * Added a constructor for initialization.
689 * Moved up src/include/*.h to src.
690 * Created a symbol map file; dropped dso.h and hidden markings.
691
6921.3.5 2005-09-28
693 * Merged major update to libsemanage organization and functionality
694 from Karl MacMillan (Tresys).
695
6961.3.4 2005-09-23
697 * Merged dbase redesign patch from Ivan Gyurdiev.
698
6991.3.3 2005-09-21
700 * Merged boolean record, stub record handler, and status codes
701 patches from Ivan Gyurdiev.
702
7031.3.2 2005-09-16
704 * Merged stub iterator functionality from Ivan Gyurdiev.
705 * Merged interface record patch from Ivan Gyurdiev.
706
7071.3.1 2005-09-14
708 * Merged stub functionality for managing user and port records,
709 and record table code from Ivan Gyurdiev.
710
7111.2 2005-09-06
712 * Updated version for release.
713
7141.1.6 2005-08-31
715 * Merged semod.conf template patch from Dan Walsh (Red Hat),
716 but restored location to /usr/share/semod/semod.conf.
717
7181.1.5 2005-08-30
719 * Fixed several bugs found by valgrind.
720 * Fixed bug in prior patch for the semod_build_module_list leak.
721
7221.1.4 2005-08-25
723 * Merged errno fix from Joshua Brindle (Tresys).
724 * Merged fix for semod_build_modules_list leak on error path
725 from Serge Hallyn (IBM). Bug found by Coverity.
726
7271.1.3 2005-08-22
728 * Merged several fixes from Serge Hallyn (IBM). Bugs found by
729 Coverity.
730 * Fixed several other bugs and warnings.
731
7321.1.2 2005-08-02
733 * Merged patch to move module read/write code from libsemanage
734 to libsepol from Jason Tang (Tresys).
735
7361.1.1 2005-08-02
737 * Merged relay records patch from Ivan Gyurdiev.
738 * Merged key extract patch from Ivan Gyurdiev.
739
7401.0 2005-07-27
741 * Initial version.