Ubuntu
libselinux package

libselinux 1.28-1 source package in Ubuntu

Changelog

libselinux (1.28-1) unstable; urgency=low


  * New upstream release
    * Added MATCHPATHCON_VALIDATE flag for set_matchpathcon_flags() and
      modified matchpathcon implementation to make context validation/
      canonicalization optional at matchpathcon_init time, deferring it
      to a successful matchpathcon by default unless the new flag is set
      by the caller.
    * Added matchpathcon_init_prefix() interface, and
      reworked matchpathcon implementation to support selective
      loading of file contexts entries based on prefix matching
      between the pathname regex stems and the specified path
      prefix (stem must be a prefix of the specified path prefix).
    * Merged getsebool patch from Dan Walsh.
    * Added -f file_contexts option to matchpathcon util.
      Fixed warning message in matchpathcon_init().
    * Merged Makefile python definitions patch from Dan Walsh.
    * Merged swigify patch from Dan Walsh.
    * Merged make failure in rpm_execcon non-fatal in permissive mode
      patch from Ivan Gyurdiev.
    * Added MATCHPATHCON_NOTRANS flag for set_matchpathcon_flags()
      and modified matchpathcon_init() to skip context translation
      if it is set by the caller.
    * Added security_canonicalize_context() interface and
      set_matchpathcon_canoncon() interface for obtaining
      canonical contexts.  Changed matchpathcon internals
      to obtain canonical contexts by default.  Provided
      fallback for kernels that lack extended selinuxfs context
      interface.
    * Merged seusers parser changes from Ivan Gyurdiev.
    * Merged setsebool to libsemanage patch from Ivan Gyurdiev.
    * Changed seusers parser to reject empty fields.
    * Merged seusers empty level handling patch from Jonathan Kim (TCS).
    * Changed default entry for seusers to use __default__ to avoid
      ambiguity with users named "default".
    * Fixed init_selinux_config() handling of missing /etc/selinux/config
      or missing SELINUXTYPE= definition.
    * Merged selinux_translations_path() patch from Dan Walsh.
    * Added hidden_proto/def for get_default_context_with_role.
    * Merged selinux_path() and selinux_homedir_context_path()
      functions from Joshua Brindle.
    * Merged fixes for make DESTDIR= builds from Joshua Brindle.
    * Merged get_default_context_with_rolelevel and man pages from
      Dan Walsh (Red Hat).
    * Updated call to sepol_policydb_to_image for sepol changes.
    * Changed getseuserbyname to ignore empty lines and to handle
    no matching entry in the same manner as no seusers file.
    * Changed selinux_mkload_policy to try downgrading the
    latest policy version available to the kernel-supported version.
    * Changed selinux_mkload_policy to fall back to the maximum
    policy version supported by libsepol if the kernel policy version
    falls outside of the supported range.
    * Changed getseuserbyname to fall back to the Linux username and
    NULL level if seusers config file doesn't exist unless 
    REQUIRESEUSERS=1 is set in /etc/selinux/config.
    * Moved seusers.conf under $SELINUXTYPE and renamed to seusers.
    * Added selinux_init_load_policy() function as an even higher level
    interface for the initial policy load by /sbin/init.  This obsoletes
    the load_policy() function in the sysvinit-selinux.patch. 
    * Added selinux_mkload_policy() function as a higher level interface
    for loading policy than the security_load_policy() interface.
    * Merged fix for matchpathcon (regcomp error checking) from Johan
    Fischer.  Also added use of regerror to obtain the error string
    for inclusion in the error message.
    * Changed getseuserbyname to not require (and ignore if present)
    the MLS level in seusers.conf if MLS is disabled, setting *level
    to NULL in this case.
    * Merged getseuserbyname patch from Dan Walsh.
    * Merged STRIP_LEVEL patch for matchpathcon from Dan Walsh.  
      This allows file_contexts with MLS fields to be processed on 
      non-MLS-enabled systems with policies that are otherwise 
      identical (e.g. same type definitions).
    * Merged get_ordered_context_list_with_level() function from
      Dan Walsh, and added get_default_context_with_level().
      This allows MLS level selection for users other than the
      default level.

 -- Manoj Srivastava <email address hidden>  Sat, 10 Dec 2005 13:30:12 -0600

Upload details

Uploaded by:
Ubuntu Archive Auto-Sync
Uploaded to:
Dapper
Original maintainer:
Manoj
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
libselinux_1.28-1.dsc 635 bytes e03f678c932efba883b8275f0cccc6bf1878639c69a3d77833d272b53c60b49c
libselinux_1.28.orig.tar.gz 106.7 KiB 9c03f98eb2800c383818275fb5abd2e9dc4c79c1b4c6ea35f11eedac902d03f6
libselinux_1.28-1.diff.gz 42.9 KiB 978ddf3cddea42b7eda04ef4d23ba18d7683f26d1b7f25c507339572b4f5001e

No changes file available.

Binary packages built by this source

libselinux1: No summary available for libselinux1 in ubuntu dapper.

No description available for libselinux1 in ubuntu dapper.

libselinux1-dev: No summary available for libselinux1-dev in ubuntu dapper.

No description available for libselinux1-dev in ubuntu dapper.

selinux-utils: No summary available for selinux-utils in ubuntu dapper.

No description available for selinux-utils in ubuntu dapper.