rpm/libsepol
SHA256
1
0
Fork 0
forked from pool/libsepol
Code Pull Requests Activity
60 Commits 2 Branches 0 Tags 264 KiB
9af076b667
Commit Graph

51 Commits

Author SHA256 Message Date
Johannes Segitz
9af076b667 Accepting request 1067538 from home:jsegitz:branches:security:SELinux_toolchain 
- Update to version 3.5
  * Stricter policy validation
  * do not write empty class definitions to allow simpler round-trip tests
  * reject attributes in type av rules for kernel policies
- Added additional developer key (Jason Zaman)

OBS-URL: https://build.opensuse.org/request/show/1067538
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=92
 2023-02-24 08:43:04 +00:00
Johannes Segitz
90e7bc0d39 Accepting request 978292 from home:jsegitz:branches:security:SELinux 
- Update to version 3.4
  * Add 'ioctl_skip_cloexec' policy capability
  * Add sepol_av_perm_to_string
  * Add policy utilities
  * Support IPv4/IPv6 address embedding
  * Hardened/added many validations
  * Add support for file types in writing out policy.conf
  * Allow optional file type in genfscon rules

OBS-URL: https://build.opensuse.org/request/show/978292
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=90
 2022-05-20 14:53:29 +00:00
Johannes Segitz
673aa21af7 Accepting request 930930 from home:jsegitz:branches:security:SELinux 
- Update to version 3.3
  * Dropped CVE-2021-36085.patch, CVE-2021-36086.patch, CVE-2021-36087.patch
    are all included
  * Lot of smaller fixes identified by fuzzing

OBS-URL: https://build.opensuse.org/request/show/930930
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=89
 2021-11-11 16:01:43 +00:00
Johannes Segitz
dbf4cf0499 Accepting request 907663 from home:jsegitz:branches:security:SELinux 
- Fix heap-based buffer over-read in ebitmap_match_any (CVE-2021-36087, 1187928.
  Added CVE-2021-36087.patch

OBS-URL: https://build.opensuse.org/request/show/907663
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=88
 2021-07-22 06:49:30 +00:00
Johannes Segitz
d28af01c4e Accepting request 904153 from home:jsegitz:branches:security:SELinux 
- Fix use-after-free in __cil_verify_classperms (CVE-2021-36085, 1187965).
  Added CVE-2021-36085.patch
- Fix use-after-free in cil_reset_classpermission (CVE-2021-36086, 1187964).
  Added CVE-2021-36086.patch

OBS-URL: https://build.opensuse.org/request/show/904153
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=87
 2021-07-05 12:52:59 +00:00
Johannes Segitz
d9c6b82ffe OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=85 2021-03-12 07:59:16 +00:00
Johannes Segitz
a06fd305fa Accepting request 849628 from home:lnussel:usrmove 
- install to /usr (boo#1029961)

OBS-URL: https://build.opensuse.org/request/show/849628
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=83
 2020-11-20 15:12:18 +00:00
Johannes Segitz
40b6433ba8 Accepting request 820921 from home:jsegitz:branches:security:SELinux 
- Update to version 3.1
  * Add support for new polcap genfs_seclabel_symlinks
  * Initialize the multiple_decls field of the cil db
  * Return error when identifier declared as both type and attribute
  * Write CIL default MLS rules on separate lines
  * Sort portcon rules consistently
  * Remove leftovers of cil_mem_error_handler
  * Drop remove_cil_mem_error_handler.patch, is included

OBS-URL: https://build.opensuse.org/request/show/820921
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=80
 2020-07-14 14:13:51 +00:00
Johannes Segitz
7fb641ce31 Accepting request 798389 from home:marxin:branches:security:SELinux 
- Enable -fcommon in order to fix boo#1160874.

OBS-URL: https://build.opensuse.org/request/show/798389
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=78
 2020-04-28 06:41:43 +00:00
Johannes Segitz
3c5f1f043d Accepting request 781799 from home:jsegitz:branches:security:SELinux 
- Update to version 3.0
  * cil: Allow validatetrans rules to be resolved
  * cil: Report disabling an optional block only at high verbose levels
  * cil: do not dereference perm_value_to_cil when it has not been allocated
  * cil: fix mlsconstrain segfault
  * Further improve binary policy optimization
  * Make an unknown permission an error in CIL
  * Remove cil_mem_error_handler() function pointer
  * Use LIBSEPOL_3.0 and fix sepol_policydb_optimize symbol mapping
  * Add a function to optimize kernel policy
  * Add ebitmap_for_each_set_bit macro
  Dropped fnocommon.patch as it's included upstream

OBS-URL: https://build.opensuse.org/request/show/781799
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=76
 2020-03-05 10:13:43 +00:00
Johannes Segitz
bf1d92df6b Accepting request 768760 from home:jsegitz:branches:security:SELinux 
- Add fnocommon.patch to prevent build failures on gcc10 and
  remove_cil_mem_error_handler.patch to prevent build failures due to 
  leftovers from the removal of cil_mem_error_handler (bsc#1160874)

OBS-URL: https://build.opensuse.org/request/show/768760
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=74
 2020-01-30 14:43:08 +00:00
Johannes Segitz
344793b1f5 Accepting request 711060 from home:marxin:branches:security:SELinux 
- Disable LTO due to symbol versioning (boo#1138813).

OBS-URL: https://build.opensuse.org/request/show/711060
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=72
 2019-07-01 07:56:24 +00:00
Johannes Segitz
5833de3b1d OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=70 2019-03-21 09:41:18 +00:00
Johannes Segitz
db4f5e2f0a OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=68 2018-12-06 14:43:35 +00:00
Vítězslav Čížek
a8a11e9d1c Accepting request 647268 from home:jengelh:branches:security:SELinux 
we can use %make_install

OBS-URL: https://build.opensuse.org/request/show/647268
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=66
 2018-11-22 14:14:28 +00:00
Johannes Segitz
5882687357 Accepting request 647228 from home:jsegitz:branches:security:SELinux 
- Adjusted source urls (bsc#1115052)

OBS-URL: https://build.opensuse.org/request/show/647228
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=65
 2018-11-08 07:52:01 +00:00
Vítězslav Čížek
69676d5562 Accepting request 642652 from home:jsegitz:branches:security:SELinux 
- Update to version 2.8 (bsc#1111732)

OBS-URL: https://build.opensuse.org/request/show/642652
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=64
 2018-10-23 12:13:45 +00:00
Johannes Segitz
01d1ffa995 Accepting request 609003 from home:mcepl:SELinux 
Rebase to 2.7

OBS-URL: https://build.opensuse.org/request/show/609003
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=62
 2018-05-23 07:58:06 +00:00
Johannes Segitz
be6f41b43a OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=60 2017-11-27 09:18:53 +00:00
Johannes Segitz
15a8f4c734 Accepting request 411490 from home:jengelh:branches:security:SELinux 
- Update RPM groups, trim description and combine filelist entries.
remove redundant pkgconfig require (autodetected already)

OBS-URL: https://build.opensuse.org/request/show/411490
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=58
 2016-07-26 12:10:49 +00:00
Johannes Segitz
fb01341895 Accepting request 408676 from home:pluskalm:branches:security:SELinux 
- Cleanup spec file with spec-cleaner
- Make spec file a bit more easy
- Ship new supbackage (-tools)

OBS-URL: https://build.opensuse.org/request/show/408676
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=56
 2016-07-15 12:59:30 +00:00
Johannes Segitz
e8f8aa2672 Accepting request 408534 from home:jsegitz:branches:security:SELinux 
- Without bug number no submit to SLE 12 SP2 is possible, so to make
  sle-changelog-checker happy: bsc#988977

OBS-URL: https://build.opensuse.org/request/show/408534
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=55
 2016-07-14 14:27:06 +00:00
Johannes Segitz
2a1654c87f Accepting request 408435 from home:jsegitz:branches:security:SELinux 
- Adjusted source link

OBS-URL: https://build.opensuse.org/request/show/408435
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=54
 2016-07-14 08:42:10 +00:00
Johannes Segitz
5bf1c1c3b5 Accepting request 406824 from home:MargueriteSu:branches:security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/406824
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=53
 2016-07-13 07:20:10 +00:00
Johannes Segitz
3ded4e3f0d Accepting request 234313 from home:vitezslav_cizek:branches:security:SELinux 
- update to 2.3
  * Improve error message for name-based transition conflicts.
  * Revert libsepol: filename_trans: use some better sorting to compare and merge.
  * Report source file and line information for neverallow failures.
  * Fix valgrind errors in constraint_expr_eval_reason from Richard Haines.
  * Add sepol_validate_transition_reason_buffer function from Richard Haines.
- dropped libsepol-2.1.4-role_fix_callback.patch (upstream)

OBS-URL: https://build.opensuse.org/request/show/234313
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=49
 2014-05-19 07:27:26 +00:00
Marcus Meissner
fa42e460da Accepting request 205364 from home:posophe:branches:security:SELinux 
- Update to version 2.2
  * Allow constraint denial cause to be determined
	  - Add kernel policy version 29.
	  - Add modular policy version 17.
	  - Add sepol_compute_av_reason_buffer(), sepol_string_to_security
       _class(), sepol_string_to_av_perm().
  * Support overriding Makefile RANLIB
  * Fix man pages
- Remove libsepol-rhat.patch; merged on upstream

OBS-URL: https://build.opensuse.org/request/show/205364
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=47
 2013-11-07 10:17:51 +00:00
Marcus Meissner
55a171caff Accepting request 181177 from home:vitezslav_cizek:branches:security:SELinux 
- change the source url to the official 2.1.9 release tarball

OBS-URL: https://build.opensuse.org/request/show/181177
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=45
 2013-07-01 09:25:24 +00:00
Marcus Meissner
88fe6d36fc Accepting request 180520 from home:elvigia:branches:security:SELinux 
- Build with LFS_CFLAGS for 32 bit archs

OBS-URL: https://build.opensuse.org/request/show/180520
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=43
 2013-06-24 13:56:47 +00:00
Marcus Meissner
d531c80e72 Accepting request 162888 from home:vitezslav_cizek:branches:security:SELinux 
- remove a debugging artifact in spec

OBS-URL: https://build.opensuse.org/request/show/162888
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=41
 2013-04-06 10:38:04 +00:00
Marcus Meissner
949c6b7137 Accepting request 162654 from home:vitezslav_cizek:branches:security:SELinux 
- fixed source url

OBS-URL: https://build.opensuse.org/request/show/162654
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=38
 2013-04-05 07:46:46 +00:00
Marcus Meissner
417254bb2c Accepting request 161741 from home:vitezslav_cizek:branches:security:SELinux 
- update to 2.1.9
  * filename_trans: use some better sorting to compare and merge
  * coverity fixes
  * implement default type policy syntax
  * Fix memory leak issues found by Klocwork
- added libsepol-rhat.patch

OBS-URL: https://build.opensuse.org/request/show/161741
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=37
 2013-04-02 11:49:49 +00:00
Vítězslav Čížek
79ce4549f8 Accepting request 147461 from home:jengelh:branches:security:SELinux 
- Remove obsolete defines/sections

OBS-URL: https://build.opensuse.org/request/show/147461
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=35
 2013-01-08 10:50:49 +00:00
Marcus Meissner
5d1243b642 Accepting request 145006 from home:posophe:branches:security:SELinux 
update to 2.1.8

OBS-URL: https://build.opensuse.org/request/show/145006
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=33
 2012-12-10 22:45:00 +00:00
Marcus Meissner
ef7a7fd7b7 Accepting request 139269 from home:vitezslav_cizek:branches:security:SELinux 
- skip roles which are out of scope when expanding attributes
- needed for building selinux-policy

OBS-URL: https://build.opensuse.org/request/show/139269
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=31
 2012-10-25 15:13:21 +00:00
Marcus Meissner
3f120ecaa5 - updated to 2.1.4 
- lots of updates

OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=28
 2012-07-25 11:17:16 +00:00
Pavol Rusnak
2186b59433 Accepting request 86732 from home:uli_suse:branches:security:SELinux 
- cross-build fix: use %__cc macro

OBS-URL: https://build.opensuse.org/request/show/86732
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=26
 2011-10-06 15:08:31 +00:00
OBS User autobuild
c1a34fb827 Accepting request 43717 from security:SELinux 
checked in (request 43717)

OBS-URL: https://build.opensuse.org/request/show/43717
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=25
 2010-07-23 14:55:58 +00:00
Pavol Rusnak
8375fe9723 Accepting request 42139 from home:jengelh:smp 
Copy from home:jengelh:smp/libsepol via accept of submit request 42139 revision 2.
Request was accepted with message:
Reviewed ok

OBS-URL: https://build.opensuse.org/request/show/42139
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=24
 2010-06-28 14:23:21 +00:00
OBS User buildservice-autocommit
e16ee20949 Updating link to change in openSUSE:Factory/libsepol revision 13.0 
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=4e7a97292bf1515c25933c0d822f3f5f
 2010-04-24 14:54:50 +00:00
OBS User autobuild
788671a96e Accepting request 38727 from security:SELinux 
checked in (request 38727)

OBS-URL: https://build.opensuse.org/request/show/38727
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=23
 2010-04-24 14:54:49 +00:00
Stephan Kulow
2fd91d95d0 Accepting request 38711 from home:coolo:branches:openSUSE:Factory 
Copy from home:coolo:branches:openSUSE:Factory/libsepol via accept of submit request 38711 revision 2.
Request was accepted with message:
Reviewed ok

OBS-URL: https://build.opensuse.org/request/show/38711
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=22
 2010-04-24 12:10:34 +00:00
OBS User autobuild
e726fb8e1e Accepting request 34371 from security:SELinux 
checked in (request 34371)

OBS-URL: https://build.opensuse.org/request/show/34371
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/libsepol?expand=0&rev=21
 2010-03-12 16:35:28 +00:00
OBS User autobuild
8ebc648d0a Accepting request 34371 from security:SELinux 
Copy from security:SELinux/libsepol based on submit request 34371 from user prusnak

OBS-URL: https://build.opensuse.org/request/show/34371
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsepol?expand=0&rev=11
 2010-03-12 16:35:29 +00:00
OBS User autobuild
53baddce0a Accepting request 31769 from security:SELinux 
Copy from security:SELinux/libsepol based on submit request 31769 from user coolo

OBS-URL: https://build.opensuse.org/request/show/31769
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsepol?expand=0&rev=10
 2010-02-11 18:03:52 +00:00
OBS User autobuild
6beb0962d1 Accepting request 29157 from security:SELinux 
Copy from security:SELinux/libsepol based on submit request 29157 from user coolo

OBS-URL: https://build.opensuse.org/request/show/29157
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsepol?expand=0&rev=9
 2010-01-14 14:19:00 +00:00
OBS User unknown
85d841ec7e OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsepol?expand=0&rev=7 2009-06-29 12:15:10 +00:00
OBS User unknown
1ffc3298a5 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsepol?expand=0&rev=5 2009-01-19 01:22:48 +00:00
OBS User unknown
fcf0610d79 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsepol?expand=0&rev=4 2008-10-22 23:24:17 +00:00
OBS User unknown
7f156493af OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsepol?expand=0&rev=3 2008-09-23 22:35:10 +00:00
OBS User unknown
dbd31b9f5e OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsepol?expand=0&rev=2 2008-08-22 17:30:05 +00:00