Merged helpful hierarchy check errors patch from Joshua Brindle.
Merged semodule_deps patch from Karl MacMillan. This adds source module
names to the avrule decls.
Revert 1.12.16.
Merged cleaner fix for bool_ids overflow from Karl MacMillan, replacing the
prior patch.
Merged fixes for several memory leaks in the error paths during policy read
from Serge Hallyn.
Fixed bool_ids overflow bug in cond_node_find and cond_copy_list, based on
bug report and suggested fix by Cedric Roux.
Merged sens_copy_callback, check_role_hierarchy_callback, and
node_from_record fixes from Serge Hallyn.
Added sepol_policydb_compat_net() interface for testing whether a policy
requires the compatibility support for network checks to be enabled in
the kernel.
Merged patch to initialize sym_val_to_name arrays from Kevin Carr. Reworked
to use calloc in the first place, and converted some other
malloc/memset pairs to calloc calls.
Updated version for release.
Merged cond_evaluate_expr fix from Serge Hallyn (IBM).
Fixed bug in copy_avrule_list reported by Ivan Gyurdiev.
Merged sepol_policydb_mls_enabled interface and error handling changes from
Ivan Gyurdiev.
always prepend patch from Ivan Gyurdiev.
Merged bug fix patch from Ivan Gyurdiev.
Added a defined flag to level_datum_t for use by checkpolicy.
Merged nodecon support patch from Ivan Gyurdiev.
Merged cleanups patch from Ivan Gyurdiev.
Merged assertion copying bugfix from Joshua Brindle.
Merged sepol_av_to_string patch from Joshua Brindle.
Merged clone record on set_con patch from Ivan Gyurdiev.
Merged cond_expr mapping and package section count bug fixes from Joshua
Brindle.
Merged improve port/fcontext API patch from Ivan Gyurdiev.
Merged fixes for overflow bugs on 64-bit from Ivan Gyurdiev.
Merged bugfix for sepol_port_modify from Russell Coker.
Fixed bug in sepol_iface_modify error path noted by Ivan Gyurdiev.
Merged port ordering patch from Ivan Gyurdiev.
files.
Cleaned up sepol_genbools to not regenerate the image if there were no
changes in the boolean values, including the degenerate case where
there are no booleans or booleans.local files.
Cleaned up sepol_genusers to not warn on missing local.users.
Tue Nov 8 2005 Dan Walsh <dwalsh@redhat.com> 1.9.38-1
- Upgrade to latest from NSA
Removed sepol_port_* from libsepol.map, as the port interfaces are not yet
stable.
Added src/dso.h and src/*_internal.h. Added hidden_def for exported symbols
used within libsepol. Added hidden for symbols that should not be
exported by the wildcards in libsepol.map.
Added further checking and error reporting to sepol_module_package_read and
_info.
Merged sepol handle passing, DEBUG conversion, and memory leak fix patches
from Ivan Gyurdiev.
Removed processing of system.users from sepol_genusers and dropped delusers
logic.
Removed policydb_destroy from error path of policydb_read, since
create/init/destroy/free of policydb is handled by the caller now.
Fixed sepol_module_package_read to handle a failed policydb_read properly.
Merged query/exists and count patches from Ivan Gyurdiev.
Merged fix for pruned types in expand code from Joshua Brindle.
Merged new module package format code from Joshua Brindle.