Commit Graph

353 Commits

Author SHA1 Message Date
Daniel J Walsh
e5a8dba063 - Upgrade to latest from NSA
Merged patch to compile wit -fPIC instead of -fpic from Manoj Srivastava to
    prevent hitting the global offest table limit. Patch changed to include
    libselinux and libsemanage in addition to libselinux.
2006-11-28 14:28:05 +00:00
Daniel J Walsh
a92b818305 - Upgrade to latest from NSA
Merged fix from Karl MacMillan for a segfault when linking non-MLS modules
    with users in them.
2006-11-01 15:06:55 +00:00
Daniel J Walsh
a3a13a236e - Upgrade to latest from NSA
Merged fix for version comparison that was preventing range transition
    rules from being written for a version 5 base policy from Darrel
    Goeddel.
2006-10-24 16:51:25 +00:00
Daniel J Walsh
288632e7be - NSA Released version - Same as previous but changed release number 2006-10-17 16:50:19 +00:00
Daniel J Walsh
04bc0ce6f1 - Upgrade to latest from NSA
Build libsepol's static object files with -fpic
2006-10-17 15:57:37 +00:00
Daniel J Walsh
dd59fb41a8 - Upgrade to latest from NSA
Merged mls user and range_transition support in modules from Darrel Goeddel
2006-09-28 15:03:27 +00:00
Daniel J Walsh
d51bbdb93e - Upgrade to latest from NSA
Merged range transition enhancements and user format changes Darrel Goeddel
2006-09-06 16:00:04 +00:00
Daniel J Walsh
6a90efc69e - Fix location of include directory to devel package 2006-08-25 20:08:16 +00:00
Daniel J Walsh
bfedd4e581 - Remove invalid Requires 2006-08-25 14:20:16 +00:00
Steve Grubb
bfcdb6e3f6 Added a Requires tag to prevent breakage when people don't upgrade
everything
2006-08-24 22:30:08 +00:00
Daniel J Walsh
156e9314f0 - Upgrade to latest from NSA
Merged conditionally expand neverallows patch from Jeremy Mowery.
Merged refactor expander patch from Jeremy Mowery.
2006-08-24 18:11:15 +00:00
Daniel J Walsh
f55a71fe00 - Upgrade to latest from NSA
Merged libsepol unit tests from Joshua Brindle.
Merged symtab datum patch from Karl MacMillan.
Merged netfilter contexts support from Chris PeBenito.
2006-08-03 20:26:10 +00:00
Daniel J Walsh
285dda519b - Upgrade to latest from NSA
Merged symtab datum patch from Karl MacMillan.
Merged netfilter contexts support from Chris PeBenito.
2006-08-03 15:23:51 +00:00
Daniel J Walsh
ae2ff08973 - Upgrade to latest from NSA
Merged helpful hierarchy check errors patch from Joshua Brindle.
Merged semodule_deps patch from Karl MacMillan. This adds source module
    names to the avrule decls.
2006-08-01 14:07:40 +00:00
Jesse Keating
31fdd8d749 bumped for rebuild 2006-07-12 06:55:59 +00:00
Daniel J Walsh
c4ad64e188 - Upgrade to latest from NSA
Lindent.
Merged optionals in base take 2 patch set from Joshua Brindle.
2006-07-05 02:24:55 +00:00
Bill Nottingham
79de5158e3 bump so it's newer than the FC5 version 2006-06-14 00:41:22 +00:00
Daniel J Walsh
6ab7e34097 - Upgrade to latest from NSA
Revert 1.12.16.
Merged cleaner fix for bool_ids overflow from Karl MacMillan, replacing the
    prior patch.
Merged fixes for several memory leaks in the error paths during policy read
    from Serge Hallyn.
2006-06-05 18:48:30 +00:00
Daniel J Walsh
56091823e1 - Upgrade to latest from NSA
Fixed bool_ids overflow bug in cond_node_find and cond_copy_list, based on
    bug report and suggested fix by Cedric Roux.
Merged sens_copy_callback, check_role_hierarchy_callback, and
    node_from_record fixes from Serge Hallyn.
2006-05-30 13:09:42 +00:00
Daniel J Walsh
4e6d19ba49 - Upgrade to latest from NSA
Added sepol_policydb_compat_net() interface for testing whether a policy
    requires the compatibility support for network checks to be enabled in
    the kernel.
2006-05-23 10:22:38 +00:00
Daniel J Walsh
af05b5a855 - Upgrade to latest from NSA
Merged patch to initialize sym_val_to_name arrays from Kevin Carr. Reworked
    to use calloc in the first place, and converted some other
    malloc/memset pairs to calloc calls.
2006-05-18 16:13:02 +00:00
Daniel J Walsh
ba09d11b46 - Upgrade to latest from NSA
Merged patch to revert role/user decl upgrade from Karl MacMillan.
2006-05-15 13:55:31 +00:00
Steve Grubb
2e432e52e4 - Couple minor spec file clean ups 2006-05-11 18:23:26 +00:00
Daniel J Walsh
c53a1651b7 - Upgrade to latest from NSA
Dropped tests from all Makefile target.
Merged fix warnings patch from Karl MacMillan.
Merged libsepol test framework patch from Karl MacMillan.
2006-05-08 15:02:44 +00:00
Daniel J Walsh
aa55ea3c11 - Upgrade to latest from NSA
Merged fix warnings patch from Karl MacMillan.
Merged libsepol test framework patch from Karl MacMillan.
2006-05-08 14:15:58 +00:00
Daniel J Walsh
9b242c95dc - Upgrade to latest from NSA
Merged fix warnings patch from Karl MacMillan.
Merged libsepol test framework patch from Karl MacMillan.
2006-05-08 13:58:26 +00:00
Daniel J Walsh
c704b5731d - Upgrade to latest from NSA
Fixed cond_normalize to traverse the entire cond list at link time.
2006-05-01 18:37:16 +00:00
Daniel J Walsh
d927fe6e5d - Upgrade to latest from NSA
Merged fix for leak of optional package sections from Ivan Gyurdiev.
2006-04-05 17:43:10 +00:00
Daniel J Walsh
adbebcb7e5 - Upgrade to latest from NSA
Generalize test for bitmap overflow in ebitmap_set_bit.
2006-03-29 20:36:50 +00:00
Daniel J Walsh
058dbc84ac - Upgrade to latest from NSA
Fixed attr_convert_callback and expand_convert_type_set typemap bug.
2006-03-27 22:04:50 +00:00
Daniel J Walsh
d808811bca - Upgrade to latest from NSA
Fixed avrule_block_write num_decls endian bug.
2006-03-24 17:58:27 +00:00
Daniel J Walsh
9affa071e4 - Upgrade to latest from NSA
Fixed avrule_block_write num_decls endian bug.
2006-03-24 17:57:31 +00:00
Daniel J Walsh
2405135ad9 - Upgrade to latest from NSA
Fixed sepol_module_package_write buffer overflow bug.
2006-03-20 20:24:57 +00:00
Daniel J Walsh
9901b10108 - Upgrade to latest from NSA
Updated version for release.
Merged cond_evaluate_expr fix from Serge Hallyn (IBM).
Fixed bug in copy_avrule_list reported by Ivan Gyurdiev.
Merged sepol_policydb_mls_enabled interface and error handling changes from
    Ivan Gyurdiev.
2006-03-17 18:39:47 +00:00
Daniel J Walsh
71e431529d - Upgrade to latest from NSA
Updated version for release.
Merged cond_evaluate_expr fix from Serge Hallyn (IBM).
Fixed bug in copy_avrule_list reported by Ivan Gyurdiev.
Merged sepol_policydb_mls_enabled interface and error handling changes from
    Ivan Gyurdiev.
2006-03-17 17:11:39 +00:00
Daniel J Walsh
405ea9b4e0 - Rebuild for fc5-head
Fri Feb 17 2006 Dan Walsh <dwalsh@redhat.com> 1.11.18-1
- Upgrade to latest from NSA
Merged node_expand_addr bugfix and node_compare* change from Ivan Gyurdiev.
2006-02-21 03:32:41 +00:00
Daniel J Walsh
adf555659a - Upgrade to latest from NSA
Merged node_expand_addr bugfix and node_compare* change from Ivan Gyurdiev.
2006-02-17 19:47:41 +00:00
Daniel J Walsh
79c3d309c6 - Upgrade to latest from NSA
always prepend patch from Ivan Gyurdiev.
Merged bug fix patch from Ivan Gyurdiev.
Added a defined flag to level_datum_t for use by checkpolicy.
Merged nodecon support patch from Ivan Gyurdiev.
Merged cleanups patch from Ivan Gyurdiev.
2006-02-16 18:40:45 +00:00
Daniel J Walsh
98631160af - Fix post install not to fire if /dev/initctr does not exist 2006-02-13 20:57:55 +00:00
Daniel J Walsh
81037ffe80 - Upgrade to latest from NSA
Merged optionals in base patch from Joshua Brindle.
2006-02-13 15:50:33 +00:00
Jesse Keating
b8d4dc899a bump for bug in double-long on ppc(64) 2006-02-11 04:12:51 +00:00
Daniel J Walsh
6f864b41d4 - Upgrade to latest from NSA
Merged seuser/user_extra support patch from Joshua Brindle.
Merged fix patch from Ivan Gyurdiev.
2006-02-07 15:27:01 +00:00
Jesse Keating
93f928c1d9 bump for new gcc/glibc 2006-02-07 12:43:58 +00:00
Daniel J Walsh
384f984753 - Upgrade to latest from NSA
Merged assertion copying bugfix from Joshua Brindle.
Merged sepol_av_to_string patch from Joshua Brindle.
Merged clone record on set_con patch from Ivan Gyurdiev.
2006-02-02 17:08:27 +00:00
Daniel J Walsh
2716390087 - Upgrade to latest from NSA
Merged cond_expr mapping and package section count bug fixes from Joshua
    Brindle.
Merged improve port/fcontext API patch from Ivan Gyurdiev.
Merged fixes for overflow bugs on 64-bit from Ivan Gyurdiev.
2006-01-30 23:34:34 +00:00
Daniel J Walsh
2cf76a44c7 - Upgrade to latest from NSA
Merged size_t -> unsigned int patch from Ivan Gyurdiev.
2006-01-13 14:51:35 +00:00
Daniel J Walsh
9a4cd99459 - Upgrade to latest from NSA
Merged 2nd const in APIs patch from Ivan Gyurdiev.
2006-01-10 13:48:05 +00:00
Daniel J Walsh
c05bbf4efe - Upgrade to latest from NSA
Merged const in APIs patch from Ivan Gyurdiev.
Merged compare2 function patch from Ivan Gyurdiev.
Fixed hierarchy checker to only check allow rules.
2006-01-06 15:35:55 +00:00
Daniel J Walsh
731af03464 - Upgrade to latest from NSA
- av_to_string overflow checking
- sepol_context_to_string error handling
- hierarchy checking memory leak fixes and optimizations
- avrule_block_read variable initialization
Marked deprecated code in genbools and genusers.
2006-01-05 19:43:51 +00:00
Daniel J Walsh
34791d4da3 - Upgrade to latest from NSA
Merged bugfix for sepol_port_modify from Russell Coker.
Fixed bug in sepol_iface_modify error path noted by Ivan Gyurdiev.
Merged port ordering patch from Ivan Gyurdiev.
2006-01-05 16:01:15 +00:00