1 1.2.3-rc1 2016-01-07 2 * Use key function in sort(), from Petr Lautrbach. 3 * Reset line numbers when parsing files, from Nicolas Iooss. 4 * Convert cmp functions to key functions, from Robert Kuska. 5 * Decode output from Popen in Python3, from Robert Kuska. 6 * Comment constraint rules in output, from Miroslav Grepl via Petr Lautrbach. 7 * Add support for python3, from Robert Kuska. 8 * Add device tree ocontext nodes to Xen policy, from Daniel De Graaf. 9 10 1.2.2 2015-02-02 11 * Fix bugs found by hardened gcc flags, from Nicolas Iooss. 12 * Remove unnecessary grammar in interface call param list to fix poor 13 interface vectors, from Steve Lawrence 14 15 1.2.1 2013-10-31 16 * Add back attributes flag to fix exception crash from Dan Walsh. 17 18 1.2 2013-10-30 19 * Return additional constraint information. 20 * Fix bug in calls to attributes from Dan Walsh. 21 * Add support for filename transitions from Dan Walsh. 22 * Fix sepolgen tests from Dan Walsh. 23 24 1.1.9 2013-02-01 25 * audit.py: Handle times in foreign locals for audit2allow -b 26 * Use refpolicy_makefile() instead of hardcoding Makefile path 27 * understand role attributes 28 29 1.1.8 2012-09-13 30 * Allow returning of bastard matches 31 * sepolgen: return and output constraint violation information 32 * audit2allow: one role/type pair per line 33 34 1.1.7 2012-06-28 35 * Make use of setools optional within sepolgen 36 * We need to support files that have a + in them 37 38 1.1.6 2012-03-28 39 * Fix dead links to www.nsa.gov/selinux 40 * audit.py Dont crash if empty data is passed to sepolgen 41 * do not use md5 when calculating hash signatures 42 * fix detection of policy loads 43 44 1.1.5 2011-12-21 45 * better analysis of why things broke 46 47 1.1.4 2011-12-05 48 * Allow ~ as a file identifier 49 50 1.1.3 2011-11-03 51 * Ignore permissive qualifier if found in an interface 52 * Return name field in avc data 53 54 1.1.2 2011-09-15 55 * src: sepolgen: add attribute storing infrastructure 56 * Change perm-map and add open to try to get better results on 57 * look for booleans that might solve problems 58 * sepolgen: audit2allow is mistakakenly not allowing valid module names 59 * tree: default make target to all not install 60 61 1.1.1 2011-08-26 62 * refparser: include open among valid permissions 63 * refparser: add support for filename_trans rules 64 65 1.1.0 2011-07-27 66 * Release, minor version bump 67 68 1.0.23 2010-03-24 69 * Fix unit tests from Dan Walsh. 70 71 1.0.22 2010-03-23 72 * improve parser error recovery from Karl MacMillan. 73 74 1.0.21 2010-03-18 75 * Add since-last-boot option to audit2allow from Dan Walsh. 76 * Fix sepolgen output to match what Chris expects for upstream 77 refpolicy from Dan Walsh. 78 79 1.0.20 2010-03-12 80 * Add dontaudit flag to audit2allow from Dan Walsh. 81 82 1.0.19 2009-11-27 83 * fix sepolgen to read a "type 1403" msg as a policy load by Stephen 84 Smalley <sds (a] tycho.nsa.gov> 85 86 1.0.18 2009-10-14 87 * Add support for Xen ocontexts from Paul Nuzzi. 88 89 1.0.17 2009-05-15 90 * Fix typo in RoleTypeSet from Marshall Miller. 91 92 1.0.16 2009-02-18 93 * Convert sepolgen to using hashlib instead of the deprecated md5 94 module from Dan Walsh. 95 96 1.0.15 2009-01-12 97 * fix to return length of role dict for len(roles) from Dan Walsh. 98 99 1.0.14 2008-09-12 100 * fix multiple gen_requires block generation from Dan Walsh. 101 102 1.0.13 2008-07-29 103 * Only append s0 suffix if MLS is enabled from Karl MacMillan. 104 105 1.0.12 2008-06-30 106 * Fix generation of role-type and role allow rules from Karl MacMillan. 107 108 1.0.11 2008-01-23 109 * Merged sepolgen fixes from Dan Walsh. 110 111 1.0.10 2007-09-10 112 * Expand the sepolgen parser to parse all current refpolicy modules from Karl MacMillan. 113 * Suppress generation of rules for non-denials from Karl MacMillan (take 3). 114 115 1.0.9 2007-08-16 116 * Supress generation of rules for non-denials from Karl MacMillan. 117 118 1.0.8 2007-04-10 119 * Merged updates to sepolgen parser and tools from Karl MacMillan. 120 This includes improved debugging support, handling of interface 121 calls with list parameters, support for role transition rules, 122 updated range transition rule support, and looser matching. 123 124 1.0.7 2007-03-26 125 * Merged patch to discard self from types when generating requires from Karl MacMillan. 126 127 1.0.6 2007-03-21 128 * Merged patch to move the sepolgen runtime data from /usr/share to /var/lib to facilitate a read-only /usr from Karl MacMillan. 129 130 1.0.5 2007-03-21 131 * Merged patch to fix type_transition style and unit tests from Karl MacMillan. 132 133 1.0.4 2007-03-01 134 * Merged better matching for refpolicy style from Karl MacMillan 135 * Merged support for extracting interface paramaters from interface calls from Karl MacMillan 136 * Merged support for parsing USER_AVC audit messages from Karl MacMillan. 137 138 1.0.3 2007-02-27 139 * Merged support for enabling parser debugging from Karl MacMillan. 140 141 1.0.2 2007-02-22 142 * Merged patch to leave generated files (e.g. local.te) in current directory from Karl MacMillan. 143 * Merged patch to make run-tests.py use unittest.main from Karl MacMillan. 144 * Merged patch to update PLY from Karl MacMillan. 145 * Merged patch to update the sepolgen parser to handle the latest reference policy from Karl MacMillan. 146 147 1.0.1 2007-02-21 148 * Merged Makefile and refparser.py patch from Dan Walsh. 149 Fixes PYTHONLIBDIR definition and error handling on interface files. 150 151 1.0.0 2007-02-05 152 * Initial merge from Karl MacMillan. 153 154
