checkpolicy-3.7-1.1 RPM for armv7hl

From OpenSuSE Ports Tumbleweed for armv7hl

checkpolicy is the SELinux policy compiler. It uses libsepol to
generate the binary policy.

(Security-enhanced Linux is a feature of the kernel and some
utilities that implement mandatory access control policies, such as
Type Enforcement, Role-based Access Control and Multi-Level
Security.)

Provides

• checkpolicy
• checkpolicy(armv7hl-32)

Requires

• ld-linux-armhf.so.3
• ld-linux-armhf.so.3(GLIBC_2.4)
• libc.so.6
• libc.so.6(GLIBC_2.26)
• libc.so.6(GLIBC_2.33)
• libc.so.6(GLIBC_2.34)
• libc.so.6(GLIBC_2.4)
• libc.so.6(GLIBC_2.7)
• libc.so.6(GLIBC_2.8)
• libgcc_s.so.1
• libgcc_s.so.1(GCC_3.5)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1

License

GPL-2.0-or-later

Changelog

* Mon Jul 01 2024 Cathy Hu <cathy.hu@suse.com>
  - Update to version 3.7
    https://github.com/SELinuxProject/selinux/releases/tag/3.7
    * User-visible changes:
    * checkpolicy: support CIDR notation for nodecon statements
    * checkpolicy: provide more descriptive error messages and improve error handling
    * Bugfixes:
    * checkpolicy: handle unprintable token
    * checkpolicy: avoid assigning garbage values
    * checkpolicy: free temporary bounds type
    * checkpolicy: perform contiguous check in host byte order
    * checkpolicy: include <ctype.h> for isprint(3)
    * oss-fuzz fixes:
    * checkpolicy: add libfuzz based fuzzer
    * checkpolicy: free complete role_allow_rule on error
    * checkpolicy: free identifiers on invalid typebounds
    * checkpolicy: return YYerror on invalid character
    * checkpolicy: clone level only once
* Tue Dec 19 2023 Cathy Hu <cathy.hu@suse.com>
  - Update to version 3.6
    https://github.com/SELinuxProject/selinux/releases/tag/3.6
    * checkpolicy: Add the command line argument -N, --disable-neverallow
    * dispol: add option to display users, drop duplicate option to display booleans,
    show number of entries before listing them
    * dispol: Add the ability to show booleans, classes, roles, types and type attributes of policies
    * dispol: add options: --actions ACTIONS, --help
    * dismod: add options: --actions ACTIONS, --help
    * Add notself support for neverallow rules
    * Improve man pages
    * man pages: Remove the Russian translations
    * Add notself and other support to CIL
    * Add support for deny rules
    * Translations updated from
      https://translate.fedoraproject.org/projects/selinux/
    * Bug fixes
  - Remove keys from keyring since they expired:
    - E853C1848B0185CF42864DF363A8AD4B982C4373
      Petr Lautrbach <plautrba@redhat.com>
    - 63191CE94183098689CAB8DB7EF137EC935B0EAF
      Jason Zaman <jasonzaman@gmail.com>
  - Add key to keyring:
    - B8682847764DF60DF52D992CBC3905F235179CF1
      Petr Lautrbach <lautrbach@redhat.com>
* Fri Feb 24 2023 Johannes Segitz <jsegitz@suse.com>
  - Update to version 3.5
    * error out if required permission would exceed limit
    * Improve error message for type bounds
  - Added additional developer key (Jason Zaman)
* Mon May 09 2022 Johannes Segitz <jsegitz@suse.com>
  - Update to version 3.4
    * warn on bogus IP address or netmask in nodecon statement
    * allow wildcard permissions in constraints
    * mention class name on invalid permission
* Thu Nov 11 2021 Johannes Segitz <jsegitz@suse.com>
  - Update to version 3.3
    * When reading a binary policy by checkpolicy, do not automatically change the version
      to the max policy version supported by libsepol or, if specified, the value given
      using the "-c" flag.
    * Updated documentation
    * Prints the reason why opening a source policy file failed
* Tue Mar 09 2021 Johannes Segitz <jsegitz@suse.com>
  - Update to version 3.2
    * Fix a memleak and an integer overflow
* Tue Jul 14 2020 Johannes Segitz <jsegitz@suse.com>
  - Update to version 3.1
    * checkpolicy treats invalid characters as an error - might break rare use
      cases (intentionally)
    * Drop extern_te_assert_t.patch, is upstream
* Tue Mar 03 2020 Johannes Segitz <jsegitz@suse.de>
  - Update to version 3.0
    * add flag to enable policy optimization
    * allow to write policy to stdout
    * remove a redundant if-condition
* Wed Jan 15 2020 Johannes Segitz <jsegitz@suse.de>
  - Add extern_te_assert_t.patch to mark te_assert_t as extern.
    Prevents build failures on gcc10 (bsc#1160259)
* Wed Mar 20 2019 jsegitz@suse.com
  - Update to version 2.9
    * Add option to sort contexts when creating a binary policy
    * Update manpage
    * check the result value of hashtable_search
    * destroy the class datum if it fails to initialize
    * remove extraneous policy build noise

Files

/usr/bin/checkmodule
/usr/bin/checkpolicy
/usr/bin/sedismod
/usr/bin/sedispol
/usr/share/man/man8/checkmodule.8.gz
/usr/share/man/man8/checkpolicy.8.gz

Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Nov 15 01:18:46 2024