* dis* fixed signed vs unsigned errors
* dismod: fix unused parameter errors
* test: Makefile: include -W and -Werror
* allow ~ in filename transition rules
Allow policy to specify the source of target for generating the default user,role
or mls label for a new target.
* Wrap file names in filename transitions with quotes by Steve Lawrence.
* Allow filesystem names to start with a digit by James Carter.
* Add support for using the last path compnent in type transitions by Eric
Split out non-grammar parts of policy_parse.yacc into policy_define.c and
policy_define.h from Todd C. Miller.
Initialize struct policy_file before using it, from Todd C. Miller.
Remove unused define, move variable out of .y file, simplify COND_ERR, from
Todd C. Miller.
Initialize the source file name from the command line argument so that
checkpolicy/checkmodule report something more useful than "unknown
source".
Merged remove use of REJECT and trailing context in lex rules; make ipv4
address parsing like ipv6 from James Carter.
Lindent.
Merged patch to remove TE rule conflict checking from the parser from
Joshua Brindle. This can only be done properly by the expander.
Merged patch to make checkpolicy/checkmodule handling of
duplicate/conflicting TE rules the same as the expander from Joshua
Brindle.
Merged optionals in base take 2 patch set from Joshua Brindle.
Fixed checkmodule to call link_modules prior to expand_module to handle
optionals.
Fixed require_class to avoid shadowing permissions already defined in an
inherited common definition.
Added a check for failure to declare each sensitivity in a level
definition.
Changed to clone level data for aliased sensitivities to avoid double free
upon sens_destroy. Bug reported by Kevin Carr of Tresys Technology.
Added error checking of all ebitmap_set_bit calls for out of memory
conditions.
Merged removal of compatibility handling of netlink classes (requirement
that policies with newer versions include the netlink class
definitions, remapping of fine-grained netlink classes in newer source
policies to single netlink class when generating older policies) from
George Coker.
Removed obsolete cond_check_type_rules() function and call and
cond_optimize_lists() call from checkpolicy.c; these are handled during
parsing and expansion now.
Updated calls to expand_module for interface change.
Changed checkmodule to verify that expand_module succeeds when building
base modules.
Merged module compiler fixes from Joshua Brindle.
Removed direct calls to hierarchy_check_constraints() and
check_assertions() from checkpolicy since they are now called
internally by expand_module().
Updated for changes to sepol expand_module and link_modules interfaces.
Sat Oct 15 2005 Dan Walsh <dwalsh@redhat.com> 1.27.9-2
- Rebuild to get latest libsepol
