Skip to content

SELinux userspace release 3.5
Compare
Choose a tag to compare
@perfinion perfinion released this 23 Feb 14:03
· 19 commits to master since this release
3.5
d6e96c5
This commit was signed with the committer’s verified signature. The key has expired.
perfinion Jason Zaman
GPG key ID: 2BBED9CB1A68EF55
Expired
Learn about vigilant mode.

RELEASE 3.5

User-visible changes

  • Maintainer GPG fingerprints added to /SECURITY.md

  • semodule option --rebuild-if-modules-changed was renamed to --refresh

  • Remove dependency on the deprecated Python module distutils and install via pip

  • libsepol: Stricter policy validation

  • libsepol: do not write empty class definitions to allow simpler round-trip tests

  • libsepol: reject attributes in type av rules for kernel policies

  • libselinux: add getpidprevcon()

  • libselinux: restorecon hashtable and other misc fixes

  • libselinux: Add workaround to reduce pcre2 heap memory usage

  • sepolicy: Several python and GTK updates

  • sepolicy: Add missing booleans to man pages

  • sepolicy: Cache queries to speed up manpage generation

  • mcstrans: preserve runtime directory

  • fixfiles: Unmount temporary bind mounts on SIGINT

  • Large updates to translations and better handling for unsupported languages

  • Translation updated and better handling for unsupported languages

  • Translation updated for generated descriptions

  • A lot of static code analysis issues, fuzzer issues and compiler warnings fixed

  • Bug fixes

Development-relevant changes

  • Install python modules via pip instead of setup.py
  • ci: Run on Fedora36 instead of F34
  • ci: Run on Python3.11 and drop py3.5, py3.6
Assets 32
Loading