libsepol1-32bit - SELinux binary policy manipulation library

Property Value
Distribution openSUSE Leap 15.0
Repository openSUSE Oss all
Package filename libsepol1-32bit-2.6-lp150.1.32.x86_64.rpm
Package name libsepol1-32bit
Package version 2.6
Package release lp150.1.32
Package architecture x86_64
Package type rpm
Category System/Libraries
License LGPL-2.1+
Maintainer -
Download size 243.93 KB
Installed size 687.41 KB
libsepol provides an API for the manipulation of SELinux binary
policies. It is used by checkpolicy (the policy compiler) and similar
tools, as well as by programs like load_policy that need to perform
specific transformations on binary policies such as customizing
policy boolean settings.
(Security-enhanced Linux is a feature of the kernel and some
utilities that implement mandatory access control policies, such as
Type Enforcement, Role-based Access Control and Multi-Level


Package Version Architecture Repository
libsepol1-32bit - - -


Name Value -


Name Value - - -
libsepol1-32bit = 2.6-lp150.1.32
libsepol1-32bit(x86-32) = 2.6-lp150.1.32


Type URL
Binary Package libsepol1-32bit-2.6-lp150.1.32.x86_64.rpm
Source Package libsepol-2.6-lp150.1.32.src.rpm

Install Howto

Install libsepol1-32bit rpm package:

# zypper install libsepol1-32bit




2017-11-24 -
- Update to version 2.6. Notable changes:
* Add support for converting extended permissions to CIL
* Create user and role caches when building binary policy
* Check for too many permissions in classes and commons in CIL
* Fix xperm mapping between avrule and avtab
* Produce more meaningful error messages for conflicting type rules in CIL
* Change which attributes CIL keeps in the binary policy
* Warn instead of fail if permission is not resolved
* Ignore object_r when adding userrole mappings to policydb
* Correctly detect unknown classes in sepol_string_to_security_class
* Fix neverallowxperm checking on attributes
* Only apply bounds checking to source types in rules
* Fix CIL and not add an attribute as a type in the attr_type_map
* Fix extended permissions neverallow checking
* Fix CIL neverallow and bounds checking
* Add support for portcon dccp protocol
2016-07-15 -
- Update RPM groups, trim description and combine filelist entries.
2016-07-14 -
- Cleanup spec file with spec-cleaner
- Make spec file a bit more easy
- Ship new supbackage (-tools)
2016-07-14 -
- Without bug number no submit to SLE 12 SP2 is possible, so to make
sle-changelog-checker happy: bsc#988977
2016-07-14 -
- Adjusted source link
2016-07-05 -
- update version 2.5
* Fix unused variable annotations
* Fix uninitialized variable in CIL
* Validate extended avrules and permissionxs in CIL
* Add support in CIL for neverallowx
* Fully expand neverallowxperm rules
* Add support for unordered classes to CIL
* Add neverallow support for ioctl extended permissions
* Improve CIL block and macro call recursion detection
* Fix CIL uninitialized false positive in cil_binary
* Provide error in CIL if classperms are empty
* Add userattribute{set} functionality to CIL
* fix CIL blockinherit copying segfault and add macro restrictions
* fix CIL NULL pointer dereference when copying classpermission/set
* Add CIL support for ioctl whitelists
* Fix memory leak when destroying avtab
* Replace sscanf in module_to_cil
* Improve CIL resolution error messages
* Fix policydb_read for policy versions < 24
* Added CIL bounds checking and refactored CIL Neverallow checking
* Refactored libsepol Neverallow and bounds (hierarchy) checking
* Treat types like an attribute in the attr_type_map
* Add new ebitmap function named ebitmap_match_any()
* switch operations to extended perms
* Write auditadm_r and secadm_r roles to base module when writing CIL
* Fix module to CIL to only associate declared roleattributes with in-scope types
* Don't allow categories/sensitivities inside blocks in CIL
* Replace fmemopen() with internal function in libsepol
* Verify users prior to evaluating users in cil
* Binary modules do not support ioctl rules
* Add support for ioctl command whitelisting
* Don't use symbol versioning for static object files
* Add sepol_module_policydb_to_cil(), sepol_module_package_to_cil(),
and sepol_ppfile_to_module_package()
* Move secilc out of libsepol
* fix building Xen policy with devicetreecon, and add devicetreecon
CIL documentation
* bool_copy_callback set state on creation
* Add device tree ocontext nodes to Xen policy
* Widen Xen IOMEM context entries
* Fix error path in mls_semantic_level_expand()
* Update to latest CIL, includes new name resolution and fixes ordering
issues with blockinherit statements, and bug fixes
- changes in 2.4
* Remove assumption that SHLIBDIR is ../../ relative to LIBDIR
* Fix bugs found by hardened gcc flags
* Build CIL into libsepol. libsepol can be built without CIL by setting the
DISABLE_CIL flag to 'y'
* Add an API function to set target_platform
* Report all neverallow violations
* Improve check_assertions performance
* Allow libsepol C++ static library on device

See Also

Package Description
libserd-0-0-0.28.0-lp150.2.4.x86_64.rpm A lightweight C library for RDF syntax
libserd-0-0-32bit-0.28.0-lp150.2.4.x86_64.rpm A lightweight C library for RDF syntax
libserf-1-1-1.3.9-lp150.2.6.x86_64.rpm High-Performance Asynchronous HTTP Client Library
libserf-devel-1.3.9-lp150.2.6.x86_64.rpm High-Performance Asynchronous HTTP Client Library
libserializer-1.1.2-lp150.2.16.noarch.rpm JFreeReport General Serialization Framework
libserializer-javadoc-1.1.2-lp150.2.16.noarch.rpm Javadoc for libserializer
libserialport-devel-0.1.1-lp150.1.3.x86_64.rpm Handles OS-specific details when using serial ports
libserialport0-0.1.1-lp150.1.3.x86_64.rpm Handles OS-specific details when using serial ports
libsexy-devel-0.1.11-lp150.2.1.x86_64.rpm Extended Widgets for GTK+
libsexy-doc-0.1.11-lp150.2.1.x86_64.rpm Documentation for the GTK+ extended widgets
libsexy2-0.1.11-lp150.2.1.x86_64.rpm Extended Widgets for GTK+
libsfml2-2_4-2.4.2-lp150.1.5.x86_64.rpm Free multimedia C++ API
libsfml2-2_4-32bit-2.4.2-lp150.1.5.x86_64.rpm Free multimedia C++ API
libsfst-hfst0-3.12.2-lp150.1.5.x86_64.rpm SFST Finite State Tools
libsgutils-devel-1.43-lp150.6.1.x86_64.rpm A collection of tools that send SCSI commands to devices