Releases: SELinuxProject/setools
Releases · SELinuxProject/setools
4.5.1
- Correct annotations of NetworkX types to make it optional again.
- Fix packaging issue for apol's style sheet (apol.css).
| Name |
SHA-256 SUM |
| setools-4.5.1.tar.bz2 |
25e47d00bbffd6046f55409c9ba3b08d9b1d5788cc159ea247d9e0ced8e482e7 |
4.5.0
User Visible Changes
- Add graphical results for information flow analysis and domain
transition analysis, available in apol, sedta, and seinfoflow.
- Add tooltips, What's This?, and detail popups in apol to help
cross-referencing query and analysis results along with
context-sensitive help.
Under The Hood Changes
- Rework apol to fully generate the UI programmatically.
- Update apol to PyQt6
- Replace deprecated uses of pkg_resources and distutils.
- Begin adding unit tests for apol UI.
Updated Dependencies
SETools now higher minimum versions of the following dependencies:
- Python 3.10
- NetworkX 2.6
- PyQt6
- Cython 0.29.14
New Dependencies
- pygraphviz (for seinfoflow, sedta, apol)
- pytest (if running unit tests)
| Name |
SHA-256 SUM |
| setools-4.5.0.tar.bz2 |
68469ae9bd114b42bba4cb41795577ca1e4f50e3e4234817f13ff1a8bbd9ce77 |
4.4.4
- Update for compiling with libsepol 3.6.
- Update apol to use fully specified PyQt enums.
- Correct minor code lint issues.
| Name |
SHA-256 SUM |
| setools-4.4.4.tar.bz2 |
3c5fa76a674fe3f6890d900df59b9d142e4b63c9ffbde653904f90ed6e666ef9 |
4.4.3
- Fix compilation with Cython 3.0.0.
- Improve man pages.
- Remove neverallow options in sediff.
- Add -r option to seinfoflow to get flows into the source type.
- Reject a rule with no permissions as invalid policy.
| Name |
SHA-256 SUM |
| setools-4.4.3.tar.bz2 |
2f751599dbed0d628fb268a3302dd8c578829f302bd28e8c08e182aef7fd5cb8 |
4.4.2
- Make NetworkX optional. sedta and seinfoflow tools, along with the
equivalent analyses in apol require NetworkX.
- Change unit test runner to pytest as setuptools' test command is
deprecated.
- Remove neverallow options in sesearch and apol. These are not usable
since they are removed in the final binary policy.
- Unit tests and CI tests improvements.
| Name |
SHA-256 SUM |
| setools-4.4.2.tar.bz2 |
f23e3c8635aa289096ca0218ca6f4568a4346e088bc46f374cb0917b7fb66f05 |
4.4.1
- Replace deprecated NetworkX function use in information flow and domain
transition analysis. This function was removed in NetworkX 3.0.
- Fix bug in apol copy and cut functions when copying from a tree view.
- Fix bug with extended permission set construction when a range includes
0x0.
- Add sesearch -Sp option for permission subset match.
- Fix error in man page description for sesearch -ep option.
- Improve output stability in constraint, common, class, role, and user
queries.
- Updated permission map.
- Fix bug in sechecker parsing of multiline values.
- Other code cleanups not visible to users.
| Name |
SHA-256 SUM |
| setools-4.4.1.tar.bz2 |
fcd161e55504aa4c361921833bf9d4cd58475c98746cfdacadd192a68788ae45 |
4.4.0
This SETools requires Python 3.6+ and libsepol 3.2+
User Visible Changes
- Added support for old Boolean name substitution in seinfo and sesearch.
- Added sechecker tool which is a configuration file driven analysis tool.
Development Related Changes
- Updated policy representation to handle policydb version 33, compressed
filename transitions.
- Changed apol tab registry to use metaclasses rather than having a multiple static
dictionaries in the code.
- Fixed bug in queries where checks that permissions were part of the specified
object class would incorrectly raise exceptions when the object class
criteria is a regex.
- Added type annotations to the code and added static type checking for
continuous integration tests.
- Reduced aggressiveness of default compiler flags. Since the C code is generated
by Cython, there typically isn't anything SETools can do when Cython causes
compiler warnings.
| Name |
SHA-256 SUM |
| setools-4.4.0.tar.bz2 |
f3786677e40b7f16a226f48f233dcf835e700739614a7dbed2ff61cc9607814e |
4.3.0
- Revised sediff method for TE rules. This drastically reduced memory and run time.
- Added infiniband context support to seinfo, sediff, and apol.
- Added apol configuration for location of Qt assistant.
- Fixed sediff issue where properties header would display when not requested.
- Fixed sediff issue with type_transition file name comparison.
- Fixed permission map socket sendto information flow direction.
- Added methods to TypeAttribute class to make it a complete Python collection.
- Genfscon now will look up classes rather than using fixed values which
were dropped from libsepol.
| Name |
SHA-256 SUM |
| setools-4.3.0.tar.bz2 |
315df3ae0eb29b399123c5e3330480c5d1c0da038671c9fd62a439c49a6f9105 |
4.2.2
Changes since 4.2.1:
- Remove source policy references from man pages, as loading source policies
is no longer supported.
- Fixed a performance regression in alias loading after alias dereferencing
fixes in 4.2.1.
| Name |
SHA-256 SUM |
| setools-4.2.2.tar.bz2 |
210bd0fa6ce6fa8a39b91dc46e406aa2482bc58108947430b8ac7c996eec263a |
4.2.1
Changes since 4.2.0:
- Set SIGPIPE handler for CLI tools.
- Fixed alias dereferencing in TypeQuery and type, category, and sensitivity
lookups.
- Fixed sediff bug for rendering modified nodecons.
- Fixed devicetreecon count output.
- Fixed policy target platform check.
- Fixed bug in creating permission set intersection in apol.
| Filename |
SHA256SUM |
| setools-4.2.1.tar.bz2 |
16cabe918ab5938515e4e3b80f56916a6c30b5eebbff8cbac113d0dc83b818c9 |
