SELinux userspace release 20190315 / 2.9
RELEASE 20190315 (2.9)
User-visible changes:
-
Spelling errors were fixed in libselinux man pages
-
audit2allow supports xperms now. There are new '-x'/'--xperms' options which
turn on generating of extended permisssion AV rules. -
semanage login is fixed in order not to log two audit events which one of them
was correct. -
libsemanage resets umask before creating directories so that file permissions
should not change after a change is committed. -
Correct user name is used in ROLE_REMOVE audit events
-
The noise produced by checkpolicy command line tool is reduced now.
-
A new option '-S' or '--sort' is added to checkpolicy to sort the ocontexts
before writing out the binary policy. -
sepolicy and semanage accept aliases now.
-
Deprecated at_console statement was removed from dbus configuration.
-
semanage export output includes ibpkey and ibendport now.
-
audit2why can be run as non-root user now.
-
Added russian translations for man pages
-
setfiles can once again be used on SELinux-disabled hosts to label files,
-
setfiles and restorecon once again correctly ignore files with customizable
types, -
semanage login no longer fails if used with a group that has many members,
-
semanage boolean no longer fails if listing for a policy store other than the
active one. -
By default, /usr/bin/python3 is used by Python scripts and for building modules
with python bindings.
Packaging-relevant changes:
-
Usage of DESTDIR in restorecond is consistent with other directories now
-
By default, /usr/bin/python3 is used by Python scripts and for building modules
with python bindings. It's possible to switch to Python 2 using the following commands:
$ pathfix.py -i/usr/bin/python `git grep -l -E '^#!.*/usr/bin/python'`
$ make PYTHON=/usr/bin/python` ...
Issues fixed: