SELinux binary policy manipulation library
Security-enhanced Linux is a feature of the Linux® kernel and a number
of utilities with enhanced security functionality designed to add
mandatory access controls to Linux. The Security-enhanced Linux kernel
contains new architectural components originally developed to improve
the security of the Flask operating system. These architectural
components provide general support for the enforcement of many kinds of
mandatory access control policies, including those based on the
concepts of Type Enforcement®, Role-based Access Control, and
Multi-level Security.
libsepol provides an API for the manipulation of SELinux binary
policies. It is used by checkpolicy (the policy compiler) and similar
tools, as well as by programs like load_policy that need to perform
specific transformations on binary policies such as customizing policy
boolean settings.
- Devel package for openSUSE:Factory
-
2
derived packages
- Links to openSUSE:Factory / libsepol
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout security:SELinux/libsepol && cd $_ - Create Badge
Source Files
| Filename | Size | Changed |
|---|---|---|
| _link | 0000000143 143 Bytes | |
| baselibs.conf | 0000000010 10 Bytes | |
| libsepol-3.4.tar.gz | 0000490628 479 KB | |
| libsepol-3.4.tar.gz.asc | 0000000833 833 Bytes | |
| libsepol.changes | 0000015353 15 KB | |
| libsepol.keyring | 0000010760 10.5 KB | |
| libsepol.spec | 0000004307 4.21 KB |
Revision 90 (latest revision is 97)
Johannes Segitz (jsegitz)
accepted
request 978292
from
Johannes Segitz (jsegitz)
(revision 90)
- Update to version 3.4 * Add 'ioctl_skip_cloexec' policy capability * Add sepol_av_perm_to_string * Add policy utilities * Support IPv4/IPv6 address embedding * Hardened/added many validations * Add support for file types in writing out policy.conf * Allow optional file type in genfscon rules
Comments 0