Skip to content
This repository has been archived by the owner on Jun 18, 2018. It is now read-only.

Releases: TresysTechnology/setools

4.1.1

05 Aug 20:14
@pebenito pebenito
4.1.1
e03617e
Compare
Choose a tag to compare
4.1.1 Latest
Latest

This release has three changes since 4.1.1:

  • Update for libsepol 2.7
  • Update to permission maps
  • Fixes for apol help files
Assets 2
Loading

4.1.0

23 Jan 23:38
@pebenito pebenito
4.1.0
fd6889c
Compare
Choose a tag to compare
4.1.0

This release primarily focused on adding features to apol, but has several library enhancements. There is also one important bugfix in sediff. There were no changes since 4.1.0-rc.

Note This will not compile on the master branch of libsepol (what will be libsepol 2.7). A future release of SETools will have this support (when libsepol 2.7 is released).

Changes since 4.0.1:

Library

  • Implemented support for alternate install prefixes.
  • Implemented support for building setools with a locally-built libsepol.
  • Fixed an sediff bug with unioning rules after expansion.
  • Improved sediff memory usage.
  • Patch from Nicolas Iooss to make more stable output in TE rule permission lists.
  • Replaced string representations (e.g. rule types) with enumerations. Requires the enum34 (not enum) Python package if using Python < 3.4.

Apol

  • Implemented context menu option for exporting the information flow and domain transition analysis tree browser views.
  • Implemented CSV export of table results.
  • Implemented (clipboard) copy from table results.
  • Added missing "clear" button in object class query.
  • Implemented save/load settings for tabs.
  • Implemented save/load workspace (save all tabs settings).
  • Fixed include/exclude type dialog to keep its place when adding or removing types from an analysis.
  • Implemented filter on include/exclude type dialog to filter the lists by attribute.
Assets 2
Loading

4.1.0-rc

11 Dec 21:47
@pebenito pebenito
4.1.0-rc
6fa3f2c
Compare
Choose a tag to compare
4.1.0-rc Pre-release
Pre-release

This release primarily focused on adding features to apol, but has several library enhancements. There is also one important bugfix in sediff.

Changes since 4.0.1:

Library

  • Implemented support for alternate install prefixes.
  • Implemented support for building setools with a locally-built libsepol.
  • Fixed an sediff bug with unioning rules after expansion.
  • Improved sediff memory usage.
  • Patch from Nicolas Iooss to make more stable output in TE rule permission lists.
  • Replaced string representations (e.g. rule types) with enumerations. Requires the enum34 (not enum) Python package if using Python < 3.4.

Apol

  • Implemented context menu option for exporting the information flow and domain transition analysis tree browser views.
  • Implemented CSV export of table results.
  • Implemented (clipboard) copy from table results.
  • Added missing "clear" button in object class query.
  • Implemented save/load settings for tabs.
  • Implemented save/load workspace (save all tabs settings).
  • Fixed include/exclude type dialog to keep its place when adding or removing types from an analysis.
  • Implemented filter on include/exclude type dialog to filter the lists by attribute.

Warning: If you use the 2.5 SELinux userspace toolchain and use this to replace SETools 3.x on your system, it will break the couple of tools from sepolgen/policycoreutils that depend on SETools (e.g. sepolicy) since libqpol/libapol C libraries and their corresponding Python wrappers are no longer provided. The >=2.6 SELinux userspace toolchain has updated its support to setools4, and does not have this problem.

Assets 2
Loading

4.0.1

17 May 17:34
@pebenito pebenito
4.0.1
06ee081
Compare
Choose a tag to compare
4.0.1

This is primarily a bugfix release.

Changes since 4.0.0:

Library:

  • Fixed a compile error on 32bit systems.
  • Changed domain transition analysis output to use lists instead of generators. This fixes a display problem in apol's DTA browser.

apol:

  • Replaced icons with stock Qt icons to remove license issues with some distributions.

sesearch:

  • Changed xperm options to bring in line with sediff, e.g. --allowx changed to --allowxperm. Python's argument parser will still detect --allowx as an abbreviation of --allowxperm, so compatibility is preserved.

This release requires libsepol-2.5, which is unfortunately not available yet on some distributions.

Warning: If you use this to replace SETools 3.x on your system, it will break the couple of tools from sepolgen/policycoreutils that depend on SETools (e.g. sepolicy) since libqpol/libapol C libraries and their corresponding Python wrappers are no longer provided.

Assets 2
Loading

4.0.0

04 May 13:52
@pebenito pebenito
4.0.0
1a174c5
Compare
Choose a tag to compare
4.0.0

SETools has been reimplemented in Python. The following tools were reimplemented:

  • apol
  • sediff
  • seinfo
  • sesearch

The following tools were added:

  • sedta (command line domain transition analysis)
  • seinfoflow (command line information flow analysis)

For an overview of the user interface changes since SETools 3.x, please see the wiki.

This release requires libsepol-2.5, which is unfortunately not available yet on some distributions.

Warning: If you use this to replace SETools 3.x on your system, it will break the couple of tools from sepolgen/policycoreutils that depend on SETools (e.g. sepolicy) since libqpol/libapol C libraries and their corresponding Python wrappers are no longer provided.

The major changes since the 4.0.0-beta release are:

  • Completed apol
  • Implemented v30 policy support (xperm rules; initial contribution from Richard Haines)
  • Implemented Xen policy support (initial contribution from Richard Haines)
  • Added man pages
Assets 2
Loading

4.0.0-beta

19 Feb 13:18
@pebenito pebenito
4.0.0-beta
403da9a
Compare
Choose a tag to compare
4.0.0-beta Pre-release
Pre-release

In this release, sediff is implemented and the analysis library is feature complete, except for pending v30 policy support. Sediff will find the differences in two policies. This version is more comprehensive than prior versions, finding differences that were missed in previous versions such as constraints and portcons. The remaining effort for the 4.0.0 final release is completing the apol GUI, plus any bugfixing.

Warning: If you use this to replace SETools 3.x on your system, it will break the couple of tools from sepolgen/policycoreutils that depend on SETools (e.g. sepolicy) since libqpol/libapol C libraries and their corresponding Python wrappers are no longer provided.

Completed CLI tools:

  • seinfo
  • sesearch
  • sediff
  • sedta
  • seinfoflow

Completed apol features:

  • TE rule query
  • RBAC rule query
  • MLS rule query
  • Information flow analysis
  • Domain transition analysis
Assets 2
Loading

4.0.0-alpha3

15 Dec 18:32
@pebenito pebenito
4.0.0-alpha3
a93682f
Compare
Choose a tag to compare
4.0.0-alpha3 Pre-release
Pre-release

In this release, the analysis library is largely completed, except for sediff functions. PyQt5 was chosen for the GUI library for SETools; apol has been started and a few rule searches and analyses have been added. The design of apol shifted towards a simpler, single-level tab design, so different types of analyses can be seen alongside each other.

Warning: If you replace the SETools 3.x on your system, it will break the couple of tools from sepolgen/policycoreutils that depend on SETools (e.g. sepolicy) since libqpol/libapol C libraries and their corresponding SWIG wrappers are no longer provided.

Completed CLI tools:

  • seinfo
  • sesearch
  • sedta
  • seinfoflow

Completed (and nearly completed) apol features:

  • TE rule query
  • RBAC rule query
  • MLS rule query
  • Information flow analysis
  • Domain transition analysis
Assets 2
Loading

4.0.0-alpha2

11 Feb 15:37
@pebenito pebenito
4.0.0-alpha2
d8f4f7b
Compare
Choose a tag to compare
4.0.0-alpha2 Pre-release
Pre-release

In this release, SETools has been updated to support Python 3 (tested with 3.3 and 3.4) and includes Travis CI continuous integration testing. Many features are complete or nearly complete and available for use via the CLI tools. The GUI tools have not yet been started.

Warning: If you replace the SETools 3.x on your system, it will break the couple of tools from sepolgen/policycoreutils that depend on SETools (e.g. sepolicy) since libqpol/libapol C libraries and their corresponding SWIG wrappers are no longer provided.

Completed (and nearly completed) features:

  • TE rule query
  • RBAC rule query
  • MLS rule query (range_transition; except for range criteria)
  • Type query
  • Role query
  • User query (except level/range criteria)
  • Object class query
  • Common query
  • Boolean query
  • Policy capability query
  • All context queries (portcon, genfscon, etc, except range criteria)
  • Information flow analysis
  • Domain transition analysis
Assets 2
Loading

4.0.0-alpha1

29 Oct 19:21
@pebenito pebenito
4.0.0-alpha1
4bd1fe1
Compare
Choose a tag to compare
4.0.0-alpha1 Pre-release
Pre-release

The dependence on SETools 3 has been removed. It is tested on Python 2.7, but development will likely be transitioning to Python 3.3, as the barriers blocking 3.3 have been addressed.

While this is still alpha code, the existing code is fairly well tested, with 73% coverage from unit tests. The core CLI tools, with the exception of seinfo, are nearly complete. The GUI tools have not been started yet.

Warning: If you replace the SETools 3.x on your system, it will break the couple of tools from sepolgen/policycoreutils that depend on SETools (e.g. sepolicy) since the API has changed.

Assets 2
Loading