From 6980fbba22a1ba20c340d87b6099545ec9bff7d8 Mon Sep 17 00:00:00 2001
From: MSVSphere Packaging Team <packager@msvsphere-os.ru>
Date: Tue, 26 Nov 2024 17:14:22 +0300
Subject: [PATCH] import libsepol-3.7-2.el10

---
 .gitignore                                    |    1 +
 .libsepol.metadata                            |    1 +
 ...ompute_sid-Do-not-destroy-uninitiali.patch |   51 +
 SOURCES/bachradsusi.gpg                       |  321 ++++
 SOURCES/libsepol-3.7.tar.gz.asc               |   16 +
 SPECS/libsepol.spec                           | 1450 +++++++++++++++++
 6 files changed, 1840 insertions(+)
 create mode 100644 .gitignore
 create mode 100644 .libsepol.metadata
 create mode 100644 SOURCES/0001-libsepol-sepol_compute_sid-Do-not-destroy-uninitiali.patch
 create mode 100644 SOURCES/bachradsusi.gpg
 create mode 100644 SOURCES/libsepol-3.7.tar.gz.asc
 create mode 100644 SPECS/libsepol.spec

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..ecf7d92
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1 @@
+SOURCES/libsepol-3.7.tar.gz
diff --git a/.libsepol.metadata b/.libsepol.metadata
new file mode 100644
index 0000000..e53ad7e
--- /dev/null
+++ b/.libsepol.metadata
@@ -0,0 +1 @@
+f066bfde61962db11aa025366204c7364702e223 SOURCES/libsepol-3.7.tar.gz
diff --git a/SOURCES/0001-libsepol-sepol_compute_sid-Do-not-destroy-uninitiali.patch b/SOURCES/0001-libsepol-sepol_compute_sid-Do-not-destroy-uninitiali.patch
new file mode 100644
index 0000000..6d5d41c
--- /dev/null
+++ b/SOURCES/0001-libsepol-sepol_compute_sid-Do-not-destroy-uninitiali.patch
@@ -0,0 +1,51 @@
+From 453d54da10a96e1494ef8aea867f6c9eb8751677 Mon Sep 17 00:00:00 2001
+From: Vit Mojzis <vmojzis@redhat.com>
+Date: Fri, 19 Jul 2024 18:17:13 +0200
+Subject: [PATCH] libsepol/sepol_compute_sid: Do not destroy uninitialized
+ context
+MIME-Version: 1.0
+Content-Type: text/plain; charset=UTF-8
+Content-Transfer-Encoding: 8bit
+
+Avoid context_destroy() on "newcontext" before context_init() is called.
+
+Fixes:
+  libsepol-3.6/src/services.c:1335: var_decl: Declaring variable "newcontext" without initializer.
+  libsepol-3.6/src/services.c:1462: uninit_use_in_call: Using uninitialized value "newcontext.range.level[0].cat.node" when calling "context_destroy".
+  \# 1460|   	rc = sepol_sidtab_context_to_sid(sidtab, &newcontext, out_sid);
+  \# 1461|         out:
+  \# 1462|-> 	context_destroy(&newcontext);
+  \# 1463|   	return rc;
+  \# 1464|   }
+
+Signed-off-by: Vit Mojzis <vmojzis@redhat.com>
+Reviewed-by: Christian Göttsche <cgzones@googlemail.com>
+Acked-by: Stephen Smalley <stephen.smalley.work@gmail.com>
+---
+ libsepol/src/services.c | 6 ++----
+ 1 file changed, 2 insertions(+), 4 deletions(-)
+
+diff --git a/libsepol/src/services.c b/libsepol/src/services.c
+index 36e2368f..f3231f17 100644
+--- a/libsepol/src/services.c
++++ b/libsepol/src/services.c
+@@ -1362,14 +1362,12 @@ static int sepol_compute_sid(sepol_security_id_t ssid,
+ 	scontext = sepol_sidtab_search(sidtab, ssid);
+ 	if (!scontext) {
+ 		ERR(NULL, "unrecognized SID %d", ssid);
+-		rc = -EINVAL;
+-		goto out;
++		return -EINVAL;
+ 	}
+ 	tcontext = sepol_sidtab_search(sidtab, tsid);
+ 	if (!tcontext) {
+ 		ERR(NULL, "unrecognized SID %d", tsid);
+-		rc = -EINVAL;
+-		goto out;
++		return -EINVAL;
+ 	}
+ 
+ 	if (tclass && tclass <= policydb->p_classes.nprim)
+-- 
+2.45.2
+
diff --git a/SOURCES/bachradsusi.gpg b/SOURCES/bachradsusi.gpg
new file mode 100644
index 0000000..ff4e382
--- /dev/null
+++ b/SOURCES/bachradsusi.gpg
@@ -0,0 +1,321 @@
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+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+=I8Dr
+-----END PGP PUBLIC KEY BLOCK-----
\ No newline at end of file
diff --git a/SOURCES/libsepol-3.7.tar.gz.asc b/SOURCES/libsepol-3.7.tar.gz.asc
new file mode 100644
index 0000000..dbff0d7
--- /dev/null
+++ b/SOURCES/libsepol-3.7.tar.gz.asc
@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=YJy0
+-----END PGP SIGNATURE-----
diff --git a/SPECS/libsepol.spec b/SPECS/libsepol.spec
new file mode 100644
index 0000000..97fde76
--- /dev/null
+++ b/SPECS/libsepol.spec
@@ -0,0 +1,1450 @@
+## START: Set by rpmautospec
+## (rpmautospec version 0.6.5)
+## RPMAUTOSPEC: autochangelog
+## END: Set by rpmautospec
+
+Summary: SELinux binary policy manipulation library
+Name: libsepol
+Version: 3.7
+Release: 2%{?dist}
+License: LGPL-2.1-or-later
+Source0: https://github.com/SELinuxProject/selinux/releases/download/3.7/libsepol-3.7.tar.gz
+Source1: https://github.com/SELinuxProject/selinux/releases/download/3.7/libsepol-3.7.tar.gz.asc
+Source2: https://github.com/bachradsusi.gpg
+URL: https://github.com/SELinuxProject/selinux/wiki
+# $ git clone https://github.com/fedora-selinux/selinux.git
+# $ cd selinux
+# $ git format-patch -N libsepol-3.7 -- libsepol
+# $ i=1; for j in 0*patch; do printf "Patch%04d: %s\n" $i $j; i=$((i+1));done
+# Patch list start
+Patch0001: 0001-libsepol-sepol_compute_sid-Do-not-destroy-uninitiali.patch
+# Patch list end
+BuildRequires: make
+BuildRequires: gcc
+BuildRequires: flex
+BuildRequires: gnupg2
+Obsoletes: %{name}-compat = 3.1-4
+
+%description
+Security-enhanced Linux is a feature of the Linux® kernel and a number
+of utilities with enhanced security functionality designed to add
+mandatory access controls to Linux.  The Security-enhanced Linux
+kernel contains new architectural components originally developed to
+improve the security of the Flask operating system. These
+architectural components provide general support for the enforcement
+of many kinds of mandatory access control policies, including those
+based on the concepts of Type Enforcement®, Role-based Access
+Control, and Multi-level Security.
+
+libsepol provides an API for the manipulation of SELinux binary policies.
+It is used by checkpolicy (the policy compiler) and similar tools, as well
+as by programs like load_policy that need to perform specific transformations
+on binary policies such as customizing policy boolean settings.
+
+%package devel
+Summary: Header files and libraries used to build policy manipulation tools
+Requires: %{name}%{?_isa} = %{version}-%{release}
+
+%description devel
+The libsepol-devel package contains the libraries and header files
+needed for developing applications that manipulate binary policies. 
+
+%package static
+Summary: static libraries used to build policy manipulation tools
+Requires: %{name}-devel%{?_isa} = %{version}-%{release}
+
+%description static
+The libsepol-static package contains the static libraries and header files
+needed for developing applications that manipulate binary policies. 
+
+%package utils
+Summary: SELinux libsepol utilities
+Requires: %{name}%{?_isa} = %{version}-%{release}
+
+%description utils
+The libsepol-utils package contains the utilities
+
+%prep
+%{gpgverify} --keyring='%{SOURCE2}' --signature='%{SOURCE1}' --data='%{SOURCE0}'
+%autosetup -p 2 -n libsepol-%{version}
+
+# sparc64 is an -fPIC arch, so we need to fix it here
+%ifarch sparc64
+sed -i 's/fpic/fPIC/g' src/Makefile
+%endif
+
+%build
+%set_build_flags
+CFLAGS="$CFLAGS -fno-semantic-interposition"
+%make_build LIBDIR="%{_libdir}"
+
+%install
+mkdir -p ${RPM_BUILD_ROOT}%{_libdir} 
+mkdir -p ${RPM_BUILD_ROOT}%{_includedir} 
+mkdir -p ${RPM_BUILD_ROOT}%{_bindir} 
+mkdir -p ${RPM_BUILD_ROOT}%{_mandir}/man3
+mkdir -p ${RPM_BUILD_ROOT}%{_mandir}/man8
+%make_install LIBDIR="%{_libdir}" SHLIBDIR="%{_libdir}"
+rm -rf ${RPM_BUILD_ROOT}%{_mandir}/man8/gen*
+rm -rf ${RPM_BUILD_ROOT}%{_mandir}/ru/man8
+
+%files static
+%{_libdir}/libsepol.a
+
+%files devel
+%{_libdir}/libsepol.so
+%{_libdir}/pkgconfig/libsepol.pc
+%{_includedir}/sepol/*.h
+%{_mandir}/man3/*.3.gz
+%dir %{_includedir}/sepol
+%dir %{_includedir}/sepol/policydb
+%{_includedir}/sepol/policydb/*.h
+%dir %{_includedir}/sepol/cil
+%{_includedir}/sepol/cil/*.h
+
+%files
+%license LICENSE
+%{_libdir}/libsepol.so.2
+
+%files utils
+%{_bindir}/chkcon
+%{_bindir}/sepol_check_access
+%{_bindir}/sepol_compute_av
+%{_bindir}/sepol_compute_member
+%{_bindir}/sepol_compute_relabel
+%{_bindir}/sepol_validate_transition
+%{_mandir}/man8/chkcon.8.gz
+
+%changelog
+* Tue Nov 26 2024 MSVSphere Packaging Team <packager@msvsphere-os.ru> - 3.7-2
+- Rebuilt for MSVSphere 10
+
+## START: Generated by rpmautospec
+* Fri Aug 09 2024 Vit Mojzis <vmojzis@redhat.com> - 3.7-4
+- libsepol-3.7-2
+- sepol_compute_sid: Do not destroy uninitialized context
+
+* Thu Jun 27 2024 Petr Lautrbach <lautrbach@redhat.com> - 3.7-1
+- SELinux userspace 3.7 release
+
+* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 3.6-4
+- Bump release for June 2024 mass rebuild
+
+* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 3.6-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
+
+* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 3.6-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
+
+* Thu Dec 14 2023 Petr Lautrbach <lautrbach@redhat.com> - 3.6-1
+- SELinux userspace 3.6 release
+
+* Thu Nov 23 2023 Petr Lautrbach <lautrbach@redhat.com> - 3.6-0.rc2.1
+- SELinux userspace 3.6-rc2 release
+
+* Fri Nov 10 2023 Petr Lautrbach <lautrbach@redhat.com> - 3.6-0.rc1.1
+- SELinux userspace 3.6-rc1 release
+
+* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 3.5-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
+
+* Fri Feb 24 2023 Petr Lautrbach <lautrbach@redhat.com> - 3.5-1
+- SELinux userspace 3.5 release
+
+* Mon Feb 13 2023 Petr Lautrbach <lautrbach@redhat.com> - 3.5-0.rc3.1
+- SELinux userspace 3.5-rc3 release
+
+* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 3.5-0.rc2.1.1
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
+
+* Mon Jan 16 2023 Petr Lautrbach <lautrbach@redhat.com> - 3.5-0.rc2.1
+- SELinux userspace 3.5-rc2 release
+
+* Fri Dec 23 2022 Petr Lautrbach <lautrbach@redhat.com> - 3.5-0.rc1.1
+- SELinux userspace 3.5-rc1 release
+
+* Mon Nov 21 2022 Petr Lautrbach <lautrbach@redhat.com> - 3.4-4
+- Rebase on upstream f56a72ac9e86
+
+* Thu Jul 21 2022 Fedora Release Engineering <releng@fedoraproject.org> - 3.4-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
+
+* Wed May 25 2022 Petr Lautrbach <plautrba@redhat.com> - 3.4-2
+- rebuilt
+
+* Thu May 19 2022 Petr Lautrbach <plautrba@redhat.com> - 3.4-1
+- SELinux userspace 3.4 release
+
+* Tue May 10 2022 Petr Lautrbach <plautrba@redhat.com> - 3.4-0.rc3.1
+- SELinux userspace 3.4-rc3 release
+
+* Thu Apr 21 2022 Petr Lautrbach <plautrba@redhat.com> - 3.4-0.rc2.1
+- SELinux userspace 3.4-rc2 release
+
+* Tue Apr 12 2022 Petr Lautrbach <plautrba@redhat.com> - 3.4-0.rc1.1
+- SELinux userspace 3.4-rc1 release
+
+* Thu Jan 20 2022 Fedora Release Engineering <releng@fedoraproject.org> - 3.3-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
+
+* Thu Nov 11 2021 Petr Lautrbach <plautrba@redhat.com> - 3.3-2
+- Use correct libdir in libsepol.pc (#2018492)
+
+* Fri Oct 22 2021 Petr Lautrbach <plautrba@redhat.com> - 3.3-1
+- SELinux userspace 3.3 release
+
+* Thu Oct  7 2021 Petr Lautrbach <plautrba@redhat.com> - 3.3-0.rc3.1
+- SELinux userspace 3.3-rc3 release
+
+* Wed Sep 29 2021 Petr Lautrbach <plautrba@redhat.com> - 3.3-0.rc2.1
+- SELinux userspace 3.3-rc2 release
+
+* Wed Jul 28 2021 Petr Lautrbach <plautrba@redhat.com> - 3.2-3
+- Rebase on upstream commit 32611aea6543
+
+* Thu Jul 22 2021 Fedora Release Engineering <releng@fedoraproject.org> - 3.2-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
+
+* Mon Mar  8 2021 Petr Lautrbach <plautrba@redhat.com> - 3.2-1
+- SELinux userspace 3.2 release
+
+* Fri Feb  5 2021 Petr Lautrbach <plautrba@redhat.com> - 3.2-0.rc2.1
+- SELinux userspace 3.2-rc2 release
+
+* Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 3.2-0.rc1.1.1
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
+
+* Wed Jan 20 2021 Petr Lautrbach <plautrba@redhat.com> - 3.2-0.rc1.1
+- SELinux userspace 3.2-rc1 release
+
+* Fri Nov 20 2020 Petr Lautrbach <plautrba@redhat.com> - 3.1-5
+- Drop and obsolete libsepol-compat subpackage
+- cil: Give error for more than one true or false block
+
+* Fri Oct 23 2020 Petr Lautrbach <plautrba@redhat.com> - 3.1-4
+- Drop deprecated functions and duplicated symbols
+- Dange library version to libsepol.so.2
+- temporary ship -compat with libsepol.so.1
+- Re-enable LTO flags
+
+* Mon Jul 27 2020 Petr Lautrbach <plautrba@redhat.com> - 3.1-3
+- Disable LTO cflags
+- Drop telinit from % post sciptlet
+
+* Mon Jul 13 2020 Tom Stellard <tstellar@redhat.com> - 3.1-2
+- Use make macros
+- https://fedoraproject.org/wiki/Changes/UseMakeBuildInstallMacro
+- Use set_build_flags and -fno-semantic-interposition
+
+* Fri Jul 10 2020 Petr Lautrbach <plautrba@redhat.com> - 3.1-1
+- SELinux userspace 3.1 release
+
+* Wed Jan 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 3.0-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
+
+* Tue Jan 28 2020 Petr Lautrbach <plautrba@redhat.com> - 3.0-2
+- Fix -fno-common issues discovered by GCC 10
+
+* Fri Dec  6 2019 Petr Lautrbach <plautrba@redhat.com> - 3.0-1
+- SELinux userspace 3.0 release
+
+* Mon Nov 11 2019 Petr Lautrbach <plautrba@redhat.com> - 3.0-0.rc.1
+- SELinux userspace 3.0-rc1 release
+
+* Thu Jul 25 2019 Fedora Release Engineering <releng@fedoraproject.org> - 2.9-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
+
+* Mon Mar 18 2019 Petr Lautrbach <plautrba@redhat.com> - 2.9-1
+- SELinux userspace 2.9 release
+
+* Wed Mar  6 2019 Petr Lautrbach <plautrba@redhat.com> - 2.9-0.rc2.1
+- SELinux userspace 2.9-rc2 release
+
+* Fri Feb 01 2019 Fedora Release Engineering <releng@fedoraproject.org> - 2.9-0.rc1.1.1
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
+
+* Fri Jan 25 2019 Petr Lautrbach <plautrba@redhat.com> - 2.9-0.rc1.1
+- SELinux userspace 2.9-rc1 release
+
+* Tue Nov 13 2018 Petr Lautrbach <plautrba@redhat.com> - 2.8-3
+- Fix RESOURCE_LEAK coverity scan defects
+
+* Fri Jul 13 2018 Fedora Release Engineering <releng@fedoraproject.org> - 2.8-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
+
+* Fri May 25 2018 Petr Lautrbach <plautrba@workstation> - 2.8-1
+- SELinux userspace 2.8 release
+
+* Mon May 14 2018 Petr Lautrbach <plautrba@redhat.com> - 2.8-0.rc3.1
+- SELinux userspace 2.8-rc1 release candidate
+
+* Mon Apr 23 2018 Petr Lautrbach <plautrba@redhat.com> - 2.0-0.rc1.1
+- SELinux userspace 2.8-rc1 release candidate
+
+* Wed Mar 21 2018 Petr Lautrbach <plautrba@redhat.com> - 2.7-6
+- Prevent freeing unitialized value in ibendport handling
+- Add support for the SCTP portcon keyword
+- Export sepol_polcap_getnum/name functions
+
+* Tue Mar 13 2018 Petr Lautrbach <plautrba@redhat.com> - 2.7-5
+- cil: Create new keep field for type attribute sets
+- build: follow standard semantics for DESTDIR and PREFIX
+- cil: show an error when cil_expr_to_string() fails
+
+* Wed Feb 07 2018 Fedora Release Engineering <releng@fedoraproject.org> - 2.7-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
+
+* Wed Nov 22 2017 Petr Lautrbach <plautrba@redhat.com> - 2.7-3
+- free ibendport device names
+
+* Fri Oct 20 2017 Petr Lautrbach <plautrba@redhat.com> - 2.7-2
+- reset pointer after free in cil_strpool_destroy()
+- cil: Add ability to redeclare types[attributes]
+- cil: Keep attributes used by generated attributes in neverallow rules
+- use IN6ADDR_ANY_INIT to initialize IPv6 addresses
+- fix memory leak in sepol_bool_query()
+- cil: drop wrong unused attribute
+- cil: fix -Wwrite-strings warning
+- cil: __cil_post_db_neverallow_attr_helper() does not use extra_args
+
+* Mon Aug 07 2017 Petr Lautrbach <plautrba@redhat.com> - 2.7-1
+- Update to upstream release 2017-08-04
+
+* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.6-5
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
+
+* Sun Jul 30 2017 Florian Weimer <fweimer@redhat.com> - 2.6-4
+- Rebuild with binutils fix for ppc64le (#1475636)
+
+* Fri Jul 28 2017 Petr Lautrbach <plautrba@redhat.com> - 2.6-3
+- Fix neverallow bug when checking conditional policy
+- Destroy the expanded level when mls_semantic_level_expand() fails
+- Do not seg fault on sepol_*_key_free(NULL)
+
+* Wed Jul 26 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.6-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
+
+* Sun Feb 12 2017 Petr Lautrbach <plautrba@redhat.com> - 2.6-1
+- Update to upstream release 2016-10-14
+
+* Fri Feb 10 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.5-11
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
+
+* Mon Oct 03 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-10
+- Check for too many permissions in classes and commons in CIL
+- Fix xperm mapping between avrule and avtab
+- tests: Fix mispelling of optimization option
+- Fix unused/uninitialized variables on mac build
+- Produce more meaningful error messages for conflicting type rules in CIL
+- make "make test" fail when a CUnit test fails
+- tests: fix g_b_role_2 test
+- Change which attributes CIL keeps in the binary policy
+- Port str_read() from kernel and remove multiple occurances of similar code
+- Use calloc instead of malloc for all the *_to_val_structs
+- Fix bugs found by AFL
+- Fix memory leak in expand.c
+- Fix invalid read when policy file is corrupt
+- Fix possible use of uninitialized variables
+
+* Mon Aug 01 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-9
+- Warn instead of fail if permission is not resolved
+- Ignore object_r when adding userrole mappings to policydb
+
+* Thu Jul 14 2016 Petr Lautrbach <plautrba@redhat.com> - 2.5-8
+- Add missing return to sepol_node_query()
+- Add missing <stdarg.h> include
+
+* Thu Jun 23 2016 Petr Lautrbach <plautrba@redhat.com> - 2.5-7
+- Correctly detect unknown classes in sepol_string_to_security_class
+- Sort object files for deterministic linking order
+- Fix neverallowxperm checking on attributes
+- Remove libsepol.map when cleaning
+- Add high-level language line marking support to CIL
+
+* Fri May 06 2016 Petr Lautrbach <plautrba@redhat.com> - 2.5-6
+- Change logic of bounds checking to match change in kernel
+- Fix multiple spelling errors
+
+* Mon May 02 2016 Petr Lautrbach <plautrba@redhat.com> - 2.5-5
+- Only apply bounds checking to source types in rules
+- Fix CIL and not add an attribute as a type in the attr_type_map
+
+* Fri Apr 29 2016 Petr Lautrbach <plautrba@redhat.com> - 2.5-4
+- Build policy on systems not supporting DCCP protocol
+- Fix extended permissions neverallow checking
+- Fix CIL neverallow and bounds checking
+- Android.mk: Add -D_GNU_SOURCE to common_cflags
+
+* Fri Apr 08 2016 Petr Lautrbach <plautrba@redhat.com> - 2.5-3
+- Fix bug in CIL when resetting classes
+- Add support for portcon dccp protocol
+
+* Sun Feb 28 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-2
+- Use fully versioned arch-specific requires
+
+* Tue Feb 23 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-1
+- Update to upstream release 2016-02-23
+
+* Sun Feb 21 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-0.1.rc1
+- Update to upstream rc1 release 2016-01-07
+
+* Thu Feb 04 2016 Fedora Release Engineering <releng@fedoraproject.org> - 2.4-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
+
+* Tue Aug 25 2015 Michal Srb <msrb@redhat.com> - 2.4-3
+- Improve compatibility with Python 3 SWIG bindings
+- Resolves: rhbz#1247714
+
+* Fri Aug 14 2015 Adam Jackson <ajax@redhat.com> 2.4-2
+- Pass ldflags to make so hardening works
+
+* Mon Apr 13 2015 Petr Lautrbach <plautrba@redhat.com> 2.4-0.1
+- Update to upstream release 2.4
+
+* Sun Aug 17 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.3-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
+
+* Fri Jul 18 2014 Tom Callaway <spot@fedoraproject.org> - 2.3-3
+- fix license handling
+
+* Sat Jun 07 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.3-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
+
+* Tue May 6 2014 Dan Walsh <dwalsh@redhat.com> - 2.3-1
+- Update to upstream
+	* Improve error message for name-based transition conflicts.
+	* Revert libsepol: filename_trans: use some better sorting to compare and merge.
+	* Report source file and line information for neverallow failures.
+	* Fix valgrind errors in constraint_expr_eval_reason from Richard Haines.
+	* Add sepol_validate_transition_reason_buffer function from Richard Haines.
+
+* Thu Oct 31 2013 Dan Walsh <dwalsh@redhat.com> - 2.2-1
+- Update to upstream
+- Richard Haines patch V1 Allow constraint denials to be determined.
+- Add separate role declarations as required by modern checkpolicy.
+
+* Sat Aug 03 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.9-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
+
+* Thu Feb 7 2013 Dan Walsh <dwalsh@redhat.com> - 2.1.9-1
+- Update to upstream
+- filename_trans: use some better sorting to compare and merge
+- coverity fixes
+- implement default type policy syntax
+- Fix memory leak issues found by Klocwork
+- Add CONTRAINT_NAMES to the kernel
+
+* Sun Jan 27 2013 Dan Walsh <dwalsh@redhat.com> - 2.1.8-8
+- Update to latest patches from eparis/Upstream
+
+* Fri Jan 25 2013 Dan Walsh <dwalsh@redhat.com> - 2.1.8-7
+- Update to latest patches from eparis/Upstream
+
+* Tue Jan 8 2013 Dan Walsh <dwalsh@redhat.com> - 2.1.8-6
+- Fix libsepol.stack messages in audit2allow/audit2why
+
+* Fri Jan 4 2013 Dan Walsh <dwalsh@redhat.com> - 2.1.8-5
+- Update to latest patches from eparis/Upstream
+
+* Tue Nov 27 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.8-4
+- Update Richard Haines patch to show constraint information
+
+* Mon Nov 19 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.8-3
+- Add sepol_compute_av_reason_buffer patch from Richard Haines
+
+* Wed Sep 19 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.8-2
+- Revert patch that was attempting to expand filetrans attributes, but is breaking filetrans rules
+
+* Thu Sep 13 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.8-1
+- Update to upstream
+	* fix neverallow checking on attributes
+	* Move context_copy() after switch block in ocontext_copy_*().
+	* check for missing initial SID labeling statement.
+	* Add always_check_network policy capability
+	* role_fix_callback skips out-of-scope roles during expansion.
+
+* Mon Jul 30 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.7-4
+- Try new patches
+
+* Tue Jul 24 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.7-3
+- Revert patches
+
+* Thu Jul 19 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.7-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
+
+* Wed Jul 4 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.7-1
+- Update to upstream
+	* reserve policycapability for redhat testing of ptrace child
+	* cosmetic changes to make the source easier to read
+	* prepend instead of append to filename_trans list
+	* Android/MacOS X build support
+	* allocate enough space to hold filename in trans rules
+
+* Mon Apr 23 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.5-3
+- Fix off by one error that is causing file_name transition rules to be expanded- incorrectly on i686 machines
+
+* Tue Apr 17 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.5-2
+- Add support for ptrace_child
+
+* Thu Mar 29 2012 Dan Walsh <dwalsh@redhat.com> - 2.1.5-1
+- Update to upstream
+  * checkpolicy: implement new default labeling behaviors
+
+* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.4-6
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
+
+* Wed Dec 21 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.4-5
+- Update to match eparis pool
+
+* Thu Dec 15 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.4-4
+- Additional fix for default transitioning labeling for semodule
+
+* Thu Dec 15 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.4-3
+- Add Eparis patch for handling of default transition labeling
+
+* Mon Dec 5 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.4-2
+- Allow policy to specify the source of target for generating the default user,role
+- or mls label for a new target.
+
+* Fri Nov 4 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.4-1
+- Update to upstream
+	* regenerate .pc on VERSION change
+	* Move ebitmap_* functions from mcstrans to libsepol
+	* expand: do filename_trans type comparison on mapped representation
+
+* Mon Oct 31 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.3-2
+-The filename_trans code had a bug where duplicate detection was being
+done between the unmapped type value of a new rule and the type value of
+rules already in policy.  This meant that duplicates were not being
+silently dropped and were instead outputting a message that there was a
+problem.  It made things hard because the message WAS using the mapped
+type to convert to the string representation, so it didn't look like a
+dup!
+
+* Mon Sep 19 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.3-1
+-Update to upstream
+	* Skip writing role attributes for policy.X and
+	* Indicate when boolean is indeed a tunable.
+	* Separate tunable from boolean during compile.
+	* Write and read TUNABLE flags in related
+	* Copy and check the cond_bool_datum_t.flags during link.
+	* Permanently discard disabled branches of tunables in
+	* Skip tunable identifier and cond_node_t in expansion.
+	* Create a new preserve_tunables flag
+	* Preserve tunables when required by semodule program.
+	* setools expects expand_module_avrules to be an exported
+	* tree: default make target to all not
+
+* Thu Sep 15 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.2-3
+- Add patch to handle preserving tunables
+
+* Thu Sep 1 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.2-2
+- export expand_module_avrules
+
+* Thu Aug 18 2011 Dan Walsh <dwalsh@redhat.com> - 2.1.2-0
+- Update to upstream
+	* Only call role_fix_callback for base.p_roles during expansion.
+	* use mapped role number instead of module role number
+
+* Mon Aug 1 2011 Dan Walsh <dwalsh@redhat.com> 2.1.1-1
+- Update to upstream
+	* Minor fix to reading policy with filename transition rules
+
+* Wed Jul 27 2011 Dan Walsh <dwalsh@redhat.com> 2.1.0-1
+- Update to upstream
+	* Release, minor version bump
+
+* Tue May 3 2011 Dan Walsh <dwalsh@redhat.com> 2.0.45-1
+- Update to upstream
+  * Warn if filename_trans rules are dropped by Steve Lawrence.
+
+* Thu Apr 21 2011 Dan Walsh <dwalsh@redhat.com> 2.0.44-2
+- Fixes for new role_transition class field by Eric Paris.
+
+* Thu Apr 14 2011 Dan Walsh <dwalsh@redhat.com> 2.0.44-1
+-Update to upstream
+	* Fixes for new role_transition class field by Eric Paris.
+	* Add libsepol support for filename_trans rules by Eric Paris.
+
+* Tue Apr 12 2011 Dan Walsh <dwalsh@redhat.com> 2.0.43-3
+- re-add Erics patch for filename transitions
+
+* Tue Apr 12 2011 Dan Walsh <dwalsh@redhat.com> 2.0.43-1
+-Update to upstream
+	* Add new class field in role_transition by Harry Ciao.
+
+* Tue Mar 29 2011 Dan Walsh <dwalsh@redhat.com> 2.0.42-3
+- Apply Eparis Patch
+  This patch add libsepol support for filename_trans rules.  These rules
+allow on to make labeling decisions for new objects based partially on
+the last path component.  They are stored in a list.  If we find that
+the number of rules grows to an significant size I will likely choose to
+store these in a hash, both in libsepol and in the kernel.  But as long
+as the number of such rules stays small, this should be good.
+
+* Tue Feb 08 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.42-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
+
+* Tue Dec 21 2010 Dan Walsh <dwalsh@redhat.com> 2.0.42-1
+- Upgrade to latest from NSA
+  * Fix compliation under GCC 4.6 by Justin Mattock
+
+* Thu Feb 18 2010 Dan Walsh <dwalsh@redhat.com> 2.0.41-3
+- Fix libsepol.pc file
+
+* Thu Jan 28 2010 Dan Walsh <dwalsh@redhat.com> 2.0.41-2
+- Resolve specfile problems
+Resolves: #555835
+
+* Wed Nov 18 2009 Dan Walsh <dwalsh@redhat.com> 2.0.41-1
+- Upgrade to latest from NSA
+  * Fixed typo in error message from Manoj Srivastava.
+
+* Mon Nov 2 2009 Dan Walsh <dwalsh@redhat.com> 2.0.40-1
+- Upgrade to latest from NSA
+  * Add pkgconfig file from Eamon Walsh.
+
+* Wed Oct 14 2009 Dan Walsh <dwalsh@redhat.com> 2.0.39-1
+- Upgrade to latest from NSA
+  * Add support for building Xen policies from Paul Nuzzi.
+
+* Tue Sep 8 2009 Dan Walsh <dwalsh@redhat.com> 2.0.38-1
+- Upgrade to latest from NSA
+  * Check last offset in the module package against the file size.
+  Reported by Manoj Srivastava for bug filed by Max Kellermann.
+
+* Sat Jul 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.37-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
+
+* Tue Jul 7 2009 Dan Walsh <dwalsh@redhat.com> 2.0.37-1
+- Upgrade to latest from NSA
+  * Add method to check disable dontaudit flag from Christopher Pardy.
+
+* Wed Mar 25 2009 Dan Walsh <dwalsh@redhat.com> 2.0.36-1
+- Upgrade to latest from NSA
+  * Fix boolean state smashing from Joshua Brindle.
+
+* Thu Mar 5 2009 Dan Walsh <dwalsh@redhat.com> 2.0.35-3
+- Fix license specification to be LGPL instead of GPL
+
+* Wed Feb 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-2
+
+* Wed Feb 18 2009 Dan Walsh <dwalsh@redhat.com> 2.0.35-1
+- Upgrade to latest from NSA
+        * Fix alias field in module format, caused by boundary format change
+          from Caleb Case.
+
+* Tue Oct 14 2008 Dan Walsh <dwalsh@redhat.com> 2.0.34-1
+- Upgrade to latest from NSA
+  * Add bounds support from KaiGai Kohei.
+  * Fix invalid aliases bug from Joshua Brindle.
+
+* Tue Sep 30 2008 Dan Walsh <dwalsh@redhat.com> 2.0.33-1
+- Upgrade to latest from NSA
+  * Revert patch that removed expand_rule.
+
+* Mon Jul 7 2008 Dan Walsh <dwalsh@redhat.com> 2.0.32-1
+- Upgrade to latest from NSA
+  * Allow require then declare in the source policy from Joshua Brindle.
+
+* Sun Jun 22 2008 Dan Walsh <dwalsh@redhat.com> 2.0.31-1
+- Upgrade to latest from NSA
+  * Fix mls_semantic_level_expand() to handle a user require w/o MLS information from Stephen Smalley.
+
+* Wed Jun 11 2008 Dan Walsh <dwalsh@redhat.com> 2.0.30-1
+- Upgrade to latest from NSA
+  * Fix endianness bug in the handling of network node addresses from Stephen Smalley.
+    Only affects big endian platforms.
+    Bug reported by John Weeks of Sun upon policy mismatch between x86 and sparc.
+
+* Wed May 28 2008 Dan Walsh <dwalsh@redhat.com> 2.0.29-1
+- Upgrade to latest from NSA
+  * Merge user and role mapping support from Joshua Brindle.
+
+* Mon May 19 2008 Dan Walsh <dwalsh@redhat.com> 2.0.28-1
+- Upgrade to latest from NSA
+  * Fix mls_level_convert() to gracefully handle an empty user declaration/require from Stephen Smalley.
+  * Belatedly merge test for policy downgrade from Todd Miller.
+
+* Thu Mar 27 2008 Dan Walsh <dwalsh@redhat.com> 2.0.26-1
+- Upgrade to latest from NSA
+  * Add permissive domain support from Eric Paris.
+
+* Thu Mar 13 2008 Dan Walsh <dwalsh@redhat.com> 2.0.25-1
+- Upgrade to latest from NSA
+  * Drop unused ->buffer field from struct policy_file.
+  * Add policy_file_init() initalizer for struct policy_file and use it, from Todd C. Miller.
+
+
+* Thu Feb 28 2008 Dan Walsh <dwalsh@redhat.com> 2.0.23-1
+- Upgrade to latest from NSA
+  * Accept "Flask" as an alternate identifier string in kernel policies from Stephen Smalley.
+  * Add support for open_perms policy capability from Eric Paris.
+
+* Wed Feb 20 2008 Dan Walsh <dwalsh@redhat.com> 2.0.21-1
+- Upgrade to latest from NSA
+  * Fix invalid memory allocation in policydb_index_others() from Jason Tang.
+
+* Mon Feb 4 2008 Dan Walsh <dwalsh@redhat.com> 2.0.20-1
+- Upgrade to latest from NSA
+  * Port of Yuichi Nakamura's tune avtab to reduce memory usage patch from the kernel avtab to libsepol from Stephen Smalley.
+
+* Sat Feb 2 2008 Dan Walsh <dwalsh@redhat.com> 2.0.19-1
+- Upgrade to latest from NSA
+  * Add support for consuming avrule_blocks during expansion to reduce
+    peak memory usage.
+
+* Mon Jan 21 2008 Dan Walsh <dwalsh@redhat.com> 2.0.18-2
+- Fixed for spec review
+
+* Fri Jan 11 2008 Dan Walsh <dwalsh@redhat.com> 2.0.18-1
+- Upgrade to latest from NSA
+  * Added support for policy capabilities from Todd Miller.
+  * Prevent generation of policy.18 with MLS enabled from Todd Miller.
+
+* Mon Dec 10 2007 Dan Walsh <dwalsh@redhat.com> 2.0.16-1
+- Upgrade to latest from NSA
+  * print module magic number in hex on mismatch, from Todd Miller.
+
+* Fri Nov 30 2007 Dan Walsh <dwalsh@redhat.com> 2.0.15-1
+- Upgrade to latest from NSA
+  * clarify and reduce neverallow error reporting from Stephen Smalley.
+
+* Tue Nov 6 2007 Dan Walsh <dwalsh@redhat.com> 2.0.14-1
+- Upgrade to latest from NSA
+  * Reject self aliasing at link time from Stephen Smalley.
+  * Allow handle_unknown in base to be overridden by semanage.conf from Stephen Smalley.
+  * Fixed bug in require checking from Stephen Smalley.
+  * Added user hierarchy checking from Todd Miller.
+
+* Wed Sep 26 2007 Dan Walsh <dwalsh@redhat.com> 2.0.11-1
+  * Pass CFLAGS to CC even on link command, per Dennis Gilmore.
+
+* Tue Sep 18 2007 Dan Walsh <dwalsh@redhat.com> 2.0.10-1
+- Upgrade to latest from NSA
+  * Merged support for the handle_unknown policydb flag from Eric Paris.
+
+* Fri Aug 31 2007 Dan Walsh <dwalsh@redhat.com> 2.0.9-1
+- Upgrade to latest from NSA
+  * Moved next_entry and put_entry out-of-line to reduce code size from Ulrich Drepper.
+  * Fixed module_package_read_offsets bug introduced by the prior patch.
+
+* Thu Aug 23 2007 Dan Walsh <dwalsh@redhat.com> 2.0.7-1
+- Upgrade to latest from NSA
+  * Eliminate unaligned accesses from policy reading code from Stephen Smalley.
+
+* Mon Aug 20 2007 Dan Walsh <dwalsh@redhat.com> 2.0.6-1
+- Upgrade to latest from NSA
+  * Allow dontaudits to be turned off during policy expansion
+
+
+* Fri Aug 10 2007 Dan Walsh <dwalsh@redhat.com> 2.0.5-1
+- Upgrade to latest from NSA
+     * Fix sepol_context_clone to handle a NULL context correctly.
+          This happens for e.g. semanage_fcontext_set_con(sh, fcontext, NULL)
+    to set the file context entry to "<<none>>".
+- Apply patch from Joshua Brindle to disable dontaudit rules
+
+
+* Thu Jun 21 2007 Dan Walsh <dwalsh@redhat.com> 2.0.4-1
+- Upgrade to latest from NSA
+  * Merged error handling patch from Eamon Walsh.
+
+* Tue Apr 17 2007 Dan Walsh <dwalsh@redhat.com> 2.0.3-1
+- Upgrade to latest from NSA
+  * Merged add boolmap argument to expand_module_avrules() from Chris PeBenito.
+
+* Fri Mar 30 2007 Dan Walsh <dwalsh@redhat.com> 2.0.2-1
+- Upgrade to latest from NSA
+  * Merged fix from Karl to remap booleans at expand time to
+    avoid holes in the symbol table.
+
+* Wed Feb 7 2007 Dan Walsh <dwalsh@redhat.com> 2.0.1-1
+- Upgrade to latest from NSA
+  * Merged libsepol segfault fix from Stephen Smalley for when
+    sensitivities are required but not present in the base.
+  * Merged patch to add errcodes.h to libsepol by Karl MacMillan.
+
+* Fri Jan 19 2007 Dan Walsh <dwalsh@redhat.com> 1.16.0-1
+- Upgrade to latest from NSA
+  * Updated version for stable branch.
+
+* Tue Dec 12 2006 Adam Jackson <ajax@redhat.com> 1.15.3-1
+- Add dist tag and rebuild, fixes 6 to 7 upgrades.
+
+* Tue Nov 28 2006 Dan Walsh <dwalsh@redhat.com> 1.15.3-1
+- Upgrade to latest from NSA
+  * Merged patch to compile wit -fPIC instead of -fpic from
+    Manoj Srivastava to prevent hitting the global offest table
+    limit. Patch changed to include libselinux and libsemanage in
+    addition to libselinux.
+
+* Wed Nov 1 2006 Dan Walsh <dwalsh@redhat.com> 1.15.2-1
+- Upgrade to latest from NSA
+  * Merged fix from Karl MacMillan for a segfault when linking
+    non-MLS modules with users in them.
+
+* Tue Oct 24 2006 Dan Walsh <dwalsh@redhat.com> 1.15.1-1
+- Upgrade to latest from NSA
+  * Merged fix for version comparison that was preventing range
+    transition rules from being written for a version 5 base policy
+    from Darrel Goeddel.
+
+* Tue Oct 17 2006 Dan Walsh <dwalsh@redhat.com> 1.14-1
+- NSA Released version - Same as previous but changed release number
+
+* Tue Oct 17 2006 Dan Walsh <dwalsh@redhat.com> 1.12.28-1
+- Upgrade to latest from NSA
+  * Build libsepol's static object files with -fpic
+
+* Thu Sep 28 2006 Dan Walsh <dwalsh@redhat.com> 1.12.27-1
+- Upgrade to latest from NSA
+  * Merged mls user and range_transition support in modules
+    from Darrel Goeddel
+
+* Wed Sep 6 2006 Dan Walsh <dwalsh@redhat.com> 1.12.26-1
+- Upgrade to latest from NSA
+  * Merged range transition enhancements and user format changes
+    Darrel Goeddel
+
+* Fri Aug 25 2006 Dan Walsh <dwalsh@redhat.com> 1.12.25-3
+- Fix location of include directory to devel package
+
+* Fri Aug 25 2006 Dan Walsh <dwalsh@redhat.com> 1.12.25-2
+- Remove invalid Requires
+
+* Thu Aug 24 2006 Dan Walsh <dwalsh@redhat.com> 1.12.25-1
+- Upgrade to latest from NSA
+  * Merged conditionally expand neverallows patch from Jeremy Mowery.
+  * Merged refactor expander patch from Jeremy Mowery.
+
+* Thu Aug 3 2006 Dan Walsh <dwalsh@redhat.com> 1.12.24-1
+- Upgrade to latest from NSA
+  * Merged libsepol unit tests from Joshua Brindle.
+  * Merged symtab datum patch from Karl MacMillan.
+  * Merged netfilter contexts support from Chris PeBenito.
+
+* Tue Aug 1 2006 Dan Walsh <dwalsh@redhat.com> 1.12.21-1
+- Upgrade to latest from NSA
+  * Merged helpful hierarchy check errors patch from Joshua Brindle.
+  * Merged semodule_deps patch from Karl MacMillan.
+    This adds source module names to the avrule decls.
+
+* Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 1.12.19-1.1
+- rebuild
+
+* Tue Jul 4 2006 Dan Walsh <dwalsh@redhat.com> 1.12.19-1
+- Upgrade to latest from NSA
+  * Lindent.
+  * Merged optionals in base take 2 patch set from Joshua Brindle.
+
+* Tue Jun 13 2006 Bill Nottingham <notting@redhat.com> 1.12.17-2
+- bump so it's newer than the FC5 version
+
+* Mon Jun 5 2006 Dan Walsh <dwalsh@redhat.com> 1.12.17-1
+- Upgrade to latest from NSA
+  * Revert 1.12.16.
+  * Merged cleaner fix for bool_ids overflow from Karl MacMillan,
+    replacing the prior patch.
+  * Merged fixes for several memory leaks in the error paths during
+    policy read from Serge Hallyn.
+
+* Tue May 30 2006 Dan Walsh <dwalsh@redhat.com> 1.12.14-1
+- Upgrade to latest from NSA
+  * Fixed bool_ids overflow bug in cond_node_find and cond_copy_list,
+    based on bug report and suggested fix by Cedric Roux.
+  * Merged sens_copy_callback, check_role_hierarchy_callback,
+    and node_from_record fixes from Serge Hallyn.
+
+* Tue May 23 2006 Dan Walsh <dwalsh@redhat.com> 1.12.12-1
+- Upgrade to latest from NSA
+  * Added sepol_policydb_compat_net() interface for testing whether
+    a policy requires the compatibility support for network checks
+    to be enabled in the kernel.
+
+* Thu May 18 2006 Dan Walsh <dwalsh@redhat.com> 1.12.11-1
+- Upgrade to latest from NSA
+  * Merged patch to initialize sym_val_to_name arrays from Kevin Carr.
+    Reworked to use calloc in the first place, and converted some other
+    malloc/memset pairs to calloc calls.
+
+* Mon May 15 2006 Dan Walsh <dwalsh@redhat.com> 1.12.10-1
+- Upgrade to latest from NSA
+  * Merged patch to revert role/user decl upgrade from Karl MacMillan.
+
+* Thu May 11 2006 Steve Grubb <sgrubb@redhat.com> 1.12.9
+- Couple minor spec file clean ups
+
+* Mon May 8 2006 Dan Walsh <dwalsh@redhat.com> 1.12.9-1
+- Upgrade to latest from NSA
+  * Dropped tests from all Makefile target.
+  * Merged fix warnings patch from Karl MacMillan.
+  * Merged libsepol test framework patch from Karl MacMillan.
+
+* Mon May 1 2006 Dan Walsh <dwalsh@redhat.com> 1.12.6-1
+- Upgrade to latest from NSA
+  * Fixed cond_normalize to traverse the entire cond list at link time.
+
+* Wed Apr 5 2006 Dan Walsh <dwalsh@redhat.com> 1.12.5-1
+- Upgrade to latest from NSA
+  * Merged fix for leak of optional package sections from Ivan Gyurdiev.
+
+* Wed Mar 29 2006 Dan Walsh <dwalsh@redhat.com> 1.12.4-1
+- Upgrade to latest from NSA
+  * Generalize test for bitmap overflow in ebitmap_set_bit.
+
+* Mon Mar 27 2006 Dan Walsh <dwalsh@redhat.com> 1.12.3-1
+- Upgrade to latest from NSA
+  * Fixed attr_convert_callback and expand_convert_type_set
+    typemap bug.
+
+* Fri Mar 24 2006 Dan Walsh <dwalsh@redhat.com> 1.12.2-1
+- Upgrade to latest from NSA
+  * Fixed avrule_block_write num_decls endian bug.
+
+* Fri Mar 17 2006 Dan Walsh <dwalsh@redhat.com> 1.12.1-1
+- Upgrade to latest from NSA
+  * Fixed sepol_module_package_write buffer overflow bug.
+
+* Fri Mar 10 2006 Dan Walsh <dwalsh@redhat.com> 1.12-2
+- Upgrade to latest from NSA
+  * Updated version for release.
+  * Merged cond_evaluate_expr fix from Serge Hallyn (IBM).
+  * Fixed bug in copy_avrule_list reported by Ivan Gyurdiev.
+  * Merged sepol_policydb_mls_enabled interface and error handling
+    changes from Ivan Gyurdiev.
+
+* Mon Feb 20 2006 Dan Walsh <dwalsh@redhat.com> 1.11.18-2
+- Rebuild for fc5-head
+
+* Fri Feb 17 2006 Dan Walsh <dwalsh@redhat.com> 1.11.18-1
+- Upgrade to latest from NSA
+  * Merged node_expand_addr bugfix and node_compare* change from
+    Ivan Gyurdiev.
+
+* Thu Feb 16 2006 Dan Walsh <dwalsh@redhat.com> 1.11.17-1
+- Upgrade to latest from NSA
+  * Merged nodes, ports: always prepend patch from Ivan Gyurdiev.
+  * Merged bug fix patch from Ivan Gyurdiev.
+  * Added a defined flag to level_datum_t for use by checkpolicy.
+  * Merged nodecon support patch from Ivan Gyurdiev.
+  * Merged cleanups patch from Ivan Gyurdiev.
+
+* Mon Feb 13 2006 Dan Walsh <dwalsh@redhat.com> 1.11.14-2
+- Fix post install not to fire if /dev/initctr does not exist
+
+* Mon Feb 13 2006 Dan Walsh <dwalsh@redhat.com> 1.11.14-1
+- Upgrade to latest from NSA
+  * Merged optionals in base patch from Joshua Brindle.
+
+* Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 1.11.13-1.1
+- bump again for double-long bug on ppc(64)
+
+* Tue Feb 7 2006 Dan Walsh <dwalsh@redhat.com> 1.11.13-1
+- Upgrade to latest from NSA
+  * Merged seuser/user_extra support patch from Joshua Brindle.
+  * Merged fix patch from Ivan Gyurdiev.
+
+* Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 1.11.12-1.1
+- rebuilt for new gcc4.1 snapshot and glibc changes
+
+* Thu Feb 2 2006 Dan Walsh <dwalsh@redhat.com> 1.11.12-1
+- Upgrade to latest from NSA
+  * Merged assertion copying bugfix from Joshua Brindle.
+  * Merged sepol_av_to_string patch from Joshua Brindle.
+  * Merged clone record on set_con patch from Ivan Gyurdiev.
+
+* Mon Jan 30 2006 Dan Walsh <dwalsh@redhat.com> 1.11.10-1
+- Upgrade to latest from NSA
+  * Merged cond_expr mapping and package section count bug fixes
+    from Joshua Brindle.
+  * Merged improve port/fcontext API patch from Ivan Gyurdiev.
+  * Merged fixes for overflow bugs on 64-bit from Ivan Gyurdiev.
+
+* Fri Jan 13 2006 Dan Walsh <dwalsh@redhat.com> 1.11.9-1
+- Upgrade to latest from NSA
+  * Merged size_t -> unsigned int patch from Ivan Gyurdiev.
+
+* Tue Jan 10 2006 Dan Walsh <dwalsh@redhat.com> 1.11.8-1
+- Upgrade to latest from NSA
+  * Merged 2nd const in APIs patch from Ivan Gyurdiev.
+
+* Fri Jan 6 2006 Dan Walsh <dwalsh@redhat.com> 1.11.7-1
+- Upgrade to latest from NSA
+  * Merged const in APIs patch from Ivan Gyurdiev.
+  * Merged compare2 function patch from Ivan Gyurdiev.
+  * Fixed hierarchy checker to only check allow rules.
+
+* Thu Jan 5 2006 Dan Walsh <dwalsh@redhat.com> 1.11.5-1
+- Upgrade to latest from NSA
+  * Merged further fixes from Russell Coker, specifically:
+    - av_to_string overflow checking
+    - sepol_context_to_string error handling
+    - hierarchy checking memory leak fixes and optimizations
+    - avrule_block_read variable initialization
+  * Marked deprecated code in genbools and genusers.
+
+* Thu Jan 5 2006 Dan Walsh <dwalsh@redhat.com> 1.11.4-1
+- Upgrade to latest from NSA
+  * Merged bugfix for sepol_port_modify from Russell Coker.
+  * Fixed bug in sepol_iface_modify error path noted by Ivan Gyurdiev.
+  * Merged port ordering patch from Ivan Gyurdiev.
+
+* Wed Jan 4 2006 Dan Walsh <dwalsh@redhat.com> 1.11.2-2
+- Upgrade to latest from NSA
+  * Merged patch series from Ivan Gyurdiev.
+    This includes patches to:
+    - support ordering of records in compare function
+    - enable port interfaces
+    - add interfaces for context validity and range checks
+    - add include guards
+
+* Tue Dec 27 2005 Dan Walsh <dwalsh@redhat.com> 1.11.1-2
+- Add Ivans patch to make ports work
+
+* Fri Dec 16 2005 Dan Walsh <dwalsh@redhat.com> 1.11.1-1
+- Upgrade to latest from NSA
+  * Fixed mls_range_cpy bug.
+
+* Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com>
+- rebuilt
+
+* Wed Dec 7 2005 Dan Walsh <dwalsh@redhat.com> 1.10-1
+- Upgrade to latest from NSA
+
+* Mon Dec 5 2005 Dan Walsh <dwalsh@redhat.com> 1.9.42-1
+- Upgrade to latest from NSA
+  * Dropped handle from user_del_role interface.
+
+* Mon Nov 28 2005 Dan Walsh <dwalsh@redhat.com> 1.9.41-1
+- Upgrade to latest from NSA
+  * Merged remove defrole from sepol patch from Ivan Gyurdiev.
+
+* Wed Nov 16 2005 Dan Walsh <dwalsh@redhat.com> 1.9.40-1
+- Upgrade to latest from NSA
+  * Merged module function and map file cleanup from Ivan Gyurdiev.
+  * Merged MLS and genusers cleanups from Ivan Gyurdiev.
+
+* Wed Nov 9 2005 Dan Walsh <dwalsh@redhat.com> 1.9.39-1
+- Upgrade to latest from NSA
+  Prepare for removal of booleans* and *.users files.
+  * Cleaned up sepol_genbools to not regenerate the image if
+    there were no changes in the boolean values, including the
+    degenerate case where there are no booleans or booleans.local
+    files.
+  * Cleaned up sepol_genusers to not warn on missing local.users.
+
+* Tue Nov 8 2005 Dan Walsh <dwalsh@redhat.com> 1.9.38-1
+- Upgrade to latest from NSA
+  * Removed sepol_port_* from libsepol.map, as the port interfaces
+    are not yet stable.
+
+* Mon Nov 7 2005 Dan Walsh <dwalsh@redhat.com> 1.9.37-1
+- Upgrade to latest from NSA
+  * Merged context destroy cleanup patch from Ivan Gyurdiev.
+
+* Thu Nov 3 2005 Dan Walsh <dwalsh@redhat.com> 1.9.36-1
+- Upgrade to latest from NSA
+  * Merged context_to_string interface change patch from Ivan Gyurdiev.
+
+* Thu Nov 3 2005 Dan Walsh <dwalsh@redhat.com> 1.9.35-1
+- Upgrade to latest from NSA
+  * Added src/dso.h and src/*_internal.h.
+    Added hidden_def for exported symbols used within libsepol.
+    Added hidden for symbols that should not be exported by
+    the wildcards in libsepol.map.
+
+* Mon Oct 31 2005 Dan Walsh <dwalsh@redhat.com> 1.9.34-1
+- Upgrade to latest from NSA
+  * Merged record interface, record bugfix, and set_roles patches
+    from Ivan Gyurdiev.
+
+* Fri Oct 28 2005 Dan Walsh <dwalsh@redhat.com> 1.9.33-1
+- Upgrade to latest from NSA
+  * Merged count specification change from Ivan Gyurdiev.
+
+* Wed Oct 26 2005 Dan Walsh <dwalsh@redhat.com> 1.9.32-1
+- Upgrade to latest from NSA
+  * Added further checking and error reporting to
+    sepol_module_package_read and _info.
+  * Merged sepol handle passing, DEBUG conversion, and memory leak
+    fix patches from Ivan Gyurdiev.
+
+* Tue Oct 25 2005 Dan Walsh <dwalsh@redhat.com> 1.9.30-1
+- Upgrade to latest from NSA
+  * Removed processing of system.users from sepol_genusers and
+    dropped delusers logic.
+  * Removed policydb_destroy from error path of policydb_read,
+    since create/init/destroy/free of policydb is handled by the
+    caller now.
+  * Fixed sepol_module_package_read to handle a failed policydb_read
+    properly.
+  * Merged query/exists and count patches from Ivan Gyurdiev.
+  * Merged fix for pruned types in expand code from Joshua Brindle.
+  * Merged new module package format code from Joshua Brindle.
+
+
+* Mon Oct 24 2005 Dan Walsh <dwalsh@redhat.com> 1.9.26-1
+- Upgrade to latest from NSA
+  * Merged context interface cleanup, record conversion code,
+    key passing, and bug fix patches from Ivan Gyurdiev.
+
+* Fri Oct 21 2005 Dan Walsh <dwalsh@redhat.com> 1.9.25-1
+- Upgrade to latest from NSA
+  * Merged users cleanup patch from Ivan Gyurdiev.
+  * Merged user record memory leak fix from Ivan Gyurdiev.
+  * Merged reorganize users patch from Ivan Gyurdiev.
+
+- Need to check for /sbin/telinit
+
+* Tue Oct 18 2005 Dan Walsh <dwalsh@redhat.com> 1.9.23-1
+- Upgrade to latest from NSA
+  * Added check flag to expand_module() to control assertion
+    and hierarchy checking on expansion.
+  * Reworked check_assertions() and hierarchy_check_constraints()
+    to take handles and use callback-based error reporting.
+  * Changed expand_module() to call check_assertions() and
+    hierarchy_check_constraints() prior to returning the expanded
+    policy.
+
+* Tue Oct 18 2005 Dan Walsh <dwalsh@redhat.com> 1.9.21-1
+- Upgrade to latest from NSA
+  * Changed sepol_module_package_set_file_contexts to copy the
+    file contexts data since it is internally managed.
+  * Added sepol_policy_file_set_handle interface to associate
+    a handle with a policy file.
+  * Added handle argument to policydb_from_image/to_image.
+  * Added sepol_module_package_set_file_contexts interface.
+  * Dropped sepol_module_package_create_file interface.
+  * Reworked policydb_read/write, policydb_from_image/to_image,
+    and sepol_module_package_read/write to use callback-based error
+    reporting system rather than DEBUG.
+
+* Tue Oct 18 2005 Dan Walsh <dwalsh@redhat.com> 1.9.19-1
+- Upgrade to latest from NSA
+  * Reworked link_packages, link_modules, and expand_module to use
+  callback-based error reporting system rather than error buffering.
+
+* Sat Oct 15 2005 Dan Walsh <dwalsh@redhat.com> 1.9.18-1
+- Upgrade to latest from NSA
+  * Merged conditional expression mapping fix in the module linking
+  code from Joshua Brindle.
+
+* Fri Oct 14 2005 Dan Walsh <dwalsh@redhat.com> 1.9.17-2
+- Tell init to reexec itself in post script
+
+* Mon Oct 10 2005 Dan Walsh <dwalsh@redhat.com> 1.9.17-1
+- Upgrade to latest from NSA
+  * Hid sepol_module_package type definition, and added get interfaces.
+  * Merged new callback-based error reporting system from Ivan
+  Gyurdiev.
+  * Merged support for require blocks inside conditionals from
+  Joshua Brindle (Tresys).
+
+* Mon Oct 10 2005 Dan Walsh <dwalsh@redhat.com> 1.9.14.1-1
+- Upgrade to latest from NSA
+  * Fixed use of policydb_from_image/to_image to ensure proper
+  init of policydb.
+  * Isolated policydb internal headers under <sepol/policydb/*.h>.
+  These headers should only be used by users of the static libsepol.
+  Created new <sepol/policydb.h> with new public types and interfaces
+  for shared libsepol.
+  Created new <sepol/module.h> with public types and interfaces moved
+  or wrapped from old module.h, link.h, and expand.h, adjusted for
+  new public types for policydb and policy_file.
+  Added public interfaces to libsepol.map.
+  Some implementation changes visible to users of the static libsepol:
+  1) policydb_read no longer calls policydb_init.
+  Caller must do so first.
+  2) policydb_init no longer takes policy_type argument.
+  Caller must set policy_type separately.
+  3) expand_module automatically enables the global branch.
+  Caller no longer needs to do so.
+  4) policydb_write uses the policy_type and policyvers from the
+  policydb itself, and sepol_set_policyvers() has been removed.
+
+* Fri Oct 7 2005 Dan Walsh <dwalsh@redhat.com> 1.9.12-1
+- Upgrade to latest from NSA
+  * Merged function renaming and static cleanup from Ivan Gyurdiev.
+
+* Thu Oct 6 2005 Dan Walsh <dwalsh@redhat.com> 1.9.11-1
+- Upgrade to latest from NSA
+  * Merged bug fix for check_assertions handling of no assertions
+  from Joshua Brindle (Tresys).
+
+* Tue Oct 4 2005 Dan Walsh <dwalsh@redhat.com> 1.9.10-1
+- Upgrade to latest from NSA
+  * Merged iterate patch from Ivan Gyurdiev.
+  * Merged MLS in modules patch from Joshua Brindle (Tresys).
+
+* Mon Oct 3 2005 Dan Walsh <dwalsh@redhat.com> 1.9.8-1
+- Upgrade to latest from NSA
+  * Merged pointer typedef elimination patch from Ivan Gyurdiev.
+  * Merged user list function, new mls functions, and bugfix patch
+    from Ivan Gyurdiev.
+
+* Wed Sep 28 2005 Dan Walsh <dwalsh@redhat.com> 1.9.7-1
+- Upgrade to latest from NSA
+  * Merged sepol_get_num_roles fix from Karl MacMillan (Tresys).
+
+* Fri Sep 23 2005 Dan Walsh <dwalsh@redhat.com> 1.9.6-1
+- Upgrade to latest from NSA
+  * Merged bug fix patches from Joshua Brindle (Tresys).
+
+* Wed Sep 21 2005 Dan Walsh <dwalsh@redhat.com> 1.9.5-1
+- Upgrade to latest from NSA
+  * Merged boolean record and memory leak fix patches from Ivan
+  Gyurdiev.
+
+* Tue Sep 20 2005 Dan Walsh <dwalsh@redhat.com> 1.9.4-1
+- Upgrade to latest from NSA
+  * Merged interface record patch from Ivan Gyurdiev.
+
+* Thu Sep 15 2005 Dan Walsh <dwalsh@redhat.com> 1.9.3-1
+- Upgrade to latest from NSA
+  * Merged fix for sepol_enable/disable_debug from Ivan
+  Gyurdiev.
+
+* Wed Sep 14 2005 Dan Walsh <dwalsh@redhat.com> 1.9.1-2
+- Upgrade to latest from NSA
+  * Merged stddef.h patch and debug conversion patch from
+  Ivan Gyurdiev.
+
+* Mon Sep 12 2005 Dan Walsh <dwalsh@redhat.com> 1.9.1-1
+- Upgrade to latest from NSA
+  * Fixed expand_avtab and expand_cond_av_list to keep separate
+  entries with identical keys but different enabled flags.
+  * Updated version for release.
+
+* Thu Sep 1 2005 Dan Walsh <dwalsh@redhat.com> 1.7.24-1
+- Upgrade to latest from NSA
+  * Fixed symtab_insert return value for duplicate declarations.
+  * Merged fix for memory error in policy_module_destroy from
+  Jason Tang (Tresys).
+
+* Mon Aug 29 2005 Dan Walsh <dwalsh@redhat.com> 1.7.22-1
+- Upgrade to latest from NSA
+  * Merged fix for memory leak in sepol_context_to_sid from
+  Jason Tang (Tresys).
+  * Merged fixes for resource leaks on error paths and
+    change to scope_destroy from Joshua Brindle (Tresys).
+
+* Tue Aug 23 2005 Dan Walsh <dwalsh@redhat.com> 1.7.20-1
+- Upgrade to latest from NSA
+  * Merged more fixes for resource leaks on error paths
+    from Serge Hallyn (IBM).  Bugs found by Coverity.
+
+* Fri Aug 19 2005 Dan Walsh <dwalsh@redhat.com> 1.7.19-1
+- Upgrade to latest from NSA
+  * Changed to treat all type conflicts as fatal errors.
+  * Merged several error handling fixes from
+    Serge Hallyn (IBM).  Bugs found by Coverity.
+
+* Mon Aug 15 2005 Dan Walsh <dwalsh@redhat.com> 1.7.17-1
+- Upgrade to latest from NSA
+  * Fixed several memory leaks found by valgrind.
+
+* Sun Aug 14 2005 Dan Walsh <dwalsh@redhat.com> 1.7.15-1
+- Upgrade to latest from NSA
+  * Fixed empty list test in cond_write_av_list.  Bug found by
+    Coverity, reported by Serge Hallyn (IBM).
+  * Merged patch to policydb_write to check errors
+    when writing the type->attribute reverse map from
+    Serge Hallyn (IBM).  Bug found by Coverity.
+  * Fixed policydb_destroy to properly handle NULL type_attr_map
+    or attr_type_map.
+
+* Sat Aug 13 2005 Dan Walsh <dwalsh@redhat.com> 1.7.14-1
+- Upgrade to latest from NSA
+  * Fixed empty list test in cond_write_av_list.  Bug found by
+    Coverity, reported by Serge Hallyn (IBM).
+  * Merged patch to policydb_write to check errors
+    when writing the type->attribute reverse map from
+    Serge Hallyn (IBM).  Bug found by Coverity.
+  * Fixed policydb_destroy to properly handle NULL type_attr_map
+    or attr_type_map.
+
+
+* Thu Aug 11 2005 Dan Walsh <dwalsh@redhat.com> 1.7.13-1
+- Upgrade to latest from NSA
+  * Improved memory use by SELinux by both reducing the avtab
+    node size and reducing the number of avtab nodes (by not
+    expanding attributes in TE rules when possible).  Added
+    expand_avtab and expand_cond_av_list functions for use by
+    assertion checker, hierarchy checker, compatibility code,
+    and dispol.  Added new inline ebitmap operators and converted
+    existing users of ebitmaps to the new operators for greater
+    efficiency.
+    Note:  The binary policy format version has been incremented to
+    version 20 as a result of these changes.
+
+* Thu Aug 11 2005 Dan Walsh <dwalsh@redhat.com> 1.7.12-1
+- Upgrade to latest from NSA
+  * Fixed bug in constraint_node_clone handling of name sets.
+
+* Wed Aug 10 2005 Dan Walsh <dwalsh@redhat.com> 1.7.11-1
+- Upgrade to latest from NSA
+  * Fix range_trans_clone to map the type values properly.
+
+* Fri Aug 5 2005 Dan Walsh <dwalsh@redhat.com> 1.7.10-1
+- Upgrade to latest from NSA
+  * Merged patch to move module read/write code from libsemanage
+    to libsepol from Jason Tang (Tresys).
+
+* Tue Aug 2 2005 Dan Walsh <dwalsh@redhat.com> 1.7.9-1
+- Upgrade to latest from NSA
+  * Enabled further compiler warning flags and fixed them.
+  * Merged user, context, port records patch from Ivan Gyurdiev.
+  * Merged key extract function patch from Ivan Gyurdiev.
+  * Merged mls_context_to_sid bugfix from Ivan Gyurdiev.
+
+* Wed Jul 27 2005 Dan Walsh <dwalsh@redhat.com> 1.7.6-2
+- Fix MLS Free
+
+* Mon Jul 25 2005 Dan Walsh <dwalsh@redhat.com> 1.7.6-1
+- Upgrade to latest from NSA
+  * Merged context reorganization, memory leak fixes,
+    port and interface loading, replacements for genusers and
+    genbools, debug traceback, and bugfix patches from Ivan Gyurdiev.
+  * Merged uninitialized variable bugfix from Dan Walsh.
+
+* Mon Jul 25 2005 Dan Walsh <dwalsh@redhat.com> 1.7.5-2
+- Fix unitialized variable problem
+
+* Mon Jul 18 2005 Dan Walsh <dwalsh@redhat.com> 1.7.5-1
+- Upgrade to latest from NSA
+  * Merged debug support, policydb conversion functions from Ivan Gyurdiev (Red Hat).
+  * Removed genpolbools and genpolusers utilities.
+  * Merged hierarchy check fix from Joshua Brindle (Tresys).
+
+
+
+* Thu Jul 14 2005 Dan Walsh <dwalsh@redhat.com> 1.7.3-1
+- Upgrade to latest from NSA
+  * Merged header file cleanup and memory leak fix from Ivan Gyurdiev (Red Hat).
+  * Merged genbools debugging message cleanup from Red Hat.
+
+* Thu Jul 7 2005 Dan Walsh <dwalsh@redhat.com> 1.7-2
+- Remove genpolbools and genpoluser
+
+* Thu Jul 7 2005 Dan Walsh <dwalsh@redhat.com> 1.7-1
+- Upgrade to latest from NSA
+  * Merged loadable module support from Tresys Technology.
+
+* Wed Jun 29 2005 Dan Walsh <dwalsh@redhat.com> 1.6-1
+- Upgrade to latest from NSA
+  * Updated version for release.
+
+* Tue May 17 2005 Dan Walsh <dwalsh@redhat.com> 1.5.10-1
+- Fix reset booleans warning message
+- Upgrade to latest from NSA
+  * License changed to LGPL v2.1, see COPYING.
+
+* Tue May 17 2005 Dan Walsh <dwalsh@redhat.com> 1.5.9-2
+- Upgrade to latest from NSA
+  * Added sepol_genbools_policydb and sepol_genusers_policydb for
+    audit2why.
+
+* Mon May 16 2005 Dan Walsh <dwalsh@redhat.com> 1.5.8-2
+- export sepol_context_to_sid
+
+* Mon May 16 2005 Dan Walsh <dwalsh@redhat.com> 1.5.8-1
+- Upgrade to latest from NSA
+  * Added sepol_ prefix to Flask types to avoid
+    namespace collision with libselinux.
+
+* Fri May 13 2005 Dan Walsh <dwalsh@redhat.com> 1.5.7-1
+- Upgrade to latest from NSA
+  * Added sepol_compute_av_reason() for audit2why.
+
+* Tue Apr 26 2005 Dan Walsh <dwalsh@redhat.com> 1.5.6-1
+- Upgrade to latest from NSA
+  * Fixed bug in role hierarchy checker.
+
+* Mon Apr 25 2005 Dan Walsh <dwalsh@redhat.com> 1.5.5-2
+- Fixes found via intel compiler
+
+* Thu Apr 14 2005 Dan Walsh <dwalsh@redhat.com> 1.5.5-1
+- Update from NSA
+
+* Tue Mar 29 2005 Dan Walsh <dwalsh@redhat.com> 1.5.3-1
+- Update from NSA
+
+* Thu Mar 24 2005 Dan Walsh <dwalsh@redhat.com> 1.5.2-2
+- Handle booleans.local
+
+* Thu Mar 17 2005 Dan Walsh <dwalsh@redhat.com> 1.5.2-1
+- Update to latest from NSA
+  * Added man page for sepol_check_context.
+  * Added man page for sepol_genusers function.
+  * Merged man pages for genpolusers and chkcon from Manoj Srivastava.
+
+* Thu Mar 10 2005 Dan Walsh <dwalsh@redhat.com> 1.4-1
+- Update to latest from NSA
+
+* Tue Mar 8 2005 Dan Walsh <dwalsh@redhat.com> 1.3.8-1
+- Update to latest from NSA
+        * Cleaned up error handling in sepol_genusers and sepol_genbools.
+
+* Tue Mar 1 2005 Dan Walsh <dwalsh@redhat.com> 1.3.7-1
+- Update to latest from NSA
+  * Merged sepol_debug and fclose patch from Dan Walsh.
+
+* Fri Feb 18 2005 Dan Walsh <dwalsh@redhat.com> 1.3.6-3
+- Make sure local_files file pointer is closed
+- Stop outputing error messages
+
+* Thu Feb 17 2005 Dan Walsh <dwalsh@redhat.com> 1.3.6-1
+- Update to latest from NSA
+  * Changed sepol_genusers to also use getline and correctly handle
+    EOL.
+* Thu Feb 17 2005 Dan Walsh <dwalsh@redhat.com> 1.3.5-1
+- Update to latest from NSA
+  * Merged endianness and compute_av patches from Darrel Goeddel (TCS).
+  * Merged range_transition support from Darrel Goeddel (TCS).
+  * Added sepol_genusers function.
+
+* Thu Feb 10 2005 Dan Walsh <dwalsh@redhat.com> 1.3.2-1
+- Update to latest from NSA
+  * Changed relabel Makefile target to use restorecon.
+
+* Mon Feb 7 2005 Dan Walsh <dwalsh@redhat.com> 1.3.1-1
+- Update to latest from NSA
+  * Merged enhanced MLS support from Darrel Goeddel (TCS).
+
+* Thu Jan 20 2005 Dan Walsh <dwalsh@redhat.com> 1.2.1.1-1
+- Update to latest from NSA
+  * Merged build fix patch from Manoj Srivastava.
+
+* Thu Nov 4 2004 Dan Walsh <dwalsh@redhat.com> 1.2.1-1
+- Update to latest from NSA
+
+* Mon Aug 30 2004 Dan Walsh <dwalsh@redhat.com> 1.1.1-2
+- Add optargs for build
+
+* Sun Aug 22 2004 Dan Walsh <dwalsh@redhat.com> 1.1.1-1
+- New version from NSA
+
+* Fri Aug 20 2004 Colin Walters <walters@redhat.com> 1.0-2
+- Apply Stephen's chkcon patch
+
+* Thu Aug 19 2004 Colin Walters <walters@redhat.com> 1.0-1
+- New upstream version
+
+* Mon Aug 16 2004 Dan Walsh <dwalsh@redhat.com> 0.4.2-1
+- Newversion from upstream implementing stringcase compare
+
+* Fri Aug 13 2004 Bill Nottingham <notting@redhat.com> 0.4.1-2
+- ldconfig tweaks
+
+* Thu Aug 12 2004 Dan Walsh <dwalsh@redhat.com> 0.4.1-1
+- Ignore case of true/false
+
+* Wed Aug 11 2004 Dan Walsh <dwalsh@redhat.com> 0.4.1-1
+- New version from NSA
+
+* Tue Aug 10 2004 Dan Walsh <dwalsh@redhat.com> 0.3.1-1
+- Initial version
+- Created by Stephen Smalley <sds@epoch.ncsc.mil>
+
+## END: Generated by rpmautospec