policycoreutils-debugsource-2.9-25.el8 > 6 6_6 3!pQp)Tξ7]mtZ`fN ]mtZ`M q L|M76L4uJ m`H$dl'@M(U[ԃE/si PHk@ ~{oo3 Ea1z}sr4KHց +o0wㇴ,Tڗ#9j]aۂ&3uS39ZtO6v A}EV!@sv[*@.OoC?8Teeo`OET|CL7-择;U !R!1l sq\W+#,I@9Ec&=>>}hդ/ª@˾̈́Ix7[pn *Q71"܎c̹Y;2S h Чk9xk/CFh>` (`i%`R PEiZ8ڭuuJm#'<_P'sSCwɸW!{~wjA.V.hމh8p9?ۼd" ) S48=CI gy0p0 0 00 0  `0  0 P0 @00T0Td(89"T:#G,0H0IϬ0XY\0]м0^bYd٩eٮfٱlٳt0uڌ0vLlpv۸Cpolicycoreutils-debugsource2.925.el8Debug sources for package policycoreutilsThis package provides debug sources for package policycoreutils. Debug sources are useful when developing applications that use this package or when debugging this package.fN9ord1-prod-x86build002.svc.aws.rockylinux.org KojiRockyGPLv2infrastructure@rockylinux.orgDevelopment/Debughttps://github.com/SELinuxProject/selinuxlinuxx86_640,IVi%d D* V (f .QEC8o DAAAA큤A큤A큤A큤A큤A큤A큤A큤AA큤A큤A큤AA큤A큤A큤fN1fN1fN1fN1\>fN1\>fN1\>\>\>fN1\>fN1fN*fN1\>fN1fN*\>\>fN*fN1\>fN1fN1\>fN1fN*\>\>\>\>\>\>\>\>\>fN1\>fN1fN1\>fN1\>fN1fN*\>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-2.9-25.el8.src.rpmpolicycoreutils-debugsourcepolicycoreutils-debugsource(x86-64)    rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3e@c@cccR@bb8aea@aC1`i@`Gc@`3`>`U`@^!]|@]@]ʞ]µ]o@]^]G@\@\@\\l@\[[%@[Ѱ@[[ā@[[Q@[W[P}@[2*[[[@ZlZZZ@ZZ Z@Zv@Z}@ZqZ`@Z:PZ1@ZfY@Y(@Y(@YV@Y@Y}@Y{'@YyX-XXf@XX@XBXXZnX@X43@WH@W9W@WgW@W~Wq@Wk@W3W'A@W#LWW@VV@V@VIV=@Vn@VKVI@VD@V@V9@VZVqUUUŬUL@U@U@U(U(U@U4@U4@UK@Uy@UUJ@U+TgTfTk4TZ@TZ@T!`S@SuS/SϣSSS{CSuSpShShS`SZN@SXS:@S4S2@S0@R@R@RRa@RR=RʚRƦ@RƦ@R1@R@R@RR@RRG@R@R RrF@RrF@Rj]@R^RW@RW@RNRL RIgRFR9R' R' R%@R @RC@R R6R6R@Q@QdQQp@Q*@Q@Q5Q@QLQLQֵ@Q4Q@Q@@Q@@Q@QKQKQ@Q@QyQyQ(@QQQ@QaQ@Q'@Q'@QQQ@Q@Qu&@QfQeT@QdQb@Q\QYvQT0QR@QR@QP<@QJ@QJ@QHS@QAQ=@Q8@Q7/Q5@Q4Q0@Q/FQ/FQ*Q*Q']Q']Q']Q& @Q& @Q$Q"QQQ@Q.Q@Q \QsPDPDP[P[PP@PrPPѬ@P @P @PPPP7@PPPN@PN@PP@P@P*P6@P6@P6@PPPM@P@P@P@Pd@P@PoPoPP{@P)P)P5@P@P~P~P}L@P}L@Puc@PtPr@Pp@Pmz@PaPU@PU@PQP"TPPOjOO0@O"O"OO9O Os@O@O~O8OOD@O@Oz@Oz@Ou@OtNOr@OiOX@OX@ON@OKp@OB5OM@M@MM2@MMMI@M@M@MzMzMwkMv@Mv@MtMoMgMRMJMJMIG@M9u@M6@M0:M%M$]@M@MM @MLLL[@L[@L@LΫLΫLʷ@Lq@L*@LA@LA@L@L@LL@L)@L{@L{@LuLs@LrbLe3Le3Lc@LZLZLZLZLYV@LT@LPLPLN@LMxLF@LELk@Lk@Lk@L0L @L@L@LGLGK^KuKuKuKKKFK @K޺KtK#@KKKKŮ@K\K"@K9@KK@K@K[KrK,K@KK@K@KK{@KzKs@Kl@Kie@KbKa|@Ka|@K`*KXAKUKO@KG@KG@KD{@K+nK*@K(K K?KK@K KK>J@JJ@J@Jݦ@JTJ`@JJս@J1@JęJęJH@J@Jv@J$J$J0@J0@J0@JG@JG@JJ^@JJu@J#J#JJ@J:J@J@JJJ@J@J Jyt@Jp9JlE@JS8JD@J'@J#JJJIIIIzI@IܑIIyI@IaI@II@IU@IIIIx_Iw@IuImIl@IcGIFFI?@I:i@I7@I5#@I3I1.IsI"@I-I9@I IP@IP@II@Ig@HrH~@Hf@Hf@HYH@He@HHH|@H@HoH)HH@H@HH@H@H@Ht@HsVHsVHkmHkmHj@HhH`H_@HVUHQHQHO@H-w@H-w@H(1@H(1@H!H!H@H@G@G@G߮G@GGGD@GOG[@G@G}G}G,@G,@G,@GGG@G@GZ@GGeGxGxGkGjY@GiGiGbp@G^{G]*@GR@GAzGAzGAzGAzG=@G=@G<4G2@G/G/G+@G)G(n@G@G@GJGGV@GV@GV@G@G@G'@G2G2G2FF@FIFFFFFwF&@F@F1FFޚ@FFF@F@FҼFF@FvFvFɂ@FuF@F@F;@FF@FFi@F@F@F{Fzh@Fo@Fo@Fm9@Fm9@FcFcF` @FNFLCF; @F7+F5@F/BF/BF-@F-@F(@F&@F&@F&@F&@F$F#e@F @FpF@FF*F*FAF F @F@F@E{@E@E@E@E@EE@E݅E݅EEEEK@EVEɿ@E@EJ@EJ@EJ@EE@E@Ex@EEEE=E@EEI@E%E@EEySEx@EvEp@Emv@Emv@Emv@El$El$EfEd;EaEaE]@E\RE\RE[@E[@E[@E[@EYEYES@EO#E*9E&E@E E~E~E~E@E D@E D@EEEOE[@E D@D@D D D@D@D@D@DDD@DГDГDB@DȪDD@D{D{DA@DX@D@D4D@DD@DDW@DDDD|3DvDtJDtJDr@DoDhm@Dhm@Dhm@DaD_2D]@DYDGwDC@D?D5D5D3@D*vD)%@DDDDD@DDDDj@Dj@D $@D/C@CC@CtC@CCCCEC@CC @Ch@Ch@Ch@Ch@C@C@C@C-C-C-C@CCCǖ@CáCáC @C @CCC,C8@CC@C@C@CC @CqCqC @CCC}@C+C@CC@CBC@C|pC{@Cx|@CtCqCqCp@Cp@CoAC^@C^@CWCTCTCP@COCNL@CLCJWCFc@CECC@C:C:C1K@C/C)b@C&@C%mCC@C@C@C C C @C&BTBBw@BۙB@B@BB]@B@B@BBB@BBr!B^[@B] BZfBZfBU BS@B9q@B6@B06B.@B-B$Y@B#B@B@BBp@BB@B*@B@B@B@B @B LB LB @BBX@BBAA)@A)@AA@AAAA@An@A3A3A3AҜ@AƾAA@AAx@Ax@Ak@A]FA]FAT @ARAPA@EA3A,@A,@A,@A+-A+-A)@A(A AA,AA@@ @@@@@7@@7@@@@@@@@@p@@@@@@@@@@5@@5@@@@@c@@n@n@z@@@@@b@@z@u>@mU@l@@h@h@h@h@d@@b@`&@Y@@Y@@Y@@X=@X=@X=@X=@X=@U@U@U@O@@M@M@Hk@=@=@=@;<@4@@,@@@@@@@R??@??D@?@?@?z?q@?a@?a@?2?@?2?@?2?@?/@><@Vit Mojzis - 2.9-25Vit Mojzis - 2.9-24Vit Mojzis - 2.9-23Vit Mojzis - 2.9-22Vit Mojzis - 2.9-21.1Vit Mojzis - 2.9-20Vit Mojzis - 2.9-19Vit Mojzis - 2.9-18Petr Lautrbach - 2.9-17Vit Mojzis - 2.9-16Vit Mojzis - 2.9-15Vit Mojzis - 2.9-14Vit Mojzis - 2.9-13Petr Lautrbach - 2.9-12Vit Mojzis - 2.9-11Vit Mojzis - 2.9-10Vit Mojzis - 2.9-9Vit Mojzis - 2.9-8Petr Lautrbach - 2.9-7Petr Lautrbach - 2.9-6Vit Mojzis - 2.9-5Petr Lautrbach - 2.9-4Vit Mojzis - 2.9-3Petr Lautrbach - 2.9-2Petr Lautrbach - 2.9-1Petr Lautrbach - 2.8-16.1Petr Lautrbach - 2.8-15Petr Lautrbach - 2.8-14Petr Lautrbach - 2.8-13Petr Lautrbach - 2.8-12Petr Lautrbach - 2.8-11.1Petr Lautrbach - 2.8-10Petr Lautrbach - 2.8-9Petr Lautrbach - 2.8-8Petr Lautrbach - 2.8-7Petr Lautrbach - 2.8-6.1Petr Lautrbach - 2.8-5Petr Lautrbach - 2.8-4Petr Lautrbach - 2.8-3Petr Lautrbach - 2.8-2Petr Lautrbach - 2.8-1.1Petr Lautrbach - 2.7-19Petr Lautrbach - 2.7-18Petr Lautrbach - 2.7-17Petr Lautrbach - 2.7-16Petr Lautrbach - 2.7-15Petr Lautrbach - 2.7-14Petr Lautrbach - 2.7-13Miro Hrončok - 2.7-12Petr Lautrbach - 2.7-11Fedora Release Engineering - 2.7-10Petr Lautrbach - 2.7-9Igor Gnatenko - 2.7-8Petr Lautrbach - 2.7-7Petr Lautrbach - 2.7-6Petr Lautrbach - 2.7-5Petr Lautrbach - 2.7-4Zbigniew Jędrzejewski-Szmek - 2.7-3Zbigniew Jędrzejewski-Szmek - 2.7-2Petr Lautrbach - 2.7-1Fedora Release Engineering - 2.6-9Florian Weimer - 2.6-8Petr Lautrbach - 2.6-7Fedora Release Engineering - 2.6-6Petr Lautrbach - 2.6-5Petr Lautrbach - 2.6-4Petr Lautrbach - 2.6-3Petr Lautrbach - 2.6-2Petr Lautrbach - 2.6-1.1Igor Gnatenko - 2.5-22Fedora Release Engineering - 2.5-21Kevin Fenzi - 2.5-20Petr Lautrbach - 2.5-19Petr Lautrbach - 2.5-18Petr Lautrbach 2.5-17Petr Lautrbach 2.5-16Petr Lautrbach 2.5-15Richard W.M. Jones - 2.5-14Fedora Release Engineering - 2.5-13Petr Lautrbach - 2.5-12Petr Lautrbach - 2.5-11Petr Lautrbach - 2.5-10Petr Lautrbach - 2.5-9Petr Lautrbach - 2.5-8Petr Lautrbach - 2.5-7Petr Lautrbach - 2.5-6Petr Lautrbach - 2.5-5Petr Lautrbach - 2.5-4Petr Lautrbach - 2.5-3Petr Lautrbach 2.5-2Petr Lautrbach 2.5-1Fedora Release Engineering - 2.4-21Petr Lautrbach - 2.4-20Petr Lautrbach 2.4-19Petr Lautrbach 2.4-18Fedora Release Engineering - 2.4-17Petr Lautrbach 2.4-16Robert Kuska - 2.4-15Petr Lautrbach 2.4-14Petr Lautrbach 2.4-13Petr Lautrbach 2.4-12Petr Lautrbach 2.4-11Petr Lautrbach 2.4-10Petr Lautrbach 2.4-9Petr Lautrbach 2.4-8Petr Lautrbach 2.4-7Petr Lautrbach 2.4-6Petr Lautrbach 2.4-5Petr Lautrbach 2.4-4Petr Lautrbach 2.4-3Petr Lautrbach 2.4-2Petr Lautrbach 2.4-1.1Petr Lautrbach 2.4-0.7Petr Lautrbach 2.4-0.6Fedora Release Engineering - 2.3-18Petr Lautrbach 2.3-17Petr Lautrbach 2.4-0.4Petr Lautrbach 2.3-16Petr Lautrbach 2.3-15Dan Walsh - 2.3-14Miroslav Grepl - 2.3-13Miroslav Grepl - 2.3-12Miroslav Grepl - 2.3-11Fedora Release Engineering - 2.3-10Dan Walsh - 2.3-9Tom Callaway - 2.3-8Miroslav Grepl - 2.3-7Fedora Release Engineering - 2.3-6Kalev Lember - 2.3-5Miroslav Grepl - 2.3-4Dan Walsh - 2.3-3Miroslav Grepl - 2.3-2Dan Walsh - 2.3-1Miroslav Grepl - 2.2.5-15Dan Walsh - 2.2.5-14Miroslav Grepl - 2.2.5-13Miroslav Grepl - 2.2.5-12Dan Walsh - 2.2.5-11Miroslav Grepl - 2.2.5-10Dan Walsh - 2.2.5-9Dan Walsh - 2.2.5-8Dan Walsh - 2.2.5-7Dan Walsh - 2.2.5-6Dan Walsh - 2.2.5-5Dan Walsh - 2.2.5-4Dan Walsh - 2.2.5-3Dan Walsh - 2.2.5-2Dan Walsh - 2.2.5-1Dan Walsh - 2.2.4-8Dan Walsh - 2.2.4-7Dan Walsh - 2.2.4-6Dan Walsh - 2.2.4-5Dan Walsh - 2.2.4-4Dan Walsh - 2.2.4-3Dan Walsh - 2.2.4-2Dan Walsh - 2.2.4-1Dan Walsh - 2.2.3-1Dan Walsh - 2.2.2-2Dan Walsh - 2.2.2-1Dan Walsh - 2.2-2Dan Walsh - 2.2-1Dan Walsh - 2.1.14-89Dan Walsh - 2.1.14-88Dan Walsh - 2.1.14-87Dan Walsh - 2.1.14-86Dan Walsh - 2.1.14-85Dan Walsh - 2.1.14-84Dan Walsh - 2.1.14-83Dan Walsh - 2.1.14-82Dan Walsh - 2.1.14-81Dan Walsh - 2.1.14-80Dan Walsh - 2.1.14-79Dan Walsh - 2.1.14-78Dan Walsh - 2.1.14-77Dan Walsh - 2.1.14-76Dan Walsh - 2.1.14-75Dan Walsh - 2.1.14-74Dan Walsh - 2.1.14-73Dan Walsh - 2.1.14-72Dan Walsh - 2.1.14-71Dan Walsh - 2.1.14-70Dan Walsh - 2.1.14-69Dan Walsh - 2.1.14-68Dan Walsh - 2.1.14-67Dan Walsh - 2.1.14-66Dan Walsh - 2.1.14-65Dan Walsh - 2.1.14-64Dan Walsh - 2.1.14-63Dan Walsh - 2.1.14-62Dan Walsh - 2.1.14-61Dan Walsh - 2.1.14-60Dan Walsh - 2.1.14-59Dan Walsh - 2.1.14-58Dan Walsh - 2.1.14-57Dan Walsh - 2.1.14-56Dan Walsh - 2.1.14-55Dan Walsh - 2.1.14-54Dan Walsh - 2.1.14-53Dan Walsh - 2.1.14-52Dan Walsh - 2.1.14-51Dan Walsh - 2.1.14-50Dan Walsh - 2.1.14-49Dan Walsh - 2.1.14-48Dan Walsh - 2.1.14-47Dan Walsh - 2.1.14-46Dan Walsh - 2.1.14-45Dan Walsh - 2.1.14-44Dan Walsh - 2.1.14-43Dan Walsh - 2.1.14-42Dan Walsh - 2.1.14-41Dan Walsh - 2.1.14-40Dan Walsh - 2.1.14-39Dan Walsh - 2.1.14-38Dan Walsh - 2.1.14-37Dan Walsh - 2.1.14-36Dan Walsh - 2.1.14-35Dan Walsh - 2.1.14-34Dan Walsh - 2.1.14-33Dan Walsh - 2.1.14-32Dan Walsh - 2.1.14-31Dan Walsh - 2.1.14-30Dan Walsh - 2.1.14-28Dan Walsh - 2.1.14-27Dan Walsh - 2.1.14-26Dan Walsh - 2.1.14-25Dan Walsh - 2.1.14-24Dan Walsh - 2.1.14-23Dan Walsh - 2.1.14-22Dan Walsh - 2.1.14-21Dan Walsh - 2.1.14-20Dan Walsh - 2.1.14-19Dan Walsh - 2.1.14-18Dan Walsh - 2.1.14-17Dan Walsh - 2.1.14-16Dan Walsh - 2.1.14-15Dan Walsh - 2.1.14-14Dan Walsh - 2.1.14-13Rahul Sundaram - 2.1.14-13Dan Walsh - 2.1.14-12Dan Walsh - 2.1.14-11Dan Walsh - 2.1.14-10Dan Walsh - 2.1.14-9Dan Walsh - 2.1.14-8Dan Walsh - 2.1.14-7Dan Walsh - 2.1.14-6Dan Walsh - 2.1.14-5Dan Walsh - 2.1.14-4Dan Walsh - 2.1.14-3Dan Walsh - 2.1.14-2Dan Walsh - 2.1.14-1Dan Walsh - 2.1.12-58Dan Walsh - 2.1.12-57Dan Walsh - 2.1.12-56Dan Walsh - 2.1.12-55Dan Walsh - 2.1.12-54Dan Walsh - 2.1.12-53Dan Walsh - 2.1.12-52Dan Walsh - 2.1.12-51Dan Walsh - 2.1.12-50Dan Walsh - 2.1.12-49Dan Walsh - 2.1.12-48Dan Walsh - 2.1.12-47Dan Walsh - 2.1.12-46Dan Walsh - 2.1.12-45Dan Walsh - 2.1.12-44Dan Walsh - 2.1.12-43Dan Walsh - 2.1.12-42Dan Walsh - 2.1.12-41Dan Walsh - 2.1.12-40Dan Walsh - 2.1.12-39Dan Walsh - 2.1.12-38Dan Walsh - 2.1.12-37Dan Walsh - 2.1.12-36Dan Walsh - 2.1.12-35Dan Walsh - 2.1.12-34Dan Walsh - 2.1.12-33Dan Walsh - 2.1.12-32Dan Walsh - 2.1.12-31Dan Walsh - 2.1.12-30Dan Walsh - 2.1.12-29Dan Walsh - 2.1.12-27Dan Walsh - 2.1.12-26Dan Walsh - 2.1.12-25Dan Walsh - 2.1.12-24Dan Walsh - 2.1.12-23Dan Walsh - 2.1.12-22Dan Walsh - 2.1.12-21Dan Walsh - 2.1.12-20Dan Walsh - 2.1.12-19Dan Walsh - 2.1.12-18Dan Walsh - 2.1.12-17Dan Walsh - 2.1.12-16Dan Walsh - 2.1.12-15Dan Walsh - 2.1.12-14Dan Walsh - 2.1.12-13Dan Walsh - 2.1.12-12Dan Walsh - 2.1.12-11Dan Walsh - 2.1.12-10Dan Walsh - 2.1.12-9Dan Walsh - 2.1.12-8Dan Walsh - 2.1.12-7Dan Walsh - 2.1.12-6Dan Walsh - 2.1.12-5Dan Walsh - 2.1.12-4Dan Walsh - 2.1.12-3Dan Walsh - 2.1.12-2Dan Walsh - 2.1.12-1Dan Walsh - 2.1.11-6Dan Walsh - 2.1.11-5Dan Walsh - 2.1.11-4Dan Walsh - 2.1.11-3Dan Walsh - 2.1.11-2Dan Walsh - 2.1.11-1Dan Walsh - 2.1.11-18Dan Walsh - 2.1.11-17Dan Walsh - 2.1.11-16Dan Walsh - 2.1.11-15Dan Walsh - 2.1.11-12Dan Walsh - 2.1.11-11Dan Walsh - 2.1.11-10Dan Walsh - 2.1.11-9Dan Walsh - 2.1.11-8Dan Walsh - 2.1.11-7Dan Walsh - 2.1.11-6Dan Walsh - 2.1.11-5Dan Walsh - 2.1.11-4Dan Walsh - 2.1.11-3Dan Walsh - 2.1.11-2Dan Walsh - 2.1.11-1Dan Walsh - 2.1.10-30Dan Walsh - 2.1.10-29Dan Walsh - 2.1.10-28Dan Walsh - 2.1.10-27Dan Walsh - 2.1.10-26Dan Walsh - 2.1.10-25Dan Walsh - 2.1.10-24Dan Walsh - 2.1.10-23Dan Walsh - 2.1.10-22Dan Walsh - 2.1.10-21Dan Walsh - 2.1.10-20Dan Walsh - 2.1.10-19Dan Walsh - 2.1.10-18Dan Walsh - 2.1.10-17Harald Hoyer 2.1.10-16Harald Hoyer 2.1.10-15Harald Hoyer 2.1.10-14Harald Hoyer 2.1.10-13Harald Hoyer 2.1.10-12Dan Walsh - 2.1.10-11Dan Walsh - 2.1.10-10Dan Walsh - 2.1.10-9Dan Walsh - 2.1.10-8Dan Walsh - 2.1.10-7Dan Walsh - 2.1.10-5Dan Walsh - 2.1.10-4Dan Walsh - 2.1.10-3Dan Walsh - 2.1.10-2Dan Walsh - 2.1.10-1Dan Walsh - 2.1.9-3Dan Walsh - 2.1.9-2Dan Walsh - 2.1.9-1Dan Walsh - 2.1.8-8Dan Walsh - 2.1.8-7Dan Walsh - 2.1.8-6Dan Walsh - 2.1.8-5Dan Walsh - 2.1.8-4Dan Walsh - 2.1.8-3Dan Walsh - 2.1.8-2Dan Walsh - 2.1.8-1Dan Walsh - 2.1.7-6Dan Walsh - 2.1.7-5Dan Walsh - 2.1.7-4Dan Walsh - 2.1.7-3Dan Walsh - 2.1.7-2Dan Walsh - 2.1.7-1Dan Walsh - 2.1.6-3Dan Walsh - 2.1.6-2Dan Walsh - 2.1.6-1Dan Walsh - 2.1.5-6Dan Walsh - 2.1.5-5Dan Walsh - 2.1.5-4Dan Walsh - 2.1.5-3Dan Walsh - 2.1.5-2Dan Walsh - 2.1.5-1Dan Walsh - 2.1.4-2Dan Walsh - 2.1.4-1Dan Walsh 2.0.86-20Dan Walsh 2.0.86-18Dan Walsh 2.0.86-17Dan Walsh 2.0.86-16Jóhann B. Guðmundsson - 2.0.86-15Dan Walsh 2.0.86-14Dan Walsh 2.0.86-13Dan Walsh 2.0.86-12Dan Walsh 2.0.86-11Dan Walsh 2.0.86-10Dan Walsh 2.0.86-9Dan Walsh 2.0.86-8Dan Walsh 2.0.86-7Dan Walsh 2.0.86-6Dan Walsh 2.0.86-5Dan Walsh 2.0.86-4Dan Walsh 2.0.86-2Dan Walsh 2.0.86-1Dan Walsh 2.0.85-30Dan Walsh 2.0.85-29Dan Walsh 2.0.85-28Dan Walsh 2.0.85-27Dan Walsh 2.0.85-26Dan Walsh 2.0.85-25Dan Walsh 2.0.85-24Dan Walsh 2.0.85-23Dan Walsh 2.0.85-22Dan Walsh 2.0.85-21Dan Walsh 2.0.85-20Dan Walsh 2.0.85-19Dan Walsh 2.0.85-18Dan Walsh 2.0.85-17Dan Walsh 2.0.85-16Dan Walsh 2.0.85-15Dan Walsh 2.0.85-13Fedora Release Engineering - 2.0.85-12Dan Walsh 2.0.85-11Dan Walsh 2.0.85-10Dan Walsh 2.0.85-9Dan Walsh 2.0.85-8Dan Walsh 2.0.85-7Dan Walsh 2.0.85-6Dan Walsh 2.0.85-4Dan Walsh 2.0.85-3Dan Walsh 2.0.85-2Dan Walsh 2.0.85-1Dan Walsh 2.0.84-5Dan Walsh 2.0.84-4Dan Walsh 2.0.84-3Dan Walsh 2.0.84-2Dan Walsh 2.0.84-1Dan Walsh 2.0.83-37Dan Walsh 2.0.83-36Dan Walsh 2.0.83-35Dan Walsh 2.0.83-34Dan Walsh 2.0.83-33Dan Walsh 2.0.83-32jkeating - 2.0.83-31Dan Walsh 2.0.83-30Dan Walsh 2.0.83-29Dan Walsh 2.0.83-28Dan Walsh 2.0.83-27Dan Walsh 2.0.83-26Dan Walsh 2.0.83-25Dan Walsh 2.0.83-24Dan Walsh 2.0.83-23Dan Walsh 2.0.83-22Dan Walsh 2.0.83-21Dan Walsh 2.0.83-20Dan Walsh 2.0.83-19Dan Walsh 2.0.83-18Dan Walsh 2.0.83-17Dan Walsh 2.0.83-16Dan Walsh 2.0.83-15Dan Walsh 2.0.83-14Dan Walsh 2.0.83-13Dan Walsh 2.0.83-12Dan Walsh 2.0.83-11David Malcolm - 2.0.83-10Dan Walsh 2.0.83-9Dan Walsh 2.0.83-8Dan Walsh 2.0.83-7Dan Walsh 2.0.83-6David Malcolm - 2.0.83-5Dan Walsh 2.0.83-4Dan Walsh 2.0.83-3Dan Walsh 2.0.83-1Dan Walsh 2.0.82-31Dan Walsh 2.0.82-30Dan Walsh 2.0.82-29Dan Walsh 2.0.82-28Dan Walsh 2.0.82-27Dan Walsh 2.0.82-26Dan Walsh 2.0.82-25Dan Walsh 2.0.82-24Dan Walsh 2.0.82-23Dan Walsh 2.0.82-22Dan Walsh 2.0.82-21Dan Walsh 2.0.82-20Dan Walsh 2.0.82-18Dan Walsh 2.0.82-17Dan Walsh 2.0.82-15Dan Walsh 2.0.82-14Dan Walsh 2.0.82-13Dan Walsh 2.0.82-11Dan Walsh 2.0.82-10Dan Walsh 2.0.82-8Dan Walsh 2.0.82-7Dan Walsh 2.0.82-6Dan Walsh 2.0.82-5Dan Walsh 2.0.82-4Dan Walsh 2.0.82-3Dan Walsh 2.0.82-2Dan Walsh 2.0.82-1Dan Walsh 2.0.81-4Dan Walsh 2.0.81-3Dan Walsh 2.0.81-2Dan Walsh 2.0.81-1Dan Walsh 2.0.80-2Dan Walsh 2.0.80-1Dan Walsh 2.0.79-5Dan Walsh 2.0.79-4Dan Walsh 2.0.79-3Dan Walsh 2.0.79-2Dan Walsh 2.0.79-1Dan Walsh 2.0.78-21Dan Walsh 2.0.78-20Dan Walsh 2.0.78-19Dan Walsh 2.0.78-17Dan Walsh 2.0.78-16Dan Walsh 2.0.78-15Dan Walsh 2.0.78-14Dan Walsh 2.0.78-13Dan Walsh 2.0.78-12Dan Walsh 2.0.78-11Dan Walsh 2.0.78-10Dan Walsh 2.0.78-9Dan Walsh 2.0.78-8Dan Walsh 2.0.78-7Dan Walsh 2.0.78-6Dan Walsh 2.0.78-5Dan Walsh 2.0.78-4Dan Walsh 2.0.78-3Dan Walsh 2.0.78-2Dan Walsh 2.0.78-1Dan Walsh 2.0.77-1Dan Walsh 2.0.76-1Dan Walsh 2.0.75-3Dan Walsh 2.0.75-2Dan Walsh 2.0.75-1Dan Walsh 2.0.74-15Dan Walsh 2.0.74-14Dan Walsh 2.0.74-13Dan Walsh 2.0.74-12Dan Walsh 2.0.74-11Dan Walsh 2.0.74-10Dan Walsh 2.0.74-9Dan Walsh 2.0.74-8Dan Walsh 2.0.74-7Dan Walsh 2.0.74-6Dan Walsh 2.0.74-5Dan Walsh 2.0.74-4Dan Walsh 2.0.74-3Dan Walsh 2.0.74-2Dan Walsh 2.0.74-1Dan Walsh 2.0.73-5Dan Walsh 2.0.73-4Dan Walsh 2.0.73-3Dan Walsh 2.0.73-2Dan Walsh 2.0.73-1Dan Walsh 2.0.71-15Bill Nottingham 2.0.71-15Dan Walsh 2.0.71-14Tomas Mraz - 2.0.71-13Dan Walsh 2.0.71-12Dan Walsh 2.0.71-11Dan Walsh 2.0.71-10Ville Skyttä - 2.0.71-9Dan Walsh 2.0.71-7Dan Walsh 2.0.71-6Dan Walsh 2.0.71-5Dan Walsh 2.0.71-4Dan Walsh 2.0.71-3Dan Walsh 2.0.71-2Dan Walsh 2.0.71-1Dan Walsh 2.0.70-2Dan Walsh 2.0.70-1Dan Walsh 2.0.68-1Fedora Release Engineering - 2.0.64-3Tom "spot" Callaway 2.0.64-2Dan Walsh 2.0.64-1Dan Walsh 2.0.63-5Dan Walsh 2.0.63-4Dan Walsh 2.0.63-3Dan Walsh 2.0.63-2Dan Walsh 2.0.63-1Dan Walsh 2.0.62-14Dan Walsh 2.0.62-13Dan Walsh 2.0.62-12Dan Walsh 2.0.62-10Dan Walsh 2.0.62-9Dan Walsh 2.0.62-8Dan Walsh 2.0.62-7Dan Walsh 2.0.62-6Dan Walsh 2.0.62-5Dan Walsh 2.0.62-4Fedora Release Engineering - 2.0.62-3Dan Walsh 2.0.62-2Dan Walsh 2.0.62-1Dan Walsh 2.0.61-10Dan Walsh 2.0.61-9Dan Walsh 2.0.61-8Dan Walsh 2.0.61-7Dan Walsh 2.0.61-6Dan Walsh 2.0.61-4Dan Walsh 2.0.61-3Dan Walsh 2.0.61-2Dan Walsh 2.0.61-1Dan Walsh 2.0.60-7Dan Walsh 2.0.60-6Dan Walsh 2.0.60-5Dan Walsh 2.0.60-4Ignacio Vazquez-Abrams - 2.0.60-3Dan Walsh 2.0.60-2Dan Walsh 2.0.60-1Ignacio Vazquez-Abrams - 2.0.59-2Dan Walsh 2.0.59-1Dan Walsh 2.0.58-1Dan Walsh 2.0.57-12Jesse Keating - 2.0.57-11Dan Walsh 2.0.57-10Dan Walsh 2.0.57-9Dan Walsh 2.0.57-8Dan Walsh 2.0.57-7Dan Walsh 2.0.57-6Dan Walsh 2.0.57-5Dan Walsh 2.0.57-4Dan Walsh 2.0.57-3Dan Walsh 2.0.57-2Dan Walsh 2.0.57-1Dan Walsh 2.0.56-1Dan Walsh 2.0.55-8Dan Walsh 2.0.55-7Dan Walsh 2.0.55-5Dan Walsh 2.0.55-4Dan Walsh 2.0.55-2Dan Walsh 2.0.55-1Dan Walsh 2.0.54-7Dan Walsh 2.0.54-6Dan Walsh 2.0.54-5Dan Walsh 2.0.54-2Dan Walsh 2.0.54-1Dan Walsh 2.0.53-3Dan Walsh 2.0.53-2Dan Walsh 2.0.53-1Dan Walsh 2.0.52-6Dan Walsh 2.0.52-5Dan Walsh 2.0.52-4Dan Walsh 2.0.52-3Dan Walsh 2.0.52-2Dan Walsh 2.0.52-1Dan Walsh 2.0.50-2Dan Walsh 2.0.50-1Dan Walsh 2.0.49-10Dan Walsh 2.0.49-8Dan Walsh 2.0.49-7Dan Walsh 2.0.49-6Dan Walsh 2.0.49-5Dan Walsh 2.0.49-4Dan Walsh 2.0.49-3Dan Walsh 2.0.49-2Dan Walsh 2.0.49-1Dan Walsh 2.0.47-3Dan Walsh 2.0.47-2Dan Walsh 2.0.47-1Matthias Clasen - 2.0.46-5Matthias Clasen - 2.0.46-4Dan Walsh 2.0.46-3Dan Walsh 2.0.46-2Dan Walsh 2.0.46-1Dan Walsh 2.0.44-1Dan Walsh 2.0.43-2Dan Walsh 2.0.43-1Dan Walsh 2.0.42-3Dan Walsh 2.0.42-2Dan Walsh 2.0.42-1Dan Walsh 2.0.41-1Dan Walsh 2.0.39-1Dan Walsh 2.0.38-1Dan Walsh 2.0.37-1Dan Walsh 2.0.36-2Dan Walsh 2.0.36-1Dan Walsh 2.0.35-5Dan Walsh 2.0.35-4Dan Walsh 2.0.35-3Dan Walsh 2.0.35-2Dan Walsh 2.0.35-1Dan Walsh 2.0.34-8Dan Walsh 2.0.34-7Dan Walsh 2.0.34-5Dan Walsh 2.0.34-4Dan Walsh 2.0.34-3Dan Walsh 2.0.34-2Dan Walsh 2.0.34-1Dan Walsh 2.0.33-4Dan Walsh 2.0.33-3Dan Walsh 2.0.33-2Dan Walsh 2.0.33-1Dan Walsh 2.0.32-2Dan Walsh 2.0.32-1Dan Walsh 2.0.31-20Dan Walsh 2.0.31-19Dan Walsh 2.0.31-18Dan Walsh 2.0.31-17Dan Walsh 2.0.31-16Dan Walsh 2.0.31-15Dan Walsh 2.0.31-14Dan Walsh 2.0.31-13Dan Walsh 2.0.31-12Dan Walsh 2.0.31-11Dan Walsh 2.0.31-10Dan Walsh 2.0.31-9Dan Walsh 2.0.31-8Dan Walsh 2.0.31-7Dan Walsh 2.0.31-6Dan Walsh 2.0.31-5Dan Walsh 2.0.31-4Dan Walsh 2.0.31-3Dan Walsh 2.0.31-1Dan Walsh 2.0.29-2Dan Walsh 2.0.29-1Dan Walsh 2.0.28-1Dan Walsh 2.0.27-7Dan Walsh 2.0.27-6Dan Walsh 2.0.27-5Dan Walsh 2.0.27-4Dan Walsh 2.0.27-3Dan Walsh 2.0.27-1Dan Walsh 2.0.26-3Dan Walsh 2.0.26-2Dan Walsh 2.0.26-1Dan Walsh 2.0.25-15Dan Walsh 2.0.25-14Dan Walsh 2.0.25-13Dan Walsh 2.0.25-12Dan Walsh 2.0.25-11Dan Walsh 2.0.25-10Dan Walsh 2.0.25-9Dan Walsh 2.0.25-8Dan Walsh 2.0.25-7Dan Walsh 2.0.25-6Dan Walsh 2.0.25-5Dan Walsh 2.0.25-4Dan Walsh 2.0.25-3Dan Walsh 2.0.25-2Dan Walsh 2.0.25-1Dan Walsh 2.0.23-2Dan Walsh 2.0.23-1Dan Walsh 2.0.22-13Dan Walsh 2.0.22-11Dan Walsh 2.0.22-10Jeremy Katz - 2.0.22-9Dan Walsh 2.0.22-8Dan Walsh 2.0.22-7Dan Walsh 2.0.22-6Dan Walsh 2.0.22-5Dan Walsh 2.0.22-4Dan Walsh 2.0.22-3Dan Walsh 2.0.22-2Dan Walsh 2.0.22-1Dan Walsh 2.0.21-2Dan Walsh 2.0.21-1Dan Walsh 2.0.20-1Dan Walsh 2.0.19-5Dan Walsh 2.0.19-4Dan Walsh 2.0.19-3Dan Walsh 2.0.19-2Dan Walsh 2.0.19-1Dan Walsh 2.0.16-2Dan Walsh 2.0.16-1Dan Walsh 2.0.15-1Dan Walsh 2.0.14-2Dan Walsh 2.0.14-1Dan Walsh 2.0.13-1Dan Walsh 2.0.10-2Dan Walsh 2.0.10-1Dan Walsh 2.0.9-10Dan Walsh 2.0.9-9Dan Walsh 2.0.9-8Dan Walsh 2.0.9-7Dan Walsh 2.0.9-6Dan Walsh 2.0.9-5Dan Walsh 2.0.9-4Dan Walsh 2.0.9-3Dan Walsh 2.0.9-2Dan Walsh 2.0.9-1Dan Walsh 2.0.8-1Dan Walsh 2.0.7-11Dan Walsh 2.0.7-10Dan Walsh 2.0.7-9Dan Walsh 2.0.7-8Dan Walsh 2.0.7-7Dan Walsh 2.0.7-6Dan Walsh 2.0.7-5Dan Walsh 2.0.7-4Dan Walsh 2.0.7-3Dan Walsh 2.0.7-2Dan Walsh 2.0.7-1Dan Walsh 2.0.6-3Dan Walsh 2.0.6-2Dan Walsh 2.0.6-1Dan Walsh 2.0.3-2Dan Walsh 2.0.3-1Dan Walsh 2.0.2-3Dan Walsh 2.0.2-2Dan Walsh 2.0.2-1Dan Walsh 2.0.1-2Dan Walsh 2.0.1-1Dan Walsh 2.0.0-1Dan Walsh 1.34.1-4Dan Walsh 1.34.1-3Dan Walsh 1.34.1-2Dan Walsh 1.34.1-1Dan Walsh 1.33.15-1Dan Walsh 1.33.14-1Dan Walsh 1.33.12-3Dan Walsh 1.33.12-2Dan Walsh 1.33.12-1Dan Walsh 1.33.11-1Dan Walsh 1.33.10-1Dan Walsh 1.33.8-2Dan Walsh 1.33.8-1Dan Walsh 1.33.7-1Dan Walsh 1.33.6-9Dan Walsh 1.33.6-8Dan Walsh 1.33.6-7Dan Walsh 1.33.6-6Dan Walsh 1.33.6-5Jeremy Katz - 1.33.6-4Dan Walsh 1.33.6-3Dan Walsh 1.33.6-2Dan Walsh 1.33.6-1Dan Walsh 1.33.5-4Dan Walsh 1.33.5-3Dan Walsh 1.33.5-2Dan Walsh 1.33.5-1Dan Walsh 1.33.4-2Dan Walsh 1.33.4-1Dan Walsh 1.33.2-2Dan Walsh 1.33.2-1Dan Walsh 1.33.1-9Dan Walsh 1.33.1-8Dan Walsh 1.33.1-7Dan Walsh 1.33.1-6Dan Walsh 1.33.1-5Dan Walsh 1.33.1-4Dan Walsh 1.33.1-3Dan Walsh 1.33.1-2Dan Walsh 1.33.1-1Dan Walsh 1.32-3Dan Walsh 1.32-2Dan Walsh 1.32-1Dan Walsh 1.30.30-2Dan Walsh 1.30.30-1Dan Walsh 1.30.29-6Dan Walsh 1.30.29-5Dan Walsh 1.30.29-4Dan Walsh 1.30.29-3Dan Walsh 1.30.29-2Dan Walsh 1.30.29-1Dan Walsh 1.30.28-9Dan Walsh 1.30.28-8Dan Walsh 1.30.28-7Dan Walsh 1.30.28-6Dan Walsh 1.30.28-5Dan Walsh 1.30.28-4Dan Walsh 1.30.28-3Dan Walsh 1.30.28-2Dan Walsh 1.30.28-1Dan Walsh 1.30.27-5Dan Walsh 1.30.27-4Dan Walsh 1.30.27-3Dan Walsh 1.30.27-2Dan Walsh 1.30.27-1Dan Walsh 1.30.26-1Dan Walsh 1.30.25-1Dan Walsh 1.30.22-3Dan Walsh 1.30.22-2Dan Walsh 1.30.22-1Dan Walsh 1.30.17-7Dan Walsh 1.30.17-6Dan Walsh 1.30.17-5Dan Walsh 1.30.17-4Dan Walsh 1.30.17-3Dan Walsh 1.30.17-2Dan Walsh 1.30.17-1Dan Walsh 1.30.14-5Dan Walsh 1.30.14-4Dan Walsh 1.30.14-3Dan Walsh 1.30.14-2Dan Walsh 1.30.14-1James Antill 1.30.12-5Dan Walsh 1.30.12-4Dan Walsh 1.30.12-3Dan Walsh 1.30.12-2Dan Walsh 1.30.12-1Dan Walsh 1.30.11-1Dan Walsh 1.30.10-4James Antill 1.30.10-3James Antill 1.30.10-2Dan Walsh 1.30.10-1Dan Walsh 1.30.9-4James Antill 1.30.9-3James Antill 1.30.9-2Dan Walsh 1.30.9-1Dan Walsh 1.30.8-2Dan Walsh 1.30.8-1Dan Walsh 1.30.6-5Dan Walsh 1.30.6-4Dan Walsh 1.30.6-3Dan Walsh 1.30.6-2Dan Walsh 1.30.6-1Karsten Hopp 1.30.4-4Karsten Hopp 1.30.4-3Dan Walsh 1.30.4-2Dan Walsh 1.30.4-1Dan Walsh 1.30.1-4Dan Walsh 1.30.1-3Dan Walsh 1.30.1-2Dan Walsh 1.30.1-1Dan Walsh 1.30-5Dan Walsh 1.30-4Dan Walsh 1.30-3Dan Walsh 1.30-2Dan Walsh 1.30-1Dan Walsh 1.29.27-1Dan Walsh 1.29.26-6Dan Walsh 1.29.26-5Dan Walsh 1.29.26-4Dan Walsh 1.29.26-3Dan Walsh 1.29.26-2Dan Walsh 1.29.26-1Dan Walsh 1.29.23-1Jesse Keating - 1.29.20-2.1Dan Walsh 1.29.20-2Dan Walsh 1.29.20-1Jesse Keating - 1.29.18-2.1Dan Walsh 1.29.18-2Dan Walsh 1.29.18-1Dan Walsh 1.29.17-1Dan Walsh 1.29.15-1Dan Walsh 1.29.12-1Dan Walsh 1.29.11-3Dan Walsh 1.29.11-2Dan Walsh 1.29.11-1Dan Walsh 1.29.9-2Dan Walsh 1.29.9-1Dan Walsh 1.29.8-4Dan Walsh 1.29.8-3Dan Walsh 1.29.8-2Dan Walsh 1.29.8-1Dan Walsh 1.29.7-4Dan Walsh 1.29.7-3Dan Walsh 1.29.7-2Dan Walsh 1.29.7-1Dan Walsh 1.29.5-3Dan Walsh 1.29.5-2Dan Walsh 1.29.5-1Dan Walsh 1.29.4-1Dan Walsh 1.29.3-1Dan Walsh 1.29.2-10Dan Walsh 1.29.2-9Dan Walsh 1.29.2-8Dan Walsh 1.29.2-7Dan Walsh 1.29.2-6Dan Walsh 1.29.2-5Dan Walsh 1.29.2-4Dan Walsh 1.29.2-3Dan Walsh 1.29.2-1Dan Walsh 1.29.1-2Jesse Keating Dan Walsh 1.29.1-1Dan Walsh 1.28-1Dan Walsh 1.27.37-1Dan Walsh 1.27.36-2Dan Walsh 1.27.36-1Dan Walsh 1.27.35-1Dan Walsh 1.27.33-1Dan Walsh 1.27.31-1Dan Walsh 1.27.30-1Dan Walsh 1.27.29-1Dan Walsh 1.27.28-3Dan Walsh 1.27.28-2Dan Walsh 1.27.27-5Dan Walsh 1.27.27-3Dan Walsh 1.27.27-1Dan Walsh 1.27.26-4Dan Walsh 1.27.26-1Dan Walsh 1.27.23-1Dan Walsh 1.27.20-1Dan Walsh 1.27.19-2Dan Walsh 1.27.19-1Dan Walsh 1.27.18-1Dan Walsh 1.27.14-1Dan Walsh 1.27.13-1Dan Walsh 1.27.12-1Dan Walsh 1.27.11-1Dan Walsh 1.27.7-2Dan Walsh 1.27.7-1Dan Walsh 1.27.6-1Dan Walsh 1.27.5-3Dan Walsh 1.27.5-1Dan Walsh 1.27.3-2Dan Walsh 1.27.3-1Dan Walsh 1.27.2-2Dan Walsh 1.27.2-1Dan Walsh 1.27.1-1Dan Walsh 1.26-3Dan Walsh 1.26-2Dan Walsh 1.26-1Dan Walsh 1.25.9-2Dan Walsh 1.25.9-1Dan Walsh 1.25.7-3Dan Walsh 1.25.7-2Dan Walsh 1.25.7-1Dan Walsh 1.25.6-1Dan Walsh 1.25.5-3Dan Walsh 1.25.5-2Dan Walsh 1.25.5-1Dan Walsh 1.25.4-1Dan Walsh 1.25.3-1Dan Walsh 1.25.2-1Dan Walsh 1.25.1-1Dan Walsh 1.24-1Dan Walsh 1.23.11-4Dan Walsh 1.23.11-3Dan Walsh 1.23.11-2Dan Walsh 1.23.11-1Dan Walsh 1.23.10-2Dan Walsh 1.23.10-1Dan Walsh 1.23.9-1Dan Walsh 1.23.8-1Dan Walsh 1.23.7-1Dan Walsh 1.23.6-1Dan Walsh 1.23.5-1Dan Walsh 1.23.4-3Dan Walsh 1.23.4-1Dan Walsh 1.23.3-2Dan Walsh 1.23.3-1Dan Walsh 1.23.2-1Dan Walsh 1.23.1-1Dan Walsh 1.22-2Dan Walsh 1.21.22-2Dan Walsh 1.21.22-1Dan Walsh 1.21.21-1Dan Walsh 1.21.20-3Dan Walsh 1.21.20-2Dan Walsh 1.21.20-1Dan Walsh 1.21.19-4Dan Walsh 1.21.19-2Dan Walsh 1.21.19-1Dan Walsh 1.21.18-2Dan Walsh 1.21.18-1Dan Walsh 1.21.17-2Dan Walsh 1.21.17-1Dan Walsh 1.21.15-9Dan Walsh 1.21.15-8Dan Walsh 1.21.15-5Dan Walsh 1.21.15-1Dan Walsh 1.21.14-1Dan Walsh 1.21.13-1Dan Walsh 1.21.12-2Dan Walsh 1.21.12-1Dan Walsh 1.21.10-2Dan Walsh 1.21.10-1Dan Walsh 1.21.9-1Dan Walsh 1.21.7-3Dan Walsh 1.21.5-1Dan Walsh 1.21.4-1Dan Walsh 1.21.3-2Dan Walsh 1.21.3-1Dan Walsh 1.21.1-3Dan Walsh 1.21.1-1Dan Walsh 1.20.1-2Dan Walsh 1.20.1-1Dan Walsh 1.19.3-1Dan Walsh 1.19.2-4Dan Walsh 1.19.2-1Dan Walsh 1.19.1-1Dan Walsh 1.18.1-3Dan Walsh 1.18.1-1Steve Grubb 1.17.7-3Dan Walsh 1.17.7-2Dan Walsh 1.17.7-1Dan Walsh 1.17.6-2Dan Walsh 1.17.6-1Dan Walsh 1.17.5-6Dan Walsh 1.17.5-5Dan Walsh 1.17.5-4Dan Walsh 1.17.5-3Dan Walsh 1.17.5-2Dan Walsh 1.17.5-1Dan Walsh 1.17.4-1Dan Walsh 1.17.3-4Dan Walsh 1.17.3-3Dan Walsh 1.17.3-2Dan Walsh 1.17.3-1Dan Walsh 1.17.2-1Dan Walsh 1.17.1-1Dan Walsh 1.15.7-1Dan Walsh 1.15.6-1Dan Walsh 1.15.5-1Dan Walsh 1.15.3-2Dan Walsh 1.15.3-1Dan Walsh 1.15.2-4Dan Walsh 1.15.2-3Dan Walsh 1.15.2-2Dan Walsh 1.15.2-1Dan Walsh 1.15.1-2Dan Walsh 1.15.1-1Dan Walsh 1.14.1-2Dan Walsh 1.14.1-1Dan Walsh 1.13.4-1Dan Walsh 1.13.3-2Dan Walsh 1.13.3-1Dan Walsh 1.13.2-2Dan Walsh 1.13.2-1Elliot Lee Dan Walsh 1.13.1-2Dan Walsh 1.13.1-1Dan Walsh 1.13-3Dan Walsh 1.13-2Dan Walsh 1.13-1Dan Walsh 1.12-2Dan Walsh 1.12-1Dan Walsh 1.11-4Dan Walsh 1.11-3Dan Walsh 1.11-2Dan Walsh 1.11-1Dan Walsh 1.10-4Colin Walters 1.10-3Dan Walsh 1.10-2Dan Walsh 1.10-1Dan Walsh 1.9.2-1Dan Walsh 1.9.1-1Dan Walsh 1.9-19Dan Walsh 1.9-18Dan Walsh 1.9-17Dan Walsh 1.9-16Dan Walsh 1.9-15Dan Walsh 1.9-14Dan Walsh 1.9-12Dan Walsh 1.9-11Dan Walsh 1.9-10Dan Walsh 1.9-9Dan Walsh 1.9-8Dan Walsh 1.9-7Dan Walsh 1.9-6Dan Walsh 1.9-5Dan Walsh 1.9-4Dan Walsh 1.9-3Dan Walsh 1.9-2Dan Walsh 1.9-1Dan Walsh 1.6-8Dan Walsh 1.6-7Dan Walsh 1.6-6Dan Walsh 1.6-5Dan Walsh 1.6-4Dan Walsh 1.6-3Dan Walsh 1.6-2Dan Walsh 1.6-1Dan Walsh 1.4-9Elliot Lee Dan Walsh 1.4-7Dan Walsh 1.4-6Dan Walsh 1.4-5Dan Walsh 1.4-4Dan Walsh 1.4-3Dan Walsh 1.4-2Dan Walsh 1.4-1Dan Walsh 1.2-9Dan Walsh 1.2-8Dan Walsh 1.2-7Dan Walsh 1.2-6Dan Walsh 1.2-5Dan Walsh 1.2-4Dan Walsh 1.2-3Dan Walsh 1.2-1Dan Walsh 1.1-4Dan Walsh 1.1-3Dan Walsh 1.1-2Dan Walsh 1.0-1- Harden more tools against "rogue" modules (RHEL-17351) - sepolicy: port to dnf4 python API (RHEL-17398)- Update translations (#2124826)- python/sepolicy: Cache conditional rule queries (#2155540)- python/sepolicy: add missing booleans to man pages (#2155540)- python: Harden tools against "rogue" modules (#2128976) - Update "pathfix" arguments to match ^^^ (#2128976) - python: Do not query the local database if the fcontext is non-local (#2124825)- python: Split "semanage import" into two transactions (#2063353) - semodule: rename --rebuild-if-modules-changed to --refresh (#2089802) - selinux-autorelabel: Do not force reboot (#2093133)- semodule: move module hashing into libsemanage (requires libsemanage-2.9-7) - semodule: add command-line option to detect module changes (#2049189)- Improve error message when selabel_open fails (#1926511)- semodule: add -m | --checksum option- Update translations (#1962009)- setfiles: do not restrict checks against a binary policy (#1973754)- Update translations (#1899695)- selinux(8,5): Describe fcontext regular expressions (#1904059)- setfiles: Do not abort on labeling error (#1794518)- python/sepolgen: allow any policy statement in if(n)def (#1868717)- python/semanage: Sort imports in alphabetical order - python/semanage: empty stdout before exiting on BrokenPipeError (#1822100)- Update translations (#1754978)- restorecond: Fix redundant console log output error (#1626468)- dbus: Fix FileNotFoundError in org.selinux.relabel_on_boot (#1754873)- Configure autorelabel service to output to journal and to console if set (#1766578)- fixfiles: Fix "verify" option (#1647532) - semanage: Improve handling of "permissive" statements (#1417455) - semanage: fix moduleRecords.customized() - semanage: Add support for DCCP and SCTP protocols (#1563742)- semanage: Do not use default s0 range in "semanage login -a" (#1554360) - gui: Fix remove module in system-config-selinux (#1748763)- fixfiles: Fix unbound variable problem (#1743213)- Update transition - fixfiles: Fix [-B] [-F] onboot- SELinux userspace 2.9 release- semanage: move valid_types initialisations to class constructors - semanage: import sepolicy only when it's needed - sepolicy: Add sepolicy.load_store_policy(store) - semanage: Start exporting "ibendport" and "ibpkey" entries- chcat: use check_call instead of getstatusoutput - semanage: Use standard argparse.error() method - semanage: Fix handling of -a/-e/-d/-r options- Update translations- Use ipaddress module instead of IPy- Handle more reserved port types - Replace aliases with corresponding type names- Fix RESOURCE_LEAK coverity scan defects- sepolicy: Update to work with setools-4.2.0 - gui: Make all polgen button labels translatable- sepolicy: Fix get_real_type_name to handle query failure properly- sepolicy: search() for dontaudit rules as well- setfiles: Improve description of -d switch - Fix typo in newrole.1 manpage - semanage: Stop rejecting aliases in semanage commands - sepolicy: Stop rejecting aliases in sepolicy commands - sepolicy: Fix "info" to search aliases as well - sepolgen: fix refpolicy parsing of "permissive" - sepolgen: return NotImplemented instead of raising it - semanage: fix Python syntax of catching several exceptions - semanage: Replace bare except with specific one - semanage: Fix logger class definition - semanage: Stop logging loginRecords changes - add xperms support to audit2allow - sepolgen: fix access vector initialization - sepolgen: print all AV rules correctly- Update translations- sandbox: Use matchbox-window-manager instead of openbox (#1568295)- selinux-autorelabel: Use plymouth --quit rather then --hide-splash (#1592221) - selinux-autorelabel: Increment boot_indeterminate grub environment variable (#1592221) - Do not require libcgroup - it's not used anymore- Do not use symlinks to enable selinux-autorelabel-mark.service (#1589720)- Don't build the Python 2 subpackages (#1567354)- SELinux userspace 2.8 release- selinux-autorelabel: set UEFI boot order (BootNext) same as BootCurrent - selinux-autorelabel: synchronize cached writes before reboot (#1385272)- Move semodule_* utilities to policycoreutils package (#1562549)- semanage/seobject.py: Fix undefined store check (#1559174)- Build python only subpackages as noarch - Move semodule_package to policycoreutils-devel- sepolicy: Fix translated strings with parameters - sepolicy: Support non-MLS policy - sepolicy: Initialize policy.ports as a dict in generate.py - gui/polgengui.py: Use stop_emission_by_name instead of emit_stop_by_name - Minor update for bash completion - semodule_package: fix semodule_unpackage man page - gui/semanagePage: Close "edit" and "add" dialogues when successfull - gui/fcontextPage: Set default object class in addDialog\ - sepolgen: fix typo in PolicyGenerator - build: follow standard semantics for DESTDIR and PREFIX- Use Fedora RPM build flags (#1548740)- Fix mangling of python shebangs- Rename the python3 subpackage to have prefix, not suffix - Use python3 prefixes in requires where possible- Rewrite selinux-polgengui to use Gtk3 - Drop python2 and gnome-python2 from gui Requires- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild- Require audit-libs-python2- Remove obsolete scriptlets- semanage: bring semanageRecords.set_reload back to seobject.py (#1527745)- semanage: make seobject.py backward compatible - Own %{pythonX_sitelib}/site-packages/sepolicy directories (#1522942)- sepolicy: Fix sepolicy manpage - semanage: Update Infiniband code to work on python3 - semanage: Fix export of ibendport entries - semanage: Enforce noreload only if it's requested by -N option- restorecond: check write() and daemon() results - sepolicy: do not fail when file_contexts.local or .subs do not exist - sepolicy: remove stray space in section "SEE ALSO" - sepolicy: fix misspelling of _ra_content_t suffix - gui: port to Python 3 by migrating to PyGI - gui: remove the status bar - gui: fix parsing of "semodule -lfull" in tab Modules - gui: delete overridden definition of usersPage.delete() - Enable listing file_contexts.homedirs (#1409813) - remove semodule_deps- Also add Provides for the old name without %_isa- Python 2 binary package renamed to python2-policycoreutils See https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3- Update to upstream release 2017-08-04 - Move DBUS API from -gui to -dbus package- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuild with binutils fix for ppc64le (#1475636)- Make 'sepolicy manpage' and 'sepolicy transition' faster - open_init_pty: restore stdin/stdout to blocking upon exit - fixfiles: do not dereference link files in tmp - fixfiles: use a consistent order for options to restorecon - fixfiles: don't ignore `-F` when run in `-C` mode - fixfiles: remove bad modes of "relabel" command - fixfiles: refactor into the `set -u` dialect - fixfiles: if restorecon aborts, we should too - fixfiles: usage errors are fatal - fixfiles: syntax error - fixfiles: remove two unused variables - fixfiles: tidy up usage(), manpage synopsis - fixfiles: deprecate -l option - fixfiles: move logit call outside of redirected function - fixfiles: fix logging about R/O filesystems - fixfiles: clarify exclude_dirs() - fixfiles: remove (broken) redundant code- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- semanage: Unify argument handling (#1398987) - setfiles: set up a logging callback for libselinux - setfiles: Fix setfiles progress indicator - setfiles: stdout messages don't need program prefix - setfiles: don't scramble stdout and stderr together (#1435894) - restorecond: Decrease loglevel of termination message (#1264505) - fixfiles should handle path arguments more robustly - fixfiles: handle unexpected spaces in command - fixfiles: remove useless use of cat (#1435894) - semanage: Add checks if a module name is passed in (#1420707) - semanage: fix export of fcontext socket entries (#1435127) - selinux-autorelabel: remove incorrect redirection to /dev/null (#1415674)- Fix selinux-polgengui (#1432337) - sepolicy - fix obtaining domain name in HTMLManPages- Fix several issues in gui and 'sepolicy manpage' (#1416372)- Use %{__python3} instead of python3- Fix pp crash when processing base module (#1417200) - Update to upstream release 2016-10-14- Rebuild for brp-python-bytecompile- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- Rebuild for python 3.6- seobject: Handle python error returns correctly - policycoreutils/sepolicy/gui: fix current selinux state radiobutton - policycoreutils: semodule_package: do not fail with an empty fc file- Update translations - Fix fcontextPage editing features (#1344842)- sandbox: Use dbus-run-session instead of dbus-launch when available - hll/pp: Change warning for module name not matching filename to match new behavior - Remove LDFLAGS from CFLAGS - sandbox: create a new session for sandboxed processes - sandbox: do not try to setup directories without -X or -M - sandbox: do not run xmodmap in a new X session - sandbox: Use GObject introspection binding instead of pygtk2 - sandbox: fix file labels on copied files - sandbox: tests - close stdout of p - sandbox: tests - use sandbox from cwd - audit2allow: tests should use local copy not system - audit2allow: fix audit2why import from seobject - audit2allow: remove audit2why so that it gets symlinked - semanage: fix man page and help message for import option - semanage: fix error message for fcontext -m - semanage: Fix semanage fcontext -D - semanage: Correct fcontext auditing - semanage: Default serange to "s0" for port modify - semanage: Use socket.getprotobyname for protocol - semanage: fix modify action in node and interface - fixfiles: Pass -n to restorecon for fixfiles check - sepolicy: Check get_rpm_nvr_list() return value - Don't use subprocess.getstatusoutput() in Python 2 code - semanage: Add auditing of changes in records - Remove unused 'q' from semodule getopt string- Remove unused autoconf files from po/ - Remove duplicate, empty translation files - Rebuilt with libsepol-2.5-9, libselinux-2.5-11, libsemanage-2.5-7- Fix sandbox -X issue related to python3 (#1358138)- Use generator approach to fix autorelabel- https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_Packages- open_init_pty: Do not error on EINTR - Fix [-s STORE] typos in semanage - Update sandbox types in sandbox manual - Update translations- Convert sandbox to gtk-3 using pygi-convert.sh (#1343166)- Fix typos in semanage manpages - Fix the documentation of -l,--list for semodule - Minor fix in a French translation - Fix the extract example in semodule.8 - Update sandbox.8 man page - Remove typos from chcat --help - sepolgen: Remove additional files when cleaning- Fix multiple spelling errors - Rebuild with libsepol-2.5-6- Rebuilt with libsepol-2.5-5- hll/pp: Warn if module name different than output filename- Ship selinux-autorelabel utility and systemd unit files (#1328825)- sepolgen: Add support for TYPEBOUNDS statement in INTERFACE policy files (#1319338)- Add documentation for MCS separated domains - Move svirt man page out of libvirt into its own- policycoreutils: use python3 in chcat(#1318408)- policycoreutils/sepolicy: selinux_server.py to use GLib instead of gobject - policycoreutils-gui requires python-slip-dbus (#1314685)- Update to upstream release 2016-02-23- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Fix 'semanage permissive -l' subcommand (#1286325) - Several 'sepolicy gui' fixes (#1281309,#1281309,#1282382)- Require at least one argument for 'semanage permissive -d' (#1255676)- Improve sepolicy command line interface - Fix sandbox to propagate specified MCS/MLS Security Level. (#1279006) - Fix 'audit2allow -R' (#1280418)- Rebuilt for https://fedoraproject.org/wiki/Changes/python3.5- policycoreutils-gui needs policycoreutils-python (#1279046)- Rebuilt for Python3.5 rebuild- Revert the attempt to port -gui to GTK 3 (#1269328, #1266059)- newrole: Set keepcaps around setresuid calls - newrole: Open stdin as read/write- Fix several semanage issue (#1247714) - Decode output from subprocess, if error occurred (#1247039)- audit2allow, audit2why - ignore setlocale errors (#1208529)- Port sandbox to GTK 3 and fix issue with Xephyr- Fix another python3 issues mainly in sepolicy (#1247039,#1247575,#1251713)- Fix multiple python3 issues in sepolgen (#1249388,#1247575,#1247564)- policycoreutils-python3 depends on python-IPy-python3- policycoreutils-devel depends on policycoreutils-python-utils (#1246818)- Move python utilities from -python to -python-utilities - All scripts originally from policycoreutils-python use python 3 now- policycoreutils: semanage: fix moduleRecords deleteall method- Improve compatibility with python 3 - Add sepolgen module to python3 package- Add Python3 support for sepolgen module (#1125208,#1125209)- Update to 2.4 release- Fix typo in semanage args for minimum policy store- policycoreutils: semanage: update to new source policy infrastructure - semanage: move permissive module creation to /tmp- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- setfiles/restorecon: fix -r/-R option (#1211721)- Update to upstream 2.4- Temporary removed Requires:audit-libs-python from policycoreutils-python3 subpackage (#1195139) - Simplication of sepolicy-manpage web functionality (#1193552)- We need to cover file_context.XXX.homedir to have fixfiles with exclude_dirs working correctly - Use dnf instead of yum (#1156547)- Audit2allow will check for mislabeled files, and tells user to fix the label. - Also checks for basefiles and suggests creating a different label. - Patch from Ryan Hallisey- Switch back to yum. Need additional fixes to make it working correctly.- Switch over to dnf from yum- Improvements to audit2allow from rhallise@redhat.com * Check for mislabeled files. * Check for base file use and * Suggest writable files as alternatives- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Remove build requires for openbox, not needed- fix license handling- Examples are no longer in the main semanage man page (#1084390) - Add support for Fedora22 man pages. We need to fix it to not using hardcoding. - Print usage for all mutually exclusive options. - Fix selinux man page to refer seinfo and sesearch tools.- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4- Fix setfiles to work correctly if -r option is defined- Update Miroslav Grepl Patches * If there is no executable we don't want to print a part of STANDARD FILE CON * Add-manpages-for-typealiased-types * Make fixfiles_exclude_dirs working if there is a substituion for the given d- If there is no executable we don't want to print a part of STANDARD FILE CONTEXT- Update to upstream * Add -P semodule option to man page from Dan Walsh. * selinux_current_policy_path will return none on a disabled SELinux system from Dan Walsh. * Add new icons for sepolicy gui from Dan Walsh. * Only return writeable files that are enabled from Dan Walsh. * Add domain to short list of domains, when -t and -d from Dan Walsh. * Fix up desktop files to match current standards from Dan Walsh. * Add support to return sensitivities and categories for python from Dan Walsh. * Cleanup whitespace from Dan Walsh. * Add message to tell user to install sandbox policy from Dan Walsh. * Add systemd unit file for mcstrans from Laurent Bigonville. * Improve restorecond systemd unit file from Laurent Bigonville. * Minor man pages improvements from Laurent Bigonville.- Apply patch to use setcon in seunshare from luto@mit.edu- Remove requirement for systemd-units- Fix previous Fix-STANDARD_FILE_CONTEXT patch to exclude if non_exec does not exist- Add policycoreutils-rhat-revert.patch to revert the last two commits to make build working - Add 0001-Fix-STANDARD_FILE_CONTEXT-section-in-man-pages patch- Update Translations- Add support for Fedora21 html manpage structure - Fix broken dependencies to require only usermode-gtk- mgrepl [PATCH] Deleteall user customization fails if there is a user used - for the default login. We do not want to fail on it and continue to delete - customizations for users which are not used for default login.- Update Translations - Make selinux-policy build working also on another architectures related to s - Miroslav grepl patch to fix the creation of man pages on different architectures. - Add ability to list the actual active modules - Fix spelling mistake on sesearch in generate man pages.- Allow manpages to be built on aarch64- Don't be verbose in fixfiles if there is not tty- Yum should only be required for policycoreutils-devel- Update translations- Add Miroslav patch to - Fix previously_modified_initialize() to show modified changes properly for all selections- Do not require /usr/share/selinux/devel/Makefile to build permissive domains- Update to upstream * Ignore selevel/serange if MLS is disabled from Sven Vermeulen.- Update Tranlations - Patch from Yuri Chornoivan to fix typos- Fixes Customized booleans causing a crash of the sepolicy gui- Fix sepolicy gui selection for advanced screen - Update Translations - Move requires checkpolicy requirement into policycoreutils-python- Fix semanage man page description of import command - Fix policy kit file to allow changing to permissive mode- Fix broken dependencies.- Break out python3 code into separate package- Add mgrepl patch - ptrace should be a part of deny_ptrace boolean in TEMPLATETYPE_admin- Update to upstream * Revert automatic setting of serange and seuser in seobject; was breaking non-MLS systems. - Add patches for sepolicy gui from mgrepl to Fix advanced_item_button_push() to allow to select an application in advanced search menu Fix previously_modified_initialize() to show modified changes properly for all selections- Update to upstream * Apply polkit check on all dbus interfaces and restrict to active user from Dan Walsh. * Fix typo in sepolicy gui dbus.relabel_on_boot call from Dan Walsh. - Apply Miroslav Grepl patch to fix TEMPLATETYPE_domtrans description in sepolicy generate- Fix selinux-polgengui, get_all_modules call- Speed up startup time of sepolicy gui - Clean up ports screen to only show enabled ports. - Update to upstream * Remove import policycoreutils.default_encoding_utf8 from semanage from Dan Walsh. * Make yum/extract_rpms optional for sepolicy generate from Dan Walsh. * Add test suite for audit2allow and sepolgen-ifgen from Dan Walsh.- Shift around some of the files to more appropriate packages. * semodule_* packages are required for devel.- Update to upstream * Properly build the swig exception file from Laurent Bigonville. * Fix man pages from Laurent Bigonville. * Support overriding PATH and INITDIR in Makefile from Laurent Bigonville. * Fix LDFLAGS usage from Laurent Bigonville. * Fix init_policy warning from Laurent Bigonville. * Fix semanage logging from Laurent Bigonville. * Open newrole stdin as read/write from Sven Vermeulen. * Fix sepolicy transition from Sven Vermeulen. * Support overriding CFLAGS from Simon Ruderich. * Create correct man directory for run_init from Russell Coker. * restorecon GLOB_BRACE change from Michal Trunecka. * Extend audit2why to report additional constraint information. * Catch IOError errors within audit2allow from Dan Walsh. * semanage export/import fixes from Dan Walsh. * Improve setfiles progress reporting from Dan Walsh. * Document setfiles -o option in usage from Dan Walsh. * Change setfiles to always return -1 on failure from Dan Walsh. * Improve setsebool error r eporting from Dan Walsh. * Major overhaul of gui from Dan Walsh. * Fix sepolicy handling of non-MLS policy from Dan Walsh. * Support returning type aliases from Dan Walsh. * Add sepolicy tests from Dan Walsh. * Add org.selinux.config.policy from Dan Walsh. * Improve range and user input checking by semanage from Dan Walsh. * Prevent source or target arguments that end with / for substitutions from Dan Walsh. * Allow use of <> for semanage fcontext from Dan Walsh. * Report customized user levels from Dan Walsh. * Support deleteall for restoring disabled modules from Dan Walsh. * Improve semanage error reporting from Dan Walsh. * Only list disabled modules for module locallist from Dan Walsh. * Fix logging from Dan Walsh. * Define new constants for file type character codes from Dan Walsh. * Improve bash completions from Dan Walsh. * Convert semanage to argparse from Dan Walsh (originally by Dave Quigley). * Add semanage tests from Dan Walsh. * Split semanage man pages from Dan Walsh. * Move bash completion scripts from Dan Walsh. * Replace genhomedircon script with a link to semodule from Dan Walsh. * Fix fixfiles from Dan Walsh. * Add support for systemd service for restorecon from Dan Walsh. * Spelling corrections from Dan Walsh. * Improve sandbox support for home dir symlinks and file caps from Dan Walsh. * Switch sandbox to openbox window manager from Dan Walsh. * Coalesce audit2why and audit2allow from Dan Walsh. * Change audit2allow to append to output file from Dan Walsh. * Update translations from Dan Walsh. * Change audit2why to use selinux_current_policy_path from Dan Walsh.- Fix handling of man pages.- Cleanup errors found by pychecker - Apply patch from Michal Trunecka to allow restorecon to handle {} in globs- sepolicy gui - mgrepl fixes for users and login - Update Translations.- sepolicy gui - mgrepl added delete screens for users and login - Fix lots of bugs. - Update Translations.- Fixes for fixfiles * exclude_from_dirs should apply to all types of restorecon calls * fixfiles check now works * exit with the correct status - semanage no longer import selinux- Fixes for sepolicy gui - Fix setsebool to return 0 on success - Update Po- Fix sizes of help screens in sepolicy gui- Improvements to sepolicy gui - Add more help information - Cleanup code - Add deny_ptrace on lockdown screen - Make unconfined/permissivedomains lockdown work - Add more support for file equivalency- Add back in the help png files - Begin Adding support for file equivalency.- Random fixes for sepolicy gui * Do not prompt for password until you make a change * Add user mappings and selinux users page * lots of code cleanup - Verify homedir is owned by user before mounting over it with seunshare - Fix fixfiles to handle Relabel properly - Fix semanage fcontext -e / command to allow "/"- Add Miroslav Grepl setsebool patch to give better error message on bad boolean names - Additional help screens for sepolicy gui- Random fixes for sepolicy gui - Update Translations- Add help screens for each page - Fixes for system page- Add Miroslav Grepl Patch to handle semanage -i and semanage -o better - Update Translations- Update sepolicy gui code, cleanups and add file transition tab - Fix semanage fcontext -a --ftype code to work.- If policy is not installed get_bools should not crash- Fix doc versioning- Update sepolicy gui code, cleanups and add file transition tab - Fix semanage argparse problems- Update sepolicy gui code, adding dbus calls - Update Translations- Fix semanage argparse bugs - Update Translations - Add test suite for semanage command lines- Fix semanage argparse bugs- Fix bugs introduced by previous patch. semanage port - Update Translations - Add test suite for sepolicy command lines- Fix bugs introduced by previous patch. semanage port - Update Translations- Rewrite argparse code in semanage and fix reload problem.- Do not generate shell script or spec file for sepolicy generate --newtype - Update translations - Fix sepolicy generate --admin_user man page again - Fix setsebool to print less verbose error messages by default, add -V for ve- Move audit2allow and audit2why back into -python package- Update sepolicy gui. - Error out of you call sepolicy gui without policycoreutils-gui package installed - Fix semanage login -d command - Update Translations- Update sepolicy gui.- Add Ryan Hallisey sepolicy gui. - Update Translations- Fix semanage module error handling- Add back default exception handling for errors, which argparse rewrite removed.- Fix generation of booleans in man pages- Remove requires for systemd-sysv - Move systemd-units require to restorecond section - Update Tranlasions - More sepolicy interfaces for gui - Cleanup man pages for sepolicy generate- Fix semanage export/import commands - Fix semange module command - Remove --version option from sandbox- Add man page doc for --role and bash complestion support for sepolicy --role- Make fcdict return a dictionary of dictionaries - Fix for sepolicy manpage- Add new man pages for each semanage subsection- Fix handling of sepolicy network sorting. - Additional interfaces needed for sepolicy gui- Fix handling of semanage args- Fix sepolicy generate --confined_admin to generate tunables - Add new interface to generate entrypoints for use with new gui- Fix handing of semanage with no args- Fix audit2allow -o to open file for append - Fix the name of the spec file generated in the build script- Fix mgrepl patch to support all semanage command parsing- Fix the name of the spec file generated in the build script - Add mgrepl patch to support argparse for semanage command parsing- Fix sandbox to always use sandbox_file_t, so generated policy will work. - Update Translations- Fix sepolicy-generate man page to clear up options/policy type - Add Miroslav Grepl to not generate man page when doing sepolicy generate --customize - Add support for executing semanage user within spec file - Fix generation of confined admin domains, to handle booleans properly.- Need to handle gziped policy.xml as well as not compressed.- Add support for Xephyr -resizable, so sandbox can now resize window - Add support for compressed policy.xml - Miroslav Grepl patch to allow sepolicy interface on individual interface fil - Also add capability to test interfaces for correctness.- Apply patches from Sven Vermeulen for sepolgen to fix typos.- Only require selinux-policy-devel for policycoreutils-devel, this will shrink the size of the livecd.- Run sepolgen-ifgen in audit2allow and sepolicy generate, if needed, first time - Add Sven Vermeulen patches to cleanup man pages- No longer run sepolgen-ifgen at install time. - Run sepolgen-ifgen in audit2allow and sepolicy generate, if needed. - Update Translations- Fix exceptionion hanling in audit2allow -o - Generate Man pages for everydomain, not just ones with exec_t entrypoints - sepolicy comunicate should return ValueError not TypeError - Trim header line in sepolicy manpage to use less space - Add missing options to restorecon man page- Raise proper Exception on sepolicy communicate with invalid value- Update translations - Add patch by Miroslav Grepl to add compile test for sepolicy interface command.- Update translations - Add patch inspired by Miroslav Grepl to add extended information for sepolicy interface command.- Update translations - Add missing man pages and fixup existing man pages- Move sepolicy to policycoreutils-devel pacage, since most of it is used for devel - Apply Miroslav Grepl Patches for sepolicy -- Fix generate mutually groups option handling -- EUSER is used for existing policy -- customize options can be used together with admin_domain option -- Fix manpage.py to generate correct man pages for SELinux users -- Fix policy *.te file generated by customize+writepaths options -- Fix install script for confined_admin option- Add post install scripts for gui to make sure Icon Cache is refreshed. - Fix grammar issue in secon man page - Update Translations- Add buildrequires for OpenBox to prevent me from accidently building into RHEL7 - Add support for returning alias data to sepolicy.info python bindings- Fix audit2allow output to better align analysys with the allow rules - Apply Miroslav Grepl patch to clean up sepolicy generate usage - Apply Miroslav Grepl patch to fixupt handing of admin_user generation - Update Tranlslations- Allow semanage fcontext -a -t "<>" ... to work- Can not unshare IPC in sandbox, since it blows up Xephyr - Remove bogus error message sandbox about reseting setfsuid- Fix sepolicy generate --customize to generate policy with -w commands- sepolgen-ifgen needs to handle filename transition rules containing ":"- sepolicy manpage: - use nroff instead of man2html - Remove checking for name of person who created the man page - audit2allow - Fix output to show the level that is different.- Fix newrole to not drop capabilities from the bounding set. - Stop dropping capabilities from its children. - Add better error messages. - Change location of bash_completion files to /usr/share/bash-completion/compl- sepolicy generate should look for booleans that effect equivalence names, and add them to the man page- Mention creation of permissive domains in sepolicy generate man page - Change sepolicy manpage to use shortname with an "_" to stop accidently grabbing unrelated types for a domain. - Fix audit2allow to show better information on constraint violations.- Have restorecon exit -1 on errors for consistancy.- Need to provide a value to semanage boolean -m- Fix cut and paste errors for sepolicy network command- Fix sepoicy interface to work properly- Fix fixfiles to use exclude_dirs on fixfiles restore- Allow users with symlinked homedirs to work. call realpath on homedir - Fix sepolicy reorganization of helper functions.- Update trans - Fix sepolicy reorganization of helper functions.- remove vendor tag from desktop file. https://fedorahosted.org/fpc/ticket/247 - clean up spec to follow current guidelines- Do not load interface file by default when sepolicy is called, mov get_all_methods to the sepolicy package- sepolgen-ifgen should use the current policy path if selinux is enabled- Fix sepolicy to be able to work on an SELinux disabled system. - Needed to be able to build man pages in selinux-policy package- Add yum to requires of policycoreutils-python since sepolicy requires it.- Sepolixy should not throw an exception on an SELinux disabled machine - Switch from using console app to using pkexec, so we will work better with policykit. - Add missing import to fix system-config-selinux startup - Add comment to pamd files about pam_rootok.so - Fix sepolicy generate to not comment out the first line- Add --root/-r flag to sepolicy manpage, - This allows us to generate man pages on the fly in the selinux-policy build- Fix newrole to retain cap_audit_write when compiled with namespace, also do not drop capabilities when run as root.- Fix man page generation and public_content description- Revert some changes which are causing the wrong policy version file to be created - Switch sandbox to start using openbox rather then matchbox - Make sepolgen a symlink to sepolicy - update translations- Fix empty system-config-selinux.png, again- Fix empty system-config-selinux.png- Update to upstream * setfiles: estimate percent progress * load_policy: make link at the destination directory * Rebuild polgen.glade with glade-3 * sepolicy: new command to unite small utilities * sepolicy: Update Makefiles and po files * sandbox: use sepolicy to look for sandbox_t * gui: switch to use sepolicy * gui: sepolgen: use sepolicy to generate * semanage: use sepolicy for boolean dictionary * add po file configuration information * po: stop running update-po on all * semanage: seobject verify policy types before allowing you to assign them. * gui: Start using Popen, instead of os.spawnl * sandbox: Copy /var/tmp to /tmp as they are the same inside * qualifier to shred content * semanage: Fix handling of boolean_sub names when using the -F flag * semanage: man: roles instead of role * gui: system-config-selinux: Catch no DISPLAY= error * setfiles: print error if no default label found * semanage: list logins file entries in semanage login -l * semanage: good error message is sepolgen python module missing * gui: system-config-selinux: do not use lokkit * secon: add support for setrans color information in prompt output * restorecond: remove /etc/mtab from default list * gui: If you are not able to read enforcemode set it to False * genhomedircon: regenerate genhomedircon more often * restorecond: Add /etc/udpatedb.conf to restorecond.conf * genhomedircon generation to allow spec file to pass in SEMODULE_PATH * fixfiles: relabel only after specific date * po: update translations * sandbox: seunshare: do not reassign realloc value * seunshare: do checking on setfsuid * sestatus: rewrite to shut up coverity- Reorginize sepolicy so all get_all functions are in main module - Add -B capability to fixfiles onboot and fixfiles restore, basically searches for all files created since the last boot.- Update to latest patches from eparis/Upstream - fixfiles onboot will write any flags handed to it to /.autorelabel. - * Patch sent to initscripts to have fedora-autorelabel pass flags back to fixfiles restore - * This should allow fixfiles -F onboot, to force a hard relabel. - Add -p to show progress on full relabel.- Additional changes for bash completsion and generate man page to match the w - Add newtype as a new qualifier to sepolicy generate. This new mechanism wil - a policy write to generate types after the initial policy has been written a - will autogenerate all of the interfaces. - I also added a -w options to allow policy writers from the command line to s - the writable directories of files. - - Modify network.py to include interface definitions for newly created port type - Standardize of te_types just like all of the other templates. - Change permissive domains creation to raise exception if sepolgen is not ins - get_te_results no longer needs or uses the opts parameter. - The compliler was complaining so I just removed the option. - Start returning analysis data for audit2allow- Update Translations - Fix handling of semanage generate --cgi -n MODULE PATHTO/CGI - This fixes the spec file and script file getting wrong names for modules and types.- Additional patch from Miroslav to handle role attributes- Update with Miroslav patch to handle role attributes - Update Translations - import sepolicy will only throw exception on missing policy iff selinux is enabled- Update to latest patches from eparis/Upstream - secon: add support for setrans color information in prompt output - Update translations- Update translations - Fix sepolicy booleans to handle autogenerated booleans descriptions - Cleanups of sepolicy manpage - Fix crash on git_shell man page generation- Update translations - update sepolicy manpage to generate fcontext equivalence data and to list default file context paths. - Add ability to generate policy for confined admins and domains like puppet.- Fix semanage permissive , this time with the patch. - Update translations- Fix semanage permissive - Change to use correct gtk forward button - Update po- Move audit2why to -devel package- sepolicy transition was blowing up. Also cleanup output when only source is specified. - sepolicy generate should allow policy modules names that include - or _- Apply patch from Miroslav to display proper range description in man pages g - Should print warning on missing default label when run in recusive mode iff - Remove extra -R description, and fix recursive description- Additional fixes for disabled SELinux Box - system-config-selinux no longer relies on lokkit for /etc/selinux/config- sepolicy should failover to installed policy file on a disabled SELinux box, if it exists.- Update Translations - sepolicy network -d needs to accept multiple domains- Add --path as a parameter to sepolicy generate - Print warning message if program does not exists when generating policy, and do not attempt to run nm command - Fix sepolicy generate -T to not take an argument, and supress the help message - Since this is really just a testing tool- Fix sepolicy communicate to handle invalid input- Fix sepolicy network -p to handle high ports- Fix handling of manpages without entrypoints, nsswitch domains - Update Translations- Move sepogen python bindings back into policycoreutils-python out of -devel, since sepolicy is using the- Fix sepolicy/__init__.py to handle _()- Add Miroslav Grepl patch to create etc_rw_t sock files policy- Fix semanage to work without policycoreutils-devel installed - Update translations- Fix semanage login -l to list contents of /etc/selinux/POLICY/logins directory- Fix booleansPage not showing booleans - Fix audit2allow -b- Fix sepolicy booleans again - Fix man page- Move policy generation tools into policycoreutils-devel- Document and fix sepolicy booleans - Update Translations - Fix several spelling mistakes- Only report restorecon warning for missing default label, if not running recusively - Update translations- Fix semanage booleans -l, move more boolean_dict handling into sepolicy - Update translations - Fixup sepolicy generate to discover /var/log, /var/run and /var/lib directories if they match the name - Fix kill function call should indicate signal_perms not kill capability - Error out cleanly in system-config-selinux, if it can not contact XServer- Remove run_init, no longer needed with systemd. - Fix sepolicy generate to not include subdirs in generated fcontext file. (mgrepl patch)- Fix manpage to generate proper man pages for alternate policy, basically allow me to build RHEL6 man pages on a Fedora 18 box, as long as I pull the policy, policy.xml and file_contexts and file_contexts.homedir- Fix some build problems in sepolicy manpage and sepolicy transition- Add alias man pages to sepolicy manpage- Redesign sepolicy to only read the policy file once, not for every call- Fixes to sepolicy transition, allow it to list all transitions from a domain- Change sepolicy python bindings to have python pick policy file, fixes weird memory problems in sepolicy network- Allow sepolicy to specify the policy to generate content from- Fix semanage boolean -F to handle boolean subs- Add Miroslav Grepl patch to generate html man pages - Update Translations - Add option to sandbox to shred files before deleting- Add Requires(post) PKGNAME to sepolicy generate /usr/bin/pkg- Add role_allow to sepolicy.search python bindings, this allows us to remove last requirement for setools-cmdline in gui tools. - Fix man page generator.- Remove dwalsh@redhat.com from man pages - Fix spec file for sepolicy generate- Add missing spec.py from templates directory needed for sepolicy generate - Add /var/tmp as collection point for sandbox apps.- Handle audit2allow -b in foreign locales- Update sepolicy generate with patch to create spec file and man page. - Patch initiated by Miroslav Grepl- Fix semanage to verify that types are appropriate for commands. * Patch initiated by mgrepl * Fixes problem of specifying non file_types for fcontext, or not port_types for semanage port- Fix typo in preunstall line for restorecond - Add mgrepl patch to consolidate file context generated by sepolicy generate- Fix manpage generation, missing import - Add equiv_dict to get samba booleans into smbd_selinux - Add proper translations for booleans and remove selinux.tbl- Fix system-config-selinux to use sepolicy.generate instead of sepolgen- Add sepolicy commands, and change tools to use them.- Rebuild without bogus prebuild 64 bit seunshare app- Allow fixfiles to specify -v, so they can get verbosity rather then progress. - Fix load_file Makefile to use SBINDIR rather then real OS. - Fix man pages in setfiles and restorecon to reflect what happens when you relabel the entire OS.- Use systemd post install scriptlets- Update to upstream * genhomedircon: manual page improvements * setfiles/restorecon minor improvements * run_init: If open_init_pty is not available then just use exec * newrole: do not drop capabilities when newrole is run as * restorecon: only update type by default * scripts: Don't syslog setfiles changes on a fixfiles restore * setfiles: do not syslog if no changes * Disable user restorecond by default * Make restorecon return 0 when a file has changed context * setfiles: Fix process_glob error handling * semanage: allow enable/disable under -m * add .tx to gitignore * translations: commit translations from Fedora community * po: silence build process * gui: Checking in policy to support polgengui and sepolgen. * gui: polgen: search for systemd subpackage when generating policy * gui: for exploring booleans * gui: system-config-selinux gui * Add Makefiles to support new gui code * gui: remove lockdown wizard * return equivalency records in fcontext customized * semanage: option to not load new policy into kernel after * sandbox: manpage update to describe standard types * setsebool: -N should not reload policy on changes * semodule: Add -N qualifier to no reload kernel policy * gui: polgen: sort selinux types of user controls * gui: polgen: follow symlinks and get the real path to * gui: Fix missing error function * setfiles: return errors when bad paths are given * fixfiles: tell restorecon to ignore missing paths * setsebool: error when setting multiple options * semanage: use boolean subs. * sandbox: Make sure Xephyr never listens on tcp ports * sepolgen: return and output constraint violation information * semanage: skip comments while reading external configuration files * restorecond: relabel all mount runtime files in the restorecond example * genhomedircon: dynamically create genhomedircon * Allow returning of bastard matches * sepolgen: return and output constraint violation information * audit2allow: one role/type pair per line- Change polgen to generate dbus apps as optional so they can compile on minimal policy system, patch from Miroslav Grepl- Fix sepolgen/audit2allow to handle multiple role/types in avc messages properly- Fix restorecon to generate a better percentage of completion on restorecon -R /. - Have audit2allow look at the constaint violation and tell the user whether it - is because of user,role or level- userapps is generating sandbox code in polgengui- Remove load_policy symbolic link on usrmove systems this breaks the system- Update to upstream - policycoreutils * restorecond: wrong options should exit with non-zero error code * restorecond: Add -h option to get usage command * resorecond: user: fix fd leak * mcstrans: add -f to run in foreground * semanage: fix man page range and level defaults * semanage: bash completion for modules should include -a,-m, -d * semanage: manpage update for -e * semanage: dontaudit off should work * semanage: locallist option does not take an argument * sepolgen: Make use of setools optional within sepolgen - sepolgen * Make use of setools optional within sepolgen * We need to support files that have a + in them- Make restorecon exit with an error on a bad path- Fix setsebool command, handling of = broken. - Add missing error option in booleansPage- Fix sepolgen to use realpath on executables handed to it. - Brian Bickford- Allow stream sock_files to be stored in /tmp and etc_rw_t directories by sepolgen - Trigger on selinux-policy needs to change to selinux-policy-devel - Update translations - Fix semanage dontaudit off/on exception- Add -N qualifier to semanage, setsebool and semodule to allow you to update - policy without reloading it into the kernel.- add some definition to the standard types available for sandboxes- Remove lockdown wizard- Fix semanage fcontext -E to extract the equivalance customizations.- Add mgrepl patch to have sepolgen search for -systemd rpm packages- Apply Stef Walter patch for semanage man page- Rebuild to get latest libsepol which fixes the file_name transition problems - Update translations - Fix calls to close fd for restorecond- Update translations - Fix sepolgen to discover unit files in /lib/systemd/- Update translations - Fix segfault on restorecon- Allow filename transitions to use + in a file name- Change policycoreutils-python to require selinux-policy-devel package- Update to upstream - policycoreutils * sandbox: do not propogate inside mounts outside * sandbox: Removing sandbox init script, should no longer be necessary * restorecond: Stop using deprecated interfaces for g_io * semanage: proper auditting of user changes for LSPP * semanage: audit message to show what record(s) and item(s) have chaged * scripts: Update Makefiles to handle /usrmove * mcstrans: Version should have been bumped on last check in * seunshare: Only drop caps not the Bounding Set from seunshare * Add bash-completion scripts for setsebool and semanage * newrole: Use correct capng calls in newrole * Fix infinite loop with inotify on 2.6.31 kernels * fix ftbfs with hardening flags * Only run setfiles if we found read-write filesystems to run it on * update .po files * remove empty po files * do not fail to install if unable to make load_policy lnk file - sepolgen * Fix dead links to www.nsa.gov/selinux * audit.py Dont crash if empty data is passed to sepolgen * do not use md5 when calculating hash signatures * fix detection of policy loads- Have sepolgen script specify the pp file with the make command. From mgrepl.- Fix sepolgen handling of unit files.- Require selinux-policy-doc- Fix unit file handling in sepolgen- Add bash_command completion for setsebool/getsebool- Disable restorecond on desktop by default - Change seunshare to not modify the bounding set- Stop using sandbox init in post install since it no longer exists.- Change to use new selinux_current_policy_path()- Change to use new selinux_binary_policy_path() - Add systemd_passwd_agent_exec($1), and systemd_read_fifo_file_passwd_run($1) to templates for _admin interface- On full relabels we will now show a estimated percent complete rather then just *s.- Add unit_file.py for sepolgen- Change sepolgen to use sha256 instead of md5- Stop syslogging on full restore - Stop syslogging when restorecon is not changing values- Change semanage to produce proper audit records for Common Criteria - Cleanup packaging for usrmove- fixed load_policy location- fixed load_policy location- fixed load_policy location- add filesystem guard- install everything in /usr https://fedoraproject.org/wiki/Features/UsrMove- restorecond fixes: Stop using depracated g_io interfaces Exit with non zero exit code if wrong options given Add -h option- Eliminate not needed Requires- fix sepolgen to not crash on echo "" | audit2allow- Remove sandbox init script, should no longer be necessary- Add unit file support to sepolgen, and cleanup some of the output.- Fix English in templates for sepolgen- Fix the handling of namespaces in seunshare/sandbox. - Currently mounting of directories within sandbox is propogating to the - parent namesspace.- Add umount code to seunshare to cleanup left over mounts of /var/tmp- Remove open_init_pty-Update to upstream - sepolgen * better analysis of why things broke - policycoreutils * Remove excess whitespace * sandbox: Add back in . functions to sandbox.init script * Fix Makefile to match other policycoreutils Makefiles * semanage: drop unused translation getopt- Bump libsepol version requires rebuild- Add back accidently dropped patches for semanage- Upgrade to upstream * sandbox: move sandbox.conf.5 to just sandbox.5 * po: Makefile use -p to preserve times to allow multilib simultatious installs * of po files * sandbox: Allow user to specify the DPI value for X in a sandbox * sandbox: make sure the domain launching sandbox has at least 100 categories * sandbox: do not try forever to find available category set * sandbox: only complain if sandbox unable to launch * sandbox: init script run twice is still successful * semanage: print local and dristo equiv rules * semanage: check file equivalence rules for conflict * semanage: Make sure semanage fcontext -l -C prints even if local keys * are not defined * semanage: change src,dst to target,substitute for equivalency * sestatus: Updated sestatus and man pages. * Added SELinux config file man page. * add clean target to man Makefile- Fix semange fcontext -a to check for more conflicts on equivalency- Fix dpi handling in sandbox - Make sure semanage fcontext -l -C prints if only local equiv have changed- Add listing of distribution equivalence class from semanage fcontext -l - Add checking to semanage fcontext -a to guarantee a file specification will not be masked by an equivalence- Allow ~ as a valid part of a filename in sepolgen- sandbox init script should always return 0 - sandbox command needs to check range of categories and report error if not big enough- Allow user to specify DPI when running sandbox- Add Miroslav patch to return all attributes- Upgrade to policycoreutils upstream * sandbox: Maintain the LANG environment into the sandbox * audit2allow: use audit2why internally * fixfiles: label /root but not /var/lib/BackupPC * semanage: update local boolean settings is dealing with localstore * semanage: missing modify=True * semanage: set modified correctly * restorecond: make restorecond dbuss-able * restorecon: Always check return code on asprintf * restorecond: make restorecond -u exit when terminal closes * sandbox: introduce package name and language stuff * semodule_package: remove semodule_unpackage on clean * fix sandbox Makefile to support DESTDIR * semanage: Add -o description to the semanage man page * make use of the new realpath_not_final function * setfiles: close /proc/mounts file when finished * semodule: Document semodule -p in man page * setfiles: fix use before initialized * restorecond: Add .local/share as a directory to watch - Upgrade to sepolgen upstream * Ignore permissive qualifier if found in an interface * Return name field in avc data- Rebuild versus newer libsepol- A couple of minor coverity fixes for a potential leaked file descriptor - An an unchecked return code. - Add ~/.local/share/* to restorecond_user watches- Have sepolgen return name field in AVC- restorecond -u needs to watch terminal for exit if run outside of dbus.- Do not drop capabilities if running newrole as root-Update to upstream * semanage: fix indentation error in seobject- Ignore permissive commands in interfaces- Remove gnome requirement from polgengui-Update to upstream policycoreutils-2.1.6 * sepolgen-ifgen: new attr-helper does something * audit2allow: use alternate policy file * audit2allow: sepolgen-ifgen use the attr helper * setfiles: switch from stat to stat64 * setfiles: Fix potential crash using dereferenced ftsent * setfiles: do not wrap * output at 80 characters * sandbox: add -Wall and -Werror to makefile * sandbox: add sandbox cgroup support * sandbox: rewrite /tmp handling * sandbox: do not bind mount so much * sandbox: add level based kill option * sandbox: cntrl-c should kill entire process control group * Create a new preserve_tunables flag in sepol_handle_t. * semanage: show running and disk setting for booleans * semanage: Dont print heading if no items selected * sepolgen: audit2allow is mistakakenly not allowing valid module names * semanage: Catch RuntimeErrors, that can be generated when SELinux is disabled * More files to ignore * tree: default make target to all not install * sandbox: do not load unused generic init functions sepolgen-1.1.2 * src: sepolgen: add attribute storing infrastructure * Change perm-map and add open to try to get better results on * look for booleans that might solve problems * sepolgen: audit2allow is mistakakenly not allowing valid module names * tree: default make target to all not install- Change separator on -L from ; to :- Add back lockdown wizard for booleans using pywebkitgtk- Maintain the LANG environment Variable into the sandbox - Change restorecon/setfiles to only change type part of the context unless -f qualifier is given- Remove lockdown wizard, since gtkhtml2 is no longer supported.- Allow setfiles and restorecon to use labeledprefix to speed up processing and limit memory.-Update to upstream * policycoreutils * setfiles: Fix process_glob to handle error situations * sandbox: Allow seunshare to run as root * sandbox: trap sigterm to make sure sandbox * sandbox: pass DPI from the desktop * sandbox: seunshare: introduce helper spawn_command * sandbox: seunshare: introduce new filesystem helpers * sandbox: add -C option to not drop * sandbox: split seunshare caps dropping * sandbox: use dbus-launch * sandbox: numerous simple updates to sandbox * sandbox: do not require selinux context * sandbox: Makefile: new man pages * sandbox: rename dir to srcdir * sandbox: allow users specify sandbox window size * sandbox: check for paths up front * sandbox: use defined values for paths rather * sandbox: move seunshare globals to the top * sandbox: whitespace fix * semodule_package: Add semodule_unpackage executable * setfiles: get rid of some stupid globals * setfiles: move exclude_non_seclabel_mounts to a generic location * sepolgen * refparser: include open among valid permissions * refparser: add support for filename_trans rules- Fix bug in glob handling for restorecon-Update to upstream 2.1.4 2011-08-17 * run_init: clarification of the usage in the * semanage: fix usage header around booleans * semanage: remove useless empty lines * semanage: update man page with new examples * semanage: update usage text * semanage: introduce file context equivalencies * semanage: enable and disable modules * semanage: output all local modifications * semanage: introduce extraction of local configuration * semanage: cleanup error on invalid operation * semanage: handle being called with no arguments * semanage: return sooner to save CPU time * semanage: surround getopt with try/except * semanage: use define/raise instead of lots of * semanage: some options are only valid for * semanage: introduce better deleteall support * semanage: do not allow spaces in file * semanage: distinguish between builtin and local permissive * semanage: centralized ip node handling * setfiles: make the restore function exclude() non-static * setfiles: use glob to handle ~ and * fixfiles: do not hard code types * fixfiles: stop trying to be smart about * fixfiles: use new kernel seclabel option * fixfiles: pipe everything to cat before sending * fixfiles: introduce /etc/selinux/fixfiles_exclude_dirs * semodule: support for alternative root paths 2.1.3 2011-08-03 * semanage: fix indention * semodule_package: fix man page typo * semodule_expand: update man page with -a * semanage: handle os errors * semanage: fix traceback with bad options * semanage: show usage on -h or --help * semanage: introduce more deleteall options * semanage: verify ports < 65536 * transaction into semanageRecords * make get_handle a method of semanageRecords * remove a needless blank line * make process_one error if not initialized correctly * fixfiles: correct usage for r_opts.rootpath * put -p in help for restorecon and * fixfiles: do not try to only label * fixfiles clean up /var/run and /var/lib/debug * fixfiles delete tmp sockets and pipes rather * fixfile use find -delete instead of pipe * chcat man page typo * add man page for genhomedircon * setfiles fix typo * setsebool should inform users they need to * setsebool typos * open_init_tty man page typos * Don't add user site directory to sys.path * newrole retain CAP_SETPCAP 2.1.2 2011-08-02 * seunshare: define _GNU_SOURCE earlier * make ignore_enoent do something * restorecond: first user logged in is not noticed * Repo: update .gitignore 2.1.1 2011-08-01 * Man page updates * restorecon fix for bad inotify assumptions 2.1.0 2011-07-27 * Release, minor version bump- Fix sepolgen usage statement - Stop using -k insandbox - Fix seunshare usage statement- Change seunshare to send kill signals to the childs session. - Also add signal handler to catch sigint, so if user enters ctrl-C sandbox will shutdown.- Add -k qualifier to seunshare to have it attempt to kill all processes with the matching MCS label.- Add -C option to sandbox and seunshare to maintain capabilities, otherwise the bounding set will be dropped. - Change --cgroups short name -c rather then -C for consistancy - Fix memory and fd leaks in seunshare- Introduce systemd unit file for restorecond drop SysV support- Do not drop capability bounding set in seunshare, this allows sandbox to - run setuid apps.- Add semanage-bash-completion.sh script- Remove mount -o bind calls from sandbox init script - pam_namespace now has this built in.- Pass desktop dpi to sandbox Xephyr window- Allow semodule to pick alternate root for selinux files - Add ~/.config/* to restorcond_user.conf, so restorecond will watch for mislabeled files in this directory.- Fix var_spool template read_spool_files - Fix sepolgen to handle filename transitions- Templates cleanedup by Dominic Grift- Clean up some of the templates for sepolgen- Apply patches from Christoph A. * fix sandbox title * stop xephyr from li - Also ignore errors on sandbox include of directory missing files- rebuild versus latest libsepol- Change fixfiles restore to delete unlabeled sockets in /tmp- rebuild versus latest libsepol- Update to upstream * Use correct color range in mcstrand by Richard Haines.- Add Elia Pinto patches to allow user to specify directories to ignore- Fix policycoreutils-sandbox description- rsynccmd should run outside of execcon- Fix semange node handling of ipv6 addresses- Fix sepolgen-ifgen call, add -p option- Fix sepolgen-ifgen call- Fix rsync command to work if the directory is old. - Fix all tests- Fix sepolgen to generate network polcy using generic_if and genric_node versus all_if and all_node- Return to original seunshare man page- change default location of HOMEDIR in sandbox to /tmp/.sandbox_home_* - This will allow default sandboxes to work on NFS homedirs without allowing access to homedir data- Change sepolgen-ifgen to search all available policy files - Exit in restorecond if it can not find a UID in the passwd database- Fix portspage in system-config-selinux to not crash - More fixes for seunshare from Tomas Hoger- put back in old handling of -T in sandbox command - Put back setsid in seunshare - Fix rsync to maintain times- Use rewritten seunshare from thoger- Require python-IPy for policycoreutils-python package - Fixes for sepologen - Usage statement needs -n name - Names with _ are being prevented - dbus apps should get _chat interface- Fix error message in seunshare, check for tmpdir existance before unlink.- Rewrite seunshare to make sure /tmp is mounted stickybit owned by root - Only allow names in polgengui that contain letters and numbers - Fix up node handling in semanage command - Update translations- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- Fix sandbox policy creation with udp connect ports- Cleaup selinux-polgengui to be a little more modern, fix comments and use selected name - Cleanup chcat man page- Report full errors on OSError on Sandbox- Fix newrole hanlding of pcap- Have restorecond watch more directories in homedir- Add sandbox to sepolgen- Fix proper handling of getopt errors - Do not allow modules names to contain spaces- Polgengui raises the wrong type of exception. #471078 - Change semanage to not allow it to semanage module -D - Change setsebool to suggest run as root on failure- Fix restorecond watching utmp file for people logging in our out- Update to upstream- Change to allow sandbox to run on nfs homedirs, add start python script- Move seunshare to sandbox package- Fix sandbox to show correct types in usage statement- Stop fixfiles from complaining about missing dirs- Update to upstream - List types available for sandbox in usage statement- Don't report error on load_policy when system is disabled.- Fix up problems pointed out by solar designer on dropping capabilities- Check if you have full privs and reset otherwise dont drop caps- Fix setools require line- Move /etc/pam.d/newrole in to polcicycoreutils-newrole - Additional capability checking in sepolgen- Remove setuid flag and replace with file capabilities - Fix sandbox handling of files with spaces in them- Rebuilt for gcc bug 634757- Move restorecond into its own subpackage- Fix semanage man page- Add seremote, to allow the execution of command inside the sandbox from outside the sandbox.- Fix sandbox copyfile when copying a dir with a socket, print error- Stop polgengui from crashing if selinux policy is not installed- Fix bug preventing sandbox from using -l- Eliminate quotes fro desktop files- Add -w windowsize patch from Christoph A.- Update po- Update po- Tighten down seunshare to create /tmp dir with sticky bit and MS_NODEV | MS_NOSUID | MS_NOEXEC; - Remove setsid on seunshare so ^c on sandbox will cause apps to exit - Add dbus-launch --exit-with-session so all processes launched within the sandbox exit with the sandbox - Clean up error handling so error will get sent back to sandbox tool- Fix translation handling in file context page of system-config-selinux- Fix sandbox error handling- Apply patch to restorecond from Chris Adams, which will cause restorecond - to watch first user that logs in.- Add COPYING file to doc dir- Update po and translations Resolves: #610473- More fixes for polgen tools- Remove requirement to run selinux-polgen as root- Update po and translations - Fix gui policy generation tools- Update po and translations- rebuild against python 2.7- Update selinux-polgengui to sepolgen policy generation- Fix invalid free in seunshare and fix man page- Update translations- Fix sandbox man page- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild- Add translations for menus - Fixup man page from Russell Coker- Change python scripts to use -s flag - Update po- Update to upstream * Add sandbox support from Dan Walsh with modifications from Steve Lawrence.- Fix sepolgen code generation Resolve: #603001- Add cgroup support for sandbox- Allow creation of /var/cache/DOMAIN from sepolgen- Fix sandbox init script - Add dbus-launch to sandbox -X Resolve: #599599- Move genhomedircon.8 to same package as genhomedircon - Fix sandbox to pass unit test Resolves: #595796- Fix listing of booleans from audit2allow- Fix audit2allow to output if the current policy has avc - Update translations - Fix icon- Man page fixes - sandbox fixes - Move seunshare to base package- Fix seunshare translations - Fix seunshare to work on all arches - Fix icon for system-config-selinux Resolves: #595276- Fix can_exec definition in sepolgen- Add man page for seunshare and genhomedircon Resolves: #594303 - Fix node management via semanage- Fixes from upstream for sandbox command Resolves: #580938- Fix sandbox error handling on copyfile - Fix desktop files- Fix policy tool to have correct name in menus - Fix seunshare to handle /tmp being in ~/home - Fix saving of altered files - Update translations- Allow audit2allow to specify alternative policy file for analysis- Update po - Fix sepolgen --no_attrs Resolves: #588280- Make semanage boolean work on disabled machines and during livecd xguest - Fix homedir and tmpdir handling in sandbox Resolves: #587263- Make semanage boolean work on disabled machines- Make sepolgen-ifgen be quiet- Make sepolgen report on more interfaces - Fix system-config-selinux display of modules- Fix crash when args are empty Resolves: #582542 - Fix semange to exit on bad options - Fix semanage dontaudit man page section Resolves: #582533- Remove debug line from semanage - Update po- Fix sandbox comment on HOMEDIRS - Fix sandbox to throw error on bad executable- Fix spacing in templates- Fix semanage return codes- Fix sepolgen to confirm to the "Reference Policy Style Guide"- Update to upstream * Add avc's since boot from Dan Walsh. * Fix unit tests from Dan Walsh.- Update to upstream - sepolgen * Add since-last-boot option to audit2allow from Dan Walsh. * Fix sepolgen output to match what Chris expects for upstream refpolicy from Dan Walsh.- Allow restorecon on > 2 Gig files- Fix semanage handling of boolean options - Update translations- Update to upstream * Add dontaudit flag to audit2allow from Dan Walsh.- Use --rbind in sandbox init scripts- Update to upstream * Module enable/disable support from Dan Walsh.- Rewrite of sandbox script, add unit test for sandbox - Update translations- Fix patch for dontaudit rules from audit2allow for upstream acceptance- Fixes for fixfiles- Fix sandbox to complain if mount-shared has not been run - Fix to use /etc/sysconfig/sandbox- Update to upstream * Fix double-free in newrole - Fix python language handling- Fix display of command in sandbox- Catch OSError in semanage- Fix seobject and fixfiles- Change seobject to use translations properly- Cleanup spec file Resolves: 555835- Add use_resolve to sepolgen- Add session capability to sandbox - sandbox -SX -H ~/.homedir -t unconfined_t -l s0:c15 /etc/gdm/Xsession- Fix executable template for fifo files- Fix patch xod xmodmap - Exit 0 from script- Run with the same xdmodmap in sandbox as outside - Patch from Josh Cogliati- Fix sepolgen to not generate user sh section on non user policy- Add -e to semanage man page - Add -D qualifier to audit2allow to generate dontaudit rules- Speed up audit2allow processing of audit2why comments- Fixes to sandbox man page- Add setools-libs-python to requires for gui- If restorecond running as a user has no files to watch then it should exit. (NFS Homedirs)- Move sandbox man page to base package- Fix audit2allow to report constraints, dontaudits, types, booleans- Fix restorecon -i to ignore enoent- Update to upstream * Remove non-working OUTFILE from fixfiles from Dan Walsh. * Additional exception handling in chcat from Dan Walsh. * fix sepolgen to read a "type 1403" msg as a policy load by Stephen Smalley * Add support for Xen ocontexts from Paul Nuzzi.- Update to upstream * Fixed bug preventing semanage node -a from working from Chad Sellers * Fixed bug preventing semanage fcontext -l from working from Chad Sellers - Change semanage to use unicode- Update to upstream * Remove setrans management from semanage, as it does not work from Dan Walsh. * Move load_policy from /usr/sbin to /sbin from Dan Walsh.- Raise exception if user tries to add file context with an embedded space- Fix sandbox to setsid so it can run under mozilla without crashing the session- Update to upstream * Factor out restoring logic from setfiles.c into restore.c- Fix typo in seobject.py- Allow semanage -i and semanage -o to generate customization files. - semanage -o will generate a customization file that semanage -i can read and set a machines to the same selinux configuration- Fix restorecond man page- Add generation of the users context file to polgengui- Remove tabs from system-config-selinux glade file- Remove translations screen from system-config-selinux- Move fixfiles man pages into the correct package - Add genhomedircon to fixfiles restore- Add check to sandbox to verify save changes - Chris Pardy - Fix memory leak in restorecond - Steve Grubb- Fixes Templates- Fixes for polgengui to handle tcp ports correctly - Fix semanage node -a- Fixes for semanage -equiv, readded modules, --enable, --disable- Close sandbox when eclipse exits- Security fixes for seunshare - Fix Sandbox to handle non file input to command.- Security fixes for seunshare- Update to upstream * Change semodule upgrade behavior to install even if the module is not present from Dan Walsh. * Make setfiles label if selinux is disabled and a seclabel aware kernel is running from Caleb Case. * Clarify forkpty() error message in run_init from Manoj Srivastava.- Fix sandbox to handle relative paths- Add symbolic link to load_policy- Fix restorecond script to use force-reload- Fix init script to show status in usage message- Update to upstream * Add semanage dontaudit to turn off dontaudits from Dan Walsh. * Fix semanage to set correct mode for setrans file from Dan Walsh. * Fix malformed dictionary in portRecord from Dan Walsh. * Restore symlink handling support to restorecon based on a patch by Martin Orr. This fixes the restorecon /dev/stdin performed by Debian udev scripts that was broken by policycoreutils 2.0.70.- Add DAC_OVERRIED to seunshare- Fix typo- Add enable/disable patch- rebuilt with new audit- Tighten up controls on seunshare.c- Add sandboxX- Fix realpath usage to only happen on argv input from user- Don't try to remove restorecond after last erase (done already in %preun). - Ensure scriptlets exit with status 0. - Fix %post and %pr- Fix glob handling of /..- Redesign restorecond to use setfiles/restore functionality- Fix sepolgen again- Add --boot flag to audit2allow to get all AVC messages since last boot- Fix semanage command- exclude unconfined.if from sepolgen- Fix chcat to report error on non existing file - Update to upstream * Modify setfiles/restorecon checking of exclude paths. Only check user-supplied exclude paths (not automatically generated ones based on lack of seclabel support), don't require them to be directories, and ignore permission denied errors on them (it is ok to exclude a path to which the caller lacks permission).- Don't warn if the user did not specify the exclude if root can not stat file system- Update to upstream * Modify restorecon to only call realpath() on user-supplied pathnames from Stephen Smalley. * Fix typo in fixfiles that prevented it from relabeling btrfs filesystems from Dan Walsh.- Fix location of man pages - Update to upstream * Modify setfiles to exclude mounts without seclabel option in /proc/mounts on kernels >= 2.6.30 from Thomas Liu. * Re-enable disable_dontaudit rules upon semodule -B from Christopher Pardy and Dan Walsh. * setfiles converted to fts from Thomas Liu.- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- fix multiple directory ownership of mandirs- Update to upstream * Keep setfiles from spamming console from Dan Walsh. * Fix chcat's category expansion for users from Dan Walsh. - Update po files - Fix sepolgen- Add sepolgen executable- Fix Sandbox option handling - Fix fixfiles handling of btrfs- Fix sandbox to be able to execute files in homedir- Change polgen.py to be able to generate policy- Update to upstream * Fix transaction checking from Dan Walsh. * Make fixfiles -R (for rpm) recursive. * Make semanage permissive clean up after itself from Dan Walsh. * add /root/.ssh/* to restorecond.conf- Fix audit2allow -a to retun /var/log/messages- Run restorecond as a user service- Add semanage module support- Do not print \n, if count < 1000;- Handle case where subs file does not exist- Update po files - Add --equiv command for semanage- Cleanup creation of permissive domains - Update po files- Update po files- Fix semanage transations- Update polgengui templates to match current upstream policy- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- Add /root/.ssh to restorecond.conf - fixfiles -R package should recursively fix files- Update to upstream * Add btrfs to fixfiles from Dan Walsh. * Remove restorecond error for matching globs with multiple hard links and fix some error messages from Dan Walsh. * Make removing a non-existant module a warning rather than an error from Dan Walsh. * Man page fixes from Dan Walsh.- Fix script created by polgengui to not refer to selinux-policy-devel- Change initc scripts to use proper labeling on gui- Add obsoletes to cause policycoreuils to update both python and non python version- Dont report errors on glob match and multiple links- Move sepolgen-ifgen to post python- Fix Translations- Add Domains Page to system-config-selinux - Add ability to create dbus confined applications to polgen- Split python into a separate package- Update to upstream * chcat: cut categories at arbitrary point (25) from Dan Walsh * semodule: use new interfaces in libsemanage for compressed files from Dan Walsh * audit2allow: string changes for usage- Don't error out when removing a non existing module- fix audit2allow man page- Fix Japanese translations- Change md5 to hashlib.md5 in sepolgen- Rebuild for Python 2.6- Fix error checking in restorecond, for inotify_add_watch- Update to upstream * semanage: use semanage_mls_enabled() from Stephen Smalley.- Rebuild for Python 2.6- Update to upstream * fcontext add checked local records twice, fix from Dan Walsh.- Update to upstream * Allow local file context entries to override policy entries in semanage from Dan Walsh. * Newrole error message corrections from Dan Walsh. * Add exception to audit2why call in audit2allow from Dan Walsh.- add compression- Move the usermode-gtk requires to the -gui subpackage.- Fix traceback in audit2why- Make GUI use translations- Fix typo in man page- Handle selinux disabled correctly - Handle manipulation of fcontext file correctly- Add usermode-gtk requires- Allow addition of local modifications of fcontext policy.- Fix system-config-selinux booleanspage throwing and exception - Update po files- Fix text in newrole - Fix revertbutton on booleans page in system-config-selinux- Change semodule calls for libsemanage- Update to upstream * Update po files from Dan Walsh.- Fix semanage help display - Update to upstream * fixfiles will now remove all files in /tmp and will check for unlabeled_t in /tmp and /var/tmp from Dan Walsh. * add glob support to restorecond from Dan Walsh. * allow semanage to handle multi-line commands in a single transaction from Dan Walsh.- Only call gen_requires once in sepolgen- Change Requires line to gnome-python2-gnome - Fix spelling mistakes - Require libselinux-utils- Add node support to semanage- Fix fixfiles to correct unlabeled_t files and remove .? files- Add glob support to restorecond so it can check every file in the homedir- Update to upstream * Merged semanage node support from Christian Kuester.- Add require libsemanage-python- Add missing html_util.py file- Fixes for multiple transactions- Allow multiple transactions in one semanage command- Update to upstream * Add support for boolean files and group support for seusers from Dan Walsh. * Ensure that setfiles -p output is newline terminated from Russell Coker.- Allow semanage user to add group lists % groupname- Fix help- Update to upstream * Change setfiles to validate all file_contexts files when using -c from Stephen Smalley.- Fix boolean handling - Upgrade to latest sepolgen - Update po patch- Additial cleanup of boolean handling for semanage- Handle ranges of ports in gui- Fix indent problems in seobject- Add lockdown wizard - Allow semanage booleans to take an input file an process lots of booleans at once.- Default prefix to "user"- Remove semodule use within semanage - Fix launching of polgengui from toolbar- Update to upstream * Fix audit2allow generation of role-type rules from Karl MacMillan.- Fix spelling of enforcement- Fix sepolgen/audit2allow handling of roles- Fix sepolgen-ifgen processing- Add deleteall to semanage permissive, cleanup error handling- Complete removal of rhpl requirement- Add semanage permissive *- Fix fixfiles to cleanup /tmp and /var/tmp- Fix listing of types in gui- Update to upstream * Remove security_check_context calls for prefix validation from semanage. * Change setfiles and restorecon to not relabel if the file already has the correct context value even if -F/force is specified.- Remove /usr/share/locale/sr@Latn/LC_MESSAGES/policycoreutils.mo- Add rm -rf /tmp/gconfd-* /tmp/pulse-* /tmp/orbit-* to fixfiles restore - So that mislabeled files will get removed on full relabel- Make restorecond not start by default - Fix polgengui to allow defining of confined roles. - Add patches from Lubomir Rintel * Add necessary runtime dependencies on setools-console for -gui * separate stderr when run seinfo commands - Update to upstream * Update semanage man page for booleans from Dan Walsh. * Add further error checking to seobject.py for setting booleans.- Uninvasive (ie no string or widget changes) HIG approximations in selinux-polgenui- Move s-c-selinux to the right menu- Fix boolean descriptions - Fix semanage man page- Don't use prefix in gui- Update to upstream * Update audit2allow to report dontaudit cases from Dan Walsh. * Fix semanage port to use --proto from Caleb Case.- Update to upstream * Fix for segfault when conf file parse error occurs.- Don't show tabs on polgengui- Update to upstream * Merged fix fixfiles option processing from Vaclav Ovsik. - Added existing users, staff and user_t users to polgengui- Add messages for audit2allow DONTAUDIT- Add ability to transition to roles via polgengui- Update to upstream * Make semodule_expand use sepol_set_expand_consume_base to reduce peak memory usage.- Update to upstream * Merged audit2why fix and semanage boolean --on/--off/-1/-0 support from Dan Walsh. * Merged a second fixfiles -C fix from Marshall Miller.- Don't initialize audit2allow for audit2why call. Use default - Update to upstream * Merged fixfiles -C fix from Marshall Miller.- Update to upstream * Merged audit2allow cleanups and boolean descriptions from Dan Walsh. * Merged setfiles -0 support by Benny Amorsen via Dan Walsh. * Merged fixfiles fixes and support for ext4 and gfs2 from Dan Walsh.- Update to upstream * Merged replacement for audit2why from Dan Walsh.- Cleanup fixfiles -f message in man page- Update to upstream * Merged update to chcat, fixfiles, and semanage scripts from Dan Walsh. * Merged sepolgen fixes from Dan Walsh.- handle files with spaces on upgrades- Add support in fixfiles for ext4 ext4dev and gfs2- Allow files with spaces to be used by setfiles- Add descriptions of booleans to audit2allow- Update to upstream * Merged support for non-interactive newrole command invocation from Tim Reed.- Change to use selinux bindings to audit2why- Fix fixfiles to handle no args- Fix roles output when creating a module- Handle files with spaces in fixfiles- Catch SELINUX_ERR with audit2allow and generate policy- Make sepolgen set error exit code when partial failure - audit2why now checks booleans for avc diagnosis- Update to upstream * Update Makefile to not build restorecond if /usr/include/sys/inotify.h is not present- Fix sepolgen to be able to parse Fedora 9 policy Handle ifelse statements Handle refpolicywarn inside of define Add init.if and inetd.if into parse Add parse_file to syntax error message- Add scroll bar to fcontext gui page- Add Russion Man pages- Upgrade from NSA * Drop verbose output on fixfiles -C from Dan Walsh. * Fix argument handling in fixfiles from Dan Walsh. * Enhance boolean support in semanage, including using the .xml description when available, from Dan Walsh. - Fix handling of final screen in polgengui- Fix handling of disable selinux button in gui- Upgrade from NSA * load_policy initial load option from Chad Sellers.- Don't show error on missing policy.xml- GUI Enhancements - Fix cgi generation - Use more patterns- Remove codec hacking, which seems to be fixed in python- Fix typo - Change to upstream minimal privledge interfaces- Fix fixfiles argument parsing- Fix File Labeling add- Fix semanage to handle state where policy.xml is not installed- Remove -v from restorecon in fixfiles- Fix filter and search capabilities, add wait cursor- Translate booleans via policy.xml - Allow booleans to be set via semanage- Require use of selinux-policy-devel- Validate semanage fcontext input - Fix template names for log files in gui- Fix template to generate correct content- Fix consolekit link to selinux-polgengui- Fix the generation templates- Fix enable/disable audit messages- Add booleans page- Lots of updates to gui- Remove no.po - Update to upstream * Fix semodule option handling from Dan Walsh. * Add deleteall support for ports and fcontexts in semanage from Dan Walsh.- Fix semodule parameter checking- Update to upstream * Add genhomedircon script to invoke semodule -Bn from Dan Walsh. - Add deleteall for ports and fcontext- Update to upstream * Update semodule man page for -D from Dan Walsh. * Add boolean, locallist, deleteall, and store support to semanage from Dan Walsh.- Add genhomedircon script to rebuild file_context for shadow-utils- Update translations- Additional checkboxes for application policy- Allow policy writer to select user types to transition to there users- Fix bug in building policy with polgengui - Creating ports correctly- Update to upstream * Improve semodule reporting of system errors from Stephen Smalley.- Show local changes with semanage- Fixed spelling mistakes in booleans defs - Update po- Update to upstream * Fix setfiles selabel option flag setting for 64-bit from Stephen Smalley.- Fix wording in policy generation tool- Fix calls to _admin interfaces- Upgrade version of sepolgen from NSA * Expand the sepolgen parser to parse all current refpolicy modules from Karl MacMillan. * Suppress generation of rules for non-denials from Karl MacMillan (take 3).- Remove bogus import libxml2- Lots of fixes for polgengui- Change Requires /bin/rpm to rpm- Bump libsemanage version for disable dontaudit - New gui features for creating admin users- Fix generated code for admin policy- Lots of fixes for role templates- Add more role_templates- Update genpolgui to add creation of user domains- Fix location of sepolgen-ifgen- Add selinux-polgengui to desktop- Cleanup spec- Update semodule man page * Fix genhomedircon searching for USER from Todd Miller * Install run_init with mode 0755 from Dan Walsh. * Fix chcat from Dan Walsh. * Fix fixfiles pattern expansion and error reporting from Dan Walsh. * Optimize genhomedircon to compile regexes once from Dan Walsh. * Fix semanage gettext call from Dan Walsh.- Update semodule man page- Update to match NSA * Disable dontaudits via semodule -D- Speed up genhomedircon by an order of magnitude by compiling regex - Allow semanage fcontext -a -t <> /path to work- Fixfiles update required to match new regex- Update booleans translations- rebuild for toolchain bug- Add requires libselinux-python- Fix fixfiles to report incorrect rpm - Patch provided by Tony Nelson- Clean up spec file- Require newer libselinux version- Fix checking for conflicting directory specification in genhomedircon- Fix spelling mistakes in GUI- Fix else path in chcat- Update to match NSA * Rebase setfiles to use new labeling interface.- Add filter to all system-config-selinux lists- Update to match NSA * Fixed setsebool (falling through to error path on success).- Update to match NSA * Merged genhomedircon fixes from Dan Walsh. * Merged setfiles -c usage fix from Dan Walsh. * Merged restorecon fix from Yuichi Nakamura. * Dropped -lsepol where no longer needed.- Fix translations code, Add more filters to gui- Fix setfiles -c to make it work- Fix french translation to not crash system-config-selinux- Fix genhomedircon to work in stage2 builds of anaconda- Update to match NSA- Fixes for polgentool templates file- Updated version of policycoreutils * Merged support for modifying the prefix via semanage from Dan Walsh. - Fixed genhomedircon to find homedirs correctly.- Updated version of policycoreutils * Merged po file updates from Dan Walsh. - Fix semanage to be able to modify prefix in user record- Fix title on system-config-selinux- Updated version of policycoreutils * Build fix for setsebool.- Updated version of policycoreutils * Merged setsebool patch to only use libsemanage for persistent boolean changes from Stephen Smalley. * Merged genhomedircon patch to use the __default__ setting from Dan Walsh. * Dropped -b option from load_policy in preparation for always preserving booleans across reloads in the kernel.- Fixes for polgengui- Updated version of policycoreutils * Merged chcat, fixfiles, genhomedircon, restorecond, and restorecon patches from Dan Walsh.- Fix genhomedircon to handle non user_u for the default user- More cleanups for gui- Fix size and use_tmp problem on gui- Fix restorecon crash- Change polgengui to a druid- Fully path script.py- Add -l flag to restorecon to not traverse file systems- Fixes for policygengui- Add polgengui- Updated version of sepolgen * Merged seobject setransRecords patch to return the first alias from Xavier Toth.- Updated version of sepolgen * Merged updates to sepolgen-ifgen from Karl MacMillan. * Merged updates to sepolgen parser and tools from Karl MacMillan. This includes improved debugging support, handling of interface calls with list parameters, support for role transition rules, updated range transition rule support, and looser matching.- Don't generate invalid context with genhomedircon- Add filter to booleans page- Fix polgen.py to not generate udp rules on tcp input- system-config-selinux should be able to run on a disabled system, - at least enough to get it enabled.- Many fixes to polgengui- Updated version of sepolgen * Merged patch to discard self from types when generating requires from Karl MacMillan.- Change location of audit2allow and sepol-ifgen to sbin - Updated version of sepolgen * Merged patch to move the sepolgen runtime data from /usr/share to /var/lib to facilitate a read-only /usr from Karl MacMillan.- Add polgen gui - Many fixes to system-config-selinux- service restorecond status needs to set exit value correctly- Fix gui- Update to upstream * Merged restorecond init script LSB compliance patch from Steve Grubb. -sepolgen * Merged better matching for refpolicy style from Karl MacMillan * Merged support for extracting interface paramaters from interface calls from Karl MacMillan * Merged support for parsing USER_AVC audit messages from Karl MacMillan.- Update to upstream -sepolgen * Merged support for enabling parser debugging from Karl MacMillan. - Add sgrupp cleanup of restorcon init script- Add Bill Nottinham patch to run restorcond condrestart in postun- Update to upstream - policycoreutils * Merged newrole O_NONBLOCK fix from Linda Knippers. * Merged sepolgen and audit2allow patches to leave generated files in the current directory from Karl MacMillan. * Merged restorecond memory leak fix from Steve Grubb. -sepolgen * Merged patch to leave generated files (e.g. local.te) in current directory from Karl MacMillan. * Merged patch to make run-tests.py use unittest.main from Karl MacMillan. * Merged patch to update PLY from Karl MacMillan. * Merged patch to update the sepolgen parser to handle the latest reference policy from Karl MacMillan.- Do not fail on sepolgen-ifgen- Update to upstream * Merged translations update from Dan Walsh. * Merged chcat fixes from Dan Walsh. * Merged man page fixes from Dan Walsh. * Merged seobject prefix validity checking from Dan Walsh. * Merged Makefile and refparser.py patch from Dan Walsh. Fixes PYTHONLIBDIR definition and error handling on interface files.- Updated newrole NONBlOCK patch- Remove Requires: %{name}-plugins- Update to upstream * Merged seobject exception handler fix from Caleb Case. * Merged setfiles memory leak patch from Todd Miller.- Cleanup man pages syntax - Add sepolgen- Update to upstream * Merged small fix to correct include of errcodes.h in semodule_deps from Dan Walsh.- Update to upstream * Merged new audit2allow from Karl MacMillan. This audit2allow depends on the new sepolgen python module. Note that you must run the sepolgen-ifgen tool to generate the data needed by audit2allow to generate refpolicy. * Fixed newrole non-pam build. - Fix Changelog and spelling error in man page- Fix audit2allow on missing translations- More chcat fixes- Change chcat to exec semodule so file context is maintained- Fix system-config-selinux ports view - Update to upstream * Fixed newrole non-pam build. * Updated version for stable branch.- Update to upstream * Merged unicode-to-string fix for seobject audit from Dan Walsh. * Merged man page updates to make "apropos selinux" work from Dan Walsh.* Merged newrole man page patch from Michael Thompson. * Merged patch to fix python unicode problem from Dan Walsh.- Fix handling of audit messages for useradd change Resolves: #222159- Update man pages by adding SELinux to header to fix apropos database Resolves: #217881- Want to update to match api - Update to upstream * Merged newrole securetty check from Dan Walsh. * Merged semodule patch to generalize list support from Karl MacMillan. Resolves: #200110- Update to upstream * Merged fixfiles and seobject fixes from Dan Walsh. * Merged semodule support for list of modules after -i from Karl MacMillan.- Update to upstream * Merged patch to correctly handle a failure during semanage handle creation from Karl MacMillan. * Merged patch to fix seobject role modification from Dan Walsh.- Stop newrole -l from working on non secure ttys Resolves: #200110- Update to upstream * Merged patches from Dan Walsh to: - omit the optional name from audit2allow - use the installed python version in the Makefiles - re-open the tty with O_RDWR in newrole- Update to upstream * Patch from Dan Walsh to correctly suppress warnings in load_policy.- Fix fixfiles script to use tty command correctly. If this command fails, it should set the LOGFILE to /dev/null Resolves: #220879- Remove hard coding of python2.4 from Makefiles- add exists switch to semanage to tell it not to check for existance of Linux user Resolves: #219421- Fix audit2allow generating reference policy - Fix semanage to manage user roles properly Resolves: #220071- Update po files - Fix newrole to open stdout and stderr rdrw so more will work on MLS machines Resolves: #216920- rebuild for python 2.5- Update po files Resolves: #216920- Update po files Resolves: #216920- Update to upstream * Patch from Dan Walsh to add an pam_acct_msg call to run_init * Patch from Dan Walsh to fix error code returns in newrole * Patch from Dan Walsh to remove verbose flag from semanage man page * Patch from Dan Walsh to make audit2allow use refpolicy Makefile in /usr/share/selinux/- Fixing the Makefile line again to build with LSPP support Resolves: #208838- Don't report errors on restorecond when file system does not support XATTRS Resolves: #217694- Fix -q qualifier on load_policy Resolves: #214827- Merge to upstream - Fix makefile line Resolves: #208838- Additional po changes - Added all booleans definitions- Upstream accepted my patches * Merged setsebool patch from Karl MacMillan. This fixes a bug reported by Yuichi Nakamura with always setting booleans persistently on an unmanaged system.- Fixes for the gui- Upstream accepted my patches- Add Amy Grifis Patch to preserve newrole exit status- Fix display of gui- Add patch by Jose Plans to make run_init use pam_acct_mgmt- More fixes to gui- Fix audit2allow to generate referene policy- Add group sort for portsPage.py - Add enable/disableaudit to modules page- Add glade file- Fix Module handling in system-config-selinux- Update to upstream * Merged newrole patch set from Michael Thompson. - Add policycoreutils-gui- No longer requires rhpl- Fix genhomedircon man page- Add newrole audit patch from sgrubb - Update to upstream * Merged audit2allow -l fix from Yuichi Nakamura. * Merged restorecon -i and -o - support from Karl MacMillan. * Merged semanage/seobject fix from Dan Walsh. * Merged fixfiles -R and verify changes from Dan Walsh.- Separate out newrole into its own package- Update to upstream * Merged newrole auditing of failures due to user actions from Michael Thompson.- Pass -i qualifier to restorecon for fixfiles -R - Update translations- Remove recursion from fixfiles -R calls - Fix semanage to verify prefix- More translations - Compile with -pie- Add translations - Fix audit2allow -l- Rebuild- Update to upstream - Change -o to take "-" for stdout- Add -h support for genhomedircon- Fix fixfiles handling of -o- Make restorecon return the number of changes files if you use the -n flag- Change setfiles and restorecon to use stderr except for -o flag - Also -o flag will now output files- Put back Erich's change- Remove recursive switch when using rpm- Fix fixfiles to handle multiple rpm and make -o work- Apply patch- Security fixes to run python in a more locked down manner - More Translations - Update to upstream * Merged fix for restorecon // handling from Erich Schubert. * Merged translations update and fixfiles fix from Dan Walsh.- Change scripts to use /usr/sbin/python- Add -i qualified to restorecon to tell it to ignore files that do not exist - Fixfiles also modified for this change- Ignore sigpipe- Fix init script and add translations- Update to upstream * Merged fix for restorecon symlink handling from Erich Schubert.- Update to upstream * Merged semanage local file contexts patch from Chris PeBenito. - Fix fixfiles log creation - More translations- Update to upstream * Merged patch from Dan Walsh with: * audit2allow: process MAC_POLICY_LOAD events * newrole: run shell with - prefix to start a login shell * po: po file updates * restorecond: bail if SELinux not enabled * fixfiles: omit -q * genhomedircon: fix exit code if non-root * semodule_deps: install man page * Merged secon Makefile fix from Joshua Brindle. * Merged netfilter contexts support patch from Chris PeBenito.- Fix audit2allow to handle reload of policy- Stop restorecond init script when selinux is not enabled- Update to upstream * Merged restorecond size_t fix from Joshua Brindle. * Merged secon keycreate patch from Michael LeMay. * Merged restorecond fixes from Dan Walsh. Merged updated po files from Dan Walsh. * Merged python gettext patch from Stephen Bennett. * Merged semodule_deps from Karl MacMillan.- Change newrole to exec a login shell to prevent suspend.- Report error when selinux not enabled in restorecond- Fix handling of restorecond- Fix creation of restorecond pidfile- Update translations - Update to new GCC- Add verbose flag to restorecond and update translations- Update to upstream * Lindent. * Merged patch from Dan Walsh with: * -p option (progress) for setfiles and restorecon. * disable context translation for setfiles and restorecon. * on/off values for setsebool. * Merged setfiles and semodule_link fixes from Joshua Brindle.- Add progress indicator on fixfiles/setfiles/restorecon- Don't use translations with matchpathcon- Prompt for selinux-policy-devel package in audit2allow- Allow setsebool to use on/off - Update translations- Update to upstream * Merged fix for setsebool error path from Serge Hallyn. * Merged patch from Dan Walsh with: * Updated po files. * Fixes for genhomedircon and seobject. * Audit message for mass relabel by setfiles.- Update audit mass relabel to only compile in when audit is installed.- Update to required versions - Update translation- Fix shell selection- Add BuildRequires for gettext* Updated fixfiles script for new setfiles location in /sbin.- Update to upstream * Merged more translations from Dan Walsh. * Merged patch to relocate setfiles to /sbin for early relabel when /usr might not be mounted from Dan Walsh. * Merged semanage/seobject patch to preserve fcontext ordering in list. * Merged secon patch from James Antill.- Fix seobject.py to not sort the file_context file. - move setfiles to /sbin- secon man page and getopt fixes. - Enable mass relabel audit, even though it doesn't work.- secon fixes for --self-exec etc. - secon change from level => sensitivity, add clearance. - Add mass relabel AUDIT patch, but disable it until kernel problem solved.- Update to upstream * Merged patch with updates to audit2allow, secon, genhomedircon, and semanage from Dan Walsh.- Fix exception in genhomedircon- Add rhpl dependancy- Add secon man page and prompt options.- Update to upstream * Fixed audit2allow and po Makefiles for DESTDIR= builds. * Merged .po file patch from Dan Walsh. * Merged bug fix for genhomedircon.- Fix exception on bad file_context- Update to upstream * Merged fix warnings patch from Karl MacMillan. * Merged patch from Dan Walsh. This includes audit2allow changes for analysis plugins, internationalization support for several additional programs and added po files, some fixes for semanage, and several cleanups. It also adds a new secon utility.- Fix genhomedircon to catch duplicate homedir problem- Add secon program - Add translations- Fix check for "msg"- Ship avc.py- Add /etc/samba/secrets.tdb to restorecond.conf - Update from upstream * Merged semanage prefix support from Russell Coker. * Added a test to setfiles to check that the spec file is a regular file.- added some missing buildrequires - added Requires: initscripts for /sbin/service- use absolute path /sbin/service- Fix audit2allow to not require ausearch. - Fix man page - Add libflashplayer to restorecond.conf- Update from upstream * Merged audit2allow fixes for refpolicy from Dan Walsh. * Merged fixfiles patch from Dan Walsh. * Merged restorecond daemon from Dan Walsh. * Merged semanage non-MLS fixes from Chris PeBenito. * Merged semanage and semodule man page examples from Thomas Bleher.- Clean up reference policy generation in audit2allow- Add IN_MOVED_TO to catch renames- make restorecond only ignore non directories with lnk > 1- Make audit2allow translate dontaudit as well as allow rules - Update from upstream * Merged semanage labeling prefix patch from Ivan Gyurdiev.- Fix audit2allow to retrieve dontaudit rules- Open file descriptor to make sure file does not change from underneath.- Fixes for restorecond attack via symlinks - Fixes for fixfiles- Restorecon has to handle suspend/resume- Update to upstream- Add restorecond- Remove prereq- Fix audit2allow to generate all rules- Minor fixes to chcat and semanage- Add missing setsebool man page- Change audit2allow to use devel instead of refpolicy- Update from upstream * Merged semanage bug fix patch from Ivan Gyurdiev. * Merged improve bindings patch from Ivan Gyurdiev. * Merged semanage usage patch from Ivan Gyurdiev. * Merged use PyList patch from Ivan Gyurdiev.- Update from upstream * Merged newrole -V/--version support from Glauber de Oliveira Costa. * Merged genhomedircon prefix patch from Dan Walsh. * Merged optionals in base patch from Joshua Brindle.- bump again for double-long bug on ppc(64)- Fix auditing to semanage - Change genhomedircon to use new prefix interface in libselinux- Update from upstream * Merged seuser/user_extra support patch to semodule_package from Joshua Brindle. * Merged getopt type fix for semodule_link/expand and sestatus from Chris PeBenito. - Fix genhomedircon output- rebuilt for new gcc4.1 snapshot and glibc changes- Add auditing to semanage- Update from upstream * Merged clone record on set_con patch from Ivan Gyurdiev.- Update from upstream * Merged genhomedircon fix from Dan Walsh. * Merged seusers.system patch from Ivan Gyurdiev. * Merged improve port/fcontext API patch from Ivan Gyurdiev. * Merged genhomedircon patch from Dan Walsh.- Update from upstream * Merged newrole audit patch from Steve Grubb. * Merged seuser -> seuser local rename patch from Ivan Gyurdiev. * Merged semanage and semodule access check patches from Joshua Brindle.- Add a default of /export/home- Cleanup of the patch- Correct handling of symbolic links in restorecon- Added translation support to semanage - Update from upstream * Modified newrole and run_init to use the loginuid when supported to obtain the Linux user identity to re-authenticate, and to fall back to real uid. Dropped the use of the SELinux user identity, as Linux users are now mapped to SELinux users via seusers and the SELinux user identity space is separate. * Merged semanage bug fixes from Ivan Gyurdiev. * Merged semanage fixes from Russell Coker. * Merged chcat.8 and genhomedircon patches from Dan Walsh.- Fix genhomedircon to work on MLS policy- Update to match NSA * Merged chcat, semanage, and setsebool patches from Dan Walsh.- Fixes for "add"-"modify" error messages - Fixes for chcat- Add management of translation file to semaange and seobject- Fix chcat -l -L to work while not root- Update to match NSA * Merged semanage fixes from Ivan Gyurdiev. * Merged semanage fixes from Russell Coker. * Merged chcat, genhomedircon, and semanage diffs from Dan Walsh.- Update chcat to manage user categories also- Add check for root for semanage, genhomedircon- Add ivans patch- Update to match NSA * Merged newrole cleanup patch from Steve Grubb. * Merged setfiles/restorecon performance patch from Russell Coker. * Merged genhomedircon and semanage patches from Dan Walsh. * Merged remove add_local/set_local patch from Ivan Gyurdiev.- Fixes for mls policy- Update semanage and split out seobject - Fix labeleing of home_root- Update to match NSA * Added filename to semodule error reporting.- Update to match NSA * Merged genhomedircon and semanage patch from Dan Walsh. * Changed semodule error reporting to include argv[0].- Update to match NSA * Merged semanage getpwnam bug fix from Serge Hallyn (IBM). * Merged patch series from Ivan Gyurdiev. This includes patches to: - cleanup setsebool - update setsebool to apply active booleans through libsemanage - update semodule to use the new semanage_set_rebuild() interface - fix various bugs in semanage * Merged patch from Dan Walsh (Red Hat). This includes fixes for restorecon, chcat, fixfiles, genhomedircon, and semanage.- Fix restorecon to not say it is changing user section when -vv is specified- Fixes for semanage, patch from Ivan and added a test script- Fix getpwnam call- Anaconda fixes- Turn off try catch block to debug anaconda failure- More fixes for chcat- Add try catch for files that may not exists- Remove commands from genhomedircon for installer- Fix genhomedircon to work in installer - Update to match NSA * Merged patch for chcat script from Dan Walsh.- More fixes to chcat- rebuilt- Update to match NSA * Merged fix for audit2allow long option list from Dan Walsh. * Merged -r option for restorecon (alias for -R) from Dan Walsh. * Merged chcat script and man page from Dan Walsh.- Update to match NSA - Add gfs support- Update to match NSA - Add chcat to policycoreutils, adding +/- syntax `- Require new version of libsemanage- Update to match NSA * Changed genhomedircon to warn on use of ROLE in homedir_template if using managed policy, as libsemanage does not yet support it.- Update to match NSA * Merged genhomedircon bug fix from Dan Walsh. * Revised semodule* man pages to refer to checkmodule and to include example sections.- Update to match NSA * Merged audit2allow --tefile and --fcfile support from Dan Walsh. * Merged genhomedircon fix from Dan Walsh. * Merged semodule* man pages from Dan Walsh, and edited them. * Changed setfiles to set the MATCHPATHCON_VALIDATE flag to retain validation/canonicalization of contexts during init.- Update to match NSA * Changed genhomedircon to always use user_r for the role in the managed case since user_get_defrole is broken. - Add te file capabilities to audit2allow - Add man pages for semodule- Update to match NSA * Merged sestatus, audit2allow, and semanage patch from Dan Walsh. * Fixed semodule -v option.- Update to match NSA * Merged audit2allow python script from Dan Walsh. (old script moved to audit2allow.perl, will be removed later). * Merged genhomedircon fixes from Dan Walsh. * Merged semodule quieting patch from Dan Walsh (inverts default, use -v to restore original behavior).- Audit2allow * Add more error checking * Add gen policy package * Add gen requires- Update to match NSA * Merged genhomedircon rewrite from Dan Walsh. - Rewrite audit2allow to python- Fix genhomedircon to work with non libsemanage systems- Patch genhomedircon to use libsemanage.py stuff- Update to match NSA * Merged setsebool cleanup patch from Ivan Gyurdiev.- Fix genhomedircon to use seusers file, temporary fix until swigified semanage* Added -B (--build) option to semodule to force a rebuild. * Reverted setsebool patch to call semanage_set_reload_bools(). * Changed setsebool to disable policy reload and to call security_set_boolean_list to update the runtime booleans. * Changed setfiles -c to use new flag to set_matchpathcon_flags() to disable context translation by matchpathcon_init().- Update to match NSA * Changed setfiles for the context canonicalization support. * Changed setsebool to call semanage_is_managed() interface and fall back to security_set_boolean_list() if policy is not managed. * Merged setsebool memory leak fix from Ivan Gyurdiev. * Merged setsebool patch to call semanage_set_reload_bools() interface from Ivan Gyurdiev.- Update to match NSA * Merged setsebool patch from Ivan Gyurdiev. This moves setsebool from libselinux/utils to policycoreutils, and rewrites it to use libsemanage for permanent boolean changes.- Rebuild to use latest libselinux, libsemanage, and libsepol- Update to match NSA * Merged semodule support for reload, noreload, and store options from Joshua Brindle. * Merged semodule_package rewrite from Joshua Brindle.- Update to match NSA * Cleaned up usage and error messages and releasing of memory by semodule utilities. * Corrected error reporting by semodule. * Updated semodule_expand for change to sepol interface. * Merged fixes for make DESTDIR= builds from Joshua Brindle.- Update to match NSA * Updated semodule_package for sepol interface changes.- Update to match NSA * Updated semodule_expand/link for sepol interface changes.- Update to match NSA * Merged non-PAM Makefile support for newrole and run_init from Timothy Wood.- Update to match NSA * Updated semodule_expand to use get interfaces for hidden sepol_module_package type. * Merged newrole and run_init pam config patches from Dan Walsh (Red Hat). * Merged fixfiles patch from Dan Walsh (Red Hat). * Updated semodule for removal of semanage_strerror.- Fix run_init.pamd and spec file- Update to match NSA * Updated semodule_link and semodule_expand to use shared libsepol. Fixed audit2why to call policydb_init prior to policydb_read (still uses the static libsepol).- Update to match NSA * Updated for changes to libsepol. Changed semodule and semodule_package to use the shared libsepol. Disabled build of semodule_link and semodule_expand for now. Updated audit2why for relocated policydb internal headers, still needs to be converted to a shared lib interface.- Update newrole pam file to remove pam-stack - Update run_init pam file to remove pam-stack- Update to match NSA * Fixed warnings in load_policy. * Rewrote load_policy to use the new selinux_mkload_policy() interface provided by libselinux.- Rebuild with newer libararies- Update to match NSA * Merged patch to update semodule to the new libsemanage API and improve the user interface from Karl MacMillan (Tresys). * Modified semodule for the create/connect API split.- More fixes to stop find from following nfs paths- Update to match NSA * Merged run_init open_init_pty bug fix from Manoj Srivastava (unblock SIGCHLD). Bug reported by Erich Schubert.- Update to match NSA * Merged error shadowing bug fix for restorecon from Dan Walsh. * Merged setfiles usage/man page update for -r option from Dan Walsh. * Merged fixfiles -C patch to ignore :s0 addition on update to a MCS/MLS policy from Dan Walsh.- Add chcat script for use with chcon.- Fix restorecon to exit with error code* Updated version for release.- Add prereq for mount command- Update to match NSA * Changed setfiles -c to translate the context to raw format prior to calling libsepol.- Use new version of libsemange and require it for install- Ignore s0 in file context- Update to match NSA * Merged patch for fixfiles -C from Dan Walsh.- Update to match NSA * Merged fixes for semodule_link and sestatus from Serge Hallyn (IBM). Bugs found by Coverity.- Fix fixfiles to call sort -u followed by sort -d.- Change fixfiles to ignore /home directory on updates- Update to match NSA * Merged patch to move module read/write code from libsemanage to libsepol from Jason Tang (Tresys).- Update to match NSA * Changed semodule* to link with libsemanage.- Update to match NSA * Merged restorecon patch from Ivan Gyurdiev.- Update to match NSA * Merged load_policy, newrole, and genhomedircon patches from Red Hat.- Update to match NSA * Merged loadable module support from Tresys Technology.- Update to match NSA * Updated version for release.- Fix Ivan's patch for user role changes- Add Ivan's patch for user role changes in genhomedircon- Fix warning message on reload of booleans- Update to match NSA * Merged fixfiles and newrole patch from Dan Walsh. * Merged audit2why man page from Dan Walsh.- Add call to pam_acct_mgmt in newrole.- Update to match NSA * Extended audit2why to incorporate booleans and local user settings when analyzing audit messages.- Update to match NSA * Updated audit2why for sepol_ prefixes on Flask types to avoid namespace collision with libselinux, and to include now.- Fix fixfiles to accept -f - Update to match NSA * Added audit2why utility.- Change -f flag in fixfiles to remove stuff from /tmp - Change -F flag to pass -F flag to restorecon/fixfiles. (IE Force relabel).- Update to match NSA * Fixed signed/unsigned pointer bug in load_policy. * Reverted context validation patch for genhomedircon.- Update to match NSA * Reverted load_policy is_selinux_enabled patch from Dan Walsh. Otherwise, an initial policy load cannot be performed using load_policy, e.g. for anaconda.- remove is_selinux_enabled check from load_policy (Bad idea)- Update to version from NSA * Merged load_policy is_selinux_enabled patch from Dan Walsh. * Merged restorecon verbose output patch from Dan Walsh. * Merged setfiles altroot patch from Chris PeBenito.- Don't run load_policy on a non SELinux kernel.- Update to version from NSA * Merged context validation patch for genhomedircon from Eric Paris. - Fix verbose output of restorecon- Update to version from NSA * Changed setfiles -c to call set_matchpathcon_flags(3) to turn off processing of .homedirs and .local.- Update to released version from NSA * Merged rewrite of genhomedircon by Eric Paris. * Changed fixfiles to relabel jfs since it now supports security xattrs (as of 2.6.11). Removed reiserfs until 2.6.12 is released with fixed support for reiserfs and selinux.- Update to released version from NSA - Patch genhomedircon to handle passwd in different places.- Fix genhomedircon to not put bad userad error in file_contexts.homedir- Cleanup error reporting* Merged load_policy and genhomedircon patch from Dan Walsh.- Fix genhomedircon to add extr "\n"- Fix genhomedircon to handle blank users- Update to latest from NSA - Add call to libsepol- Fix genhomedircon to handle root - Fix fixfiles to better handle file system types- Fix genhomedircon to handle spaces in SELINUXPOLICYTYPE- Update to latest from NSA * Merged several fixes from Ulrich Drepper.- Apply Uli patch * The Makefiles should use the -Wall option even if compiled in beehive * Add -W, too * use -Werror when used outside of beehive. This could also be used unconditionally * setfiles/setfiles.c: fix resulting warning * restorecon/restorecon.c: Likewise * run_init/open_init_pty.c: argc hasn't been checked, the program would crash if called without parameters. ignore the return value of nice properly. * run_init: don't link with -ldl lutil * load_policy: that's the bad bug. pointer to unsigned int is passed, size_t is written to. fails on 64-bit archs * sestatus: signed vs unsigned problem * newrole: don't link with -ldl- Update to latest from NSA * Changed load_policy to fall back to the original policy upon an error from sepol_genusers().- Only restorecon on ext[23], reiser and xfs- Update to latest from NSA * Merged new genhomedircon script from Dan Walsh. * Changed load_policy to call sepol_genusers().- Remove Red Hat rhpl usage - Add back in original syntax - Update man page to match new syntax- Fix genhomedircon regular expression - Fix exclude in restorecon- Trap failure on write - Rewrite genhomedircon to generate file_context.homedirs - several passes- Update from NSA * Changed relabel Makefile target to use restorecon.- Update from NSA * Merged restorecon patch from Dan Walsh.- Update from NSA * Merged further change to fixfiles -C from Dan Walsh. * Merged updated fixfiles script from Dan Walsh. - Fix error handling of restorecon- Fix sestatus for longer booleans- More cleanup of fixfiles sed patch * Merged further patches for restorecon/setfiles -e and fixfiles -C.- More cleanup of fixfiles sed patch- More cleanup of fixfiles sed patch - Upgrade to latest from NSA * Merged patch for open_init_pty from Manoj Srivastava.- More cleanup of sed patch - Upgrade to latest from NSA * Merged updated fixfiles script from Dan Walsh. * Merged updated man page for fixfiles from Dan Walsh and re-added unzipped. * Reverted fixfiles patch for file_contexts.local; obsoleted by setfiles rewrite. * Merged error handling patch for restorecon from Dan Walsh. * Merged semi raw mode for open_init_pty helper from Manoj Srivastava. * Rewrote setfiles to use matchpathcon and the new interfaces exported by libselinux (>= 1.21.5).- Fix fixfiles patch - Upgrade to latest from NSA * Prevent overflow of spec array in setfiles. - Add diff comparason between file_contexts to fixfiles - Allow restorecon to give an warning on file not found instead of exiting- Upgrade to latest from NSA * Merged newrole -l support from Darrel Goeddel (TCS). - Fix genhomedircon STARTING_UID- Upgrade to latest from NSA * Merged fixfiles patch for file_contexts.local from Dan Walsh.- Temp file needs to be created in /etc/selinux/POLICYTYPE/contexts/files/ directory.- Upgrade to latest from NSA * Fixed restorecon to not treat errors from is_context_customizable() as a customizable context. * Merged setfiles/restorecon patch to not reset user field unless -F option is specified from Dan Walsh. * Merged open_init_pty helper for run_init from Manoj Srivastava. * Merged audit2allow and genhomedircon man pages from Manoj Srivastava.- Don't change user componant if it is all that changed unless forced. - Change fixfiles to concatinate file_context.local for setfiles- Update to latest from NSA- Fix restorecon segfault- Update to latest from NSA * Merged fixfiles rewrite from Dan Walsh. * Merged restorecon patch from Dan Walsh.- Update to latest from NSA * Merged fixfiles and restorecon patches from Dan Walsh. * Don't display change if only user part changed.- Fix fixfiles handling of rpm - Fix restorecon to not warn on symlinks unless -v -v - Fix output of verbose to show old context as well as new context- Update to latest from NSA * Changed restorecon to ignore ENOENT errors from matchpathcon. * Merged nonls patch from Chris PeBenito.- Update to latest from NSA * Removed fixfiles.cron. * Merged run_init.8 patch from Dan Walsh.- Fix run_init.8 to refer to correct location of initrc_context- Upgrade to latest from NSA- Add code to sestatus to output the current policy from config file- Patch audit2allow to return self and no brackets if only one rule- Update to latest from NSA - Eliminate fixfiles.cron- Only run fixfiles.cron once a week, and eliminate null message- Update with NSA * Added -l option to setfiles to log changes via syslog. * Merged -e option to setfiles to exclude directories. * Merged -R option to restorecon for recursive descent.- Add -e (exclude directory) switch to setfiles - Add syslog to setfiles- Add -R (recursive) switch to restorecon.- Change to only display to terminal if tty is specified- Only display to stdout if logfile not specified- Add Steve Grubb patch to cleanup log files.- Add optargs - Update to match NSA- Add fix to get cdrom info from /proc/media in fixfiles.- Add Steve Grub patches for * Fix fixfiles.cron MAILTO * Several problems in sestatus- Add -q (quiet) qualifier to load_policy to not report warnings- Add requires for libsepol >= 1.1.1- Update to latest from upstream- Update to latest from upstream - Includes Colin patch for verifying file_contexts- Update to latest from upstream- Update to latest from upstream- Add Man page for load_policy- new version from NSA uses libsepol- Fix genhomedircon join command- Latest from NSA- Change fixfiles to not change when running a check- Fix restorecon getopt call to stop hang on IBM Arches- Only mail files less than 100 lines from fixfiles.cron - Add Russell's fix for genhomedircon- Latest from NSA- Add ro warnings- Latest from NSA - Fix fixfiles.cron to delete outfile- Fix fixfiles.cron to not run on non SELinux boxes - Fix several problems in fixfiles and fixfiles.cron- Update from NSA - Add cron capability to fixfiles- Update from NSA- Fix fixfiles to handle no rpm file on relabel- Update latest from NSA - Add -o option to setfiles to save output of any files with incorrect context.- Add rpm support to fixfiles - Update restorecon to add file input support- Update with NSA Latest- rebuilt- Fix run_init to use policy formats- Update from NSA- Change location of file_context file- Change to use /etc/sysconfig/selinux to determine location of policy files- Update to latest from NSA - Change fixfiles to prompt before deleteing /tmp files- have restorecon ingnore <> - Hand matchpathcon the file status- Update to match NSA- Move location of log file to /var/tmp- Better grep command for bind- Eliminate bind and context mounts- update to match NSA- Log fixfiles to the /tmp directory- Add patch to fall back to authenticating via uid if the current user's SELinux user identity is the default identity - Add BuildRequires pam-devel- Add man page, thanks to Richard Halley- Upgrade to latest from NSA- Update with latest from gentoo and NSA- Check return codes in sestatus.c- Fix sestatus to not double free - Fix sestatus.conf to be unix format- Warn on setfiles failure to relabel.- Updated version of sestatus- Fix fixfiles to checklabel properly- add sestatus- Change free call to freecon - Cleanup- Remove setfiles-assoc patch - Fix restorecon to not crash on missing dir- Eliminate trailing / in restorecon- Add Verbosity check- Change restorecon to not follow symlinks. It is too difficult and confusing - to figure out the file context for the file pointed to by a symlink.- Fix restorecon- Read restorecon patch- Change genhomedircon to take POLICYSOURCEDIR from command line- Add checkselinux - move fixfiles and restorecon to /sbin- Restore patch of genhomedircon- Add setfiles-assoc patch to try to freeup memory use- Add fixlabels- Update to latest from NSA- Increase the size of buffer accepted by setfiles to BUFSIZ.- genhomedircon should complete even if it can't read /etc/default/useradd- fix restorecon to relabel unlabled files.- Add genhomedircon from tresys - Fixed patch for restorecon- exit out when selinux is not enabled- Fix minor bugs in restorecon- Add restorecon c program- Update to latest tarball from NSA- Add sort patch- rebuilt- remove mods to run_init since init scripts don't require it anymore- fix genhomedircon not to return and error- add setfiles quiet patch- add checkcon to verify context match file_context- fix command parsing restorecon- Add restorecon- Update to latest NSA 1.4- Change run_init.console to run as run_init_t- Remove dietcc since load_policy is not in mkinitrd - Change to use CONSOLEHELPER flag- Don't authenticate run_init when used with consolehelper- Add run_init consolehelper link- Add russell spead up patch to deal with file path stems- Build load_policy with diet gcc in order to save space on initrd- Update with NSA latest- remove i18n - Temp remove gtk support- Remove wnck requirement- Add gtk support to run_init- Add internationalization- Initial version  !"#$%&'()*+,-./02.9-25.el82.9-25.el8    policycoreutils-2.9-25.el8.x86_64policycoreutilshllpppp.cload_policyload_policy.cnewrolehashtab.chashtab.hnewrole.cseconsecon.csemodulesemodule.csestatussestatus.csetfilesrestore.crestore.hrestorecon_xattr.csetfiles.csetseboolsetsebool.cpythonaudit2allowsepolgen-ifgen-attr-helper.crestorecondrestore.crestore.hrestorecond.crestorecond.hstringslist.cstringslist.huser.cutmpwatcher.cutmpwatcher.hwatch.csandboxseunshare.csemodule-utilssemodule_expandsemodule_expand.csemodule_linksemodule_link.csemodule_packagesemodule_package.csemodule_unpackage.c/usr/src/debug//usr/src/debug/policycoreutils-2.9-25.el8.x86_64//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/hll//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/hll/pp//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/load_policy//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/newrole//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/secon//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/semodule//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/sestatus//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/setfiles//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/policycoreutils/setsebool//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/python//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/python/audit2allow//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/restorecond//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/sandbox//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/semodule-utils//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/semodule-utils/semodule_expand//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/semodule-utils/semodule_link//usr/src/debug/policycoreutils-2.9-25.el8.x86_64/semodule-utils/semodule_package/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnudirectoryC source, ASCII textutf-8e9bb31dcad26126629bf69835d9cfca3a7e02ffa855f07f4f08fbec757f68c66?p7zXZ !#,DX] b2u jӫ`(y0-0Pթgh 2c>kz "3[_/l .KVƌM˅pn UO h<͹3~X_Jbo_ $ҿ1:S9ڲݜ|'p1M>)Au۬$<R`;6Fl"G-p, ʼӐi@YY]B[g|Ӂ]kv e9fG'3FE m~TΘ+= ;'`Q?YB}yF61IT|@moj)(bCnA,%,kg0?WAS%VbvNFKh J{a[m7g[c*zt'4/$;;U͒db%r)#SV$کA|9@^TRY-ŊO%Ɋ}N\.'A_\!ːEL/63 |jlu}$W8>U"=6&XvYR+ KƜD =F9;} 2gdE*F@pSȶE?La냎ϧR 9IaEp' _i:&MyY;6@K*U,Ș(Oy3lze_Vxq8+!fo2k%_ϡJw0x0i'y~K,po\Cl K d!d^k54ɰO>[pOnТ1N7Hw}ZADfp\"k@ݾq:dmm*(CIQ mY:^$+qE*>BS<Jp 8Zi352!л14"f4LYSLs>s _rWж:2Hj}[Mqcr=ƙp3b$TX`pHwWbo"qȤÞ|p-UyF8m =3A&)07C9*ʺLLTl͔Yʺ"~D\uqeM-n22oxrAbX,UAr6c./2 9A\=ejZti`!J^I4Foʞk{uk7 u>K>tnT=c<<(M2(cEyk3ydݺm{s 4XO1L]c}E%oa.r+>ZxåkPzMO!|r9 n[OO.ɨYy8/jJ9y("uame 7fp^_VHg.KuM.Rث\`OrH-)|fnS8ZO:b'޴z)5YR.'mΏ(ٙO|q vX30A#Vx27VƵ (| K:aGpxEA;2BH^К%pk0ǣjl$Ci4~ti'ˈ\JOLvus c^ް(K3sIʁy"Wsńp\dKj`~+m+{ $J_WuA=!#,£~g&n&a&9Z@QN0+rp$ځjO=N P.VH~Yp%tvOg9 d V<6S{ܞ_!Io|=!pOWpz{CRv{dժ850I1JL'uq9U;'Ǔz5Q#[倎q#)YRcwq\>)}*7A{5^ijiI(PRmC ͜g9Qe7=VoD&kRDQ]ٝ@)Ez}#JJOmTD/94W鴹>`̋رM/G uew7"bX@q#P/ ,A]`Q#LG3Y OWUdg [g7b|9}{Cʌʃ\CB[M`= 0kԐ&'ȶts*U`w"iAfK<("K8T)+…-kN2Y4}YtRD䠡1چ#C9:zZF7<^Pt(o/DBB (Zg8C/?#o$xp0lhYl |r?)>G1FlLaVr{Q@ܠYtȺoA{yex˥ zz6FP!aAj OQQa^Zx=*{a׽I6GAmthB PkiKeaC0ַ4p:Yȉ2qL4Hqb7w LJY I@8m R:]t"8_WϝmyFN {=S`thjH0!'M>ajBm!^4g=k^I'M2#M>V8/J96sYkL4/mQ  1g wd|Ϧ( tl1 :2<mYҔ5j1PU1\V`a)ZBsvlZ͛(F7dLh@* Dښ꼏:_/&]=YM`sGhI٪pԨNcA~B h5 C10Cu7_zR"p[˘EɅ ,.4z5xssLOoojU$sxᶕ=mQQp)3 #رf^0 PqE4[fyP:\Fb+F)eȘN§(y6M'e?c|_|C&"yb'Q tܑ>3p؍5njM+IN}%1nCK[w+ m@ 8nq3[P1UɆ笁E&'uԝdrXMxBi¹$ [NN=)x+|i7Vw @'$ F/ CBEM Ocނ`9.ZQP;/٨@ -SRy'vH@;B;0]p n_2`4_?+3 C٥=M V]^&s}h(6z)n9Nrnﳟ񔣆E X0:dt9~=ڀ1vm:\'2G:}z7j 'j;r0GYHjgQN7A" 6`iUͻͭ*\^)<@kXV"s$*u=k\z.E u-+HtK7 /T悱_J1ƬkE%~SOpAa/}[43"ERЗQA8}gȬ]O}TQ<<`V4p7 Szc^jwz/.ZZg'+paPBM2Fch}Pe[3^2SҋιÕ_Υ5/Sܥ5 m0HwwG[j'~iR(7>f/*8(B"pw!fDdL]{X<ɚDw/ 9Z> w-YKtcᙚFh1)lyg5aucOqxT%)p½ C gcPۿLB=*؜M,zw"j BƦ.ARRA%VwDŽm>/0ynpSv.)teBƛdaXN,lFқF]%)g(kbOP1=#TYP㦨`Pij(ms4_~AꬼM'Ba!V!'Lm+g;vϬj"t=y)6m.ؔe|JG}r7tb|nOIͥlZ&)Vtk.%VJ,k>g($1 ƞ\ {`ڤxӿ w@xQ\R.ޱC%$uL'7jahUfͰSVXL<$V o0ycXRq*_Sg9y83ZAbl6 e]?$#)!Lk" l;rE'K{_2& @fMC!V2K}>Y~~@-h+F%sToQolF3(xU\*A PJ~"XtT&  v];Q0彞ڣ֛nDȰs;vbq6G# b2E%i+XKleּ{x~-u-R0D,g'rq %>> G쩀 n;e2M({̂LT+| ξ2|VvOc$ ]Zed >;1YD{ ]"s*|\Z7SȚ넗z{717_ īRdZRY`]Ң, U%TSC1Q ٯZ&n葉>~]J 2:(ߑ=tBr(\/gniSG<}p<7L,lEO yf UIM)NM=qb&c 0oO;/2rGe~(ؖAln8w3d\6jOtI~GH#8¬UTIEF}1C%M%f?Ӫ²?50o1c{"䤢}J>,h"#Reވ, Z=Trq3{/A4sόG(DX),diC,6Bαg1`y.aN:ͤZm9H!Ѡz iL OհB3vFAi+oN<G_ݎZZHɺ $ϥwS%:E.U‰Sι|^Vlfh(,7P'Kߩ*DF\h͐qMs<(j'* :y`73Z-)8UM{z X`\AS[km| BAwB2#f-m9+?60&fJ J$S%Yc-",2h9_n5jǀ=Wgf26ޜ<- "" ¢DfG_$U ;8{ ;b/v _أo fWD2XC#BM= ?, uILe܉`+JWS^CZ'`&_i|p|߇dj~u[+bjckLuCKFnh=ہ>9ZQ[Auuz(!69V<[qfނcq6#Őu"P^HXg]:gHJ-,X$2r|`$wH4\KtJ+@l+8M|@=KwJ]'rT/rx$b^x/5kTH BMΞcsMPp6E9p~kK,z G[Zwr (DZujr%~O0 +d(tg! 8 *5VbYi-lE#K۔S#gߞ]7eUed>_':5RO+<,6hb+ yE \Ks|BS}or&hlOj;MS' ވ-9| b=N=(a s]11&2&0Pu,Bjq%ɿON=vwYRdK "Dx[zS>2gl`L:Tr8<5ed:Hٳjn.a點l$̟X,J|B/yolV E%Oj7.ߒw/w2VA)( *zՂ~=>z+؛#0&M͘z _ҲE{~DIѴ$I솞j9E֝؊.aԃP{,`=ޘD.Alps9,U 0~ނ_]3)Y݃7|zg[deel?ZCK_^6ڴWOhtح9 6@{|.:n-g;'Bδ.IA)LXSE9fW`z =FF!/ Ѽ3Q 8ply9~$h Ue2]Jm!Y򮼱S7\ na=@]tN3GVx5T =ԝڧ ?aWkYH0r=[ k⒤*H0 ߜ{aY:*D΢-愴c_PvŌAr`z ?YFHw#Iq154r~"=䏠ԫд n@mi6+ĒBCgn'2>V =mVH6  (GhVlvz<@2xt;)2mHGQ0\=e@~y'"".bL+ٻb4zTt hSuO{\pkvjp#H\R(VI2,mBfo"I7r in2y  ^uhr#F"ikJVYOfPYu/ۤ=Gl9Ef7%o6TKƿbQ% nU%z!_ ݀[XQ)  Uˤ %kmSKqG\ǃvwC^WP>l͜H}U4e`DDx--0ZM&zYg2pӆy(XCSJ:!QcBG)8#^?]pX2ɇcZnSĻjL1Zgwd~1ozlk0dt#'W;B}$,)71( ui@%)i+mtg$sjm'VFF)a˜R{i1`ԭ6W\@7 1.2ʻR+u8=hin"-E,M{?l1h3 ^lFzm֥r5%U 6DWz/&c5XX9N}>aq ~boJ80W9'Dgs,46!w[XkT_Jqϟ`  .E@@D;HijQJsE(%YB##`YJžF"2vTJD(aCyuZijrU,Bͽ,s&<Cg7YZP6%^cRv]){t``i"mqT}/Cjr͟bچO'E xi/6Y? QW\ۛqD`шQ vy YSb*L$rbG/dT>c~ZJ05ǡ?0KR77U1O籫CTLjN*UfeEdZK:GpJ񥲭1h.sA*;/!0Y${*a&dRӡ̑Fv] !K9aKc} Yvׂ j=mB}Ԍ0FRddS:M6vf} P'+ྦྷI/,xW!) x`~rz֒T/ǐ.h*5|h3.Q; hnE(ݳLܪyH7ʗB )B7YAVATX& bX_'++^nXZ6ɢzC\xt}Ο@Gric;*k&c#)L'0J7̡\}N(yqSrX ðQ%Jvq3이{X+4V)PCZQv:!myLBĜF:naUONz6n/iUũ~Xx,PB@`+X9ҿ%@{a`2FlsUf3dW# kےY$QM˔ۙZT.ݥN|yɜZێo[je-&=ppqI&waK?B 㾩Ʌ^4+#G.)|@\ ½z,)G">eѳcҞ i:/ RoLi(+P@Q= w?3g`4#|J>JJtD[qwMפ HCCyp?i#_?7ovk+{ yc:&Q3W#]s1jOC xcS_MGg\=[!}Ry2DCp,E Ls?u4vw`\էȓۮUq<AU8Ef6I:]jrpBviM !f H$݅ G(ou l\D=H1}fu8-l-6ۏ11#FpTҸ/ㆈQ> ` ܉ j8sZ"%! w#2WNDS ^a H-&LgH[5ie"^5%Tw' 0(cB$:]c5(+]}!]ɭ] лpct/SRcD[i*O0Qn*̢h}=9Tҩ$x+dzZCԃoD,WJQQn9ÅL R&DQ@M ([eN̙%1I%xb3/NV`LZ]XTZBǽX|߅I$9.qsveKe\lo] ԦiE:´I ܤuRPNk/:9ù%$0]l<޽:ߕS祖OimZSn)_lfHaz|5hĩ{볕*˾/b BzQke7mĦ.q9eZap #N]Xeh=BQ0/9f^`Ec(}] ZrWc]}d~#TKADs(ʶY P2~L]C2B?A8+[՜*`>>9St.퇺VuGrt700)mpCdMnTA3vFAb)Bb{j};́<`8#[Aq9N-AޚsuV!bGt[Rn|%4pש=~cnKCf1۽?+2G=_"}OxJǀvƻ:xۍ,6цf~bћݡ9mrl0A7A  sp {?U.qe^ӬI䴎IeFL\V2|]"pf *ӯd ~Kr!gV?_/lx» Tσ{iv?qEs0qvB gzՒؔ6B ;/`|1nBG q,_z lyAYJD?`x\?~³_<+!l C1PR;gM&?]gn1y.0橬H?B̅B˭Ez]vq\(Ɣ:ץlbJ$/ MG 7_=?+疞'*xSFM$g VKK2!ek\A{Yt7:̩)8=c4}OPgf`ST{׈Z(_-SiU] ڽ%5v;M !ꡎ& {]ug/zGdCѓe0(ř)%v ٝ_>sX)n3 ow˟_xqԶNu䋽G$P3IЪqR.?|RUMdy0e嫲oayY7[ĿKw1tܕ7?T#UR7bHEUdjՃeT\tFѸ"*`2%KJLqR' hB242_*asx*lZՊȭѾ A|YW+b@Xg-8 %ԟ]ڹ%Y9$u~BPdJnvxۨV[(rs%F0dOȜޝˣ5_0v Y8jbKe,mT$AіZ*)V&z/ ny\b;JC5I\>;l@", egnOWUGfe(>DkBl,֪Hj d/[,,A>EKJy9N@`6T4墤#=Uބ7 ˉ=W\ S&`M;ѕeGܭH_ *<2;#VȜ _!o?6~<ߎTb*FU/ßήO^m+"2.EBR`|'FTm Hnִ_+j-,<Q?lJ[k)@ 96PgDńƆWeCKdme%l)kZn}J;~d[{D^)M^dTlIm5k|ϗh鲖(ҺI:|N"'.Da2!T-5c>2,ct*E__*Wsxgwi4xV{``x_֥b$O d&d#ſ *G-pPد|ۺ;~*&lX'> :4nmcdO2\;#ʮ',#[Dl-ڛ0ISQkpa&6NCn }6'M}o!Efx'(WG"p#XVJvh6U==$[qxu UCaMNL󡭉z 24&j( *'q;5qẔ J51m7]%EM:<@9.{{TDZ\g) ,ۉvks _0fq6\4WDfKR{$0OTCVN?Qz|DޯqucRHP[lkٽ&6 %f+LH#6D5\7Y !? {e 9ajvt}㟟>N(#eɂ $L-w Ɍ/F{?G#C^EHO K޿Fӂ é T -P"҈rAr $ z@ SiYǬ1d+vY{N4I~̭8!.d/' WLȓ8]>XRkMϝz{]{P; ZZ /G}Ցêw<vSZۤ8Iqaybuj-e4=e`BR@u|!Eߕ>tGP/CJ%%S,42Z?񯯎UZ[yO וhkj2ل8Rc Ɉe!#IKz ]Zj#<޹-ʬ%ÑWh/}>*g?.yEs:J1>/cKBj̨XCœo-Fsvu24rr1tBmzL>,9kzҔޯ cyP0K읺N+ŮFt@izaKҹa ,nXмRmτAfW닉%Pj2e[R`W }Vΰ'/y ,N^9$ҺQdi@,q^A=Y0}7'oz_Շru&!IK92Ӗ|>ҙ஛!lnj@=nF M7웻UͅDN1땦t܄R&ǿ"r/1H\m?yn4B?PgDyza |hv Ȥ_&\}7,RC=Quix{@5%;.[^`H|PfSWĢ]ܳ$&j1 be͔t6-"Z" @5)׽ Ҙuhަ u}tB =VY ݟh*خ<&GCA9`v R֠ðGNnؿr_:KA݂fQP(G/> W&\j?ŗKi ύGP?n))-`d_#jLΒk^@LɥDvFq[tN|ߛEƱ:0(*|լEWjR)xM-G"tZZwS$ Ylt‘ͳӂ=5 |HB땍3q'ayђ)̯@3;FRinJG'=6E- o ~upqO$. oOŎmEC6NHoEMHli x8Hwʵi4//bmŕ#a^DCW)Ox<)w;thV* objn 43XT4"nYW#V񞮒͌(F!(!Lu#F{027#?vY]+Hcl/g/-܆"DQҐG8hl%gPE&T0P|/,3mqTjˬs#鰇3.E.|SFE"65Yޫ69cTD~UCg1Ql 6w3C@8ijN[M]'I#J<_ N3O=k+##ȼAgNJjEJj[,'`=K䖁8fy &}ر2}hx`ϲ[lMz /P%/wKi! 4P~$桃M%sgC+vE)wGj$j2@ o4?5][4[I8~g*nxڻoj|@z.R nih$ kMAY']EH7^Å>6]ȇm,>~ ~'QaZN>xȦu7Rnew1Lrs@0+`F'=Uʸ\_$3` M1xy_AbVUچ'73'MI*8ENM?e#Bid$BAE~"((uc!aކ/T:NM_I8)B'*1Nedz} ̄e2T"XB M*99En휤'OlVe06Q3ãp"]!=_UE܍ιS;#΂[Oe>w]c:/=5pTx# &MҙZG%kØ(o)L7BEW\]iyn1񂒨7u!4!8.ӇFo GG_Ғ:߈~ots[6eJ7LQbGS"e r͕lo_ϱ__\e3l5]t$=8yynbFU:sMw2tcE?oV:J SBG:mY+RFyiI"6k5VU_/mi2 ${|t4SX3$K*,=-oJԪ#r<'OA6 &a] ݧ2Ql$,EqY3w7zonaTewiyؚ(R(JE-;$^?ƴ*;6 ~#bN# e; /0'q??Wu^Y3FlH7^JPdpU1C]q_K^ިK!jelIaSGS9?'.{iBF+eи!AVX#k9ijof Q,F_;e3yE7(XǢ ys!`zC~5 SRi4i9DA\4Jq_])c}bTM÷;ۋԸ$j7`IouʧC*Dvo0~%;Δw# UҺy,J<( e I?5ը}&UAKX/gX\Jme޽vse.@[7~Y +E{!8OT)O)u<E\?oJOq(Rl Pwbw))ARi0,S™.ZݺZGk#6}ZbХYO ܍"%NEO"bu7gMJϓ~tRƸX@e? ?fK{n5{jEla[~$ae&z 0}rTTE&w2ī[wd۰ͱjy* Ǒ,≥-^ͷD&F٬rF7icf3dol ^6М PkxΊmVp>Q;V1SXj}ѸfInpz) A0yԩSSA- ]F]/xՌp}˽=X;#w>`!I?Zݦ߃+}WQp9qFM7vzQ]nW!W\GSQ^P==| |Gcvr)6a韨 -T1W®)f! ~ u1CvąE@XPEߛVC6cu$c3Du9Y(@6w;ӗ'$$WIOh1 h{YԚvkb;fDWmD2itZ2Vrte@jȟI͊7,Auf^f*e(9~IߝtIL]9vh:Ny׍-_U];M,ۊJM#4i H )/,DҤ%6;H9s4/YU\U v)CS׸'@ LP*;_9Pͱm29Mf\8?f_w=Z=矕,SK5U:bpG0޷fGAihWwB.S͞DрYn>Vm"44)6JW%%4rka8%KWGߦ~>]{,{hNG+NHo LtA\ QC=d(h&\Hr20#K*s8 wږ*$#K|uz]G5yط?YPJ4Ja{=<nY6{J˧Zߌ?S6}0E=O]Kvfsы AIS>I482ȃG $sl~y StE WfV]Y2.!lD{' ){6g g1%` Kɋ |k|-2ٗ X~A lkZ39!w-5ӴBs7SZ4~Jj2jPx3O!x1O|5ߘ%ϐZУ &/CjP!S7YtikeV&+typ#* -)c.aD7225‹l| ;TJ#V17;n2xzUϣ#|WE)0c99ͯ7LZ c/0b^)B揰j|SVb|Es)L uuJ7_JZ:@7J-QV.@ÅqbA1;+f|V8EOc_qbL[[T gk%8=P l(SW'VKi~(u]LH$0m.CrULw{h5#™#q2zZñ̬#owc+Jԙ?^B;y/X[Jn?y:od*E83j=>nsb\ Åw8&tCv AUoI#e&_v5 [WT2ڰ1NkECqÜ|š&Jo{Οy^x+bb#ip |YKt oTA`_/*ų%87PSӾffUQD#ǥ+P(ݮ+kt| fܵΙ<ԣ#<.#/QrЎ* j+`ġqv8LotO6>̬ :S1\\Nŝ|\ <9/$9isxƚzhh?ogS4E^hΕÓBqA΂mm6H jY֥,pt@!WqM6Eym AĠ2 BKtmOfM`~$z W k$`\/o M.*]*i"'E=SSlA\rk2/4 - yIy].Mzy0fTmXqu CF3zޝus"b:.MtW\׌ Gt_Tb aX Eg$oՄO9s0:lP؇*If\X#/Ds8jz?Mq@`UHx=HY6Wofȍ鑐4u/rޥR瞋lZ{Y[cW8"@D*2tЈ MY>rS-Y?NU٫+Ĉ'k fr`lwZ^4 !HЈRd4ȩrpHO+|]JlRѳa N;be.|})tܓ/\'fZԸ?>ţR>I6ντkgPڡ(*Y(D{ 6,59J)/M6Ɇ:LgT͟QuMJp\:51cd&]1Q5ʋ# ^C.2 q5h8)f.|e@D s.f\/ Ie VI4FƀSu'%&2֕mw6Mlދ E)kL2Q9XG¬R 10ɱ ~z2ɠ!کޚ2Pg~譂Y8UB"7Β_ 'jа9YS$&. ņj]qpx]uCt2dBx?v)xwѐ6$Q{ }KYj+}I-ZAl!m__GMO\X(:oeGQe 7Ӳ!טFRJX @r #rX^Vnk BצͭZ[Mkc|tvwޯ^5א% ;cտi5qJ*8{`QVHhuոdڴf1fxh7ٷX;dT+ Zfj#o)i(ѲboZX | yxkNbyY8![XrfbgK.׊D '~%s?f  H$ԒZp}g9FGkP۔f=]0ۿO!1a;Ih=ݑ{nC~m:Q҆@(݅#9,Wg%wPndH!lP;W6+^% ӹ1C7 PUXȉFg{J+sLBԠm$5(9u1@jAQgdܐY*Dډ9&Bg 3PnC0\=ا'aӢ亯دNT:X3Q[ڝ;&a l8E"4oun0Xr^x4{ո?j}5>P 6#87A .}(]HiuH:fjBD7}^^ږ-];D&/ta1|ߜ*!P=Q%1쉆U cxTCkkDje4!8%il71A9 '/Uap!ܷ%*5t pTU*c]-p_ܐxT\Z^/ ݆҃-DwBpTk@i?[9GCZuPP.в)5,WMx:nZ_7M`K}q co1$UĻCbSFq ܓH8"%0Q?4OCKm-fZN񆅻lPL `W:?' 7 l# 稦 KtVPpv͛#^0P l8<-s>1.NtQǍ#!iE*mqt˙>n`}{[ؖ }Ѵ]d5p NX-a)',@zS*\mX`~ &]S>Eb/} f`,QV D}:?Se-YzL_C^SKG5TPC[$c5ƢZ\kmTty!n2ՅZ]yT7M=ifvVe[;EZ 2ZT[->]ML>[Ӊ9 k9W鞫0ʀZ|%i@S=Cr0hd " *!ЌSÉ;IL |'S_YT y P 󻒍plE*2|rt1? 7F1.EjFZ1.{ 8Ӡ\#͋7= $ue-(8 ͨ C<8?D :[%\IS ,tlX`o8K3h]?a%8%ǺJ1xdu縀(ί֔9YSRcXM Q(9#(Yp1=ҏW_ԉ"F"]9,B,a  ȞK-$IbZip|H GEۙ[vaV P#M|VDS}RUH\tm7%V>cd,O)txP +r\8Ʉ#Y-k<7hAbqs¿FԓpVF1tX/"\"D)2XwxT:nRoSo|ƘP| 5.u֤f%X5aA^K_O0#e-iNPEݿl؏k'̒exN*w ^9-ׄ0q8^ּTn>kV~բrLEݍnTSah /Jsysؑ2. ڪ%l] Q""P}|ÛSD6'hbXuI~@wjW1\4{( 90/j [RXDlr/NQĵwuL ZT<]+M%pߦ='U~RR*+sKBLNT^* | ٿo=rV usJnjjM1\ NiY?f5~o:d*UL3I!w8g`) ARHX,${k(NWeD+G.Nl#Ї 3IH y;F3ysU YՃtEUWq@o zJJ)]`0Ssy|I~-~.~1B8="ⲫ~bM?C" A/-a, ϗc\4.-v, CnJ^)~AQ#q,cHE/Qv:#nՖ%#)n7=ЅElbYN>j?lIxCzl) dCT- lQ>:BOEn%@)(hdf 1rjܙÕzVGƊ 3 !"~Gw(q 3ϛR2.|[48we6|d5qZ?68)Swx8FY!#)zEsЃ:K "Tl$s ^zw31ѨW7;M/Z$3fO!)j}CO{ŚB҅N;a|Jp̐*PifVM4Fk &c*˝$F"UxJDdf-lg(}Q?XC;hŷvjaic; P 7E+S}I7_csgi0NECn@/+C:7-P^*6{/ gi&znu/rp# < 鄉3<^5ƊVRɟn9,1[X07Kjk]!Z8[Feo ^"+ٚ"b{7@BoN{yw7C _4ZڷMvՁRFWBNs*U9b/ 9*K9wMīP  i 26}Z޺F[YM0B]]Td[ DhTdh뫒>vh0{ lE;Jd$xp@{xp+RfP0k{S"xSh"pW϶gՑv_Q2gmz#rg>F Oo!4kJ_(%3Ӓ1lcN><SN"TmUC5Z]Us%!a%(Czʣ`،07vVjN'OY1m޺N1K C듸R )Z%$ҏ`hjt\yETLipQ*ΖKГDq)D|yi</Bp>Ѐ`0tw]/tE!|];|k~ ##GjƬr, ײ!''LLT` g7XzFXy*Wmcezsdbu'bڌ_ם0nSI礖4XĽø&Ivb^"CQ.y~;8m!8.P0&`{F@M͙RI$jy324.bq2koC ݙ` { UbUIF,Re]eWmBll[9_ NL]qX>̽Lɞc v0!/CHЭ1Qzܗ>zrq.* *3c'ƖK"?a՛6x0{IαGu o|#G&117{gTWXGVTu7p[a/ o>ĸinB~4YrأBQ!jg v[mEW{g ~7SZJMr^5y&1 nE؉EgRfg 7ux&W StI K5Iұ阚( ߁D:kwPK3 " yv$jk.N|ivDtk>zJ-fRqGKMc>:ʶי׬A !2G =:L$ė =ݩR!~o5SC0;4d^#W&(Ξ{wz рXpLT)" JU䠦.U/& UXN%VE0mW5^jK׷zxUAгboįEB**qB9ec$x[/edl|-U$MfebyiЧ~ ]d\Uu@f U,םZhqGXVG}^ϴo\Nڑ^ ?8(*(I5ݴ>0l ٥vəaM:X*NHץiC*FNӅYNE^d„AZJ t` *ٟ; 7P8"(PE-S-0a{JlJ{yq|[kYKE$ó?1[ &Xz]eLMB&IeScP7I]&!-%bؤQ.~:F0^KrjF ɺh$\b.))kq$pHF߿kI@Y 3_gC -('vۡMEJpIJq9xѾ ﻁCDב}`-};M_aY"֌RT 3mMm)eD gpIC_}kk#P;[ZPMA;rӗp8e\FU90ag>?lܷ: l=6J#xۻ֢Ev"ogUB`Qdave%{ࡰS#/ۚJ\?80U#.΁9 tL&&P6 , yƭ2C.̩@hvwŻ @Xj 'lwfTvizV°)/7G7, YqyA)l/h j32,P: jp6HEktyT,٣nP߈cB?j-l~+ɦAX#q֎1Lxc|E L\TϳBn b>^͜bʡrl}h1L1e5Lۖl' @~Z\mEukӱWM$ AC$vJmxGU[8'`\9U0[9 < F#t*ѳdax+ vE"7qmk @c]|΢'e[ t6'tQ몠Tȫ9fmX?ZHN0c%3eS|B ىhG_o}6tB^Fz J~]mok2j>x2q`/ʹ|_o:,eKֵ*3 hfaM^-qz7xh͢hКo)L +]ߡ,:"'P aiwcY43a&+iq;"4-v34on\As-c_$uU~ɥ8}$,--i=߇+nDlv 3#FHcpDs͉6|8 :WlfJ9Llo SEJ\x^ʄL6C sKT^LNũa!o`c>@ւ%b-z.DkG72Pw.˓=_[rؓ5DQD?Af)ZAxI*g}dJ^Kr{\غUi! (RJ*jR@{mWoTNawScciUd_AS9FtU:ukv}6M_d t7,]7{(,4"iKP[pׄ/K"ΨX!gLmPIsdbinVoI-E0xꫜCAW,!?힯b  4dNFM@'pVP˝+Z]-XD؝q7>ea ӟT *Dю]It|HWWvb[2&1Ķ-0Q !ǜػ7(q 8'<_*ۜ~V9,9cXg:@ I=L8k4^ 3OGڤfuAb& y J%,U`#xD,"tď12~kƀ/U[-&B{Qս]V;tVJpy8D7cyq -\lmKnn"zgױQ|҃=ysm4[JZ\YfgDe؟%8`YUq+Upk1b2ll#nvl ^:ki  OM(|]0J*o+Km$"YqjŸc-z5-ѼnFߑ<*`N'ˆgEsb:ƌ8,JOZ6q @m8:WB7P,_*}8/_QL99<kόg`JnޣQf]T6< C 5y$A^`19z9 a~O]]JY.|&H"$$k`6Y#c5ˮ E]D:4"z4k>?rmTߢMpk:Hzwz_%ԥ9fE1=ݗMO3/dW%"2Ts`iE-1*L\"bij ƤՇӖfXh#(I A=`rJ3HOrk9W/]~]cђl<ẎQohqEփ%G4 H5Ÿc\c9XȖPzTnZSV^wDYIPU ς!f z[ NDOΦ6 3ɺ+B v>CPߐ֣kezq!"Uk~Sn| 2,d#̈́S/jXqfՎ(>rmrZ4X!Q'PDq$K|K;s{BxƑ.jwOۅ RLm'+09 B8B|#387hU˂2g@2XfcJAgpnM1)o$k&m6o,~H (?[ڐA}Ӟ%d:d y+d Mߐg=6XQHQr@oD74cמ+3ی,w'J#>qi8M<^ ,$Ђ^2)M){[l% xTɿ( t{KYG\edxM0f#L奺/!Ͽ?ܒy.1[㎕E )NV5F[%WcW !0LKj|^C(h0xU[{ͶVKy4,$+G2o7ߑ߾)"}C3U݃p_v'ENūr’ҫZ hןK{t2*-T7\!.5`A9 ӓ^Y ]55ZHjhQ-Л%  \"φ+<ÀqޅX]*MdU­h~Zmos03dhm\>V5Ѓm`.tu ihVRN&'- Lj<8n;v)bp`ͅ@ / *8$68Y!>@@ D}OpL"l.iNςփW(l 0Xh(◒.EU]+=ijÃHiTcGp9-[Z|f1ӁSH_3K[RFJyr4_?.5ΪB`%ĩ5T>>F$4аY٥1O1C_9X8``@iPeMmuiH`d^HpF& _ \[ ^rQuipLaS^iR k.3HP|:+d_oQemQ40vk u3[MT̾+ؒ*)<ցzfb.A=h؋A\(J9PH1:s(zİ9yHpQ;Kd v>5О Q70äGjRlo0X"B x m.F5=yj*ӕ|GTC@z\hY f)"@K5jylB^ϯ% 0O&LQ7~n[q3Z[l!:-@Hv [D姗2l[뿓'3v v&-G5"-Iea6N-GuFX-[sK.6Δ&\7~q宑FPEbP1+=;sg`P3R^o%/APۖYp;=jL@1N9k+Bmx B3. _h[)1ۨ0Ηٌ.U>?L[&VQHV֬i5y17/>_cdMlBpudyz:p]ɦڥnU:̥&y1<4LozZ֙9w(FCXjSz?֨ マ\:k)1ER7cLlwh՜6aZ] Vu0) R _K3 */A_f1 BPfmk})TX0.Wv4u%l&CglFWM,զ^07d  w pf{9-DiCc1! 8I7AvڲxOJ&cM3wXaUGU7, Fs&V]mIo3 r9J*%i֚43Ер5Xg# -4@z *;r"|mQI~G5wr#d?:ZsZ r( # m7ܴhQ}7TေSSĘ`2dRBs^9 G|&4TDD@a>!g9fSznbޓ/Ύ2v~cfCJU 9).)c tk i ц+LdK-3չ"RK{N>Q+ rG`j] v3_'La_#&b&#: l 3S4čنIyԚ(aY9WW">#Omv9sN^$g$g}o1VxG+ts?mʏP.] hP@ YϭE~*uᰃTf 1}&Ln>ds՘_He3¹;;/YwWP8Z.iH#ຏX 3'[AL4Ch bX|0!Q %†w<×Cr Z8dSp;o=w 'GZA#]th.ю\.o)YhNg.uI72ǏĞjo]!Uk k3,ٱBFP1A9ިϡ6o#8Z~fux5RB[a)A밼_z- JQ!A1`K֜NA4EG;(ڪF)NRfAFU}bBauΩ`d} 3*:8/wm\ y]RI*aDmeqE.wmAabO z!M\Tt#(Mn{p].L{7Y{+b^yS-861Q?}pؤ8U>H4ezbz93g񢏊=}!' { FHdRl趡^! A^J˱Lbvy~$8eQQࢮIJk;Bs2yE|& ^\]jl:[B-u.QtbSܹ6ۇc\BVȦV}ԐP%**#tnUۅͻڮgyFo8/l $]9 ȶ@ϖQGn{~® (: ɼ!+}_ڎ\ՎJ':uG]l)g`t1bl|VwmgW0Bd}sxsh@>&Z5aS[&&n꽡qcH^ iCD8'z=r J0Z7U 0 Z?S+~X?zT`˲igZF9 쮨Z`ABf-Ӱڿaz! VW=~GkB;5y#_ E *5*edgl"*,5lK$~}NYc@tfS[@!zM jwH*nIen>Q>V7CW9O4omՁa^8e yyD(Ц5`[VF^c(KbG K ez'.Ȗ|YnHty0Uu)M1RU8E7ɐ7gL'Fr,edGRZԛ.iU=o /NWyy6C@`y3hAx} &i_Nrf=>s[YhSз ZԻTNv&^ܗr2+W2pEL"j\Q@Zb|h.L%,mN <k+UK~ ~nV >7@EfO,Jk+G;9c su@7ҿԠ$#R5Yr1ybθO'P42$# myb)j-&&.7&ȟ yuX] sK4 DV]Zad|.AcMz$'T[ٛ&g7ąs-_*AlWJ 4Jj*9PIh,eM$DV⁅$+][ 0ܵ9"7DvCh}^XIllLw{5|^qO^]P:w8şgGwae;G =RӜUPǴvz^ WIWr=Ϯ=C?m%Ř>XKKb[ܳ|A]WmޞŠUVn +ɋ"֞}W7^Z:rwB,Q7[Jf~8?{@ظ Ċ*:eBzصB:4&xU]S~MPV\߾-X0VUhf 'T,iR4&M}"qYduvY5aS꽞o_y:F0o2'f lb:wťg<յn 9e,*Zax !RAֳdbl')ҷa99vbf`Y!F~+ԔW(hvz _g4%wqcNm$;0ĻW `5:%,:a^%xQ(Hc&eſ(ۣqN1#O'[gc 1pWAIr pSm,Ph)-"~qw]rvRÖJ,5Ѡi ,g䷔B;u*lOJ4Ns|Ho`㖧+idS=@bIHڵbsK['ݏYiRAWl[ۉdeNtxMBS"H|..fH h+vVe`Jdă+d%nO+081+ʿPOŸ OVHqVnS\ JSlmxĀd) ݆ ZN?ycpz5eR.ߒ{|M`sL;oԔѼl:/qZ!+hUrW SjF|>&o0g+IThm9oYy ;vpx ;LUe~qZ SЍ@ )[à+y쑶-?N {nI@n0m/KaR%MS ՔS}uaIg`Ghd ;Qc+[MvԺUڕ_yGJ $H)N3 I7UbM0]韠KMu(1fWc23d϶Mg̷yXaIB&׵!);48Y^mXq O30ȼHZ rҊ'KXWY g(zEEHmw| PGlv˖7l"+ʕHa'(gF.uU޲@>*9B Jgry qΒ:mrG4&ɝIbNiʼnU ~<(Hys:/B Lɢcb*WTz3$`cdCMo;հJ.7wO2%toץ @eka~W^IKjo}Ў[M# # W'mD0*5-MVJz$[ܟ&?+89I!>)DAj;~ݛ2^uZ9 ˍ÷- Teg6sX5`d2i6i7ݶQ"_<(VWRdsa5م%jlTv;io Szcv Z?z&&D9euI06@]W #qwDC{Jvr(DЄB4@ei34 \j&ĜJ ݉u8>(aq\-f0|>;KC:|U+ 2^DJsTa;(gTi,6^-q%몀xȨU `t|rld|Ⱥ/UӻJ>6*x OIHDήsK: | Lb2:UIlɱ961sZzP W5G/;{fAfs}cp0`cBJ#Ճ[pqB dؼoR<^m_HouGՖZݳ+Ls?Lєϔ6>Jڃ"CMymEc*4R+ieu9F|n7#H R#ix&R,zD%Q{*@4TٍwN0#"Od>jZS]+%"$7fZy!hRrZ,~86[,wĀ :SdW$T9\aڻ#hk _\Sp4|Vi x2bߍ1VqlEX0bhJLD.:]Zo$zdeM>N ܱ͟ C) NC b5by9f_@4m`'pB^mQ+[t|ǖ NGH&CF~I1+g ohIN%X-e]6K(=%xa_ZL\|ҳ^jY=Vd[#Q\z:8e94xPAؗ5=C#SU'aK TSɡCv屇o$>qv,_*n]p~'-Fj"oUCUڕ|3!s˝~1; U"YBs`ntDdac֨wҎv8BzqrծijQ*xѭ/b*g4gfF#HX~nBJp;"1!{ O5J;jxL,?6".7o ]ʤN褤y ^C] Aaً7M䩁p>|7pAk6a8-ަÀ>ђLT#~;~$' 4l#bVJb|0,ܱ};쫫8eN޹}jp<>6.o  yIPDz pB Qb9>EnA{% A *`<ʈϬ>$wL-;U-喅^.j~/]рZkk/DEIϨ{Ub5dTf ̤ 9눫~Z6UF|, ni9o rዕ={J 1 isկ@8~4)ןcnd=q'Q0Sr_ctߺ~(Ic^iTIfIMRBZutn~鸵4qa $%6VDPE@ &O-iM+mToyy-) eߞ1@ A'OiiYBl;W]MX') (R^ly7-81;T^_Wjք޵g 3@G1ad $.ω-ltwj1 E:SOjⰇ(Dw͏BU{,HmZyzS'fwa*sK'Q uu3wI)c3wFF{n"Nf3,յhX#sjwXby '%)DXݬL U bjf-r4% eqNѷx64v-!ٸ->vxXlĊnX#bm3|p2/;Iy97zQIK%%`a L?]5WJ90oQ씌Ub~\%802ٽ/b8&/p Z[t5'XtdSz1e, D6'shJKyI4jO} i|b.{70;uvZ )ݸgt?c7=P6jܟEtC(iT.IFagILmIoi6"^}`u6NIɴ@FN>NiF=`lyʎ^!w5DUvÈ֦hl߈JA ڠݤ,]|/1 ]myh\K̄FͤW jУ>*Y|7`G%!X%.B::i>Z"fas<[@`5qR\юj/!DcEU^8_dRV2h[lJ @ >8xM,:DzgZǺ&ÎẐ[ |P-^ NW߀}ra:%P0M0yW\ ~;ؕbXG0.–rqK) '$#BQHv[oa91i7N|ts*G[ZZ ,BK1JONqAk}_Dl)h wY}WjPٯ@M-bj ,F50; ys};@cJK}ۺ7:o Q) C^ YZ