On Thu, Jul 9, 2020 at 5:46 AM Petr Lautrbach <plautrba@xxxxxxxxxx> wrote:
>
>
> I'd like to release 3.1 today/tommorow to open the development of other
> performance related improvemenets which which postponed. This is release notes
> draft which is based on RELEASE-20200518.txt and RELEASE-20200619.txt:
>
> RELEASE 202007XX (3.1)
>
> User-visible changes:
>
> * selinux/flask.h and selinux/av_permissions.h were removed
Also sepol/policydb/flask.h although hopefully there were no external
users of it.
> * `security_compute_user()` was deprecated - usage of /sys/fs/selinux/user { security:compute_user } might be revisited
Not sure what the last part "might be revisited" means; we have
removed all uses of it internal to libselinux and deprecated the
interface, with the intent of someday dropping it altogether and
removing the kernel interface.
One other user-visible change is commit
8677ce5e8f592950ae6f14cea1b68a20ddc1ac25 ("libsepol,checkpolicy:
support omitting unused initial sid contexts") which allows policies
to start omitting unused initial SID contexts going forward, as per
its description and
https://github.com/SELinuxProject/selinux-kernel/issues/12.
