ANN: SELinux userspace 2.7-rc4 release candidate

A fourth (and hopefully final) release candidate for the SELinux userspace is now available at: https://github.com/SELinuxProject/selinux/wiki/Releases Please give it a test and let us know if there are any issues. Barring any significant further changes, a final 2.7 release is likely the week of

Re: [PATCH] Fix consistency of PYTHONLIBDIR variable across modules

On Fri, 2017-06-30 at 18:09 +0200, Laurent Bigonville wrote: > From: Laurent Bigonville > > PYTHONLIBDIR is currently also used in sepolgen but has a different > behaviour regarding DESTDIR. Let's try to make this consistant. > > Signed-off-by: Laurent Bigonville

[PATCH] Fix consistency of PYTHONLIBDIR variable across modules

From: Laurent Bigonville PYTHONLIBDIR is currently also used in sepolgen but has a different behaviour regarding DESTDIR. Let's try to make this consistant. Signed-off-by: Laurent Bigonville --- python/semanage/Makefile | 8 1 file changed, 4

[PATCH] IB/core: Fix static analysis warning in ib_policy_change_task

From: Daniel Jurgens ib_get_cached_subnet_prefix can technically fail, but the only way it could is not possible based on the loop conditions. Check the return value before using the variable sp to resolve a static analysis warning. Fixes: 8f408ab64be6 ("selinux lsm

[PATCH] IB/core: Fix uninitialized variable use in check_qp_port_pkey_settings

From: Daniel Jurgens Check the return value from get_pkey_and_subnet_prefix to prevent using uninitialized variables. Fixes: d291f1a65232 ("IB/core: Enforce PKey security on QPs") Signed-off-by: Daniel Jurgens Reported-by: Dan Carpenter

Re: [PATCH] selinux: return -ENOMEM if kzalloc() fails

Stephen Smalley wrote: > On Fri, 2017-06-30 at 10:56 +0300, Dan Carpenter wrote: > > We accidentally return success instead of -ENOMEM on this failure > > path. > > > > Fixes: 409dcf31538a ("selinux: Add a cache for quicker retreival of > > PKey SIDs") > > Signed-off-by: Dan Carpenter

Re: [PATCH 3/3] Travis-CI: test defining CFLAGS, LDFLAGS, etc. on make command line

On Wed, 2017-06-28 at 23:42 +0200, Nicolas Iooss wrote: > Some Makefiles rely on adding values to variables like CFLAGS, > LDFLAGS, etc. For example doing "LDFLAGS += -L../src" does not work > fine > when LDFLAGS is defined on the command line of "make". > > Commits 297877ab88ee ("libselinux

Re: [PATCH] selinux: return -ENOMEM if kzalloc() fails

On Fri, 2017-06-30 at 10:56 +0300, Dan Carpenter wrote: > We accidentally return success instead of -ENOMEM on this failure > path. > > Fixes: 409dcf31538a ("selinux: Add a cache for quicker retreival of > PKey SIDs") > Signed-off-by: Dan Carpenter NAK, that's

[PATCH] selinux: return -ENOMEM if kzalloc() fails

We accidentally return success instead of -ENOMEM on this failure path. Fixes: 409dcf31538a ("selinux: Add a cache for quicker retreival of PKey SIDs") Signed-off-by: Dan Carpenter diff --git a/security/selinux/ibpkey.c b/security/selinux/ibpkey.c index