Due to the missing return in sepol_node_query(), the function always set *response to NULL whenever a protocol was SEPOL_PROTO_IP6 Fixes: sudo semanage node -a -M ::1 -p ipv6 -t node_t ::1 sudo semanage node -m -M ::1 -p ipv6 -t node_t ::1 [1] 12968 segmentation fault (core dumped) semanage node -m -M ::1 -p ipv6 -t node_t ::1 Signed-off-by: Petr Lautrbach <plautrba@xxxxxxxxxx> --- libsepol/src/nodes.c | 1 + 1 file changed, 1 insertion(+) diff --git a/libsepol/src/nodes.c b/libsepol/src/nodes.c index 50cf21d..820346d 100644 --- a/libsepol/src/nodes.c +++ b/libsepol/src/nodes.c @@ -273,6 +273,7 @@ int sepol_node_query(sepol_handle_t * handle, c, SEPOL_PROTO_IP6, response) < 0) goto err; + return STATUS_SUCCESS; } } break; -- 1.8.3.1 _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
