Hello! The 3.6-rc2 release for the SELinux userspace is now available at: https://github.com/SELinuxProject/selinux/wiki/Releases Thanks to all the contributors, reviewers, testers and reporters! If you miss something important not mentioned bellow, please let me know. User-visible changes -------------------- * cil: Allow IP address and mask values to be directly written * cil: Allow paths in filecon rules to be passed as arguments * Bug fixes Development-relevant changes ---------------------------- * ci: bump Fedora to version 39 * Drop LGTM.com and Travis CI configuration Shortlog of the changes since 3.6-rc1 release --------------------------------------------- Christian Göttsche (26): libsepol: use str_read() where appropriate libsepol: adjust type for saturation check libsepol: enhance saturation check libsepol: validate the identifier for initials SID is valid Drop LGTM.com configuration Drop Travis CI configuration scripts: ignore unavailable interpreters ci: bump Fedora to version 39 libselinux: update Python binding Update Python installation on Debian scripts: update run-scan-build semodule_link: avoid NULL dereference on OOM libsepol: set number of target names libselinux: fix memory leak in customizable_init() libsepol: avoid leak in OOM branch libsepol: avoid memory corruption on realloc failure libsepol: update policy capabilities array github: bump action dependencies libsepol: validate common classes have at least one permissions libsepol: include length squared in hashtab_hash_eval() libsepol: use DJB2a string hash function libsepol/cil: use DJB2a string hash function libselinux: use DJB2a string hash function newrole: use DJB2a string hash function libsepol: avoid fixed sized format buffer for xperms libsepol: avoid fixed sized format buffer for xperms Huaxin Lu (1): libsepol: add check for category value before printing James Carter (11): libsepol/tests: Update the order of neverallow test results libsepol/cil: Use struct cil_db * instead of void * libsepol/cil: Refactor and improve handling of order rules libsepol/cil: Allow IP address and mask values to be directly written secilc/docs: Update syntax for IP addresses and nodecon libsepol/cil: Refactor Named Type Transition Filename Creation libsepol/cil: Allow paths in filecon rules to be passed as arguments secilc/docs: Fix and update the documentation for macro parameters libsepol/cil: Add pointers to datums to improve writing out AST libsepol/cil: Give warning for name that has different flavor libsepol/cil: Do not allow classpermissionset to use anonymous classpermission Petr Lautrbach (1): Update VERSIONs to 3.6-rc2 for release.
