Skip to content

selinux: upgrade packages to 3.10#29182

Draft
commodo wants to merge 4 commits intoopenwrt:masterfrom
commodo:python-upgrades-selinux-3.10
Draft

selinux: upgrade packages to 3.10#29182
commodo wants to merge 4 commits intoopenwrt:masterfrom
commodo:python-upgrades-selinux-3.10

Conversation

@commodo
Copy link
Copy Markdown
Contributor

@commodo commodo commented Apr 18, 2026

📦 Package Details

Maintainer: @tpetazzoni

Description:

🧪 Run Testing Details

  • OpenWrt Version:
  • OpenWrt Target/Subtarget:
  • OpenWrt Device:

✅ Formalities

  • I have reviewed the CONTRIBUTING.md file for detailed contributing guidelines.

If your PR contains a patch:

  • It can be applied using git am
  • It has been refreshed to avoid offsets, fuzzes, etc., using 
    make package/<your-package>/refresh V=s
  • It is structured in a way that it is potentially upstreamable
    (e.g., subject line, commit description, etc.)
    We must try to upstream patches to reduce maintenance burden.

@commodo commodo changed the title Python upgrades selinux 3.10 selinux: upgrade packages to 3.10 Apr 18, 2026
@commodo commodo marked this pull request as draft April 18, 2026 13:58
@cryptowhiplash
Copy link
Copy Markdown

cryptowhiplash commented Apr 20, 2026

Please merge this fixes a lot of compile issues on GCC/Python on ARM devices.. I tested

@commodo
Copy link
Copy Markdown
Contributor Author

commodo commented Apr 21, 2026
edited
Loading

Please merge this fixes a lot of compile issues on GCC/Python on ARM devices.. I tested

Will work on this.
Unfortunatelly it's a 2 repo fix.
I need to update some packages in https://github.com/openwrt/openwrt

[EDIT] I will try to finish this in the next days.

@commodo commodo mentioned this pull request Apr 24, 2026
Merged
@commodo commodo force-pushed the python-upgrades-selinux-3.10 branch from fe17701 to 114516d Compare April 25, 2026 05:23
@commodo
Copy link
Copy Markdown
Contributor Author

commodo commented Apr 25, 2026

Please merge this fixes a lot of compile issues on GCC/Python on ARM devices.. I tested

in the meantime, fixed build on 3.9: #29225

commodo added 4 commits April 25, 2026 19:04
@commodo
python-selinux: update to 3.10
048df21 
Changes in 3.10:
- fix parsing of the enforcing kernel cmdline parameter
- build python module without isolation (Makefile fix)
- treewide: add .clang-format configuration file
- various libsepol bug fixes (NULL deref, use-after-free, MLS range
  validation, functionfs_seclabel policycap, bpf_token_perms polcap)

Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
@commodo
python-semanage: update to 3.10
00f92e3 
Changes in 3.10:
- improve semanage man pages: add examples for -r RANGE flag usage
- semanage: reset active value when deleting boolean customizations
- various libsemanage/libsepol bug fixes and security hardening

Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
@commodo
selinux-python: update to 3.10
f31659f 
Changes in 3.10:
- python/sepolicy: add support for DNF5
- sandbox/seunshare: replace system() with execv() to prevent shell
  injection vulnerability
- seunshare: always use translations when printing
- setfiles: add -A option to disable SELINUX_RESTORECON_ADD_ASSOC

Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
@commodo
semodule-utils: update to 3.10
84091e2 
Changes in 3.10:
- general bug fixes from libsepol (bounds statements in optional
  blocks, type attribute handling in role-types rule, NULL dereference
  and use-after-free fixes)
- treewide: add .clang-format configuration file

Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
@commodo commodo force-pushed the python-upgrades-selinux-3.10 branch from 114516d to 84091e2 Compare April 25, 2026 16:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@commodo @cryptowhiplash