Received: by 2002:a25:8b91:0:0:0:0:0 with SMTP id j17csp7849698ybl; Thu, 16 Jan 2020 06:39:08 -0800 (PST) X-Google-Smtp-Source: APXvYqw34RV/Zh/HedqIcDkRZ7qsghPcyFx516dIGmsG+piDIYHI/J9S8eeCdJeBAgilP01LlbfW X-Received: by 2002:a9d:7552:: with SMTP id b18mr2144006otl.20.1579185548814; Thu, 16 Jan 2020 06:39:08 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1579185548; cv=pass; d=google.com; s=arc-20160816; b=nBt3Bz4DVTjOtHamw2P7ykHhpRZTkTTokgTDAkmT1tkN6TesIqHSUEOt+lTuEkYiFX Bg2rP25CzNy2jvx3CDzehsC633N+F19fkb2yPJRlNofNDXYCIIA1c9o66w9hW63nGM/B wQiw701k0tZUIgzLryG8b1mSnif4lJZSqmXWgTwNFl7A69mFWHLizcembbw6KD2l4msO MY34n8UrXSzj3kOc7ug9GlH1HExeutvCDCvhT/jNz7MS1qZb4EQks5NuPIJRfG2qWjKq oSa32YgZ9pMcw/VShCOW+HzQehuWsx7tY6HDdVXVcxiA6AN1hisn+zMUAnExLGpEmEMf OuOw== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:mime-version:content-transfer-encoding :content-id:content-language:accept-language:message-id:date :thread-index:thread-topic:subject:to:from:dkim-signature; bh=W5FdJ9M6r0ZKw2r2ERYb41O6BiH+l5pEy1iw2jx+Cos=; b=copc0iov5YBXHTURKyZycarB8TEXvleCS75fvEFqpMUrDjaDCkpUPAwiZF40MuI6Tf lAmhbgHirbkHDf6plwmF5v3q8PKaD0LI5oLernQgITcscqU4MHXxesfL6DhIMixmTGv5 KGfTw7kys8o7rUeSdMXeSAf2u+nsmvudE4b+LnPTeOE1xUa1daSsgjIaOqfPcDO1i1gC K1FRca1oVD3perNMujKRFxgE3gefWPt8omQKWNgTFb2N7lRS/yt1kLcP1yFeEvh9f6wm utBSv7NnMpW/cm8dfzAD83Sm/x1R2uMC9p5kt3kc5Po6Uj9ioImFkijbWgEXXKJpL8eS g99Q== ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@tresys.onmicrosoft.com header.s=selector2-tresys-onmicrosoft-com header.b=m7Dpnt2l; arc=pass (i=1 spf=pass spfdomain=tresys.com dkim=pass dkdomain=tresys.com dmarc=pass fromdomain=tresys.com); spf=pass (google.com: best guess record for domain of selinux-refpolicy-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=selinux-refpolicy-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id d1si11221284otf.58.2020.01.16.06.39.06; Thu, 16 Jan 2020 06:39:08 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of selinux-refpolicy-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@tresys.onmicrosoft.com header.s=selector2-tresys-onmicrosoft-com header.b=m7Dpnt2l; arc=pass (i=1 spf=pass spfdomain=tresys.com dkim=pass dkdomain=tresys.com dmarc=pass fromdomain=tresys.com); spf=pass (google.com: best guess record for domain of selinux-refpolicy-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=selinux-refpolicy-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726726AbgAPOhi (ORCPT + 12 others); Thu, 16 Jan 2020 09:37:38 -0500 Received: from mail-bn8nam12on2095.outbound.protection.outlook.com ([40.107.237.95]:49013 "EHLO NAM12-BN8-obe.outbound.protection.outlook.com" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S1726362AbgAPOhi (ORCPT ); Thu, 16 Jan 2020 09:37:38 -0500 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=f+7K4eDc9W32hG/i1KZX/3xdQXXTtNf/iXbh1/18/X+H7PJNiuv75GHThFSqIA0HDG/XGfwCGVoQjXl6WbGkS6HV0YczyfQ/AL0byT9Ul8Vx2R2baWQGj+vo4bf5VjWd+ydOdrHrN2pQvK9xhfGM1r9rNEUCv8lDFi4iABCzcMSNJX4Rnf3iBoaXy0HdkzDU4JWnQDLBsL6JYg+oAxXFg5NHKOP/+lQ6hPfsdsEwFIJAp4nTHCxVC/HhTMOtTtzydVNPsXCgPRf+5ml8INaJrU3jgUulbXVB3OLbLDeM7D2ekqA3Hgf03tLqcxlBIi/2w7mSl6FB69yIp+oJEbmoAQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=W5FdJ9M6r0ZKw2r2ERYb41O6BiH+l5pEy1iw2jx+Cos=; b=dfOn1elOhP6+Y5CiR3L/wda9TzcKwwV7tBAwOYJPizmxi5KEMbvgBjn2OJgSUNutAp7R7ouczl1Y3MChVHnM+oe9pvNOQAIoFk0vccaYAd6RqkLimsbuJwD2yK6HP7t4DyYK1W2rh+dLeWAJRo5eLGImlTbrOF19MP5DYlAtntO2DbrtsLu2ribjJAl+cfSxlzGNshnKTW0XA5sOipGbj2HPA0C8jB9Asa6H6PZUo3OIFUG/CzVGLJISiM85CkeDV9VNi6vCN8EppJQQLAZPVigFjI+fpyeVyLTx0lNxlbsHbEozl6w9vQYR4FZpjV0YFZwvGTxp048jr2o+UGU0Yw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=tresys.com; dmarc=pass action=none header.from=tresys.com; dkim=pass header.d=tresys.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tresys.onmicrosoft.com; s=selector2-tresys-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=W5FdJ9M6r0ZKw2r2ERYb41O6BiH+l5pEy1iw2jx+Cos=; b=m7Dpnt2lPcsrV49XMFzpckYD6SOa2N0u0MtFvk9e4DGqW7+Hojj6pQZLZOLKyA2VpXh2oyRUKQmIbqRzti43DFIwXb9xAvccjSN9ignCfvgwFo84IFucCL/kW7P1An9aAh1WQVh1d4mVdGpAYQ3SGTWwOqPBlOi+CIn1J5Wey3A= Received: from BL0PR1501MB2148.namprd15.prod.outlook.com (52.132.22.22) by BL0PR1501MB1972.namprd15.prod.outlook.com (52.132.21.26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2644.20; Thu, 16 Jan 2020 14:37:34 +0000 Received: from BL0PR1501MB2148.namprd15.prod.outlook.com ([fe80::c05c:1ffd:b2d7:da33]) by BL0PR1501MB2148.namprd15.prod.outlook.com ([fe80::c05c:1ffd:b2d7:da33%3]) with mapi id 15.20.2644.021; Thu, 16 Jan 2020 14:37:34 +0000 Received: from [10.1.11.43] (96.234.151.2) by BL0PR05CA0026.namprd05.prod.outlook.com (2603:10b6:208:91::36) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2644.14 via Frontend Transport; Thu, 16 Jan 2020 14:37:34 +0000 From: "Burgener, Daniel" To: "selinux-refpolicy@vger.kernel.org" Subject: SELint Thread-Topic: SELint Thread-Index: AQHVzHp9Y5PbGACG7ES0bcZuJi8RYA== Date: Thu, 16 Jan 2020 14:37:34 +0000 Message-ID: <53806485-18fe-0cd8-ca16-9cdb495cdb92@tresys.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [96.234.151.2] x-clientproxiedby: BL0PR05CA0026.namprd05.prod.outlook.com (2603:10b6:208:91::36) To BL0PR1501MB2148.namprd15.prod.outlook.com (2603:10b6:207:33::22) authentication-results: spf=none (sender IP is ) smtp.mailfrom=dburgener@tresys.com; x-ms-exchange-messagesentrepresentingtype: 1 x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 96f4816f-4f73-43d0-0b4a-08d79a91a03e x-ms-traffictypediagnostic: BL0PR1501MB1972: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:8273; x-forefront-prvs: 02843AA9E0 x-forefront-antispam-report: SFV:NSPM;SFS:(10019020)(4636009)(346002)(376002)(366004)(136003)(39840400004)(396003)(189003)(199004)(26005)(316002)(16576012)(3480700007)(66946007)(71200400001)(66556008)(36756003)(66446008)(64756008)(16526019)(86362001)(31696002)(956004)(66476007)(2616005)(186003)(8936002)(966005)(4744005)(81156014)(81166006)(31686004)(508600001)(8676002)(7116003)(5660300002)(52116002)(6486002)(6916009)(2906002);DIR:OUT;SFP:1102;SCL:1;SRVR:BL0PR1501MB1972;H:BL0PR1501MB2148.namprd15.prod.outlook.com;FPR:;SPF:None;LANG:en;PTR:InfoNoRecords;MX:1;A:1; received-spf: None (protection.outlook.com: tresys.com does not designate permitted sender hosts) x-ms-exchange-senderadcheck: 1 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 2sjXyT0zBpuaRNjoBAxLHkbbOFJ3uQ+tzcLjOqo4PVDHmWJnCwzxRCtY4YGLUKZF94+6PvV/c4T9JfrlQE14N+1wMqTAT9wsUajggeCf3OCW8BnqRszkhxzJyXafiqPSFl+TFT5SnSSXUDFb6OkreAIzU3wLroVF2MSc0B6sjUjgNzOTSJuxvrbV/KU/IrcJ7NnoSdcoj1q8zyVIS863QCgwFiyjxapoeVgIEb6btxAnuJFOwKFeIhZn44kLnLantouQFuIDVsc9Mig8u/+X3dSnexZRQWvurtrFvVuQri9AzniCxCYVkURF0JppMkkte6pd884q/tNcB58WTUt6rPWxGir2c1Ayz+TTqhQBftu70Aubv7FIuHpy5map9q6w9X8adS0cd9+cbqsGSGFShpaR1JZMIK67BkpMtGh0BwKIUEkveJbeZwPbuRWzw2lG6LlYQ4Fn3bZOY/rXMOptOWJzrC481b40DwBt4V44t5Q= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="Windows-1252" Content-ID: <34D09E678639D44B91FA7F39DB314880@namprd15.prod.outlook.com> Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginatorOrg: tresys.com X-MS-Exchange-CrossTenant-Network-Message-Id: 96f4816f-4f73-43d0-0b4a-08d79a91a03e X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Jan 2020 14:37:34.6839 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: a0d45667-6c07-4e88-868f-4ac9af95c7ed X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: 9QN/PzZS8dRy2o43x6SB5m4d/iNkCvzEMtAClJLti/StDjOQ56+ZCQO9BZG1+2dODOdoDLEO5vXcZSgCbdDNUA== X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL0PR1501MB1972 Sender: selinux-refpolicy-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: selinux-refpolicy@vger.kernel.org Hello, We have created a tool a that I think people on this list may find very useful as they do refpolicy related work. It's called SELint and does static code analysis on refpolicy style SELinux policy. You can find the tool on our git repo here: https://github.com/TresysTechnology/selint It currently has 13 checks for common policy issues, and we hope to add more going forward. I submitted a pull request to the refpolicy github this morning that fixes some of the issues reported by the tool, and hope to continue submitting more over the next few days. -Daniel