SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: [PATCH] homedir_template generation skips USER lines This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] From: Joshua Brindle <method_at_manicmethod.com> Date: Tue, 11 Nov 2008 15:39:03 -0500 Christopher J. PeBenito wrote: > The current libsemanage code does not correctly add lines which include > USER in them into the homedir_template, for example: > > /tmp/gconfd-USER -d system_u:object_r:ROLE_tmp_t > > This line was included in the past since it has ROLE. However, with the > switch to UBAC separations, the line has changed to: > > /tmp/gconfd-USER -d system_u:object_r:user_tmp_t > > and is no longer included. The follwing patch fixes. > > diff --git a/libsemanage/src/semanage_store.c b/libsemanage/src/semanage_store.c > index ab79c28..9f197ed 100644 > --- a/libsemanage/src/semanage_store.c > +++ b/libsemanage/src/semanage_store.c > @@ -983,7 +983,8 @@ int semanage_split_fc(semanage_handle_t sh)* > > while (fgets_unlocked(buf, PATH_MAX, file_con)) { > if (!strncmp(buf, "HOME_DIR", 8) \|\| > - !strncmp(buf, "HOME_ROOT", 9) \|\| strstr(buf, "ROLE")) { > + !strncmp(buf, "HOME_ROOT", 9) \|\| strstr(buf, "ROLE") \|\| > + strstr(buf, "USER")) { > / This contains one of the template variables, write it to homedir.template / > if (write(hd, buf, strlen(buf)) < 0) { > ERR(sh, "Write to %s failed.", > > > > Merged in libsemanage-2.0.29 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Tue 11 Nov 2008 - 15:39:08 EST This message: [ Message body ] Next message: Murray McAllister: "user guide drafts: "Linux Permissions" and "Manual Pages for Services"" Previous message: Joshua Brindle: "Re: Latest policycoreutils package has a minor problem" In reply to: Christopher J. PeBenito: "[PATCH] homedir_template generation skips USER lines" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom