chiark / gitweb /
~ianmdlvl / elogind.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fe0b9cd) | patch
selinux: figure out selinux context applied on exec() before closing all fds
authorMichal Sekletar <msekleta@redhat.com>
Wed, 12 Nov 2014 12:53:27 +0000 (13:53 +0100)
committerLennart Poettering <lennart@poettering.net>
Thu, 4 Dec 2014 02:00:01 +0000 (03:00 +0100)
commit9008e1ac925afcdef7b45042c03fa5444f1c52c2
treebf56221d70f9c3acc210058e98294ba9f058aaf2tree | snapshot
parentfe0b9cd3ba25fb5063b6782983dde0a0c9915660commit | diff
selinux: figure out selinux context applied on exec() before closing all fds

We need original socket_fd around otherwise mac_selinux_get_child_mls_label
fails with -EINVAL return code. Also don't call setexeccon twice but rather pass
context value of SELinuxContext option as an extra argument.
src/core/execute.c diff | blob | history
src/shared/selinux-util.c diff | blob | history
src/shared/selinux-util.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.