mirror of
https://github.com/SELinuxProject/selinux
synced 2025-01-10 15:39:25 +00:00
37c5c30998
Change setfiles/restorecon to only call realpath() on the user-supplied pathnames prior to invoking fts_open(). This ensures that commands such as restorecon -R /etc/init.d and (cd /etc && restorecon shadow gshadow) will work as expected while avoiding the overhead of calling realpath() on each file during a file tree walk. Since we are now only acting on user-supplied pathnames, drop the special case handling of symlinks (when a user invokes restorecon -R /etc/init.d he truly wants it to descend /etc/rc.d/init.d). We can also defer allocation of the pathname buffer to libc by passing NULL (freeing on the out path) and we can drop the redundant exclude() check as it will now get handled on the normal path. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> |
||
|---|---|---|
| .. | ||
| Makefile | ||
| restorecon.8 | ||
| setfiles.8 | ||
| setfiles.c | ||