RepoMirrors/selinux
1
0
Fork 0
mirror of https://github.com/SELinuxProject/selinux synced 2025-02-19 02:56:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
6b6b475dcf
selinux/libsepol/src
History
Harry Ciao dbc9a61819 libsepol: Only call role_fix_callback for base.p_roles during expansion. 
expand_role_attributes() would merge the sub role attribute's roles
ebitmap into that of the parent, then clear it off from the parent's
roles ebitmap. This supports the assertion in role_fix_callback() that
any role attribute's roles ebitmap contains just regular roles.

expand_role_attribute() works on base.p_roles table but not any
block/decl's p_roles table, so the above assertion in role_fix_callback
could fail when it is called for block/decl and some role attribute is
added into another.

Since the effect of get_local_role() would have been complemented by
the populate_roleattributes() at the end of the link phase, there is
no needs(and wrong) to call role_fix_callback() for block/decl in the
expand phase.

Signed-off-by: Harry Ciao <qingtao.cao@windriver.com>
Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Dan Walsh <dwalsh@redhat.com>
2011-08-03 18:02:38 -04:00
..
assertion.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
av_permissions.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
avrule_block.c libsepol: add support for filenametrans rule 2011-04-13 15:20:46 -04:00
avtab.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
boolean_internal.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
boolean_record.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
booleans.c Author: "Justin P. Mattock" 2010-12-08 18:13:46 -05:00
conditional.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
constraint.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
context_internal.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
context_record.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
context.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
context.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
debug.c Author: "Justin P. Mattock" 2010-12-08 18:13:46 -05:00
debug.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
dso.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
ebitmap.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
expand.c libsepol: Only call role_fix_callback for base.p_roles during expansion. 2011-08-03 18:02:38 -04:00
genbools.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
genusers.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
handle.c libsepol: method to check disable dontaudit flag. 2009-07-07 14:19:57 -04:00
handle.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
hashtab.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
hierarchy.c Author: KaiGai Kohei 2008-10-08 06:58:40 -04:00
iface_internal.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
iface_record.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
interfaces.c Author: "Justin P. Mattock" 2010-12-08 18:13:46 -05:00
libsepol.map libsepol: method to check disable dontaudit flag. 2009-07-07 14:19:57 -04:00
libsepol.pc.in updated libselinux pkgconfig does not work correctly on lib64 machines. 2010-03-06 18:06:43 -05:00
link.c Support adding one role attribute into another. 2011-07-25 10:09:48 -04:00
Makefile updated libselinux pkgconfig does not work correctly on lib64 machines. 2010-03-06 18:06:43 -05:00
mls.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
mls.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
module_internal.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
module.c Unchecked input leades to integer underflow 2009-09-01 09:46:19 -04:00
node_internal.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
node_record.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
nodes.c Author: "Justin P. Mattock" 2010-12-08 18:13:46 -05:00
polcaps.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
policydb_convert.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
policydb_internal.h libsepol: Add support for multiple target OSes 2009-10-14 15:45:46 -04:00
policydb_public.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
policydb.c libsepol: store all filename transition rules when parsing a policy 2011-08-01 13:40:19 -04:00
port_internal.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
port_record.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
ports.c Author: "Justin P. Mattock" 2010-12-08 18:13:46 -05:00
private.h libsepol: Add support for multiple target OSes 2009-10-14 15:45:46 -04:00
roles.c Author: "Justin P. Mattock" 2010-12-08 18:13:46 -05:00
services.c Author: "Justin P. Mattock" 2010-12-08 18:13:46 -05:00
sidtab.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
symtab.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
user_internal.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
user_record.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
users.c Add role attribute support when expanding role_set_t. 2011-07-25 10:09:43 -04:00
util.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
write.c Add role attribute support when generating pp files. 2011-07-25 10:09:34 -04:00